|
|
The Catalyst 5000 switches are a series of LAN switches that allow organizations to migrate from traditional shared-hub LANs to large-scale, fully integrated internetworks. Catalyst 5000 series switches provide switched connections to individual workstations, servers, LAN segments, backbones, or other Catalyst 5000 series switches using shielded twisted-pair (STP), unshielded twisted-pair (UTP), and fiber-optic cable. This chapter provides an overview of the Catalyst 5000 series switches and a feature/command matrix. The matrix includes supported switching modules and features and a quick reference command list.
For detailed descriptions of the hardware features and functionality of the Catalyst 5000 series switches, refer to the Catalyst 5002 Installation Guide, the Catalyst 5000 Installation Guide, or the Catalyst 5500 Installation Guide.
The Catalyst 5000 series includes an expanding line of modular LAN switches that provide the flexibility needed to meet the most challenging networking requirements. Table 1-1 lists and describes the Catalyst 5000 series switches.
| Switch Model | Description | Features |
|---|---|---|
| Catalyst 5002 | 2-slot switch |
|
|
Catalyst 5000 | 5-slot switch |
|
|
Catalyst 5500 | 13-slot switch |
|
Catalyst 5000 series switches support the interfaces listed below. Default configurations and quick configuration tables are provided for each interface. For detailed configuration information, refer to the Catalyst 5000 Series Advanced Software Configuration Guide.
Catalyst 5000 series switches support the software features listed below. A quick configuration table is provided for each feature. For detailed configuration information, refer to the Catalyst 5000 Series Advanced Software Configuration Guide.
Catalyst 5002 and Catalyst 5000 switches feature a single, integrated 1.2 Gbps switching backplane. Catalyst 5500 switches feature a 3.6 Gbps switching backplane. All Catalyst 5000 series switches support switched 10/100 Mbps Ethernet/Fast Ethernet and Ethernet repeater connections, with backbone connections to Fast Ethernet, Asynchronous Transfer Mode (ATM), Fiber Distributed Data Interface (FDDI), Copper Distributed Data Interface (CDDI), and Token Ring. Slot 1 in all Catalyst 5000 series switches is dedicated to the supervisor engine module. The Catalyst 5500 switch supports a redundant supervisor engine module and LightStream 1010 ATM switch modules. The Catalyst 5500 switch supports ATM Port Adapter Modules (PAMs) in slots 9 through 12.
Table 1-2 lists the default features and settings for the supervisor engine module.
| Feature | Default Setting |
|---|---|
| Administrative connection | Normal |
| System Information | No default for system contact, system name, system clock time, and passwords for normal and privileged modes. |
| System prompt | Console> |
| Interface type |
|
|
Serial Line Interface Protocol (SLIP) for the console port | detach (not active) |
| Remote Monitoring (RMON) support | Enabled |
| Simple Network Management Protocol (SNMP)
SNMP traps | read-only: public
read-write:private read-write-all:secret Disabled |
| Virtual Trunking Protocol (VTP) interval
Domain Name Mode of operation VTP password | 5 minutes
Not specified Server None |
| VLAN trunking | auto mode for Fast Ethernet and all capable ports
non-trunking for FDDI ports |
| Native VLAN | 1 |
Table 1-3 contains a quick reference for configuring the supervisor engine module.
| Task | Command |
|---|---|
| Uploading/downloading system information | upload or download |
Establishing the console port connection
|
enable |
Setting the system information
|
set system contact contact_string set system location location_string set system name name_string set time day_of_week mm/dd/yy hh:mm:ss set prompt prompt_string set password set enablepass |
Setting the interface type
|
set interface sc0 ip_address [netmask[broadcast]] set ip route default gateway [metric] |
Configuring SLIP on the console port
|
set interface slip_address_dest_address slip attach |
Creating a BOOTP server
|
show module |
| Configuring SNMP management | set snmp community read-only | read_write | read_write_all community string set snmp trap rcvr_address rcvr_community set snmp trap enable |
Resetting the 5500 active supervisor
|
reset mod_num |
Ethernet and Fast Ethernet switching modules share features such as wire-speed packet transfer port-to-port, media rate performance across the 1.2 gigabits per second (Gbps) backplane, half- or full-duplex operation on dedicated switch ports, dedicated ASIC on each port with embedded Remote Monitoring (RMON) and standard Ethernet Management Information Base (MIB), 192 KB buffers on each interface to accommodate bursty traffic, connectivity from switched Ethernet and Fast Ethernet to Fiber Distributed Data Interface (FDDI) and Asynchronous Transfer Mode (ATM) backbones, and hot-swappable capability.
