Go to page of
Similar user manuals
-
Switch
Accton Technology ES3526XA
512 pages 5.85 mb -
Switch
Accton Technology ES4710BD
547 pages 6.13 mb -
Switch
Accton Technology EH3012C
21 pages 1.05 mb -
Switch
Accton Technology 24S
7 pages 1.1 mb -
Switch
Accton Technology 12i
150 pages 1.25 mb -
Switch
Accton Technology ES3008
2 pages 0.18 mb -
Switch
Accton Technology 100BASE-TX
55 pages 0.35 mb -
Switch
Accton Technology 3008P
19 pages 0.92 mb
A good user manual
The rules should oblige the seller to give the purchaser an operating instrucion of Accton Technology ES4710BD, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.
What is an instruction?
The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Accton Technology ES4710BD one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.
Unfortunately, only a few customers devote their time to read an instruction of Accton Technology ES4710BD. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.
What should a perfect user manual contain?
First and foremost, an user manual of Accton Technology ES4710BD should contain:
- informations concerning technical data of Accton Technology ES4710BD
- name of the manufacturer and a year of construction of the Accton Technology ES4710BD item
- rules of operation, control and maintenance of the Accton Technology ES4710BD item
- safety signs and mark certificates which confirm compatibility with appropriate standards
Why don't we read the manuals?
Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Accton Technology ES4710BD alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Accton Technology ES4710BD, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Accton Technology service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Accton Technology ES4710BD.
Why one should read the manuals?
It is mostly in the manuals where we will find the details concerning construction and possibility of the Accton Technology ES4710BD item, and its use of respective accessory, as well as information concerning all the functions and facilities.
After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.
Table of contents for the manual
-
Page 1
www .edge-core.com ES4710BD 10 Slot s L2/L3/L4 Chassis Switch User ’ s Guide[...]
-
Page 2
1 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Preface ES4710BD is a hig h performance ro uting switch releas ed by Edge-Core that can be deployed as the core layer devi ce for cam pus and enterprise networks, or as an aggregation device f or IP metropolitan ar ea networks (MAN ). ES4710BD provid es 10 slots, w ith support for various ty pes of lin[...]
-
Page 3
2 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Content CHAPTER 1 PRODUCT OVER VIEW............................................................................................ 31 1.1 P RODUCT B RIEF ............................................................................................................................. 31 1.1.1 Introduct ion ...[...]
-
Page 4
3 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1.4.2.4 EM4700BD- 2 XG-X ENP AK ........................................................................................... 44 1.4.2.4.1 Front P anel .................................................................................................................... ........ 44 1.4.2.4.2 Front Panel - [...]
-
Page 5
4 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2.3.1.2 Rack-m ounting ES 4710BD ................................................................................................ ............ 61 2.3.1.3 W earing an ESD W rist Strap ............................................................................................ .............. 62 2.3.2 Swi[...]
-
Page 6
5 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 4.2.1.1.3.2 VLA N Mode ......................................................................................................... .......... 88 4.2.1.1.3.3 DHCP A ddress Pool Mode ............................................................................................ .. 88 4.2.1.1.3.4 Route Mode...[...]
-
Page 7
6 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.2.2.3.2 telnet .............................................................................................................. ....................... 100 5.2.2.3.3 telnet -s erver enable ................................................................................................ ............... 1[...]
-
Page 8
7 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.4.4.2.6 snmp-s erver se curityip .............................................................................................. ............ 1 16 5.4.5 T ypical SNMP Conf iguration Ex amples ............................................................................. 116 5.4.6 SNMP T roubleshooting [...]
-
Page 9
8 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.6.2.3 Configure IP a ddress of SNMP manager .................................................................................. .... 141 5.6.2.4 SNMP statistics ....................................................................................................... ..................... 142 5.6.2.5 RMO[...]
-
Page 10
9 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 6.4.1 Reset specific m odule................................................................................................... ....... 155 6.4.2 Show slot ............................................................................................................... .............. 155 6.4.3 Show fan..[...]
-
Page 11
10 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 7.2.4.1 Introduction to Port Mirroring ........................................................................................ .............. 170 7.2.4.2 Port Mirroring Conf iguration T ask S equence ............................................................................ ... 171 7.2.4.3 Port Mir[...]
-
Page 12
11 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.4.1.1 show mac-addr ess-tab le aging-time ..................................................................................... ........ 185 8.4.1.2 show mac-a ddress-tab le static ......................................................................................... ............. 186 8.4.1.3 sho[...]
-
Page 13
12 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.6.2.2.5 Clear ing port M AC ................................................................................................... ................. 199 8.6.2.3 MAC binding attrib ution configur ation............................................................................ 200 8.6.2.3.1 Maximum port[...]
-
Page 14
13 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 9.5.1.1 Create/rem ove Vlan ............................................................................................................. ..... 217 9.5.1.1.1 VI D allocat ion ...................................................................................................... ..................... 21[...]
-
Page 15
14 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.2.2.9 spanning-tr ee l ink-type p2p .......................................................................................... .............. 232 10.2.2.10 spanni ng-tree m axage ................................................................................................ ............... 232 10.[...]
-
Page 16
15 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.5.4 Show MSTP se tting ...................................................................................................... ..... 250 10.5.4.1 Instan ce information................................................................................................. .................. 250 10.5.4.2 MST[...]
-
Page 17
16 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 12.1.3 Access list Action an d Global Defau lt Action ................................................................... 266 12.2 ACL CONFIGURA TION ................................................................................................................ 267 12.2.1 ACL Configura tion T ask Seq[...]
-
Page 18
17 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 13.4 P OR T C HANNEL T ROUBLESHOOT ING H ELP ................................................................................ 290 13.4.1 Monitor an d Debug Commands ........................................................................................ 290 13.4.1.1 show por t-gr oup..................[...]
-
Page 19
18 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 14.5 DHCP T ROUBLESHOOTING H ELP ........................................................................................... 313 14.5.1 Monitor an d Debug Commands ........................................................................................ 313 14.5.1.1 clear ip dhc p binding .............[...]
-
Page 20
19 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 15.3.1.1 show s ntp ...................................................................................................................... ............ 329 15.3.1.2 debug sn tp..................................................................................................................... ........[...]
-
Page 21
20 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.4.1.4 show mls qos ma ps .............................................................................................................. ..... 354 16.4.1.5 show clas s-map ................................................................................................................. ........ 355 1[...]
-
Page 22
21 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 17.2.1 Introduction to IP Forwar ding ............................................................................................ 369 17.2.2 IP Route Aggreg ation Config uration .................................................................................... 36 9 17.2.2.1 IP Route Aggregation Con[...]
-
Page 23
22 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.2.3.2.1 ip route ....................................................................................................................... ......... 380 18.2.3.2.2 show ip route .................................................................................................................. ..... 38[...]
-
Page 24
23 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.4 OSPF ........................................................................................................................... .............. 404 18.4.1 Introd uction to OSPF ................................................................................................... ..... 404 18.4.2 OSP[...]
-
Page 25
24 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.4.2.2.34 debug ip ospf spf ................................................................................................. .............. 429 18.4.3 T ypical OSPF Scenario .................................................................................................. ... 429 18.4.4 OSPF Troub [...]
-
Page 26
25 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch CHAPTER 19 MUL TICAST PROT OCOL CON FIGURA TION .................................................. 457 19.1 M UL TICAST P ROTOCOL O VER VIEW ............................................................................................ 457 19.1.1 Introducti on to Multicast ..............................[...]
-
Page 27
26 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.4.4.1.2 show ip pi m interface .......................................................................................................... 475 19.4.4.1.3 show ip pi m mroute sm ..................................................................................................... 476 19.4.4.1.4 show i[...]
-
Page 28
27 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.6.2.2.3 ip igmp quer y-interval ............................................................................................. ........... 496 19.6.2.2.4 ip igmp query -max-res ponse-tim e .................................................................................... .. 496 19.6.2.2.5 ip ig mp[...]
-
Page 29
28 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.7.6.5 Show ip pim mroute sm................................................................................................ .. 507 19.7.6.6 Show ip pim rp ....................................................................................................... ........ 507 19.7.6.7 Show ip dvmrp mrou[...]
-
Page 30
29 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 20.4.1.3 show aaa authen ticating-us er ................................................................................................... . 524 20.4.1.4 show radius cou nt .............................................................................................................. ....... 524 20.4.[...]
-
Page 31
30 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 21.4.1 Create VRRP Num ber ..................................................................................................... .. 543 21.4.2 Configure VRRP Dummy IP ................................................................................................ ......... 544 21.4.3 Configur e VRRP P[...]
-
Page 32
31 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 1 Pr oduct Overview RECOMMENDATION: Please read this manual fi rst before using the switch, following the instructions to avoid damaging the device. 1.1 Pr oduct Brief Fig 1-1 ES4710 BD Switch 1.1.1 Intr oduction Edge-Core ES4710BD is a high performance r outing switch that can be d eployed as[...]
-
Page 33
32 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1.1.2 Featur es Advanced Architectur e The design for the ES4710BD co re routing switch is fully distributed architecture. W ith a power ful ASIC chip dedic ated to high-speed route loo k up and tra ffic forwarding through “longest-m atch” and “packet-by-packet” m ode, the switch ensures e[...]
-
Page 34
33 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Layer 3 Forw arding Layer 3 forwarding is the forwarding of La yer 3 packets (IP pack et) across VLANs, which ES4710BD uses switc h chip hardware to forward IP packets, facili t ating the on-chip hos t route entries and default routing tabl e entries, allow ing IP packets to be forw arded at full [...]
-
Page 35
34 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch IGMP Snooping ES4710BD supports IGMP Snoop ing based on multi-casting applications enabling various multi-cast servic es (e.g. multim edia playback, remote educat ion and recreation) in an acc ess network with l owered netwo rk traf fic. Broadcast S torm Control ES4710BD can ef fectively preve[...]
-
Page 36
35 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Restart and reset to fac tory setting ca n be done bot h locally and remotely TFTP /FTP fir mware upgrade available Can be instal led into standa rd 19-inch chassis 1.2 T echn ical specifications Protocols and S tandar ds □ IEEE802.3 10BASE-T Ethernet □ IEEE802.3u 100BASE-TX/FX Fas[...]
-
Page 37
36 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1.3 Physical Specifications Management Port □ One RJ-45 serial port for each m anagement module AC Power Input □ 90 ~ 264V A C, 50 ~ 60H z □ Built-in Un iversal Power Supp ly DC Power Input □ DC: -36 ~ -72VDC □ Built-in Universal Power Supplies Power Consumption □ 700W Max [...]
-
Page 38
37 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch a groundin g post has be en provided on each s ide of the rack for grounding conn ections. In addition, on both sides of the lower section of the chassis, a handler is provide d for easier transport. Fig 1-2 ES4710BD Front Pa nel view Management slot : 2 managem ent slots are provided. One or two [...]
-
Page 39
38 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch the panel as RUN ) are provided for eac h board . On the Mai n Control cards ther e is Master -Slave indicator (printed on the panel as M/S ) Th ere is also a power m odule status indicator (print ed on the panel as Power: Fail/OK ), fan assem b ly status indic ator (printed on the panel as Fan: Alarm[...]
-
Page 40
39 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z 12 fiber Gb ports line card (EM4700BD-12GX- SFP): supporting 12 SFP Gb fiber ports for layer 2 and layer 3 sw itching and ro uting. z Dual 10Gb fiber line card ( EM4700BD-2XG-XENP AK ): supporting 2 10GBase-X fibe r port (XENPAK) for layer 2 and l ayer 3 switching an d routing. z Enhanced processing[...]
-
Page 41
40 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Off Cards are powered off and can be removed On (Green) Master Master -Slave indicator M/S Off Slave On (Green) Power Supply Module operating normally OK Off Power supply module m alfunctioning or not present (with Fail off) On (Y ellow) Power Supply Module m alfunction Power Supply Module Sta t us in[...]
-
Page 42
41 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Propert y Specification Connector RJ-45 (Receptacle) Connector type z 10/100Mbps auto sensing z Cat 5 UTP: 300 m 1.4.2.1.5 Front Panel – Reset Button EM4710BD-AGENT provides a RESET but ton for resetting the board. 1.4.2.1.6 Front Panel – SW AP Button The EM4710BD -AGENT provides a SW AP button fo[...]
-
Page 43
42 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch On (Green, blinks at 8 Hz) System is loading (Bootin g after card hot swapping) On (Y ellow , blinks at 8 Hz) System is shutting dow n (Shutting Down after SWAP button pressed) On (Red, blinks at 8 Hz) Malfunction status indicator Off Card is powered off and can be removed RJ-45 port indicator On (Gre[...]
-
Page 44
43 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 1-5 EM4700BD -12GX-SFP Front Panel view 1.4.2.3.2 Front Panel - Indicator The following tab le describes the EM 4700BD-12GX-SFP’ s front panel indic ators: Ta b l e 1 . 6 EM4700BD- 12GX-SFP indicator description s LED Panel Symbol St a t u s Description On (green) Card powered Power Indicator PW[...]
-
Page 45
44 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Ta b l e 1 . 7 EM4700 BD-12GX-SFP port description Port T ype Specification SFP z SFP-SX transceiver: 62.5 /125 µm multi-mode fiber: 275 m 50.0 /125 µm multi-mode fiber: 550m z SFP-LX transceiver: 9/12 5 µm single-mode fiber: 10 km z SFP-LH-40 transceiver: 9/12 5 µm single-mode fiber: 40 km z SFP-[...]
-
Page 46
45 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1.4.2.4.2 Front Panel - Indicator The following tabl e describes the front panel in dicators for the EM4700BD- 2 XG-XE NP AK: T able 1.8 Description of the EM4700 BD-2XG-XENP AK ind icators LED Indicator Panel Symbol St a t u s Description On (green) Card powered. Power Indicator PWR Off Card powered [...]
-
Page 47
46 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1.4.2.4.5 Front Panel – SW AP Button The EM4700BD-2X G-XENP AK provides a SW AP button for hot swapping the m odule during operation. Before rem oving the modules, users sh ould first press the SW AP button. The module will then prepare for a hot-swap and the system operati on indicator (RUN) will t[...]
-
Page 48
47 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1.4.2.5.2 Front Panel - Indicator The following tab le describes the front panel indicators f or EM-7600-ES and EM-7600-ES-2GB: T able 1.9 Description of the EM-7600-ES and EM-7600-ES-2GB indi cators LED Panel Symbol St a t u s Description On (green) Card powered Power Indicator PWR Off Card powered o[...]
-
Page 49
48 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch T able 1.10 EM-7600-ES-2G B port description Port T ype Specification SFP z SFP-SX transceiver: 62.5 /125 µm multi-mode fiber: 275m 50.0 /125 µm multi-mode fiber: 550m z SFP-LX transceiver: 9/12 5 µm single-mode fiber: 10km z SFP-LH-40 transceiver: 9/12 5 µm single-mode fiber: 40km z SFP-LH-70 tra[...]
-
Page 50
49 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1.4.3.1 EM4710BD-AC (Alternating Current Pow er Module) When powere d by AC inp uts, the AC p ower modul e EM4710B D-AC and cor respondin g AC distribution box shoul d be use d in the ES4710B D. The input voltage of the EM47 10BD-AC is 1 10V/2 20 V AC, with ranges b etween 90 ~ 264 V A C and freque nc[...]
-
Page 51
50 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch V AC input socket for the positioning of pow er cords and easier w iring. In addition, on th e left side of the AC distribu tion panel is a power supply switch used to control the m odules’ power out put . Please turn this pow er supply switch on during norm al operation of the ES4710BD. T elc o net[...]
-
Page 52
51 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1.4.8 Rear Panel The rear panel of the ES4710BD covers the switch backp lane. T o ensure safe operation of the switch, please do no t open the rear panel. There are two reve rsible handles on the rear panel, they are used only for the i n stallation and removal of the rear panel. N ever lift or move t[...]
-
Page 53
52 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1.5 System Featur es Ta b l e 1 . 1 1 ES4710BD System Features SDRAM 128MB FLASH 32MB Status indicator: Port: T raffic, LINK General: Power status, sy stem status, hot-s wap indicator W eight 65KG (Max full configuration weight) Physical Dimensi ons 436mm x 797mm x 478mm (W x H x D) Relative hum idity[...]
-
Page 54
53 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 2 Hardwar e Installation 2.1 Safety Information During the install ation and use of t he ES4710BD Swit ch, please follow the safety gui delines list ed below: Basic Guidelines 1. Disconnect power supplies from the chassis before disassem bly or moving the switch. 2. Install the switch in a cle[...]
-
Page 55
54 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch (including rings, necklaces, watches and bracelets). 2. Metal objects will cause short circuits and dam age the device when i n contact with both powered items and the ground. 3. An improper c onnection between the devi ce and power sockets m ay be hazardous. 4. Only trained and qualified personnel sh[...]
-
Page 56
55 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ! W atch out for potential dangers, e.g. wet floors, ungrounde d power li nes, and worn power lines. ! Have an e mer gency switch installed inside the workshop, so that power ca n be cut of f promptly should an accident occur . ! Do not work al one if potent ial dangers are prese nt. ! On the event of[...]
-
Page 57
56 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch T em perature: Relative humidity Long term condition Short term condi tion Long term condition Short term condition 15 ~ 30°C 0 ~ 40°C 40 ~ 65% 10 ~ 90% A sam ple of ambient temperature a nd humidity should be taken at 1.5 m above the floor and 0.4m in front of the switch r ack, with no protecti[...]
-
Page 58
57 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2.1.4 Preventing Electrostatic Discharge Damage Stati c electric dischar ges can cause damage to internal circu its, even the entire switch. Follow these guidelines for preve nting ESD dam age: 1. Ensure proper earth groundi ng of the devi ce 2. Perform regular cleani ng to reduce dust 3. Maintain pro[...]
-
Page 59
58 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2.1.7 Power Supply Requirements The ES4710BD is designed t o use modular sw itching pow er supplies , supporting 2 +1 redundant backup of power m odules. The power in put specification is shown below: Nominal Input V oltage AC: 90 ~ 264 V AC, 50 ~ 60Hz DC: - 36 ~ -72 VDC T ota l power consumption: ≤[...]
-
Page 60
59 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch A basic config uration ES4710BD sh ould include the following: ITEM No. Part name Number Memo 1 ES4710BD Ethernet Switc h 1 2 AC cable 3 3 Serial port cable 1 4 Grounding cord 1 5 Chassis hanger 2 6 Hanger screw 12 8 Manual CD 1 9 Qualification certificate 1 10 W arranty card 1 Note: The abo ve list i[...]
-
Page 61
60 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch & Cards and modules i n stallati on & Connecting to the Console Connecting to the Console p o rt & Connecting to the Managem ent Port Connecting to the Ethernet port & SFP transceiver installation Install the SFP transceiver in the SFP slot & XENPAK transceiver installa[...]
-
Page 62
61 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch & Copper Cable/Fiber cabl e connection Ethernet cable connection Fiber cable conne ction & Power supply connection 2.3.1 Switch Installation 2.3.1.1 Desktop installation z Note: ● Choose a smooth level workbench ● V e rify that the workb ench is strong enough to support the ES4710B[...]
-
Page 63
62 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch The figure below show s the steps for m ounting the hang ers: Fig 2-1 Installi ng ES4710BD Switch H angers Step 2: Put the han ger -mounted swi t ch sm oothly into a standard 19’ ’ rack. Because of the size and weight of a ES 4710 BD, 2 people are required to complete the installat ion. W ith a pe[...]
-
Page 64
63 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Proper grounding When using an AC pow er source, the devi ce must be grounde d with the green and yellow ground cables, otherwise, s hoc k hazards m ay occur when insulation resistance be tween the internal power supply and the chassis degr ades. z Lightning protection grou nding The lightning prote[...]
-
Page 65
64 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2.3.3.1 Removing and Installing the Cards The installation procedure is the same for all cards, as sh own below: Step 1: Power down the switch (Hot-s wapping is supported by optional cards for t h e switch. However , for better co nvenience, i t is recommended to pow er down the switch before installi[...]
-
Page 66
65 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch front panel of the fan tray will loc k automatic ally . Upon rem oval, hold the handle in the front panel of fan tray with your m iddle and ring fing ers, press the locker slight ly down, and the fan tray can be drawn out sm oothly . Note: The fan trays are installed on switch chassis shipment. The in[...]
-
Page 67
66 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Cleaning of power sup p ly dust gau ze: Dust gauzes are pro vided in the fr ont panels of the EM4710BD -AC and EM-7608-DC pow er supply modules, w hich can be installed a nd removed e asily . Dust gauze is m eant to preve nt large debris or particles in the air from being ing ested into the pow er s[...]
-
Page 68
67 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2.3.5 Connecting to the Management Port The EM4710BD-AG ENT provides a RJ-45 (female) Ethernet port. Users can connect to this administration port through a backend host w ith Ethernet i n terface for pro g ram load ing, or use t his port to conne ct to remote devices (e.g., an adm inistrative worksta[...]
-
Page 69
68 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Step 4: Tigh ten (clockwise) the pane l fasteners in the front of XEN P AK transceiver until faste ned to the front pa nel of the 10G B line card. Note: the XENP AK 10GB fiber transceiver is hot swappable Do not stare directly at the 2 fiber bore in th e XENPAK 10GB fiber transcei ver when the switch [...]
-
Page 70
69 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Step 1: Before connecting th e AC power cable, ensure that the ES4710BD is properly grounded and the output sw itch of the p ower supply m odule in the AC distributio n box is off. Step 2: Insert one end of the three power cable s into the power source so cket (dedicat ed branch circuits are recomm en[...]
-
Page 71
70 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 3 Setup Configuration Setup configuratio n refers to the init ial operation of the switc h after the us er purchases the switch. For first-time users of t he ES4710BD, this chapter provides a v ery practical i nstruction. Whe n using CLI (command line interface), the user can type setup under [...]
-
Page 72
71 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Selection number: The corresponding menu ite ms in Chinese are: 配置菜 [0]: 配置交机主机名 [1]: 配置 Vlan1 的接口 [2]: 配置交机 Te l n e t 服器 [3]: 配置交机 We b 服器 [4]: 配置 SNMP [5]: 退出 setup 模式不保存配置果 [6]: 退出 setup 模式?[...]
