Gebruiksaanwijzing /service van het product ME3400G2CSA van de fabrikant Cisco Systems
Ga naar pagina of 885
Corporate He adquarters Cisc o Syst ems , Inc . 170 West Ta sman Drive San Jos e, CA 95 134-1706 USA http://www.ci sco.com Tel: 408 526-4000 800 553- NETS (638 7) Fax: 408 526-4100 Cisco ME 340 0 Ethernet A ccess Switc h S of t w are Conf iguration Guide Cisco IOS Release 12.
THE SPECIFICATIONS AND INFORMATION REG ARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOU T NOTICE. ALL STATEMENT S, INFORMATI ON, AND RECOMMENDA TIONS IN T HIS MANUAL ARE BELIEVED TO BE ACCURATE BU T ARE PRESEN TED WITHOUT WARRANTY OF ANY KIND, EXPRE SS OR IMPLIED.
iii Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 CONTENTS Preface xx xiii Audienc e xxxii i Pur pose xxxi ii Conv enti ons xxxiii Rela te d Publi cation s xxxiv Obtain ing Docu mentati on xxxv Cisco.
Cont ent s iv Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Defau lt Se ttin gs Aft er I nitial Sw itch C onfigu rat ion 1-8 Netw ork Confi gur atio n Ex ampl es 1-1 .
Content s v Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Manua lly As sign ing IP Infor matio n 3-9 Checki ng and Sav in g the Runn i ng Configu ration 3-10 Modi fy .
Cont ent s vi Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Config urin g NTP 5-4 Defaul t NTP Conf ig urati o n 5-4 Config urin g NTP Authent icatio n 5-5 Config uri.
Content s vii Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 CHAPTER 6 Configur ing S DM Templates 6-1 Underst anding th e SDM Templa tes 6-1 Config urin g the Switch .
Cont ent s viii Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Config urin g RADI US 7-20 Defaul t RADIUS Confi gu ration 7-20 Identi fying t he RADI US Serv er Host 7.
Content s ix Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Config urin g IEEE 802. 1x Authe nt icat io n 8-9 Defa ul t IEEE 8 02.1x Conf igur at ion 8-9 IEEE 802 .1x Con figurat ion Guid elines 8-1 0 Config urin g IEEE 802.
Cont ent s x Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Config urin g Auto-MDIX on an Inte rface 9-18 Adding a De scrip ti on for an I nterf ac e 9-19 Config urin .
Content s xi Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Defau lt Laye r 2 Et he rn et Int erfa c e VL A N Co nf ig ura tio n 11-16 Config urin g an Etherne t Inter.
Cont ent s xii Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Config urin g a Lay er 2 Inter face as a Pri vate -V LAN Host Por t 12-12 Config urin g a Lay er 2 Inter .
Content s xiii Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Spannin g-Tr ee Mode s and Pro tocols 14-9 Support ed Sp anning- Tree I nstances 14-10 Spannin g-Tr ee I nterope rabili ty and Ba ckwa rd Compat i bilit y 14-10 STP and IE EE 802.
Cont ent s xiv Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Config urin g MSTP Feat ures 15-11 Defaul t MSTP Conf ig uration 15-12 MSTP Confi gurati on Guideline s 1.
Content s xv Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 CHAPTER 17 Configur ing F lex Lin ks 17-1 Underst anding Fl ex Links 17-1 Config urin g Flex Lin ks 17-2 De.
Cont ent s xvi Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 CHAPTER 19 Configur ing Dynamic ARP Ins pectio n 19-1 Underst anding Dyn amic ARP Ins pection 19-1 Inter .
Content s xvii Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Unde rsta nding Mult icas t V LAN R egi strati on 20-16 Using MV R in a Multic ast Telev isi on Applica t.
Cont ent s xviii Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 CHAPTER 22 Configur ing C DP 22-1 Underst anding CDP 22-1 Config urin g CDP 22-2 Defaul t CDP Conf ig u.
Content s xix Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Config urin g Local SPAN 24-10 SPAN Confi gurati on Gui deline s 24-10 Creati ng a Local SPAN S ession 24-.
Cont ent s xx Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 CHAPTER 27 Configur ing SNMP 27-1 Underst anding SNMP 27-1 SNMP Vers ions 27-2 SNMP Manage r Fu nctions 27.
Content s xxi Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Applyi ng an IPv4 ACL to an Inter face 28-1 9 Hardwa re and Soft ware Treat ment of IP ACL s 28-21 IPv4 A .
Cont ent s xxii Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Classi ficati on 30-5 Class Maps 30-6 The match Co mmand 30 -7 Classi ficati on Base d on Layer 2 CoS 30.
Content s xxiii Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Displa ying QoS In format ion 30-55 QoS Stati stics 30-55 Config urati o n Exampl es for Po li cy Maps 3.
Cont ent s xxiv Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 CHAPTER 32 Configur ing IP Unicast Routing 32-1 Underst anding I P Routing 32-2 Type s of Routin g 32-2 .
Content s xxv Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Config urin g EIGRP 32-32 Defaul t EIGRP Conf igur ation 32-34 Config urin g Bas ic EIGRP Par ameter s 32-.
Cont ent s xxvi Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Filt er in g Ro u tin g Info r mat io n 32-79 Setti ng Passive Inter fa ces 32-79 Contro lling Adv ertis.
Content s xxvii Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Config urin g a Rendezvo us Poin t 34-1 0 Manua lly As sign ing a n RP t o Mu lticas t Gr oups 34-1 1 Co.
Cont ent s xxvii i Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Contr ollin g Sou rce Infor matio n th at Yo ur S witch Or iginat es 35-8 Redist ributi ng So urces 3.
Content s xxix Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Using TDR 36-17 Underst anding TDR 36-17 Running TDR and Dis pl aying the Result s 36-17 Using Deb ug Com.
Cont ent s xxx Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Copyin g Configur ation Fi les By Usin g FTP B-1 1 Prepa ring to Down load or U plo ad a C onf igurat ion.
Content s xxxi Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 IGMP Snoopi ng Commands C-2 Unsuppor ted Globa l Conf ig uration Commands C-2 Inter face Comma nds C-3 Un.
Cont ent s xxxii Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Span ning Tre e C-9 Unsuppor ted Globa l Conf ig uration Command C-9 Unsuppor ted Inte rfac e Con figur.
xxxii i Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Preface Audience This gu ide i s f or t he ne twor king pr ofession al ma na ging the Cisc o Me tro E ther net (ME ) 340 0 Se rie s Ethern et Access switch, hereaft er referr ed to as the swi tc h .
xxxiv Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Preface Related Publi ca tions Inter acti ve exampl es use these con ventio ns: • T erminal sessions and system displays are in screen font. • Informa tio n y ou e nter is in boldf ace sc reen f ont.
xxxv Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Pre face Obtaining Docume ntation • Cisco Gigabit Ethernet T ransceiver Modules Compat ibility Matrix (not order able but available on Cisco.com) • Cisco 100-Me gabit Etherne t SFP Modules Comp atibility Ma trix (not order able but av a ilable on Cisco.
xxxvi Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Preface Docum ent ation Fe edback Nonregistere d Cisco.c om users can order technic al documen tation from 8:00 a.m . to 5:00 p.m. (0800 to 1700 ) PDT by calling 1 86 6 4 63-348 7 in t he U nite d State s and Ca nada , or el sewhere by calling 011 408 519- 5055.
xxxvi i Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Pre face Ob taining Technical Assistance Reporting Se curity Problems in Cisco P roducts Cisco is committ ed to deli vering secure produc ts. W e test our products internally before we releas e them, and we striv e to correct a ll vulnerabilities quickly .
xxxvii i Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Preface Obtain in g Technical Assis ta nce Note Us e t he Ci sco Prod uct Identi fication (CPI ) to ol to loc ate your pr odu ct s er ial n umb er bef ore subm itt ing a web or phon e request for service.
xxxix Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Pre face Ob ta ining Additional Publications and Information Obtaining Ad ditional Public ations and In formation Informa tion ab out Cisco pro ducts, tec hn ologie s, and net wor k solutions is available from various onlin e and printe d source s.
xl Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Preface Obtainin g Addi ti ona l Publicat io ns and Info rmatio n.
C HAPTER 1-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 1 Overview This chap ter pro vides these topics about the Cis co Metro Ether net (ME) 3400 Series Ethernet .
1-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Ch ap ter 1 Ov er vi ew Feature s The swi tch h as thes e featu res: • Performa nce Feat u res, pa ge 1- 2 • Man.
1-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 1 Overview Features • IGMP f ilte ring for con trolling the se t of mu lticast grou ps to which hosts on a.
1-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Ch ap ter 1 Ov er vi ew Feature s • Cisco IOS File System (IFS) for provi ding a single interf ace to all f ile sy.
1-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 1 Overview Features VLAN Fea tur es • Support fo r up to 100 5 VLANs for assigni ng users to VLA Ns associ.
1-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Ch ap ter 1 Ov er vi ew Feature s • Configuration file secu rity so that onl y authe nticated and author ized user.
1-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 1 Overview Features • W e ighted tail d rop ( WTD) a s the conge stion- av oidance m echanis m for mana gi.
1-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Ch ap ter 1 Ov er vi ew Default Set t ings After I nit i al Switch Conf iguratio n • Protocol-Inde pendent Multica.
1-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 1 Overview Default Settings After Initial Switch Configuration If you d o not c onfi gure the switch a t all, the Cisc0 ME 3 400 switch oper ates with the def ault se ttings sho wn in Ta b l e 1 - 1 .
1-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Ch ap ter 1 Ov er vi ew Default Set t ings After I nit i al Switch Conf iguratio n T unneli ng • 802.1Q tu nne ling (re qu ire s metro I P acc ess or m etro ac cess imag e) Disabled Chapter 13, “ Configuring IEEE 802.
1-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 1 Overview Network Configuration Examples Network Config uration E xamples This se cti on pr ovides ne twor.
1-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Ch ap ter 1 Ov er vi ew Netwo rk Conf igurati on Ex ample s denial -of -service attac ks are a vo ided. T he Cis co ME swit ch als o pro vides mecha nisms such as p ort securi t y and IP Sour ce Guar d to pro tect again st MAC or IP spoofing.
1-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 1 Overview Network Configuration Examples Layer 2 VPN Application Enterprise c ustomers need n ot only high band width, b ut also the a bility to e x tend their pri vate ne twork across the s ervice p rovider’ s shared infrastructure.
1-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Ch ap ter 1 Ov er vi ew Netwo rk Conf igurati on Ex ample s Multi-VRF CE Application A VPN is a collect ion of si tes sharing a common r outing tab le.
1-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 1 Overview Where t o Go Next Where to Go Next Before conf iguring the switch, re vie w these sections for s.
1-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Ch ap ter 1 Ov er vi ew Where to Go Nex t.
C HAPTER 2-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 2 Using the Command-Line Interface This c hapte r descr ibes t he Cisc o IOS comm and-li ne in terface ( CLI) and how to use it to configure your Cisco ME 3400 Eth ernet Acc ess switch.
2-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Unders tan ding Comm and Mode s For more detail ed info rmat ion on the command mode s, see the c omma nd refe rence g uide for th is re lease .
2-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 2 Using the Comm a nd-Line In terface Understa nding the Hel p System Understandin g the Help Syste m Y ou can enter a qu es t ion ma rk (? ) at th e s y s tem pr om p t to d is p lay a lis t of co mm an d s a v ailab l e f or eac h comma nd mode .
2-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Unders tan ding no and de fault Fo rms of Comm ands Understandin g no and def ault Fo rms of Comma nds Almos t e v ery co nf iguration comma nd also has a no form.
2-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 2 Using the Comm a nd-Line In terface Using Com mand History Changing the Command Hist ory Buffer Size By default, the switch records ten command lines in its history b uf fer .
2-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Using E diting Feature s Using Editing Fea tures This secti on descri bes the ed iting fea tures tha t can help you ma nipul ate the com mand line .
2-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 2 Using the Comm a nd-Line In terface Using Edit ing Featu res Press Esc Y . Recall the ne xt b uf fer entry . The buf fer co ntains only the last 10 items that you have deleted or cut.
2-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Searching and F iltering O utput of show and more Com man ds Editing C ommand Lines that Wrap Y o u can use a w rapa ro und f ea ture for c om mands tha t ext end b eyond a si ngle li ne o n the sc reen .
2-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 2 Using the Comm a nd-Line In terface Acce ssi ng th e C L I Accessing the CLI Y o u can ac cess the CL I t hro ugh a c ons ole co nne ctio n, thro ugh T e lnet , or by u s ing th e browser .
2-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Access ing the CLI.
C HAPTER 3-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 3 Assigning the Switch IP Address and Default Gateway This chap ter de scribe s ho w to creat e the initial.
3-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigning the Switch IP Address and Default Gateway Assign ing Swi tch Info rmatio n • Initial izes the fla sh f ile sys tem on the system boar d. • Loads a default operating sy stem softw are image into memory and boot s the switc h.
3-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Assigning Switch Information These sec tions co.
3-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigning the Switch IP Address and Default Gateway Assign ing Swi tch Info rmatio n Figure 3-1 shows th e sequen ce of mess age s that ar e e xchanged betw een the DHCP c lient an d the DHC P server .
3-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Assigning Switch Information Configuring DHCP-B.
3-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigning the Switch IP Address and Default Gateway Assign ing Swi tch Info rmatio n If you did no t speci.
3-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Assigning Switch Information Note If the switch is act ing a s the relay de vic e, co nf igure th e int erfac e as a r outed port.
3-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigning the Switch IP Address and Default Gateway Assign ing Swi tch Info rmatio n After obtaini ng its .
3-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Assigning Switch Information DNS Ser ver Conf iguration The DNS server ma ps the TF TP server name tftpserver to IP addre ss 10.
3-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigning the Switch IP Address and Default Gateway Checking and Saving th e Run ning Confi gura tion T o remov e the switch IP address , use the no ip address interfa ce con figuratio n command .
3-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Chec king and Savin g the Ru nnin g Co nfig ur.
3-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigning the Switch IP Address and Default Gateway Modifyin g th e Startup Config uration session-timeou.
3-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Modifying the Startup Configuration Default Boot Configuration Ta b l e 3 - 3 shows the d efault bo ot configu ratio n.
3-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigning the Switch IP Address and Default Gateway Modifyin g th e Startup Config uration Booting Manua lly By default, the swit ch automati cally boo ts; howe ver , you c an configure it to manu ally boot.
3-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Modifying the Startup Configuration T o return to the default setting, use the no boot system globa l c onfigurat ion com ma nd.
3-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigning the Switch IP Address and Default Gateway Scheduli ng a Re load of the S oft w are Image Y o u can c hange t he sett ings of t he environmen t variables by acc essing the boo t load er or by using Cisco IOS comman ds.
3-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Schedul ing a Rel oad of the Sof tware Ima ge .
3-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 3 Assigning the Switch IP Address and Default Gateway Scheduli ng a Re load of the S oft w are Image Displa.
C HAPTER 4-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 4 Configuring Cisco IOS CNS Age nts This chap ter des cribes how t o conf igure the Ci sco IOS CNS agents on the Cisco ME 3400 switch. Note For complete confi guratio n informatio n for the Cisco Conf igurati on Engine, see th is URL on Cisco.
4-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 4 Configurin g Cisco I OS CNS Agent s Unders tan din g Cisco Conf ig urat ion Engin e Software Figur e 4-1 .
4-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 4 Configuring Cisco IOS CNS Agen ts Understanding Cisco Configuration Engine S oftware Event Servic e The Ci sco C onfigur ation E ngine uses t he Event Se rv ice f or re ceipt an d g en erati on of c on figurati on e ven ts.
4-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 4 Configurin g Cisco I OS CNS Agent s Unders tan din g Cisco Conf ig urat ion Engin e Software DeviceID Eac.
4-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 4 Configuring Cisco IOS CNS Agen ts Understanding Cisco IOS Agents Understandin g Cisco IOS Age nts The CNS e vent agen t feature allo ws the swit ch to publish and sub scribe to ev ents on the e vent b us and works with the Cisc o IOS agent.
4-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 4 Configurin g Cisco I OS CNS Agent s Configuring Cisco I OS A ge nts Incremental (Partial) Configur ation After t he ne twork is r unn ing, new serv ice s c an b e adde d by usi ng t he Cisc o IOS a gent .
4-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 4 Configuring Cisco IOS CNS Agen ts Configuring Cisco IOS Agents Note For more informatio n about running the setup program and cr eating templates o n the Configurat ion Engine , see the Cisc o Configuration En gine Inst allat ion and Setup G uide, 1.
4-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 4 Configurin g Cisco I OS CNS Agent s Configuring Cisco I OS A ge nts Enabling th e CNS Ev ent Agent Note Y ou mus t enabl e the CNS e vent agent on the switch before you en able the C NS con figu ration agent.
4-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 4 Configuring Cisco IOS CNS Agen ts Configuring Cisco IOS Agents Enabling th e Cis co IOS CNS Ag ent After enabling the CNS e vent agent, start the Cisco IOS CNS a gent on th e switch.
4-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 4 Configurin g Cisco I OS CNS Agent s Configuring Cisco I OS A ge nts Step 7 cn s id interfac e num { dns-.
4-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 4 Configuring Cisco IOS CNS Agen ts Configuring Cisco IOS Agents T o disab le the C NS Cis co IOS agent, use t he no cns conf ig initial { ip-address | hostname } global configurati on comm a nd.