The features you can customize have default values that will most likely suit your environment and need not be changed. The default values of these features are set as follows:
Table 1-4 contains a quick reference for configuring the Fast Ethernet and Ethernet modules.
| Feature | Command |
|---|---|
| Setting the Port Name | set port name mod_num/port_num [name_string] |
| Setting the Port Priority Level | set port level mod_num/port_num normal | high |
| Setting the Port Speed
| set port speed mod num/port num [10 | 100 | auto] |
| Setting the Port Transmission Type | set port duplex mod num/port num full | half |
| Checking Connectivity
Step 1 Send an echo request from the Catalyst 5000 series switch to the host. Step 2 If the host is unresponsive, check the configuration for the IP address of the Catalyst 5000 series switch and default IP route, if appropriate. | ping host
show interface show ip route |
Configuring Spanning-Tree Protocol
|
enable |
LANE allows end stations to communicate through a LAN-to-ATM switch with an ATM attached device, such as a file server, without requiring the traffic to pass through a more complex device such as a router. LANE requires a switch that supports User-Network Interface (UNI) 3.0 or 3.1 and point-to-multipoint signaling--for example, the Cisco LightStream 1010 ATM switch.
The ATM LANE module has the following default configuration:
Table 1-5 contains a quick reference for configuring the ATM module.
CDDI/FDDI Configuration
| Feature | Command |
|---|---|
| Configuring from the Terminal
Step 1 Enter configuration mode, selecting the terminal option. Step 2 Enter the necessary configuration commands. Step 3 Quit configuration mode. Step 4 Save the configuration file modifications to NVRAM. | configure terminal
Ctrl-Z write memory
|
| Configuring from Nonvolatile Memory |
configure memory |
Implementing LANE
|
|
Displaying ATM Addresses
|
show lane default-atm-addresses |
| Displaying Dual PHYs Connected to Different Switches
Step 1 Change the preferred PHY to the one not currently in use. Step 2 Display the default ATM addresses. Step 3 Determine the active PHY. |
show interface |
| Configuring the LECS ATM Address on an LS1010
Step 1 Enter the configuration mode. Step 2 Enter the address of the LEC. Step 3 Verify the address entered. |
configure terminal atm lecs-address atm_address show atm ilmi-configuration |
| Setting Up the LES/BUS
Step 1 Enter the configuration mode. Step 2 Specify the subinterface for the first ELAN. Step 3 Enable the LES/BUS on the subinterface. Step 4 Repeat Steps 2 and 3 for all other ELANs on this card.configure terminal interface atm 0. subinterface_num lane server-bus ethernet elan_name
| |
| Setting Up the LECS Database
To set up the database for the default ELAN: Step 1 Create a named database for the LANE configuration LECS. Step 2 In the configuration database, bind the name of the ELAN to the ATM address of the LES. Step 3 In the configuration database, provide a default name for the ELAN. Step 4 Exit from database configuration mode and return to global configuration mode. |
lane database database_name name elan_name server-atm-address default-name elan_name exit |
| Setting Up the LECS Database
To set up the database for unrestricted membership ELANs: Step 1 Create a named database for the LANE configuration LECS. Step 2 In the configuration database, bind the name of the first ELAN to the ATM address of the LES for that ELAN. Step 3 In the configuration database, bind the name of the second ELAN to the ATM address of the LES. Repeat this step, providing a different ELAN name and ATM address for each additional ELAN in this switch cloud. Step 4 (Optional) Specify a default ELAN for LECs not explicitly bound to an ELAN. Step 5 Exit from database configuration mode and return to global configuration mode. | name elan_name1 server-atm-address default name elan_name |
| Setting Up the LECS Database
To set up the database for restricted membership ELANs: Step 1 Create a named database for the LECS. Step 2 In the configuration database, bind the name of the first ELAN to the ATM address of the LES for that ELAN. Step 3 In the configuration database, bind the name of the second ELAN to the ATM address of the LES. Repeat this step, providing a different name and a different ATM address for each additional ELAN. Step 4 (Optional) Specify a default ELAN for LECs not explicitly bound to an ELAN. Step 5 Add a database entry associating a specific LEC ATM address with a specific restricted-membership ELAN. Repeat this step for each of the LECs of each of the restricted-membership ELANs on this switch cloud, in each case specifying that LEC ATM address and the name of the ELAN with which it is linked. Step 6 Exit from database configuration mode and return to global configuration mode. |
lane database database_name name elan_name1 server-atm-address name elan_name2 server-atm-address default name elan_name client-atm-address atm_address name
|