-
Page 73
72 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch The corresponding prom pt in Chinese is: 配置 Vlan1 接口 [0]: 配置 Vlan1 接口的 IP 地址 [1]: 配置 Vlan1 接口的状 [2]: 返回上一菜 序号 : Select “0” in the Vlan1 i nterface configuration m enu and press En ter , the following screen will appear: Please input in[...]
-
Page 74
73 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch [0]: Add telnet user [1]: Config telnet server s tatus [2]: Exit Selection number: The corresponding prom pt in Chinese is: 配置 Te l n e t 服器 [0]: 添加 Te l n e t 服器用 [1]: 配置 Te l n e t 服器的状 [2]: 返回上一菜 序号 : Select “0” in the T eln[...]
-
Page 75
74 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch enable T elnet service. The T elnet server co nfiguration menu will then appear . Select “2” in the T elnet serve r configuration menu to return to th e Setup main menu. 3.1.2.4 Configuring W eb Server Select “3” in the Set u p m ain menu and pre ss Enter to start co nfiguration of the W eb se[...]
-
Page 76
75 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Note: valid pa ssword length is 1 to 8 characters. After configuring the username and password, t he menu will return to the W eb server configuration section . Select “1” in the W eb ser v er configuration m enu a nd press Enter , the following scre en appears: Enable switch web-server or no? (y/[...]
-
Page 77
76 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch [2]: 配置 Tra p s 主机 IP 地址和体字符串 [3]: 配置交机 SNMP 状 [4]: 配置交机 Tra p s 状 [5]: 添加 SNMP 管理站安全 IP 地址 [6]: 返回上一菜 序号 : Select “0” in the SNMP conf iguration menu an d press Enter , the following scree n will [...]
-
Page 78
77 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Select “3” in the SNMP conf iguration menu an d press Enter , the following scree n will appear: Enable SNMP-server? (y/n) [y]: The corresponding prom pt in Chinese is: 是否使能交机 SNMP? (y/n) [y]: T ype “ n” and press Enter to disable SN MP service. T ype “ y” and press Enter , [...]
-
Page 79
78 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 4 Switch Management 4.1 Management Options After purchasing the swit ch, the user needs to configure the switch fo r network management. ES4710BD provi des two managem ent options: in-band m anagement and out-of-band m anagement. 4.1.1 Out-of-band Management Out-of-band managem ent is the mana[...]
-
Page 80
79 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Step 2 Entering the Hyper T erm inal. Open HyperT erminal in W indows aft er the connec tion has be en established. The e xample below is based on H yperT erminal that is included in W indow s XP . 1) Click S tart menu - Programs – Accessories – Com munications - HyperT erm inal Fig 4-2 Openi ng H[...]
-
Page 81
80 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 4-4 Openi ng HyperT erminal (3) 4) COM1 properties ap pears, select “9600” for “ B aud rate”, “8” for “Data bits”, “none” for “Parity checksum”, “1” f o r “stop bits” and “none” for “flow control”; or , you can also click “Restore default” and c lick “[...]
-
Page 82
81 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 4-6 Openi ng HyperT erminal (5) Step 3 Entering switch CLI int erface: Power on the switch. The follow ing appears in the HyperT erm inal windows, this is the CLI configuration mode for ES4710BD. E S 4 7 1 0 B D M a n a g e m e n t S w i t c h Copyright (c) 2001-2004 by Edge-Core Networks Limited.[...]
-
Page 83
82 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch C u r r e n t t i m e i s W E D A P R 2 0 0 9 : 3 7 : 5 2 2 0 0 5 ES4710BD Series Switch Operat ing System, Software Packet V ersion ES4704BD_2.2. 10.0 Copyright (C) 2001-20 04 by Accton T echnology Cor p. http://www .edge-core .com E S 4 7 1 0 B D S w i t c h ( M P C 8 2 4 5 - 2 6 6 M ) p r o c e s s[...]
-
Page 84
83 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 4-7 Man aging the swit ch by T elnet Step 1: Configure the IP addresses for th e switch and st art the T elnet functi on on the sw itch. First, the configura tion of the host’ s IP address should be within th e same networ k segment as the switch’ s VLAN1 interf ace IP address. Supp ose the sw[...]
-
Page 85
84 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Run the T elnet client program include d in W indows with the specifi ed T e lnet tar get. Fig 4-8 Run ning the T elnet clie nt program included in W indows Step 3: Log in to the switch Log in to the T elnet configuration i nterface. V alid login nam e and password are required, otherw ise the switch [...]
-
Page 86
85 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 4-9 T elnet Configuration Interfac e 4.1.2.2 Managing the Switch thr ough ECview T o m anage the switch with ECview , the following c onditions sho uld be m et: 1) Switch has an IP address con figured 2) The host’ s IP address and the swit ch’ s VLAN interface IP address are in the s ame netwo[...]
-
Page 87
86 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 4.2.1 CLI Interface CLI interface is familiar t o most users. As aforem entioned, out-of-band management and T el net login are all performed through CLI interface to m anage the switch. CLI Interface is supported by Shell pr ogram, which consists of a set of configuratio n commands. Those com mands a[...]
-
Page 88
87 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 4.2.1.1.2 Admin Mode Admin Mode prompt “Switch#” can be entered under the U ser Mode by running the enable command and entering the c orresponding adm in user password, if set. Or , when the exit command is run under Global Mode, it will return t o the Admin Mode. ES4710 BD also provides t he shor[...]
-
Page 89
88 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch under Global Mod e. mode, speed, etc. 4.2.1.1.3.2 VLAN Mode Using the vla n <vlan-id> com mand under Global Mode , you can enter the corresponding VLAN Mode. Under V LAN Mode the user can confi gure all m ember ports of the corresponding VLAN. Run the exit comm a nd to exit the VLAN Mode to Glob[...]
-
Page 90
89 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch extended command un der Global Mode. for Extended IP ACL Mode return to Global Mode. 4.2.1.2 Configuration Syntax ES4710BD provi des various confi guration comm an ds. Although all the comm ands are diff erent, they all a bide by the syn tax of ES4710 BD configuration comm an ds. The general command f[...]
-
Page 91
90 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Right “ → ” The cursor moves one character to the right. Ctrl+p The same as Up key “ ↑ ”. Ctrl+n The same as Down key “ ↓ ”. Ctrl+b The same as Left key “ ← ”. Ctrl+f The same as Right key “ → ”. Ctrl+z Returns to the Admin Mode dire ctly from the ot her configuration m o[...]
-
Page 92
91 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Unrecognized comm and or illegal parameter! The entered comm and does not exist, or there is error in parameter scope, type or form at. Ambiguous command At least two i nterpretation are possible based on the current input. Invalid command or parameter The command is recogn ized, but no valid paramete[...]
-
Page 93
92 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 4.3.2 Module Fr ont Panel When entering username, password and pa ssing authentication, you will see the followin g web manage ment m ain page. On the left of the managem ent page is th e main m anagement m enu and on the right of t he page system information and command param eter are displayed. Cl i[...]
-
Page 94
93 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 5 Basic Switch Configuration 5.1 Basic Switch Configuration Commands This section cov ers the basic configuration for the switch, i ncluding all the commands for entering and exit ing the Adm in Mode and Interface Mode , setting and displaying switch c lock and displaying system version inform[...]
-
Page 95
94 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch user password are all wr ong, it rem ains in th e User Mode. Set t he Admin user password under Global Mode with the “ enable password ” command. Example: Switch>enable password: ***** (adm in) Switch# Related command: enable password 5.1.4 enable password Command: enable password Function: Mod[...]
-
Page 96
95 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Default: The defau lt value is 5 minutes. Usage Guide: T o ensure security for the switch an d prevent m alicious operation of unauthorized users, timeout count will st art after the last co nfiguration by the Admin user . The system w ill automatically exit the Adm i n Mode upon th e preset timeout t[...]
-
Page 97
96 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: <hostname> is the host na me, up to 15 characters are all owed; <ip_ad dr> is the corresponding IP address fo r the host name and takes a decimal form at. Command mode: Global Mode Usage Guide: Sets the ass ociation betw een host and IP address, which can be u sed in commands l[...]
-
Page 98
97 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch#r eload 5.1.12 setup Command: setup Function: Enters the Setup Mod e of the sw itch. Command mode: Admin Mode Usage Guide: ES4710BD provides a Setup Mode, in wh ich the user can configure IP addresses, etc. 5.1.13 language Command: language {chinese|english} Function: Sets the language for disp[...]
-
Page 99
98 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: The switch sends an ICMP packet to remote devices to verify the connectivity between the switch and remote dev ices. Parameters: <ip-addr> is t h e tar get host IP address for ping, in decim al format. Default: Sends 5 ICMP packets of 56 by tes each, tim eout is 2 seconds. Command mode[...]
-
Page 100
99 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch T el net is a simple rem ote terminal prot ocol for remote lo gin. Using T elnet, the user can login t o a remote host with its IP address of hostn ame from his own w orkstation. T elnet can send t he user ’ s keystrokes to a rem ote host and send the rem ote host’ s output to the user’ s screen[...]
-
Page 101
100 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch information. 2. T elnet to a remote host fr om the switch 5.2.2.3 T elnet Commands 5.2.2.3.1 monitor Command: monitor n o m o n i t o r Function: Enables debuggi ng information for T elnet clients logged in to the switch, t he Console end debug dis play will be disabled at the same time; th e “no m[...]
-
Page 102
101 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Connecting H ost 20.1.1.123 Port 23... Service port is 23 Connected to 20.1.1.123login:123 password:*** router> 5.2.2.3.3 telnet-server enable Command: telnet-server e nable no telnet-server enable Function: Enables the T elnet serv er function in the switch: the “ no telnet-server enable” c o[...]
-
Page 103
102 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch command deletes the specified T elnet user . Parameters: <username> is the T elnet client’ s usernam e, up to 16 character s are allowed; <password> is the lo gin password, up to 8 characters are allowed; 0|7 indic ate non-masked password display and masked passw ord display . Command m[...]
-
Page 104
103 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch#show clock Current time is TUE AUG 22 11 : 00 : 01 2002 Related comma nd: clock set 5.2.4.2 show debugging Command: show debugging Function: Displays the de bugging switch status. Usage Guide: If a user needs to check what debugging sw itches have been enabled, show debugging command can b[...]
-
Page 105
104 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch enable config interface ethernet 1/ 3 enable show flash show ftp 5.2.4.5 show memory Command: show memory Function: Displays the cont ents in the m e mory . Command mode: Admin Mode Usage Guide: This com mand is used for switch debugging purposes. The comm and will interactively prompt the user to en[...]
-
Page 106
105 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch#show runnin g-config 5.2.4.7 show startup-config Command: show startup - config Function: Displays the switch param eter configurations written in th e Flash mem ory at the current operation, tho se are usually also the configuration files used for t he next power -up. Default: If the configur[...]
-
Page 107
106 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.2.4.9 show tcp Command: show tcp Function: Displays the current TCP connection status establ ished to the switch. Command mode: Admin Mode Example: Switch#show tcp LocalAddress LocalPort ForeignAddress ForeignPort State 0 . 0 . 0 . 0 2 3 0 . 0 . 0 . 0 0 L I S T E N 0 . 0 . 0 . 0 8 0 0 . 0 . 0 . 0 0[...]
-
Page 108
107 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Switch#show telnet login Authenticate l ogin by local. Login user: aa Switch# 5.2.4.12 show telnet user Command: show telnet user Function: Displays authori zed T elnet client’ s information Usage Guide: This comm and can be used to check f or al l current authorized T elnet clients. Examp[...]
-
Page 109
108 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.3 Configuring Switch IP Addr esses All Ethern et ports of ES4710BD perfor m layer 2 forwarding. The VLAN interface represents a Layer 3 interface function, which can be assigned an IP address, this is also the IP address of the switch. All VLAN interface related config uration commands can be confi[...]
-
Page 110
109 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 3.DHCP Command Expl anation ip dhcp-client enable no ip dhcp-client enable Enables the switch t o be a DHCP client and obtain IP address and gateway address thro ugh DHCP negotiation; th e “ no ip dhcp-client enable ” command disa bles the DHCP client function. 5.3.2 Commands for Configuring Sw i[...]
-
Page 111
11 0 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config)#interface vlan 1 Switch(Config-If-Vlan1)#ip bootp-client enable Switch (Config-If-Vlan1)#exit Switch (Config)# Related command: ip addre ss, ip dhcp-client en able 5.3.2.3 ip dhcp-client enable Command: ip dhcp-client enable no ip dhcp-client enable Function: Enables the swit ch to be[...]
-
Page 112
111 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch SNMP protocol provide a relatively di rect way of exchanging m anagement information between two points in th e network. S NMP employs a polli ng mechanism of message query transmitted throug h UDP (a connectionless transport l ayer protocol), and is therefore well supported by the existing c o mpute[...]
-
Page 113
11 2 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 5-1 AS N.1 tree instance In this figure, the OI D of object A is 1.2.1.1. NMS can find t his object witho ut ambiguity through the object’ s unique OID to get the standard variabl e contained in t he object. MIB w ill define a set of standard variables for monitored ne twork devices accor ding[...]
-
Page 114
11 3 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Statis tics: Maintains basic utilizati on and error statistics for eac h subnet m onitored by the Agent. History: Records periodica l statistic sam ples available from S tatistics. Alarm: Allows users to set any c ount or int e ger for s ample inter vals and alert thresholds for RMON Agent records. [...]
-
Page 115
11 4 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch configured secure a ddress. 4. Configuring TRAP Command Expl anation snmp-server enable traps no snmp-server enable tr aps Sets the switch to enable to send T rap messages; the “ no snmp-server en able traps ” command disables T rap messages. snmp-server host <host -addr> <community-str[...]
-
Page 116
11 5 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: <string> is the com munity string set; ro| r w is the specified access mode to MIB, ro for read-only and rw for read-write. Usage Guide: Up to 4 comm unity strings are supported by the switch. Example: Adding a comm u nity string n amed “private” with read-write perm ission. Sw[...]
-
Page 117
11 6 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.4.4.2.5 snmp-server host Command: snmp-server host <host-addr> <community-string> no snmp-server host <h ost-addr> Function: Sets the IP address and T rap community string of the NMS to rece ive SNMP trap message; the “ no snmp-server host <host-addr> ” command de letes[...]
-
Page 118
11 7 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1. 1. 1. 5 1. 1. 1. 9 Fig 5-2 SNMP Configurati on Example The IP address of NMS is 1. 1.1.5; the Switch (Age nt) IP address is 1.1.1.9 . Scenario 1: The NMS n etwork adm inistrative software uses SNMP proto col to obtai n data from th e switch. The configuration of the switch is listed below: Switch[...]
-
Page 119
11 8 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Displays all SNMP counter inform ation. Command mode: Admin Mode Example: Switch#show snmp 0 SNMP packets input 0 Bad SNMP version errors 0 Unknown community name 0 Ill egal operation for community name supplied 0 Encoding errors 0 Number of requested variables 0 Number of altered variable[...]
-
Page 120
11 9 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch MIB objects bad values errors Number of “Bad_values” error SNMP packets general errors Number of “General_errors” error SNMP packets response PDUs Number of response packets sent trap PDUs Number of T rap packets sent 5.4.6.1.2 show snmp status Command: show snmp status Function: Displays SN[...]
-
Page 121
120 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.4.6.1.3 debug snmp packet Command: debug snmp packet no debug snmp packet Function: Enables the SNMP debug function: the “ no debug snmp packe t” command disables this debug function. Command mode: Admin Mode Usage Guide: When pr oblems occur in S NMP , SNMP debug function can be enabled to loc[...]
-
Page 122
121 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.5.1 BootROM Upgrade There are two m ethods for BootROM upgrade: TFTP and FTP , which can be select ed at BootROM command settin gs. Fig -5-3 T ypica l topology for switch upgrad e in BootR OM m ode The upgrade procedures are listed below: St e p 1 : As shown in t he figure, a PC is us ed as the con[...]
-
Page 123
122 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2 1 9 . 3 2 B o g o M I P S S S T 3 9 V F 0 4 0 C P U : P o w e r P C M P C 8 2 4 5 M H 2 6 6 , R e v i s i o n 1 4 V e r s i o n : 1 . 4 . 1 C r e a t i o n d a t e : A p r 1 4 2 0 0 5 , 0 9 : 3 3 : 1 8 A t t a c h e d T C P / I P i n t e r f a c e t o l n P c i 0 . [ B o o t ] : St e p 3 : Under Bo[...]
-
Page 124
123 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch mirror file. [Boot]: wr ite nos.img Programming... Program OK. [Boot]: St e p 6 : After successful upgr ade, execute the “r un” comm and in BootR OM mode to return to CLI configuration interface. [Boot]:run ( or reboot ) Other commands in BootROM mode 1. DIR command Used to list existing fi l[...]
-
Page 125
124 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch to establish management connection o n port 21 in the s erver, and neg otiate a data c onnection through the mana gement connection. There are two types of data connections: ac tive connecti on and passive connection. In active connection, the client transmits its ad dress and port number for data tr[...]
-
Page 126
125 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch backup and up date of the co nfigurations. S tart up configuration file: refers to the configuration sequence use d in switch start up. ES4 7 10BD start up configurat ion file stores in FLA SH only , corresponding to the so called config uration save. T o prev ent illicit fil e upload and easier conf[...]
-
Page 127
126 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1. FTP/TFTP client configuration ( 1 ) FTP/TFTP client upload/down load file Command Expl anation Admin Mode copy < source-url> <destination-url> [ascii | binary] FTP/TFTP client upload/downloa d file ( 2 ) For FTP client, server file list can be checked Global Mode dir <f tpSe[...]
-
Page 128
127 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 3. TFTP server configuration ( 1 ) Start TFTP server Command Expl anation Global Mode tftp-server en able no tftp-server enable Starts TFTP server , the “ no ftp-server enable ” command shuts down TFT P server and prevents TFTP users from logging in. ( 2 ) Modify TFTP server c onnection i[...]
-
Page 129
128 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Special Keywords in filename keyword Sour ce/T arget IP address running-config Active configuration file startup-config Start up confi guration file nos.img System file Boot.rom System boot fi le Command mode: Admin Mode Usage Guide: The comm and provides com mand line prompt messages. If the user en[...]
-
Page 130
129 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: view ing the file list of the FTP server 10.1.1.1 wi th the username “ Switch ” and password “ edgecore ”. Switch# config Switch( Config)#dir ftp:// Switch:edgecore@10.1.1.1 5.5.2.2.5 ftp-server enable Command: ftp-server enab le no ftp-server enable Function: Enables FTP server , th[...]
-
Page 131
130 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.5.2.2.7 ip ftp Command:ip ftp < username> password [type{0|7}] < password> no ip ftp username < username> Function: Configures the FTP username and passwo rd; the “ no ip ftp username < username> ” command deletes the password as we ll as the usernam e configured. Parame[...]
-
Page 132
131 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Usage Guide: The comm and provides com mand line prompt messages. If the user ent ers a command li ke copy <filename> tftp:// or copy tftp:// <filename> and presses Enter , the following prompt will appe ar: tftp server ip address> tftp filename> This prompts for the TFTP server add[...]
-
Page 133
132 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.5.2.2.10 tftp-server retransmission-number Command: tftp-server r etransmission-number < number> Function: Sets the retransmission time for TFTP server Parameters: < number> is the time to re-transfer , the valid range is 1 to 20. Default: The default value i s 5 retransmission. Command[...]
-
Page 134
133 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Scenario 1: The switch is used as FTP/T FTP client. T h e switch connects from one of its ports to a computer , which is a FTP/TFTP server with an IP address of 10.1.1. 1; the switch acts as a FTP/TFTP client, the IP address of the switch managem e nt VLAN is 10.1 .1.2. Download “nos.im g” file i[...]
-
Page 135
134 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch (Config)#inter vlan 1 Switch (Config-If-Vlan1) #ip address 10.1.1. 2 255.255.255.0 Switch (Config-If-V lan1)#no shut Switch (Config-If-Vlan1)#exit Switch (Config)#ftp-server ena ble Switch(Config)#ip ftp Swit ch password 0 edgec ore Computer side confi guration: Log in to the switch w ith any [...]
-
Page 136
135 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch “edgeco re”. Save “Profil e1”, “Profile2” and “Prof ile3” in the appropriate FTP server directory on the computer . The configuratio n procedures of the sw itch are listed bel o w: Switch (Config)#inter vlan 1 Switch (Config-If-Vlan1) #ip address 10.1.1. 2 255.255.255.0 Switch (Config[...]
-
Page 137
136 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch FTP Configuration PC side: Start the FTP server soft ware on the PC and set t he usernam e as “Switch”, and the password as “edgeco re”. ES4710BD : Switch (Config)#inter vlan 1 Switch (Config-If-Vlan1) #ip address 10.1.1. 2 255.255.255.0 Switch (Config-If-V lan1)#no shut Switch (Config-If-V[...]
-
Page 138
137 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Switch#show ftp T imeout :600 Displayed inform ation Description T imeout T imeout time. 5.5.2.4.3 show tftp Command: show tftp Function: displays the param eter setti ngs for the TFTP server Default: Ther e is no display by default. Command mode: Admin Mode Example: Switch#show tftp timeout[...]
-
Page 139
138 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch send file 150 Opening ASCII mode data connectio n for nos.im g . 226 T ransfer complete. close ftp client. & The following is the m essage displays when file s are successfully received. Otherw ise, please verify link conne ctivity and retry “copy” com mand again. 220 Serv-U FTP-Server v2.5 b[...]
-
Page 140
139 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch & The following i s the message displayed wh en fi les are successfully received. Ot herwise, please verify link conne ctivity and retry the “copy ” command agai n. begin to receive file,wait.. . recv 1526037 ********* *********** **** write ok transfer complete close tftp client. If the swit[...]
-
Page 141
140 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Basic host config uration – confi gures the m apping relationsh ip between t he switch and the IP address. Please refer to the CLI com mand 5.1.8. Example: conf igure the Hostnam e as “London” and IP address as 20 0.121.1.1 and then cli ck on the “Apply” butto n . This configurati on will[...]
-
Page 142
141 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.6.2.2 T rap manager configuration Users should click “Switch basic configuration”, “SNMP configuration”, and “TRAP manager configuration” to configure the IP address of the m anagement station which will receiv e SNMP T rap messages and Trap c ommunity strings. Pl ease refer to the CLI [...]