4-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 4 Configurin g Cisco I OS CNS Agent s Displaying CNS Con figuration Displaying CNS Confi guration Y o u can use the privileged EXE C command s in Ta b l e 4 - 2 to displa y CNS c onfiguratio n in forma tion.
4-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 4 Configuring Cisco IOS CNS Agen ts Displaying CNS Configuration.
C HAPTER 5-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 5 Administering the Switch This chap ter describ es how to perform one-ti me operat ions to admini ster the Cisco M E 3400 Ethe rnet Access switch.
5-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the Syste m Time and Date Understand ing the S ystem Clock The heart o f the time serv ice is the system clock. This cl ock runs from th e moment the syste m starts up and keeps tra ck of the da te and tim e.
5-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Cisco’ s impleme ntation of N TP does not su pport stra tum 1 serv ice; it is not po ssible to connect to a radio or atom i c clock.
5-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the Syste m Time and Date Configuring NTP The switc h does not have a h.
5-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Configuring NTP Authentication This .
5-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the Syste m Time and Date Configuring NTP Associations An NTP associat .
5-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Configuring NTP Broadcast Service Th.
5-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the Syste m Time and Date Beginning in privileged EXEC mode, follow the.
5-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Creating an Access Gro up and Assign.
5-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the Syste m Time and Date T o remov e access control to the sw itch NTP servi ces, use the no ntp access-gr oup { query-only | serve -only | serve | peer } global con figuration com mand.
5-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e The specif i ed interface is u sed for the sour ce address for all pack ets sent to all destinations.
5-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the Syste m Time and Date This example shows ho w to manually set the system cl ock to 1:32 p.
5-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Configuring Summer Time (Daylight S.
5-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Configur ing a Sys tem Nam e and Prompt Beginning in privileged EX EC mode, fol .
5-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Confi guring a S ystem Name an d Prompt These sec tions co ntain this configur.
5-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Configur ing a Sys tem Nam e and Prompt These sec tions co ntain this configura .
5-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Creat ing a Bann er If you u se t he switc h IP ad dress a s its hostnam e, the IP a ddress i s used and no DNS query oc curs. I f you configure a ho stname that contai ns no periods (.
5-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Creating a Banner Configurin g a Mess age-of-the -Day Log in Bann er Y ou can create a sin gle o r mult ilin e m essage ban ner tha t a ppea rs on th e scr een when so meo ne lo gs in to the switch.
5-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Managin g the MAC Addre ss Table Configurin g a Login B anner Y o u can co nfigure a log in banne r to be displ aye d on all conn ec ted ter mina ls.
5-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the MAC A ddre ss Table These sec tions co ntain this configura tion i.
5-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Managin g the MAC Addre ss Table If the switch is runnin g the metro IP acc ess or metr o acces s image, you can disabl e MA C address learnin g on a per-VLAN basis.
5-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the MAC A ddre ss Table Beginn ing in pr iv ileged EXEC mode, follo w .
5-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Managin g the MAC Addre ss Table Beginning i n privileged E X EC mo de , follo.
5-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the MAC A ddre ss Table T o disable the sw itch from se nding MAC address notificati on traps, use th e no snmp-ser ver ena ble traps mac-notification global con f igura tion co mman d.
5-25 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Managin g the MAC Addre ss Table Beginning i n privileged EX EC mo de , follo .
5-26 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the MAC A ddre ss Table • If you add a uni cast MA C address as a st.
5-27 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Adminis ter ing the Switch Managin g the MAC Addre ss Table Foll ow these gui delines when d isabling MA .
5-28 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 5 Administering the Switch Managin g the ARP Table Displaying A ddress Table Entries Y o u can displa y the.
C HAPTER 6-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 6 Configuring SDM Templates This chapte r describes ho w to conf igure the Switch Data base Management (SDM ) templates on the Cisco ME 3400 Ether net Access switch.
6-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 6 Configuring SDM T emplates Conf igu rin g th e Swi tch SDM T empl ate Ta b l e 6 - 1 sho ws the approxim ate number of each resourc e supported in e ach of the two te mplates for a switch r unning the metro IP access image.
6-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 6 Configuring SD M Te mplates Config uring t he Swit ch SDM Te mplate • Do not use the def ault tem pla te if you do not ha ve routing enabled on you r switc h.
6-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 6 Configuring SDM T emplates Display ing the SDM Tem p lates This e x ample sho ws how to conf igure a switch w ith the layer -2 templa te.
C HAPTER 7-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 7 Configuring Switch-Based Authentication This chapte r describes ho w to conf igure switch-b ased authentica tion on the Cisco ME 3400 switch.
7-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Protecting A ccess to Privileged EXE C Comman ds Protecting Access.
7-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Prote c ting Acce ss t o Priv i lege d EX EC Co mman ds Setting o r Changin g a Static Enab le Pa ssword The en able password control s access to the privileged EXEC mode.
7-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Protecting A ccess to Privileged EXE C Comman ds Protecting En abl.
7-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Prote c ting Acce ss t o Priv i lege d EX EC Co mman ds If bo th the en able and e nable sec ret pas sword s are de f ined, us ers must enter th e enable s ecret p asswo rd.
7-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Protecting A ccess to Privileged EXE C Comman ds T o re-ena ble pa ssword r ecovery , us e th e service pass word- reco v ery global con figuration com mand.
7-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Prote c ting Acce ss t o Priv i lege d EX EC Co mman ds Configuring Us ername and P assword Pairs Y o u can co nfigure usernam e and password pairs, wh ich are loca lly stored on the switc h.
7-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Protecting A ccess to Privileged EXE C Comman ds Configuring Multiple Privilege Level s By default, the Cisco IO S software has two modes of passwor d security: use r EXEC and privileged EXEC.
7-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Prote c ting Acce ss t o Priv i lege d EX EC Co mman ds When y ou set a command to a pr i vile ge le vel, all co mmands whose s yntax is a subs et of th at com mand are al so set to th at le vel.
7-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controlling Sw itch Acce ss w ith TACACS+ Logging into and Exitin.
7-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with TACACS+ Figur e 7 -1 T ypical .
7-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controlling Sw itch Acce ss w ith TACACS+ TACACS+ Ope ration When a use r attempts a sim ple ASCII login by authent icating to a switch using T A CA CS+, this process occurs: 1.
7-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with TACACS+ Configuring TACACS+ This se ction de scri bes how to c onfigure yo ur swi tch to su ppo rt T A CA C S+.
7-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controlling Sw itch Acce ss w ith TACACS+ Beginn ing in pr iv ile.
7-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with TACACS+ authe nticate users; if that m ethod fails to resp ond, the software selects the next a uthenti cation m ethod in the method list.
7-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controlling Sw itch Acce ss w ith TACACS+ T o disa ble A AA, u se t he no aaa new-model glo bal co nfigurat ion co mma nd.
7-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with TACACS+ T o disable au thoriz ation , use t he no aaa aut horizati on { network | exec } method1 gl obal c onfigurat ion comm an d.
7-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Controlling Switch Acc.
7-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS RADIUS is not suitable in these netw ork security situations: • Multipr otocol acce ss en vironmen ts.
7-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Configuring RADIUS This se ctio n de scri bes how to c onfigure yo ur sw itch to su ppo rt R ADI US.
7-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS Y ou identify RADIUS security ser vers by the ir hostname or IP address, host name and specif ic UDP port numbers, or their I P addre ss and specific UD P port num bers.
7-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Step 3 radius-server h.
7-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS T o remove th e specifie d RADIUS server , use the no radius-serv e r host hostname | ip- address global configurati on comm a nd.
7-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Beginn ing in pri vilege d EXEC mode, follo w th ese steps to conf ig ure login authenticat ion.
7-25 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS T o disa ble A AA, u se t he no aaa new-model glo bal co nfigurat ion co mma nd.
7-26 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Be ginning in pri v il.
7-27 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS T o remove th e specifie d RADIUS server , use the no radius-serv e r host hostname | ip- address global configurati on comm and.
7-28 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Beginn ing in pri vile.
7-29 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS Configuring Settings fo.
7-30 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS For ex ample, this A V.
7-31 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS Configuring the Switch .
7-32 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controllin g Sw itch Acce ss with Kerb eros Controlling Switch Ac.
7-33 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with Kerberos This soft ware rel ea.
7-34 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Controllin g Sw itch Acce ss with Kerb eros Kerberos Operation A .
7-35 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with Kerberos Authenticating t o a B oundary S witch This se cti on de scri bes t he first laye r of se cu rity t hroug h w h ich a re mo te u ser must p ass.
7-36 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Configur ing the Switc h fo r Local Au thentica tion and A uthori.
7-37 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Configuring the Switch for Secure Shell T o disa ble A AA, u se t he no aaa new-model glo bal co nfigurati on comm a nd.
7-38 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Conf igu rin g th e Swi tch for S ec ure S hel l Understand ing SSH SSH is a pr otocol that p rovides a s ecur e, rem ote co nnection to a device.
7-39 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Configuring the Switch for Secure Shell Configuring SSH This .
7-40 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Conf igu rin g th e Swi tch for S ec ure S hel l T o delete the RSA ke y pair , use the cr ypto k ey zer oiz e rsa global configur ati on c om mand.
7-41 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuri ng Sw itch-Ba sed Auth entication Configuring the Switch for Secure Shell T o return to the def ault SSH contr ol paramete rs, use the no ip ssh { tim eout | authenti cation- ret ries } global configurat ion comm and.
7-42 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 7 Configuring Switch-Based Authentication Conf igu rin g th e Swi tch for S ec ure S hel l.
C HAPTER 8-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 8 Configuring IEEE 802.1x Port-Based Auth enticat ion This ch ap ter desc ribe s how to c onfigure IEEE 8 02.1x por t-ba sed aut hent icat ion on th e Cisco M E 3 400 Ether net Acce ss switch.
8-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Unders tanding IE EE 802.
8-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuri ng IEEE 802. 1x Port-Ba sed Auth entication Underst anding I EEE 8 02.
8-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Unders tanding IE EE 802.
8-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuri ng IEEE 802. 1x Port-Ba sed Auth entication Underst anding I EEE 8 02.
8-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Unders tanding IE EE 802.
8-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuri ng IEEE 802. 1x Port-Ba sed Auth entication Underst anding I EEE 8 02.1x P ort-Based Authent ication Figur e 8-3 Multiple Hos t Mode Exampl e Using IEEE 802.
8-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Unders tanding IE EE 802.1x Port-Ba sed Au th enticati on Using IEEE 802.1x with VLAN Assignment The RADIUS s erv er sends the VLA N assign ment to con fig ure the switch port.
8-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuri ng IEEE 802. 1x Port-Ba sed Auth entication Configur ing IEEE 802.1x Auth enticat ion Configuring IEEE 802.1x Authentication These sec tions co ntain this configura tion info rmat ion: • Default IE EE 8 02.
8-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Configur ing IEEE 802 .1x Authen ticatio n IEEE 802.1x Configuration Guidelines These ar e the IE EE 802.
8-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuri ng IEEE 802. 1x Port-Ba sed Auth entication Configur ing IEEE 802.1x Auth enticat ion • Y o u can co nfigure IEEE 802.1x on a private-VLAN por t, but do not configure IE EE 802.
8-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Configur ing IEEE 802 .
8-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuri ng IEEE 802. 1x Port-Ba sed Auth entication Configur ing IEEE 802.1x Auth enticat ion T o delete the specif ied RADIUS serv er , use the no ra dius -server hos t { hostn ame | ip-address } global configurati on comm a nd.
8-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Configur ing IEEE 802 .
8-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuri ng IEEE 802. 1x Port-Ba sed Auth entication Configur ing IEEE 802.
8-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Configur ing IEEE 802 .1x Authen ticatio n T o return to the default retransmissio n number , use the no dot1x m ax-req interf ace configu ration comm and.
8-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuri ng IEEE 802. 1x Port-Ba sed Auth entication Configur ing IEEE 802.1x Auth enticat ion Configuring the Host Mode Beginn ing in pri vilege d EXEC mode, follo w these steps to allo w multiple hosts (clients) on an IEEE 802.
8-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Configur ing IEEE 802 .1x Authen ticatio n Configuring IEEE 802.1x Accounting Enabling AAA sy stem accounting wi th IEEE 802.
8-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuri ng IEEE 802. 1x Port-Ba sed Auth entication Displayi ng IEEE 802.1x Statistics and Status Displaying IEEE 802.1x Statistics an d Status T o display I EE E 802 .
8-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 8 Configuring IEEE 802.1x P ort-Based Aut hentica tion Displaying IEEE 802.
C HAPTER 9-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 9 Configuring Interface Cha racteristics This ch apter d efines the type s of interfa ces on the Cis co ME 340 0 Ether net Acc ess switch an d desc ribes ho w to conf igure th em.
9-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Unders tan ding Inte rfa ce Type s Port-Based VLANs A VLAN is a switched netwo rk that is logically segmented b y function, team, or application, witho ut reg ard to the physic al location of the user s.
9-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Unde rsta ndi n g In t erf ac e Ty p es Note Whe n you put an int.
9-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Unders tan ding Inte rfa ce Type s the y are enabled . Dynamic acc ess ports o n the switch are as signed to a VLAN b y a VLAN Membership Policy Server (V MPS).
9-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Unde rsta ndi n g In t erf ac e Ty p es Note En ter ing a no swit.
9-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Unders tan ding Inte rfa ce Type s EtherChann el Port Groups EtherC hannel port groups treat multip le switch por ts as one switc h port.
9-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Using Inte rface C onfigu ration Mo de When the metro IP access ima ge is running on the switch, routin g can be enabled on the switch.
9-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Using I nterface Configu ration Mode Note Y ou do not n eed to add a s pace betwee n the interf ace ty pe and interf ace number .
9-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Using Inte rface C onfigu ration Mo de When usin g the interf ace.
9-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Using I nterface Configu ration Mode Configur ing and Us ing Inter f ace R ang e Mac ros Y ou can crea te an inte rface range macr o to aut omatically select a range of i nterf aces fo r conf igur ation.
9-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Configuring Ethernet Interfaces • All inter faces defined as i.
9-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Configur ing Ethernet Int erfaces Default Ethernet Interface Config.
9-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Configuring Ethernet Interfaces Configuring Us er Netwo rk and N.
9-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Configur ing Ethernet Int erfaces Beg i n n i ng i n p riv i l e ge.
9-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Configuring Ethernet Interfaces Speed and Duplex Configuration G.
9-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Configur ing Ethernet Int erfaces Use the no spee d and no duplex interf a ce c onf iguration comman ds to re turn th e inte rface to th e def ault speed and duple x settin gs (autone gotiate ).
9-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Configuring Ethernet Interfaces Configuring IEEE 802.
9-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Configur ing Ethernet Int erfaces Configuring Auto-MDIX on an Inter.
9-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Configuring Ethernet Interfaces This exam pl e s h ows how to en.
9-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Configur ing Layer 3 In ter faces Configuring Laye r 3 Interfa ces The Ci sco 3 400 M E sw itch mu st be runn i ng th e me tro IP acc ess i mage to su pport Lay er 3 i nterfac e s.
9-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Confi guring the S ystem MTU T o remo ve an IP a ddress f rom a n interf ace, u se the no ip address interf ace con fig uratio n command .
9-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Monito rin g and Mai nt aining th e In terfaces Note If Layer 2 Gig.
9-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring In te rface Charac teristics Monitoring and Maintaining the Interfaces Monitoring Interface S.
9-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 9 Configuring Interface Characteristics Monito rin g and Mai nt aining th e In terfaces Clearing and Resett.
C HAPTER 10-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 10 Configuring Command Mac ros This cha pter d escrib es how to configu re a nd appl y co mm an d m acr os o n th e Cisc o 3400 M E swi tch.
10-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 10 Configuring Command Macro s Conf igu rin g Com mand Macr os Configuring Co mmand Macros Y o u can cre ate a new com mand macro or use an exist ing mac ro as a te mplat e to cre ate a new macr o that is speci fic to your appli cation.
10-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 10 Configuring Comman d Macro s Conf iguring Command Macros • Some CLI c ommands ar e specif ic to cer tain inte rface types.
10-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 10 Configuring Command Macro s Conf igu rin g Com mand Macr os Applyi ng C omman d Mac ro s Beginning i n p.
10-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 10 Configuring Comman d Macro s Displaying Command Macros Y o u can del ete a glob al macr o-applie d configurati on on a swit ch only by ente ring the no versi on of ea ch comm and th at is in t he macro.
10-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 10 Configuring Command Macro s Displaying Comma nd Macros.
C HAPTER 11-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 11 Configuring VLANs This c hapt er d escri b es how to c onfigure norm al -ra nge V LAN s (V L AN IDs 1 to 100 5) and extended-ra ng e VLAN s ( VLA N I Ds 10 06 to 4094) o n th e Cisc o M E 34 00 Ethe rne t A cce ss swi tch .
11-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Unders tan ding VLAN s Figure 11-1 shows an exam ple of V L ANs segmented into l ogica lly defined n etwor ks. Figur e 1 1 -1 VLAN s as Logica lly Defined N etwor ks VLANs are of ten assoc iated with IP su bnetw orks.