| Starting and Binding the LECs
Step 1 Enter the configuration mode. Step 2 Select the ATM interface. Step 3 Specify the name of the LECS. Step 4 Specify the address of the LECS. Step 5 Bind the interface. Step 6 Exit the configuration mode. |
configure terminal interface atm0 lane config test lane config auto-config-atm-address lane config database database_name end |
| Setting up the LECs
Step 1 Specify the subinterface for a VLAN on this switch. Step 2 Enable a LANE client for the first ELAN. |
interface atm 0. subinterface_num |
| Monitoring and Maintaining LANE Components
Step 1 Display the global and per-VCC LANE information for all the LANE components and ELANs configured on an interface or any of its subinterfaces. Step 2 Display the global and per-VC LANE information for the BUS configured on any subinterface or ELAN. Step 3 Display the global and per-VC LANE information for all LECs configured on any subinterface or ELAN. Step 4 Display the global and per-VC LANE information for the LECS configured on any interface. Step 5 Display the LANE LECS database. Step 6 Display the LANE ARP table of the LECs configured on the specified subinterface or ELAN. Step 7 Display the global and per-VC LANE information for the LES configured on a specified subinterface or ELAN. |
show lane [interface atm 0 show lane bus [interface atm 0 show lane client [interface atm 0 show lane config [interface atm 0] show lane le-arp [interface atm 0 show lane server [interface atm 0
|
| Configuring Specialized LANE Features
Specific instructions for configuring specialized LANE features.
|
|
| Configuring LES/BUS/LECS Redundancy
Step 1 On the ATM switch, enter all the multiple LECS addresses. Step 2 On the ATM module, specify redundant LES/BUSs. Enter the command for each LES address on the ELAN. |
set configserver index_address_mask (for the atm lecs-address address (for the Cisco name elan_name server-atm-address |
| Configuring VLAN Trunk Protocol | |
| Setting Up an LEC Using VTP
Step 1 Enable VTP. Step 2 From the supervisor module, create an LEC on each ATM module of all Catalyst 5000 switches on a specified VTP domain. |
session mod_num set vlan vlan_num default |
| Setting Up VTP
Step 1 Session to the ATM module. Step 2 Activate the privileged mode on the ATM module. Step 3 Enter the configuration mode. Step 4 Enable VTP. Step 5 Exit the configuration mode. Step 6 Write the current configuration to NVRAM. Step 7 Return to the supervisor console. |
session mod_num enable configure terminal vtp enable Ctrl-Z write memory exit |
| Setting Up a VLAN over PVCs
Step 1 Activate the privileged mode on the supervisor module. Step 2 Enter your password. Step 3 Assign an Ethernet port to the specified VLAN. Step 4 Session to the ATM module. Step 5 Activate the privileged mode on the ATM module. Step 6 Enter the configuration mode. Step 7 Select the ATM interface. Step 8 Set up the PVCs. Step 9 Bind the PVCs to the VLAN. Step 10 Set up other PVCs for the same VLAN if needed by repeating Steps 8 and 9. Step 11 Exit configuration mode. Step 12 Verify the setup. Step 13 Write the configuration to NVRAM. |
enable <password> set vlan vlan_num session mod_num enable configure terminal interface atm0 atm pvc vcd vpi vci aal5snap atm bind pvc vlan vcd vlan_num Ctrl-Z show atm vlan write memory |
| Removing Previously Assigned PVCs from a VLAN
To remove a previously assigned PVC from a VLAN: Step 1 Activate the privileged mode on the ATM module. Step 2 Enter the configuration mode. Step 3 Select the ATM interface. Step 4 Remove the PVC from the VLAN. Step 5 End the session. To unbind a previously assigned PVC from a VLAN without removing the PVC itself: Step 1 Activate the privileged mode on the ATM module. Step 2 Enter the configuration mode. Step 3 Select the ATM interface. Step 4 Unbind the PVC from the VLAN. Step 5 End the session. |
enable configure terminal interface atm0 no atm pvc vcd Ctrl-Z enable interface atm0 no atm bind pvc vlan vcd vlan_num Ctrl-Z |
| Configuring Output Throttling
To throttle the output of the entire interface: Step 1 Activate the privileged mode on the ATM module. Step 2 Select the ATM interface. Step 3 Apply output throttling. Step 4 End the session. To place the output-rate to the default of 155 Mbps: Step 1 Activate the privileged mode on the ATM module. Step 2 Select the ATM interface. Step 3 Disable output throttling. Step 4 End the session. |
enable atm traffic-shape rate Ctrl-Z
enable interface atm0 no atm traffic-shape rate Ctrl-Z |
| Using UNI 3.1 Signaling Support
Specify the UNI Version |
[no] atm uni-version {3.0 | 3.1} |
CDDI transmits over relatively short distances (about 100 meters), providing data rates of 100 Mbps, using a dual-ring architecture to provide redundancy. FDDI is a LAN standard, defined by ANSI X3T9.5, specifying a 100-Mbps token-passing network using fiber-optic cable, with transmission distances of up to 2 kilometers (km). FDDI also uses a dual-ring architecture to provide redundancy.