-
Page 143
142 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.6.2.4 SNMP statistics When users click “S witch basic confi guration”, “SNMP configuration” and “SNMP statistics”, a variety of counter inform ation will appear . Please refer to the CLI com mand 5.4.6.1.1. 5.6.2.5 RMON and trap configuration Users should click “ Switch basic configur[...]
-
Page 144
143 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.6.3 Switch upgrade Users should click “ Switch basic configurati on” a nd “Switch upda te” to co nfigure the upgrad e Node T ree Diagram. T wo categori es are explained bel o w: z TFTP Upgrade, including 9 TFTP client service – to co nfigure TFTP client 9 TFTP server service – to config[...]
-
Page 145
144 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Server state - status of the server . (“Open” or “ Close”) Please refer to the CLI c o mm and 5.5.2.2.10 TFTP Tim eout - the timeout. Please refer to the CLI com mand 5.5.2.2.12. TFTP Retransmit times - ti mes of retransmission. Please refer to the CLI com mand 5.5.2.2.1 1. Users should[...]
-
Page 146
145 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch configuration .” W ords and phrases of “user configur ation” are explai ned in the fol lowing: z FTP Server state - status of the server . (“Open” or “Close”.) Please refer to t he CLI comm and 5.5.2.2.5. z FTP Tim eout - the timeout. Please r efer to the CLI command 5.5.2.2.6. z Us[...]
-
Page 147
146 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Show telnet user - to display al l T elnet client messages with au thenticated switch access through T elnet. Please refer to the CLI command 5. 2.4.12. z Show version - to display the num ber/version of the switch. Please refer to the CLI comm and 5.2.4.13. 5.6.4.1 Debug command User should cl[...]
-
Page 148
147 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.6.4.3 Others Other parts ar e easier to co nfigure. Users just cl ick a configuration node and the relati ng messages will appear . Example: to display the clock: to display FLASH files: 5.6.5 Basic intr oduction to switch Users should clic k “Switch basi c configuration” and “ Switch basic i[...]
-
Page 149
148 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.6.6 Switch on-off information Users should clic k “Switch on-off information” to e nter into t he configur ation page a nd make configuration nodes. W ords and phrases are explained in the following : RIP Status - o n-off switc h of RIP . (“Open” or “Close”) Refer to the CLI com mand [...]
-
Page 150
149 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 5.6.7.2 Exit current web configuration Users should quit t h e web-l ogin by click ing “Switch maintenance” and “Exit current web configuration .” 5.6.7.3 Save current running-config Users should save t he current r unning-config by clicki ng “Switch m aintenance”, “Save current running[...]
-
Page 151
150 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z T elnet server S tate - to choose from the drop-down list. (“ Open” and “Close” ser vice) Please refer to the CLI com mand 5.2.2.3. 3. User name - a specific nam e of the T elnet user Password - to configure a specific password Encrypted text - to configure whether the p[...]
-
Page 152
151 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 6 Device Management 6.1 Device Management Brief The device m anagement fu nction of ES471 0BD provides inf o rmation about line card status, line card operati on debugging, power supply an d fan status. This function enables t h e mainten ance and management of the physical devices and res ta[...]
-
Page 153
152 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Switch # show slot M1 ---------- --------Slot : M1--------- --------- I n s e r t e d : Y E S M o d u l e t y p e : E M 4 7 1 0 B D - A G E N T W o r k m o d e : A C T I V E M A S T E R W o r k s t a t e : R U N N I N G S o f t w a r e v e r s i o n : 1 . 0 . 3 . 0 H a r d w a r e v e r s i [...]
-
Page 154
153 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Switch # show power - - - - - - - - - - p o w e r i n f o r m a t i o n - - - - - - - - - - p o w e r 1 I n s e r t e d : N O p o w e r 2 I n s e r t e d : N O p o w e r 3 I n s e r t e d : Y E S 6.2.2.1.4 debug devsm Command: debug devsm { send | re ce iv e | state } no debug devsm { se nd [...]
-
Page 155
154 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch If the cards need to be replaced during normal operati on, the following guidelines should be followed: Display a message of processing card hot removal. The card can be rem oved when the RUN indicator for the card to be removed goes off an d the status of th e card in master co ntrol board i[...]
-
Page 156
155 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 6.4.1 Reset specific module Click “Device managem ent”, “Reset specific m odule”, select a module number and c lick “Apply”, then that m odule will be hot -swapped. This funct ion is equal to the C LI command showing in 6.2.1 . Click the Res et button to c onfirm the selection of the modu[...]
-
Page 157
156 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 6.4.3 Show fan Click “Device managem ent”, “Show power”. The inf ormation co lumn display ed on the right will show the current pow er status and displa y even if the power is plug ged in or not. This function is equal to CLI command 6.2.2 .1.3. 6.4.4 Show power Click “Device managem ent”[...]
-
Page 158
157 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 7 Port Configuration 7.1 Intr oduction to Port ES4710BD comes with line cards and master control boards. Line cards provide various network ports . The master control boards provide n o network ports , only Console interface and network m anagement port. The Console interface and n etwork m a[...]
-
Page 159
158 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 7.2 Port Configuration 7.2.1 Network Port Configuration 7.2.1.1 Network Port Configuration T ask Sequence 1. Enter the ne twork port configurati on mode 2. Configure the properties for the netw ork ports ( 1 ) Confi gure combo mode for com bo ports ( 2 ) Enab le/Disable ports ( 3 ) Confi [...]
-
Page 160
159 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch speed-duplex {auto | force10-half | force10-full | for ce100 -half | for ce100-full | { {for ce1g-half | for ce1g-full} [nonegotiate [master | slave]] } } Sets port speed and duplex m ode of 100/1000Base-TX ports. T h e “no” format of this comm and restores the default setting, i.e., negotiates s[...]
-
Page 161
160 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch the port. For example, a band width limit of 101 M (or more) canno t be set for a 10/100M Ethernet port. But for a 10/100/10 00M port working under 100M, a bandwidth lim it of 101M (or more) is permitted. Example: setting the bandwidth limit of ports 1 – 8 of slot 3’ s card to 40M. Switch(Config)[...]
-
Page 162
161 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Note: & Combo port is a conception involving t he physical layer and the LLC sublayer of t he datali nk layer . The status of a com b o port will not af fe ct any operation in th e MAC sublayer of the datalink layer and upper layers. If the bandwidth lim i t for a combo port is 1Mbps, then this 1[...]
-
Page 163
162 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 7.2.1.2.4 interface ethernet Command: interface ethernet <interface-list> Function: Enters Ethernet Interfa ce Mode from Global Mode. Parameters: <interface-list> sta nds for port number . Command mode: Global Mode Usage Guide: Run the exit command to exi t the Ethernet In terface Mode to[...]
-
Page 164
163 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Setting the ca ble type supp ort of Ethernet ports 3/5 – 8 to straight-t hrough cable only . Switch(Config)#interface et hernet 3/5-8 Switch(Config-Port-Range)#m di normal 7.2.1.2.7 name Command: name <string> n o n a m e Function: Sets a name for the specified port; the “ no name [...]
-
Page 165
164 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 7.2.1.2.9 rate-suppression Command: rate-suppression {dlf | br oadcast | multicast} <packets> no rate-suppr ession {dlf | broadcast | multicast} Function: Sets the traffic limit for broadcasts, multicasts and un known destinati on unicasts on all ports in the s witch; the “ no rate-suppr essi[...]
-
Page 166
165 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 7.2.1.2.1 1 speed-duplex Command: speed-duplex {auto | fo rce10-half | for ce10-full | fo rce100-half | for ce100-full | { {force1g-half | for ce1g-full} [n onegotiate [master | slave]] } } no speed-duplex Function: Sets the speed and duplex m ode for 1000Base-TX or 100Base-TX ports ; the “ no spee[...]
-
Page 167
166 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2. Configure the IP addr ess fo r VLAN in terface and enables VLAN interface. Command Expl anation VLAN Mode ip address <i p-address> < mask> [secondary] no ip address [ <ip-addr ess> <mask> ] Configures the VLAN interface IP address; the “ no ip addr ess [ <ip-addr ess&g[...]
-
Page 168
167 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: <ip-addr ess> is the IP address in decimal format; < mask> is the subnet m ask in decimal form at; [secondary] indicates the IP configured is a secondary IP address. Command mode: VLAN Interface Mode Default: No IP address is configured by defau lt. Usage Guide: This com mand [...]
-
Page 169
168 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2. Configur e the propertie s for the network man agement port Command Expl anation Network Managem ent Port Configuration shutdown no shutdown Enables/Disables network management port speed {auto| force10| for ce100| } Sets network managem ent port speed duplex {auto| full| half} Sets network m anag[...]
-
Page 170
169 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 7.2.3.2.2 interface ethernet Command: interface ethernet <interface-name> Function: Enters network m anagement port co nfiguration m ode fro m Global M ode. Parameters: <interface-name> stands fo r port number , the defaul t value is 0. Command mode: Global Mode Usage Guide: Run the exit [...]
-
Page 171
170 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 7.2.3.2.5 shutdown Command: shutdown no shutdown Function: Shuts down the network management port; t he “ no shutdown ” command opens the port. Command mode: Network managem ent port configuration Mode Default: Network managem ent port is open by default. Usage Guide: When network m anagement por[...]
-
Page 172
171 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch mirror destination port. A protocol analyzer (such as S niffer) or RMON m onitoring instrument is often attached to the mirror destina tion port to m onitor and manage the netw ork and diagnostic. ES4710BD support one m irror destination port onl y . The number of mirror source ports are not limited,[...]
-
Page 173
172 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: <session> stands for m i rror session value, on ly 1 may be used a t present; <interface-list> stands for mirror source port list, special char acters like “-“ and “;” are supported; cpu slot <slotnum> stands for use the C PU of the card in the specified s lot as[...]
-
Page 174
173 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Displays inform ation about m i rror source/destina tion ports. Command mode: Admin Mode Usage Guide: This comm and displays the m irror so urce port(s) and destination port currently configured. Example: Switch#show m onitor 7.2.4.5.2 Device Mirroring T roubleshooting Help If a problems oc[...]
-
Page 175
174 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch No VL AN has been co nfigured in the switches, default VLAN1 is used. Switch Port Pr operty SW1 2/7 Ingress bandwidth lim it: 150 M SW2 1/8 Mirror so urce port 3/9 100Mbps full, m irror source port 4/12 1000Mbps full, mirror destination port SW3 4/10 100Mbps full The configuratio ns are listed below:[...]
-
Page 176
175 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Default: Port statistics are n ot cleared by default. Usage Guide: If no port is specified, then statistic s of all ports will be cleared. Example: Clearing the stat istics fo r Ethernet port 1/1. Switch#clear counters ethernet 1/1 7.4.1.2 show interface Command: show int erface [{ethernet <interf[...]
-
Page 177
176 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 7.5.1 Ethernet port configuration Click “Port co nfiguration”, “ Ethernet port configur ati on” to open the Ethernet port config uration management t able to config ure Ethernet port d uplex, speed, ban dwidth contr ol and so on. 7.5.1.1 Physical port configuration Click “port c onfiguratio[...]
-
Page 178
177 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Bandwidth control level: port bandwidt h control. Th e unit is Mbps and the value range is 1~1000 0Mbps z Control type: Ingress means to con trol port bandw idth when receiving data packet sent from outside the switch. E g ress means to contro l port bandwidth when sending data packets to o utside [...]
-
Page 179
178 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 7.5.2.2 L3 port IP addr mode configuration Click “Port co nfiguration”, “vlan i nterface configur ation”, “L3 port IP addr mode configur ation” to set up L3 port IP address mode c onfiguration. z Port: L3 port z IP mode: Specifies the Ip address, meaning us ers need to set up L3 IP addres[...]
-
Page 180
179 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Configure m irroring destination port. Equals to CLI c ommand 7.2.3.3.2. z Session: Mirroring di alog value z destination interface z tag: Setting the vlan tag function means all mi rroring packets carry vlan tags; prese rve means that if the Ingress mirroring packet, carrying a vla n tag, while Ingr[...]
-
Page 181
180 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 8 MAC T able Configuration 8.1 Intr oduction to MAC T able MAC table ident ifies the mapping relationshi p between destination MAC addresses and switch ports. MAC addresses can be categorized as st at ic MAC addresses and dynamic MAC addresses. Stati c MAC addresses are manually c onfigured b[...]
-
Page 182
181 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch period. When the switch rec e ives a data fram e to be forwarded, it st ores the source MAC address of the data frame and crea tes a mapping to the destin a tion port. T hen, the MAC table is qu eried for the destination MAC address, i f hit, the data frame is forwarded to t h e associate d port, oth[...]
-
Page 183
182 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch added to the s witch MAC table. 2. At the sam e time, the switch learns t he message is d estined to 00-01-33-33-3 3-33, as the MAC table contains only a m apping entry of MAC ad dress 00-01-1 1-1 1-1 1-1 1 and port 1/5, and no port mapping for 00-0 1-33-33-33-33 present, t he swit ch broadcas ts thi[...]
-
Page 184
183 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch are configured in the switch, the MAC table will be adapted acc ordingly to add VLAN information. In t his case, the switch wil l not fo rward the received broadcast frames to all ports, but forward the fram es to all ports in the same VLAN . 2. Multicast fram es: If IGMP Snooping function has not be[...]
-
Page 185
184 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch no mac-address-table [{stat ic | dyn amic} [address < mac-ad dr> ] [vlan < vlan-id> ] [interface < interface-name> ] ] Function: Adds or modifies static address entries, the “ no mac-address-table ” c ommand deletes static address entries a nd dynamic address entries. Parameters[...]
-
Page 186
185 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1/ 7 1/ 9 1/ 11 1/ 5 PC1 MAC 00-01 -11-11-11 -11 PC4 MAC 00-01-44-44 -44-44 PC3 MAC 00-01-33-33- 33-33 PC2 MAC 00-01-22-22-2 2-22 Fig 8-2 MA C T able typical confi guration example Scenario: Four PCs as shown in the above figure are connected to ports 1/5, 1/7, 1/9, 1/1 1 of ES4710BD, all[...]
-
Page 187
186 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.4.1.2 show mac-address-table static Command: show mac-address -table [static] [addr ess < mac-addr> ] [vlan < vlan-id> ] [interface < interface-name> ] Function: Displays the content of the cu rrent MAC table in t he switch. Parameters: static stands for static entries; <mac-ad[...]
-
Page 188
187 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch support for a soluti on. 8.5 MAC Address Function Extension 8.5.1 MAC Address Binding 8.5.1.1 Introduction to MAC Address Binding Most switches support MAC address l earning, allowing each port to dynamically learn several MAC addresses so t hat forwarding dat a streams between known MAC ad dresses w[...]
-
Page 189
188 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2. Lock the MAC addresses f or a port Command Expl anation Interface Mode switchport port-security lock no switchport port-security lock Locks the port. W h en a port is locked, the MAC address lear ning function for the port will be dis abled: the “ no switchport port-security lock” command res [...]
-
Page 190
189 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.5.1.2.2 MAC Address Binding Configuration Commands 8.5.1.2.2.1 switchport port-security Command: switchport port-security no switchport port-security Function: Enables the MA C address bindin g function for the port: the “ no switchport port-security” command di sables the MAC ad dress binding [...]
-
Page 191
190 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Locks the port. When a port is locked, the MAC ad dress learning function for the port will be disabled: the “ no switchport port-security lock” command restores the MAC address learning function for the port. Command mode: Interface Mode Default: Ports are not locked by default. Usage [...]
-
Page 192
191 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch address can be ad ded. Example: Adding MAC 00-03-0F-FE-2E-D3 to port 1 . Switch(Config)#interface Ethern et 1/1 Switch(Config-Ethernet1/1) #switchport port -secur ity mac-address 00-03-0F-FE-2E-D3 8.5.1.2.2.6 clear port-security dynamic Command: clear port-securi ty dynamic [addr ess < mac-addr>[...]
-
Page 193
192 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.5.1.2.2.8 switchport port-security violation Command: switchport port-security violation {pr o tect | shutdown} no switchport port-security violation Function: Sets the viol ation mode for the port; the “ no switchport port-security violation ” command restores t he violation mode to p rotect .[...]
-
Page 194
193 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Displayed inform ation Explanation Security Port Name of port that is c onfigured as a s ecure port. MaxSecurityAddr The maxim um number of secure MAC addresses set for the secure port. CurrentAddr Current number of secure MAC addresses for the secure port. Security Action V iolation m ode set for th[...]
-
Page 195
194 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Port Security Is port en abled as a secure port? Port status Port secure status V iolatio n mode V iolatio n mode set for t he port. Maximum MAC Addresses The maxim um number of secure MA C addresses set for the port T otal MAC Addresses Current number of secure MA C addresses for the port. Configure[...]
-
Page 196
195 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.5.1.3.2 MAC Address Binding T roubleshooting Help Enabling MAC a ddress binding for ports may fail on some occasi ons. Here are som e possible causes and soluti ons: & If MAC address bin ding cannot be enabled for a port, make sure the port is not ex ecuting Spanning tree, port aggregation an d[...]
-
Page 197
196 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.6.1.2 Delete unicast address Click “MAC address table configuration ”, “MAC addr ess table configuration”, to delete a u n icast address and MAC addr ess. Equals to CLI command 8.2. 2: z Delete by VID: Dele tes static MAC by the specifi ed VID. Select Delete button to c onfirm the action z [...]
-
Page 198
197 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Select VID 1 and select query by VID. Click Search starting query . The new page will s how the query results 8.6.1.4 Show MAC addr ess table Click “MAC ad dress table c onfiguration” , “MAC address table configuratio n”, “show mac-address-table” to sh ow current MA C address inf[...]
-
Page 199
198 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.6.2.1 Enable port MAC-Binding Click “MAC address table configuration”, “MAC ad dress binding configurat ion”, “Enable port Mac-binding”, to en able port MAC-binding list to se t up port security function. 8.6.2.1.1 Enable port MAC-Binding Click “MAC address table configuration”, “[...]
-
Page 200
199 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.6.2.2.3 Enable port security timeout Click “MAC address table config uration”, “MAC a ddress binding configuration”, “ Lock port”, “Enable port securi ty timeout” to lock port securi ty . Equa ls to CLI command 8.5.1.2.2.4: z Port: specifies the configuration port z T imeout V alue [...]
-
Page 201
200 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.6.2.3 MAC binding attribution configuration Click “MAC address table configur ation”, “MA C address binding c onfiguration”, “MAC binding attribution config uration” to enable port security con figuration m anagement lists to se t up port security types. 8.6.2.3.1 Maximum port security [...]
-
Page 202
201 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 8.6.2.4 MAC binding debug Click “MAC address table configur ation”, “MA C address binding c onfiguration”, “MAC binding debug” to open p o rt security debug window to check port secur ity debugging information. 8.6.2.4.1 Show MAC binding security addr ess Click “MAC address table config[...]
-
Page 203
202 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 9 VLAN Configuration 9.1 Intr oduction to VLAN VLAN (V irtual Local Area Network) is a technology that divides t h e logical ad dresses of devices withi n the network t o separate network se gments based on functions, ap plications or management requ irements. This way , virtual workgroups ca[...]
-
Page 204
203 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch conveniences: z Improved netw ork performance z Savings on network resources z Simplified Ne twork Managem ent z Lowered network cost z Enhanced netw ork security VLAN and GVRP (GARP VLAN Registration Prot ocol) are defined by IEEE 802.1Q and implemented by ES4710BD. This chapter will desc r ibe the [...]
-
Page 205
204 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 4. Set The Switch Port T ype 5. Set T runk port 6. Set Access port 7. Disable/Enable VLAN Ingress Rules 9.2.2 VLAN Configuration Commands 9.2.2.1 vlan Command: vlan < vlan-id> no vlan < vlan-id> Function: Creates a VLAN and enters VLAN confi guration mode. In VLAN Mode , the user ca n Com[...]
-
Page 206
205 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch configure a V LAN name and the switch ports assigned t o the VLAN. The “ no vlan < vlan-id> ” command deletes s pecified VLAN s. Parameters: < vlan-id> is the VLAN ID to be created/deleted, vali d range is 1 to 4094. Command mode: Global Mode Default: VLAN 1 is set by defaul t. Usage [...]
-
Page 207
206 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-ethernet1/8) #switchport mode access Switch(Config-ethernet1/8) #switchport access vlan 100 Switch(Config-ethernet1/8) #exit 9.2.2.4 switchport interface Command: switchport interface < interface-list> no switchport interface < interface-li st> Function: Assigns Ethernet por[...]
-
Page 208
207 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command: switchport trunk allowed vlan {< vlan-list> | all} no switchport trunk allowed vlan Function: Sets trunk port to allow VLAN traffic; the “ no switchport trunk allowed vlan ” command restores t he default setting . Parameters: < vlan-list> is the lis t of VLANs allowed to pass[...]
-
Page 209
208 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command mode: Interface Mode Default: VLAN ingress rules are enab led by default . Usage Guide: When VLAN ingress r u les are enabled on th e port and the system receives data, it will check the source port first, t h en forwards the da ta to the destination port if it is a VLAN member port. Example:[...]
-
Page 210
209 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch VLAN200 Site A and site B switch por t 8 – 10. T runk port Site A and site B switch port 11 . Connect the T runk ports of both switches for a T runk link to convey the cross-swit ch VLAN traf fic. Connect all ne twork devices to the other po rts of the corresponding VLANs. In this example, por t 1 [...]
-
Page 211
210 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 9.3 GVRP Configuration GARP (Generic Attribute Registration Proto col) can be used t o dynam ically distribute, populate and r egister property information between switch members withi n a switch networ k, the property can be VLAN infor mation, Multi cast MAC address of the other information. As a m [...]
-
Page 212
21 1 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 9.3.2 GVRP Commands 9.3.2.1 garp timer join Command: garp timer join < time r -value> no garp timer join Function: Sets the join timer for GARP; the “ no garp timer join ” command restores the default timer setting. Parameters: < timer -value> is the value for join timer , the valid [...]
-
Page 213
212 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-Ethernet1/1 0)#garp timer leave 3000 9.3.2.3 garp timer hold Command: garp timer hold < time r -value> no garp timer hold Function: Sets the hold timer for GARP; the “ no garp timer hold ” command restores the default timer setting. Parameters: < timer -value> is the val[...]
