Cabletron Systems 9032578-05 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398

Ir para a página of

Bom manual de uso

As regras impõem ao revendedor a obrigação de fornecer ao comprador o manual com o produto Cabletron Systems 9032578-05. A falta de manual ou informações incorretas fornecidas ao consumidor são a base de uma queixa por não conformidade do produto com o contrato. De acordo com a lei, pode anexar o manual em uma outra forma de que em papel, o que é frequentemente utilizado, anexando uma forma gráfica ou manual electrónicoCabletron Systems 9032578-05 vídeos instrutivos para os usuários. A condição é uma forma legível e compreensível.

O que é a instrução?

A palavra vem do latim "Instructio" ou instruir. Portanto, no manual Cabletron Systems 9032578-05 você pode encontrar uma descrição das fases do processo. O objetivo do manual é instruir, facilitar o arranque, a utilização do equipamento ou a execução de determinadas tarefas. O manual é uma coleção de informações sobre o objeto / serviço, um guia.

Infelizmente, pequenos usuários tomam o tempo para ler o manual Cabletron Systems 9032578-05, e um bom manual não só permite conhecer uma série de funcionalidades adicionais do dispositivo, mas evita a formação da maioria das falhas.

Então, o que deve conter o manual perfeito?

Primeiro, o manual Cabletron Systems 9032578-05 deve conte:
- dados técnicos do dispositivo Cabletron Systems 9032578-05
- nome do fabricante e ano de fabricação do dispositivo Cabletron Systems 9032578-05
- instruções de utilização, regulação e manutenção do dispositivo Cabletron Systems 9032578-05
- sinais de segurança e certificados que comprovam a conformidade com as normas pertinentes

Por que você não ler manuais?

Normalmente, isso é devido à falta de tempo e à certeza quanto à funcionalidade específica do dispositivo adquirido. Infelizmente, a mesma ligação e o arranque Cabletron Systems 9032578-05 não são suficientes. O manual contém uma série de orientações sobre funcionalidades específicas, a segurança, os métodos de manutenção (mesmo sobre produtos que devem ser usados), possíveis defeitos Cabletron Systems 9032578-05 e formas de resolver problemas comuns durante o uso. No final, no manual podemos encontrar as coordenadas do serviço Cabletron Systems na ausência da eficácia das soluções propostas. Atualmente, muito apreciados são manuais na forma de animações interessantes e vídeos de instrução que de uma forma melhor do que o o folheto falam ao usuário. Este tipo de manual é a chance que o usuário percorrer todo o vídeo instrutivo, sem ignorar especificações e descrições técnicas complicadas Cabletron Systems 9032578-05, como para a versão papel.

Por que ler manuais?

Primeiro de tudo, contem a resposta sobre a construção, as possibilidades do dispositivo Cabletron Systems 9032578-05, uso dos acessórios individuais e uma gama de informações para desfrutar plenamente todos os recursos e facilidades.

Após a compra bem sucedida de um equipamento / dispositivo, é bom ter um momento para se familiarizar com cada parte do manual Cabletron Systems 9032578-05. Atualmente, são cuidadosamente preparados e traduzidos para sejam não só compreensíveis para os usuários, mas para cumprir a sua função básica de informação

Índice do manual

  • Página 1

    SmartSwitch Router User Reference Manual 9032578- 05[...]

  • Página 2

    Copyright © 2000 by Cabletr on Systems, Inc. All rights reserved. Cabletro n Systems, Inc. 35 Industrial Way Rochester , NH 03867 -5005 Printed in the United S tates of America Changes Cabletro n Systems, Inc., reserves th e right to make changes in specifications and other information contained in this document without prior notice. The reader sh[...]

  • Página 3

    Regulatory Complia nce Informatio n SmartSwitc h Router User Re fer ence Ma nual iii Regulatory Comp liance Information This pr oduct complies with the followi ng: Safety UL 1950; CS A C22.2, No. 950; 73/23/EEC; EN 60950 ; IEC 950 Electr omagnetic FCC Part 15; CSA C108.8; 89/336/EEC; EN 55 022; EN 6 1000-3-2 Compatibility (EMC) EN 61000-3 -3; EN 50[...]

  • Página 4

    Regulato ry Complia nce Statem ent s iv SmartS witch Ro uter Use r Re ference Manual Industry Canada C ompliance Statement This digital apparatu s does n ot exceed the Class A limits for radio nois e emissions from digital apparatus set out in th e Radio Interfer ence Regulations of the Canadia n Department of Communica tions. Le présent appar eil[...]

  • Página 5

    Safety Information: Class 1 Laser Transceivers SmartSwitc h Router User Re fer ence Ma nual v Safety Informa tion: Class 1 Laser T ransceivers This product ma y use Class 1 l aser transc eivers. Read the following sa fety informat ion before installing or operating this produ ct. The Class 1 laser transceivers use an optical feedback loop to mainta[...]

  • Página 6

    Cabletron Systems, Inc. Program License Agreement vi SmartS witch Ro uter Use r Re ference Manu al Cabletr on Systems, Inc . Pr og ram Lic ense A gr eem ent IMPOR T ANT : THIS LICENSE APPLIES FOR USE OF PRODUCT IN THE FOLLOWING GEOGRAPHIC AL REGI ONS: CANADA MEXICO CENTRAL AMERICA SOUTH AMERICA BEFORE OPENING OR UTILIZING THE ENCLOSED PRODUCT , CAR[...]

  • Página 7

    Cabletro n Systems, Inc. Pr ogram License Agr eement SmartSwitc h Router User Re fer ence Ma nual vii If the Program is exported from the United States pursuant to the License Exception TSR under the U.S. Export Administra tion Regulations, in addition to the restriction on tran sfer set forth in Sections 1 or 2 of this Agreement, You agre e not to[...]

  • Página 8

    Cabl etr o n Syst ems Sa les an d Serv ice, Inc. Pr ogram L icense Agr ee ment viii SmartS witch Ro uter Use r Re ference Manual Cabletron System s Sales and Servic e, Inc. Pr og ram Lic ense A gr eem ent IMPOR T ANT : THIS LICENSE APPLIES FOR USE OF PRODUCT IN THE UNITED ST A TES OF AMERICA AND BY UNITED S T A TES OF AMERICA GOVERNMENT END USER S.[...]

  • Página 9

    Cable tr on Systems Sa le s an d Se r v ic e, Inc. Pr og ram Lic en s e Ag r e e m en t SmartSwitc h Router User Re fer ence Ma nual ix If the Program is exported from the United States pursuant to the License Exception TSR under the U.S. Export Administra tion Regulations, in addition to the restriction on tran sfer set forth in Sections 1 or 2 of[...]

  • Página 10

    Cabletron Systems Limited Pr ogram License Agreement x SmartSw itch Router User Reference Manual Cabletr on Systems Limited Pr og ram Lic ense A gr eem ent IMPOR T ANT : THIS LICENSE A PPLIES FOR THE USE OF THE PRODUCT IN THE FOLLOWING GEOG RAPHICAL RE GIONS : EUROPE MIDDLE EAST AFRICA ASIA AUSTRAL IA P ACIFIC RIM BEFORE OPENING OR UTILIZING THE EN[...]

  • Página 11

    Cabletron Systems Limited Pr ogram License Agr eement SmartSwitc h Router User Re fer ence Ma nual xi If the Program is exported from the United States pursuant to the License Exception TSR under the U.S. Export Administra tion Regulations, in addition to the restriction on tran sfer set forth in Sections 1 or 2 of this Agreement, You agre e not to[...]

  • Página 12

    Decl ara tio n of Confor mi t y Add e nd um xii SmartS witch Router User Refe r ence Manual Decl arat ion of Confor mity Addendum Applicatio n of Council D irective(s) 89/336/ EEC 73/23/ EEC Manufacturer ’ s Name Cabletro n Systems, Inc. Manufacturer ’ s Addre ss 35 Industrial W ay PO Box 5 005 Rochester , NH 03867 European Represen tative’ s[...]

  • Página 13

    SmartSwitch Router User Reference Manu al xiii Contents About This Ma nual .............. .......... .............. ......... .............. ......... ............. 1 Related Documentation ............. ................. ............ ................. ................ ............ ................. .. .1 Document Conventions............. ..........[...]

  • Página 14

    Contents xiv SmartSwi tch Router User Reference Manu al MAC-address-ba sed VLANs.............. ...... ...... ..... ............ ..... ...... ..... ............ ..... ..... 23 Protocol-based VLANs............. ................. ................. ........... ................. ........... ..... 23 Subnet-based VLANs ............... ................. .[...]

  • Página 15

    SmartSwi tch Router User Reference Manual xv Contents Enabling Cell Scrambling .............. ........... ................. ................. ........... ................. .......45 Cell Mapping ............. ................. ............ ................. ................. ........... ................. ........... .......46 Selecting the Cell Map[...]

  • Página 16

    Contents xvi SmartSwi tch Router User Reference Manu al Specifying E thernet Encapsulation Method ................... ........... ................. ........... ..... 79 Configuring Jumbo Frames ............ ........... ................. ............ ................ ............ .......... 80 Configuring Address Re solution Protocol (ARP) .........[...]

  • Página 17

    SmartSwi tch Router User Reference Manual xvii Contents Configuring RIP Route Preference .......... ........... ................. ................. ........... ...........108 Configuring RIP Route Default-Metric .......................... ........... ................. ........... ..... 108 Monitoring RIP ................ ................. .........[...]

  • Página 18

    Contents xviii SmartSwi tch Router User Reference Manu al Notes on Using Route Reflection ............. ........... ...... ...... ..... ...... ........... ...... ..... ... 160 Chapter 13: Routing Policy Configurat ion Guide .............. .............. .... 16 1 Route Import and Export Policy Overview ..................... ................. ......[...]

  • Página 19

    SmartSwi tch Router User Reference Manual xix Contents Importing a Selected Subset of R outes from All RIP Peers Accessible Over a Certain Interfa ce .......... ................. ................. ........... ................. ...........183 Example 2: Importing from OSPF ............... ................. ................. ........... ...........18[...]

  • Página 20

    Contents xx SmartSwitch Router User Reference Manu al Firewall Load Balan cing ............ ................. ............ ................. ........... ................. ........ 214 Monitoring IP Policies ...................... ................. ................. ............ ................ ............ ........ 2 15 Chapter 16: Network Address[...]

  • Página 21

    SmartSwi tch Router User Reference Manual xxi Contents Virtual IP Address Ranges ...................... ........... ................. ........... ................. .....242 Session and Netmask Persistence ................ ............ ................ ................. ...........243 Web Caching ......... ................. ................. .......[...]

  • Página 22

    Contents xxii SmartSwitch Route r User Reference M anual Editing ACLs Offline ....................... ................. ........... ................. ........... ................. ... 264 Maintaining ACLs Using the A CL Editor ...................... ........... ................. ........... ... 265 Using ACLs ............ ........... ..............[...]

  • Página 23

    SmartSwi tch Router User Reference Manual xxiii Contents Layer-2 and Layer-3 & Layer-4 Flow Specification............................ ........... ...........292 Precedence for Laye r-3 Flows .................. ........... ................. ........... ................. ...........293 SSR Queuing Policies..... ................. ........... .....[...]

  • Página 24

    Contents xxiv SmartSwitch Router User Reference M anual Configuration Examples ........... ................. ............ ................. ........... ................. ........ 321 Displaying RMON Information .................. ................. ................. ........... ................. ........ 322 RMON CLI Filters ...................... .[...]

  • Página 25

    SmartSwi tch Router User Reference Manual xxv Contents Defining the Type and Lo cation of a PPP Interf ace ..................... ................. ...........346 Setting up a PPP Service Profile .......................... ............ ................ ............ ................346 Applying a Service Profile to an Active PPP Port ................[...]

  • Página 26

    Contents xxvi SmartSwitch Router User Reference M anual[...]

  • Página 27

    SmartSwitch Router User Reference Manu al 1 About This Manual This manual pr ovides inform ation and pr ocedur es for conf iguring the SmartSwitch Router (SSR) softwar e. If you ha ve not yet installed the SSR, use the instructions in the SmartSwitch Rout er Getting Starte d Guide to install th e chassis an d perform basic setup tasks, then r eturn[...]

  • Página 28

    Prefa ce 2 SmartS witch Router Use r Reference M anual [ x ] or [ <ita lics> ] or [ x <italics> ] Keywords and arguments within a s et of square brackets ar e optional . x | y | z | <italics> or [ x | y | z | <it alics > ] Keywords or arguments sepa rated by vertical ba rs indicate a choice. Select on e keyword or ar gument.[...]

  • Página 29

    SmartSwitch Router User Reference Manu al 3 Chapter 1 Intr oduction This chapter pr ovides information that you n eed to know befor e configuring the SmartSwitch R outer (SSR). If you have no t yet installed the SSR, use the in structions in the SmartSwitch Rout er Getting Starte d Guide to install th e chassis an d perform basic setup tasks, then [...]

  • Página 30

    Chapter 1: In troduction 4 SmartS witch Router Use r Reference M anual Using th e Comman d Line In terface Note: The SSR pr ovides both a graphical user in terface (Cor eW atch) and a command line interface (CLI) to configur e and manage the SSR. In this manua l, example configurations s how how to use the CLI com m ands to configu re the SSR. Usin[...]

  • Página 31

    SmartSwi tch Router User Reference Manual 5 Chapter 1: Introd uction The Enable mode comman d prom pt consists of the SSR n ame followed by the po und sign(#): T o exit Enable mode and re turn to User mode, either type exi t and pr ess Return, or pr ess Ctrl+Z. Configur e Mode Configur e mode pro vides the capabilities to configur e all features a [...]

  • Página 32

    Chapter 1: In troduction 6 SmartS witch Router Use r Reference M anual you ar e. For example, if you ar e at the User mode pr ompt, enter a question mark (?) as shown in the following exam ple to list the commands available in User mode: Y ou can als o type the ? character w hile entering in a command line to see a description of the parameters or [...]

  • Página 33

    SmartSwi tch Router User Reference Manual 7 Chapter 1: Introd uction without typing the subsystem name in each time. For example, if you ar e configuring several entries for the IP r outing table, you can simply enter ip at the CLI Configur e pro mpt. The prom pt changes to indicate that the con text for the commands to be enter ed has changed to t[...]

  • Página 34

    Chapter 1: In troduction 8 SmartS witch Router Use r Reference M anual Ctrl-k Kill line fro m cursor to end of line Ctrl-l Refresh current line Ctrl-m Carriage return (executes command) Ctrl-n Nex t co mmand f rom history bu f fer Ctrl-o None Ctrl-p Previous co mmand fr om history buf fer Ctrl-q None Ctrl-r Refresh current line Ctrl-s None Ctrl-t T[...]

  • Página 35

    SmartSwi tch Router User Reference Manual 9 Chapter 1: Introd uction Displaying and Changing Configu ration Information The SSR pr ovides many commands for displaying and changing configuration information. For example, the CLI allow s for the “disabling” of a command in the active configuration. Use th e negate command on a specific line of th[...]

  • Página 36

    Chapter 1: In troduction 10 SmartSwitch Router User Reference M anual The following figure illustrates the config uration file s an d the comman ds you can use to save your configu ration : Figure 1. Commands to Save Configura tions Erase commands in scra tchpad. erase scratchpa d Erase startup configuration. erase sta rtup Negate one or mor e com [...]

  • Página 37

    SmartSwi tch Router User Reference Manual 11 Chapter 1: Introd uction Port Names The term port r efer s to a physical connector on a line car d installed in the SSR. The figur e below shows eight 10 Base-T/ 100 Base-TX ports o n a l ine card. Each port in the SS R is r eferred to in the following manner: <type > . <slot-n umber> . <p[...]

  • Página 38

    Chapter 1: In troduction 12 SmartSwitch Router User Reference M anual For example, the port name et.2.8 r efers to the port on the Ethernet line car d located in slot 2, connector 8, w hile the port name gi.3.2 r efers to the port on the Gigabit Ethernet line car d located in slot 3, connector 2. Ther e ar e a few shortcut no tations you can use to[...]

  • Página 39

    SmartSwitch Router User Reference Manu al 13 Chapter 2 Hot Swapping Line Car ds and Contr ol Modules Hot Swapping Overview This chapter describes the ho t swapping functionality of the SSR. Hot swapping is the ability to replace a line card or Control Module while the SSR is operatin g. Ho t swapping allows yo u to remove or install line cards with[...]

  • Página 40

    Chapter 2: Hot S wapping Line Cards and Control Modules 14 SmartSwitch Router User Reference M anual Hot Swapping Line Car ds The pr ocedure for hot swapping a line card con sists of deactivating the line car d, removing it from its slot in the SSR cha ssis, and ins talling a n e w line card in the slot. Deactivating the Line Car d T o deactivate t[...]

  • Página 41

    SmartSwi tch Router User Reference Manual 15 Chapter 2: Hot Swapping Line Cards and Control Modules Removing th e Line Card T o remove a line card from the SSR: 1. Make sur e the Of fline LED on the line car d is lit. W arning : Do not r emove the line ca rd un less the Of fline LED is lit. Doing so can cause the SSR to crash. 2. Loosen the c aptiv[...]

  • Página 42

    Chapter 2: Hot S wapping Line Cards and Control Modules 16 SmartSwitch Router User Reference M anual Hot Swapping a Secondary Contr ol M odule If you have a secondary Control Module instal led on the SSR, you can ho t sw ap it with another Contr ol Module o r line car d. W arning : Y ou can on ly hot swap an inactive Con trol Mo dul e. Y o u sho ul[...]

  • Página 43

    SmartSwi tch Router User Reference Manual 17 Chapter 2: Hot Swapping Line Cards and Control Modules Y ou can also use the system hotswap out command in the CLI to deactivate the Contr ol Module. For example, to de activate the seconda ry Contr ol Module in slot CM/1, ente r the following comma nd in Enable mode: After you enter this comma nd, the O[...]

  • Página 44

    Chapter 2: Hot S wapping Line Cards and Control Modules 18 SmartSwitch Router User Reference M anual Hot Swapping a Switching Fabric Modu le (SSR 8600 only) The SSR 8600 has slots f or two Switching Fa bric Modules. While the SSR 8600 is operating, you can ins tall a second Swit ching Fabric M odule. If two Switching Fabric Modules are installed, y[...]