11-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Unde rst an din g VLA Ns Supporte d VLANs VLANs are id en tified wit h a num be r fro m 1 t o 4094. V LAN IDs 1 002 thr oug h 1 005 are r es erved fo r T o ken Ring and FDDI VL ANs.
11-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Unders tan ding VLAN s • Ring number fo r FDDI and T rCRF VLAN s • Pa rent VL AN n.
11-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Unde rst an din g VLA Ns For more de tail ed definitions of ac cess a nd t runk mo des a nd the ir f uncti ons, se e T able 11-4 on page 11-1 5 .
11-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Creating and M odifyin g VL ANs • UNI co mmunity VLAN—Lo cal switchi ng is all ow ed among UNIs on the switc h that belong to t he same UN I commu nity VL AN.
11-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Creati ng and Modi fying VLANs These sec tions co ntain VLAN con figuration info rmat.
11-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Creating and M odifyin g VL ANs VLAN Configuration Guidelines Foll ow th ese guidelines when crea ting and modifyi ng VLANs in your netw ork: • The switc h supports 100 5 VLAN s.
11-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Creati ng and Modi fying VLANs Creating or Modifyin g an Et hernet VLAN T o access VLAN con fig uration mode, enter the vlan global con figura tio n co mma nd wi th a VL AN ID.
11-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Creating and M odifyin g VL ANs T o delete a VLAN, use the no vlan vlan -id global con figuration comm a nd. Y ou c annot dele t e VLAN 1 or VLAN s 1002 to 100 5.
11-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Creati ng and Modi fying VLANs T o return an interfac e to its default conf igura tion, use the defaul t interface interface-id interface configurati on comm a nd.
11-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Creating and M odifyin g VL ANs Configuring UNI VLANs By default , every VLAN co nfigured on t he swit ch i s a U N I iso l ate d VL A N.
11-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Creati ng and Modi fying VLANs Configuring UNI VLANs By def ault, e very VLAN c reated on the switch is a UNI isola ted VLAN. Y ou can c hange th e conf igura tion to UNI commu nity VLAN or to a pri vate VLAN or RSP AN VLAN.
11-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Displa ying VL ANs Displaying VLANs Use the show vlan privi leged EXE C command to display a list of all VLANs on the switch, including extended -range V LANs.
11-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Config uri n g VL AN Tr unk s • T o enable trunki ng, use the switchport mode trunk interface configurat ion comm and to chan ge the interf ace to a trunk.
11-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Configur ing VLAN Trunk s Default Layer 2 Ethernet Interface VLAN Configuration T ab le 11-5 shows th e de fault Lay er 2 E ther ne t i nte rface VLA N co nfigurat ion.
11-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Config uri n g VL AN Tr unk s Configuring a Trunk Port Beginning i n privileged EX EC mode , foll ow these s te ps t o con figure a port as an IE EE 80 2.
11-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Configur ing VLAN Trunk s Note VLA N 1 is the default VLAN on all trunk ports in all Cisco sw itches, an d it has previously been a requir ement tha t VLAN 1 always be ena bled on every trunk link.
11-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Config uri n g VL AN Tr unk s Configuring the Native VLAN for Untagged Traff ic A tru nk por t configu red w it h IE EE 80 2.1Q ta gging c an r ece ive both tag ge d and un tag ged tr affic.
11-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Configur ing VLAN Trunk s Load Sharing Using STP Port Priorities When two ports on the same switch form a l oop, the switch use s the STP port priori ty to decide which port is enab led an d which port is in a blocki ng state.
11-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Config uri n g VL AN Tr unk s Follow the same steps on Switch B to configure the tru.
11-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Configur ing VLAN Trunk s Beginn ing in pri vileged EXEC mode, follo w these steps to.
11-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Configuring VMPS Configuring VMPS The VL AN Q ue ry Protoc ol (V QP) su ppor ts dy n.
11-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Configuring VMPS If the sw itch recei ves an a cces s-de nied response from the VMPS, it continue s to block traffic to and from the host MA C address.
11-25 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Configuring VMPS VMPS Configuration Guidelines These guide li nes and re stric tio n.
11-26 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Configuring VMPS Configuring Dynamic-Access Ports on VMPS Clients Cautio n Dynamic -acce ss p ort VLA N m em bersh ip i s for e nd stati ons or h ubs c onnec ted to en d sta tions.
11-27 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Configuring VMPS Changing the Reconfirmation In terval VMPS clien ts period ical ly reconfirm t he VLA N mem bership in format ion re ceived from the VMPS.
11-28 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Configuring VMPS • VMPS Actio n—the result of t he most recent reco nfir mation atte mpt.
11-29 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLA Ns Configuring VMPS Figur e 1 1 -5 Dyn amic P ort VLAN M embership Con figur ation Primar y VMPS Ser ver 1 Catalyst 6500 series Secondar y VMPS Ser ver 2 Catalyst 6500 series Secondar y VMPS Ser ver 3 172.
11-30 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 11 Configuring VLANs Configuring VMPS.
C HAPTER 12-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 12 Configuring Private VLANs This ch apter d escrib es how to configure p riv ate VLAN s on the C isco ME 3400 E thernet Ac cess swit ch.
12-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Private VLANs Unders tan din g Pri vate VLANs Types of P rivate VLANs a nd Private-VL AN Ports Pri vate VLANs partition a r egular VLAN do main into subdomains.
12-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Privat e VLA Ns Unde rs tan din g Priv at e VLA Ns • Isolate d—A n iso lat ed p ort is a host po rt th at be longs t o an is ola ted seco nda ry V LAN .
12-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Private VLANs Unders tan din g Pri vate VLANs IP Addressin g Scheme with Private V LANs Assi.
12-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Privat e VLA Ns Confi guring P rivate VLANs Private VLANs and Unicast, Broadcast, and Multic.
12-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Private VLANs Configur ing Priv at e VLANs • Conf iguring a La yer 2 Inte rface as a Pri v.
12-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Privat e VLA Ns Confi guring P rivate VLANs Secondary and Primary VLAN Conf iguration Foll ow these gui delines when conf iguring pri vate VLANs: • Y o u use VLA N configur ation m ode to configur e priv ate VLA Ns.
12-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Private VLANs Configur ing Priv at e VLANs • When a fra me is Layer 2 fo rwar ded within a pri vat e VLAN, the s ame VLAN map i s a pplied at the receiving and sending side s.
12-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Privat e VLA Ns Confi guring P rivate VLANs Limitations with Other Features When conf igurin.
12-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Private VLANs Configur ing Priv at e VLANs Configuring and Associating VLANs in a Private V.
12-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Privat e VLA Ns Confi guring P rivate VLANs When you as sociate s econdary VLANs with a primary VLAN, note this syntax in format ion: • The seco ndary_vla n_list par ameter canno t contain spac es.
12-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Private VLANs Configur ing Priv at e VLANs Configur ing a Lay er 2 In ter face a s a P riv .
12-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Privat e VLA Ns Confi guring P rivate VLANs Configur ing a Lay er 2 In ter fac e as a Priv ate- VLAN Prom isc uous P ort Y o u can con figure only NNI s as pr om iscuo us po rts.
12-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Private VLANs Configur ing Priv at e VLANs Mapping S econd ary VLAN s to a Primary VLAN Lay.
12-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Privat e VLA Ns Monitoring Private VLANs Monitoring Private VLANs T ab le 12-1 shows the pri vileged EXEC commands for monitoring pri vate-VLAN ac tiv ity .
12-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 12 Configuring Private VLANs Monito rin g Private VLAN s.
C HAPTER 13-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 13 Configuring IEEE 802.1Q and Layer 2 Protocol Tunneling V irtual pri vate ne tworks (VPNs) p rovide en t.
13-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEEE 802. 1Q and Layer 2 P rotocol Tu nneling Unders tanding IE EE 802.1Q Tunnel in g Custome r traff ic tagged in th e normal way with appropr iate VLAN IDs comes from a n IEEE 802.
13-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEE E 80 2.1Q and L ay er 2 Protocol Tun neling Understanding IEEE 802.
13-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEEE 802. 1Q and Layer 2 P rotocol Tu nneling Configur ing IEEE 802 .1Q Tunnel ing Configuring IEE E 802.1Q Tunneling These sec tions co ntain this configura tion info rmat ion: • Default IE EE 802.
13-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEE E 80 2.1Q and L ay er 2 Protocol Tun neling Configuring IEEE 802.1Q Tunneling These are some wa ys to solv e this p roblem: • Use ISL tru nks betw een core switches in the servi ce-provi der network.
13-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEEE 802. 1Q and Layer 2 P rotocol Tu nneling Configur ing IEEE 802 .1Q Tunnel ing IEEE 802.1 Q Tunn eling and Oth er Featu res Although IEEE 802.
13-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEE E 80 2.1Q and L ay er 2 Protocol Tun neling Configuring IEEE 802.1Q Tunneling Use the no switchport mode dot1q- tunnel int erface c onfi guration c ommand to return the port to the def ault state of ac cess.
13-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEEE 802. 1Q and Layer 2 P rotocol Tu nneling Unders tanding L ayer 2 Pro tocol Tunn eling U.
13-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEE E 80 2.1Q and L ay er 2 Protocol Tun neling Un derstandi ng Layer 2 P rotocol Tun neling.
13-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEEE 802. 1Q and Layer 2 P rotocol Tu nneling Configur ing Layer 2 Prot oco l Tunne ling For exam ple, in Figure 13- 6 , Customer A has two switc hes in the same VLAN that are connected through the SP network.
13-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEE E 80 2.1Q and L ay er 2 Protocol Tun neling Configu ring Laye r 2 Protoco l Tunnel ing address. These do uble-ta gged packets have the metro VL AN tag of 40, as well as an inne r VLAN tag (for e xample, VLAN 100).
13-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEEE 802. 1Q and Layer 2 P rotocol Tu nneling Configur ing Layer 2 Prot oco l Tunne ling • The switc h supports P AgP , LA CP , and UDLD tunneling for emula ted poin t-to-poi nt network topologi es.
13-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEE E 80 2.1Q and L ay er 2 Protocol Tun neling Configu ring Laye r 2 Protoco l Tunnel ing .
13-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEEE 802. 1Q and Layer 2 P rotocol Tu nneling Configur ing Layer 2 Prot oco l Tunne ling Sw.
13-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEE E 80 2.1Q and L ay er 2 Protocol Tun neling Configu ring Laye r 2 Protoco l Tunnel ing .
13-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEEE 802. 1Q and Layer 2 P rotocol Tu nneling Configur ing Layer 2 Prot oco l Tunne ling Us.
13-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEE E 80 2.1Q and L ay er 2 Protocol Tun neling Configu ring Laye r 2 Protoco l Tunnel ing .
13-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 13 Configuring IEEE 802. 1Q and Layer 2 P rotocol Tu nneling Monito rin g and Maint ain ing Tunnel ing Statu s Monitoring and Main taining Tun neling Sta tus T ab le 13-2 shows the pri vileged EXEC comma nds for monitoring and maint aining IEEE 802.
C HAPTER 14-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 14 Configuring STP This chapt er desc ribes how to configure the Sp anni ng T ree Protocol (ST P) on por t-base d VLANs on t he Cisco ME 3 400 Et hernet Access switc h.
14-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures • Spanning -Tree Modes and Pr ot ocols, pa g.
14-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Unders tanding Spanni ng-Tree Featu res Note The switch sends kee paliv e messages (t o ensure the connecti on is up) only on inter faces that do not hav e small form-fa ctor pluggable (SFP) m odules.
14-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures • A des ignated switc h for eac h LAN se gment is se lected. The d esignated swi tch incur s the lo west path cost whe n forwardi ng packets from that LAN t o the root switch.
14-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Unders tanding Spanni ng-Tree Featu res Each L aye r 2 inte rface o n a swit ch using sp.
14-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures When t he spanni ng-tree al gori thm place s a Layer 2 spannin g-tre e interf ace in the forwa rding st ate, t his process oc curs: 1.
14-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Unders tanding Spanni ng-Tree Featu res Forwarding State A Layer 2 interface i n the forwa rding state forwar ds frames. The inte rface ente rs the fo rwardin g state from the learning st ate.
14-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures When t he spann ing-tr ee top ology is calc ulated based on de fault par amete rs, th e pat h bet ween source and destinat ion e nd stati ons in a swit ched ne twork mi ght not be id eal.
14-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Unders tanding Spanni ng-Tree Featu res Accelerated Aging to Retain Connectivity The default for aging dy namic addr esses is 5 minu tes, the defaul t setting of th e mac address-table aging-time g lo bal configur ation c om mand.
14-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures Supporte d Spa nning-Tree Ins tances In PVST+ or rapi d-PVST+ mo de, the swi tch suppor ts up to 128 spann ing-tre e instance s.
14-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Configuring Sp anni ng-Tree Features These sec t.
14-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s Spannin g- Tr ee Co nf igura tion Guideli ne s .
14-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Changing the Spa nning-Tree M ode. The sw itch s upports th ree spanning -tree mo des: PV ST+, ra pid PVST +, o r MSTP .
14-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s T o return to the d efault se tting, use the no spanning-tr ee mode g lobal configurati on comma nd.
14-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Note If your net work consist s of swi tches tha.
14-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s Configur ing a Se co ndar y R oot S witch When you con figure a switch as the secondary root, the switc h priori ty is modified from t he default value (32768 ) to 28672.
14-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Beginn ing in pri vileg ed EXEC mode, follo w these steps to confi gure the port prior ity of an NNI.
14-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s Configuring Path Cost The spanni ng-tr ee path c ost defaul t v alue i s derived from the med ia speed of an i nterface (N NI or port chan nel of mult iple NNI s).
14-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res T o return to the default setting, use the no spanning-tr ee [ vl an vl an-id ] co st in terface co nfiguration comman d.
14-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s Configuring S pannin g-Tree Timers T ab le 14-4 descr ibes th e timer s that af fect the entire spannin g-tree perfor mance.
14-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Configuring the Forwarding -Delay Time fo r a VLAN Beginning i n privileged E XEC mo de , fol low these s teps t o con figure t h e for war ding -de lay ti me for a VLAN.
14-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 14 Configuring STP Displaying the Spannin g-Tree Stat us Displaying the Sp anning-Tre e Status T o display.
C HAPTER 15-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 15 Configuring MSTP This chapte r describes ho w to config ure the Cisco impl ementation of the IEEE 802.1s Multi ple STP (MSTP) on the Cisco ME 3400 Ethe rnet A ccess swi tch.
15-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Unders tan din g MSTP Understandin g MSTP MSTP , whi ch uses RSTP for ra pid conver gen.
15-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Unde rsta ndi n g MS TP All MST instances with in the same reg ion share the same protocol timer s, but eac h MST instance has its own topology para meters , such as root switch ID, ro ot path cost, and so fort h.
15-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Unders tan din g MSTP Figur e 15-1 MS T Regions, IST Mas te rs, and the CS T Root Figure 15-1 does n ot sh ow additional MST instance s for eac h region.
15-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Unde rsta ndi n g MS TP maximu m v alue. When a switch r ecei ves thi s BPD U, i t decr emen ts the r ecei ved rem ainin g ho p coun t b y one and propagate s this v alue as the r emaining hop count i n the BPDUs it generate s.
15-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Unders tan din g RSTP If all the le gac y switches o n the link are RSTP switches, they c an process MS TP BPDUs as if they are RSTP BPDUs .
15-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Understa nding RST P T o be consistent with Cisco STP implement ations, this guide docu ments the port state as blo c king instead of discar ding .
15-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Unders tan din g RSTP The switc h lea rns the link t ype from the por t dup lex mode: a fu ll- dup lex port is consid ered to have a poi nt-to-po int co nnectio n; a half-du plex port is co nsidered to h av e a shared connec tion.
15-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Understa nding RST P Figur e 15-3 Sequence of Eve nts Dur ing Rapid Con ver gence Bridge Protoco l Data Unit Format an d Process ing The R STP BP DU for mat is th e sam e as t he IEEE 802.
15-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Unders tan din g RSTP The RSTP does not have a separate topol ogy chan ge notificati on (TCN) BPDU . It uses the topology change (T C) flag to sho w the to pology cha nges.
15-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Confi guring MST P Featu res • Propagat ion—When an RSTP switch re ceives a TC mes.
15-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Configur ing MSTP F eatures Default MSTP Configuration T ab le 15-3 shows the de fault M ST P configur ation .
15-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Confi guring MST P Featu res of the MST regions mu st contain th e CST root, and al l .
15-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Configur ing MSTP F eatures T o return t o th e default MST r egion configur ation , use the no spanning-tree mst conf iguration global conf iguration c ommand.
15-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Confi guring MST P Featu res If an y root switch for the specif ied instance has a switch p riority lo wer than 24576, the switc h sets its o wn prior ity to 4096 less than the lo west switch priority .
15-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Configur ing MSTP F eatures Configur ing a Se co ndar y R oot S witch When you c onfig.
15-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Confi guring MST P Featu res Configuring Port Priority If a loop o ccurs, the MST P uses the port prio rity when selectin g an NNI to pu t into the forwardi ng state .
15-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Configur ing MSTP F eatures Configuring Path Cost The MSTP path cost default va lue is deri ved from the me dia speed of an NNI. I f a loop occu rs, the MS TP uses cost when selecting an interfa ce to put in the forw arding stat e.