-
Page 214
213 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command mode: Interface Mode an d Global Mode. Default: GVRP is disabled by defaul t. Usage Guide: Port GVRP can only be enabled after globa l GVRP is enabled. When global GVRP is disabled, port GVRP configurations are al so void. Note GV RP can only be enabled o n T runk ports. Example: Enabling the[...]
-
Page 215
214 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Configuration Item Configuration description VLAN100 Port 2 – 6 of Sw itch A and C T runk port Port 1 1 of Switch A and C, P o rt 10, 1 1 of Switch B Global GVRP Switch A, B, C: Port GVRP Port 1 1 of Switch A and C, P o rt 10, 1 1 of Switch B Connect the two workstation t o the VLAN100 ports in swi[...]
-
Page 216
215 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-Ethernet1/1 1) #switchp ort mode trunk Switch(Config-Ethernet1/1 1)#gvrp Switch(Config-Ethernet1/1 1)#exit 9.4 VLAN T r oubleshooting Help 9.4.1 Monitor and Debug Information 9.4.1.1 show vlan Command: show vlan [brief| summary] [id < vl an-id> ] [name < vlan-name >] Functio[...]
-
Page 217
216 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch T otal E xisting Vlans is:2 Displayed inform ation Explanation VLAN VLAN number Name VLAN name T ype VLAN property , of statically configur ed or dynamically l earned. Media VLAN interface type: Ethernet Ports Access port within a VLAN Universal Vlan Universal VLAN. Dynamic Vlan Dynamic V LAN (not sh[...]
-
Page 218
217 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch debugging f unction . Command mode: Admin Mode Default: GVRP debugging information is disabled by default. Usage Guide: Use this c ommand to en able GVRP debugging, GVRP packet pro cessing inform ation can be displayed. Example: Enabling GVRP d ebug. Switch#debug gvrp 9.4.2 VLAN T r oubleshooting Hel[...]
-
Page 219
218 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch VLAN ID information window will di splay current VLANs of the switch: 9.5.1.1.2 VID attribution configuration Click “Vlan configuration ”, “Vlan co nfiguration ”, “Create/Rem ove VLAN”, “VID attribution configuration ” to setup VID type: z VLAN ID: specified VLAN ID z VLAN Name: all o[...]
-
Page 220
219 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Information display shows the VLAN allocation result: 9.5.1.3 Port type configuration Click “Vlan c onfiguration”, “Vlan configuration”, ”P ort type configuration” to o pen port type configuration list. 9.5.1.3.1 Set port mode(trunk/access) Click “Vlan configuration ”, “Vlan configu[...]
-
Page 221
220 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 9.5.1.4 T runk port configuration Click “Vlan configuration” , “Vlan configuration”, “ T runk port configurat ion” to open T runk port VLAN configuration list . 9.5.1.4.1 Vlan setting for trunk port Click “Vlan configuration” , “Vlan configuration”, “T runk port configura tion?[...]
-
Page 222
221 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 9.5.1.5 Set allow Vlan Click “Vlan c onfiguration”, “Vlan configuration”, “Access port conf iguration” to open Access port VLAN configuration list to allocate Access port VLAN. 9.5.1.5.1 Vlan setting for access port Click “Vlan configuration” , “Vlan configuration” , “Access por[...]
-
Page 223
222 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Click “Vlan confi guration”, “ Vlan configuration”, “Enable/Disable V lan filter rule” to open VLAN ingress configuration lis t to setup VLAN filter function . 9.5.1.6.1 Disable Vlan ingr ess rule Click “Vlan c onfiguration”, “Vlan config uration”, to Enab le/Disable Vlan ingress [...]
-
Page 224
223 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Click “Vlan confi guration”, “GVRP configuratio n”, “GVRP configuration” to configure GV RP parameters of the switch : z Port: specified port z Join timer (100~ 327650ms): co nfigures the va lue of GA RP join timer . Equals to CLI command 9.3. 2.1 z Leave tim er (100~327650m s): configu[...]
-
Page 225
224 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 9.5.3.2 Show GARP Click “Vlan confi guration”, “Vlan debug” a nd “maintenance”, “show gar p” The information window in the right will display all relat ed GARP information. Equals to CLI command 9.4.1. 2 9.5.3.3 Show GVRP Click “Vlan confi guration”, ”Vlan debug” and “mainte[...]
-
Page 226
225 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch spanning tree insta nces (MSTI). It applies the fast co nver ging properties, e nabling multipl e VLAN of the same topology to map to one spanning tree ins tance, while that span ning tree topolo gy is independent of the other sp anning tree instances. This mechanism provides an inde pendent transmit[...]
-
Page 227
226 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch CIST Regional Root. The root port in the Field CIST Regional Root is Master Port to all the MSTI in the field. When MSTP initializes, it will se nd a BPDU announcing itself as the CIST Regional Root and setting the route c ode to the CIST Root and CIST Re gional Root t o 0. The bridge w ill initializ[...]
-
Page 228
227 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.2 MSTP Configuration 10.2.1 MSTP configuration task sequence 1. Enable MSTP and set the runn ing mode 2. Configure instance parameters 3. Configure MSTP field param eter 4. Configure MSTP time pa rameter 5. Configure the fast m igrate feature for MSTP 1. Enable MSTP and set the running mode Comman[...]
-
Page 229
228 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 4. Configur e MSTP time parameters 5. Configure the fast migrate feature for MSTP Command Expl anation Global Mode spanning-tree mst configuration no spanning-tree ms t configuration Enters MSTP field configur ation mode; the no spannin g-tree mst configuration co mmand res ets the MSTP field paramet[...]
-
Page 230
229 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.2.2 Introduction to MSTP configuration commands 10.2.2.1 abort Command: abort Function: Discards the conf iguration in MSTP field and exits from MST mode to Global Mode. Command mode: MSTP Field Mode. Usage Guide: When usi ng this comm and to exit MST mode, the configuration m ade to the MSTP fiel[...]
-
Page 231
230 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch to Instance 0. Usage Guide: This com mand is used to set VLAN -Instance mappin g. Switches are considere d to be in the sam e MSTP field only if they ha ve identical m apping and ot her MSTP fiel d parameters. All VLANs belong to Ins tance 0 when no Ins t ance has been co nfigured. MSTP support up to[...]
-
Page 232
231 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.2.2.6 spanning-tr ee Command: spanning-tree no spanning-tree Function: Enables MSTP in Global Mode and Port Mode; the " no spanning-tree " comm and disables MSTP . Command mode: Global Mode and Po rt Mode Default: MSTP is disabled by default. Usage Guide: If MSTP is enabled i n Global mo[...]
-
Page 233
232 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command mode: Global Mode Default: The defau lt Hello time is 2 se conds. Usage Guide: The inter val for switch to send a BPDU is referred to as Hell o time. The Hello time, forward delay time, and m ax age time are associated . When configuring these time parameters, the following condit ions must b[...]
-
Page 234
233 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Bridge_Max_Age >= 2 ×(Bridge_H ello_T ime + 1.0 seconds) Example: Setting the m aximum age time to 25 sec onds in Global Mode. Switch(Config)#spanning-tree m axage 25 10.2.2.1 1 spanning-tr ee max-hop Command: spanning-tree max-hop <h op-count> no spanning-tree max-hop Function: Sets the ma[...]
-
Page 235
234 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.2.2.13 spanning-tr ee mode Command: spanning-tree mode {mstp|stp} no spanning-tree mode Function: Sets the switch to run in S panning T ree mode; t he “ no spanning-tr ee mode ” command restores the default settin g. Parameters: mstp sets the switch in IEEE 802 .1s MSTP mode; stp sets the swit[...]
-
Page 236
235 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.2.2.15 spanning-tr ee mst cost Command: spanning-tree mst <inst ance-id> cost <cost> no spanning-tree mst <instance-id> cost Function: Sets the route cost for th e current Ethernet port; “ no spanning-tr ee mst <instance-id> cost ” command restores the default value. Pa[...]
-
Page 237
236 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch priority . Example: Setting the pri o rity for port 1/ 2 of instance1 to 32. Switch(Config)#interface et hernet 1/2 Switch(Config-Ethernet1/2) #spanni ng-tree mst 1 port-priority 32 10.2.2.17 spanning-tr ee mst priority Command: spanning-tree mst <inst ance-id> priority <bridge-priority> [...]
-
Page 238
237 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.3 MSTP Example The following is a typical MSTP applicati on scenario: SW1 SW2 SW3 SW4 1 1 2 2 3 54 2 3 1 6 7 5 4 6 7 x x x x x Figure 00-2 MSTP T ypical Application Example As illustrated in t he figure above by the lines between SW1-SW4, MSTP is running. All the switches run in MSTP m ode by defa[...]
-
Page 239
238 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Port 4 200000 2000 00 Port 5 200000 2000 00 Port 6 2000 00 200000 Port 7 2000 00 200000 By default, MSTP will establis h a topology (in bl ue lines) rooted wit h SW1, the ports marked with “x” are in the Disc arding status, the ot her ports are in the Forwarding status. Configurations adjustment:[...]
-
Page 240
239 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch SW2(Config)#spanning-tree Switch SW3: SW3(Config)#vlan 20 SW3(Config-Vlan20)#exit SW3(Config)#vlan 30 SW3(Config-Vlan30)#exit SW3(Config)#vlan 40 SW3(Config-Vlan40)#exit SW3(Config)#vlan 50 SW3(Config-Vlan50)#exit SW3(Config)#spanning-tree m st configuration SW3(Config-Mstp-Region)#nam e mstp SW3(Con[...]
-
Page 241
240 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch SW4(Config-Port-Range)#exit SW4(Config)#spanning-tree SW4(Config)#spanning-tree ms t 4 priority 0 After the above configuratio n, all instance CIST (Instance0) of the entire network ta ke SW1 as the root bridge, and in the MSTP fields in which SW2, SW3 and SW4 reside, th e region root of Instance0 is[...]
-
Page 242
241 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch SW2 SW3 SW4 2 3 54 2 3 6 7 5 4 6 7 x x x x Figure 00-4 Inst ance3 topol ogy in the MSTP field after MSTP cha nge SW2 SW3 SW4 2 3 54 2 3 6 7 5 4 6 7 x x x x Figure 00-5 Instance4 topology in the MSTP field after MSTP change 10.4 MSTP T r oubleshooting Help 10.4.1 Monitor and Debug Command 10.4.1.1 sho[...]
-
Page 243
242 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch MSTP information can be displayed wit h the “show spanning- tree” command. Example: Displayi ng MSTP information, the displayed cont ents are shown b elow . Switch#sh spanni ng-tree - - M S T P B r i d g e C o n f i g I n f o - - Standard : IEEE 802.1s Bridge MAC : 00:03:0f:01:0 e:30 Bridge T ime[...]
-
Page 244
243 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ########## ######### ######## Inst ance 4 ############## ############# Self Bridge Id : 32768.00:03:0f:01:0e:30 Region Roo t Id : this switch Int.RootPathCost : 0 Root Port ID : 0 Current port list in Instance 4: Ethernet1/1 Etherne t1/2 (T otal 2) P o r t N a m e I D I n t R P C S t a t e R o l e D [...]
-
Page 245
244 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.4.1.2 show mst configuration Command: show spanning-tree mst config Function: Displays the ef fective MSTP field parameter configura tions in admin mode. Command mode: Admin Mode Usage Guide: The comm a nd displays the current ef fective parameter of the MSTP field, such as MSTP field name, revisi[...]
-
Page 246
245 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-Mstp-Region)# 10.4.1.4 debug spanning-tr ee Command: debug spanning-tree no debug spanning-tr ee Function: Enables MSTP debug info rmation: the “ no debug spanning-tree” command disables MSTP debug information . Command mode: Admin Mode Usage Guide: This com mand is the main switch [...]
-
Page 247
246 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.5 WEB MANAGEMENT Click “MSTP control” to enter MSTP control config urat ion mode to manage MSTP features for the switch. 10.5.1 MSTP field operation Click “MSTP control” to enter MSTP field operation. 10.5.1.1 Instance configuration Click “MSTP control” to ente r MSTP fiel d operation,[...]
-
Page 248
247 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.5.2 MSTP port operation 10.5.2.1 Edge port setting Click “MSTP control” to enter MSTP field operation, then "PortFast Con fig". Set the port to be an edge port Configure port 1/5 to be edge ports. 10.5.2.2 Port priority setting Click “MSTP control” to enter MSTP port operation, t[...]
-
Page 249
248 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 10.5.2.5 Link type configuration Click “MSTP control” to enter MSTP port operati on, then "Link_ T y pe Config". Set the link type of the current port. Set the link of port 1 /7 to be forced p oint-to-point type. 10.5.2.6 MSTP port configuration Click “MSTP control” to enter MSTP p [...]
-
Page 250
249 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Click “MSTP control” to enter MSTP Global control, then "Hello_tim e Config". Set the Hello time for the switc h. Set MSTP Hello time to 5 seconds i n Global Mode. 10.5.3.4 Set the max age time for BPDU information in the sw itch Click “MSTP control”, MSTP Global Control, then enter[...]
-
Page 251
250 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Click “MSTP control”, “MSTP Global control”, enter the "Priority Co nfig" to set bridge priority for the switch for the specifie d instance. Set bridge priority of the sp ecified instance for t he switch Configure switch instan ce2 priority to 4096. 10.5.4 Show MSTP setting 10.5.4.1[...]
-
Page 252
251 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter1 1 IGMP Snooping Configuration 1 1.1 Intr oduction to IGMP Snooping IGMP (Internet Group Management Protoco l) is a protocol us ed in IP multicast. IG MP is used by multicast enable d network devices (su ch as a routers) for host m embership query , and by hosts that are joining a m ulticast [...]
-
Page 253
252 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ip igmp snooping vlan <v lan-id> no ip igmp snooping vlan <vlan-id> Enables IGMP Snooping for specified VLAN ip igmp snooping vlan <vlan-i d > mr outer interface <interface –name> no ip igmp snooping vlan <vlan-id> mrouter Sets the specified VLA N the port for connecti[...]
-
Page 254
253 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch command disables the IGMP Snooping function. Command mode: Global Mode Default: IGMP Snooping is disabled by default. Usage Guide: Enabling IGMP Snooping al lows the switch to monitor multicast traf fic in the network and deci de which ports will receive multicas t traffic. Example: Enabling IGMP Sno[...]
-
Page 255
254 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1 1 .2.2.4 ip igmp snooping vlan static Command: ip igmp snooping vlan <vlan-id> static <multicast-ip-addr> interface <interface –name> no ip igmp snooping vlan <vlan-id> static <multicast-ip-addr> Function: Enables the IGMP Snooping sta tic multicast group membership:[...]
-
Page 256
255 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: <vlan-id> is the V ALN number specified. Command mode: Global Mode Default: IGMP Query is disabled by defa ult. Usage Guide: Before enabling the IGMP Query function for the specified VLAN, the switch must have a correspo nding VLAN conf igured and IGMP Snooping enabled. It should be[...]
-
Page 257
256 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: < vlan-id> is the s p ecified VLAN num b er; <time-value > is maxim um query response time, valid ran ge is 10 to 25. Command mode: Global Mode Default: The m aximum response time is 10 seco nds. Example: Setting the m aximum IGMP Query response time of VLAN 100 to 12 se conds[...]
-
Page 258
257 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(C onfig)#ip igm p snooping Switch(C onfig)#ip igm p snooping vlan 100 Switch(C onfig)#ip igm p snooping vlan 100 mr outer interface ethernet 1/1 Multicast Configuration Suppose two program s are provided in the Multi cast Server us ing multicast address Grou p1 and Group2, three of four host s[...]
-
Page 259
258 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch The configuration of Switch2 is the same as the switch in sce nario 1, Switch1 ta kes the place of Multicast Router in scenari o 1. Let’ s ass ume VLAN 60 is configured in Switch1, i ncluding ports 1, 2, 6, 10 and 12. Port 1 connects to t he multicast ser ver , and port 2 connects t o Switch2. In o[...]
-
Page 260
259 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch IGMP information for VLAN 1: igmp snooping vlan status :Disabled igmp snooping vlan query :Disabled igmp snooping vlan mrouter port :(null)----------- --------------------- IGMP information for VLAN 2: igmp snooping vlan status :Enabled igmp snooping vlan query :Disabled igmp snooping v l an mr outer[...]
-
Page 261
260 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Displayed inform ation Explanation igmp snooping sta tus Whether “igmp snoo ping” function is enabled. igmp snooping v lan status “igmp snooping” status of all VLA Ns in the swit ch (enabled or not) igmp snooping v lan query Query status of all VLANs in the switch (enable d or not) . igmp sno[...]
-
Page 262
261 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ----------------- ---------------------- ----------------- ------------------ Ethernet1/4 MEMBERS_PRESENT Snoop _Group_Addr 239.255.48.1 89 0 ----------------- ---------------------- ----------------- ------------------ Ethernet1/5 MEMBERS_PRESENT Snoop _Group_Addr 239.255.40.1 79 0 MEMBERS_ PRESENT [...]
-
Page 263
262 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch command disab les this debug function . Command mode: Admin Mode Default: IGMP Snooping debug is disabled by default. Usage Guide: Use this comm and to enable IGMP Sn ooping debug, IGMP pack et processing information can be displaye d. Example: Enabling IGMP Snoopi ng debug. Switch# debug ip igmp sno[...]
-
Page 264
263 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1 1 .5.2 IGMP snooping configuration Click “IGMP Snooping configuration” node to enter the IGMP Snooping c onfiguration page. This page is divided i nto 3 sections: query configur ation, snoo ping configurati on and conf iguration display . 1 1 .5.2.1 Query configuration The description for e ach[...]
-
Page 265
264 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1 1 .5.3 IGMP snooping static multicast configuration Click “IGMP Snooping stati c multicast co nfiguration” to enter the configuration sc reen. The page is divided into confi guration section and display section. 1 1 .5.3.1 IGMP snooping static multicast configuration The description for e ach p[...]
-
Page 266
265 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch[...]
-
Page 267
266 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 12 ACL Configuration 12.1 Intr oduction to ACL ACL (Access Control List) i s an IP packet filtering mechanism employed in switches , providing network traffic control by granti ng or denying access through the sw itches, effectively safeguarding the security of networks. The user can lay down[...]
-
Page 268
267 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch The following rules ap ply: z An access list can consist of several rules. Filtering of packets c ompares packet conditio ns to the rules, from the first rule to th e first matched rule; the rest of th e rules will not be processed . z Global default act ion applies on ly to IP packets in the incomin[...]
-
Page 269
268 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch access list <num> {deny | permit} {{ <sIpAddr> <sMask> } | any-sour ce | {host-source <sIpAddr> }} no access list <num> Creates a numbered sta ndard IP access list, if the access list already exis ts, then a rule will add to the current access list; the “ no access lis[...]
-
Page 270
269 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch a. Create a name-based standard IP access list Command Expl anation Global Mode ip access standard <name> no ip access standard <name> Creates a standard IP access list based on nomenclature; the “ no ip access standard <name> ” command del ete the name-based standard IP access [...]
-
Page 271
270 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch [no] {deny | permit} tcp {{ <sIpAddr> <sMask> } | any-source | {host-sour ce <sIpAddr> }} [s-port <sPort> ] {{ <dIpAddr> <dMask> } | any-destination | {host-destination <dIpAddr> }} [d-port <dPort> ] [ack | fin | psh | rst | syn | urg] [precede nce <[...]
-
Page 272
271 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ip access-gro up <name> {in|out } no ip access-group <name> {in|out} Applies an access l ist to the specified direction on the po rt; the “ no ip access-group <name> {in|out} ” command deletes the access l ist bound to the port. 12.2.2 ACL Configuration Commands 12.2.2.1 access-[...]
-
Page 273
272 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Default: No IP address is configured by defau lt. Usage Guide: When the user first speci fies a specific <num> , the ACL of this number will be created, and entries ca n be added to that ACL. Example: Creating an ext ensive IP access list numbered as 1 10. Denying ICMP packets and allowing UDP [...]
-
Page 274
273 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command: firewall defa ult {permit | deny} Function: sets firewall default action. Parameters: “ permit ” allows packets to pass through; “ deny ” blocks packets. Command mode: Global Mode Default: The default actio n is “permit”. Usage Guide: This com mand affects incom ing IP pa ckets o[...]
-
Page 275
274 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command: ip access-group [< num >| <acl-name> { in|out } no ip access-group <name> { in|out } Function: Applies an acces s list to the incoming directi on on the port; the “ no ip access-group <name> {in|out} ” command deletes the access list bound to t he port. Parameter:[...]
-
Page 276
275 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config)#ip access list extended udpFlow Switch(Config-Ext-Nacl-ud pFlow)#deny igm p any-source any-destination Switch(Config-Ext-Nacl-ud pFlow)#perm it udp any- sour ce host-destination 192.168. 0.1 d-port 32 12.2.2.9 permit | deny(standard) Command: {deny | permit} {{ <sIpAddr> <sMas[...]
-
Page 277
276 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-Ethernet1/1 0)#ip access-group 1 10 in Switch(Config-Ethernet1/1 0)#exit Switch(Config)#exit Configuration result.: Switch#show firewall Firewall St atus: Enable. Firewall Default Rule: Perm it. Switch#show access lists access list 1 10(used 1 time(s)) access list 1 10 deny tcp 10.0.0.0[...]
-
Page 278
277 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Displayed inform ation Explanation access list 10(used 0 tim e(s)) Numbered ACL10, reference tim e: 1 access list 10 deny any-source Denies all IP packets passage access list 100(used 1 time(s)) Number ed ACL100, reference tim e: 1. access list 100 deny ip any-source any-destinati on Denies IP packet[...]
-
Page 279
278 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command mode: Admin Mode Usage Guide: Example: Switch#show firewall F i r e w a l l S t a t u s : E n a b l e . Firewall Default Rule: Perm it. Displayed inform ation Explanation Firewall St atus: Enable. Enables packet filtering functio n Firewall Default Rule: Permit. The default actio n for packet[...]
-
Page 280
279 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 12.5.1 Numeric standard ACL configuration Click “Numeric A CL Configuratio n”, and then “ Add Standard Num eric ACL” section to enter the configuration page. Equals to its CLI command of 1 2.2.2.2. The exp lanations of eac h section are: ACL number – 1- 99 Rule – perm it or deny Source ad[...]