  • Página 45

    SmartSwi tch Router User Reference Manual 19 Chapter 2: Hot Swapping Line Cards and Control Modules Removing the Switching Fa bric Module T o remove the Switching Fa bric M odule: 1. Loosen the captive scr ews on each side of the Switching Fabric Module. 2. Pull the metal tabs on the Switching Fabric Mod ule to free it fr om the connector s holding[...]

  • Página 46

    Chapter 2: Hot S wapping Line Cards and Control Modules 20 SmartSwitch Router User Reference M anual[...]

  • Página 47

    SmartSwitch Router User Reference Manu al 21 Chapter 3 Bridging Configuration Guide Bridging Overview The SmartSwit ch Router provides the follow ing bridging functi ons: • Compliance with the IEEE 802.1d standar d • Complian ce with the IGMP m ulti cast bridgin g sta ndard • W ire-speed addr ess-based bridging or flow-ba sed bridging • Abi[...]

  • Página 48

    Chapter 3: Bridging Con figuration Guid e 22 SmartSwitch Router User Reference M anual Bridging Modes (Flow-Based and Address-Based) The SSR pr ovides the following types of wir e-speed bridging: Address-based br idging - The S SR performs this type of bridgin g by lo oking up the destination addr ess in an L2 loo kup table on the line car d that r[...]

  • Página 49

    SmartSwi tch Router User Reference Manual 23 Chapter 3: B ridging Configuratio n Guide • Multicast based • Policy based Detailed informatio n a bout these types of VLA Ns is bey ond the scope of this man ua l. Each type of VLAN is briefly explained in the following subsections. Port-based VLAN s Ports of L2 devices (switch es, bridges) are assi[...]

  • Página 50

    Chapter 3: Bridging Con figuration Guid e 24 SmartSwitch Router User Reference M anual Multicast-based VLANs Multicast-based VLANs a re c reated dynamically for multicast groups. T ypically , each multicast group corresponds to a differ ent VLAN. This ensures that multicast fram es are received o nly by those ports that ar e connected to members of[...]

  • Página 51

    SmartSwi tch Router User Reference Manual 25 Chapter 3: B ridging Configuratio n Guide the SSR as a r esult of cr eating L3 interf aces for IP and/or IPX. However , these implicit VLANs do not need to be created or configur ed manually . The implicit VLANs created by the SSR ar e subne t-based VLANs. Most commonly , an SSR is used as a combined swi[...]

  • Página 52

    Chapter 3: Bridging Con figuration Guid e 26 SmartSwitch Router User Reference M anual For example, if port 1 belongs to VLAN IPX_VLAN for IPX, VLAN IP_VLAN for IP and VLAN OTHER_VLAN for any other pr otoco l, then an IP frame received by port 1 is classified as belongi ng to VLAN IP_ VLA N . T runk ports (802.1Q) ar e usually used to connect o ne [...]

  • Página 53

    SmartSwi tch Router User Reference Manual 27 Chapter 3: B ridging Configuratio n Guide The corr esponding bridge tables for addr ess-based and flo w-based bridging ar e shown below . As shown, the bridge table contain s more information on the traffic patterns when flow-based bridging is enabled compar ed to address-based bridging. W ith the SSR co[...]

  • Página 54

    Chapter 3: Bridging Con figuration Guid e 28 SmartSwitch Router User Reference M anual Config uring Span ning T ree Note: Some commands in this facility req uire updated SSR ha rdwar e. Please r efer to Appendix A for details. The SSR supports per VLAN spanning tr ee. By defa ult, all the VLANs defined belong to the default spanning tr ee. Y ou can[...]

  • Página 55

    SmartSwi tch Router User Reference Manual 29 Chapter 3: B ridging Configuratio n Guide Setting the Bridge Pri ority Y ou can globally con f igure the priority of an indivi dual bridge wh en two bridges tie for position as the root bridge, or you can conf igu re the likeliho od th at a bridge will be selected as the r oot bridge. The lower the bridg[...]

  • Página 56

    Chapter 3: Bridging Con figuration Guid e 30 SmartSwitch Router User Reference M anual Adjusting Bridge Protocol Data Unit (BPDU) Intervals Y ou can adjust BPDU intervals as described in the following sections: • Adjust the Interval between Hello BPDUs • Define the Forwar d Delay Interval • Define the M aximum Idle Interval Adjusting the Inte[...]

  • Página 57

    SmartSwi tch Router User Reference Manual 31 Chapter 3: B ridging Configuratio n Guide T o change the default interval setting, enter the f ollowing command in Configur e mode: Configuring a Port- or Protocol -Based VLAN T o create a port or pr otocol based VLAN, pe rform the following steps in the Configur e mode. 1. Crea te a port or protocol bas[...]

  • Página 58

    Chapter 3: Bridging Con figuration Guid e 32 SmartSwitch Router User Reference M anual Config uring VLANs fo r Bridgin g The SSR allows you to cr eate VLANs for AppleT alk, DECnet, SNA, and IPv6 tra ffic as well as for IP and IPX traf fic. Y ou can cr eate a VLAN fo r handling traf fic for a single pr otocol, such as a DECnet VLAN . Or , you can cr[...]

  • Página 59

    SmartSwi tch Router User Reference Manual 33 Chapter 3: B ridging Configuratio n Guide Monito ring Bridgi ng The SSR provides display of bridging statist ics and configurations co ntained in the SSR. T o display bridging information, enter the following commands in Enable mode. Configurati on Examples VLANs are used to associate physical ports on t[...]

  • Página 60

    Chapter 3: Bridging Con figuration Guid e 34 SmartSwitch Router User Reference M anual Cr eating a non-IP/non-IPX VLAN In this example, SNA, DECnet, an d AppleT alk hosts are connected to et.1.1 and et.2.(1- 4). Y ou can associate all the ports containin g these hosts to a VLAN called ‘RED’ with the VLAN ID 5. First, cr eate a VLAN named ‘RED[...]

  • Página 61

    SmartSwitch Router User Reference Manu al 35 Chapter 4 SmartTRUNK Configuration Guide Ove rview This chapter expla ins how to configur e and monito r SmartTRUNKs on the S SR. A SmartTRUNK is Cabletron Systems’ technolo gy for load balancin g and load sharing . For a description of the S martTRUNK commands, see the “ smarttrunk commands” s ect[...]

  • Página 62

    Chapter 4: S martTRUNK Configuratio n Guide 36 SmartSwitch Router User Reference M anual Configurin g SmartTRUNKs T o crea te a Smart TRUNK: 1. Crea te a SmartTRUNK and specify a contr ol pr otocol for it. 2. Add physi cal ports to the Sma r tTRU NK. 3. Specify the pol icy for distributing traffic across SmartTRUNK ports. This step is optional; by [...]

  • Página 63

    SmartSwi tch Router User Reference Manual 37 Chapter 4: S martTRUNK Configuratio n Guide T o add ports to a SmartTR UNK, enter the following command in Configur e mode:: Specify T raf fic Distribution Policy (Optional) The default policy for distributing traf fic acr oss the ports in a SmartTR UNK is “round- ro bin,” wher e the SSR selects the [...]

  • Página 64

    Chapter 4: S martTRUNK Configuratio n Guide 38 SmartSwitch Router User Reference M anual Example Confi gurations The following shows a netw ork design based on Sm artTRUNK s. R1 is an SSR o perating as a r outer , while S1 and S2 ar e SSRs operatin g as swi tches. The following is the configuratio n for th e Cisco 7500 router: The following is the [...]

  • Página 65

    SmartSwi tch Router User Reference Manual 39 Chapter 4: S martTRUNK Configuratio n Guide The following is the SmartTRUNK con figuration for the SSR labeled ‘R1’ in the diagram: The following is the SmartTRUNK con figuration for the SSR labeled ‘S1’ in the diagram: The following is the SmartTRUNK con figuration for the SSR labeled ‘S2’ i[...]

  • Página 66

    Chapter 4: S martTRUNK Configuratio n Guide 40 SmartSwitch Router User Reference M anual[...]

  • Página 67

    SmartSwitch Router User Reference Manu al 41 Chapter 5 A TM Configuration Guide A TM O vervi ew This chapter pr ovides an overview of the A synchr onous T ransfer Mode (A TM) feature s available fo r the SmartSwi tch Router. A TM is a cell switching technology used to establish multiple con nections over a phys ical link, a nd configure each of the[...]

  • Página 68

    Service Class Definition 42 SmartSwitch Router User Reference M anual channe l having its own tra ffic paramete rs. Th e name “ virtual” implies that the co nnec tion is located in silicon instead of a physica l wire. Re fer to “Creating a Service Class Defini tion” o n page 43 for information about def ining a set of traf fic parameters f [...]

  • Página 69

    SmartSwi tch Router User Reference Manual 43 Service Class Definition Cr eating a Service Class Definition T o create a service class definition, enter the follo wing command in Configur e mode: The following is a description of th e parameters used to crea te a service class definition: service <stri ng> Specifies a name for the service clas[...]

  • Página 70

    Service Class Definition 44 SmartSwitch Router User Reference M anual cells/sec). This is the sam e as PCR, but is expressed in kbits/sec, and therefor e may be a mor e convenient form. However , since the natural unit for A TM is cells/sec, ther e may be a dif fer ence in the actual rate beca use the kbit/sec value m ay not be an integral num ber [...]

  • Página 71

    SmartSwi tch Router User Reference Manual 45 Cell Scrambling port <port list> Specifies the port, in th e format: media.slot.port.vpi.vci media Specifies the media ty pe. This is at for A TM ports . slot Specifies the slot number wher e the module is installed. port Specifies the port number . vpi Specifies the V irtual Path Identifier . This[...]

  • Página 72

    Cell Mapping 46 SmartSwitch Router User Reference M anual The following is a description of the para meters used to enable cell scrambling: port <port list> Specifies the port, in the f ormat: media.slot.port . S pecify all- ports to enable cell scrambling on all ports. media Specifies the me di a ty pe. This is at for A TM ports . slot Speci[...]

  • Página 73

    SmartSwi tch Router User Reference Manual 47 Creating a Non-Zero VPI Cr eating a Non-Ze r o VPI The V irtual Path Identifier defines a virtual path, a gr ouping of virtual channels transmitti ng across the same physica l connection. The actual number of virtual paths and virtual channels available on an A TM port depends upon h ow many bits ar e al[...]

  • Página 74

    Displaying A TM Port Information 48 SmartSwitch Router User Reference M anual Displaying A TM Port In formation Ther e are a variety of A TM statis tics that can be accessed thr ough the command line interface. The at m show commands can only be used in Enable mode. T o display information about the VPL con figurations on an A TM port: The followin[...]

  • Página 75

    SmartSwi tch Router User Reference Manual 49 Displaying A TM Port Information T o display information about the service definition on an A TM port: The following is an example of the information that is displayed with the command listed above : The following is a description of the display fields: • Service Class Shows the type of service class. [...]

  • Página 76

    Displaying A TM Port Information 50 SmartSwitch Router User Reference M anual T o display information about the port settings on an A TM port: The following is an example of the information that is displayed with the command listed above ( for a P DH PHY in terface) : • Port T ype Shows the type o f PHY interface for the port. • Xmt Clock Sour [...]

  • Página 77

    SmartSwi tch Router User Reference Manual 51 Displaying A TM Port Information esf indicates extended super frame and is used for T1 frami ng. g832 is u sed for E3 framing. g751 is u sed for E3 framing. • VC Mode Shows the bit allocation for vpi an d vci. • Service Definition Shows the name of the define d service on the port and its traf fic pa[...]

  • Página 78

    A TM Sample Configuration 1 52 SmartSwitch Router User Reference M anual A TM Sample Configuratio n 1 Consider the following network configuration: The network shown consists of two SmartSwitch Ro uters, VLAN A, and VLAN B. Both SSRs have an A TM module with two A TM ports. Also both SSRs contain a 10/100 TX Ethernet module. SSR1 is connected to VL[...]

  • Página 79

    SmartSwi tch Router User Reference Manual 53 A TM Sample Configuration 1 Configuring an Interface on an Ether net Port Ther e ar e two separate VLANs in this network, VLAN A an d VLAN B. VLAN A is connected to Ethernet port et.2.1 on SSR1, and VLAN B i s connected to Eth ernet port et.1.1 on SSR SSR 2. Apply an interface on bo th Ethernet ports. Cr[...]

  • Página 80

    A TM Sample Configuration 1 54 SmartSwitch Router User Reference M anual Applying an A TM Service Class After defining a service class on SS R1 and SSR2, apply them to the VC connection we crea ted earlier . The following command line applies the service clas s ‘cbr1m’ to the VC (vpi=0, vci=100) on A TM port at.1 .1 of SSR1 : The following comm[...]

  • Página 81

    SmartSwi tch Router User Reference Manual 55 A TM Sample Configuration 1 Crea ting an IP r oute allows the inter faces on the A TM ports to act a s gateways to any subnet. T raffic from VLAN A r eaches the Eth ernet port on SSR1 and is a utomatically directed to the gateway addr ess (interface on the A TM port for SSR2). Then the traf fic travels t[...]

  • Página 82

    A TM Sample Configuration 1 56 SmartSwitch Router User Reference M anual[...]

  • Página 83

    SmartSwitch Router User Reference Manu al 57 Chapter 6 Packet-over -SONET Configuration Guide Ove rview This chapter expla ins how to configur e and monito r packet-over -SONET (PoS) on the SSR. See th e sonet commands section of the SmartSwitch R ou t er C ommand Li ne Interface Reference Man ual for a description of each co mmand. PoS r equir es [...]

  • Página 84

    Chapter 6: Packet-ove r-SONET Configuratio n Guide 58 SmartSwitch Router User Reference M anual Config uring IP Interfaces for PoS Links Configuring IP interfaces for PoS links is generally the same as for W ANs and for LANs. Y ou as sign an IP address to each interface and define routing mecha ni sms such as OSPF or RIP as with any IP network. Y o[...]

  • Página 85

    SmartSwi tch Router User Reference Manual 59 Chapter 6: Packet-ove r-SONET Configuratio n Guide 2. Crea te a point-to-po int interface w ith the interface cre ate command, specifyin g the IP addr ess and netmask for the interf ace on the SSR a nd the peer addr ess of the o ther end of the con nection: When you create the point-to-point interf ace a[...]

  • Página 86

    Chapter 6: Packet-ove r-SONET Configuratio n Guide 60 SmartSwitch Router User Reference M anual Note: In APS termin ology , bridge means to tran smit identical traffic on both the working and protecting lines, while switch mean s to select traffic fr om either the protecting line or the working lin e. • Unidire ctional switching, where one set of[...]

  • Página 87

    SmartSwi tch Router User Reference Manual 61 Chapter 6: Packet-ove r-SONET Configuratio n Guide T o manage the working a nd protecting PoS interfaces, enter the following comma nds in Configur e mode: Note: Y ou can on ly spe cif y o ne opt i on , lockoutprot , for ced or manual , for a port. Also, an option can be applied to eith er the working po[...]

  • Página 88

    Chapter 6: Packet-ove r-SONET Configuratio n Guide 62 SmartSwitch Router User Reference M anual • Signal fa ilure BER threshold of 10 -3 (1 out of 1,0 00 bits transmitted is in err or). Sign a l failure is associated with a “har d” failur e. Signal fail is determined when any of the following conditions are detected: loss of signa l (LOS), lo[...]

  • Página 89

    SmartSwi tch Router User Reference Manual 63 Chapter 6: Packet-ove r-SONET Configuratio n Guide Example Confi gurations This section sh ow s example conf igurations for PoS lin ks. APS PoS Links Between SSRs The following ex ample shows APS PoS lin ks between two SSRs, r outer A and r outer B. The following is the configuration for r outer A: The f[...]

  • Página 90

    Chapter 6: Packet-ove r-SONET Configuratio n Guide 64 SmartSwitch Router User Reference M anual PoS Link Between the SSR and a Cisco Router The following example show s a PoS link between an SSR, r outer A, and a Cisco 12000 series Gigabit Switch Router , router B. The MTU on both routers is configur ed for same size of 9216 octets. The following i[...]

  • Página 91

    SmartSwi tch Router User Reference Manual 65 Chapter 6: Packet-ove r-SONET Configuratio n Guide Bridging and Routing T raf fic Over a PoS Link The following example shows ho w to configure a VLAN ‘v1’ that includes the PoS ports on two connected S SRs, router A a nd route r B. Bridged or r outed traf fic is transmitted over the PoS link. The fo[...]

  • Página 92

    Chapter 6: Packet-ove r-SONET Configuratio n Guide 66 SmartSwitch Router User Reference M anual[...]

  • Página 93

    SmartSwitch Router User Reference Manu al 67 Chapter 7 DHCP Configuration Guide DHCP Overview The Dynamic Host Configuration Pr otocol (DHCP) server on the SSR pr ovides dynamic address assignment and con figuration to DHCP ca pa ble end-user systems, such a s W indows 95/98/NT and Apple Macinto sh systems. Y ou can configure the server to pro vide[...]

  • Página 94

    Chapter 7: DHCP Configuration Guid e 68 SmartSwitch Router User Reference M anual Configurin g DHCP By default, the DHCP server is n ot enabled on the SSR. Y ou can selectively enable DHCP service on particular interface s and not others. T o enable DHCP service on an interface, you must f irst define a DHCP sco pe . A scope consists of a pool of I[...]

  • Página 95

    SmartSwi tch Router User Reference Manual 69 Chapter 7: DHCP Configuration Guid e T o define the parameters that the DHCP server gives the clients, enter the f ollowing command in Conf igure mode: Configuring a Static IP Address T o define a static IP address that the DHCP s erver can assign to a clien t with a specific MAC addr ess, enter the foll[...]

  • Página 96

    Chapter 7: DHCP Configuration Guid e 70 SmartSwitch Router User Reference M anual Config uring DHCP Server Par ameters Y ou can configur e several “global” parameters that af fect the behavio r of the DHCP server itself. T o configure global DHCP server parameters, enter the following commands in Configur e mode: Updating the Le ase Database Af[...]

  • Página 97

    SmartSwi tch Router User Reference Manual 71 Chapter 7: DHCP Configuration Guid e DHCP Configuration Examples The followin g configuratio n describes DHCP con figuration for a simple network with just one interface on which DHCP service is enabled to pr ovide both dynamic and static IP addr esses. 1. Crea te an IP VLAN called ‘client_vlan’. 2. [...]