15-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Confi guring MST P Featu res Configuring the Switch Priority Y ou can conf igure the switch prior ity and make it more likely that th e switch will be chosen as the root switch.
15-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Configur ing MSTP F eatures Beginn ing in pri vileg ed EXEC mode, follo w these steps to conf igure the hello time for al l MST instances.
15-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Confi guring MST P Featu res Configuring the Maxi mum-Aging Time Beginning in privileged EX EC mode, fol low these steps to con figure the maxi mum- aging tim e for all MST inst ance s.
15-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Configur ing MSTP F eatures Specifying the Link Type to Ensure Rapid Transitions If yo.
15-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Displaying the MST Configuration and Status T o r e start the prot ocol mi grat ion proc ess on a spe cific inte rface , use the clear spanning -tr ee detecte d-pr otocol s interface in terface-id privileged EXEC c omma nd.
15-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 15 Configuring MSTP Displaying the MST Configu rat ion and Status.
C HAPTER 16-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 16 Configuring Optional Spannin g-Tree Features This c hapter descri bes how to con figure opt ional spa nning-t ree f eatures on th e Cisco ME 3400 Eth ernet Access s witch.
16-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 16 Configurin g Optiona l Spann ing-Tree Featu res Unders tan ding Opti on al Spann ing -Tree Fe at ures U.
16-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Understan ding Optio nal Spanni ng-Tr ee Features The BPDU guard feat ure pr ovides a secur e response t o in valid configurati ons becau se you must manually p ut the in terface back in service.
16-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 16 Configurin g Optiona l Spann ing-Tree Featu res Unders tan ding Opti on al Spann ing -Tree Fe at ures I.
16-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Configurin g Optional Spanni ng-Tree Fe atures Configuri.
16-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 16 Configurin g Optiona l Spann ing-Tree Featu res Configur ing Optiona l Spanning- Tree Fea tures Beginn ing in pri vile ged EXEC mode, follo w these steps to enab le Port Fast.
16-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Configurin g Optional Spanni ng-Tree Fe atures Cautio n .
16-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 16 Configurin g Optiona l Spann ing-Tree Featu res Configur ing Optiona l Spanning- Tree Fea tures Y o u c.
16-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Configurin g Optional Spanni ng-Tree Fe atures T o disabl e the Ethe rChan nel gu ard f eature, use the no spanning-tre e etherchannel guard misconf ig global configurat ion comm and.
16-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 16 Configurin g Optiona l Spann ing-Tree Featu res Displaying the Spannin g-Tree Stat us Note Y ou canno t ena bl e bo th loo p g ua rd a nd roo t gu ar d at th e sam e t ime .
C HAPTER 17-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 17 Configuring Flex Link s This cha pter d escrib es how to configure Flex L inks, a p air of i nte rface s o n th e Cisco M E 34 00 sw itch that are used to provide a mutual ba ckup.
17-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 17 Configuring Flex Links Configur ing Flex L inks port 2 (the back up link) an d switch C is not for warding tra f f ic. If port 1 goes down, port 2 comes up and starts forwarding traffic to switch C.
17-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 17 Configuring Fl ex L inks Configur ing Flex Links • A back up lin k do es not h ave to be the sa me t y pe (Fa st Et hern et , G igabi t E the rne t, or p or t ch an nel) as the a ctive link.
17-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 17 Configuring Flex Links Monito ring Flex L inks Monitoring Flex Link s T ab le 17-1 shows th e privileged E X EC co mm an d f or m oni tor ing Fl ex Li nk c onfigurat ion .
C HAPTER 18-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 18 Configuring DHCP Features and IP Source Gua rd This ch apt er descri bes how to configur e DHC P snoopi ng and t he o ption-82 d ata in sertion featu res on the Cisco ME 34 00 Eth erne t A cce ss wi tch.
18-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 18 Configuri ng DHCP Fe atures and IP So urce Gua rd Unders tan din g D HCP Feature s DHCP Server The DHCP server as signs IP a ddresse s from specified address poo ls on a switch or r outer to DHCP clients a nd manag es them .
18-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 18 Configuring DH CP Features and IP Sou rce G uard Understa nding DHCP Fe atures The s witch d rops a DHCP.
18-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 18 Configuri ng DHCP Fe atures and IP So urce Gua rd Unders tan din g D HCP Feature s Figur e 18-1 DHCP Re.
18-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 18 Configuring DH CP Features and IP Sou rce G uard Understa nding DHCP Fe atures In the port field of th e circu it ID subopt ion, the port numbers st art at 3.
18-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 18 Configuri ng DHCP Fe atures and IP So urce Gua rd Configur ing DHCP Fe at ures This is the format of th.
18-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 18 Configuring DH CP Features and IP Sou rce G uard Config uring DHC P Features Default DHCP Configuration T ab le 18-1 shows the de fault DH CP co nfiguration.
18-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 18 Configuri ng DHCP Fe atures and IP So urce Gua rd Configur ing DHCP Fe at ures • Before co nfiguring the DHCP sn ooping inf ormatio n optio n on your switch, be sure to configure t he de vice t hat is actin g as the DHCP serv er .
18-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 18 Configuring DH CP Features and IP Sou rce G uard Config uring DHC P Features Specifying the Packet F orw.
18-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 18 Configuri ng DHCP Fe atures and IP So urce Gua rd Configur ing DHCP Fe at ures Enabling DHC P Snoo pin.
18-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 18 Configuring DH CP Features and IP Sou rce G uard Config uring DHC P Features T o di sable DHCP sno oping, use the no ip dhcp snooping glob al con figuration co mman d.
18-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 18 Configuri ng DHCP Fe atures and IP So urce Gua rd Configur ing DHCP Fe at ures Enabling th e DHCP Sn o.
18-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 18 Configuring DH CP Features and IP Sou rce G uard Displaying DHCP Snooping Information Displaying DHCP S.
18-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 18 Configuri ng DHCP Fe atures and IP So urce Gua rd Conf igu ring I P Sourc e Guar d Source IP Address Filtering When IP so urce guard is enabled with this option, IP traf f ic is f iltered based on t he source I P address.
18-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 18 Configuring DH CP Features and IP Sou rce G uard Confi g uring IP S our ce Gu ard IP Source Gua rd Config uration Guidelin es Note IP sour ce guard is supporte d only when the metro ac cess or metro IP access image is running on the switch.
18-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 18 Configuri ng DHCP Fe atures and IP So urce Gua rd Display ing IP Sou rce Gua rd In formatio n T o disable IP source guard with source IP addr ess f iltering, use the no ip veri fy sou rce interface configurati on comm a nd.
C HAPTER 19-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 19 Configuring Dynamic ARP Insp ectio n This chapt er desc ribes how to configure dynam ic Addr ess Resolu tion Proto col inspec tion ( dynami c ARP inspectio n) on the Cisco ME 3 400 switc h.
19-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 19 Configur ing Dynami c ARP Inspec tion Unders tan din g Dynamic ARP Inspec tion Figur e 19-1 ARP Cache P oisoning Hosts A, B, and C are connected to the switch on interfaces A, B and C, all of which are on the same subnet.
19-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 19 Configuring Dy namic A RP In sp ectio n Understandi ng Dynami c ARP Inspect ion Y o u can configure dyna.
19-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 19 Configur ing Dynami c ARP Inspec tion Unders tan din g Dynamic ARP Inspec tion Dynamic ARP inspe ctio n.
19-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 19 Configuring Dy namic A RP In sp ectio n Configuring Dynamic ARP Inspection Y o u use the ip arp inspecti.
19-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 19 Configur ing Dynami c ARP Inspec tion Configur ing Dynam ic ARP Insp ect ion Dynamic ARP In spectio n C.
19-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 19 Configuring Dy namic A RP In sp ectio n Configuring Dynamic ARP Inspection Configuring Dynamic ARP Inspection in DHCP Environments This pro cedure shows how to configure dynamic ARP insp ecti on when two switches supp ort th is feat ure.
19-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 19 Configur ing Dynami c ARP Inspec tion Configur ing Dynam ic ARP Insp ect ion T o disable dy namic ARP inspect ion, use t he no ip arp inspecti on vlan vlan-range globa l con figuration command.
19-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 19 Configuring Dy namic A RP In sp ectio n Configuring Dynamic ARP Inspection Step 3 permi t ip host sender-ip mac host sende r-mac [ log ] Permi t ARP pack ets fro m th e spec if ied host (Host 2).
19-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 19 Configur ing Dynami c ARP Inspec tion Configur ing Dynam ic ARP Insp ect ion T o remov e the ARP A CL, use the no ar p access-list global c onfiguration c ommand.
19-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 19 Configuring Dy namic A RP In sp ectio n Configuring Dynamic ARP Inspection For configurat ion gui delin.
19-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 19 Configur ing Dynami c ARP Inspec tion Configur ing Dynam ic ARP Insp ect ion Perfor ming Valid ation Chec ks Dynami c ARP inspection intercepts , logs, and d iscard s ARP pack ets with in valid IP-to-MA C addres s bindings.
19-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 19 Configuring Dy namic A RP In sp ectio n Configuring Dynamic ARP Inspection Configuring the Log Buffer W.
19-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 19 Configur ing Dynami c ARP Inspec tion Display ing Dyna mic ARP Insp ectio n In format ion T o return to the default log b uf fer settings , use the no ip arp inspection log-b uffer { entries | logs } global configurati on com mand.
19-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 19 Configuring Dy namic A RP In sp ectio n Displaying Dynamic ARP Inspection Information T o clear or disp.
19-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt er 19 Configur ing Dynami c ARP Inspec tion Display ing Dyna mic ARP Insp ectio n In format ion.
C HAPTER 20-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 20 Configuring IGMP Sno oping an d MVR This cha pt er descr ibes how to configure Inte rnet G roup Ma na g.
20-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Unders tan ding IGM P Snoo ping Note For mor e inf ormat ion on IP m ultica st a nd IGM P , see RFC 11 12 and RFC 223 6.
20-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Understanding IGMP Snooping Note IGM Pv3 join an d leave messages are not suppo rted on switc hes runnin g IGMP filtering or MV R.
20-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Unders tan ding IGM P Snoo ping The switc h hardware ca n distingui sh IGMP in format ion packets fr om other pa ckets for the mu lticast group.
20-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Understanding IGMP Snooping Leaving a Multicast Group The router sends periodic multicast general querie s, and the switch forwar ds these queries through all ports in the VLAN.
20-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Configuring IG MP Sn ooping IGMP Report S uppress ion Note IGMP report suppression is supported only when t he multicast query h as IGMPv1 and IGMPv2 re ports.
20-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Configuring IGMP Snooping Enabling or Disa bling IGM P Sn oopin g By default, IGM P snoopin g is globall y enab led on the swit ch.
20-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Configuring IG MP Sn ooping Configuring a Multicast Router Port T o a.
20-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Configuring IGMP Snooping Beginn ing in pri vile ged EXEC mode, foll.
20-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Configuring IG MP Sn ooping T o disabl e IGMP Immed iate Lea ve o n a VLAN, use the no ip igmp snooping vlan vlan- id immediate-lea ve global c onfigurati on com mand.
20-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Configuring IGMP Snooping Configur ing TCN-R elated C omman ds Thes.
20-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Configuring IG MP Sn ooping Beginn ing in pri vilege d EXEC mode, fo.
20-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Configuring IGMP Snooping Configuring th e IGMP S nooping Qu erier Follow these guideli nes wh en configuring t he IGMP snoo ping queri er: • Conf igure the VLAN in glob al conf iguration mode.
20-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Configuring IG MP Sn ooping This exam ple sh ows how to set the IGM P sn oop ing q ue rie r s ource a ddre ss to 10 .0.
20-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Displaying IGMP Snooping Information Displaying IGMP Snooping Infor.
20-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Unde rs ta n din g Mu ltic as t V LAN Reg i stra t io n For more inf orm ati on abou t t he keywords a nd option s in the se co mm an ds, se e the com ma nd refe renc e for th is rel eas e.
20-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Underst anding Multicast VLAN Registration this recei ver p ort and VLAN as a forwar ding destin ation of the specif ied multicast stream wh en it is recei ved from the multica st VLAN.
20-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Conf igu rin g MVR IGMP lea ve was rece iv ed. As soon as the lea ve mes sage is recei ved, the rece i ver po rt is remov ed from multic ast group me mber ship, whi ch speeds up leave laten cy .
20-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Configuring MVR MVR Configuration Guidelines and Limitations Foll ow these gui delines when conf iguring MV R: • Receiver ports can onl y be ac c ess ports; they cannot be tr unk p orts.
20-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Conf igu rin g MVR T o return the switch to its defa ult settin gs, use the no mvr [ mode | group ip-a dd ress | querytime | vlan ] global configurati on comm ands.
20-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Configuring MVR T o return the interfa ce to its default setti ngs, use the no mvr [ ty pe | immediate | vlan vl an-id | gr oup ] interf ace conf iguration com mands.
20-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Disp l ay in g MV R Info rma t ion Displaying MVR Information Y ou can display MVR information for th e switch or f or a spec ifie d interfa ce.
20-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Configuring IGMP Filtering and Throttling IGMP f iltering is applicab le only to the dynamic learnin g of IP multicast group addresse s, not static configurat ion.
20-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Con figur ing IGM P Fil ter in g an d Thr o tt li ng • permit : Spec ifie s that matc hing addresses are perm itted. • rang e : Specif ies a ra nge o f IP addre sses for the pr of ile.
20-25 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Configuring IGMP Filtering and Throttling Applying IGMP P rofil es .
20-26 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Con figur ing IGM P Fil ter in g an d Thr o tt li ng Beginning in pr.
20-27 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Sno oping and M VR Configuring IGMP Filtering and Throttling T o prevent the swi tc h .
20-28 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 20 Configuring IGMP Snooping and M VR Displaying IGMP Filterin g and Thro tt ling Co nfigurat ion Displayi.
C HAPTER 21-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 21 Configuring Port-Base d Traffic Control This chap ter de scribe s ho w to conf igur e the port-b ased tr af fic co ntrol fe atures on the Cisco ME 34 00 Ethernet Access switc h.
21-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port-Based Traffic Co ntro l Configuring Stor m Control Storm contro l use s one o f these m.
21-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port -B ased Tra ffic Control Configuring Storm Control Default Storm Control Configuration .
21-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port-Based Traffic Co ntro l Configuring Stor m Control Step 4 sto rm- con tr ol { broadcast.
21-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port -B ased Tra ffic Control Configuring Protected Ports T o disabl e storm co ntrol, use the no storm-control { broadcast | multicast | unicast } lev el interface configurati on comm a nd.
21-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port-Based Traffic Co ntro l Configuring Protected Po rts Protected Port Configuration Guide.
21-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port -B ased Tra ffic Control Configuring Port Blocking Configuring Po rt Blocking By default, the swi tch flo ods pa ckets wi th u nknown desti nat ion MAC addresses o ut of a ll po rt s.
21-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port-Based Traffic Co ntro l Configuring Port Security This e xample shows h ow to block uni.
21-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port -B ased Tra ffic Control Confi guring Port Securi ty • Dynam ic secure MA C address es—Th ese are dyn amically co nf igured, stored only in the addre ss tabl e, and r emo ved when the swi tch res tart s.
21-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port-Based Traffic Co ntro l Configuring Port Security • shutdown—a por t secur ity viola tion c auses the interfac e to beco me er ror-disabled and to s hut down immediatel y , and the port LED tur ns of f.
21-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port -B ased Tra ffic Control Confi guring Port Securi ty • When y ou en te r a maximu m .
21-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port-Based Traffic Co ntro l Configuring Port Security Step 6 switchport port-security [ maximum value [ vlan vlan-list | acces s ] (Opti onal) Set th e maximu m number of se cure MAC addresses for the interfa ce.
21-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port -B ased Tra ffic Control Confi guring Port Securi ty Step 8 switchport port-security [ mac-addre ss mac-ad dr ess [ vlan { vlan-id | { access }}] (Optiona l) En ter a secu re M A C a ddress fo r th e i nte rfac e.
21-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port-Based Traffic Co ntro l Configuring Port Security T o return the inter fac e to the de fault conditi on as not a secure p ort, use the no switchport port -security interf ace co nf igurati on com mand.
21-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port -B ased Tra ffic Control Confi guring Port Securi ty This e xa mple sho ws ho w to ena.
21-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port-Based Traffic Co ntro l Configuring Port Security T o disable por t securit y aging for all sec ure addr esses on a port , use the no switchport port-security aging tim e interfac e conf iguration comma nd.
21-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port -B ased Tra ffic Control Displayin g Port-Bas ed Traff ic Contr ol Setti ngs Displayin.
21-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 21 Configuring Port-Based Traffic Co ntro l Displaying Port-Base d Traffic Cont rol Settings.
C HAPTER 22-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 22 Configuring CDP This chapt er desc ribes how to configure Cis co Discovery Protocol (CDP) on t he Cisc o ME 3400 Ethe rnte Access switch.
22-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 22 Co nfigu ri n g CDP Conf igu rin g CD P Configuring CDP These sec tions co ntain this configura tion in.
22-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 22 Configuring CDP Configuring CDP Use the no form of the CDP commands to return to the def ault settings. This e xample sho ws how to conf igur e CDP characteri stics.
22-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 22 Co nfigu ri n g CDP Conf igu rin g CD P Disabling an d Enab ling CDP on a n Interfac e CDP is enabled by def ault on all supported inter faces to send and to rece iv e CDP information .