-
Page 281
280 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch There are several sub-sect ions in this cate gory : z ACL number (100-199) z Rule - perm it or deny z Source address type - Specified IP address or any randomly allocated IP addr ess z Source IP address z Reverse network m ask z Target address type - Specified IP a ddress or any randomly allo[...]
-
Page 282
281 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 12.5.4 Configur e standard ACL name co nfiguration and delete the standard ACL name configuration Click “ACL n ame configuratio n” to open up the su b-sec tions, next click “A CL name configurati on” to enter the c onfiguration p age. The way to configur e the “ACL n ame configura tion” i[...]
-
Page 283
282 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 12.5.5 Configur e extended ACL name configuration Click “ACL nam e configuration”, the configuratio n sections will then be show n. There are 6 ty pes of extended A CL name conf igurations: z IP extended ACL nam e configuration z ICMP extended ACL nam e configuration z IGMP extended ACL nam e con[...]
-
Page 284
283 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 12.5.7 ACL port binding Click “Filter configuration” , and then select “ACL port binding” to enter the configurat ion page. Equal to CLI com mand: 12.2.2.7 There are five items in this section. z Port – the target p o rt to bi nd to ACL z ACL name – the t arget ACL name to bind z Ingress/[...]
-
Page 285
284 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 13 Port Channel Configuration 13.1 Intr oduction to Port Channel T o un derstand Port Chann el, Port Group sh ould be introduc ed first. Port Group is a group of physical ports in the config uration level, only physical ports in the Port Group can take part in link aggregation a nd becom e a [...]
-
Page 286
285 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ) All ports are in fu ll-duplex mode. ) Ports are of the same speed. ) All ports are Access ports and belong to the same V LAN or are all Trun k ports. ) If the ports are Trunk ports , then their “Allow ed VLAN” and “ Native VLAN” property should also be the sam e. If Port Channel is configur[...]
-
Page 287
286 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 3. Enter port-channel configuration mod e. Command Expl anation Global Mode interface port-channel <port-channel-number> Enters port-channel configurati on mode. 13.2.2 Port Channel Configuration Commands 13.2.2.1 port-gr oup Command: port-group <p ort-group-number> [load-balance { src-ma[...]
-
Page 288
287 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command: port-group <port-gr oup-number> mode {active|passive|on} no port-grou p <port-group-number> Function: Adds a physical port to port channel, the “ no port-group <port-gr oup-number> ” removes speci fied port from the port c hannel. Parameters: <port-gr oup-number> [...]
-
Page 289
288 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 13.3 Port Channel Example Scenario 1: Configuri ng Port Channel in LACP . Fig 14-2 C onfiguring Port C hannel in LAC P Example: The switches in the description below are all ES471 0BD switches an d as shown in th e figure, ports 1, 2, 3 of Sw itch 1 are access ports th at belong to vlan1. A dd those [...]
-
Page 290
289 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch2 (Config-If-Port-Channel2)# Configuration result: Shell prompts ports aggre gated successfully after a while, now port s 1, 2, 3 of Switch 1 form an aggregated port nam ed “Port-Channel1”, ports 6, 8, 9 of Switch 2 form s an aggregated port named “Port-Channel2”; c onfigurations can be[...]
-
Page 291
290 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch2 (Config)#interface eth 1/ 6 Switch2 (Config-Etherne t1/6)#port-group 2 mode on Switch2 (Config-Etherne t1/6)#exit Switch2 (Config)# in terface eth 1/8-9 Switch2 (Config-Port-Rang e)#port-group 2 m ode on Switch2 (Config-Port-Range)#ex it Configuration result: Add ports 1, 2, 3 of Switch 1 to [...]
-
Page 292
291 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Number of ports in group Port number in the port gro up Maxports Maximum number of ports allowed in a group Number of port-channels Whether aggrega ted to port channe l or not Max port-channe ls Maximum port channe l number can be f ormed by port group. 2. Display detailed inform ation for port-group[...]
-
Page 293
292 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch the machine state and port stat e of the port are as follows: mux_state: DETCH rcvm_state: P_DIS prm _ state: NO_PER actor_oper_port_state : L_A___F_ partner_oper_port _state: _T A___F_ Displayed inform ation Explanation portnumber Port number actor_port_agg_i d The channel num ber to add the port to[...]
-
Page 294
293 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch port state L A C P a c t i v e t y . 1 L A C P t i m e o u t . . A g g r e g a t i o n 1 1 S y n c h r o n i z a t i o n . . C o l l e c t i n g . . D i s t r i b u t i n g . . D e f a u l t e d 1 1 E x p i r e d . . Partner part A d m i n i s t r a t i v e O p e r a t i o n a l system 000000-000000 [...]
-
Page 295
294 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Collecting Whether status of port bo und status machine is “collec ting” or not. Distributing Whether status of port bound status machin e is “distribut ing” or not. Defaulted Whether the local port is using default par tner end parameter . Expired Whether status of port rec eiving status m a[...]
-
Page 296
295 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch# debug la cp 13.4.2 Port Channel T r oubleshooting Help If problems occur whe n configuring p ort aggregation, pl ease first check the following for causes . & Ensure all ports in a port group h ave the sam e pr operties, i.e., whether they are in full-duplex mode, forced to the same speed[...]
-
Page 297
296 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Apply to add the group. After finishing the group configura tion, the configured port information will be shown under the configuration table. 13.5.2 LACP port configuration Click LACP port configurati on to enter configuration page Equivalent to CLI comm and 13.2.2.2 z group num z Port: will be adde[...]
-
Page 298
297 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 14 DHCP Configuration 14.1 Introduction to DHCP DHCP [RFC2131] is the acronym for Dynamic Host Configuratio n Protocol. It is a prot ocol that assigns dynamically IP addresses to request host from the address pool as w ell as other network configuration parameters such as default gateway , DN[...]
-
Page 299
298 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch obtained dyna mically can b e diff erent every tim e; manually bound IP address will be the sam e all the time. 2) The lease period of IP address obtaine d dynamically is the sam e as the lease period of the address pool and is lim ited; the lease of manually bound IP address is theoreti cally endles[...]
-
Page 300
299 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch dns-server [address1[add re ss2[…addr ess8]]] no dns-server Configures DNS server for DHCP clie nts domain-name <domain> no domain-name Configures Domain nam e for DHCP clients; the “ no domain-name ” command del etes the domain nam e. netbios-name-server [address1[add re ss2[…addr ess8[...]
-
Page 301
300 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch client-identifier <unique-identifier> no client-identifier Specifies the unique ID of the user when binding an address m anually client-name <name> no client-name Configures a clie nt name w hen binding an address manually 3. Enable logging for address conflicts Command Expl anation Globa[...]
-
Page 302
301 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch IP address defined in “hos t” command to the client . Example: Specifying the I P addr ess 10.1.128.1 60 to be bound to user with the unique id of 00-10-5a-60-af-12 in m anual address binding. Switch(dhcp-1-config)#client- identifier 00-10-5a-60-af-12 Switch(dhcp-1-config)#hos t 10.1.128.160 24 R[...]
-
Page 303
302 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command Mode: DHCP Address Pool Mode Usage Guide: Up to 8 DNS server addresses can be co nfigured. The DNS server a ddress assigned first has the highest prior ity , Therefore a ddress 1 has the highes t priority , and address 2 has the second, and so on. Example: Set 10.1.128.3 as the DNS server add[...]
-
Page 304
303 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Specifies the IP address to be assigned to the user when bindin g addresses manually ; the “ no host ” command delet es the IP address. Parameters: <addr ess> is the IP address in decimal form at; <mask> is the subnet m ask in decimal format; <prefix-length> means mask[...]
-
Page 305
304 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Specifies addresses excluding from dynam ic assignment; the “ no ip dhcp excluded-address <low-address> [ <high-addr ess> ] ” command ca ncels the setting. Parameters: <low-addr ess> is the starting IP address, [ <high-addr ess> ] is the ending IP address. Defaul[...]
-
Page 306
305 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command: lease { [ <days> ] [ <hours> ][ <minutes> ] | infinite } no lease Function: Sets the lease time for addresses in t he address pool; the “ no lease ” c o mm and restores the default setting. Parameters: <days> is number of day s from 0 to 365 ; <hours is number [...]
-
Page 307
306 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch h-node that broadcasts after point-to-point com munication. Example: Setting the no de type for clie nt of pool 1 to broadcasting node. Switch(dhcp -1-config)#netb ios-node-type b- node 14.2.2.16 network -address Command: network-address <network-number> [ <mask> | <pr efix-length> [...]
-
Page 308
307 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Sets the network p arameter specified by the opti on code; t he “ no option <code> ” command cancels the setting for option. Parameters: <code> is the co de for network param eters; <string> is the ASCII string up to 255 characters; <hex > is a value in H ex that[...]
-
Page 309
308 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 14-2 DHCP relay As shown in the above figu re, the DHCP client an d the DHCP server are in dif ferent networks, the DHCP client performs the f our DHCP steps as usual yet DHCP relay is added to t he process. 1. The client broadcasts a DHCPDISCOVER packet, and DHCP relay inserts its own IP address[...]
-
Page 310
309 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 4. Disable DHCP relay from forwardin g DHCP broadcast packet. Command Expl anation Global Mode ip dhcp relay information policy drop no ip dhcp r elay information policy drop When layer 3 switches are used as DHCP relays, this comm and sets the relay forwarding policy t o drop DHCP packets; the “ n[...]
-
Page 311
310 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 14.3.2.3 ip dhcp relay information policy dr op Command: ip dhcp relay information policy dr op no ip dhcp relay information policy d rop Function: When layer 3 switches are used as DHCP rela ys, this command sets the relay forwarding policy to drop D HCP packets; the “ no ip dhcp r elay info rmati[...]
-
Page 312
31 1 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(dhcp-A-config) #default-route 10.16.1.200 10. 16.1.201 Switch(dhcp-A-config) #dns-server 10.16.1.202 Switch(dhcp-A-config) #netbios-name-server 10.16. 1.209 Switch(dhcp-A-config) #netbios-node-type H-node Switch(dhcp-A-config) #exit Switch(Config)#ip dhc p excluded-addres s 10.16.1.200 10.16.[...]
-
Page 313
312 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Scenario 2: Fig 14-3 DHC P Relay Configuratio n As shown in the a bove figure, ES4710 BD is conf igured as a DHCP relay . The DHCP server a ddress is 10.1.1.10, TFTP server address is 10.1. 1.20, the configuration steps are as fol lows: Switch(Config)# service dh cp Switch(Config)#interface vlan 1 Sw[...]
-
Page 314
313 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch client will be reques t ing the IP address in th e sam e segment of the VLAN interface aft er VLAN interface forwarding, and the VLAN i nterface IP addr ess is 10.16.1.2/24, therefore the IP address assigned to the cl ient will belong to 10.16 .1.0/24. If the DHCP/BootP client wants to ha ve an addre[...]
-
Page 315
314 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch conflicting for use. The “Clear ip dhcp conflict” command can be used to delete the conflict record for an ad dress. If "all” is specif ied, th en all conflict records in the log will be re moved. When records are rem oved from the log, the addresses are available for allo cation by th e D[...]
-
Page 316
315 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch T y pe T ype of assignment: manual bi nding or dynamic assignment. 14.5.1.5 show ip dhcp conflict Command: show ip dhcp conflict Function: Displays log inform ation for addre sses that have a conflict record. Command mode: Admin Mode Example: Switch# show ip dh cp conflict I P A d d r e s s D e t e c[...]
-
Page 317
316 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch BOOTREPL Y 191 1 DHCPOFFER 6 DHCP ACK 6 DHCPNAK 0 DHCPRELA Y 1907 DHCPFOR W ARD 0 Switch# Displayed inform ation Explanation Address pools Number of DHCP address pools confi gured. Database agents Number of database ag ents. Automatic bindings Number of addresses assigned aut omatically Manual bindin[...]
-
Page 318
317 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 14.5.2 DHCP T roubleshooting Help If the DHCP clients cannot ob tain IP addresses and other netw ork parameters, the fo llowing procedures can be fol lowed after DHCP client hardware and cables have been verifi ed to be ok. & V erify the DHCP server is running, start the relat ed DHCP server if n[...]
-
Page 319
318 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 14.6.2.1 Address pool configuration Click “DHCP configurat ion”, “DHCP serv er conf iguration”, “Address pool configur ation” to configure the DHCP address pool f unction: z DHCP pool name (1-32 c haracters) – defines a D HCP address pool in global mode. Sam e as CLI command 14.2. 2 .11[...]
-
Page 320
319 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 14.6.2.2 Client’s default gat eway configuration Click “DHCP conf iguration”, “D HCP server configuratio n”, “Client' s default gateway configuration” to configure t he default gat eway for DHCP client. Sam e as CLI command 14.2.2.4: z DHCP pool name – sele cts one DHCP address p[...]
-
Page 321
320 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 14.6.2.4 Client wins server configuration Click DHCP config uration, DHCP server config uration, Cl ient WINS server config uration. Configure Wins server ad dress. Same as CLI comm and 14.2.2.14: z DHCP pool name – ch oose one D HCP address pool z WINS server – WINS server, system maximum suppor[...]
-
Page 322
321 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch configuration” to configure the DHCP client boot file name and client s erver address which is for save the boot file: z DHCP pool name - Choose one DHCP address pool z DHCP client bootfile nam e (1-128 characters) - boot file name. Sam e as CLI comm and 14.2.2.1 z File server - server address wher[...]
-
Page 323
322 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 14.6.2.7 Manual address pool configuration Click “DHCP configurat ion”, “DHCP server config uration”, “Manual address pool configur ation” to configure D HCP to manually allocate address: z DHCP pool name – Ch oose one DH CP address pool z Hardware address – assigns user hardware addr[...]
-
Page 324
323 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 14.6.2.9 DHCP packet statistics Click “DHCP config uration”, “DH CP server configuration”, “ DHCP packet statistics” to dis play DHCP server statistics inform ation of all kinds of DHCP data packets. Same as CLI command 14.5.1.3: 14.6.3 DHCP relay configuration Click “DHCP config uratio[...]
-
Page 325
324 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Click “DHCP config uration”, “DHCP relay configuration”, “DHCP relay co nfiguration” to configure the sw itch’s DHCP relay functi on: DHCP forward UDP configurati on configures DHCP relay to forward broadcast m essages to a UDP port. Same as CLI com mand 14.3.2. 1: z Port - UDP port Exa[...]
-
Page 326
325 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 14.6.4.2 Delete conflict log Click “DHCP confi guration”, “ DHCP debugging” to delete c onflicting l ogs. Example: Ch oose Delete all conflict address as Yes. Click Apply button and all conflic ting addresses in address conf lict log will be removed. 14.6.4.3 Delete DHCP server statistics log[...]
-
Page 327
326 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 15 SNTP Configuration The Network T ime Protocol (NTP) is widely used for c lock synchronization for global com puters connected to the Int e rnet. NTP can assess packet s ending/receiving delay in the network , and estimate the c omputer ’ s clock deviat ion independen tly , so as to achie[...]
-
Page 328
327 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 15.1 SNTP Configuration Commands 15.1.1 sntp server Command: sntp server <server_addr ess> [version <version_no> ] no sntp server <server_addr ess> Function: Sets the SNTP/NTP server address and server version; the “ no sntp server <server_address ” c ommand deletes the SNTP/[...]
-
Page 329
328 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Default: The defau lt time diff erence setting is “ add 8”. Command mode: Global Mode Example: Setting the time zone to Beijing. Switch#config Switch(Config)#sntp tim ezone beijing add 8 15.2 T y pical SNTP Co nfiguration Examples Switch1 Switch 2 Switch3 SNTP/NTP Server SNTP /NTP Server Fig 15-2[...]
-
Page 330
329 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 15.3 SNTP T r oubleshooting Help 15.3.1 Monitor and Debug Commands 15.3.1.1 show sntp Command: show sntp Function: Displays current SNTP client configuration and server statu s. Parameters: N/A. Command mode: Admin Mode Example: Displaying current SNTP configuration. Switch#show sntp S N T P s e r v [...]
-
Page 331
330 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 15.4.2 Request interval configuration Click “SNTP configur ation”, “Request interval configurati on” to confi gure the sending request tim e interval from SNTP client to NTP/SNTP server . Same as CLI command 15.1.2. Example: Configure Inter val as 128 minutes, Click Apply to set the configura[...]
-
Page 332
331 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 16 QoS Configuration 16.1 Intr oduction to QoS QoS (Quality of Service) is a set of capabilities that allow you t o create dif ferentiated services for network traf fic, thereby providing better service fo r sele cted network traf fic. QoS is a guarantee for service quality of cons istent and[...]
-
Page 333
332 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Robin). In Profile: Tr affic within the QoS p olicy range (bandwi d th or burst value) is called “ In Profile". Out of Profile: T raf fic out the QoS policy range (ba ndwidth or burst value) is ca lled “Out of Profile". 16.1.2 QoS Implementation T o im plement Layer 3 switch software Qo[...]
-
Page 334
333 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 16-3 Basic QoS Model Classification: Classifies tr affic ac cording to packe t classification inform ation and generates internal DSCP value bas ed on the classifi cation information. For dif ferent packet types and switc h configurations , classification is performed dif ferently . The flowchart[...]
-
Page 335
334 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 1 6 -4 Classificati on process Policing and r emark: Each packet in classified ingress traf fic is assigned an internal DSCP value and can be pol iced and remarked. Policing can be performed based on DSCP value to config ure dif ferent policies that alloca te bandwidth to classified traf fic. If [...]
-
Page 336
335 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 1 6 -5 Policing and Remarking process Queuing and scheduling: Packets at t he egress will re-m ap the internal DSCP value to CoS value, the queuing o peration assigns packe ts to appropri ate queues of prior ity according to the CoS val ue; while the schedu ling operation p erforms packet forw ar[...]
-
Page 337
336 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 16-6 Queui ng and Sched uling process 16.2 QoS Configuration 16.2.1 QoS Configuration T ask Sequence 1 . Enable Q oS QoS can be enable d or disabled in Global Mode. QoS must be enabled first in Global Mo de to configure other Q oS commands. 2 . Configure class map. Sta r t Read packet DSCP an[...]
-
Page 338
337 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Set up a cl assification rule a ccording to ACL, VLAN ID, IP Precedence or DSCP to classify the data stream . Different classes of data str eams will be processed with differe nt policies. 3 . Confi gure a policy map. After data steam classifi cation, a policy map can be created to ass ociate with [...]
-
Page 339
338 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch policy-map < policy-map-name> no policy-map < policy-map-name> Creates a policy map and enters polic y map mode; the “ no policy-map < policy-map-name> ” com mand deletes the specified policy m ap. class < class-map-name> no class < class-map-name> After a policy map[...]
-
Page 340
339 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch priority < cos >] no mls qos trust disables the c u rrent trust s tatus of the port. mls qos cos { <default-cos> } no mls qos cos Configures the default CoS value of the port; the “ no mls qos cos ” command restores the default setting . service-policy {input < policy-map-name> [...]
-
Page 341
340 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch <dscp-mutation-name> <i n-dscp> to < out-dscp> |ip-prec-dscp < dscp1...dscp8 > | policed-dscp < dscp-list> to < mark-down -dscp> } no mls qos map {cos-dscp | dscp-cos | dscp-mutation < dscp-mutation-name> | ip-prec-dscp | policed-dscp} mapping, IP precedence [...]
-
Page 342
341 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Configures the m atching criterion in t he class map; the “ no match {access-group | ip dscp | ip precedence | vlan} ” comm and deletes the specified matching criterion. Parameters: access-gr oup < acl-index-or -name> stands for matching spec ified ACL, the param eter is ACL numbe[...]
-
Page 343
342 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: < class-map-name> is the class map name used by the class. Default: No policy class is c onfigured by defau lt. Command mode: Policy map conf iguration Mode Usage Guide: Before settin g up a policy class, a policy map should be created and the policy map mode entered. In the policy [...]
-
Page 344
343 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch according to policed-dscp mapp ing when specified speed is exceede d. Default: There is no policy by default. Command mode: Policy class map configuration M ode Usage Guide: The ranges of < rate-kbps> and <burst-kbyte> are quite lar ge, if the setting exceeds the actual sp eed of the port[...]
-
Page 345
344 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.2.2.9 police aggr egate Command: police aggr egate < aggregate -policer -name> no police aggr egate < aggr egate-policer -name> Function: Applies a policy set to classified traf fic; the “ no police aggr egate < aggre g ate-policer -name> ” com mand deletes the specified poli[...]
-
Page 346
345 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Configuring Ethe rnet port 1/1 to trust CoS value, i.e ., classifying the p ackets according t o CoS value, DSCP value sh ould not be changed. Switch(Config)#interface et hernet 1/1 Switch(Config-Ethernet1/1) # mls qos trust cos pass-through-dscp 16.2.2.1 1 mls qos cos Command: mls qos cos {[...]
-
Page 347
346 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.2.2.13 mls qos dscp-mutation Command: mls qos dscp-mutation < dscp-mutation-name> no mls qos dscp-mutation < dscp-mutation-name> Function: Applies DSCP mutation m apping to the port; the “ no mls qos dscp-mutation < dscp-mutation-name> ” comm and restores the DSCP m utation m[...]
-
Page 348
347 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Configures the queue out m ode. The “ no priority-queue out ” command restores the default value and defaul t queue out weights. Parameters: Default: non-priority-que ue mode. Command mode: Interface Mode Usage Guide: When priority -queue out m ode is used, pac kets are no longer sent w[...]
-
Page 349
348 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch < dscp1...dscp 8> are the 8 DSCP value corre sponding to the 0 to 7 Co S value, each DSCP value is delim ited with space, rang ing from 0 to 63; dscp-cos < dscp-list> to < cos> defines th e mapping from DSCP to CoS value, < dscp-list> is a list of DSCP value consisting of up t[...]
-
Page 350
349 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch the port in trust CoS mode without c hanging DSCP value, and set the defau lt CoS value of the port to 5. The configuration steps are listed below : SWITCH#CONFIG Switch(Config)#mls qos Switch(Config)#interface et hernet 1/1 Switch(Config-Ethernet 1/1)#wrr -queue bandwidth 1 1 2 2 4 4 8 8 Switch(Conf[...]