  • Página 98

    Chapter 7: DHCP Configuration Guid e 72 SmartSwitch Router User Reference M anual 9. Specify a r emote lease database o n the TF TP server 10.1. 89.88. 10. Specify a database update inter val of every 15 minutes. Config uring Secondary Subn ets In some netwo rk environments, multiple lo gical subnets can be im posed on a sing le physical segment. T[...]

  • Página 99

    SmartSwi tch Router User Reference Manual 73 Chapter 7: DHCP Configuration Guid e 6. Include ‘scope2’ in the superscope ‘super1’. Sinc e there a re mul tiple po ol s of I P address es , the p ool a sso cia ted w ith ‘ scop e1’ i s us e d first since ‘scope1’ is applied to the interfa ce befor e ‘scope2’. Clients that ar e given [...]

  • Página 100

    Chapter 7: DHCP Configuration Guid e 74 SmartSwitch Router User Reference M anual 6. Define the addr ess pool for ‘scope2’. 7. Crea te a superscope ‘super1’ that includes ‘scope1’. 8. Include ‘scope2’ in the superscope ‘super1’. For clients on the seco ndary subnet, the default gateway is 10.2.1.1 , which is also the secondary a[...]

  • Página 101

    SmartSwi tch Router User Reference Manual 75 Chapter 7: DHCP Configuration Guid e 4. Define the addr ess pool for ‘scope1’. dhcp scope1 define pool 10.5.1.10-10.5 .1.20[...]

  • Página 102

    Chapter 7: DHCP Configuration Guid e 76 SmartSwitch Router User Reference M anual[...]

  • Página 103

    SmartSwitch Router User Reference Manu al 77 Chapter 8 IP Routing Configuration Guide The SSR supports standar ds-based TCP , UDP , and IP . This cha pter describes how to configur e IP interfaces an d general non-pr otocol -specific r outing parameters. IP Routi ng Pr otocols The SSR supports standards-based unicast and multicast r outing. Unica s[...]

  • Página 104

    Chapter 8: IP Routing C onfiguration Gu ide 78 SmartSwitch Router User Reference M anual Exterior Gateway Pr otocols are used to transfer information between diff er ent “autonomous systems”. The SSR supports the following Exterior Ga teway Pro tocol: • Bor der Gateway Protocol ( BGP) V ersi on 3, 4 (RFC 1267, 1771) . Configuring BGP for the [...]

  • Página 105

    SmartSwi tch Router User Reference Manual 79 Chapter 8: IP Routing Configuratio n Guide Config uring IP Interf aces to Ports Y ou can configure a n IP interface directly to a physical port. Each port can be assigned multiple IP addresses repr esenting multiple subnets connected to the physical port. For example, to assign an IP interface ‘RED ’[...]

  • Página 106

    Chapter 8: IP Routing C onfiguration Gu ide 80 SmartSwitch Router User Reference M anual Config uring Jumbo Frames Certain SSR line ca rds suppo rt jumbo frames (frames lar ger than the standar d Ethernet frame size o f 1 518 bytes ). S ee Appendix A for more info rmation a bout fea tur es supported on line cards. T o transm it f rames of up to 65 [...]

  • Página 107

    SmartSwi tch Router User Reference Manual 81 Chapter 8: IP Routing Configuratio n Guide Configuring A ddr ess Resolution Protocol (ARP) The SSR allows you to configure A ddress Resolution Pr otocol (ARP) ta ble entries and parameters. ARP is used to associate IP addr esses with media or MAC addr esses. T aking an IP addr ess as input, ARP determine[...]

  • Página 108

    Chapter 8: IP Routing C onfiguration Gu ide 82 SmartSwitch Router User Reference M anual When you enable packets to be dr opped for ho sts with unresolve d MAC addr esses, the SSR will still attempt to periodically r esolve these MA C addresses. By defa ult, the SSR sends ARP requests at 30-second intervals to try to r esolve up to 50 dr opped entr[...]

  • Página 109

    SmartSwi tch Router User Reference Manual 83 Chapter 8: IP Routing Configuratio n Guide Specifying IP Inte rfaces for RARP The rarpd set inte rface command al lows you to specify which interfaces the SSR’s RARP server respo nds to when sent RARP requests. Y ou can specify individual interfaces or a ll interfaces. T o cause the SS R’s RARP serve[...]

  • Página 110

    Chapter 8: IP Routing C onfiguration Gu ide 84 SmartSwitch Router User Reference M anual Monitoring RARP Y ou can use the followin g com mands to obtain informatio n ab out the SSR ’s R ARP configuration: Configuring D NS Parameters The SSR can be conf igured to specify DNS servers, which supply name services for DNS req uests. Y ou can specify u[...]

  • Página 111

    SmartSwi tch Router User Reference Manual 85 Chapter 8: IP Routing Configuratio n Guide • BOO T P/DHCP (port 67 and 68 ) • DNS (port 37) • NetBIOS Name Server (port 1 37) • NetBIOS Datagram Server (port 138) • T ACACS Server (port 49) • T ime Service (port 37) T o forward UDP br oadcast packets r eceived on interfa ce int1 to th e host [...]

  • Página 112

    Chapter 8: IP Routing C onfiguration Gu ide 86 SmartSwitch Router User Reference M anual Configuring Denial of Service (DOS) By default, the SSR installs flows in the har dware so that packets sent as directed bro adcasts are d ropped in ha rdwar e, if dir ected br oadcast is not enabled on the interfa ce where the packet is received. Y ou can disa[...]

  • Página 113

    SmartSwi tch Router User Reference Manual 87 Chapter 8: IP Routing Configuratio n Guide The following example displays the co ntents of the routing table. It shows that some o f the ro ute entries ar e for lo cally connected interface s (“dir ectly connected”), while some of the other r outes ar e learned f r om RIP . T o display additional IP [...]

  • Página 114

    Chapter 8: IP Routing C onfiguration Gu ide 88 SmartSwitch Router User Reference M anual T o start ro uter discovery on the SSR, enter the f ollowing command in Configur e mode: The rdisc start command lets you start r outer discovery on the SSR. When router discovery is started, the SSR multicasts or br oadcasts periodic ro uter advertisements on [...]

  • Página 115

    SmartSwi tch Router User Reference Manual 89 Chapter 8: IP Routing Configuratio n Guide T o display router discovery information : Legend: 1. Inform a tion ab out the RDISC task. 2. Shows when the last r outer advertisement was sent and when the next advertisement will be sent. 3. The interface on which r outer advertisement is enabled. 4. Multica [...]

  • Página 116

    Chapter 8: IP Routing C onfiguration Gu ide 90 SmartSwitch Router User Reference M anual Configuration Examp les Assigning IP/IPX I nterfaces T o enab le routing on the SSR, yo u must a ssign an IP or IPX interface to a VLAN. T o assign an IP or IPX interface n amed ‘RED’ to the ‘BLUE ’ VLAN, enter the f ollowing command: Y ou can also assi[...]

  • Página 117

    SmartSwitch Router User Reference Manu al 91 Chapter 9 VRRP Configuration Guide VRRP Overview This chapter explains ho w to set up and monitor th e V irtual Router Re dundancy Pro tocol (VRRP) on the SSR. VR RP is defined in RFC 2 338. End host system s on a LAN are often config ured to send packets to a statical ly configured default r outer . If [...]

  • Página 118

    Chapter 9: VR RP Configuration Gu ide 92 SmartSwitch Router User Reference M anual Basic VRRP Config uration Figure 5 shows a basic VRR P configuration wi th a single virtua l ro uter . Routers R1 and R2 are both configured with one virtual r outer ( VRID=1 ). Router R1 serves as the Master and Router R2 serves as the Backup. The four end hosts ar [...]

  • Página 119

    SmartSwi tch Router User Reference Manual 93 Chapter 9: VRRP Configuration Guid e In VRRP , the r outer that owns the IP a ddress associat ed with the virtual ro uter is the Master . Any other routers that par ticipate in this virtual router ar e Backups. In this configuration, Router R1 is the Master for virtual r outer VRID=1 bec aus e i t own s [...]

  • Página 120

    Chapter 9: VR RP Configuration Gu ide 94 SmartSwitch Router User Reference M anual Figure 6. Symmetrical VRRP Configuration In this configuration, half the hosts use 10.0.0.1/ 16 as their default r oute, and half use 10.0.0.2/16 . IP addr ess 10.0.0.1/16 is associated with virtual ro uter VRID=1 , and IP addr ess 10.0.0.2/16 is associated with virt[...]

  • Página 121

    SmartSwi tch Router User Reference Manual 95 Chapter 9: VRRP Configuration Guid e On line 5, Router R1 associates IP addr ess 10.0.0.2 /16 with virtual r outer VRID=2 . However , since Router R1 does not own IP addr ess 10.0.0.2 /16, it is not the defa ult Master for virtual r outer VRID=2 . Configuration of Router R2 The following is the configu r[...]

  • Página 122

    Chapter 9: VR RP Configuration Gu ide 96 SmartSwitch Router User Reference M anual Figur e 7. Multi-Backup VRRP Configuration In this configuration, Router R1 is the Master for virtual r outer VRID=1 and the primary Backup for virtual ro uters VRID=2 and VRID=3 . If Router R2 or R3 wer e to go do wn, Router R1 would assume the IP addr esses associa[...]

  • Página 123

    SmartSwi tch Router User Reference Manual 97 Chapter 9: VRRP Configuration Guid e Configuration of Router R1 The following is the configu ration file fo r Rou ter R1 in Figure 7 . Router R1’s IP addr ess on interface test is 10.0. 0.1. Ther e ar e thr ee virtual r outers on this interface: • VRID=1 – IP ad dress =10.0.0. 1/16 • VRID=2 – I[...]

  • Página 124

    Chapter 9: VR RP Configuration Gu ide 98 SmartSwitch Router User Reference M anual The following table shows the priorities for ea ch virtual ro uter configured on Router R1. Configuration of Router R2 The following is the configu ration file fo r Rou ter R2 in Figure 7 . Line 8 sets the backup priority for virtual r outer VRID=1 to 200. Since this[...]

  • Página 125

    SmartSwi tch Router User Reference Manual 99 Chapter 9: VRRP Configuration Guid e Note: Since 100 is the default priority , line 9, which sets the priority to 100, is actually unnecessary . It is included for illustra tio n purposes only . Configuration of Router R3 The following is the configu ration file fo r Rou ter R3 in Figure 7 . Lines 8 and [...]

  • Página 126

    Chapter 9: VR RP Configuration Gu ide 100 SmartSwi tch Router User Reference Manu al Setting the Back up Priority As described in “Multi-Back up Configu ration” on pa ge 95 , you can s pecify which Back up ro uter takes over when the Master router goes down by s etting the priority for the Backup ro uters. T o set the priority for a Backup rout[...]

  • Página 127

    SmartSwi tch Router User Reference Manual 101 Chapter 9: VRRP Configuration Guid e Setting an Authen tication Key By default, no authenticatio n of VRRP pa ckets is performed on the SSR . Y ou can specif y a clear-text password to be used to authenticate VRRP exchanges. T o enable authentica tion, enter the follo wing command in Conf igure mode T o[...]

  • Página 128

    Chapter 9: VR RP Configuration Gu ide 102 SmartSwi tch Router User Reference Manu al ip-redundancy show The ip-redundancy show command r eports inform ation about a VRRP conf iguration. T o display information about all virtual r outers on interface int1: ssr# ip-redundancy show vrrp interface int1 VRRP Virtual Router 100 - Interface int1 ---------[...]

  • Página 129

    SmartSwi tch Router User Reference Manual 103 Chapter 9: VRRP Configuration Guid e T o display VRRP statistics for virtual router 10 0 on interface int1: T o display VRRP information, ente r the following co mmands in Enable mode. VRRP Config uration Notes • The Master r outer sends keep-alive advertisements. The fr equency of these keep-alive ad[...]

  • Página 130

    Chapter 9: VR RP Configuration Gu ide 104 SmartSwi tch Router User Reference Manu al The skew-time depends on the Backup router's conf igured priority: Skew-time = ( (256 - Prio rity) / 256 ) Therefore, the higher th e priority, the faster a Backup router will detect that the Master is down. For example: – Default advertisem ent-in terval = [...]

  • Página 131

    SmartSwi tch Router User Reference Manual 105 Chapter 10 RIP Configuration Guide RIP Overview This chapter describes how to conf igure th e Routing Information Pr otocol (RIP) on the SmartSwitch Router. RIP is a distance-vector r outing prot ocol for use in small networks. RIP is described in RFC 1723. A router running RIP broadcasts updates at set[...]

  • Página 132

    Chapter 10: RIP Configuration Guide 106 SmartSwi tch Router User Reference Manu al Enabling and Disabling RIP T o enable or disable RIP , enter one of th e following commands in Configur e mode. Configuring R IP Interfaces T o configure RIP in th e SSR, you must first add interf aces to inform RIP about a ttached interfaces. T o add RIP interfaces,[...]

  • Página 133

    SmartSwi tch Router User Reference Manual 107 Chapter 10 : RIP Con figuration Guide T o change RIP parameters, en ter the following co mmands in Configur e mode. Authenticatio n None Update interval 30 seconds Set RIP V ersion on an interf ace to RIP V1. rip set interface <interfacename-or-IPaddr> |all version 1 Set RIP V ersion on an interf [...]

  • Página 134

    Chapter 10: RIP Configuration Guide 108 SmartSwi tch Router User Reference Manu al Configuring R IP Route Prefer ence Y ou can set the prefer ence o f ro utes learned fr om RIP . T o configure RIP r oute pr efer ence, enter the following command in Configur e mode. Configuring R IP Route Default-Metric Y ou can define the metric used when a dvertis[...]

  • Página 135

    SmartSwi tch Router User Reference Manual 109 Chapter 10 : RIP Con figuration Guide Configurati on Example Show RIP inf ormation on the specified interface. rip show interface <Name or IP-addr> Show RIP interface policy information. rip show interface-policy Show detailed information of a ll RIP packets. rip trace packets detai l Show detaile[...]

  • Página 136

    Chapter 10: RIP Configuration Guide 110 SmartSwi tch Router User Reference Manu al ! ! Change defau lt metric- out rip set interf ace S SR1-if1 metric- out 3[...]

  • Página 137

    SmartSwi tch Router User Reference Manual 111 Chapter 11 OSPF Configuration Guide OSPF Ov ervie w Open Shortest Path First Routing (OSPF) is a shortest pa th first or link-state pr otocol. The SSR supports OSP F V ersion 2.0, as def in ed in RFC 1583. OS PF is an int erior gateway protocol that distributes routing informa tion between routers in a [...]

  • Página 138

    Chapter 11: OSPF Configuratio n Guide 112 SmartSwi tch Router User Reference Manu al • T ype 1 ASE • T ype 2 ASE Intra-ar ea paths have destinations within the sa me area. In ter-ar ea path s have destinations in othe r OSPF ar eas. Both types of Autonomous System External (AS E) routes ar e r outes to destinations externa l to OSPF (and usua l[...]

  • Página 139

    SmartSwi tch Router User Reference Manual 113 Chapter 11: OSPF Configuratio n Guide • Add IP interfaces to OSPF ar eas. • Configure OSPF interface parameters, if necessary . • Add IP netwo r ks to OSPF areas. • Create virtual links, if necess ary . Enabling OSPF OSPF is disabled by default on the S SR. T o enable or disable OSPF , enter one[...]

  • Página 140

    Chapter 11: OSPF Configuratio n Guide 114 SmartSwi tch Router User Reference Manu al Default Cost o f an OSPF Interface The default cost of an OSPF in terface is calculated using it s bandwidth. A VLAN that is attached to an interface could have several ports of differing speeds. The bandwidth of an interface is r epresented by the highest bandwidt[...]

  • Página 141

    SmartSwi tch Router User Reference Manual 115 Chapter 11: OSPF Configuratio n Guide Config uring an OSPF Area OSPF areas are a collection of subnets th at are gr ouped in a logical fash ion. These areas communicate with other ar eas via the backbone ar ea. O nce OSPF areas are cr eated, you can add interf aces, stub hosts, and summary ranges to th [...]

  • Página 142

    Chapter 11: OSPF Configuratio n Guide 116 SmartSwi tch Router User Reference Manu al Configuring OSPF Ar ea Parameters The SSR al lows config uration of various O SPF area parameters, in cluding stub a reas, stub cost and authentication method. Informatio n abo ut routes which are external to the OSPF ro uting domain is not sent into a stub ar ea. [...]

  • Página 143

    SmartSwi tch Router User Reference Manual 117 Chapter 11: OSPF Configuratio n Guide T o configure virtual lin ks, enter the following commands in the Configur e mode. Configuring Auto nomous System Extern al (ASE) Link Advertisements Because of the natur e of OSPF , the rate at which AS Es ar e flooded may need to be limited. The following para met[...]

  • Página 144

    Chapter 11: OSPF Configuratio n Guide 118 SmartSwi tch Router User Reference Manu al • Point-to-Point. A point-to-point in terface can be a serial line using PPP . By default, an IP interface associated with a serial line that is using PPP is trea ted as an OSPF point- to-point network. If an IP interface tha t is using PPP is to be treated as an[...]

  • Página 145

    SmartSwi tch Router User Reference Manual 119 Chapter 11: OSPF Configuratio n Guide • ospf show commands allow you to display detailed versions of the various OSPF tables. The ospf show com mands can only displa y OSPF tables for the router on which the commands are being entere d. T o display OSPF information, enter the following co mmands in En[...]

  • Página 146

    Chapter 11: OSPF Configuratio n Guide 120 SmartSwi tch Router User Reference Manu al OSPF Configurati on Examples For all examples in th is section, refer to the configurat ion shown in Figure 8 on page 124 . The following configuration commands for r outer R1: • Determine the IP addr ess for each interface • Specify the static routes configure[...]

  • Página 147

    SmartSwi tch Router User Reference Manual 121 Chapter 11: OSPF Configuratio n Guide Exporting All Interface & S tatic Routes to OSPF Router R1 has several static r outes. W e wo uld export these static routes as type-2 OSPF ro utes. The interface r outes would be r edistributed as type-1 OSPF r outes. 1. Crea te a OSPF export destination fo r t[...]