22-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 22 Configuring CDP Monitoring and Maintaining CDP Monitoring and Maintaining CDP T o m on ito r and m ainta in CDP on yo ur device, p erfor m one o r more of thes e t asks, beginnin g i n privileged EXEC mo de .
22-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 22 Co nfigu ri n g CDP Monito rin g and Mai nt aining CDP.
C HAPTER 23-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 23 Configuring UDLD This c hap ter d esc rib es how to configu re t he U n iDire ctio nal Lin k D et ecti on (UD LD) prot ocol o n th e Cisco ME 3400 Et her net A ccess sw itch .
23-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 23 Configuring UDLD Unders tan ding UDL D In norm al mode, UDL D detect s a unidirec tional li nk when f iber strand s in a fi ber -opt ic port are misconnecte d and the Layer 1 mechanisms do not de tect this misconnec tion.
23-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 23 Configuring UD LD Understand ing UDLD • Ev ent-dr iv en detection and echoin g UDLD re lies on echo ing as its detec tion m echanism .
23-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 23 Configuring UDLD Conf igu ring U DLD Configuring UDLD These sec tions co ntain this configura tion info .
23-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 23 Configuring UD LD Configur ing UDLD Enabling UDL D Globally Beginn ing in pri vilege d EXEC mode, follo .
23-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 23 Configuring UDLD Displa ying U DLD Statu s Resetting an Interface Disabled by UDLD Beginn ing in pri vil.
C HAPTER 24-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 24 Configuring SPAN and RSPAN This chap ter des cribes ho w to conf igure Switc hed Port Analyzer (S P AN) and Remot e SP AN (RSP AN) on the Cisco ME 3 400 Etherne t Access switc h.
24-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Understan din g SPA N and RSPAN These secti ons cont ain this co nceptu al in.
24-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Understandi ng SPAN and RS PAN Figur e 24-2 Example o f RSP AN Configur ation SPAN and RS PAN Conc epts a nd Terminology This secti on descri bes conce pts and te rminology associate d with SP A N and RSP AN configuration.
24-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Understan din g SPA N and RSPAN An RSP AN sour ce session is very similar to a local SP AN session, e xcept fo r where the pa cket s tream is directe d.
24-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Understandi ng SPAN and RS PAN • T rans mit (T x) SP AN—Th e go al of tra.
24-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Understan din g SPA N and RSPAN • It can b e any port type —for examp le, Et herCh an nel, Fast Ethe rn et, Giga bit Et herne t, us er networ k interfac e (UNI) , network nod e interfac e (NNI) , and so fort h.
24-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Understandi ng SPAN and RS PAN Destination Port Each local SP AN sessio n or .
24-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Understan din g SPA N and RSPAN RSPAN V LAN The RSP AN VLAN carr ies SP AN tra ff ic between RSP AN source and destination se ssions.
24-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Config uring SPAN and RSPAN • Ether Channel —Y o u can co nfigure an Eth erChann el gro up as a source po rt but not as a SP AN destinat ion po rt.
24-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Configuring SPAN and RSPAN Default SPAN and RSPAN Configuration T ab le 24-1 shows the de fault SP AN an d RS P A N c onfiguration .
24-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Config uring SPAN and RSPAN • Y o u can limi t SP AN traffic to specific VLANs by using the filter vlan keyword. I f a trunk p ort is being monitored , only traff ic on the VLANs specif ied with this ke yword is monitored.
24-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Configuring SPAN and RSPAN T o d elete a SP AN session, use the no mo nitor session session _number gl obal c onfigura tion c omm and.
24-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Config uring SPAN and RSPAN The mo nitoring of traffic receiv ed on port 1 is disabled, but traff ic sent from t his port co ntinue s to be monitored.
24-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Configuring SPAN and RSPAN T o d elete a SP AN session, use the no mo nitor session session _number gl obal c onfigura tion c omm and.
24-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Config uring SPAN and RSPAN Specifying VLANs to Filter Beginn ing in p ri vi.
24-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Configuring SPAN and RSPAN This example shows how to remov e any existing co.
24-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Config uring SPAN and RSPAN Configuring a VLAN as an RSPAN VLAN Create a n ew VL AN to be the RSP AN VLAN for the RSP AN session.
24-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Configuring SPAN and RSPAN T o delete a SP AN session, use the no monitor session sessi on_num ber glo ba l configur ation c om mand.
24-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Config uring SPAN and RSPAN Creating an RSPAN Destination Sessio n Y ou configu re the RSP AN destination session on a dif ferent switch; th at is, not the swit ch on which the source sess ion was configured.
24-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Configuring SPAN and RSPAN This example shows ho w to configure VLA N 901 as.
24-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Config uring SPAN and RSPAN T o delete an RSP AN session, use the no monitor session session_numb er global configurat ion comman d.
24-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 24 Configuring SPAN and RSPAN Display ing SPAN and RSPAN Status T o monitor all VLANs on the trunk port, use the no monitor session session_num ber filter vlan globa l configurati on comm a nd.
C HAPTER 25-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 25 Configuring RMON This c hapt er d escri bes how to c onfigure Re mo te Networ k Mo ni toring ( RMO N) on the C isc o M E 3400 Ethernet Access switc h.
25-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 25 Configuring RMON Conf igu ring R MON Figur e 25-1 Remot e Monit or ing Example The switc h supports t he.
25-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 25 Configuring RMON Confi guring RMON Default RMON Configuration RMON is disa bled by default ; no alarms or events are configured . Only RMON 1 is supp orted on the switch.
25-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 25 Configuring RMON Conf igu ring R MON T o disable an al arm, use the no rm on al arm nu mber global c onfigurat ion com mand on e ach al arm you configured .
25-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 25 Configuring RMON Confi guring RMON Collecting Group History Statistics on an Interface Y o u must first configure RM ON al arms an d events to di spla y colle ctio n i nfor ma tion.
25-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 25 Configuring RMON Displa ying RM ON Sta tus Collecting Group Ethernet Statistics on an Interface Beginn ing in pr iv ileged EXEC mode, follo w thes e steps to collect g roup Ethernet statistic s on an interf ace.
C HAPTER 26-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 26 Configuring System Message Logg ing This chapt er describes how to configure system messag e logging on the Cisco ME 3400 Ethe rnet Acc ess switch.
26-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing Configuring Sy stem Me ssage .
26-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Configuring Sys te m Message L ogging Co nfiguri ng System Message Logg ing This example shows a partial.
26-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing Beginning i n privileged EX EC mode , foll ow these s te ps t o d isab le messag e logg ing.
26-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Configuring Sys te m Message L ogging Co nfiguri ng System Message Logg ing The logging buffered globa l configur ation comm and c opies l ogging messa ges to a n inte rnal buffer .
26-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing is retu rned. Ther efore , unsolici ted messag es and deb ug command output ar e not inter sperse d with solicite d device o utput an d p rom pts.
26-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Configuring Sys te m Message L ogging Co nfiguri ng System Message Logg ing Enabling a nd Disab ling Time S tamps on Log M essages By default, log message s are not time-stam ped.
26-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing T o disable seq uence num bers, use the no service seque nce-numbers global configur ation co mmand.
26-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Configuring Sys te m Message L ogging Co nfiguri ng System Message Logg ing T ab le 26-3 descri bes the level ke ywords. I t a lso li sts t he co rrespo nding U NIX sy slog definition s from the most se vere le vel to the least sev ere le vel.
26-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing When the histor y table is f.
26-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Configuring Sys te m Message L ogging Co nfiguri ng System Message Logg ing Step 3 Mak e su re th e sy slog daem on re ads the ne w ch anges : $ kill -HUP `cat /etc/syslog.
26-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 26 Confi guring S ystem Message Logging Display ing the Log gi ng Configur ation Displaying the Log ging Configuration T o display th e loggi ng configur ation and th e conte nts of t he log buf fer , use the show logging pri vile ged EXEC co mmand.
C HAPTER 27-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 27 Configuring SNMP This chapt er describ es ho w to configure the Sim ple Network Mana gement Protocol (SNM P) on the Cisco ME 3400 Et her net A ccess sw itch .
27-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNMP Unders tan ding SNMP • Using SNMP to Access MIB V ariables, page 27-4 • SNMP Notif .
27-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNM P Underst anding SN MP T ab le 27-1 identifie s the charac teristics of the dif ferent combinations of secur ity models and le vels. Y o u must configure t he SNMP age nt to use the SNMP versio n supporte d by the manageme nt station.
27-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNMP Unders tan ding SNMP SNMP Agen t Fun ctions The SNMP a gent responds to SNMP manage r requests as follo ws: • Get a MIB v ariable—Th e SNM P ag ent be gins this functi on in response to a requ est from the NM S.
27-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNM P Underst anding SN MP SNMP Notifications SNMP allo ws the switch to send n otifica tions to SNMP manager s when p articular ev ents oc cur .
27-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNMP Conf igu rin g SNMP Configuring SNMP These sec tions co ntain this configura tion info .
27-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNM P Configuring SNMP When configur ing SNMP , follow thes e guideli nes: • When configuring an SNMP group , do not specif y a notify view .
27-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNMP Conf igu rin g SNMP Configuring Community Strings Y o u use the SNM P c om muni ty st rin g to define t he r ela tionshi p betw een t he SN MP mana ger and th e agent.
27-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNM P Configuring SNMP Note T o dis able a ccess for an SNMP c ommunity , set the commu nity s tring for th at com munity to the n ull string (do not enter a value for th e communi ty string ).
27-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNMP Conf igu rin g SNMP Step 3 s nmp- server group g r oupname { v1 | v2c | v3 { auth | no.
27-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNM P Configuring SNMP Configuring SNMP Notifications A trap manag er is a mana geme nt statio n that recei ves and process es traps. T raps are sy stem aler ts that the switc h gen erates wh en cert ain events occu r .
27-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNMP Conf igu rin g SNMP T able 2 7 -5 Switc h Notifica tion T ypes Notification T yp e Keyword Description bgp Gene rates Bo rde r Gateway Protocol (B GP) state c hange t ra ps.
27-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNM P Configuring SNMP Note Th oug h visibl e in the c om mand -l ine help stri ngs, t he cpu [ thr esho ld ], flash insertion, flash re moval, fru-ctrl , and vtp k eywords are not supp orted.
27-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNMP Conf igu rin g SNMP The snmp-serv er host co mmand s pecif ies which ho sts rec eiv e the notif ications.
27-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNM P Configuring SNMP Limiting TFTP Servers Used Through SNMP Beginning i n privileged EX .
27-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 27 Configuring SNMP Displaying SNM P Status This e xample shows h ow to allo w read-only access for all objects to members of access list 4 that use the coma ccess community string.
C HAPTER 28-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 28 Configuring Network Security with ACLs This c hapter de scribes h ow to configure network securi ty on .
28-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Unders tandin g A CLs which type s of t ra ff ic are f orward ed or bl ocked a t ro ut er int erfac es. For exampl e, you ca n all ow e-mail traffic to be forwarded but no t T elnet t raff ic.
28-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Unde rsta ndi n g AC Ls • When a VLAN map, input router A CL.
28-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Unders tandin g A CLs Figur e 28-1 Using A CLs to Contr ol T ra ffic t o a Netw or k When you apply a port A CL to a trunk port, the A CL filters tra ff ic on all VLANs present on the trunk port.
28-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Unde rsta ndi n g AC Ls As w ith p ort A CLs, t he sw itch exam ines A CLs ass oci ated wi th f eatur es co nfigur ed on a given in terface .
28-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls Some ACEs do not chec k Layer 4 info rmati on and th eref ore can be appl ied to al l packet f ragment s.
28-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs The switc h does not supp ort these Ci s.
28-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls IPv4 Access List Numbers The num ber you use to denote you r IPv4 ACL sho ws the typ e of access list that you ar e cre ating.
28-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs The f irst packet that tr iggers t he A CL causes a logg ing messa ge righ t a way , and subseq uent pac ket s are collec ted over 5-minut e intervals befo re they app ear or logge d.
28-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls This exampl e shows ho w to creat e a standard ACL to deny access to IP host 171 .69.1 98.
28-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs Beginn ing in pri vileg ed EXEC mode, follo w these steps to create an exte nded A CL: Command Purpo se Step 1 co nfi gure terminal Enter glob al configura tion mo de.
28-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls or access-list access- list-num ber.
28-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs Use the no a ccess-lis t a ccess-list-number gl obal conf igurat ion command to dele te the entire access list.
28-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls After c reating a numb ered e xtend.
28-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs T o remov e a named stan dard A CL, use the no ip access-list standard na me g loba l c onfiguratio n comm and.
28-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls This example shows ho w you can del.
28-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs Repeat the steps if you ha ve multiple items that you w ant in ef fect at dif ferent times.
28-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls This exampl e uses name d A CLs to perm it and deny the same traff ic.
28-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs Beginning i n privileged EX EC mod e, f.
28-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls Beginn ing in pr iv ilege d EXEC mo.
28-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs Hardware and Softw are Treatment of IP .
28-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls Use rout er ACLs to do this in one of two ways: • Crea te a stan dard ACL, and filter tr aff ic com ing to th e server from Port 1 .
28-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs Numbered ACLs In this e xampl e, netw ork 36.0.0.0 is a Class A netw ork whose second oc tet specif ie s a subnet; th at is, its subnet ma sk is 255.
28-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Conf iguri ng I Pv4 AC Ls The market ing_group A CL allo ws an y TCP T elnet traf fic to the destinatio n address and wildcar d 171.
28-25 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring IPv4 ACLs In this examp le of a name d A CL, t he.
28-26 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Creating Nam e d MAC Exten ded ACL s This i s a an exampl e of a lo g f or a n exte nded ACL: 01:24:23:%SEC-6-IPACCESSLOGDP:list ext1 permitted icmp 10.
28-27 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Creati ng Na med M AC Exte nde d AC L s Use the no mac access-list extended name global conf iguration co mmand to dele te the entir e A CL.
28-28 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Creating Nam e d MAC Exten ded ACL s Applying a MAC ACL to a .
28-29 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring VLAN Maps Configuring VLAN Ma ps This section descr ibes how to con figu re VLAN maps, which is the only way to con trol filte ring within a VLA N.
28-30 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Configur ing VLA N Maps VLAN Map C onfiguration Gu idelines F.
28-31 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring VLAN Maps Creating a VL AN Map Each VLA N map consi sts of an ordered ser ies of entri es.
28-32 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Configur ing VLA N Maps This exampl e shows how to c rea t e a V LAN map to pe rmit a packet. ACL ip2 permits UDP pack ets and any pack ets that m atch the ip2 A CL are fo rwarded.
28-33 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring VLAN Maps Switch(config)# mac access-list extende.
28-34 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Configur ing VLA N Maps Using VLAN Maps in Your Network These.
28-35 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Configuring VLAN Maps Switch(config)# ip access-list extended.
28-36 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Using VL AN Ma ps wi th Rout er AC Ls Step 2 Def ine a VLAN map usin g this A CL that w ill drop IP p acket s that matc h SER VER1_A CL and forwa rd IP packets tha t do not match the ACL.
28-37 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Using VLAN Maps with Router ACLs • Whene ver possible, try to write the A CL with all entries ha ving a single act ion e xcept for the f inal, default act ion of the ot her type.
28-38 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Using VL AN Ma ps wi th Rout er AC Ls Figur e 28-6 Applyin g ACLs o n S witched P ack ets ACLs and Routed Packe ts Figure 28-7 sho ws ho w A CLs ar e appl ied on route d pack ets.
28-39 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Configuring Net work Securi t y with ACLs Displaying IPv4 ACL Configu ration ACLs and Multicast Pa ckets Figure 28-8 shows ho w A CLs are applied o n pa ck ets that ar e r ep lic ated f o r IP m ul tica stin g.
28-40 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 28 Co n figuring Network Security w ith ACLs Display ing IPv4 ACL Co nfigurat ion Y ou can also d isplay info rmation abou t VLAN ac cess maps or VLAN f ilters.
C HAPTER 29-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 29 Configuring Control-Plane Sec urity This c hapter describe s the c ontrol -plan e sec urity fe ature in t he Cisc o ME 34 00 Et hernet Access switc h.
29-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 2 9 Con f igurin g C ontr ol-Pl an e Sec urity Unders tan din g Control-Plan e Security These ty pes of co.
29-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 29 Configuring Control -Pl ane Security Underst anding Con trol-P lane Secu rity The swit ch automatic ally alloca tes 27 control- plane secu rity policer s fo r CPU protectio n.
29-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 2 9 Con f igurin g C ontr ol-Pl an e Sec urity Configuring Cont rol-Plane Securi ty This exampl e s hows the defau lt police rs assigned to NN Is. Most pr otocol s have no po licers assi gned to NNIs.
29-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 29 Configuring Control -Pl ane Security Monitor ing Con trol-P lane Secu rity This exam ple sh ows how to set the CPU p rote ction t hresh old to 1000 0 b ps an d to verify the configurat ion.
29-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapte r 2 9 Con f igurin g C ontr ol-Pl an e Sec urity Monitorin g Control-Plane Security.