-
Page 351
350 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch An ACL name 1 is set to matching seg ment 192.168 .1.0. QoS was ena bled globally , a c lass map named c1 was created, m atching ACL1 in class map; another policy map named p1 was created and refers to c1 in p1 , appropria te policies were set to limit bandwidth and burst value. This po licy map was [...]
-
Page 352
351 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-ClassMap)# exit Switch(Config)#policy -map p1 Switch(Config-PolicyMap)#class c1 Switch(Config--Policy-Clas s)#set ip precedence 5 Switch(Config--Policy-Clas s)#exit Switch(Config-PolicyMap) #exit Switch(Config)#interface et hernet 1/1 Switch(Config-Ethernet1/1) #service-policy inp ut p1[...]
-
Page 353
352 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command mode: Admin Mode Usage Guide: Example: Switch #show mls qos a ggregate-policer p olicer1 aggregate-policer policer1 800 00 80 excee d-action drop Not used by a ny policy m ap Displayed inform ation Explanation aggregate-po licer policer1 80000 80 exceed-action drop Configuration for this pol [...]
-
Page 354
353 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 0x200 0x200 0x200 0x20 0 0x200 0x200 0x200 0x20 0 Displayed inform ation Explanation packet number of 8 queue: 0x 200 0x200 0x200 0 x200 0x200 0x200 0x200 0x200 A vailable packet number for all 8 queues out on the port, this is a fixed setting that cannot be cha nged. Switch # show mls qos interface [...]
-
Page 355
354 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch out-profile T otal out-profile data packet s match this class m ap. 16.4.1.4 show mls qos maps Command: show mls qos maps [cos-d scp | dscp-cos | dscp-mutation < dscp-mutation-name> | ip-prec-dscp | policed-dscp] Function: Displays m apping configuratio n information for QoS. Parameters: cos-ds[...]
-
Page 356
355 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Policed-dscp map: d1 : d2 0 1 2 3 4 5 6 7 8 9 0: 0 1 2 3 4 5 6 7 8 9 1: 10 11 12 13 14 15 16 17 18 19 2: 20 21 22 23 24 25 26 27 28 29 3: 30 31 32 33 34 35 36 37 38 39 4: 40 41 42 43 44 45 46 47 48 49 5: 50 51 52 53 54 55 56 57 58 59 6: 60 61 62 63 16.4.1.5 show class-map Command: show class-map [<[...]
-
Page 357
356 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Policy Map p1 Class Map name: c1 police 16000000 2000 exceed-a ction drop Displayed inform ation Explanation Policy Map p1 Na me of policy map Class map nam e:c1 Name of the c lass map referred to police 16000 000 8000 ex ceed-action drop Policy implem ented 16.4.2 QoS T roubleshooting Help & QoS[...]
-
Page 358
357 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z QoS status - Close or Open. T o ena ble QoS, select Open, then click Apply . 16.5.2 Class-map configuration Click “Class-m ap configuration” to display the extension, i ncluding the following tw o sections: 1. Add/Rem ove class-map 2. Class-map co nfiguration 16.5.2.1 Add/Remove class-Map Cli[...]
-
Page 359
358 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Match value 1, select set to Operation type, and then click Apply . 16.5.3 Policy-map priority configuration Click “Policy -map configura tion” to dis play the extens ion, which has five sectio ns: z Add/Rem ove policy-m ap z Policy-map pr iority config uration z Policy-map bandw idth configurat [...]
-
Page 360
359 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.5.3.2 Policy-map priority configuration Click “Policy -map priority configura tion” to en try configure page. Equi valent to CLI comm and 16.2.2.6. T erm s are described as following: z Policy-map nam e z Class-map nam e z Priority type. D SCP value or IP precedence value z Priority value z Op[...]
-
Page 361
360 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.5.3.4 Add/Remove aggregate policy Click Add/Re move aggregate p olicer to entry configure page. It is equivalent to CLI comma nd 16.2.2.8. T erm s are described as following: z Aggregate policer name z Rate - average ba ud rate for classif ied bandwidth, K bit/s per u nit. z Burst - burst rate[...]
-
Page 362
361 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Apply the aggregat e policer agg1 by c1 class-m ap, input the graphic presentation val u e, and then click Add. 16.5.4 Apply QoS to port Click “Apply QoS to port” to enter the configuration page, whic h include four sections: z Port trust mode confi guration z Port default CoS configurat[...]
-
Page 363
362 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.5.4.2 Port default CoS configuration Click “Port defaul t CoS configuratio n” to entry con figure page. Equi valent to CLI com mand 16.2.2.1 1. T erm s are described as following: z Port z Default CoS value - Startup CoS value z Reset - W ill set colum n as startup defaults. Th is command [...]
-
Page 364
363 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Port name z DSCP mutation name z Operation - Set or Rem ove Example: Set the DSCP mutation i n Ethernet p ort 1/1. Cho ose Port name as Et hernet1/1, input mu1 for DCSP mutation name, to sele ct Set for Operation, an d then click Apply . 16.5.5 Egr ess-queue configuration Click “Egress- queue c[...]
-
Page 365
364 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.5.5.2 Egr ess-queue W ork mode configuration Click “Egress-que ue work mode configuration” to enter the c onfiguration pag e. Equivalen t to CLI command 16. 2.2.15. T erm s are described as following: z Port name z Reset - W ill set colum n as startup defaults. Th is command wi ll not modify[...]
-
Page 366
365 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.5.6 QoS mapping configuration Click “QoS mapp ing configurati on” to dis play extension s, including t he following: 1. CoS-to-DSCP mapping 2. DSCP-to-CoS m apping 3. DSCP mutatio n mapping 4. IP-Precedence-to-DSCP mapping 5. DSCP mark down m apping These configuratio ns are equivalent to CLI [...]
-
Page 367
366 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.5.6.2 DSCP-to-CoS mapping Click “DSCP-to-CoS m apping” to entry configure page. T erm s are described as following: z DSCP 1-8 - DSCP value z CoS V alue - DSCP value mapping to CoS value z Operation type - Add or Remove Example: T o make DSCP value 20 m ap to CoS value 2, input the CoS v[...]
-
Page 368
367 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 16.5.6.4 IP-pr ecedence-to-DSCP mapping Click “IP-Precedenc e-to-DSCP mapping” to e nter the configur ation page. T erm s are described as following: z IP-Precedence - IP precedence value 0 ~ 7 z DSCP - IP precedence value mapping to DSCP value z Operation type - Sets or Removes Example: [...]
-
Page 369
368 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 17 L3 Forward Con figuration ES4710BD supports Lay er 3 forwarding which forwards Lay e r 3 protocol p ackets (IP packets) across VLANs. Such forwarding uses IP addresses, when a port recei ves a IP packet, it will index it in its own route table and decide the op eration according t o the in[...]
-
Page 370
369 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch <vlan-id> ” comm and deletes the VLA N interface (Layer 3 interfa ce) created in the switch. 17.1.2.2 Layer 3 Interface Configuration Commands 17.1.2.2.1 interface vlan Command: interface vlan <vlan-id> no interface vlan <vlan-i d> Function: Creates a VLAN interface ( a Layer 3 in[...]
-
Page 371
370 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch no ip fib optimize aggregation algorithm ; the “ no ip fib optimize ” disables the optim ized IP route aggregation algorit hm. 17.2.2.2 IP Route Aggregation Configuration Command 17.2.2.2.1 ip fib optimiz e Command: ip fib optimize no ip fib optimize Function: Enables the swit ch to use optimized[...]
-
Page 372
371 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 0 f rag mented, 0 couldn't fragment, 0 fragm en t sent Sent: 0 generated, 0 fo rwarded 0 dropped, 0 no route ICMP statistics: Rcvd: 0 total 0 errors 0 time exceeded 0 redirects, 0 unreachable, 0 echo, 0 echo replies 0 mask requests, 0 mask replies, 0 quench 0 param eter , 0 timestamp, 0 timestam[...]
-
Page 373
372 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch and packets without route. ICMP statistics : ICMP packet statistics. Rcvd : 0 total 0 errors 0 time exceeded 0 redirects, 0 unreachable, 0 echo, 0 echo replies 0 mask requests, 0 mask replies, 0 quench 0 parameter , 0 timestamp, 0 timestamp replies Statis tics of total ICMP packets received and c[...]
-
Page 374
373 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ES4710BD supports the c onfiguration of proxy ARP for some applications. F or instance, when an ARP request is received on the port, requesting an IP address in the same IP segment of the port but not the sam e physical network, if the p ort has enable d proxy ARP , the port would reply to the A RP w[...]
-
Page 375
374 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 17.3.2.2.2 ip proxy-arp Command: ip proxy-arp no ip proxy-arp Function: Enables proxy ARP for VLAN in terface; the “no ip proxy-arp” command disab les proxy ARP . Default: Proxy ARP is disabled by defa ult. Command mode: VLAN Interface Mode Usage Guide: When an ARP request is received on the laye[...]
-
Page 376
375 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 50.1.1.9 00-00-00-00-00-09 V lan50 Etherne t1/1 S tatic 150.1.1.2 00-00-58-fc-48-9f Vlan150 Ethernet3/4 Dynamic Displayed inform ation Explanation T otal arp items T otal number of Arp entries. the matched ARP en try number m atching the filter co nditions InCompleted ARP entries have ARP request sen[...]
-
Page 377
376 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 17.3.3.2 ARP T roubleshooting Help If ping from the swi tch to directly connected netw ork devices fails, the following can be used to check the possibl e cause and create a solution. z Check whethe r the corresponding ARP has been learned by the switch. z If ARP has not learned, then enabl ed ARP de[...]
-
Page 378
377 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch configuration . 17.4.3.1 Configur e static ARP Click “ARP configuratio n” to conf igure static ARP . Equivalent to CLI com mand 17.3.2.2.1: z IP address: specifies the IP address of related static ARP z MAC address: specifies the MAC address of related static ARP z Operation type: Add m eans to a[...]
-
Page 379
378 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 18 Routing Protocol Configuration T o com municate with a rem ote host over the Internet, a host must choose a proper route via a set of routers/L3 switches. Both routers and layer 3 s witches calculate the ro ute using CPU. The difference is that laye r 3 switches add the calculated route in[...]
-
Page 380
379 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch The route table m ainly consists of the following: z Destination address: used to ide ntify the destin ati on address or the destination netw ork of a packet. z Network mask: used together with destinati on address to identify the destination host or the segment that the l ayer 3 switch resid es. Net[...]
-
Page 381
380 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch priority accor ding to the pr iority of routing protocols. A t same time, static rout es can be introduce d (redistribute) in dynam ic route, and change the priority of the static rout e introduced. 18.2.2 Introduction to Default Route Default route is a static r oute, which is used only when no m at[...]
-
Page 382
381 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch [ <p re fe ren ce > ]” command deletes a static route entry . Parameters: <ip-addr ess> and <mask> are the IP a ddress and subnet mask, in decimal format; <gateway> is th e IP address for the next ho p in decim al format; <pr eference> is t he route priority , ranging [...]
-
Page 383
382 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch D e s t i n a t i o n M a s k N e x t h o p I n t e r f a c e P r e f C 2.2.2.0 255.255.255.0 0.0.0.0 vlan2 0 C 4.4.4.0 255.255.255.0 0.0.0.0 vlan4 0 S 6.6.6.0 255.255.255.0 9.9.9. 9 vlan9 1 R 7.7.7.0 255.255.255.0 8.8.8.8 vlan8 120 Displayed inform ation Explanation C - connected Direct route, th e [...]
-
Page 384
383 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch SWI T C H - 2 PC 1 £º 10.1.1.2 PC2 £º 10.1.4.2 PC 3 £º 10.1.5.2 vla n 3 £º 10.1.5.1 vla n1 £º 10.1.1.1 vl an2 £º 10.1.2.1 vl an2 £º 10.1.4.1 vla n2 £º 10.1.2.2 vl an1 £º 10.1.3.2 S W IT CH-1 S W IT CH-3 vla n1 £º 10.1.3.1 Fig 1 8 -1 Static Route Confi g urations Configuration step[...]
-
Page 385
384 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Uses the “show ip ro ute” comm and to display the in formation about static route in the route t able: destination IP address, network m ask, next hop IP address, forwarding interface, etc. For example: Switch#show ip route Codes: C - connected, S - static, R - RIP derived, O - OSPF derived A - O[...]
-
Page 386
385 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch switch will be selected with the m etrics increasing progressively . This greatly affects th e route selection and r oute aggregation tim e. T o avoid “infi nite count”, RIP provides a mechanis m such as “split hor izon” and “triggere d update” to solve route loop. “Split horizon” is [...]
-
Page 387
386 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.3.2 RIP Configuration 18.3.2.1 RIP Configuration T ask Sequence 1. Enable RIP (required) (1) Enable/disabl e RIP module. (2) Enable interface to send/recei ve RIP packets 2. Configure RIP parameters (opti onal) (1) Configure RIP sending m echanism a. Configure specified RIP packets transmission ad[...]
-
Page 388
387 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch (1) Configure RIP sending mechanism a. Configure regular RIP packets tra n smission b. Configure RIP advertisem ent Command Expl anation RIP configuration mode [no] rip broadcast Indicates RIP layer 3 switch allows all ports to send broadcast/m ulticast packets; the “ no rip broadcast ” comm and [...]
-
Page 389
388 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ip rip authentication mode {text| md5 type {cisco|usual}} no ip rip authentication mode Sets the au thenticatio n method; the “ no ip rip authentication mode ” command restores the default plain text auth entication method. ip rip authentication key-chain <name-of-chain> no ip rip authentic[...]
-
Page 390
389 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ip rip rece ive version {v1 | v2 | v12} no ip rip re ceive version Sets the version of RIP packets to receive o n all ports; the “ no ip rip recei ve version ” comm and restores the default, i.e., receives both v1 and v2 packets, [no] ip rip input Enables receiving RIP pack ets on the interface; [...]
-
Page 391
390 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z show ip rip z debug ip rip packet z debug ip rip recv z debug ip rip send 18.3.2.2.1 auto-summary Command: auto-summary no auto-summary Function: Configures route aggregation; the “ no auto-summary” command disables route aggregation. Parameters: N/A. Default: Auto route a ggregation is n o t u[...]
-
Page 392
391 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command: ip rip authentication key-chain <name-of-chain> n o ip rip authentication key-chain Function: Specifies the key to use for RIP authentication; the “ no ip rip authentication key-chain ” command cance ls the RIP authenticati on. Parameters: <name-of-chain> is a string, up to 1[...]
-
Page 393
392 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.3.2.2.6 ip rip metricout Command: ip rip metricout < value > no ip rip metricout Function: Sets the additional route weig ht sending RIP packets on the int erface; the “ no ip rip metricout ” comm and restores the defau lt setting. Parameters: < value> is th e additional route m et[...]
-
Page 394
393 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command: ip rip re ceive version { v1 | v2 | v12} no ip rip re ceive version Function: Configure the RIP version to receive on the interface. T he default setting is to recei ve both RIP v1 and v2 pa ckets; the “ no ip r ip recei ve version ” comm and restores the default setting. Parameters: v1 [...]
-
Page 395
394 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Usage Guide: Sets split h orizon to prevent rout ing loops, i.e., prevent lay er 3 switches from broadcasting the rout e leaned from the sa me interface. Example: Disabling split horizon for inter face vlan1. Switch(Config)#interface vlan1 Switch(Config-If-Vlan1) #no ip split-horizon 18.3.2.2.13 redi[...]
-
Page 396
395 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Default: Zero fields are check in RIP-I packets by default. Command mode: RIP configuration m ode Usage Guide: RIP-I packet m ust have zero field, this comm and can be used to enable/disable check for RIP-I packet zero field. If non-ze ro zero field found in RIP-I pa cket, that RIP-I packet will be d[...]
-
Page 397
396 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Adjusts the tim e of RIP timers for update, expire, and hold down; the “ no timer basic ” command restores t he default setting . Parameter <update> stand s for the int erval in second s to send update packets, ranging from 1 to 2,147,483 ,647; <invalid> for the interval in [...]
-
Page 398
397 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Usage Guide: Th e user can dec ide whether the routin g protocols configured are correct and perform routing troubl eshooting acc ording to the output of this command. Example: Switch#sh ip prot ocols RIP information rip is turning on default metrict 16 neighbour i s:NULL preference is 100 rip versio[...]
-
Page 399
398 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch default metric 16 neighbou r is preference is 100 Displayed inform ation Explanation rip is turning on RIP routing is enabled default metric 16 The default metric for introd u ced route is 16 neighbour is The specified desti nation address preference is 100 RIP ro uting priority is 100 18.3.2.2.22 de[...]
-
Page 400
399 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch received a rip packet from 159.226.42.1 rip packet cmd : 2 ve rsion : 1 18.3.2.2.23 debug ip rip recv Command: debug ip rip re cv no debug ip rip recv Function: Enables the RIP packet debug function for receiving: the “ no debug ip rip recv ” command disables the debug function. Default: Debu[...]
-
Page 401
400 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 00 : 02 : 50 : start at 170*********** ********** send packets to 1 1.1 1.11 .2 packet header : c m d : response, version : 1 n o . d e s t d e s t _ m a s k g a t e d w a y m e t r i c 1 : 159.226.0.0 0.0.0.0 0.0.0.0 1 00 : 02 : 50 : start at 170* *************** ***** send packe[...]
-
Page 402
401 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch (10.1.1.2) only , update inform ation is not exchanged between sw itchA and sw itchC vlan2 ( 20.1.1.2). The configuration for Sw itchA, SwitchB and SwitchC is show n below: a) Configuration of layer 3 switch SwitchA !Configuration of the IP address for inter face vlan1 SwitchA#config SwitchA(Config)#[...]
-
Page 403
402 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch SwitchC#conf ig SwitchC(Config)# interface vla n 2 SwitchC(Config-If-vlan2)# ip addr ess 20.1.1.2 25 5.255.255.0 SwitchC (c conf ig-If-vlan2)#exit ! Enable RIP SwitchC(Config)#rout er rip SwitchC(Config-router -rip)#exit ! Enable vlan 2 to send /recei v e RIP packets SwitchC(Config)#interface vla[...]
-
Page 404
403 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Automatic network sum marization is no t in effect Disable R IP auto a ggregation default metric for redistr ibute is :16 The defa ult metric for introd uced route is 16. neigbour is The specified destination address. preference is :100 RIP rou tin g priority is 100. ( 2 ) show ip r oute The “s[...]
-
Page 405
404 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch default metric for redistr ibute is : RIP protocol default metric value. neigbour is: The neighbor lay er 3 switch connecti n g to this RIP switch. Preference RIP rou ting priority . RIP version information Displays the versio n informatio n for RIP , including the RIP version of sending ( V1 for RIP[...]
-
Page 406
405 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch • State of the connec ting link Link-state inform ation is flooded througho ut the network so tha t all layer 3 switches can get firsthand inform ation. Link-state layer 3 switches will not broadcast all inform ation contained in their route tab les; instead, t hey only se nd changed link-state inf[...]
-
Page 407
406 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch exchange link-state information wi th the other OSPF layer 3 switches to form al a link-state database describing the whole a u tonom ous system. Each layer 3 switch builds a shortes t path tree rooted in itself according to the l ink-state database, this tree provide the route t o all nodes in an au[...]
-
Page 408
407 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1 ) Each OSPF-enabled layer 3 switch maintains a database (LS data base) describing the link-state of the to pology struct ure of the whole autonom ous system. Each layer 3 switch generates a link-stat e advertisement accord ing to its surroundin g network topology structure (router LSA), and sends[...]
-
Page 409
408 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch (3) Configure other OSPF protocol param eters a. Configure OSPF routin g protocol priority b. Configure cost for OSPF STUB area and default route c. Configure OSPF virtual link d. Configure the priori ty of the interface wh en electing designated layer 3 switc h (DR). 3. Disable OSPF prot ocol. 1. En[...]
-
Page 410
409 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch d. Configure OSPF packet send ing timer param eter (ti mer of broadcast interface sending HELLO packet to poll, timer of neighboring layer 3 switch invalid tim eout, ti mer of LSA transmission delay a nd timer of LSA retransm ission. Command Expl anation Interface Mode ip ospf hello-interval < tim[...]
-
Page 411
410 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch (3) Configure other OSPF pr otocol parameters a. Configure OSPF routin g protocol priority b. Configure cost for OSPF STUB area and default route c. Configure OSPF virtual link Command Expl anation OSPF protocol conf iguration mode prefer ence [ ase ] < prefer ence > no prefer ence [ ase ] Conf[...]
-
Page 412
41 1 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z ip opsf dead-interval z ip ospf enable area z ip ospf hello-interval z ip ospf passive-interface z ip ospf priority z ip ospf retransmit-interval z ip ospf transmit-delay z network z prefer ence z redistribute ospfase z rou te r id z router ospf z stub cost z virtuallink neighborid z show ip ospf [...]
-
Page 413
412 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.4.2.2.2 default redistribute interval Command: default redistribute interval < time > no default re distribute interval Function: Sets the interva l for introduc ing external routes; the “ no default redistribute interval ” command restores t he default setting . Parameters: < time &g[...]
-
Page 414
413 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-Router -Ospf)#default redistribute tag 2 0000 18.4.2.2.5 default redistribute type Command: default redistribute type { 1 | 2 } no default re distribute type Function: Sets the default route ty pe(s) for exterior routes int roduction; the “ no default redistribute type ” com mand re[...]
-
Page 415
414 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Setting the OSPF route cost of interface vlan1 to 3. Switch(Config-If-Vlan1) #ip ospf cost 3 18.4.2.2.8 ip ospf dead-interval Command: ip ospf dead-interval <time > no ip ospf dead-interval Function: Specifies the interval befo re regarding a neigh bor layer 3 switch invalid ; the “ [...]
-
Page 416
415 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Default: The default HELLO -packet-sending interval is 10 seco nds. Command mode: Interface Mode Usage Guide: The HELLO packet is a most com mon pack et sent to neighboring layer 3 switches regularly for discover ing and maintaining the neighborhoo d and the el ection of D R and BDR. The hello-interv[...]
-
Page 417
416 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-If-Vlan1)#i p ospf priority 0 18.4.2.2.13 ip ospf retransmit-interval Command: ip ospf retransmit-interval <time> no ip ospf retransmit-inter val Function: Sets the interval for retransm ission of link-state advertisement am ong neighbor layer 3 switches; the “ no ip ospf r etra[...]