  • Página 148

    Chapter 11: OSPF Configuratio n Guide 122 SmartSwi tch Router User Reference Manu al Router R1 would like to redistribute its OSPF , OSPF-ASE, RIP , Static and Interface/Dire ct r out es i nto RI P . 1. Enable R IP on in terface 12 0.190.1.1/ 16. 2. Crea te a OSPF export destination for type-1 routes. 3. Crea te a OSPF export destination for type-2[...]

  • Página 149

    SmartSwi tch Router User Reference Manual 123 Chapter 11: OSPF Configuratio n Guide 9. Crea te a RIP export destination. 10. Create OSPF export source. 1 1. Crea te OSPF-ASE export sour ce. 12. Crea te the Export-Policy for r edistributing all interface, RIP , static, OSPF and OSPF- ASE routes into RIP . ip-router policy create rip-export-des tinat[...]

  • Página 150

    Chapter 11: OSPF Configuratio n Guide 124 SmartSwi tch Router User Reference Manu al Figure 8. Exporting t o OSPF BGP R1 R2 R3 R41 R42 R6 R11 A r e a B a c k b o n e A r e a 1 40.1. 0.0 (RIP V2) 140.1.1 .1/24 140. 1.2. 1/24 140. 1.5/ 24 140. 1.4/2 4 190. 1.1. 1/16 120.190 .1.1 /16 160.1.5 .2/24 R10 R5 R7 20 2.1.2 .2/1 6 140. 1.3. 1/24 1 30.1. 1.1/ [...]

  • Página 151

    SmartSwi tch Router User Reference Manual 125 Chapter 12 BGP Configuration Guide BGP Ov ervie w The Bor der Gateway Pr oto col ( BGP) is a n exte rior gateway pr otocol tha t allow s IP r outers to exchange network r eachability information. BGP became an internet standard in 1989 (RFC 1 10 5) a nd the current version, BGP-4 , was publis hed in 199[...]

  • Página 152

    Chapter 12: BGP C onfiguration Guide 126 SmartSwi tch Router User Reference Manu al The SSR BGP Implementation The SSR r outing pr otocol implemen tation is based on Ga teD 4.0.3 code ( http://www .gated.or g ). GateD is a modular softwa re program consist ing of core services, a r outing database, and pr otocol modules supporting multiple routing [...]

  • Página 153

    SmartSwi tch Router User Reference Manual 127 Chapter 12: B GP Configuration Guid e Setting the Autonomous System Number An autonomous system number identifies your autono mous system to other routers. T o set the SSR’ s autonom ous system number , enter th e follo wing comm and in Conf igu re mode. The a utonomous-system <num1> parameter s[...]

  • Página 154

    Chapter 12: BGP C onfiguration Guide 128 SmartSwi tch Router User Reference Manu al wher e: peer -group < number-or-string> Is a group ID, wh ich can be a numb er or a charac t er s tring . type Spe cifies the type of BGP gr oup you ar e adding. Y ou can specify one o f the followi ng: exter nal In the classic external BGP group, full policy [...]

  • Página 155

    SmartSwi tch Router User Reference Manual 129 Chapter 12: B GP Configuration Guid e Adding and Removing a BGP Peer Ther e ar e two ways to add BGP peers to peer gr oups. Y ou can explicitly add a peer host, or you can add a network. Adding a network allows for peer connections fr om any addr esses in the range of network and mask pa irs specified i[...]

  • Página 156

    Chapter 12: BGP C onfiguration Guide 130 SmartSwi tch Router User Reference Manu al ( aspath_r egexp ) Parentheses group subexpressions. An operator , such a s * or ? works on a sing le element or on a r egular expr ession enclosed in par entheses. An AS-path opera tor is one of the following: aspath_term {m,n} A r egular expr ession fo llowed by {[...]

  • Página 157

    SmartSwi tch Router User Reference Manual 131 Chapter 12: B GP Configuration Guid e AS-Path Regular Expression Examples T o import MCI ro utes with a pre fer ence of 165 : T o import all routes (.* matche s all AS paths) with the default pr efer ence: T o export all active r outes fro m 284 or 813 or 814 or 815 or 816 or 3369 or 35 61 to autonom ou[...]

  • Página 158

    Chapter 12: BGP C onfiguration Guide 132 SmartSwi tch Router User Reference Manu al The following is an example: Notes on Using the AS Pa th Prepend Featur e • Use the as-coun t option for external peer- hosts only . •I f t h e as-count option is entered for an active BGP session, routes wil l not be resen t to ref lect the new setting. T o hav[...]

  • Página 159

    SmartSwi tch Router User Reference Manual 133 Chapter 12: B GP Configuration Guid e • BGP Mul ti- Exit Di scriminato r (MED) attr ibute • EBGP agg regation • Route reflection BGP Peering Session Example The r outer process used for a specific BGP peering session is known as a BGP speaker . A single router ca n have several BGP speakers. Succe[...]

  • Página 160

    Chapter 12: BGP C onfiguration Guide 134 SmartSwi tch Router User Reference Manu al Figure 9 illustrates a sample BGP peering session. Figure 9. Sample BGP Peering Session The CLI configuration for r outer SSR1 is as follows: interface create ip et.1.1 address-net mask 10.0.0.1/16 port et.1.1 # # Set the AS of the router # ip-router global set auto[...]

  • Página 161

    SmartSwi tch Router User Reference Manual 135 Chapter 12: B GP Configuration Guid e The gated.conf file for r outer SSR1 is as follows: The CLI configuration for r outer SSR2 is as follows: The gated.conf file for r outer SSR2 is as follows: IBGP Config uration Example Connections be tween BGP speakers within the same AS ar e r eferr ed to as inter[...]

  • Página 162

    Chapter 12: BGP C onfiguration Guide 136 SmartSwi tch Router User Reference Manu al An IGP , like OSPF , could possibly be used instead of IBGP to exch ange routing information between EBGP speakers within an AS. However , injecting full Internet r outes (50,000+ r outes) into a n IGP puts an expensive burden on the IGP r outers. Additionally , IGP[...]

  • Página 163

    SmartSwi tch Router User Reference Manual 137 Chapter 12: B GP Configuration Guid e Figure 10 shows a sa mple BGP conf igu ration tha t uses the Routin g group type. Figure 10. Sample IBGP Confi guration (Routing Gr oup T y pe) SSR6 SSR1 Cisco SSR4 lo0 172.23.1.25/30 10.12.1.6/30 10.12.1.5/30 172.23.1.10/30 172.23.1.9/30 172.23.1.6/30 lo0 172.23.1.[...]

  • Página 164

    Chapter 12: BGP C onfiguration Guide 138 SmartSwi tch Router User Reference Manu al In this example, OSP F is co nfigured as the IGP in the autonomou s sys tem. The following lines in the router SSR6 configuratio n f ile con figure OSPF: The following lines in the Cisco r outer configure OSPF: The following lines in the SSR6 set up peering with the[...]

  • Página 165

    SmartSwi tch Router User Reference Manual 139 Chapter 12: B GP Configuration Guid e The following lines on the Cisco r outer set up IBGP peering with r outer SSR6. IBGP Intern al Group Example The IBGP Internal gr oup expects all peers to be directly attach ed to a shar ed subnet so that, like external peers, the next hops r eceived in BGP advertis[...]

  • Página 166

    Chapter 12: BGP C onfiguration Guide 140 SmartSwi tch Router User Reference Manu al Figure 1 1 illust rates a sample IBGP Interna l group configuration . Figur e 11. Sample IBGP Configuration (Inter nal Group T ype) The CLI configuration for r outer SSR1 is as follows: AS-1 SSR2 SSR1 17.122.128.2/24 17.122.128.1/24 16.122.128.1/24 16.122.128.1/24 1[...]

  • Página 167

    SmartSwi tch Router User Reference Manual 141 Chapter 12: B GP Configuration Guid e The gated.conf file for r outer SSR1 is as follows: The CLI configuration for r outer SSR2 is as follows: The gated.conf file for r outer SSR2 is as follows: autonomoussystem 1 ; routerid 16.122.128.1 ; bgp yes { traceoptions aspath detail packets detail open detail[...]

  • Página 168

    Chapter 12: BGP C onfiguration Guide 142 SmartSwi tch Router User Reference Manu al The configuration for r outer C1 (a Cisco router) is as follows: The configuration for r outer C2 (a Cisco router) is as follows: EBGP Multihop Configurat ion Example EBGP Multihop refers to a configuration wher e external BGP ne ighbors ar e not connected to the sa[...]

  • Página 169

    SmartSwi tch Router User Reference Manual 143 Chapter 12: B GP Configuration Guid e This sample configuration shows External BGP peers, S SR1 and SSR4, which ar e not connected to the same subnet. The CLI configuration for r outer SSR1 is as follows: Physical Link Legend: Peering Relationship SSR1 16.122.128.1/16 SSR3 AS-64800 AS-64801 SSR4 SSR2 16[...]

  • Página 170

    Chapter 12: BGP C onfiguration Guide 144 SmartSwi tch Router User Reference Manu al The gated.conf file for r outer SSR1 is as follows: The CLI configuration for r outer SSR2 is as follows: The gated.conf file for r outer SSR2 is as follows: The CLI configuration for r outer SSR3 is as follows: autonomoussystem 64800 ; routerid 0.0.0.1 ; bgp yes { [...]

  • Página 171

    SmartSwi tch Router User Reference Manual 145 Chapter 12: B GP Configuration Guid e The gated.conf file for r outer SSR3 is as follows: The CLI configuration for r outer SSR4 is as follows: The gated.conf file for r outer SSR4 is as follows: Community At tribute Example The following configura tion illustrates the BG P community attri bute. Communi[...]

  • Página 172

    Chapter 12: BGP C onfiguration Guide 146 SmartSwi tch Router User Reference Manu al Figur e 12. Sample BGP Configuration (Specif ic Community) AS-64902 R11 172.26.1. 2/16 172.25.1. 2/16 192.168. 20.2/16 172.25.1. 1/16 1.1 R13 1.6 R10 192.169.20. 1/16 1 92.169.20.2 /16 100.200.1 3.1/24 1 0.200.15.1/ 24 1.6 R14 AS-649 01 AS-649 00 AS-64899 1.6 1.1 1.[...]

  • Página 173

    SmartSwi tch Router User Reference Manual 147 Chapter 12: B GP Configuration Guid e Figure 13. Sample BGP Conf iguration (Well-Known Community) The Communi ty a ttribute can be used in three ways: 1. In a BGP Gr oup statement: Any pa ckets sent to this group of BG P peers will have the communitie s at tribute in the BGP packet modified to be this c[...]

  • Página 174

    Chapter 12: BGP C onfiguration Guide 148 SmartSwi tch Router User Reference Manu al In Figure 13 , rout er SSR11 has the f oll owing config uration : # # Create an optional attribute lis t with identifier color1 for a c ommunity # attribute (community-id 160 AS 6 4901) # ip-router policy create optional-attributes-list c olor1 community-id 160 auto[...]

  • Página 175

    SmartSwi tch Router User Reference Manual 149 Chapter 12: B GP Configuration Guid e In Figure 13 , rout er SSR13 has the f oll owing config uration : 3. In an Expor t Statement: The optiona l-attribute s-list option of the ip-router policy create bgp-e xport-destina tion command ma y be used to send the BGP community attribute. Any com munities spe[...]

  • Página 176

    Chapter 12: BGP C onfiguration Guide 150 SmartSwi tch Router User Reference Manu al In Figure 13 , rout er SSR10 has the f oll owing config uration : In Figure 13 , rout er SS R14 has the foll ow ing config uration: Any communi ties specified with the optional-at tribute s-list option are sent in addition to any r eceived with the r oute or associa[...]

  • Página 177

    SmartSwi tch Router User Reference Manual 151 Chapter 12: B GP Configuration Guid e The communi ty attribute may be a sin gle communit y or a set of commun ities . A maximum of 10 comm un ities may be specified. The communi ty attribute can ta ke an y of the followin g forms: • Specific comm unity The specific community consists of the combinatio[...]

  • Página 178

    Chapter 12: BGP C onfiguration Guide 152 SmartSwi tch Router User Reference Manu al Notes on Using Communities When origina tin g BGP commun ities, the set of com munities that is actually sent is the union of the communities r eceived with the r oute (if any), tho se specified in gr oup policy (if any), an d those specified in export policy (if an[...]

  • Página 179

    SmartSwi tch Router User Reference Manual 153 Chapter 12: B GP Configuration Guid e SSR12. Becau se local pr efer ence is exchan ged between the r outers within the AS, a ll traf fic fr om AS 6490 1 is se nt to SSR13 a s the exit po int. Figure 14. S ample BGP Configuration (Local Prefer ence) The following sections explain how to configure the loc[...]

  • Página 180

    Chapter 12: BGP C onfiguration Guide 154 SmartSwi tch Router User Reference Manu al Using the local-pref Option For r oute r SSR12 ’s CL I con figu rat ion f ile, local-pre f is set to 194: For r outer SSR13, local -pref is set to 204. Using the set-pref Option The formula used to compute the lo cal prefer ence is as follo ws: Local_Pr ef = 254 ?[...]

  • Página 181

    SmartSwi tch Router User Reference Manual 155 Chapter 12: B GP Configuration Guid e For example, in Figure 14 , routers SSR12 , S SR1 3, an d SS R14 h ave the fo llowing lin e in their CLI configu ration files: • The value of the set-pre f option should be consistent with the import policy in the network. The metric value should be set high enoug[...]

  • Página 182

    Chapter 12: BGP C onfiguration Guide 156 SmartSwi tch Router User Reference Manu al Routers SSR4 and SSR6 info rm r ou ter C1 abou t netw ork 17 2.16.2 00.0/24 t hr ou gh External BGP (EBGP). Ro uter SSR6 announce d the ro ute with a MED of 1 0, wherea s router SS R4 announces th e route with a MED of 20. Of the two EBGP routes, router C1 chooses t[...]

  • Página 183

    SmartSwi tch Router User Reference Manual 157 Chapter 12: B GP Configuration Guid e Router SSR8 ha s the f ollowing CLI configuration : Router SSR9 ha s the f ollowing CLI configuration : Route Reflection Example In some ISP networks, the internal BGP mesh becomes quite lar ge, and the IBGP full mesh does not scale well. For such situations, r oute[...]

  • Página 184

    Chapter 12: BGP C onfiguration Guide 158 SmartSwi tch Router User Reference Manu al Figure 17 shows a sa mple configura tion that us es route reflection. Figure 17. Sample BG P Configuration (Route Reflection) In this example, ther e ar e two clusters. Router S SR10 is the r oute r eflector for the first cluster and r outer SSR1 1 is the r oute ref[...]

  • Página 185

    SmartSwi tch Router User Reference Manual 159 Chapter 12: B GP Configuration Guid e Router SSR1 1 has r outer SSR12 and router SSR13 as client peer s and ro uter SSR10 as non - client peer . The following line in router SSR1 1’s configuratio n file specifies it to be a route ref lector Even though the IBGP Peers are not fully meshed in AS 6 4901,[...]

  • Página 186

    Chapter 12: BGP C onfiguration Guide 160 SmartSwi tch Router User Reference Manu al Notes on Using Route Reflection • T wo types of route r eflection ar e supported: – By default, all r outes received by the route r eflector fr om a client ar e sent to all internal peers (includi ng th e client’s group, but not the client itself). –I f t h [...]

  • Página 187

    SmartSwi tch Router User Reference Manual 161 Chapter 13 Routing Policy Configuration Guide Route Import an d Export Policy Overview The SSR f amily of routers supports extremely flexible routing policies. The SSR allows the network administrator to cont rol import and expo rt of r outing information based on criteria including : • Individua l pr[...]

  • Página 188

    Chapter 13: Routing Policy C onfiguration Guide 162 SmartSwi tch Router User Reference Manu al Pr efer ence Prefer ence is the value the SS R r outing pr ocess uses to o r der pr efer ence of r outes fr om one pro tocol or peer over ano ther . Pr efer ence can be set using several differ ent conf iguration commands. Pr efer ence can be set based on[...]

  • Página 189

    SmartSwi tch Router User Reference Manual 163 Chapter 13: Ro uting Policy Configuration Guid e Impor t Polici es Import policies contr ol the importation of r outes fr om r outing pr otocols and their installatio n in the routing databases (Ro utin g Informatio n Base and Forwarding Information Base). Import Policies determine which route s receive[...]

  • Página 190

    Chapter 13: Routing Policy C onfiguration Guide 164 SmartSwi tch Router User Reference Manu al It is only poss ible to r estrict th e i mpo rtation of OS PF A SE routes when functioning a s an AS bor der r outer . Like the other interior pr otocols, pr efer ence cann ot be used to choose between OSPF ASE ro utes. That is done by the OSPF costs. Rou[...]

  • Página 191

    SmartSwi tch Router User Reference Manual 165 Chapter 13: Ro uting Policy Configuration Guid e The r outes to be exported can be identified by their associated attributes: • Their pr otocol type (RIP , OSPF , BGP , Static, Dire ct, Aggregate) . • Interface or the gatewa y from which th e route was received. • Autonom ou s system from which th[...]

  • Página 192

    Chapter 13: Routing Policy C onfiguration Guide 166 SmartSwi tch Router User Reference Manu al A r oute will m atch the m ost specific filter that ap plies. Specifying mo re than one filter with the same destination, mask, a nd modifiers generates an err or . Ther e are three po ssible formats for a r oute filter . Not all of these for mats are ava[...]

  • Página 193

    SmartSwi tch Router User Reference Manual 167 Chapter 13: Ro uting Policy Configuration Guid e Route aggregat ion is also used by r egional and n ational networks to r educe the amount of routing infor m at i o n pas sed aroun d. W ith ca ref u l allo cat ion of netw ork ad dresse s to clients, regional network s can just an no unce one route to r [...]

  • Página 194

    Chapter 13: Routing Policy C onfiguration Guide 168 SmartSwi tch Router User Reference Manu al Route-Filter This component specifies the individual r outes that ar e to be aggr egated or summarized. The pr efer ence to be a ssociated with these r outes can also be explicitly specified using this component. The contributing r outes ar e or dered acc[...]