C HAPTER 30-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 30 Configuring QoS This chapte r describes ho w to conf igure quality of service (QoS) b y using the modular QoS comm and-lin e inte rface (C LI), or MQC, co mman ds on th e Cisco M E 340 0 Ether net Ac cess swi tch.
30-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Figur e 30-1 Modular Qo S CLI Model Basi c QoS inc ludes thes e acti ons.
30-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS Modular QoS CLI Modula r Q oS C LI (MQ C) a llo ws use rs t o cr ea te tra ffic po l icies a nd att ach t hes e po l icies t o int erfa ces .
30-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Step 3 Attach the t raf fi c polic y to a n interf ace.
30-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS Output Policy Maps Output policy ma p class ifi cation crit eria inc lude matchi ng a CoS, a DSCP , an IP precedence, or a QoS group values.
30-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Figur e 30-3 QoS Class ification La yers in Fr ames and P ack .
30-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS Y o u can mat ch more than on e cri terion for c lassificati on.
30-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS This example shows how to creat e a class map to match a C oS .
30-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS cs6 Match packets with CS6(precedence 6) dscp (110000) cs7 Match.
30-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Classification Based on QoS ACLs Packets can also be c lassified in input policy ma ps b ased on an A CL looku p.
30-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS T o communicat e an A CL classi f ica tio n t o an outp ut po lic y , you assig n a QoS n u mb er to sp ecif y pa ck ets at ingress.
30-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS The swi tch sup ports a maxim um of 2 56 uni que ta ble ma ps. Y ou ca n ente r up to 6 4 differen t map from – to entries in a ta ble map.
30-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS These sect ions de scri be the typ es of po l icing sup port ed.
30-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS After you creat e a table ma p, you co nfigure a po licy-map police r to use the table ma p.
30-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS After yo u conf igure the aggre gate policer , you creat e a policy map and an asso ciate d class map, associate the policy map wit h the aggr egate policer, and appl y the service policy to a port.
30-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS This exam ple shows how to use the priority with police comm .
30-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS Note Y ou c onfigure onl y one set ac tion wit h a table map in a class. Y ou ca nnot co nfigure any other set action in the same class a s a set action wi th table map.
30-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS This exam ple u s es a policy map t o re mark a p acket.
30-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS These sec tions co ntai n addi tiona l i nfor ma tio n abo ut s.
30-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Port S hapi ng T o configure po rt shapi ng ( a tran smit po .
30-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS Class-Based Weighted Fair Queuing Y ou can c onfigure cla ss-ba.
30-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Switch(config)# interface fastethernet 0/1 Switch(config-if)#.
30-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS Note When priority is configured in an output poli cy map witho.
30-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Congestio n Avoida nce and Q ueuing Conges tion av oidanc e u.
30-25 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Under sta n din g Q oS This e xam ple co nf ig ures class A to matc h DCSP values and a polic y map, PM1 . The DSCP v alues of 30 and 50 are ma pped to unique t hresho lds (32 and 64, resp ectively).
30-26 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS • A WTD qualif ier in the queue-lim it comma nd must be th e same as at le ast one ma tch qual ifie r in the asso ciated cl ass map.
30-27 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S Default QoS Configuration There ar e no po l icy ma ps, c lass ma ps, t abl e ma ps , o r poli cer s configu re d.
30-28 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS Creating IP Standard ACLs Beginn ing in pri vilege d EXEC mode.
30-29 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S Creating IP Exte nded ACLs Beginn ing in pri vileg ed EXEC mode, follo w these steps to create an IP ex tended A CL for IP traf f ic: Command Purpose Step 1 conf igure t erminal E nter g loba l c onfigurati on m ode .
30-30 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS T o delete an acces s list, u se the no access-list acc ess-list-numbe r global con figuration co mmand .
30-31 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S T o delete an acces s list, u se the no mac acces s-list exte nded access-list- name global con figuration comm and. This e xample sh ow s ho w to create a Laye r 2 MA C A CL with two permit sta temen ts.
30-32 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS Beginn ing in pr i vilege d EXEC mode, follo w these steps to .
30-33 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S Use t he no form o f the approp riate comm and to delete an existi ng cla ss map or r emove a ma tch cr iterion . This e xample sh o ws how to create access list 103 and co n f igure the class map calle d class1 .
30-34 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS Beginn ing in pr iv ilege d EXEC mode, follo w these steps to create a table map: T o delete a table map, use the no table- map ta ble-m ap-na me global con figurat ion co mm an d.
30-35 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S Attaching a Traffic Policy to an Interface Y o u us e th e service-p.
30-36 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS • When an input polic y map with only Laye r 2 classific ati.
30-37 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S Step 4 police { r ate-bps | cir cir-bps } [ bu rst -b y tes | bc b urst- bytes ] Def ine a policer for th e class of traf fic.
30-38 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS After you ha ve created an input polic y map, you attach it to an interfa ce in the input directio n. See the “ Attaching a T raff ic Policy to an Interf ace” section on pa ge 30-35 .
30-39 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S This exam ple sh ows how to use po licy-m ap c las s po lice c onfiguratio n m ode to set excee d ac ti on mark-do wn using tab le-maps.
30-40 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS Beginn ing in pri vileg ed EXEC mode, follo w these steps to create an aggre gate police r: After you have creat ed an aggregat e poli cer, you atta ch it to a n ingr ess port.
30-41 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S T o remove the specified aggr egate polic er fr om a p oli cy map, use th e no police ag gr egate aggr egate-poli cer-name pol icy m ap c onfigu ratio n m ode .
30-42 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS Use the no f or m of th e app r op r iate co m man d to d el e te a po l ic y map or t a ble ma p or rem o v e an assi gned CoS, DSCP , prec ede nce, or Q oS-gr oup value.
30-43 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S Configuring Output Policy Maps Y o u use o utput p olicy maps to m anag e conge stion avoidance, q ueuing, and sche dulin g of packe ts leaving the switch .
30-44 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS • Y o u can att ach only one output policy map per por t. • The maxi mum num ber of policy map s configured on t he switch is 256.
30-45 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S After you have created an outpu t policy ma p, you a ttach it to an egress port. See the “ Attaching a T raf f ic Polic y to an Interfac e” section on page 30-35 .
30-46 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS Configuring Output Pol icy Maps with Class-Based Shaping Y o u use the shape average policy-map cl ass configura tion co mmand t o configure traff ic shaping .
30-47 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S This exam ple s ho ws ho w to conf igure tra ff ic shaping for o utg.
30-48 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS After yo u hav e created the hier archical output poli cy map, you attach it to an e gress por t. See the “ Attaching a T raff ic Policy to an Interf ace” section on pa ge 30-35 .
30-49 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S Beginn ing in pri vileg ed EXEC mode, follo w these steps to confi gure a strict priority queu e: After you have created an outpu t policy ma p, you a ttach it to an egress port.
30-50 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS This exam ple sh ows how to configure the class out-class 1 as a stri ct priority queue so that all pack ets in that cl ass are sent bef ore an y oth er class of traf f ic .
30-51 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S Step 6 police { r ate-bps | cir cir-bps } Define a polic er for th e prio rit y cla ss of tr aff ic. • For ra te -b ps , specify a verage tra f f ic rate in bits per second (bps).
30-52 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS After you have created an outpu t policy ma p, you a ttach it to an egress port. See the “ Attaching a T raf f ic Polic y to an Interfac e” sect ion on pa ge 30-35 .
30-53 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Confi guring Qo S Configuring Output Pol icy Maps with Weighted Tail Drop W e igh ted tai l drop (WTD) adjust s the qu eue si ze (buffer size) assoc iate d with a t raffic class.
30-54 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rin g QoS After yo u have created an output policy map, you att ach i t to an egre ss port. Se e the “Configuri ng Outp ut Policy Maps” sect ion on page 30-4 3 .
30-55 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Displaying QoS Information Displaying QoS Information T o display QoS info rmat ion, use on e or more of the privileged EX EC comman ds in Ta b l e 3 0 - 2 .
30-56 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rat ion Exam ples for Poli cy Maps Configuration E xamples for Po licy M.
30-57 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Configuration Examples for Policy Maps This e xample co nf igures cla sses fo r input ser vice policies and def ine s three classe s of serv ice: gold, silv er , and bronze.
30-58 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rat ion Exam ples for Poli cy Maps This exam ple configu res a se cond o.
30-59 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Configuration Examples for Policy Maps This e xamp le conf igures a third outp ut serv.
30-60 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rat ion Exam ples for Poli cy Maps Modifying O utput Po licies and Chan .
30-61 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Configuration Examples for Policy Maps • Reattach the outp ut policy to the app ropriate ports. • T ake t he ports out of the shutdown state.
30-62 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rat ion Exam ples for Poli cy Maps This is the ov erall sequence of conf iguration: • Shut down all active ports. • Detach the outpu t policies fro m all F ast Ether net and Gigabit E thernet po rts.
30-63 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 30 Configuring Qo S Configuration Examples for Policy Maps These s teps acti v ate a ll appl icable Fas t .
30-64 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapt e r 30 Conf igur ing Q o S Conf igu rat ion Exam ples for Poli cy Maps.
C HAPTER 31-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 31 Configuring EtherChannels This cha pter describ es how to configure EtherCha nnels on La yer 2 an d Layer 3 ports on the Cisco ME 3400 Ethe rnet Acc ess swi tch .
31-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Unders tan ding Ether Channels EtherChann el Overview An EtherCh annel consi sts of individual Fast Ethe rnet or Giga bit Ethern et links bundled int o a single logical lin k as shown in Figu re 31 -1 .
31-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Understa nding Et herChann els Y o u can co nfigure an Ether Chann el in one of the se modes: Port Aggregation Prot oco l (P AgP), Link Aggregation C ont rol Pro toco l (L ACP), or On mo de.
31-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Unders tan ding Ether Channels Figur e 31 -2 Relationship of Ph ysical P o.
31-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Understa nding Et herChann els PAgP Modes T ab le 31-1 shows the use r-configurable Et herC ha nnel P A g P mo des f or the channel-group interfa ce configurat ion comm and on an NNI.
31-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Unders tan ding Ether Channels Link Aggreg ation Control Pro tocol The LACP is defi ned in IEEE 802. 3ad stand ard and ena bles Cisco sw itches to manag e Ethernet chan nels between switches th at conform t o the stan dard.
31-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Understa nding Et herChann els EtherChann el On Mode EtherC hanne l on mod e can b e us ed to m anua ll y configur e an Et herC hannel .
31-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Unders tan ding Ether Channels W i th desti nation-I P-addr ess-base d for.
31-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Config uring Et herCh annels Configuring Eth erChannels These sec tions co n.
31-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Configur ing Eth erChann els EtherChann el Configuratio n Guidelin es If imp rop erl y co nfigure d, so me Et her Chann el por ts are a utom atic all y disa bled to avoid network lo ops and othe r problem s.
31-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Config uring Et herCh annels • For Layer 2 EtherC hannels : – Assign all p orts in the Eth erChannel to the same VLAN, o r conf igure them a s trunks.
31-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Configur ing Eth erChann els T o remove a p ort fr om the Eth er Chann el gro up, us e t he no channel-group interface configurat ion comm and.
31-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Config uring Et herCh annels This example shows how to configure an EtherChann el.
31-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Configur ing Eth erChann els T o remove th e por t- ch an ne l, u s e the no interface port-channel port-channel-nu mber glob al configurati on comm a nd.
31-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Config uring Et herCh annels Step 5 chan nel-g roup channel-g roup -number .
31-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Configur ing Eth erChann els This example shows ho w to configure an Ethe rChannel .
31-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Config uring Et herCh annels Configuring the PAgP Learn Method and Priority Network devices are cla ssified as P AgP physic al lea rner s o r a gg regate-por t l ear ne rs.
31-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Configur ing Eth erChann els Beginning i n privileged E X EC mo de , foll.
31-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Config uring Et herCh annels Note LACP is only av a ilable on NN Is.
31-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Configur ing Eth erChann els T o return the LA CP system priority to the defa ult v alue, use the no lacp system-prio rity global configurati on comm a nd.
31-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Configuring Eth erCh annels Displaying EtherC hannel, P AgP, and LACP Status Displaying EtherCh annel, .
31-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 31 Confi guri ng EtherC hannel s Displaying Eth erChannel, PA gP, and LACP Status.
C HAPTER 32-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 32 Configuring IP Unicast Ro uting This chapt er describ es ho w to configure IP V ersi on 4 (IPv4) unicas t routing on t he Cisco ME 3400 Ethernet Access switc h.
32-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Unders tan din g IP Routing Understandin g IP Routing In some network en vironment s, VLAN s are associ ated wit h individual networks or subnetwork s.
32-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Steps f or Conf iguri ng Routi ng • Routers usi n g link -sta te pro tocols ma inta in a com plex d ataba se of network top ology , based o n the exc hange of link-state ad vertisem ents (LSAs) between routers.
32-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu ring I P Ad dres sing Configuring IP Addre ssing A required task.
32-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring IP Address ing Assigning IP Address es to Netwo rk Interface s An IP ad dress identif ies a locatio n to whi ch IP pa ckets can be sent.
32-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu ring I P Ad dres sing Use of Subnet Zero Subnetti ng with a subnet a ddress o f z ero is st ron gly disc ourag ed beca use of th e proble ms that c an arise if a network a nd a subne t have the same addr esses.
32-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring IP Address ing In Figure 32 -3 , the rou ter in network 128 .20.0 .0 is conne cted to subne ts 128.20.1.0 , 128.
32-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu ring I P Ad dres sing The swi tch can use these fo rms of addr ess reso lution : • Address Resolut ion Protoc ol (ARP) i s used to associa te IP ad dress wi th MA C addresses.
32-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring IP Address ing T o remove an entr y from t he ARP cach e, use t he no arp i p - a d d re s s h a rd w a re - a d d re s s t yp e gl obal conf iguratio n command.
32-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu ring I P Ad dres sing Enable Proxy ARP By default, the sw itch uses pro xy ARP to help hosts learn MA C addresses of hosts on ot her network s or subnets.
32-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring IP Address ing Default Gate way Another m etho d for loca ting ro utes is t o define a defaul t route r or default gat eway .
32-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu ring I P Ad dres sing If you chang e the maxadvertinterv al va .
32-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring IP Address ing Routers pro vide some protectio n from broadcast storms by limiting their ex tent to the local cable.
32-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu ring I P Ad dres sing Use the no ip directed -broa dcas t interfa ce con figurat ion co mm and t o disa ble tra nsla tion of dire c ted broadca st t o phy sica l br oadc asts .
32-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring IP Address ing Use the no ip helper -address int erfac e co nfigur ati on com ma nd to d is able th e for warding of b roa dca st pack ets to s pecif ic ad dresse s.
32-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu ring I P Ad dres sing T o be consid ered for floo ding, pa ckets mus t meet thes e cr iteria. (No te tha t thes e ar e the same cond itions used t o co nside r pack et forwar ding u sing I P helper addr esses.
32-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Enablin g IPv4 Unicast Routing Monitoring and Maintaining IP Addressi.
32-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g RI P Use the no ip routing global con figuration com mand to disa ble rout ing.
32-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring RIP These sec tions co ntain this configura tion info rma.
32-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g RI P Beginning in privileged EXEC mo de, foll ow these steps to enable and configure RIP: Command Purpose Step 1 conf igure t erminal E nter g loba l c onfigurati on m ode .
32-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring RIP T o turn of f the RI P ro uting proc ess, use the no r outer rip global configurati on comm and.
32-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g RI P Note In general, di sabling split horizon i s not reco mmended un less you are certain t hat your a pplicati on requires it to proper ly adv ertise r outes.
32-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring OS PF Configuring Split Horizon Router s conne cted t o .
32-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configuring OSPF The Cisco implementation conforms to the OSPF V ersion 2 specifications with these ke y features: • Definition of stub areas is suppor ted.
32-25 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring OS PF Area Authentication type: 0 ( no authen tication). Default c ost: 1. Rang e: Dis abl ed. Stub: No stub ar ea defined.
32-26 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configuring OSPF Configuring Basic OSPF Parameters Enabling OSPF require.
32-27 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring OS PF Use the no form of these comm ands to re mov e the conf igured par ameter v alue or return to the default value.
32-28 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configuring OSPF Rout e summariz ation is the cons olidati on of adv ertis ed addres ses into a si ngle summ ary route to be advertis ed by other areas.
32-29 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring OS PF Configuring Other OSPF Parameters Y ou can option ally confi gure other OSPF parameters in router conf iguration mode.
32-30 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configuring OSPF Changing LSA Gro up Pa cing The OSPF LS A gr oup pa cing featur e a llows the router to gr oup OSPF L SAs and pac e the refr eshing, check- summi ng, and a ging functions f or mo re efficient rout er use .
32-31 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Config uring OS PF T o return to the default v alue, u se the no timers lsa-gr oup-pacing ro uter c on figurat ion co mma nd .
32-32 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing EIG R P Configuring EIGRP Enhanc ed IGRP (E IGRP) is a Cisco p rop rieta ry enha nce d vers ion of the IGRP .
32-33 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring EIGRP • Arbitr ary route s ummari zation.
32-34 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing EIG R P Default EIGRP Configuration T ab le 32-7, Part 1 sho ws the defa ult EIGRP config uration. T able 32-7 , P ar t 1 Def ault EIGRP Conf igur ation Feature D e fault Se tting Auto summa r y Enabled.