-
Page 418
417 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: <network> and <mask> are the network IP address and mask in decimal format; <are a_id> is the area number from 0 to 4294967295 ; advertise | notadvertise spe cifies whether o r not broadcast the s ummary route inform ation within th e network. Default: The system has no [...]
-
Page 419
418 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch respectively; tag speci fies the tag of the route s, <t ag> is the tag value fo r the routes, ranging from 0 to 4,294,967,2 95; metric specifies the weight of the route; <cost_value> for weig ht value, ranging from 1 to 16,777, 215. Default: Exterior routes are not intr oduced in OSPF by [...]
-
Page 420
419 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.4.2.2.20 stub cost Command: stub cost <cost> ar ea <a r ea_i d > no stub area <ar ea_id > Function: Sets an area to STUB area; the “ no stub ar ea <area_id >” comm and cancels the setti ng. Parameters: <cost> is the default route cost for the STUB area, ranging fr[...]
-
Page 421
420 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command: show ip ospf Function: Displays major OSPF information. Default: Nothing display ed by default Command mode: Admin Mode Example: Switch#show ip ospf my router ID is 1 1.1 1.4.1 preference=10 ase perference =150 export metric=1 export tag=-21474 83648 area ID 0 interface count : 1 80times s[...]
-
Page 422
421 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Destination AdvRouter NextHo p Age SeqNu mber T ype Cost 10.1.1.125 1 1 .1 1.1.2 1 1.1.1.2 3 300 2 20 Displayed inform ation Explanation Destination T arget network segm ent or address AdvRouter Route election NextHop Next hop address Age Aging time SeqNumber Sequenc e number T ype Exteri or routes t[...]
-
Page 423
422 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch DB entry count 6 LS_R TR 3 LS_NET 3 LS_SUM_NET 1 LS_SUM_ASB 0 LS_ASE 3 AS internal route 4 AS external route 0 Displayed inform ation Explanation IO cumulative Statistics f o r OSPF packets in/out. type Packet type: incl uding HELLO packet, DD packet, LS reques t, update and acknowledgi ng packe t, e[...]
-
Page 424
423 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch (Net's IP) 1 1 . 1 1 . 1 . 0 1 1 . 1 1 . 4 . 1 0 2 1 4 7 4 8 3 6 5 6 1 6 7 7 7 2 1 5 1 1.1 1.2.255 1 1.11 .4.1 0 2147483649 1 6777215 1 1.11.3.255 11.1 1.4.1 0 2147483680 1 67 77215 A S B R S u m m a r y L S A s L S I D A D V r t r A g e S e q u e n c e C o s t C h e c k s u m (ASBR's Rtr I[...]
-
Page 425
424 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch OSPF router ID The ID of the layer 3 switch. Area 1>>>>>>>> Area ID : 0 Represen t the LSA databa se information fro m area 1 to area 0. Router LSAs Route LSA Network LSAs Network LSA Summary Network LSAs Summary network LSA ASBR Summary LSAs Autonomous system exterior LSA 1[...]
-
Page 426
425 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Authentication key OSPF p acket authentication key Ti m e r Hell, Poll, Dea, Retrans OSPF protocol timer: including tim e set for HELLO packet, Poll interval packet, r oute invalid, route retransmission, etc. Number of Neigbors The number of neigh boring layer 3 swi tches Nubmer of Ad jacencies The n[...]
-
Page 427
426 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch router ip addr IP address of the interface in the neig hboring layer 3 switch state Link-state status priority Priority DR ID of the designate d layer 3 switch BDR ID of the backup design ated layer 3 switch last hello The last HELLO packet last exch The last packet exchanged 18.4.2.2.28 show ip ospf[...]
-
Page 428
427 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Displays OSPF virtual li nk information. Default: Nothing display ed by default Command mode: Admin Mode Example: Switch#show ip ospf virtual -links no virtual-link 18.4.2.2.30 show ip protocols Command: show ip protocols Function: Displays the infor mation of the routing protoc ols running[...]
-
Page 429
428 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch protocol 18.4.2.2.31 debug ip ospf event Command: debug ip ospf event no debug ip ospf event Function: Enables the OS PF debugging function for all ev ents: the “ no debug ip ospf event ” command disables the debug function. Default: Debugging is disa bled by defaul t. Command mode: Admin Mode 18[...]
-
Page 430
429 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 02 : 40 : 58 : receive a HELLO packet from 1 1.1 1.4.2 via Broadc ast interface 1 1.11. 4.1 02 : 40 : 58 : 18.4.2.2.34 debug ip ospf spf Command: debug ip ospf spf no debug ip ospf spf Function: Enables the OSPF debug function for shortest pa th algorithm; the “ no debug ip ospf spf ”[...]
-
Page 431
430 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ! Configuration of the IP address for interface vlan2 Switch1(Config)# interface vlan 2 Switch1(Config-if-vl an2)# ip address 100.1.1.1 25 5.255.255.0 Switch1 (Config-if-vlan2) #exit ! Enable OSPF protocol, confi gure the area num b er for interface vlan1 and vlan2. Switch1(Config)#rout er ospf Swi[...]
-
Page 432
431 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch3#config Switch3(Config)# interface vlan 3 Switch3(Config-if-vl an1)# ip address 20.1.1.2 255 .255.255.0 Switch3(Config-if-vlan 3)#no shut-down Switch3(Config-if-vlan3)#e xit ! Enable OSPF protocol, configure the O SPF area interfaces vlan3 resides in. Switch3(Config)#rout er ospf Switch3(Con[...]
-
Page 433
432 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch5(Config-if-vlan3)#e xit ! Enable OSPF protocol, configure the number of the area in which interface vlan2 and vlan3 reside in. Switch5(Config)#rout er ospf Switch5(Config-router -ospf)#exit Switch5(Config)#interface vla n 2 Switch5(Config-if-vlan 2)#ip ospf enable area 0 Switch5(Config-if-vl[...]
-
Page 434
433 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch11 are edge layer 3 switches of the area, Sw itch5 and Switch7 are edge layer 3 switches of the autonomous system . T o area1, layer 3 swi tches Switch1 and Switch2 are both in-area switc hes, area edge switc hes Switch3 and Switch4 are responsible for report ing di stance cost to a ll destinat[...]
-
Page 435
434 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch1(Config-If-Vlan2)#exit ! Enable OSPF protocol, confi gure the area num ber for interface vlan2. Switch1(Config)#rout er ospf Switch1(Config-router -ospf)#exit Switch1(Config)#interface vla n 2 Switch1(Config-If-Vlan2)#ip ospf enable area 1 !Configure sim ple key authent ication. Switch1(Conf[...]
-
Page 436
435 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch3(Config-If-Vlan2)#exit ! Enable OSPF protocol, confi gure the area num ber for interface vlan2. Switch3(Config)#rout er ospf Switch3(Config-router -ospf)#exit Switch3(Config)#interface vla n 2 Switch3(Config-If-Vlan2)#ip ospf enable area 1 !Configure sim ple key authent ication. Switch3(Conf[...]
-
Page 437
436 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch4(Config-If-Vlan1)# ip addr ess 10.1.6.1 255.255.255.0 Switch4(Config-If-Vlan1)#ip ospf enable area 0 !Configure MD5 key authentica tion. Switch4(Config-If-Vlan1) #ip ospf authen tication md5 DCS Switch4(Config-If-Vlan1)exit Switch4(Config)#exi t Switch4# 18.4.4 OSPF T r oubleshooting Help 1. M[...]
-
Page 438
437 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ( 1 ) show ip ospf Example: Switch#show ip ospf my router ID is 1 1.1 1.4.1 preference=10 ase perference =150 export metric=1 export tag=-21474 83648 area ID 0 interface count : 1 80times spf has been run for this area net range : LSRefreshT ime is1800 area ID 1 interface count : 1 41times [...]
-
Page 439
438 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch A 5 . 1 . 2 . 0 2 5 5 . 2 5 5 . 2 5 5 . 0 1 2 . 1 . 1 . 2 V l a n 1 2 1 5 0 A 5 . 1 . 3 . 0 2 5 5 . 2 5 5 . 2 5 5 . 0 1 2 . 1 . 1 . 2 V l a n 1 2 1 5 0 A 5 . 1 . 4 . 0 2 5 5 . 2 5 5 . 2 5 5 . 0 1 2 . 1 . 1 . 2 V l a n 1 2 1 5 0 A 5 . 1 . 5 . 0 2 5 5 . 2 5 5 . 2 5 5 . 0 1 2 . 1 . 1 . 2 V l a n 1 2 1 5[...]
-
Page 440
439 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch t y p e i n o u t HELLO 1048 253 D D 3 3 8 3 3 7 L S R e q 6 2 2 1 9 LS Update 753 295 L S A c k 4 9 5 3 0 8 ASE count 0 checksum 0 original LSA 34 0 LS_R TR 179 LS_NET 1 LS_SUM_NET 160 LS_SUM_ASB 0 LS_ASE 0 received LSA 325 Areaid 0 nbr count 1 interface count 1 spf times 120 DB entry count 6 LS_R T[...]
-
Page 441
440 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1 1.11.4.2 11.1 1.4. 2 18 214748386 3 1 6777215 Router LSA 1 1.11.4.1 11.1 1.4.1 0 2147483808 0 42 401 1 1.11.4.2 11.1 1.4.2 18 2147483863 1 67 77215 N e t w o r k L S A s L S I D A D V r t r A g e S e q u e n c e C o s t C h e c k s u m (DR's IP) 1 1.11.4.2 11.1 1.4.2 1 2147483662 1 3 5126 S u [...]
-
Page 442
441 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1 1.1 1.1.3 14.14.14.1 15 2147483705 1 53384 S u m m a r y N e t w o r k L S A s L S I D A D V r t r A g e S e q u e n c e C o s t C h e c k s u m (Net's IP) 1 1.1 1.4.255 1 1.1 1.4.1 0 21474 83677 1 6777215 A S B R S u m m a r y L S A s L S I D A D V r t r A g e S e q u e n c e C o s t C h e c [...]
-
Page 443
442 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch cost Cost value State S tatus T ype Layer 3 switch type , such as design ated Priority Configure the priority in electi ng designated lay er 3 switch. T ransit Delay The delay value for interfac e to transfer LAS DR The designated layer 3 switch BDR Backup designated layer 3 switch Authentication key[...]
-
Page 444
443 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch area id The id of the a rea for the interface router id The ID of the neighbor layer 3 switch router ip addr IP address of the neighboring lay er 3 switch state Link-state status priority Priority DR ID of the designa ted layer 3 switch BDR ID of the back up designated layer 3 switch last hello The l[...]
-
Page 445
444 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch my router ID is 100.1 .1.1 preference=10 ase perference =150 export metric=1 export tag=-21474 83648 area ID 1 interface count:2 7times spf has been run for this area net range: LSRefreshT ime is1800 RIP information rip is shutting down Displayed inform ation Explanation OSPF is running The runn ing [...]
-
Page 446
445 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.5 WEB MANAGEMENT Click “ R o ute config uration ” to o pen “ routing protoc ol configuration ” to configure the item s as follows: z Stati c route configuration z RIP configuration z OSPF configuration z Show ip route 18.5.1 S tatic route Click “ S tatic route configuration ” to config[...]
-
Page 447
446 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Click RIP configuration to open RIP configuration including: z Enable RIP: enable RIP including 9 Enable RIP: enable 9 Enable port to receive/transmit RIP packet z RIP parameter configuration (opt ional) includ ing: 9 Enable imported rout e 9 Metricin/out confi guration 9 RIP port imported route 9 RI[...]
-
Page 448
447 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Redistribute im ported route cost z Operation type: Add o r Remove Example: For prot ocol select OSPF , cost as 5, then select Add. Cl ick Apply butto n to redistribu te imported route cost 5 with OSPF routing protocol to RIP . 18.5.2.2.2 Metricin /out configuration Click “Metricin/o ut configur [...]
-
Page 449
448 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.3.2.2.3 z RIP authentication typ e: sets up RIP authentication ty pe. T ext means text authentic ation; md5 means normal MD 5 authenticat ion; Cisco MD 5 means Cisco MD5 authentica tion; cancel means back to defa ult. Equivalent to CLI com mand 18.3.2.2. 4. Example: 18.5.2.2.4 Global RIP configura[...]
-
Page 450
449 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.5.2.2.5 Set RIP timer Click “RIP timer confi guration” to enter the c onfiguration page. Equivalen t to CLI com mand 18.3.2.2.1 8 z Update tim e: sending update packe t time interv al z Invalid timer: RIP route in valid time z Holddown tim er: specified inva lid routes existin g interval in t [...]
-
Page 451
450 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Click “OSPF enable” to enter th e configuration page . Equivalent to CL I command 18.4.2.2.19. z OSPF enable: select from O SPF enable or OSPF disable z Reset: clears selection Example: Select OSPF enable and click Ap ply button to enable OSPF protocol 18.5.3.1.2 Router -ID configuration Click ?[...]
-
Page 452
451 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.5.3.1.4 Configur e OSPF ar ea for port Click “OSPF area configura tion” to enter the conf iguration page for port . Equivalent to CLI command 18. 4.2.2.9 z Vlan port: port lis t z Area ID: area number z Reset: resets each co lumn value to default in t his page and t his action will not change [...]
-
Page 453
452 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.5.3.2.2 Passive interface configuration Click “Passive interfa ce configuration” to enter the configuration page. Equivalen t to CLI command 18.4.2.2. 1 1. z Port: port list z Passive interface configurat ion: sets up to recei ve OSPF packets only z Cancel: cance ls the setting. z Reset: reset[...]
-
Page 454
453 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.5.3.3 OSPF imported r oute parameter configuration Click “OSPF Imported route parameter configuration” to open the co nfiguration table, includes: z Imported route param eter configuration: configur e imported route default param eter z Import external ro uting information: configure other imp[...]
-
Page 455
454 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Reset: resets each co lumn value to default in t his page and t his action will not change settin gs z Apply: valid each colum n value. This actio n will change settings. z Default: resets to defaul t settings. This action will change settin gs. 18.5.3.4 Other parameter configuration Click “Other[...]
-
Page 456
455 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 18.5.3.4.3 OSPF virtual link configuration Click “OSPF virtual l ink configurati on” to enter the c onfiguration pa ge. Equivalent to CLI command 8.4. 2.2.21 z router_id: neighbor virtu al lick ID z transit area: transit area num ber z hello interval: send ing hello packet tim e interval z dead i[...]
-
Page 457
456 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z show ip ospf cumulative: displays OSPF statis tic inf ormation. Equiva lent to CLI command 18.4.2.2.2 4 z show ip ospf database: displays OSPF link st atus data information. Equivalent to CLI command 18. 4.2.2.25 z show ip ospf interface: displays OSPF interfa ce inform ation. Equivalent to CLI com[...]
-
Page 458
457 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter 19 Multicast protoc ol Configuration 19.1 Multicast Protocol Overview 19.1.1 Intr oduction to Multicast When sending inform ation (including data, v oice and video) to a small number of users in the network, th ere are several w ays of transmission. For e xample, the unicast m ethod that esta[...]
-
Page 459
458 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch group at any ti me. A multicast group can be either a perpet ual one or temporary one. Part of multicast addresses are assigned officially and r eferred to as the perpet ual multicast group. The IP address of a perpetual multicast group rem ains the same, but the m embership can be cha nged. A perpet[...]
-
Page 460
459 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch multicast group address in t he destination address field of the IP packet. The multicast model differs from the unicast m odel in that a m ulticast packet m ust be forwarded to several exte rnal interfaces to send the pack et to all rec eiving stations, i.e., multicast forwarding i s more com pl ex [...]
-
Page 461
460 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Function: Displays the IP multicast packet forwardin g entries. Parameters: [ gr oup_addr ess ] specifies the group address for the forwarding en try to be display ed; [ source_addr ess ] specifies the source address for the forwarding entry to be dis played Default: No display by defa ult. Command m[...]
-
Page 462
461 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.3 PIM-DM 19.3.1 Intr oduction to PIM-DM PIM-DM (Protocol Independent M ulticast , Dens e Mode) is a dense mode multic ast protocol . It is good for use in sm all networks as the multicast gr ou p members are relatively concentrated in such network environm ents. The work process of PIM-D M can b[...]
-
Page 463
462 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch If a pruned downstream node needs to restore to the forwarding state, the node will se nd a graft packet to ask the upstream to restore m ulticast data forwarding. 19.3.2 PIM-DM Configuration 19.3.2.1 PIM-DM Configuration T ask Sequence 1. Enable PIM-DM Basic configuratio n of PIM-DM routi ng protoco[...]
-
Page 464
463 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command : ip pim dense-mode no ip pim dense-mode Function: Enables PIM-DM protocol on the interface; the “ no ip pim dense-mode ” command disables PIM-DM protoc ol on the i nterface. Parameters: N/A. Default: PIM-DM protocol is dis abled by default. Command mode: Interface Mode Usage Guide: Examp[...]
-
Page 465
464 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch SWITCHA SWITCHB E t her net 1/ 1 vl a n 2 E t her net 1/ 1 vl a n 1 E t her net 1/ 2 vl a n 2 E t her net 1/ 2 vl a n 1 Fig 19-1 T ypic al PIM-DM e nvironment The followings are t h e configurat ions of SwitchA and SwitchB. (1) Configuration of Sw itchA: Switch (Config)#interface vlan 1 Switch(Config[...]
-
Page 466
465 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch debug ip pim Enables the debu gging function for displaying detailed PIM information; the “ no ” form at of this command disab les this debug function. 19.3.4.2 show ip pim mroute dm Command: show ip pim mroute dm Function: Displays the PIM-DM packet forwarding entry Parameters: N/A. Default: No [...]
-
Page 467
466 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Outgoing interface list Outgoing interface list. Prune interface list Downstream prune interfac e list. 19.3.4.3 show ip pim neighbor Command: show ip pim neighbor [< ifn ame> ] Function: Displays informatio n for neighbors of the PIM interface. Parameters: <ifname> is the i nterface name[...]
-
Page 468
467 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2.1.1.1 Vlan1 00:26:23 00:0 1:39 Switch# Displayed inform ation Explanation Interface (the former) Interf ace name and interface IP Owner Multicast routing pro t ocol of the interface V if Corresponding virtual in terface index to the interface Hello Interval The HELLO pack et interval configured on [...]
-
Page 469
468 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch information to Edge-Core technical service center . 19.4 PIM-SM 19.4.1 Intr oduction to PIM-SM PIM-SM (Protocol In dependent Multicast , Sparse Mo de) is a sparse m ode multicast protocol, the mode is protoco l independent. I t is mainly used in larg e scale networ ks with group members relatively [...]
-
Page 470
469 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch On receiving BSR advertised C-RP m essa ges, multi cas t routers will calculate the RP corresponding to a certain m ulticast grou p with the sam e algorithm . It should be noted t hat one RP can servi ce multi ple m ulticast groups or all multic ast groups. Each multicast group i n any time can have [...]
-
Page 471
470 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 1) Configure a sw itch as the cand idate BSR. Command Expl anation Interface Mode ip pim bsr -candidate < ifname> [ hashlength ] [ Priority ] no ip pim bsr -candidate This command is a g lobal candid ate BSR configuration com mand. It is used to c onfigure information for PIM-SM candid ate BSR [...]
-
Page 472
471 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command: ip pim sparse-mode no ip pim sparse-mode Function: Enables PIM-SM protocol on the in terface; the “ no ip pim sparse-mode ” command disables PIM-SM protocol on the interface. Parameters: N/A. Default: PIM-SM protocol is dis abled by default. Command mode: Interface Mode Usage Guide: Exam[...]
-
Page 473
472 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch specified peri od, that neig hbor is consi dered to be lost . This time setting m ust be no greater than the ne ighbor timeout t ime. Example: Configuring PIM-SM HELLO in terval on inte rface vlan1. Switch (Config)#interface vlan 1 Switch(Config-If-Vlan1)#ip pim query-interval 20 19.4.2.2.4 ip pim bs[...]
-
Page 474
473 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch this command is c onfigured. Example: Setting the interf ace vlan1 as the candi date RP announcing message sending int erface. Switch (Config)# ip pim rp-candidate vlan1 group- list 5 Switch (Config)# access-l ist 5 perm it 239.255.2.0 0.0.0.255 19.4.3 T ypical PIM-SM Scenario As shown in the figure [...]
-
Page 475
474 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch (Config)#interface vlan 2 Switch(Config-If-Vlan2)# ip pim sparse-mode Switch(Config-If-Vlan2)# exit Switch (Config)# ip pim rp-candidate vlan2 group- list 5 Switch (Config)# access-l ist 5 perm it 239.255.2.0 0.0.0.255 (3) Configuration of SWITC HC: Switch (Config)#interface vlan 1 Switch(Conf[...]
-
Page 476
475 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch PIMv2 Bootstrap inform ation BSR address: 192.4.1.3 Priority: 192, Hash m ask length: 30 Expires : 00:02:13. Switch # Displayed inform ation Explanation BSR address Bsr -router address Priority Bsr -router pri o rity Hash mask length Bsr -router hash mask leng th Expires The remainin g time befor e c[...]
-
Page 477
476 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Expires The remaining tim e before considering the neighb or to be invalid. 19.4.4.1.3 show ip pim mr oute sm Command: show ip pim mroute sm Function: Displays the PIM-SM packet forwarding entry Parameters: N/A. Default: No display by defa ult. Command mode: Admin Mode Usage Guide: This com mand is u[...]
-
Page 478
477 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 192.2.1. 1 Vlan2 31 00:11:39 00 :01:16 / 192.4.1. 4 Vlan4 33 00:11:39 00 :01:44 DR 192.4.1. 3 Vlan4 33 00:11:39 00 :01:17 / Switch # Displayed inform ation Explanation Neighbor -Address Neighbor ad dress Interface The neighbor interface discovered ifIndex Interface inde x number Uptime The up tim e o[...]
-
Page 479
478 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 00:17:52: PI M: Received v2 J oin/Prune on Vlan 2 from 192.3.1. 3 to 192.3.1 .2 00:17:52: PIM: R eceive Join-list: (192.1.1.1 /32, 225.0. 0.1/32), S-bit set 00:17:54: PI M: Received v2 H ello on Vlan4 from 192.4.1.4 , holdtime 105 00:17:57: PI M: Received v2 H ello on vl an3 from 192.2.1 .1, holdtime[...]