  • Página 195

    SmartSwi tch Router User Reference Manual 169 Chapter 13: Ro uting Policy Configuration Guid e Many protocols allo w the sp ecificati on of two authenti cation keys per int erface. Packet s are always sent using the primary keys, but received packets are ch ecked with both the primary and secondary keys befor e being discar ded. Authentication Keys[...]

  • Página 196

    Chapter 13: Routing Policy C onfiguration Guide 170 SmartSwi tch Router User Reference Manu al The from- proto parameter specifies the pr otocol of the sour ce ro utes. The values for the fr om-pr oto parameter ca n be rip , ospf , bgp , direct , static , aggr egate an d ospf-ase . Th e to- proto parameter specifies the destination protoco l where [...]

  • Página 197

    SmartSwi tch Router User Reference Manual 171 Chapter 13: Ro uting Policy Configuration Guid e Redistributing RIP into RIP The SSR r outing process r equir es RIP redistribution into RIP if a pr otocol is r edistributed into RIP . T o redistribute RIP into RIP , enter th e following command in Configur e mode: Redistributing RIP into OSPF RIP route[...]

  • Página 198

    Chapter 13: Routing Policy C onfiguration Guide 172 SmartSwi tch Router User Reference Manu al T o redistribute aggr egate ro utes, enter one of the fo llowing commands in Configur e mode: Simple Route Redistribution Exam ples Example 1: Redistribution into RIP For all examples given in this section, refer to the configu rations sh own in F igure 1[...]

  • Página 199

    SmartSwi tch Router User Reference Manual 173 Chapter 13: Ro uting Policy Configuration Guid e Exporting a Given Static Route to All RIP Int erfaces Router R1 has several static routes of which one is the default route. W e would export this default r oute over all RIP interfaces. Exporting All Static Routes to A ll RIP Interfaces Router R1 has sev[...]

  • Página 200

    Chapter 13: Routing Policy C onfiguration Guide 174 SmartSwi tch Router User Reference Manu al • Specify the static routes configured on the r outer • Determine its OS PF configu rati on Exporting All Interface & S tatic Routes to OSPF Router R1 has several static r outes. W e wo uld lik e to export all these static r outes and direct-r out[...]

  • Página 201

    SmartSwi tch Router User Reference Manual 175 Chapter 13: Ro uting Policy Configuration Guid e In the config uration sho wn in F igure 19 on page 185 , suppose we decide to run RIP V ersion 2 on network 120. 190.0.0/16, co nnecting r outers R1 and R2. Router R1 would like to export all RIP , interface, a nd static r outes to OSPF . Router R1 would [...]

  • Página 202

    Chapter 13: Routing Policy C onfiguration Guide 176 SmartSwi tch Router User Reference Manu al ro utes to be exported can be identified by their associated attributes, such as pr otocol type, interface or the gateway from which th e ro ute was received, and so on. • Route Filter - This component pr ovides the means to define a filter for the ro u[...]

  • Página 203

    SmartSwi tch Router User Reference Manual 177 Chapter 13: Ro uting Policy Configuration Guid e Cr eating an Export Destination T o create an export destinat ion, enter on e the following co mmands in Configur e mode: Cr eating an Export Source T o create an export sour ce, enter on e of the follow ing commands in Con figure mode: Impor t Polici es [...]

  • Página 204

    Chapter 13: Routing Policy C onfiguration Guide 178 SmartSwi tch Router User Reference Manu al T o create route import policies, enter the following command in Configur e mode: The <imp-sr c-id> is the identifier o f the import-sour ce that determines the sour ce of the imported ro utes. If no r outes fro m a particular source a r e to be imp[...]

  • Página 205

    SmartSwi tch Router User Reference Manual 179 Chapter 13: Ro uting Policy Configuration Guid e Cr eating an Aggregate Route Route aggregation is a method of gener ating a more genera l ro ute, given the pr esence of a specific route. The r outing pr ocess does not perform any aggr egation unless explicitly req uested. Aggregate-r o utes can be cons[...]

  • Página 206

    Chapter 13: Routing Policy C onfiguration Guide 180 SmartSwi tch Router User Reference Manu al The <filter-id> is the identifier of the r oute-filter associated with this aggr egate. If ther e is mor e than one r oute-filter for any aggr egate-destina tion and aggr egate-sour ce combination, then the ip-ro uter policy a ggr- gen destinat ion [...]

  • Página 207

    SmartSwi tch Router User Reference Manual 181 Chapter 13: Ro uting Policy Configuration Guid e Figure 18. Exporti ng to RIP Internet R6 R42 R41 R1 R2 R3 R7 135.3.1. 1/24 135.3.2. 1/24 135.3.3. 1/24 140.1.1. 4/24 140.1.1. 1/24 130.1.1.1/16 13 0.1.1.3/16 120.190.1. 1/16 120.190. 1.2/16 202.1.0. 0/10 160.1.5. 0/24 160.1.1.1 /16 140.1.2.1 /24 170.1.1. [...]

  • Página 208

    Chapter 13: Routing Policy C onfiguration Guide 182 SmartSwi tch Router User Reference Manu al The following configuration commands for r outer R1: • Determine the IP addr ess for each interface. • Specify the static routes configured on the r outer . • Determine its RIP configurat ion. !+++++++++++++++++++++++++++++++++++++ +++++++++++++++++[...]

  • Página 209

    SmartSwi tch Router User Reference Manual 183 Chapter 13: Ro uting Policy Configuration Guid e Importing a Selected Subset of Routes from One RIP T rusted Gateway Router R1 has several RIP peers. Router R41 has an interface on the network 10.51.0.0 . By default, r outer R41 advertises network 10.51. 0.0/16 in its RIP updates. Router R1 would like t[...]

  • Página 210

    Chapter 13: Routing Policy C onfiguration Guide 184 SmartSwi tch Router User Reference Manu al Example 2: Importing from OSPF Due to the natur e of OSPF , only the importation of ASE r outes may be contr olled. OSPF intra-and int er-ar ea r outes are always impo rted into the SSR routing tabl e with a preferen ce of 10. I f a tag is sp e cif i ed, [...]

  • Página 211

    SmartSwi tch Router User Reference Manual 185 Chapter 13: Ro uting Policy Configuration Guid e Figur e 19. Exporting to OSPF BGP R1 R2 R3 R41 R42 R6 R11 A r e a B a c k b o n e A r e a 140.1 .0.0 (RIP V2) 14 0.1.1 .1/2 4 140. 1.2. 1/24 140. 1.5/ 24 140. 1.4/ 24 190. 1.1. 1/16 120. 190.1. 1/1 6 16 0.1.5 .2/2 4 R10 R5 R7 202. 1.2. 2/16 140. 1.3. 1/24[...]

  • Página 212

    Chapter 13: Routing Policy C onfiguration Guide 186 SmartSwi tch Router User Reference Manu al The following configuration commands for r outer R1: • Determine the IP addr ess for each interface • Specify the static routes configured on the r outer • Determine its OS PF configu rati on Importing a Selected Subset of OSPF-ASE Routes 1. Crea te[...]

  • Página 213

    SmartSwi tch Router User Reference Manual 187 Chapter 13: Ro uting Policy Configuration Guid e Examples of E xport Policies Example 1: Ex porting to RIP Exporting to RIP is contr olled by any of pr o toco l, interfa ce or gateway . If more tha n one is specified, they ar e pr ocessed fr om most general (pro tocol) to most specific (gateway). It is [...]

  • Página 214

    Chapter 13: Routing Policy C onfiguration Guide 188 SmartSwi tch Router User Reference Manu al Exporting a Given Static Route to All RIP Int erfaces Router R1 has several static routes, of which one is the default route. W e would export this default r oute over all RIP interfaces. 1. Crea te a RIP export destination since we would like to export r[...]

  • Página 215

    SmartSwi tch Router User Reference Manual 189 Chapter 13: Ro uting Policy Configuration Guid e 4. Create a Direct export sour ce since we would like to export direct/interface routes. 5. Crea te the export-policy r edistributing the statically created default r oute, and all (RIP , Direct) r outes into RIP . Exporting a Given Static Route to a Spec[...]

  • Página 216

    Chapter 13: Routing Policy C onfiguration Guide 190 SmartSwi tch Router User Reference Manu al Exporting All Static Route s Reachable Over a Given Interface to a Specific RIP- Interfa ce In this case, r outer R1 would export/r edistribute all static routes accessible thr ough its inter face 130 .1.1.1 to its RI P-int erface 140.1. 1.1 on ly . 1. Cr[...]

  • Página 217

    SmartSwi tch Router User Reference Manual 191 Chapter 13: Ro uting Policy Configuration Guid e Exporting Aggregate-Routes into RIP In the config uration sho wn in F igure 18 on page 181 , suppo se yo u de cide to r un RI P V ersion 1 on network 130. 1.0.0/16, connecting ro uters R1 and R3. Router R1 desir es to announce the 1 40.1.1.0/2 4 and 1 40.[...]

  • Página 218

    Chapter 13: Routing Policy C onfiguration Guide 192 SmartSwi tch Router User Reference Manu al 8. Crea te the Expo rt-Policy r edistributing all (RIP , Dir ect) r o utes an d the aggr egate r oute 140.1. 0.0/16 i nto RI P . Example 2: Expor ting to OS PF It is not possible to cr eate OSPF intra- or inter -ar ea r outes by exporting r outes from the[...]

  • Página 219

    SmartSwi tch Router User Reference Manual 193 Chapter 13: Ro uting Policy Configuration Guid e Exporting All Interface & S tatic Routes to OSPF Router R1 has several static r outes. W e wo uld export these static routes as type-2 OSPF ro utes. The interface r outes would r edistributed as type 1 OSPF ro utes. 1. Crea te a OSPF export destinatio[...]

  • Página 220

    Chapter 13: Routing Policy C onfiguration Guide 194 SmartSwi tch Router User Reference Manu al 4. Create a Direct export sour ce since we would like to export int e rfac e/direct routes. 5. Crea te the Export-Policy for r edistributing all interface routes and static r outes into OSPF . Exporting All RIP , Interface & Static Routes to OSPF Note[...]

  • Página 221

    SmartSwi tch Router User Reference Manual 195 Chapter 13: Ro uting Policy Configuration Guid e 5. Crea te a RIP export sour ce. 6. Crea te a Static e xport source. 7. Crea te a Dir ect export sour ce. 8. Crea te the Export-Policy for r edistributing all interface, RIP and static routes into OSPF . 9. Crea te a RIP export destination. 10. Create OSP[...]

  • Página 222

    Chapter 13: Routing Policy C onfiguration Guide 196 SmartSwi tch Router User Reference Manu al 12. Crea te the Export-Policy for r edistributing all interface, RIP , static, OSPF and OSPF- ASE routes into RIP . ip-router policy export destination ri pExpDst source statExpSrc network all ip-router policy export destination ri pExpDst source ripExpSr[...]

  • Página 223

    SmartSwi tch Router User Reference Manual 197 Chapter 14 Multicast Routing Configuration Guide IP M ultic ast Overv iew Multicast r outing on the SSR is supported thr ough DVMRP and IGMP . IGMP is used to determine host membership on directly atta ched subnets. DVMRP is used to determine forwar ding of multicast traf fic between SSRs. This chapter:[...]

  • Página 224

    Chapter 14: Multic ast Routing Con figuration Guide 198 SmartSwi tch Router User Reference Manu al The SSR allows per-interf ace contr ol of the h ost query interval and r esponse time. Q uery interval defines the time between IGMP q ueries. Response time defines the time the SSR will wait for host r esponses to IGMP queries. The SSR can be con fig[...]

  • Página 225

    SmartSwi tch Router User Reference Manual 199 Chapter 14: Multicast Routin g Configuration Guid e Configurin g IGMP Y ou conf igur e I GMP on the SSR by per formi ng the fol lowi ng conf igur ation t asks: • Creating IP interfaces • Setting global parameters that will be used for all the interfaces on which D VMRP is enabled • Configuring IGM[...]

  • Página 226

    Chapter 14: Multic ast Routing Con figuration Guide 200 SmartSwi tch Router User Reference Manu al T o configur e the host r esponse wait time, en ter the following co mmand in Configur e mode: Configuring Per -Interface Control of IGMP Membership Y ou can configur e the SSR to con trol IGMP m embership on a per -interface basis. An interface can b[...]

  • Página 227

    SmartSwi tch Router User Reference Manual 201 Chapter 14: Multicast Routin g Configuration Guid e • Configuring DVMRP on individual interfaces. Y ou do so by enabling and disabling DVMRP on interfa ces and then setting DVMRP pa rameters on the interfaces on which DVMRP is disabled • Defining DVMRP tunnels, which IP uses to send multicast traf f[...]

  • Página 228

    Chapter 14: Multic ast Routing Con figuration Guide 202 SmartSwi tch Router User Reference Manu al Config uring the DVMR P Routin g Metric Y ou can config ure the DVMRP r outing me tric as sociated with a set of destinations for DVMRP reports. The default metric is 1. T o configure the DVMRP ro uting metric, enter the following command in Conf igur[...]

  • Página 229

    SmartSwi tch Router User Reference Manual 203 Chapter 14: Multicast Routin g Configuration Guid e T o preven t the SSR fr om forwa rding any data destined to a scoped gr oup on an interfa ce, enter the following co mmand in the Configure mode: Configuring a DVMRP T unnel The SSR supports DVMRP tunnels to the MBONE (th e multicast backbone of the In[...]

  • Página 230

    Chapter 14: Multic ast Routing Con figuration Guide 204 SmartSwi tch Router User Reference Manu al Configurati on Examples The following is a sample SSR con figuration f or DVM RP and IGMP . Seven subnets are crea ted. IGMP is enabled on 4 IP interfaces. The IGMP query interval is set to 30 secon ds. DVMRP is enabled on 5 IP interfaces. IGMP is not[...]

  • Página 231

    SmartSwi tch Router User Reference Manual 205 Chapter 14: Multicast Routin g Configuration Guid e dvmrp enable interface 172.1.1.10 dvmrp enable interface 207.135.122.11 dvmrp enable interface 207.135.89.64 dvmrp enable interface 10.40.1.10 ! ! Set DVMRP parameters ! dvmrp set interface 172.1.1.10 neighbor-timeout 200 ! ! Start DVMRP ! dvmrp start[...]

  • Página 232

    Chapter 14: Multic ast Routing Con figuration Guide 206 SmartSwi tch Router User Reference Manu al[...]

  • Página 233

    SmartSwi tch Router User Reference Manual 207 Chapter 15 IP Policy-Based Forwar ding Configuration Guide Ove rview Y ou can configure th e SSR to ro ute IP packets accor ding to policies that you define. IP policy-based ro uting allows network manage rs to engineer traf fic to make the most eff icient use of their network r esources. IP policies fo[...]

  • Página 234

    Chapter 15: IP Policy-Based Forwarding C onfiguration Guide 208 SmartSwi tch Router User Reference Manu al ISPs. Y ou can also cr eate IP policies to select service pr oviders based on various traf fic types. Configuring I P Polic ies T o implement an IP policy , you first cr eate a pr ofile for the packets to be fo rwarded using an IP policy . For[...]

  • Página 235

    SmartSwi tch Router User Reference Manual 209 Chapter 15: IP Policy-Based F orwarding Con figuration Guid e For example, the followin g com mand creates an IP policy called “p1” and specifies tha t packets matching pr ofile “pr of1” ar e forwar ded to next-hop gateway 10. 10.10.10: Y ou can also set up a policy to pr event packets fr om bei[...]

  • Página 236

    Chapter 15: IP Policy-Based Forwarding C onfiguration Guide 210 SmartSwi tch Router User Reference Manu al Setting Load Dist ribution for Next -Hop Gateways Y ou can specify up to four next-ho p ga teways in an ip-policy st ateme nt. I f yo u spe cify more than one next-hop gateway , you can use the ip-policy set command to contro l how the load i [...]

  • Página 237

    SmartSwi tch Router User Reference Manual 211 Chapter 15: IP Policy-Based F orwarding Con figuration Guid e IP Polic y Con figuration Examples This section pr esents some examples of IP policy configurations. The following uses of IP policies ar e demonstrated: • Routing traffic to differ ent ISPs • Prioritizin g service to cu stomers • Authe[...]

  • Página 238

    Chapter 15: IP Policy-Based Forwarding C onfiguration Guide 212 SmartSwi tch Router User Reference Manu al The following is the IP policy conf ig uration for the Po licy Router in Figure 20 : Prioritizing Service to Customers An ISP can use policy-based r outing on an access router to supply dif feren t customers with differ ent levels of service. [...]

  • Página 239

    SmartSwi tch Router User Reference Manual 213 Chapter 15: IP Policy-Based F orwarding Con figuration Guid e T raffic from the pr emium custo mer is lo ad ba lanced across two next-hop gateways in the high-cos t, high-availa bility ne twork. If ne ither of these g ateways i s available, th en packets are forward ed based on dynamic r outes learned v[...]

  • Página 240

    Chapter 15: IP Policy-Based Forwarding C onfiguration Guide 214 SmartSwi tch Router User Reference Manu al Packets from users defined in the “contra ctors” group a re sent th rough a fir ewall. If the firew all cannot be r eached packets fro m the contractors gr oup ar e dr opped. Packets fr om users defined in the “f ull-timers” group do n[...]

  • Página 241

    SmartSwi tch Router User Reference Manual 215 Chapter 15: IP Policy-Based F orwarding Con figuration Guid e The following is the configu ration for Poli cy Router 1 in Fig ure 23 . The following is the configu ration for Poli cy Router 2 in Fig ure 23 . Monito ring IP Pol icies The ip-policy sho w com ma nd reports info rmation ab out active IP pol[...]

  • Página 242

    Chapter 15: IP Policy-Based Forwarding C onfiguration Guide 216 SmartSwi tch Router User Reference Manu al For example, to display informa tion about an active IP policy called “ p1”, enter the following comma nd in Enable mode: Legend: 1. The name of the IP policy . 2. The interface wher e the IP policy was applied. 3. The load distribution se[...]

  • Página 243

    SmartSwi tch Router User Reference Manual 217 Chapter 15: IP Policy-Based F orwarding Con figuration Guid e 1 1. The sequence in which the statem ent is evaluated. IP policy statements ar e listed in the or der they ar e evaluated (lowest sequence number to highest). 12. The rule to a pply to the packets matching the pr ofile: either permit or deny[...]