32-35 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring EIGRP T o create an EIGRP rout ing process, yo u must enable EIGRP and asso ciat e networks. EIG RP sends updates to the interf aces in the specif ied networks.
32-36 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing EIG R P Configuring EIGRP Interfaces Other o pt iona l E IGRP pa rame ter s c an b e configure d on a n in terfa ce bas is.
32-37 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring EIGRP Configuring EIGRP Route Authentication EIGRP r oute.
32-38 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP Monitoring and Maintaining EIGRP Y o u can de lete nei ghbors fr om the neighbo r tabl e. Y ou can a lso di splay various EIG RP routing stati stics.
32-39 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP Figur e 32-4 EBGP , IBGP , and Multiple A ut onomous .
32-40 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP BGP V e rsion 4 suppo rts cla ssless inte rdomain ro uting (C IDR) so you can reduc e the size of you r routi ng table s by creat ing ag gregate rout es, res ulti ng in superne ts .
32-41 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP BGP confede ration iden tif ier/peers • Identifie r: Non e conf igured . • Peers: Non e identif ied.
32-42 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP Enabling BGP Routing T o e nable BGP r outing, you establis h a BGP rou ting proc ess and define the lo cal network.
32-43 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP The sw itc h supp ort s th e use of pr ivate AS num ber s, usual ly a ssign ed by ser vic e prov ide rs and given to systems whose r outes a re not advertised to external n eighbor s.
32-44 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP Use the no router bgp au tonomous-syste m globa l configura tion com mand to remove a BGP AS.
32-45 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP Managing Routing Polic y Change s Routing pol icies fo r a peer i nclude al l the con figurations tha t might affec t inb ound or ou tboun d routi ng table u pdates.
32-46 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP Configuring BGP Decision Attributes When a BGP speak .
32-47 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP 9. Prefer the route that ca n be reac hed thro ugh the cl osest IG P nei g hbor (t he lowest IGP metric).
32-48 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP Use the no form of ea ch comma nd to return t o the defau lt stat e.
32-49 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP Configuring BGP Filtering by Neighbor Y ou can filter.
32-50 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP Configuring Prefix Lists for BGP Filtering Y ou can u.
32-51 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP T o delete a pref ix list and a ll of its entries, use the no ip pref ix-list list-name global co nfiguration command.
32-52 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP Beginn ing in pri vilege d EXEC mode, follo w th ese .
32-53 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP Beginning in privileged E XEC mo de, use thes e c omma nds to con figure B GP pee rs: Command Purpo se Step 1 co nfi gure terminal En ter glob al configurat ion mode .
32-54 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP T o disable an exis ting B GP nei ghb or or ne ighb or pee r g rou p, use the neighbor shutdown router configurat i on comm and.
32-55 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP T o delete an ag gre gate en try , u se the no aggregate-address addr e ss mask r outer c onfiguration comma nd.
32-56 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP Configuring BG P Route Reflectors BGP requ ires tha t all of the IB GP speake rs be ful ly mesh ed.
32-57 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring BGP Configurin g Route Damp enin g Route f l ap da mp enin g is a B GP fe at ure de signed to min imize t he p rop agati on of f l apping rout es acro ss an interne twork.
32-58 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Conf igu rin g BGP Monitoring and Maintaining BGP Y ou can remo ve all c ontents of a p articular c ache, table, or databa se.
32-59 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring Multi-VRF CE Configuring Multi -VRF CE V irtua l Priv a te Networks (V PNs) provide a secu re way for custom ers to share ba ndwidth over an ISP backbon e network .
32-60 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configuring Mul ti-VRF CE sites partic ipate in the same VPN.
32-61 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring Multi-VRF CE This is the packet-fo rwarding proce ss in a.
32-62 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configuring Mul ti-VRF CE • Multi-VRF CE lets multip le customer s share t he same p hysical link between t he PE and t he CE.
32-63 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring Multi-VRF CE Use t h e no ip vrf vrf-name global con figu ration command to delete a VRF and to remov e all inter faces from it.
32-64 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configuring Mul ti-VRF CE Use t he no r o uter ospf pr ocess-id vrf vrf-nam e global con figuration c ommand t o disass ociat e the V PN forwarding table from the OSPF routing p rocess.
32-65 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring Multi-VRF CE Figur e 32-6 Multi-VRF CE Conf igur ation Example Configur ing Switch A On Switch A, enable routing and conf igure VRF .
32-66 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configuring Mul ti-VRF CE Switch(config)# interface gigabitethernet1/0/5.
32-67 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Configuring Multi-VRF CE Switch(config-router)# address-family ipv4 vrf vl1 Switch(config-router-af)# redistribute ospf 1 match internal Switch(config-router-af)# neighbor 38.
32-68 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configuring Mul ti-VRF CE Router(config-vrf)# exit Router(config)# ip cef Router(config)# interface Loopback1 Router(config-if)# ip vrf forwarding v1 Router(config-if)# ip address 3.
32-69 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Confi guring Protocol -Ind ependent Fe atures Configuring Proto col-Independ ent Features This secti on descri bes how to configure IP routing pro tocol -independ ent fea tures.
32-70 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing Protocol-I nde penden t Feature s detail pri vileged EXE C comm and ca n be u seful t o debug soft ware-f orwarded traffic.
32-71 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Confi guring Protocol -Ind ependent Fe atures Use the no maximum-paths router con figurati on comm and to rest ore the de fault value.
32-72 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing Protocol-I nde penden t Feature s Static rout es tha t po i.
32-73 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Confi guring Protocol -Ind ependent Fe atures When default in format ion is passed th rough a dy namic ro uting pro tocol, no fur ther con figuration i s required.
32-74 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing Protocol-I nde penden t Feature s Beginning in privileged E.
32-75 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Confi guring Protocol -Ind ependent Fe atures T o delete an entry , use the no route-map map tag global c onfiguration c ommand or the no match or no set route- map con f igurati on comm ands.
32-76 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing Protocol-I nde penden t Feature s Beginn ing in pr i vilege d EXEC mode, follo w these steps to contro l route redistrib ution.
32-77 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Confi guring Protocol -Ind ependent Fe atures W ith PBR, you class ify traf fic usi ng access con trol list s (A CLs) and then mak e traf fic go thr ough a dif ferent path.
32-78 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing Protocol-I nde penden t Feature s Enabling PBR By default, PBR is d isable d on t he sw itch.
32-79 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Confi guring Protocol -Ind ependent Fe atures Use the no route-map map-tag g l obal configura tio n com ma nd or t he no match or no set rou te-ma p conf iguratio n commands to delete an entry .
32-80 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing Protocol-I nde penden t Feature s Beginn ing in pri vileg e.
32-81 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Confi guring Protocol -Ind ependent Fe atures Use the no distr ibute-list in router con fi guratio n command to ch ange or c ancel a f ilter .
32-82 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Configur ing Protocol-I nde penden t Feature s Managing Authen tication Keys Ke y manageme nt is a meth od of co ntrolling a uthent ication keys used by routing protoc ols.
32-83 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unic as t Rou ting Monitoring and Maintaining the IP Network Monitoring and Maintaining the IP Network Y o u can remove all conte nts of a parti cular cache, ta ble, or data base.
32-84 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 32 Configuring IP Unicast Routing Monito rin g and Mai nt aining th e IP Ne twork.
C HAPTER 33-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 33 Configuring HSRP This ch apter descr ibes how to us e Hot Sta ndby Router Protoco l (HSRP) on th e Cisc.
33-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Unders tan din g H SRP HSRP provides hi gh network availability by providing redundan cy for IP traff ic fro m hosts on ne tworks.
33-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Unde rsta ndi n g HS RP Figur e 33-1 T ypical HSRP Configur ation Multiple HSRP The switch sup ports Mu ltip le H SRP (MHSRP), an e xten sio n of HSRP that a llo ws load sharing betw een two or more HSRP gr oups.
33-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Configuring HSRP Figu re 33- 2 M HSR P Load Sharing Configuring HSRP These sec tions co.
33-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Configur ing HSR P HSRP Configuration Guidelines Foll ow these guide lines when con figurin g HSRP: • HSRP ca n b e co nfigur ed on a m ax imum o f 32 VL AN or r out ing in te rface s.
33-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Configuring HSRP Use the no standby [ gr oup- number ] ip [ ip- addr ess ] inte rfa ce co nfigurat ion c omm and to disa ble HS RP . This example shows ho w to activ ate HSRP fo r group 1 on a port .
33-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Configur ing HSR P • The hig hest number ( 1 to 255 ) represe nts the hi ghest prior ity (most likely t o become the ac tiv e router ).
33-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Configuring HSRP Use the no standby [ gr oup-numbe r ] priority priority [ preempt [ de.
33-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Configur ing HSR P Configuring MHSRP T o enable M HSRP and lo ad ba lancing, you co nfigure two rou ters as ac tiv e routers for thei r groups, w ith virtual rou t ers as st andby rout ers.
33-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Configuring HSRP Beginning in privileged EXE C mo de , us e on e o r m ore of t hes e .
33-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Displaying HSRP Configu rations Enabling HS RP Sup port for ICMP Redirect M essage s IC M P ( In t e r ne t C o n tr o l Me s sa g e P r o to c o l ) redirect messages are automatically enab led on interfaces configured with HSRP .
33-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 33 Configuring HSRP Displaying HSRP Configu rations.
C HAPTER 34-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 34 Configuring IP M ulticast R outing This c hapt er d escri b es how to c onfigure IP mul tica st ro ut ing on the Cisco ME 3 400 Et herne t A cce ss switch .
34-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Unders tan ding Cisco ’ s Im plement at ion of IP Mu lticast Rout in .
34-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Unde rstanding Cisco’s Implementa tion of IP Multicast Routing IGMP.
34-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Unders tan ding Cisco ’ s Im plement at ion of IP Mu lticast Rout in .
34-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Unde rstanding Cisco’s Implementa tion of IP Multicast Routing switch es to a stati cal ly conf igu red RP th at wa s def ined with the ip pim r p-addr ess global configura tion command.
34-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Unders tan ding Cisco ’ s Im plement at ion of IP Mu lticast Rout in g Some multica st routing protocols m aintain a separate multicast r outing table and use it for the RPF check.
34-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring IP Multicast Routing Configuring IP Multicast Routing The.
34-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con fi gur ing IP Mu ltic ast R ou ti ng PIMv1 and PIMv2 Interop erabil.
34-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring IP Multicast Routing • If you have non-Cisco PIMv2 routers that ne ed to inter operat e with Cisco PIMv1 ro uter s and multilaye r switches, bo th Auto-RP and a BSR are required.
34-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con fi gur ing IP Mu ltic ast R ou ti ng T o disable multicasting, use the no ip multic ast-routing distribut ed gl obal configura tion com mand.
34-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring IP Multicast Routing Manually Assigning an RP to Multicast Groups This se cti on expla ins how to manu al ly co nfigure an RP .
34-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con fi gur ing IP Mu ltic ast R ou ti ng T o remov e an RP address , use the no ip pi m rp-addre ss ip-addr ess [ access-l ist-number ] [ override ] global configurat ion comm and.
34-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring IP Multicast Routing Adding A uto-RP t o an Existing Spa.
34-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con fi gur ing IP Mu ltic ast R ou ti ng T o remove the PIM device configur ed as t h e cand id ate R P , u se the no ip pim send-rp-announce interface- id global configu ration c omma nd.
34-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring IP Multicast Routing Filtering Incoming RP Announcement .
34-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con fi gur ing IP Mu ltic ast R ou ti ng This exam ple sh ows a samp l.
34-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring IP Multicast Routing T o remov e the PIM bord er , use the no ip pim bsr -border interf ace conf iguration comm and.
34-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con fi gur ing IP Mu ltic ast R ou ti ng T o remove the bounda ry , use th e no ip multicast boundary in terface conf igura tion comman d.
34-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring IP Multicast Routing This examp le shows ho w to configu re a candida te BSR, whi ch uses the IP a ddress 1 72.
34-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con fi gur ing IP Mu ltic ast R ou ti ng T o remo ve this de vice as a cand idate RP , use th e no ip pim rp-candidate interface-id global configurati on comm a nd.
34-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Confi guring Ad vanced P IM Feat ures Monitoring the RP Mapping Info.
34-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Configur ing Advan ced PIM Fea tures Figur e 34-3 Shar e d T re e and .
34-23 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Confi guring Ad vanced P IM Feat ures Delaying the Use of PIM S hort.
34-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Configur ing Advan ced PIM Fea tures T o return to the default setting, use the no ip pim spt-thre shold { kbps | infinity } global co nfigurati on comm and.
34-25 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring Optional IGMP Features Configuring Optio nal IGMP Featur.
34-26 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con f i gur ing Op ti o n a l IG M P Fea tu res Beginn ing in pr i vilege d EXEC mode, follo w these steps to conf ig ure the switch to be a m ember of a group.
34-27 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring Optional IGMP Features T o disable gro ups on an interfa ce, use the no ip igmp access-g roup interfac e conf iguration comman d.
34-28 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con f i gur ing Op ti o n a l IG M P Fea tu res T o return to the default setting, use the no ip igmp v ersion inter face con fig urat ion comman d.
34-29 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring Optional IGMP Features Changing the IGMP Q uery Timeo ut for IGMPv 2 If you are usi n g IGMPv 2 , you can spe cify the p eriod of time bef ore the swit ch takes over as the que rier for the interf ace.
34-30 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Con f i gur ing Op ti o n a l IG M P Fea tu res T o return to the default setting, use the no ip igmp query-max -resp onse-time interf ace conf igurati on comm and.
34-31 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring Optional Multicast Routing Features Configuring Optio na.
34-32 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Configur ing Optiona l Multic as t Routing Feat ures Limiting How Long an sdr Cache Entry Exists By default, en tries are ne ver deleted from the sdr cache .
34-33 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Configuring Optional Multicast Routing Features Figur e 34-4 A dministr atively -Scope d Boundar ies Y o u can d efine an ad minist rativ e ly-sco ped b oundary on a routed inter face for m ultica st group addr esses.
34-34 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Mon i tor in g an d Mai nt a in in g IP M ultic as t Rou ting T o remove the bounda ry , use th e no ip multicast boundary in terf ace conf igura tion comman d.
34-35 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Mu ltic ast Routing Monitoring and Maintaining IP Multicast Routing Y o u can displ ay i n forma tio n to le ar n r esour ce u t iliz ation a nd solve ne twork p rob lem s.
34-36 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 34 Configuring IP Multicast Routing Mon i tor in g an d Mai nt a in in g IP M ultic as t Rou ting.
C HAPTER 35-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 35 Configuring MSDP This ch apter descr ibes ho w to conf igure the Multicas t Source Disco very Proto col (MSDP) on the Cisco ME 3400 Ethe rnet Access sw itch.
35-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Unders tan din g MSDP MSDP Operation Figure 35-1 sho ws MSDP operati ng bet ween two MSD P peers . PIM uses MSD P as the st andard mechanis m to re gister a so urce with the RP of a domain.
35-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 35 Configuring MSDP Understandi ng MSDP Figur e 35-1 MSDP Running Be tween RP P eers MSDP Benefits MSDP has these benef its: • It break s up the shared mu lticast distr ib ution tree.
35-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Conf igu ring M SDP Configuring MSDP These sec tions co ntain this configura tion inf.
35-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 35 Configuring MSDP Configuring MSDP Figur e 35-2 Def ault MSDP P eer Netw or k Beginning in pr i vileged EXEC mode, fo llow these step s to specify a de fault MSDP peer .
35-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Conf igu ring M SDP T o remov e the def ault peer , use the no ip msdp default-peer ip- ad dress | name globa l c on figuration comm and.
35-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 35 Configuring MSDP Configuring MSDP Beginn ing in pri vileged EXE C mode, follo w these steps to enab le the c aching of source /group pairs. This procedur e is optional.
35-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Conf igu ring M SDP Requestin g Source Info rmation fro m an MSDP Peer Local RPs can send SA r eq uests and ge t i mmed iat e r esponse s f or a ll act ive sources fo r a given group.
35-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 35 Configuring MSDP Configuring MSDP Redistributing Sources SA message s ori ginat e on RPs to which sou rces have registered. By defau lt, a ny sour ce that regist ers with an RP is adv ertised.
35-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Conf igu ring M SDP T o remove th e filte r , use the no ip msdp redi stribut e globa l c onfigurati on com ma nd.
35-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 35 Configuring MSDP Configuring MSDP Filtering Source- Active R equest Messages By default, only switc hes tha t are ca ch in g SA informa tion can respon d to SA req uests.
35-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Conf igu ring M SDP Controlling Source Information that Your Switch Forwards By def ault, the switch forw ards all SA messages i t recei ves to all its MSDP pee rs.
35-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 35 Configuring MSDP Configuring MSDP T o remove th e filte r , use the no ip msdp sa-f ilter out { ip- ad dress | nam e } [ list access-list-number ] [ ro ut e -m a p map- tag ] glo bal configurat ion com ma nd.
35-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Conf igu ring M SDP Using TTL to Limit the Multicast Data Sent in SA Messages Y ou can use a TTL v alue to co ntrol what data is en capsula ted in th e fir st SA messag e for e v ery sour ce.