The features you can customize have default values that will most likely suit your environment and need not be changed. The default values of these features are set as follows:
Table 1-6 contains a quick reference for configuring the CDDI/FDDI modules.
| Feature | Command |
|---|---|
| Setting the Default Internet Packet Exchange Protocol Translations | |
| Setting the FDDI SNAP to Ethernet Translation
Step 1 Configure the appropriate translation protocol. Step 2 Verify that the correct translation protocol was configured. |
set bridge ipx snaptoether {8023 | SNAP | EII | 8023RAW }
|
| Setting the FDDI 802.2 to Ethernet Translation
Step 1 Configure the appropriate protocol translation. Step 2 Verify that the correct protocol translation was configured. |
set bridge ipx 8022toether {8023 | SNAP | EII | 8023RAW }
|
| Setting the FDDI 803.2 RAW to FDDI Protocol
Step 1 Configure the appropriate protocol translation. Step 2 Verify that the correct translation protocol was configured. |
set bridge ipx 8023rawtofddi {8022 | SNAP | FDDIRAW} show bridge
|
Setting the Minimum Time to Transfer the FDDI PHY Line State
|
|
Setting the Interval between Neighbor Notification Frames
|
set fddi tnotify mod_num time |
Setting the Timer for Negotiating Token Ring Timer
|
set fddi treq mod_num time |
Specifying the User-Data String
|
set fddi userdata mod_num userdata_string |
Disabling IP Fragmentation
|
|
Disabling ICMP Unreachable Messages
|
|
Setting the Link Error Rate Alarm
|
set fddi alarm mod_num/port_num value |
Setting the Link Error Rate Cutoff
|
set fddi cutoff mod_num/port_num value |
Setting the Port Name
|
set port name mod_num/port_num [name_string] |
Setting the Port Priority Level
|
set port level mod_num/port_num normal | high |
Setting Up a Native VLAN on FDDI
|
set vlan vlan_num mod_num/port_num
|
| Setting Up an FDDI 802.10 Configuration
Step 1 Provide a VLAN number and activate a VLAN in the management domain. Step 2 Create a VLAN with the type FDDI. Step 3 Map the Ethernet VLAN translation to an FDDI VLAN. Step 4 Turn the trunking on for the FDDI port. |
set vlan vlan_num set vlan vlan_num type fddi set vlan ether_vlan_num translation fddi_vlan_num OR set vlan fddi_vlan_num translation ether_vlan_num set trunk mod_num/port_num on |
Rejecting MAC Address Learning
|
set bridge fddicheck enable |
Disabling Automatic Packet Recognition and Translation
|
|
| Checking Connectivity
Step 1 Send an echo request from the Catalyst 5000 series switch to the host. Step 2 If the host is unresponsive, check the configuration for the IP address of the Catalyst 5000 series switch and default IP route, if appropriate. |
ping host show interface show ip route
|
A VLAN is a group of end stations, independent of physical location, with a common set of requirements. For example, several end stations might be grouped as a department, such as engineering or accounting. If the end stations are located close to one another, they can be grouped into a LAN segment. If any of the end stations are on a different LAN segment, in different buildings or locations, they can be grouped together into a VLAN that has all the same attributes as a LAN even though the end stations are not all on the same LAN segment. The information identifying a packet as part of a specific VLAN is preserved across a Catalyst 5000 connection to a router or other switch.