  • Página 244

    Chapter 15: IP Policy-Based Forwarding C onfiguration Guide 218 SmartSwi tch Router User Reference Manu al[...]

  • Página 245

    SmartSwi tch Router User Reference Manual 219 Chapter 16 Network Addr ess T ranslation Configuration Guide Ove rview Note: Some commands in this facility r equire updated SSR har dwar e. Please refer to Appendix A for details. Network Addr ess T ranslation (NA T) allow s an IP addr ess used within one networ k to be translated into a dif fer ent IP[...]

  • Página 246

    Chapter 16: Netwo rk Address T ranslation Con figuration Guide 220 SmartSwi tch Router User Reference Manu al The SSR allows yo u to cr eate the followin g NA T addr ess bindings: • Static, one-to-one bindin g of inside, local addr ess or a ddress pool to o utside, global addr ess or addr ess pool. A static addr ess binding does not expir e until[...]

  • Página 247

    SmartSwi tch Router User Reference Manual 221 Chapter 16: Netwo rk Address T ranslation Configuratio n Guide Setting NA T Rules Static Y ou create NA T static bindings by entering the following command in Conf igure mode. Dynamic Y ou create NA T dynamic bindings by entering the following command in Configur e mode. For dynamic addr ess bindings, y[...]

  • Página 248

    Chapter 16: Netwo rk Address T ranslation Con figuration Guide 222 SmartSwi tch Router User Reference Manu al Manag ing Dynamic B indings As mentioned previo usly , dynamic addr ess bindings expire only after a period of non-use or when they ar e manually deleted. The defa ult timeout for dynamic addre ss bindings is 1440 min utes (24 hou rs). Y ou[...]

  • Página 249

    SmartSwi tch Router User Reference Manual 223 Chapter 16: Netwo rk Address T ranslation Configuratio n Guide The default timeout fo r DNS dynami c address bindings is 30 mi nutes. Y ou can change this timeout by entering the following command in Con figure mode: NA T and ICM P Packe ts NA T translates addr esses embedded in the data portion of the [...]

  • Página 250

    Chapter 16: Netwo rk Address T ranslation Con figuration Guide 224 SmartSwi tch Router User Reference Manu al Monito ring NA T T o display NA T information, enter the following command in Enable mode. Configurati on Examples This section sh ow s examples of N A T confi gura tions. Static Config uration The following example configur es a static add[...]

  • Página 251

    SmartSwi tch Router User Reference Manual 225 Chapter 16: Netwo rk Address T ranslation Configuratio n Guide Using Static NA T Static NA T can be used w hen the local and global IP addr esses are to be bound in a fixed manner . These bindings never get r emoved nor time out until the static NA T command itself is negated. Static binding is r ecomme[...]

  • Página 252

    Chapter 16: Netwo rk Address T ranslation Con figuration Guide 226 SmartSwi tch Router User Reference Manu al Next, define the interf aces to be NA T “inside” o r “outside”: Then, define the NA T dynamic r ules by first cr eating the sour ce ACL poo l and then configuring th e dynamic bindin gs: Using Dynamic NA T Dynamic NA T can be used w[...]

  • Página 253

    SmartSwi tch Router User Reference Manual 227 Chapter 16: Netwo rk Address T ranslation Configuratio n Guide Dynamic NA T w ith IP Overload (P A T) Configuration The following example configur es a dynamic addr ess binding for inside a ddresses 10.1.1.0 /24 to outside addr ess 192 .50.20.0/2 4: The first step is to cr eate the interfaces: Next, def[...]

  • Página 254

    Chapter 16: Netwo rk Address T ranslation Con figuration Guide 228 SmartSwi tch Router User Reference Manu al the pools and the SSR automatically choo ses a free globa l IP fr om the global poo l for the local IP . Dynamic bindings are r emoved when the flow count goes to zer o or the timeout has been rea ched. The r emoval of bindings fr ee s the [...]

  • Página 255

    SmartSwi tch Router User Reference Manual 229 Chapter 16: Netwo rk Address T ranslation Configuratio n Guide Using Dynamic NA T with DNS When a client fr om outside sends a query to the static global IP addr ess of the D NS server , NA T will trans late the global IP ad dress to the loc al IP addres s of the D NS ser ver . The DNS server will r eso[...]

  • Página 256

    Chapter 16: Netwo rk Address T ranslation Con figuration Guide 230 SmartSwi tch Router User Reference Manu al Then, define the NA T dynamic r ules by first cr eating the sour ce ACL poo l and then configuring th e dynamic bindin gs: Using Dynamic NA T with Matching Interface Redundancy If you have redun dant connections to the remote network via tw[...]

  • Página 257

    SmartSwi tch Router User Reference Manual 231 Chapter 17 W eb Hosting Configuration Guide Ove rview Accessing information on w ebsites for both work or personal purposes is becoming a normal practice f or an incr easing number of peo ple. For many comp anies, fast and eff icient web access is important for both external customers who need to access[...]

  • Página 258

    Chapter 17: W eb Hosting Config uration Guide 232 SmartSwi tch Router User Reference Manu al Load Balanc ing Note: Load balancing r equires updated SSR ha rdwar e. Please r efer to Appendix A for details. Y ou ca n use the l oad balanc ing feature on the SSR to distri bute session load across a g roup of servers. If you configur e the SSR to pr ovi[...]

  • Página 259

    SmartSwi tch Router User Reference Manual 233 Chapter 17: W eb Hosting Con figuration Guide redir ects the request to the actual server addr ess and port. Server selection is done according to the specified policy . T o add servers to the server gr oup, enter the following command in Co nfigur e mode: Session Persis tence Load balanci ng cli ents c[...]

  • Página 260

    Chapter 17: W eb Hosting Config uration Guide 234 SmartSwi tch Router User Reference Manu al directed to the same load balancing server (for example, the server with IP address 10.1.1.1 ). • Sticky persistence: a binding is determined by matching the source and destination IP addresses only . This allows all requests from a client to the same vir[...]

  • Página 261

    SmartSwi tch Router User Reference Manual 235 Chapter 17: W eb Hosting Con figuration Guide Optional Gr oup or Server Operating Para meters Ther e are several commands you can specify that af fect the operating parameters of individual servers or the entir e gr oup of load balancing servers. In many cases, ther e are default parameter values and yo[...]

  • Página 262

    Chapter 17: W eb Hosting Config uration Guide 236 SmartSwi tch Router User Reference Manu al V e rifying Servers and Applicat ions The SSR automatically performs the follo wing types of verification for the a ttached load balancing servers/applications: • V erifies the state of the server by sending a ping to the server at 5 -second intervals. If[...]

  • Página 263

    SmartSwi tch Router User Reference Manual 237 Chapter 17: W eb Hosting Con figuration Guide V erifying Extended Content Y ou can also have the SSR verify the con ten t of an appl ication on one o r more load balancing servers. For th is type of verification, you specify th e following: • A string that the SSR sends to a sin gle server or to the g[...]

  • Página 264

    Chapter 17: W eb Hosting Config uration Guide 238 SmartSwi tch Router User Reference Manu al T o set the status of a load balancin g server , enter the follo wing command in Enable mode: Load Balancing and F TP File T ra nsfer Protocol (F TP) packets requir e special handling with loa d balancing , because the F TP POR T co mmand packets contain IP[...]

  • Página 265

    SmartSwi tch Router User Reference Manual 239 Chapter 17: W eb Hosting Con figuration Guide T o specify the timeout for load balancing mappings, enter the following command in Configur e mode: Displaying Load Balancing Informatio n T o display load balancing information, enter the following commands in Enable mode: Config uration Examples This sect[...]

  • Página 266

    Chapter 17: W eb Hosting Config uration Guide 240 SmartSwi tch Router User Reference Manu al Web Hosting with One Virtual Group and Multiple Destination Server s In the following example, a company web site is established with a URL of www . ctron.com. The sys tem administ rator configures the networ ks so that the SSR forwar ds web r equests among[...]

  • Página 267

    SmartSwi tch Router User Reference Manual 241 Chapter 17: W eb Hosting Con figuration Guide Web Hosting with Multiple Virtual Grou ps and Multiple D estination Serve rs In the followi ng example, thr ee differ ent servers ar e used to pr ovide dif fer ent services for a site. The networ k shown above can be cr eated with the fo llowing load-balance[...]

  • Página 268

    Chapter 17: W eb Hosting Config uration Guide 242 SmartSwi tch Router User Reference Manu al Virtual IP Address Ranges ISPs who provide w eb hosting services for their clients requir e a larg e number of virtual IP addresses (VIPs). The lo ad- bala nce create vi p-range-na me and l oad-balance add host- to-vip-ra nge commands wer e crea ted specifi[...]

  • Página 269

    SmartSwi tch Router User Reference Manual 243 Chapter 17: W eb Hosting Con figuration Guide The networ k shown in the pr evious example can be cr eated with the fo llowing load- balance commands: Session and Netm ask Persistence In the following example, traf fic to a company web site (www .ctron.com) is distributed between two separate servers. In[...]

  • Página 270

    Chapter 17: W eb Hosting Config uration Guide 244 SmartSwi tch Router User Reference Manu al W eb Ca ching W eb caching provides a way to stor e fr equently accessed W eb obj ects on a cache of local servers. Each HTTP r equest is transparen tly redir ected by the SSR to a configur ed cache server . When a user first accesses a W eb object, that ob[...]

  • Página 271

    SmartSwi tch Router User Reference Manual 245 Chapter 17: W eb Hosting Con figuration Guide Specifying the Client (s) for the Cache Group (Optional) Y ou can explicitly specify the hosts whose HTTP r equests are o r are not r edirected to th e cache servers. If you do no t explicitly specify these hosts, then all HTTP requests ar e redir ected to t[...]

  • Página 272

    Chapter 17: W eb Hosting Config uration Guide 246 SmartSwi tch Router User Reference Manu al Config uration Example In the following example, a cache gro up of seven local servers is con figured to stor e W eb objects for users in the local network: The following commands configur e the cache gr oup ‘cache1’ that co ntains the servers shown in [...]

  • Página 273

    SmartSwi tch Router User Reference Manual 247 Chapter 17: W eb Hosting Con figuration Guide which HTTP req uests are not r edir ected to the cache servers, en ter the following command in Conf igure mode: Proxy Server Redundancy Some networks use pr oxy servers that r eceive HTTP r equests on a non-stan dard port number (i.e., not port 80) . When t[...]

  • Página 274

    Chapter 17: W eb Hosting Config uration Guide 248 SmartSwi tch Router User Reference Manu al Show cachin g policy info rma tion. web-cache show cache-name <cache-name> |all Show cache server information. web-cache show servers cache <cache-name> |all[...]

  • Página 275

    SmartSwi tch Router User Reference Manual 249 Chapter 18 IPX Routing Configuration Guide IPX Rou ting Overview The Internetwork Packet Exchange ( IPX) is a datagram connectionless pr otocol for the Novell NetW are enviro nment. Y ou can conf igure the SS R for IPX r outing and SAP . Routers interconnect dif fer ent network segments and by definitio[...]

  • Página 276

    Chapter 18: IPX Routing Con figuration Guid e 250 SmartSwi tch Router User Reference Manu al this information is immediately br oadcast to any neighboring routers. Routers also send periodic RIP br oadcast packets containing a ll routing information kn own to the r outer . The SSR uses IPX RIP to cr eate and m aintain a database of internetwork r o[...]

  • Página 277

    SmartSwi tch Router User Reference Manual 251 Chapter 18: IPX Routing Con figuration Guide Configuring I PX RIP & SAP This section pr ovides an overview of conf iguring various IPX parameters and setting up IPX interfaces. IPX RI P On the SSR, RIP aut om atically runs on all IPX interf aces. The SSR will keep multi ple ro utes to the sa me netw[...]

  • Página 278

    Chapter 18: IPX Routing Con figuration Guid e 252 SmartSwi tch Router User Reference Manu al Configuring I PX Interfaces and Parameters This section pr ovides an overview of conf iguring various IPX parameters and setting up IPX interfaces. Configuring IPX Addresses to Ports Y ou can configure o ne IPX interface dir ectly to a physical port. T o co[...]

  • Página 279

    SmartSwi tch Router User Reference Manual 253 Chapter 18: IPX Routing Con figuration Guide Specifying IPX Encapsulation Method The SmartSwitch Router supports four encapsulation types for IPX. Y ou can configur e encapsulation type on a per-interface basis. • Ethernet II: The standar d ARP A Ethernet V ersion 2.0 encapsulation, which uses a 16- b[...]

  • Página 280

    Chapter 18: IPX Routing Con figuration Guid e 254 SmartSwi tch Router User Reference Manu al Config uring Static Rout es In a Novell NetW are network, the SSR uses RIP to determ ine the best paths for r outing IPX. However , you can add sta tic RI P routes to RIP ro uting tab le to explicitly specify a rou t e . T o add a static RIP r oute, enter t[...]

  • Página 281

    SmartSwi tch Router User Reference Manual 255 Chapter 18: IPX Routing Con figuration Guide T o create an IPX access contr ol list, perform the following task in the Configur e mode: Once an IPX access control list has been created, you must apply th e access control list to an IPX interface. T o apply an IPX access control list, enter the following[...]

  • Página 282

    Chapter 18: IPX Routing Con figuration Guid e 256 SmartSwi tch Router User Reference Manu al Creating an IPX GNS Access Control List IPX GNS access control lists con trol which SAP services the S S R can reply with to a get near est server (GNS) request. T o create an IPX GNS access contr ol list, enter the following command in Conf igure mode: Onc[...]

  • Página 283

    SmartSwi tch Router User Reference Manual 257 Chapter 18: IPX Routing Con figuration Guide Monito ring an IPX Netwo rk The SSR r eports IPX interfa ce information an d RIP or SAP r outing information. T o display IPX information, enter the following com mand in Enable mode: Configurati on Examples This example performs the follow ing configuration:[...]

  • Página 284

    Chapter 18: IPX Routing Con figuration Guid e 258 SmartSwi tch Router User Reference Manu al !Add static sap ipx add sap 0004 FILESERVER1 9.03:04:0 5:06:07:08 452 1 AAAAAAAA ! !RIP Access List acl 100 deny ipxrip 1 2 ! !RIP inbound filter acl 100 apply interface ipx1 input ! !SAP Access List acl 200 deny ipxsap A.01:03:05:07:02:0 3 0004 FILESERVER2[...]

  • Página 285

    SmartSwi tch Router User Reference Manual 259 Chapter 19 Access Contr ol List Configuration Guide This chapter expla ins how to configur e and use Access Contro l Lists (ACLs) on the SSR. ACLs ar e lists of selection criteria for specific types of packets. When used in conjunction with certain S SR functions, ACLs a llow you to restrict Layer-3/4 t[...]

  • Página 286

    Chapter 19: Access C ontrol List Configuration Guid e 260 SmartSwi tch Router User Reference Manu al ACL Basics An AC L co nsists of on e or mo re rules describing a particula r type of IP or IPX traf fic. ACLs can be simple, cons isting of only one rule, or compl ica ted with ma ny ru les. Each rule tells the SSR to either permit or deny packets t[...]

  • Página 287

    SmartSwi tch Router User Reference Manual 261 Chapter 19: Access C ontrol List Configuration Guid e These selection criteria ar e specified as fields of an ACL r ule. The follow ing syntax description shows the fields of a n IP ACL rule: Note: The acl permit|deny i p command restricts traf fic for all IP-based protocol s, such as TCP , UDP , ICMP ,[...]

  • Página 288

    Chapter 19: Access C ontrol List Configuration Guid e 262 SmartSwi tch Router User Reference Manu al How ACL R ules ar e Evaluated For an ACL with multiple r ules, the orde ring of the ru les is important. When the SSR checks a packet against an ACL, it goes thr ough each r ule in the ACL sequentially . If a packet matches a rule, it is forwar ded [...]

  • Página 289

    SmartSwi tch Router User Reference Manual 263 Chapter 19: Access C ontrol List Configuration Guid e W ith the implicit deny rule, this ACL actually has three r ules: If a packet comes in an d doesn't match the first two r ules, the packet is dropped. This is because the third rule (the implicit deny rule) matches all pack ets. Although the imp[...]

  • Página 290

    Chapter 19: Access C ontrol List Configuration Guid e 264 SmartSwi tch Router User Reference Manu al you would have to cr eate an ACL to allow respon ses from each specific outsid e host. If the number of outside hosts that internal users need to access is lar ge or changes fr equently , this can be difficult to mainta in. T o addr ess this problem[...]

  • Página 291

    SmartSwi tch Router User Reference Manual 265 Chapter 19: Access C ontrol List Configuration Guid e Suppose the following ACL commands ar e stor ed in a fi le on some hosts: The first command, no acl * , negates a ll commands that start with the keywor d, “ac l”. This tells the SSR to r emove th e application and the definition of any ACL. Y o [...]

  • Página 292

    Chapter 19: Access C ontrol List Configuration Guid e 266 SmartSwi tch Router User Reference Manu al If y ou ed it a nd s ave cha ng es t o an A CL tha t is curren tly bei ng u se d or appl ie d to a n interface, the chan ges will take ef fect immediately . There is no need to r emove the ACL from the interface before making cha nges and reapply it[...]

  • Página 293

    SmartSwi tch Router User Reference Manual 267 Chapter 19: Access C ontrol List Configuration Guid e application). Note that for an external agent to modify or r emove an applied ACL fr om an interface, the acl -pol icy en able ext e rnal comma nd mu st be in the conf igur atio n. In general, you shou ld try to apply ACLs at the inbound interfaces i[...]

  • Página 294

    Chapter 19: Access C ontrol List Configuration Guid e 268 SmartSwi tch Router User Reference Manu al Like ACLs that ar e applied to interfaces, A CLs that are applied to L ayer 4 bridging ports can be applied to either inbound or outbo und traf fic. For each port, o nly one ACL can be applied for the inbound dir ection and one for the outbound dir [...]

  • Página 295

    SmartSwi tch Router User Reference Manual 269 Chapter 19: Access C ontrol List Configuration Guid e • Unlike with other kinds of ACLs, ther e is no implicit deny rule for Pr ofile ACLs. • Only certain ACL rule para meters are r elevant for each configuration command. For example, the configuration command to cr eate NA T address pools for dyna [...]