35-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 35 Configuring MSDP Configuring MSDP Beginn ing in pri vilege d EXEC mode, follo w th ese steps to apply a f ilter .
35-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Conf igu ring M SDP Config ur ing an MS DP Mes h Gr ou p An MSDP me sh gro up is a gro up of M SDP spea kers tha t hav e fully me shed MSDP c onnect i vity amo ng one anot her .
35-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 35 Configuring MSDP Configuring MSDP Beginning in privileged EXEC mo de, f ollow these step s to shut down a peer .
35-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Conf igu ring M SDP Note that the ip msdp originator -id global conf iguration command also identif ies an inter face to be used a s the RP addr ess.
35-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 35 Configuring MSDP Monitoring and Maintaining MSDP Monitoring and Maintaining MSDP T o monitor MSD P SA m.
35-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chap ter 35 Configur ing MSDP Monito rin g and Maint ain ing MSDP.
C HAPTER 36-1 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 36 Troubleshooting This chapter descr ibes ho w to identify and resolv e software pro blems relat ed to the Cisco IOS software on the Cisco ME 3 400 switch. Y ou can use the comm and-line in terfa ce (CLI) to id entify and solve pr oblems.
36-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Recovering f rom Corrupt ed Software By Using the Xmode m Protocol Recovering fro m Co.
36-3 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng Recovering fr om a Lost or Forgot ten Password Step 6 Press the break k ey , an d at th e sam e time , reco nnect t he po wer cord to the switch .
36-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Recoveri ng f rom a Lost or F org otten Pass word The C isco ME swi tch boo t load er use s br eak- key dete ction to stop the a ut oma tic boot seque nc e for the password r ecovery purpo se.
36-5 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng Recovering fr om a Lost or Forgot ten Password • If you see a messag e that begins wit h this: The password-recovery mechanism has been triggered, but is currently disabled.
36-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Recoveri ng f rom a Lost or F org otten Pass word Step 7 A t th e sw itch pr om pt, en ter privileged EXE C m ode: Switch> enable Step 8 Rename the conf iguration f ile to its original name: Switch# rename flash: config.
36-7 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng Recovering fr om a Lost or Forgot ten Password Procedure w ith Password R ecovery Dis .
36-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Preventing Autone gotiati on M ismatche s Step 6 En ter glob al configur ation mode : .
36-9 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng SFP Module Security and Identification SFP Module Security and Iden tification Cisco s.
36-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Using P in g Using Ping These se ctions conta in this inf ormation: • Understa ndin.
36-11 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng Using Ping All Softwa re Ver sions For all softw are image s for th e Cisco ME swit ch, you can us e a Layer 3 service policy to enab le pings from the switch to a host connecte d to a UN I.
36-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Using P in g IP Routing and SVI IP rout ing is onl y suppor ted on UN Is w hen t he switc h is ru nning t he m etr o IP a cce ss im age .
36-13 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng Using Layer 2 Tr aceroute Summary Keep these guideli nes in mind while pingi ng: • IP routing is a v ailable only with the metro IP access image and is disable d by defa ult.
36-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Using La ye r 2 Tracer oute Layer 2 Tracerou te Usage Gu idelines These a re the Layer 2 trac eroute usag e guideli nes: • Cisco Discovery Protocol (CDP) must be enabled on a ll the devices in the ne twork.
36-15 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng Using IP Traceroute Displaying the Physical Path Y o u can displa y the physic al pat.
36-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Using I P Trac eroute port-unreachable error to the so urce.
36-17 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng Usin g TD R T o end a trace in pr ogress , enter the escape seque nce ( Ctrl- ^ X by default ). Simu ltane ously pr es s and release th e Ctrl , Shif t , and 6 keys , and then pres s the X key .
36-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Using D ebug Command s Using Debug Commands These sec tions explains how you use debu.
36-19 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng Using the show platf orm forwa rd Command Enabling All-Sy stem Diag nostics Beginn in.
36-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Using the s how pl atform fo rward Com m and This is an example of t he output from t.
36-21 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troublesho oti ng Using the show platf orm forwa rd Command ------------------------------------------ .
36-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Chapter 36 Troubl eshoot ing Using t he c rashinfo File Using the crashinfo File The crashinfo f ile sav es information that helps Cisco technical support repr esentati v es to debug problems t ha t c aused t he Cisco IO S imag e to f ail (cr ash).
A- 1 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 APPEND IX A Supported MIBs This a ppend ix lis ts t he supp orte d mana geme nt i nfor ma tio n base (MIBs) f or t his r ele as e on t he Cisco ME 3400 E thernet Access switc h.
A- 2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendi x A Suppor ted MIBs MIB Li st • CISCO- L2L3 -INT ERF A CE-CON FIG-M IB • CISCO-LAG-MIB • CISCO-MAC-NO.
A-3 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix A Support ed MIBs Using FTP to Access the MIB Files • RFC1213-MIB (Fun ctionality is as per the agent capabilities specified in the CISCO-RFC1 213-CAP A BILITY .
A- 4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendi x A Suppor ted MIBs Using FTP t o Acces s the MIB Fi le s.
B-1 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 APPEND IX B Working with the Cisco IOS File System, Configuration Files, an d Software Images This ap pendix descr i.
B-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w it h t he.
B-3 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with t.
B-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w it h t he.
B-5 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with the Flash File System Some in valid combin ation s of source and dest inatio n exist.
B-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w it h t he.
B-7 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with t.
B-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con figuration Files Working with Configuration Files This sec tion describes h o w to crea te, load, and mainta in conf iguratio n file s.
B-9 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with C.
B-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con .
B-11 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with Configuration Files Step 3 Lo g in to the s witc h th rou gh the conso le por t or a T eln et sess ion.
B-12 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con .
B-13 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with .
B-14 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con .
B-15 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with .
B-16 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con .
B-17 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with Configuration Files This exam ple sh ows how to specify a rem ote us er name of netadmi n1 .
B-18 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
B-19 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with Software Images Y o u upload a swi tch image f ile to a TFT P , FTP , or RCP server for ba ckup purpo ses.
B-20 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft ware Images Note Disr egard the st ack ing_ numbe r field.
B-21 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with .
B-22 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
B-23 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with Software Images Uploading an Image File By Using TFTP Y ou can upload an image f rom the switc h to a TFTP serv er .
B-24 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft ware Images Preparing to Download or Uploa d an Image File By Using FTP Y o u can copy ima ges files to or from an FTP server .
B-25 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with .
B-26 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
B-27 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with Software Images Uploading an Image File By Using FTP Y ou can upload an image from the switch to an FTP serv er .
B-28 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
B-29 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with .
B-30 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
B-31 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix B Workin g w ith the Cisco I OS File System, Conf igurati on F il es , and Softwa re Images Working with Software Images The alg orithm instal ls the downloaded image ont o the system boa rd flas h device (flash:).
B-32 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
C-1 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 APPEND IX C Unsupported Co mmands in Cisco IOS Release 1 2.2(25) EX This app endix lists som e of the co mmand-line .
C-2 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix C Unsupported C o mmands in Cisc o IOS Release 12.2 (2 5)EX Unsupp ort ed Debug Com m a nds Unsupported Int.
C-3 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix C Unsupp orted Com mands in Cisco IOS Re lease 12.2(25)E X Interface Command s Interface Command s Unsuppo.
C-4 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix C Unsupported C o mmands in Cisc o IOS Release 12.2 (2 5)EX IP Unicas t Rou ti ng Unsupporte d Global Con f.
C-5 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix C Unsupp orted Com mands in Cisco IOS Re lease 12.2(25)E X IP Unicast Routing show ip bgp dampene d-paths .
C-6 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix C Unsupported C o mmands in Cisc o IOS Release 12.2 (2 5)EX IP Unicas t Rou ti ng Unsupporte d BGP Router C.
C-7 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix C Unsupp orted Com mands in Cisco IOS Re lease 12.2(25)E X MAC Address C ommands MAC Address Comman ds Uns.
C-8 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix C Unsupported C o mmands in Cisc o IOS Release 12.2 (2 5)EX MSDP Unsupporte d Privileged E XEC Command s ar.
C-9 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Append ix C Unsupp orted Com mands in Cisco IOS Re lease 12.2(25)E X QoS QoS Unsupporte d Global Con figuratio n Com.
C-10 Cisco ME 3400 Et hernet Access Switch Software Configuratio n Guide 78-17058-01 Appendix C Unsupported C o mmands in Cisc o IOS Release 12.2 (2 5)EX VLAN VLAN Unsupporte d Global Con figuratio n .
IN-1 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 INDEX A abbrev iati ng comm ands 2-3 ABRs 32-24 acces s-class comman d 28- 19 acces s control entries See ACEs acce.
Index IN-2 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 ACLs ( continue d) logging m e ssages 28-8 MAC ex tended 28-26 matc hing 28-7, 28-20 monitori ng 28-39 named,.
Inde x IN-3 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 ARP config uring 32-8 defined 1-3, 5-28, 32-8 enca psul ation 32-9 static ca che conf igurat ion 32-8 table address resolution 5-28 managing 5-28 ASBRs 32-24 AS-path f ilters, BGP 32-49 assured for war ding, DSCP 30-8 asymmet rica l l inks, and IE EE 802 .
Index IN-4 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 BGP (conti nued) enab lin g 32-42 monitori ng 32-58 multipat h support 32-46 neighbors, typ es of 32-42 path .
Inde x IN-5 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 CDP (conti nued) Layer 2 pro tocol tunneling 13-8 monitoring 22- 5 overvi ew 22-1 support fo r 1-3 transmiss.
Index IN-6 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 comm and m ode s 2-1 comm ands abbrev iating 2-3 no and defaul t 2-4 commands, set ting privile ge levels 7-8.
Inde x IN-7 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 config uring mar king in input policy map s 30-41 congest ion avoi dance, QoS 30-2, 30-24 congest ion manage.
Index IN-8 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 default conf igur ati on (con tin ued) SPAN 24-10 STP 14-11 system message logging 26-3 system name and promp.
Inde x IN-9 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 DHCP sno oping b indi ng da tab ase (cont inu ed) bindings 18-5 clearin g agent stat istics 18-12 config ura.
Index IN- 10 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 dynami c addresse s See ad dresses dynamic ARP inspection ARP cache poison ing 19-1 ARP re quest s, de scri.
Inde x IN- 11 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 enviro nment va riabl es, functi on of 3-16 equal-cost routin g 1-7, 32-70 error me ssages dur ing comm and entr y 2-4 EtherC hannel 802.
Index IN- 12 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 F features, in compatible 21-11 FIB 32-69 fiber- optic, de tecting uni direc tional links 23-1 files copyin.
Inde x IN- 13 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 history chan ging t he b uff er si z e 2-5 describe d 2-4 disabling 2-5 recal ling co mman ds 2-5 history .
Index IN- 14 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 IGMP (c onti nued ) deleting cache entries 34-34 displaying gr oups 34-35 fast switching 34-30 flooded mult.
Inde x IN- 15 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 input polic y maps classifica tion criteria 30-4 config urati on guidelin es 30-35 config uring 30-35 disp.
Index IN- 16 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 IP multica st routing (continued) Auto-RP adding to an existi ng sparse-m ode cloud 34-13 benefit s o f 34-.
Inde x IN- 17 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 IP routin g connect ing interfaces with 9-7 disabling 32-18 enab lin g 32-17 IP source gua rd and 802.
Index IN- 18 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 IP unicast rou ting (conti nued) rever se address resolutio n 32-7 routed po rt s 32-3 static routing 32-2 .
Inde x IN- 19 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Layer 2 trac erou te and AR P 36-14 and CD P 36-14 broa dcas t tra ffic 36-13 describe d 36-13 IP addresse.
Index IN- 20 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 manage ment acce ss in-band CLI session 1-4 SNMP 1-4 out-of- band consol e port co nnectio n 1-4 manageme n.
Inde x IN- 21 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 monito ring ( cont inue d) traffic fl owi ng am ong sw itch es 25-1 traffic suppr es sion 21-17 tunneling .
Index IN- 22 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 MSTP, conf igurin g (continue d) root switch 15-14 seco ndary r oot switc h 15-16 switch p riority 15-19 CS.
Inde x IN- 23 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 multi-VRF CE config urati on exam ple 32-64 config urati on guidelin es 32-61 config uring 32-61 default c.
Index IN- 24 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 NTP (continu ed) synchroniz ing devic es 5-6 time services 5-2 synchroniz ing 5-2 O Open Shortest Path Firs.
Inde x IN- 25 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 perform an ce f eat ur es 1-2 per-V LAN spanni ng-tree plus See PVST+ PE to CE routin g, config uring 32-6.
Index IN- 26 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 port-based authenticatio n, configuring (conti nued) RADIUS server parame ters on the switch 8-12 switch-to.
Inde x IN- 27 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 primar y VLAN s 12-2, 12-3 priority HSRP 33-6 priority co mmand 30-15 configurin g strict priority queuing.
Index IN- 28 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 Q QoS aggreg ate policer s 30-14 and MQC 30-1 basic mo del 30-2 CBWFQ 30-21 CBWFQ, con figuring 30-44 class.
Inde x IN- 29 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 QoS (conti nued) pack et cla ssific atio n 30-2 packet markin g 30-16 pack et polic ing 30-2 parent-c hild.
Index IN- 30 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 rapid PVST+ 802.1Q tru nking intero perability 14-10 describe d 14-9 instances supported 14-10 Rapid Span n.
Inde x IN- 31 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 RIP advertisements 32- 18 authenti cation 32-21 config uring 32-19 default conf igur ati on 32-19 describe.
Index IN- 32 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 RSTP active topolog y 15-6 BPDU format 15-9 processing 15-10 designat ed po rt, de fine d 15-6 designated swi tch, defi ned 15-6 interoper ability with 802.
Inde x IN- 33 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 shape av erage co mmand, QoS 30-18, 30-20, 30-46 shaped roun d ro bin See SRR show access- lists hw-s umma.
Index IN- 34 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 snooping , I GMP 20-1 softw a re i m ag es location in flas h B-1 9 recove ry proc edures 36-2 sche duli ng.
Inde x IN- 35 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 statistics IEEE 8 02. 1x 8-19 CDP 22-5 interfac e 9-23 IP multica st routing 34-34 OSPF 32-31 RMON group E.
Index IN- 36 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 STP (continued) loop gu ar d describe d 16-4 enab lin g 16-9 modes sup port ed 14-9 multi cast addres ses, .
Inde x IN- 37 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 system clock See also NT P system message logging default conf igur ati on 26-3 defining err or messa ge s.
Index IN- 38 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 templates, SDM 6-2 Terminal Access Contr oller Ac cess C ontrol Sy stem Plus See TACACS+ terminal lines, se.
Inde x IN- 39 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 trunks allowed-V LAN list 11-17 load sharing setting STP path costs 11-21 using STP port priori ties 11-20 nati ve VL AN fo r un tagge d tr affic 11-19 paralle l 11-21 tunneling defined 13-1 IEEE 8 02.
Index IN- 40 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 uploadin g ( cont inued) image fi les prep aring B-21, B-24, B-28 reasons for B- 19 using FTP B-27 using RC.
Inde x IN- 41 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01 VLANs (contin ued) modifyin g 11-9 multicas t 20-16 native, c on figur ing 11-19 normal-r ange 11-1, 11-3 number supp orted 1-5 parame ters 11-3 port m embe rship mode s 11-4 static-access ports 11-10 STP and 802.
Index IN- 42 Cisco ME 3400 E thernet Access Switch Software Configurati on Guide 78-17058-01.
Een belangrijk punt na aankoop van elk apparaat Cisco Systems ME3400G2CSA (of zelfs voordat je het koopt) is om de handleiding te lezen. Dit moeten wij doen vanwege een paar simpele redenen:
Als u nog geen Cisco Systems ME3400G2CSA heb gekocht dan nu is een goed moment om kennis te maken met de basisgegevens van het product. Eerst kijk dan naar de eerste pagina\'s van de handleiding, die je hierboven vindt. Je moet daar de belangrijkste technische gegevens Cisco Systems ME3400G2CSA vinden. Op dit manier kan je controleren of het apparaat aan jouw behoeften voldoet. Op de volgende pagina's van de handleiding Cisco Systems ME3400G2CSA leer je over alle kenmerken van het product en krijg je informatie over de werking. De informatie die je over Cisco Systems ME3400G2CSA krijgt, zal je zeker helpen om een besluit over de aankoop te nemen.
In een situatie waarin je al een beziter van Cisco Systems ME3400G2CSA bent, maar toch heb je de instructies niet gelezen, moet je het doen voor de hierboven beschreven redenen. Je zult dan weten of je goed de alle beschikbare functies heb gebruikt, en of je fouten heb gemaakt die het leven van de Cisco Systems ME3400G2CSA kunnen verkorten.
Maar de belangrijkste taak van de handleiding is om de gebruiker bij het oplossen van problemen te helpen met Cisco Systems ME3400G2CSA . Bijna altijd, zal je daar het vinden Troubleshooting met de meest voorkomende storingen en defecten #MANUAl# samen met de instructies over hun opplosinge. Zelfs als je zelf niet kan om het probleem op te lossen, zal de instructie je de weg wijzen naar verdere andere procedure, bijv. door contact met de klantenservice of het dichtstbijzijnde servicecentrum.