-
Page 480
479 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch correctness must be ensured. PIM-SM protocol requires th e support of RP and BSR. So “ show ip pim bsr-router ” command sho uld be run fir st for BRS information, if no BSR exists, then the unic ast route to BSR should be checked. Use the “ show ip pim rp ” command to verify RP infor [...]
-
Page 481
480 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch information, t hey know the route metric for each other to get to the s ource network, and the switch has the smalle st metric to the source netw ork become s the designated forwarder of that subnet; if the metrics are same, the on e with lower IP address rules. When DVMRP is enabled o n an interface[...]
-
Page 482
481 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command Expl anation Interface Mode [no] ip dvmrp enable Enable DVMRP; the “ no ip dvmrp enable ” command disables DV MRP (required) 2. Configure connectivity wi th CISCO r o uters/switches CISCO does not really implemented DVMRP , but provides connect ivity with DVMRP . As CISCO routers/switches[...]
-
Page 483
482 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ip dvmrp report-interval < time_val > no ip dvmrp report-interval Sets the interval f or sending DVMRP report messages; the “ no ip dvmrp report interval ” command restores t he default setting . d. Configurin g DVMRP route timeout t ime Command Expl anation Global Mode ip dvmrp rou te-time[...]
-
Page 484
483 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.5.2.2.1 ip dvmrp cisco-comp atible Command: ip dvmrp cisco-compatible <A.B.C.D> no ip dvmrp cisco-compatible <A.B.C .D> Function: Enables connectivity wit h CISCO neighbor A, B, C, D; the “ no ip dvmrp cisco-compatible ” command disables connectivity with CISCO ne ighbors. Paramete[...]
-
Page 485
484 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Usage Guide: If a new receiver joins that interface when an interf ace is in the pruned state, the interface will send a graft message to the upstream; if no graft ACK message from the upstream is receive d, it will keep sending graft message to the upstream at regular interval until an a ppropriate [...]
-
Page 486
485 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.5.2.2.6 ip dvmrp pr obe-interval Command: ip dvmrp probe-interval < time_v al > no ip dvmrp probe-interval Function: Sets the interval for sending DVMRP probe m essages; the “ no ip dvmrp probe interval ” command restores the defaul t setting. Parameters: < time_val > is the interv[...]
-
Page 487
486 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: < time_val > is the tim e to timeout a route, the v alid range is 20 to 1400 secon ds.. Default: The defau lt timeout setting for DVMRP routes is 140 s econds. Command mode: Global Mode Usage Guide: If no up dating report message for a rou te from the neighbor of the ro ute is recei[...]
-
Page 488
487 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Fig 19 -3 DVMRP network t opology The followings are t h e configurat ions of SwitchA and SwitchB. (1) Configuration of SWITC HA: Switch (Config)#interface vlan 1 Switch(Config-If-Vlan1)#ip dvmrp enable (2) Configuration of SWITC HB: Switch (Config)#interface vlan 1 Switch(Config-If-Vlan1)#ip dvmrp e[...]
-
Page 489
488 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Outgoing interface list: (V lan2), protos: 0x2 Upstream prune interface list: Downstream prune interface list: Displayed inform ation Explanation (192.168.1.0, 22 4.1.1.1) Forwarding entry Incoming interface Incoming interface, or RPF int e rface Outgoing interface list Outgoing interface list Upstre[...]
-
Page 490
489 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Command mode: Admin Mode Usage Guide: This comm and is used to display DVMRP route table entries; DVMRP maintains separated unicast route ta bles for RPF check. Example: Displayi ng DVMRP routing information. Switch #show ip dvmrp route Switch # D e s t i n a t i o n / M a s k N e x t h o p I n t e r[...]
-
Page 491
490 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.5.4.1.5 debug ip dvmrp detail Command: debug ip dvmrp detail Function: Enables the de bug function for disp laying detailed D VMRP information; the “ no ” format of this comm and disables this deb ug function. Parameters: N/A. Default: Disabled. Command mode: Admin Mode Usage Guide: If detaile[...]
-
Page 492
491 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch DVMRP pruning debug is on 02:22:20:26 : DVMRP: Received prune o n vlan2 from 105.1.1.2, len 20 02:22:20:26 : DVMRP: Prune V ers: majorv 3, m inorv 255 02:22:20:26 : DVMRP: Prune source 192.168.1.1 05, group 224. 1.1.1 02:22:20:40 : DVMRP: Received graft on vlan1 from 105.1.1.2, len 16 02:22:20:40 : D[...]
-
Page 493
492 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch network segments conne cting to its interfaces. As to the hosts, they only need to keep the information about the multi cast groups joined. IGMP is asymmetric for hosts and sw itches: The hos ts respond IGMP query pa ckets sent by the multicast switches, i. e., respond with membership re port packets[...]
-
Page 494
493 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch b. Configure m aximum response time for IGMP queries c. Configure tim e out setting for IG MP queries (3) Configure IGMP version 3 、 Disable IGMP 1. Enable IGMP There is no special command for enabling IG MP in ES47 10BD layer 3 swit ches, the IGMP automatically enables when any multicast protocol [...]
-
Page 495
494 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch ip igmp static-gr o up < A.B.C.D > no ip igmp static -group < A.B.C .D > Joins the inter face to a stat ic IGMP gr oup; the “ no ip igmp static -gr o up ” comm and cancels the join. (2) Configure IGMP query parameters. a. Configure tr ansmission in terval of query packets in IGMP b. C[...]
-
Page 496
495 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z ip igmp version z show ip igmp gr oups z show ip igmp interface z debug ip igmp event z debug ip igmp packet 19.6.2.2.1 ip igmp access-gr oup Command: ip igmp access-gr oup {< acl_num | acl_name >} no ip igmp access-group Function: Sets the filter criteria for IGMP group on th e interface; th[...]
-
Page 497
496 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.6.2.2.3 ip igmp query-interval Command: ip igmp query-interval < time_v al > no ip igmp query-interval Function: Sets the interval for send ing IGMP query messages; the “ no ip IGMP query interval ” command restores t he default setting . Parameters: < time_val > is the interv al f[...]
-
Page 498
497 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch as the querier for that shared network, the other switches act as tim ers monitoring the status of the querier; if no query packet from the querier is rec eived after the qu ery timeout tim e, a new switch will be e l ected to be the new querier . Example: Configuring t he interface tim eo ut setting[...]
-
Page 499
498 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch appropriate vlan, and PIM-DM protocol is enabled on each vlan interface. SWITCHA SWITCHB E t her net 1/ 1 v l an1 E t her net 1/ 1 v l an1 E t her net 1/ 2 v l an2 Fig 19 -4 IGM P netw ork topology The followings are t h e configurat ions of SwitchA and SwitchB. (1) Configuration of SWITC HA: Switch [...]
-
Page 500
499 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch#show ip igm p groups IGMP Connect Group Membership (1 gro up(s) joined) Group Address Interface Uptime Expires Last Reporter 239.255.2 55.250 Vlan123 02:57:30 00:03:36 123.1.1.2 Switch# Displayed inform ation Explanation Group Address Multicast group IP address Interface Interface of the multi[...]
-
Page 501
500 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch command disab les this debug function. Parameters: N/A. Default: Disabled Command mode: Admin Mode Usage Guide: If detailed information about IGMP events is required, this debugging command can be used. Example: Switch# debug i p igmp event igmp event d ebug is on Switch# 01:04:30:56: IGMP: Group 224[...]
-
Page 502
501 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.7 WEB MANAGEMENT Click “root page” left co ntent colum n “Multicast protocol co nfiguration” to enter in to multicas t protocol confi guration root node and m ake configuration for m ulticast protocol. z Click Multica st common configuration to enter into multicast prot ocol public m onito[...]
-
Page 503
502 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Query-Interval - Configures local interface PIM-DM hel l o message interval time z Vlan Port - assigns layer 3 interface ( select from scroll bar m enu ) z Apply - runs according to co nfigured param e ter z Default - restores local interface PIM-DM hello m essa ge interval tim e to def[...]
-
Page 504
503 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 19.7.3.4 Set router as BSR candidate Click Set router as BSR candidate for c o nfigure PIM-SM candid ate BSR inform ation , for compete with other candidate BSR for BSR router . This is the sa me as CLI command 19.4.2.2. 4 z Set router as BSR c andidate - yes m eans configure the switch as PIM-SM[...]
-
Page 505
504 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Vlan Port - assigns layer 3 interface ( select from scroll bar m enu ) z Apply - runs according to co nfigured param e ter z Default - disables DVMR P protocol 19.7.4.2 Cisco-compatible configuration Click “Cisco-com patible configuration” to startup the connection with CISCO neighbor[...]
-
Page 506
505 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch same as CLI comm and 19.5.2.2.3 z Interval of sending pro be packet - Configures the interval of sending pr obe packet. This is the same as CLI comm and 19.5.2.2.6 z Interval of sending report packet - Configures the i n terval of sending report packet. This is the same as CLI comm and 19.5.2.2.7[...]
-
Page 507
506 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z IGMP qu ery timeout - Configures IGMP query timeout. This is the s ame as CLI command 19. 6.2.2.5 z Vlan Port - assigns layer 3 interface ( select from scroll bar m enu ) z Apply - runs according to co nfigured param e ter z Default - restores the int erface configuration parameter to d[...]
-
Page 508
507 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Click “Show i p pim neighbor” to display PIM interfac e neighbor inform ation. This is the same as CLI command 19.3. 4.3 19.7.6.4 Show ip pim bsr -r outer Click “Show i p pim bsr-router” t o display the ru nning PIM-SM protocol BSR inform ation. This is the same as CLI com mand 19.4.4.1.1 19.[...]
-
Page 509
508 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter20 802.1x Configuration 20.1 Intr oduction to 802.1x IEEE 802.1x is a port-based ne twork access management m ethod, which authenticates and manages the accessing devices on the physical access level of the LAN devic e. The physical access leve l here are the ports of the switch. If the users?[...]
-
Page 510
509 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch In the IEEE 802.1x applica tion environm e nt, ES47 10BD is used as the access management unit, and the user connection device is the devic e with 8 02. 1x client soft ware. An authenticating server usually reside in the Carrier ’ s AAA center and usually is a Radi us server . The authentication fu[...]
-
Page 511
510 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2. Access management unit pr operty configuration 1) Configure port authenticati on status 2) Configure port access managem ent method Command Expl anation Global Mode aaa enable no aaa enable Enables the AAA authentication function in the switch; the “ no aaa enable ” command disa bles the AAA a[...]
-
Page 512
51 1 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 3) Configure expa nded 802.1x fu nction: for the sw itch. 3. Supplicant related pr operty configuration Command Expl anation Global Mode dot1x max-r eq < count> no dot1x max-req Sets the number of EAP request/ MD5 frame to be sent before the switch re-initials authentica tion on no supplicant [...]
-
Page 513
512 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Global Mode radius-server key <string> no radius-server key Specifies the key for RADIUS server; the “no radius-server key” command dele tes the key for RADIUS server . 2) Configuring RADIU S Server Command Expl anation Global Mode radius-server authenticati on host <IPaddress> [[port[...]
-
Page 514
513 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Usage Guide: The AAA authentication for the switc h must be enabl ed first to enable IEEE 802.1x authentication for the switch. Example: Enabling AAA function for the sw itch. Switch(Config)#aaa enable 20.2.2.2 aaa-accounting enable Command: aaa-accounting enable no aaa-accounting enable Function: En[...]
-
Page 515
514 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 20.2.2.4 dot1x eapor enable Command: dot1x eapor enable no dot1x eapor enable Function: Enables the EAP relay authenticat ion function in the switch; th e “ no dot1 x eapor enable ” command sets EA P local end authentication. Command mode: Global Mode Default: EAP relay authentication is used by [...]
-
Page 516
515 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch authentication packets s upport must be enable d in the switch, otherwise m any application woul d not be availa ble. For detailed info rmation, please refer to th e introduction of Edge-Core Overall Solution, S tandard 802.1 x client would not be authenticated if Edge-Cor e proprietary 802.1x a uthe[...]
-
Page 517
516 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Default: The defau lt maximum user allowed is 1. Usage Guide: This com mand is available for ports using MAC-based access management, if MA C address authenticated exceeds the number of allowed user , addit ional users will not be able to access the net work. Example: Setting port 1/3 to allow 5 user[...]
-
Page 518
517 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch specified port. Parameters: <interface-nam> stands for port num ber , omitting the p arameter for all ports. Command mode: Admin Mode Usage Guide: This com mand is an Admin Mode comm and. It makes the switch to re-aut henticate the client a t once without waiting for re-authentication t i mer t[...]
-
Page 519
518 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: <seconds> is the interval for re-authenticatio n, in seconds, the valid ran ge is 1 to 65535. Command mode: Global Mo de Default: The defau lt value is 3600 second s. Usage Guide: dot1x re-a uthenticatio n must be e n abled first bef ore supplicant re-authentic ation interval can be[...]
-
Page 520
519 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch servers, and all the accounting ser vers can be backup servers for each other. If primary is specified, then the specified RADIUS server will be the primary server. Example: Sets the RADIUS accountin g server of IP address to 100.100.100. 60 as the primary server , with the accounting port num b er a[...]
-
Page 521
520 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 20.2.2.20 radius-server key Command: radius-server key <str ing> no radius-server key Function: Specifies the key for the RADIUS server (authenticati on and accounting); the “no radius-server key” com man d dele tes the key for RADIUS server . Parameters: <string> is a key string for [...]
-
Page 522
521 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch time, the switch res e nds the request packe t or sets t he server as invali d according to the current conditions. Example: Setting the RADIUS auth entication t imeout tim er value to 30 seconds. Switch(Config)# radius-server t imeout 30 20.3 802.1x Application Example 1 0 .1 .1 .1 10. 1. 1. 2 R adi[...]
-
Page 523
522 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-Ethernet1/2) #exit 20.4 802.1x T roubleshooting 2o.4.1 802.1x Debug and Monitor Commands 20.4.1.1 show aaa config Command: show aaa config Function: Displays the configure d commands fo r the switch as a RADIUS client. Command mode: Admin Mode Usage Guide: Displays whether AAA authentic[...]
-
Page 524
523 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch . U d p P o r t = 1 8 1 3 . I s P r i m a r y = 0 . I s S e r v e r D e a d = 0 . S o c k e t N o = 0 T i m e O u t = 3 Retransm it = 3 D e a d T i m e = 5 Account Time Interval = 0 Displayed inform ation Descriptio n Is AAA En abled Indicates whether AAA authentication is enabled or not . 1 for enab[...]
-
Page 525
524 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Usage Guide: Usually the administrator is concerned only with the online user information, the other information displayed is use d for troubleshootin g by technica l support. Example: Switch#show aaa authentica ted-user ----------------- -------- authenticated users ------------------ ------------- [...]
-
Page 526
525 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch The total us er num is: 1 2. Display the statistics for R ADIUS authenticated users and ot hers. Switch #sho radi us authencati ng-user count --------------------- Radius user statistic------------- -------- The authencating user num is: 0 The stopping user num is: 0 The stopped u ser num is: 0 The t[...]
-
Page 527
526 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch S u p p l i c a n t 0 0 - 0 3 - 0 F - F E - 2 E - D 3 Authenticator S tate Machine S t a t e A u t h e n t i c a t e d Backend St ate Machine S t a t e I d l e Reauthentication S tate Machine S t a t e S t o p Displayed inform ation Explanation Global 802.1x Para meters Glo bal 802.1x parameter in fo[...]
-
Page 528
527 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch process and is helpfu l in troublesh o oting. Example : Enabling AAA debugging info rmation. Switch#debug aaa 20.4.1.7 debug dot1x Command: debug dot1x no debug dot1x Function: Enables dot1x debugging i nformation; the “ no debug dot1x” com mand disables the dot1x debugg ing inform ation . Comman[...]
-
Page 529
528 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 20.5 WEB MANAGEMENT Click “Authe ntication configuration ”, to open authentication config uration m anagement list.U sers may configure switch 802.1x authentication func tion. 20.5.1 RADIUS client configuration Click “Authe ntication configuration” , “RADIUS client configuration”, to open[...]
-
Page 530
529 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 20.5.1.2 RADIUS authentication configuration Click “Authe ntication co nfiguration”, “RADIUS client configurat ion”, “RAD IUS authentica tion configuration” to configure the RADIUS authe n tication server IP address and m onitor port ID. Equivalent to CLI comm and 20.2.2.17. z Authenticat[...]
-
Page 531
530 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 20.5.1.3 RADIUS accounting configuration Click “Authenticat ion configuration”, “ RADIUS client confi gurati on”, “RADIUS accounti ng configuration” to configure th e RADIUS accounting server ’ s IP address and monitor port ID. Equivalent to CLI comm and 20.2.2.16. z Accounting server I[...]
-
Page 532
531 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch suppliant. Equ ivalent to CLI com mand 20.2.2.12. z Holddown time for aut hentication fai lure(1-65535 se cond) - Configures supplia nt quiet-period status time after authe ntication failure. Sa me as CLI command 20.2.2 .13. z Re-authenticate cl ient interval(1-65535 second) - C onfigures tim e inter[...]
-
Page 533
532 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch z Authentication m ode – Configures the access co ntrol method for a specific port. Mac-based is access control method whi ch is based on MAC addres s; port-based access control m ethod which is based on port. Same as CLI comm and 20.2.2.10. z Port maximum user(1-254) - Configures the perm ission m[...]
-
Page 534
533 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch port 802.1x confi guration inform ation, and m ake re-authentication for the specif ic port. Same as CLI command 1.2.2 .1 1. z Port – assign port z 802.1x status – port 802.1x status z Authenticatio n type – Auth entication ty pe z Authenticatio n status – Authentic ation status z Authenticat[...]
-
Page 535
534 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Chapter21 VRRP Configuration 21.1 Intr oduction to VRRP VRRP (V irtual Router Redu ndancy Protocol) is a fault tolerant pr otocol designed to en hance connection reliab ility between r o utes (or L3 Ethernet switches) and external devices. It is deve loped by the IETF for local area networks (LAN) wi[...]
-
Page 536
535 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 2) Configure VRRP pri ority 3) Configure VRRP Tim er intervals 4) Configure VRRP interfa ce monitor 1. Create/Remove the V irtual Router Command Expl anation Global Mode [no] router vrrp < vrid > Creates/Removes the V irtual Router 2. Configure VRRP Dumm y IP Addr ess a nd Interface Command Exp[...]
-
Page 537
536 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch (1) Configure the preemptiv e mode for VRRP Command Expl anation VRRP protocol config uration mode preempt-mod e {true| false} Configures th e preemptive mode for VRRP (2) Configure VRRP priority Command Expl anation VRRP protocol config uration mode priority < priority > Configures V RRP prior[...]
-
Page 538
537 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Commands: virtual-ip < A.B.C.D > {master| backup} no virtual-ip Function : Configures the VRRP dummy IP address Parameters: < A.B.C.D > is the IP address in decimal format. Default : Not configured by default. Command mode : VRRP proto col configur ation mode Usage Guide : This comm a nd [...]
-
Page 539
538 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch must be configured first before starting V irtual Router . Example : Activa ting the V irtual Router of num ber 10 Switch(config)# router vrrp 10 Switch(Config-Router -V rrp)# enable 21.1.2.5 disable Commands: disable Function : Deactivates VRRP Parameters: N/A. Default : Not configured by default. C[...]
-
Page 540
539 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Parameters: < string > stands for the VRRP authentication string. Default : There is no authenticat ion string by default. Command mode : Interface Mode Usage Guide : This com mand keeps the V RRP standby cluster from the disturbance of unauthoriz ed members, all sw itches in the sam e standby [...]
-
Page 541
540 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Switch(Config-Router -V rrp)# priority 150 21.1.2.10 advertisement-interval Commands: advertisement-interval < adver_interva l > no advertisement-interval Function : Sets the vrrp time r values; th e “no advertisement-interval” command restores the default setting . Parameters: < adver_i[...]
-
Page 542
541 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Backup cannot changes its status due to lower priority than the Master when the Master fails. Example : Configuring vrrp monitor interface to vlan 2 and decreasing amount of priority to 10. Switch(Config-Router -V rrp)# ci rcuit-failover vlan 2 10 21.2 T ypical VRRP Scenario As shown in the fi gure b[...]
-
Page 543
542 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 21.3.1 Monitor and Debug Commands 21.3.1.1 show vrrp Commands: show vrrp [ < vrid > ] Function : Displays sta tus and configuration inform ation for the VRRP standby c luster . Command mode : All Modes Example: Switch# show vrrp VrId <1> State is Initialize Virtual IP is 10.1.20.10 (Not I[...]
-
Page 544
543 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Default : Debugging information is disabl ed by default. Command mode : Admin Mode Example: Switch# debug vr rp VRRP SEND[Hello]: Advertisement sent for vr id=[10], virtual-ip=[10.1.10. 1] VRRP SEND[Hello]: Advertisement sent for vr id=[10], virtual-ip=[10.1.10. 1] VRRP SEND[Hello]: Advertisement sen[...]
-
Page 545
544 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch 21.4.2 Configur e VRRP Dummy IP Click “VRRP control” to configure VRRP and enter "VRRP Dummy IP Config". Example: Enter the created V irtual Router number 1, VRRP Dummy IP address 192.168.2. 100 and select the VRRP number ty pe to be Master . Click Apply to add the Dummy IP address to V[...]
-
Page 546
545 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch to configure the preemptive mode for virtual rou ter number 1 to "T rue". 21.4.6 Configur e VRRP priority Click “VRRP control” to config ure VRRP and enter "V RRP Priority". Example: Enter t he created V irtual Router number "1 " and pri ority . C lick Enable t o set[...]
-
Page 547
546 E ES4710BD 10 Slot s L2/L3/L4 Chassis Switch Example: Choose crea ted "Vlan1" for Port and "y es" for AuthenMode. Click Apply to fin ish Port Vlan1 authentication mode configuration. 21.4.10 Configure Authentication S tring For VRRP Click “VR RP cont rol” to enter "VR RP Authe nString" and config ure VRRP auth [...]