  • Página 296

    Chapter 19: Access C ontrol List Configuration Guid e 270 SmartSwi tch Router User Reference Manu al criteria (in this case, flows fr om sour ce addr ess 1.2.2.2) . Then you use a rate-limit command to specify what happens to pa ckets that match the selection criteria (in this example, dr op them if their bandwidth usage e xceeds 10 Mbps). The f ol[...]

  • Página 297

    SmartSwi tch Router User Reference Manual 271 Chapter 19: Access C ontrol List Configuration Guid e Once you have define d a Pr ofile ACL, you can th en use the nat create dynami c comm an d to bind the range of IP addr esses defined in the local pr ofile to a rang e in network 192.50.2 0.0/24. See “Network Addr ess T ranslation Configuration Gui[...]

  • Página 298

    Chapter 19: Access C ontrol List Configuration Guid e 272 SmartSwi tch Router User Reference Manu al Redirecting HTTP T raffic to Cache Servers Y ou can use a Profile ACL to specify which HTTP traf fic should always (or never) be redir ected to the cach e servers. (By def ault, when W eb caching is enabled, a ll HTTP traf fic fro m all hosts is r e[...]

  • Página 299

    SmartSwi tch Router User Reference Manual 273 Chapter 19: Access C ontrol List Configuration Guid e Enabling ACL Logging T o see whether incoming packets ar e permitted or denied because of an ACL, you can enable ACL logging . Y ou can enable logging when applying the AC L or yo u can enable logging for a specif ic ACL rule. The following comman ds[...]

  • Página 300

    Chapter 19: Access C ontrol List Configuration Guid e 274 SmartSwi tch Router User Reference Manu al Monito ring ACLs The SSR provides a display of ACL config urations act ive in th e system. T o display ACL information, en ter the following co mmands in Enable mode. Show al l AC Ls . acl show all Show a spe cific ACL. acl show aclname <name >[...]

  • Página 301

    SmartSwi tch Router User Reference Manual 275 Chapter 20 Security Configuration Guide Security Overview The SSR pr ovides security featur es that help contr ol access to the SSR and filter traf fic going thr ough the SSR. Access to the SSR can be contr olled by: • Enablin g RADIUS • Enabling T ACACS • Enabling T ACACS Plus • Password authen[...]

  • Página 302

    Chapter 20: Security Configura tion Guide 276 SmartSwi tch Router User Reference Manu al Configurin g SSR Access Sec urity This section describes the following m ethods of con trolling access to the SSR : • RADIUS • T ACACS • T ACACS Plus • Passwords Config uring RADIUS Y ou can secure login or Ena b le mo de access to the SSR by enabli ng [...]

  • Página 303

    SmartSwi tch Router User Reference Manual 277 Chapter 20: Sec urity Configuration Guid e Monitoring RADIUS Y ou can monitor RAD IUS configuratio n and statistics w ithin the SSR . T o monitor RADIUS, enter the following comma nds in Enable mode: Config uring T ACA CS In addition, Enable m ode access to the SSR can be made secur e by enabling a T er[...]

  • Página 304

    Chapter 20: Security Configura tion Guide 278 SmartSwi tch Router User Reference Manu al Config uring T ACA CS Plus Y ou can secu re login or Enable mode access t o the SSR by ena bling a T ACACS Plu s client. A T ACACS Plus server r esponds to the SSR T ACACS Plus client to pr ovide authentica tion. Y ou can config ure up to five T ACACS Plu s ser[...]

  • Página 305

    SmartSwi tch Router User Reference Manual 279 Chapter 20: Sec urity Configuration Guid e Monitoring T ACACS Plus Y ou can monitor T ACACS Plus configuration and statisti cs within the S SR. T o monitor T ACACS Plus, enter the following commands in Enable m ode: Configuring Passwo r ds The SSR pr ovides passwor d authentication for a ccessing the Us[...]

  • Página 306

    Chapter 20: Security Configura tion Guide 280 SmartSwi tch Router User Reference Manu al A secure filter shuts down acc ess to the SSR based on MAC addresses. All packets received by a por t are dropped. When com bined with static entries, however, these filters can be used to drop a ll received traffic but allow some fram es to go through. Configu[...]

  • Página 307

    SmartSwi tch Router User Reference Manual 281 Chapter 20: Sec urity Configuration Guid e Configuring Layer -2 Port-to -Addr ess Lock Filters Port address lock filters allow you to bind or “loc k” specific source MAC addr esses to a port or set of ports. Once a port is locked, only the specified sour ce MAC addr ess is allowed to connect to th e[...]

  • Página 308

    Chapter 20: Security Configura tion Guide 282 SmartSwi tch Router User Reference Manu al Configuring Layer -2 Secure Port Filters Secur e port filters block access to a specified port. Y o u can use a secure port f ilter by itself to secure unused ports. Secur e port filters can be configur ed as sour ce or destination port filters. A secure po rt [...]

  • Página 309

    SmartSwi tch Router User Reference Manual 283 Chapter 20: Sec urity Configuration Guid e Monitoring Layer -2 Security Filt ers The SSR pr ovides display o f Layer -2 security filter con figurations contained in the r outing table. T o display security filter information, enter the f ollowing commands in Enable mode. Layer -2 Filter Example s Figure[...]

  • Página 310

    Chapter 20: Security Configura tion Guide 284 SmartSwi tch Router User Reference Manu al Des t ina t ion f ilt er: No one from the en gineering group ( port et.1.1) should be al lowed to access the finance server . All traffic de stine d to the fin anc e server's MAC will be dr opped. Flow f ilter: Only the consultant is restricted access to o[...]

  • Página 311

    SmartSwi tch Router User Reference Manual 285 Chapter 20: Sec urity Configuration Guid e Note: If the consult an t’s M AC is detected on a differ ent port, all of its traffic will be blocked. Example 2 : Se cure Ports Source secure port: T o block all engineers on por t 1 fr om accessing all other ports, en ter the foll owin g comm and: T o allow[...]

  • Página 312

    Chapter 20: Security Configura tion Guide 286 SmartSwi tch Router User Reference Manu al Layer -4 Bridging an d Filtering Layer-4 bridging is the SSR’s a bili ty to use lay e r- 3/4 in f ormation to perfor m f iltering or QoS during bridgin g. As described in “Layer-2 Security Filters” above, you can configure ports to filter traffic using MA[...]

  • Página 313

    SmartSwi tch Router User Reference Manual 287 Chapter 20: Sec urity Configuration Guid e Cr eating a Port-Based VLAN for Layer -4 Bridging The ports to be used in Laye r-4 Br idging must all be on the same VLAN. T o create a po rt- based VLAN, enter the f ollowing command in Configure mode: For example, to cr ea te a port-based VLAN called “blue?[...]

  • Página 314

    Chapter 20: Security Configura tion Guide 288 SmartSwi tch Router User Reference Manu al In the example in Figur e 25 on page 286 , to allow the consultants access to the file server for e-mail (SMTP) traf fic, but no t for W eb (HTTP) traffic — a nd allow e-mail, W eb, and F TP traf fic between the engineers and the file server , you would creat[...]

  • Página 315

    SmartSwi tch Router User Reference Manual 289 Chapter 20: Sec urity Configuration Guid e • If you use a SmartTRUNK in a with Layer-4 Bridging VLAN, the SSR maintains the packet or der on a per -f low basis, rather than per -MAC pair . This means that for traf fic between a MAC pair consisting of more than one flow , the packets may be disorder ed[...]

  • Página 316

    Chapter 20: Security Configura tion Guide 290 SmartSwi tch Router User Reference Manu al[...]

  • Página 317

    SmartSwi tch Router User Reference Manual 291 Chapter 21 QoS Configuration Guide QoS & Layer -2/Layer -3/Layer -4 Flow Overv iew The SSR allows netw ork managers to identify traf fic and set Quality of Ser vice (QoS) policies without compr omising wi re speed perfo rmance. The SSR can guarantee bandwi dt h on an appl ication by ap plicatio n ba[...]

  • Página 318

    Chapter 21: QoS Configuration Gu ide 292 SmartSwi tch Router User Reference Manu al W ithin the SSR, QoS policies are used to classify Layer -2, Layer -3, and La yer-4 traf f ic into the following priority queues (in order fr om highest priority to lowest): • Control ( for r outer contr ol traf fic; the remaining classes ar e f or normal data flo[...]

  • Página 319

    SmartSwi tch Router User Reference Manual 293 Chapter 21: QoS Configuration Guid e Pr ecedence for Layer -3 Flows A pre cedence fr om 1 - 7 is associated with each field in a flo w . The SSR uses the precede nce value associated with the fields to break ties if packets ma tch more than one flow . The highest pr eceden ce is 1 and th e low est is 7.[...]

  • Página 320

    Chapter 21: QoS Configuration Gu ide 294 SmartSwi tch Router User Reference Manu al If a port operates in flow -bridging mode, you can be more specific an d configure priorities for frames that m atch both a sour ce AND a destination MAC addr ess and a VLAN ID. Y ou can also specify a lis t of ports to apply th e policy . The VLAN ID in the QoS con[...]

  • Página 321

    SmartSwi tch Router User Reference Manual 295 Chapter 21: QoS Configuration Guid e Y ou can crea te one or more prio rity maps that are dif fer ent fr om the default priority map and then apply these maps to some or all ports of the SSR. The new priority mapping replaces th e default mappings for those ports to which they ar e applied. Creating and[...]

  • Página 322

    Chapter 21: QoS Configuration Gu ide 296 SmartSwi tch Router User Reference Manu al configur ed to use the def ault priority map only . If the comman ds to crea te and apply priority maps exis t in the active config uration, they wi ll remain in the configura tion but be inef fective. T o disable the use of priority maps, enter the follow ing comma[...]

  • Página 323

    SmartSwi tch Router User Reference Manual 297 Chapter 21: QoS Configuration Guid e Setting an IP Q oS Policy T o set a QoS policy on an IP traf fic flow , enter the following command in Configur e mode: For example, the f ollowing command assigns contr ol priority to any traf fic coming fr om the 10 .10.1 1.0 network : Specifying Precedence for an [...]

  • Página 324

    Chapter 21: QoS Configuration Gu ide 298 SmartSwi tch Router User Reference Manu al Specifying Precedence for an IPX QoS Policy T o specify the preced ence for an IPX QoS policy , enter th e following command in Configur e mode: Configuring SSR Queueing Pol icy The SSR queuing pol icy is s et on a system-wi de basi s. The SSR default queuing po lic[...]

  • Página 325

    SmartSwi tch Router User Reference Manual 299 Chapter 21: QoS Configuration Guid e W eighted Random Early Detection (WRED) Random Early Det e ction (WRED) allevi ates traffic congestion issues by selectivel y dro pping packets before the queue becomes completely flooded. WRED parameters allow you to set conditi on s an d limits for dropping packets[...]

  • Página 326

    Chapter 21: QoS Configuration Gu ide 300 SmartSwi tch Router User Reference Manu al For example, setting the T oS f ield to 0010 specifies that a packet will be routed on the most reliable path s. Setting the T oS field to 1000 specifies that a packet will be ro uted on the paths with the least delay . (Refer to RFC 1349 for the specification of th[...]

  • Página 327

    SmartSwi tch Router User Reference Manual 301 Chapter 21: QoS Configuration Guid e are r ewritten to the <tos-pr ece dence-r ew rite> value and the lower five bits ar e r ewritten to the <tos- rew rite > value. For example, the f ollowing command will r ewrite the T oS Precedence field to 7 if the T oS Preceden ce field of the incoming [...]

  • Página 328

    Chapter 21: QoS Configuration Gu ide 302 SmartSwi tch Router User Reference Manu al Monito ring QoS The SSR pr ovides display of QoS statistics and configuration s contained in the SSR. T o display QoS information, en ter the following co mmands in Enable mode: Show al l IP QoS flo ws. qos sh ow ip Show al l IPX QoS f l ow s. qos show ipx Show al l[...]

  • Página 329

    SmartSwi tch Router User Reference Manual 303 Chapter 21: QoS Configuration Guid e Limi ting T raf fic Ra te Note: Some commands in this facility req uire updated SSR har dware. Please r efer to Appendix A for details. Rate limit ing provides the ability to control the usage of a fundament al network resource, bandwidth. It al low s you to limi t t[...]

  • Página 330

    Chapter 21: QoS Configuration Gu ide 304 SmartSwi tch Router User Reference Manu al T o enable aggr egate rate limiting mode on the SSR , enter the f ollowing command in Configur e mode: T o change the rate limiting mod e on the SSR back to per -flow mode, negate th e above command. Per -Flow Rate Limiting Use a per -flow rate limiting policy if an[...]

  • Página 331

    SmartSwi tch Router User Reference Manual 305 Chapter 21: QoS Configuration Guid e T o define a port rate limit policy , enter one of the following commands in Configur e mode: Note that for output port policies, the only actio n that you can specify if traf fic exceeds the specified rate is to dr op packets. If you configure output port policies, [...]

  • Página 332

    Chapter 21: QoS Configuration Gu ide 306 SmartSwi tch Router User Reference Manu al T o define an aggr egate rate limit policy and apply the policy to an interface, enter the following commands in Conf igure mode: Note: Y ou cannot use non-IP ACLs for aggregat e rate limit policies. Example Config urations This section in cludes exa mples of rate l[...]

  • Página 333

    SmartSwi tch Router User Reference Manual 307 Chapter 21: QoS Configuration Guid e T raffic fr om two interface s, ‘ipclient1’ with IP addr ess 1.2.2.2 and ‘ipclient2’ with IP addr ess 3.1.1.1, is restricted to 10 Mbps for each flow with the following configuration: Aggregate Rate Limiting In the following example, inco ming F TP and HTTP t[...]

  • Página 334

    Chapter 21: QoS Configuration Gu ide 308 SmartSwi tch Router User Reference Manu al Display ing R ate Li mit In form ation T o show information about rate limit policies, enter the following command in Enable mode: Show rate li mit policy informatio n. rate-limit show all | policy-type <type> | policy-name <na me> | interface <interf[...]

  • Página 335

    SmartSwi tch Router User Reference Manual 309 Chapter 22 Performance Monitoring Guide Performanc e Monitoring Overview The SSR is a full wir e-speed layer -2, 3 an d 4 switching ro uter . As packets enter the SSR, layer-2 , 3, and 4 f low tables ar e populated on each line car d. The flow tables contain information o n performance statistics and tr[...]

  • Página 336

    Chapter 22: Perform ance Monitori ng Guide 310 SmartSwi tch Router User Reference Manu al Show information about the master MAC table. l2-tables show mac-table-stats Show inf o rmatio n about a part ic u lar MAC a ddres s. l2-tables show mac Show info about mu ltica sts register ed by IGMP . l2-tables show igmp-mcast-registrations Show whether IG M[...]

  • Página 337

    SmartSwi tch Router User Reference Manual 311 Chapter 22: Perform ance Monitoring Guid e Configuring the SSR for Port M irrorin g The SSR allows you to monitor activity with port mirr oring. Port mirr oring allows you to monitor the perfo rmance and activities of ports o n the SSR or for traf fic defined by an ACL through just a single, separate po[...]

  • Página 338

    Chapter 22: Perform ance Monitori ng Guide 312 SmartSwi tch Router User Reference Manu al[...]

  • Página 339

    SmartSwi tch Router User Reference Manual 313 Chapter 23 RMON Configuration Guide RMON Ov erview Y ou can employ Remot e Network Moni toring (RMO N) in your network to help m onitor traf fic at rem ote points on the network. W ith RMON, data co llection and pr ocessing is done with a remote probe , namely the SS R. The SSR also includes RMON agent [...]

  • Página 340

    Chapter 23: RMON Configuratio n Guide 314 SmartSwi tch Router User Reference Manu al Configurin g and Enabling RM ON By default, RMON is disabled on the SSR. T o configure a nd enable RMON on the SSR, follow these steps: 1. T urn on the Lite, Stan dard, or Pr ofessional RMO N groups by entering the rmon set lite|sta ndard|pro fessional command. Y o[...]

  • Página 341

    SmartSwi tch Router User Reference Manual 315 Chapter 23: RMON Configuratio n Guide RMON Groups The RMON MIB gr oups ar e defined in R FCs 1757 (RMON 1) an d 2021 (RMON 2) . On the SSR, you can con figure one or mor e levels of RMON support for a set of ports. Each level—Lite, Standar d, or Pro fessional—enables dif fer ent sets of RMON gr o up[...]

  • Página 342

    Chapter 23: RMON Configuratio n Guide 316 SmartSwi tch Router User Reference Manu al Standard RMON Gr oups This section describes the RMON gr oups that ar e enabled when you specify the Standar d support level. The Standar d RMON gr oups ar e shown in the table belo w . Profession al RMON Groups The Professional RMON groups correspond to the RMON 2[...]

  • Página 343

    SmartSwi tch Router User Reference Manual 317 Chapter 23: RMON Configuratio n Guide Control T ables Many RMON gr oups contain both contr ol and data tables. Contr ol tables specify what statistics are to be co llected. For example, you can specify the por t for which statistics ar e to be collected and the owner (name, phon e, or IP addr ess) for t[...]

  • Página 344

    Chapter 23: RMON Configuratio n Guide 318 SmartSwi tch Router User Reference Manu al A r ow in the contr ol table is cr eated for each port on the SSR, with the owner set to “monitor”. If you want, you can ch ange the owner by using the appr opriate rmon command. Se e the section “Configuring RMON G roups” in this chapter for more the comma[...]

  • Página 345

    SmartSwi tch Router User Reference Manual 319 Chapter 23: RMON Configuratio n Guide followi ng co mmand : Configurin g RMON Gr oups As mentioned previously , control tables in many RMO N groups specify the data that is to be collected for the particular RMON gro up. If the information you w ant to collect is in the default contr ol tables, then you[...]

  • Página 346

    Chapter 23: RMON Configuratio n Guide 320 SmartSwi tch Router User Reference Manu al T o configure the Filter group, you must confi gure both the Channel and Filt er control tables. rmon channel in dex <index- number> port <port> [ accept-type ma tched|failed ] [ data-contr ol on|off ] [ turn -on-event -index <numbe r> ] [ turn-of[...]

  • Página 347

    SmartSwi tch Router User Reference Manual 321 Chapter 23: RMON Configuratio n Guide Config uration Examples This section sh ow s examples of conf ig uration com mands that specif y an event that generates an SNMP trap and the alarm condition th at triggers the event. The RMON Alarm gr oup allows the SSR to poll itself at user -defined intervals. Al[...]

  • Página 348

    Chapter 23: RMON Configuratio n Guide 322 SmartSwi tch Router User Reference Manu al • Samples taken at 300 seco nd (5 minute) intervals. • A “Startup” alarm generation condition ins tructing the SSR to gen erate an alarm if the sample is greater than or equal to th e rising threshold or less than or equal to the fallin g threshold. • Com[...]

  • Página 349

    SmartSwi tch Router User Reference Manual 323 Chapter 23: RMON Configuratio n Guide 1 T o display Ethernet statistics and related statistics for W AN ports, RMON ha s to be activated on that port. T o activate RMON on a port, use the frame-relay def ine ser v ice or ppp define service comm and, and t he frame -relay a pply servic e or ppp appl y se[...]

  • Página 350

    Chapter 23: RMON Configuratio n Guide 324 SmartSwi tch Router User Reference Manu al The follow ing shows H ost table output wit hou t a CLI filter: The following shows the sa me rmon sh ow ho sts co mmand with a filter applied so that only host s wit h inpkts greater than 500 are displayed: RMON CLI filters can only be used with the following gr o[...]

  • Página 351

    SmartSwi tch Router User Reference Manual 325 Chapter 23: RMON Configuratio n Guide Creating RMON CLI Filters T o create RMON CLI filters, use the following CLI command in Configur e mode: Using RMON CLI Filter s T o see and use RMON CLI filters, use the following CLI co mmand in User or Enable mode: T r ou bleshoo ting RMON If you ar e not seeing [...]

  • Página 352

    Chapter 23: RMON Configuratio n Guide 326 SmartSwi tch Router User Reference Manu al Check the following fields on the r m on show st a tus com mand output: 1. Make sur e that RMON has been enabled on the SSR. When the SS R is boot ed, RMON is off by default. RMON is enabled with the rmon enable command. 2. Make sur e that at lea st one of the RMON[...]

  • Página 353

    SmartSwi tch Router User Reference Manual 327 Chapter 23: RMON Configuratio n Guide Allocating Memory to RMON RMON allocates memory depending on the number of po rts enabled for RMO N, the RMON gr oups that have been con figured, and whether or not default tables have been turned on o r off . Enabling RMON with all gr oups (Lite, Standa rd, an d Pr[...]

  • Página 354

    Chapter 23: RMON Configuratio n Guide 328 SmartSwi tch Router User Reference Manu al T o set the amount of memory allocated to R MON, use the following CLI command in User or Enable mode: Specifie s the total am ount of Mbytes of memory allocated to RMON. rmon set memory <number>[...]

  • Página 355

    SmartSwi tch Router User Reference Manual 329 Chapter 24 LF AP Configuration Guide Ove rview The Lightweight Flow Accounting Pr otocol (LF AP) agent, defined in RFC 2124, is a TCP- oriented pr otocol used to push accounting information co llected on the SSR to a Flow Accounting Server (F AS). The LF AP agent uses ACLs to determ ine the IP traffic o[...]

  • Página 356

    Chapter 24: LF AP Configuratio n Guide 330 SmartSwi tch Router User Reference Manu al Cabletr on’ s T raf fic Ac counting Servic es Cabletro n’s Accounting Services consists of the followi ng components: • LF AP agent on the SSR that co llects appl ication flow accountin g informati on and sends it to the Cabletr on F AS. Y ou can configure t[...]

  • Página 357

    SmartSwi tch Router User Reference Manual 331 Chapter 24: LF A P Configuration Guide attempts to co nnect to it via TCP f irst. If the connection fa ils, then the next config ured F AS is tried. A F AS can be configured a s the primary F AS for one group o f SSRs and the seconda ry F AS for another gr o up of SSRs. Note: The T raf fic Accountant is[...]

  • Página 358

    Chapter 24: LF AP Configuratio n Guide 332 SmartSwi tch Router User Reference Manu al Monito ring the LF AP Agent on the SSR The lfap s how commands display information abo ut the configuration o f the LF AP agent on the SSR and its curr ent status. Use the follow ing commands in Enable mode to view LF AP agent inform ation: Command Displays lfap s[...]

  • Página 359

    SmartSwi tch Router User Reference Manual 333 Chapter 25 WA N Configuration Guide This chapter pr ovides an overview of W ide Area Network (W AN) applications as well as an overview o f both Frame Relay and PPP co nfiguration for the SSR. In addition, you can view an example of a multi-r outer W AN configuration com plete with diagram and configura[...]

  • Página 360

    Chapter 25: W AN Configurati on Guide 334 SmartSwi tch Router User Reference Manu al Using the same appr oach, a PPP high-speed serial in terface (HSSI) W AN port located at ro uter slot 3, port 2 w ould be identified as “hs.3. 2”. Configuring W AN Interfaces Configuring IP & IPX interfaces for the W AN is generally the same as for the LAN.[...]

  • Página 361

    SmartSwi tch Router User Reference Manual 335 Chapter 25: W AN Configuration Guid e The following comman d line displays an example for a VLAN: Mapped Addresses Mapped peer IP/IPX addr esses ar e very similar to static addr esses in that InArp is disabled for Frame Relay and the addr ess negotiated in IPCP/IPXCP is ignor ed for PPP . Mapped addr es[...]

  • Página 362

    Chapter 25: W AN Configurati on Guide 336 SmartSwi tch Router User Reference Manu al The following command line displays an example for a VLAN: Forc ing Bridged Encapsulation W AN for the SSR has the ability to for ce bridged packet enca psulation. This feature has been provided to facilitate seamless compatibilit y with Cisco routers, which expect[...]

  • Página 363

    SmartSwi tch Router User Reference Manual 337 Chapter 25: W AN Configuration Guid e A verag e Packet Siz e In most cases, the lar ger the packet size, the better the potential com pression ra tio. This is due to the over head involved with compr ession, as well as the compr ession algorithm. For example a link which always deals with minimum size p[...]

  • Página 364

    Chapter 25: W AN Configurati on Guide 338 SmartSwi tch Router User Reference Manu al The following command line displays an example for PPP: Packet Encryption Packet encryption allows data to travel thr ough unsecur ed networks. Y ou can ena ble packet encryption for PPP ports, however , both ends of a link must be conf igured to use packet encrypt[...]

  • Página 365

    SmartSwi tch Router User Reference Manual 339 Chapter 25: W AN Configuration Guid e Source Filtering and ACLs Sour ce filtering and ACLs can be applied to a W AN interface; however , they affect the entire module, not an individual port. For example, if you wan t to apply a source MAC addr ess filter to a W AN serial card located in slot 5, po rt 2[...]

  • Página 366

    Chapter 25: W AN Configurati on Guide 340 SmartSwi tch Router User Reference Manu al works with IP Preced ence or priority , as defined in the qos configuration com mand line, to pr ovide prefe r ential traff ic handling for higher -priority traf fic. The CLI commands r elated to RED in both the Frame Relay and PPP pr otocol environ ments allow you[...]

  • Página 367

    SmartSwi tch Router User Reference Manual 341 Chapter 25: W AN Configuration Guid e Permanent Virtual Circu its (PVCs) W AN inte rfaces can t ake advan tage of connecti ons th at assur e a minimu m level o f available bandwidth at all times. These standing connections, called Permanent V irtual Circuits (PVCs), allow you to route critical packet tr[...]

  • Página 368

    Chapter 25: W AN Configurati on Guide 342 SmartSwi tch Router User Reference Manu al Setting up a Frame Relay Service Pr ofil e Once you have defined the type and location of your Fram e Relay W AN interface(s), you can configur e your SSR to mor e ef ficiently utilize available bandwi dth for Frame Relay communica tions. Note: The SSR comes with a[...]

  • Página 369

    SmartSwi tch Router User Reference Manual 343 Chapter 25: W AN Configuration Guid e Monitoring Frame Relay W AN Ports Once you have configur ed your frame r elay W AN interface(s), you can use the CLI to monitor status and statistics for your W AN ports. The following table describes the monitoring command s for W AN interfaces, designed to be used[...]

  • Página 370

    Chapter 25: W AN Configurati on Guide 344 SmartSwi tch Router User Reference Manu al • Committed information rate (CIR) of 20 million bits per second • Leave high-, low-, and medium-priority queue depths set to factory defaults • Random Early Discar d (RED) disabled • RMON enabl ed The command line necessary to set up a service pr ofile wit[...]

  • Página 371

    SmartSwi tch Router User Reference Manual 345 Chapter 25: W AN Configuration Guid e Point-to-Poin t Pr otoc ol (PPP) Overview Because of its a bility to quickly a nd easily acco mmodate IP and IPX protocol traffic, Point- to-Point Protocol (PPP) routing has become a very im portant aspect of W AN configuratio n. U sing PPP , y ou ca n set up router[...]

  • Página 372

    Chapter 25: W AN Configurati on Guide 346 SmartSwi tch Router User Reference Manu al W AN interfaces, then apply a service pr ofile to the desired interfa ce(s). Examples of this pro cess are displayed in “PPP Port Configu ration” on pag e 348 . Defining the T ype and Lo cation of a PPP Interface T o configure a PPP W A N port, you need to firs[...]

  • Página 373

    SmartSwi tch Router User Reference Manual 347 Chapter 25: W AN Configuration Guid e Note: If it is necessary to specify a value f or Bridging, IP , and/or IPX, you must specify all thr ee of these values at the sam e time. Y ou cannot specify just one or two of them in the command line witho ut the other(s). Applying a Servic e Profil e to an Activ[...]

  • Página 374

    Chapter 25: W AN Configurati on Guide 348 SmartSwi tch Router User Reference Manu al pro cessing by MLP . If compr ession is enabled on a link, the packets will be compressed after the MLP processin g. In general, choose bundle com pression over link compr ession whenever possible. Compressing packets bef ore they ar e “split” by MLP is much mo[...]

  • Página 375

    SmartSwi tch Router User Reference Manual 349 Chapter 25: W AN Configuration Guid e Suppose you wish to set up a service pr ofile called “pr ofile2” that includes the following characteristics : • Bridging enabled • Leave high-, low-, and medium-priority queue depths set to factory defaults • IP and I PX enabled • Sending of LCP Echo Re[...]

  • Página 376

    Chapter 25: W AN Configurati on Guide 350 SmartSwi tch Router User Reference Manu al W AN Configu ration Examples Simple Configu ration File The following is an example of a simp le conf ig uration file used to tes t frame r elay and PPP W AN ports: For a br oader , more application-oriented W A N configu ration example, see “Mult i-Ro uter WA N [...]

  • Página 377

    SmartSwi tch Router User Reference Manual 351 Chapter 25: W AN Configuration Guid e Multi-Router W AN Configuration The following is a diagram of a mu lti-router W AN config uration encom passing th ree subnets. From the diagram, you can see that R1 is pa rt of both Subnets 1 and 2; R2 is part of both Subnets 2 and 3; and R3 is part of subnets 1 an[...]

  • Página 378

    Chapter 25: W AN Configurati on Guide 352 SmartSwi tch Router User Reference Manu al Router R1 Configuration File The following configura tion file applies to Rou ter R1. Router R2 Configuration File The following configura tion file applies to Rou ter R2. ---------------------------------------------------------------------- Configuration for ROUT[...]

  • Página 379

    SmartSwi tch Router User Reference Manual 353 Chapter 25: W AN Configuration Guid e Router R3 Configuration File The following configura tion file applies to Rou ter R3 . Router R4 Configuration File The following configura tion file applies to Rou ter R4 . rip add interface all rip set interface all version 2 rip set auto-summary enable rip start [...]

  • Página 380

    Chapter 25: W AN Configurati on Guide 354 SmartSwi tch Router User Reference Manu al Router R5 Configuration File The following configura tion file applies to Rou ter R5. Router R6 Configuration File The following configura tion file applies to Rou ter R6. port set et.1.* duplex full frame-relay create vc port se.6.1.304 vlan create s1 id 200 vlan [...]

  • Página 381

    SmartSwi tch Router User Reference Manual 355 Chapter 25: W AN Configuration Guid e port set hs.3.1 wan-encapsulation frame-relay speed 45000000 frame-relay create vc port hs.3.1.106 frame-relay define service CIRforR1toR6 cir 45000000 bc 450000 frame-relay apply service CIRforR1toR6 ports hs.3.1.106 vlan create BridgeforR1toR6 port-based id 106 in[...]

  • Página 382

    Chapter 25: W AN Configurati on Guide 356 SmartSwi tch Router User Reference Manu al[...]

  • Página 383

    SmartSwi tch Router User Reference Manual 357 Appendix A New Featur es Supported on Line Car ds Intr oduc tion Some of the f eatur es in firmware versions 3.0 and 3 .1 ar e only supported on certain line car ds. The following sections list SSR line cards a nd the firmware features tha t ar e supported on each car d. SSR 8000/860 0 Line Cards This s[...]

  • Página 384

    Appendix A: New Features Supp orted on Line C ards 358 SmartSwi tch Router User Reference Manu al The following table lists the line car ds available for the SS R 8000/8600 prior to the 3.0 firmwar e release an d the supported feature s. Line Car ds Introduced at the 3.0 Firmware Release (-AA Revision) Line car ds intro duced at the 3.0 r elease su[...]

  • Página 385

    SmartSwi tch Router User Reference Manual 359 Appendix A: New Features S upported on L ine Cards In addition, these car ds support all pr e-3.0 firmwar e featur es. All car ds, except for the gigabit Ethernet cards, a lso support WFQ. The following table lists the line car ds introd uced for the S SR 8000/860 0 with the 3.0 firmwar e release an d t[...]

  • Página 386

    Appendix A: New Features Supp orted on Line C ards 360 SmartSwi tch Router User Reference Manu al Line Card Pa rt Number Pre-3.0 SSR Firmware Featur es WFQ Listed 3 .0 Featur es Routing Ta b l e o n line card, WRED, per Port Rate Limiting Jumbo Frame Support SSR-POS21- 04 (POS OC-3c MMF) XX X X X SSR-POS29- 04 (POS OC-3c SMF) XX X X X SSR-POS31- 02[...]

  • Página 387

    SmartSwi tch Router User Reference Manual 361 Appendix A: New Features S upported on L ine Cards SSR 2000 Line Cards The following table lists the line car ds available for the SS R 2000 and the supported fea tures : Line Card Pa rt Number Pre-3.0 SSR Firmware Feature s WFQ Listed 3.0 F eatures Standard Cha ssis Config ura tions: SSR-2-B XX SSR-2-P[...]

  • Página 388

    Appendix A: New Features Supp orted on Line C ards 362 SmartSwi tch Router User Reference Manu al New Featur es that Requir e Specific Li ne Car ds T -series line cards, -AA revision lin e cards, and non -AA revision line cards can be used in the same chassis. V ersion 3.0 and later firmwar e can detect th e revision number of ea ch line car d, and[...]

  • Página 389

    SmartSwi tch Router User Reference Manual 363 Appendix A: New Features S upported on L ine Cards[...]

  • Página 390

    Appendix A: New Features Supp orted on Line C ards 364 SmartSwi tch Router User Reference Manu al When multiple routers ar e con nected together , only the r outer using Network Addr ess T ranslation requir es the -AA o r T -series line card. In Diagram 2, only Router W r equir es the -AA or T -series line car d since it is the o nly r outer perfor[...]

  • Página 391

    SmartSwi tch Router User Reference Manual 365 Appendix A: New Features S upported on L ine Cards When load balan cing is implem ented in a single system , the ports th at attach to bot h incoming and outgoing inte rfaces must reside on -AA o r T -series line cards. If th e servers are load-sharing across multipl e networks, po rts as signed to the [...]

  • Página 392

    Appendix A: New Features Supp orted on Line C ards 366 SmartSwi tch Router User Reference Manu al When a VLAN spans acr oss multiple SSRs with 802.1Q tr unk ports, the r equirem ents for -AA or T -series line car ds depend on how layer 4 bridgin g is deployed. In Diagram 4, yellow and blue VLANs ar e cr eated acr oss m ultiple SSRs and ar e inter c[...]

  • Página 393

    SmartSwi tch Router User Reference Manual 367 Appendix A: New Features S upported on L ine Cards on SSR C since SSR C does not have a -AA or T -series line car d. SSR C would dr op all SNA traffic since its module would not recognize SNA traffic. QoS R ate L imiti ng Ther e are three types of rate limiting supported on the SSR: • Per-flow rate li[...]

  • Página 394

    Appendix A: New Features Supp orted on Line C ards 368 SmartSwi tch Router User Reference Manu al To S R e w r i t e The T oS r ewrite command allows a network administrator to change the va lue in the T oS octet (which includes both th e Precedence o r T oS fields) in each IP packet. The SSR looks at every IP packet coming into the interface, and [...]

  • Página 395

    SmartSwi tch Router User Reference Manual 369 Appendix A: New Features S upported on L ine Cards W eighted Random Ear ly Detectio n (WRED) W eighted Random Early Detection (WRED) algorithms can alleviate traf fic con gestion. WRED allows yo u to set conditions a nd limits for the selective dropping of packets on input or output queues of specific p[...]

  • Página 396

    Appendix A: New Features Supp orted on Line C ards 370 SmartSwi tch Router User Reference Manu al Identifying a Line Car d A TM, packe t-over-S ONET , and 16 -port 10/10 0 BASE-TX line car ds a re T -series line car ds intro duced with the 3.1 firmwar e r elease. The followi ng Gigabit Ethernet line car ds ar e also T -series line car ds: SSR-GSX3 [...]

  • Página 397

    SmartSwi tch Router User Reference Manual 371 Appendix A: New Features S upported on L ine Cards Example 2: ssr# system sh ow hardware verbose : : Slot CM/1, M odule: 10/100-TX R ev . 1.0 Service String: 2 _D 1.2 _0.512_ I 2.0 _2_O 2.0 _0.512 : : The above Service S tring shows a “non -AA” 10/10 0 Base TX line car d. Example 3: ssr# system sh o[...]

  • Página 398

    Appendix A: New Features Supp orted on Line C ards 372 SmartSwi tch Router User Reference Manu al[...]