Table 1-7 contains a quick reference for VLAN configuration.
| Feature | Command |
|---|---|
| Creating a VLAN across a domain
Step 1 Define the VLAN management domain.
Step 2 Define the VLAN.
|
set vtp [domain name] [mode mode] [interval interval] set vlan vlan_num [name name] [type type] [mtu mtu] [said said] [state state] [ring ring_number] [bridge bridge_number] [parent vlan_num] [stp stp_type] [translation vlan_num] |
Grouping Switch Ports to VLANs
|
set vlan vlan_num mod/ports |
| Configuring VLAN trunks
Step 1 Establish trunks on specific ports. Step 2 Verify that the trunk configuration is correct. |
set trunk mod_num/port_num [ on | off | desirable | auto ][ vlans ] show trunk |
Configuring VLAN trunk protocol
|
set vtp [domain domain name] [mode mode] [interval interval] [passwd passwd] |
| Configuring VTP pruning
Step 1 Enable the VTP pruning option. Step 2 Disable the VLAN pruning eligibility. Step 3 Enable VTP pruning eligibility. Step 4 Disable the VTP pruning option. |
set vtp [domain_name [domain_name]] [mode <mode_type>] [password <password_string>] pruning enable clear vtp pruneeligible <vlan_range> set vtp pruneeligible <vlan_range> set vtp [domain_name [domain_name]] [mode <mode_type>] [password <password_string>] pruning disable |
| Configuring Dynamic Port VLAN Membership
Step 1 Configure the IP address of the TFTP server on which the ASCII file resides. Step 2 Enable VMPS. |
set vmps storage <ip_addr> [filename] set vmps state <enable | disable> |
| Configuring Dynamic Ports on Clients
Step 1 Configure the VMPS IP address to be queried on the client. Step 2 Configure the VLAN membership assignment to a port. |
set vmps server <ipaddress> [primary] set port membership < mod_num / port_num> <dynamic | static > |
Multicasting saves bandwidth by forcing the network to replicate packets only when necessary and by allowing hosts to join and leave groups dynamically.
Table 1-8 contains a quick reference for Multicast and Multimedia configuration.
| Feature | Command |
|---|---|
Cisco Group Multicast Protocol
Configuring CGMP: Step 1 Enable CGMP on a device. Step 2 Configure multicast router ports. |
set cgmp enable set multicast router mod_num/port_num |
Broadcast/Multicast suppression
Configuring Broadcast/Multicast suppression:
|
|
Network Management software enables end stations such as computer systems and other network devices to recognize problems on the network and send alerts so that management entities can respond by executing operator notification, event logging, system shutdown, or automatic attempts at system repair.
Management entities can also poll end stations to check the values of certain variables and accept responses from agents that compile information about the managed devices. The agents provide information about the managed devices using a management protocol such as Simple Network Management Protocol (SNMP).
The console port of your Catalyst 5000 series switch is an EIA/TIA-232 interface to which you can connect a console terminal or modem. You can directly access the command-line interface or configure a Serial Line Internet Protocol (SLIP) interface to access network management functions, such as Telnet, ping, and SNMP.
Table 1-9 contains a quick reference for Network Management and Control configuration.
| Feature | Command |
|---|---|
Simple Network Management Protocol (SMNP)
Configuring SNMP: Step 1 Configure the SNMP community strings. Step 2 Assign a trap receiver address and community. If you enter incorrect information, use the clear snmp trap command to delete the entry. Then reenter the set snmp trap command again. Step 3 If desired, configure the switch so that it issues an authentication trap. |
set snmp trap rcvr_address rcvr_community
set snmp trap enable
|
Remote Monitoring (RMON)
Configuring RMON:
|
set snmp rmon enable |
Network Time Protocol
Configuring NTP in Broadcast Client Mode:
Configuring NTP in Client Mode: Step 1 Configure the address of the NTP server to be queried. Step 2 Enable the NTP broadcast client mode. Step 3 Set the NTP broadcast packet delay (optional). Step 4 Set the time zone (optional). |
set ntp broadcastclient enable set ntp server <ip-address> set ntp client enable set ntp broadcast delay <microseconds> set timezone <zone> <hours> [minutes] |
Domain Name System
Configuring DNS: Step 1 Set the address of the DNS server. Step 2 Set the domain name. Step 3 Enable DNS. |
set ip dns server <ip-addr> [primary] set ip dns domain <name> set ip dns <enable | disable> |
Login banner
Configuring Login banner: Step 1 Enter privileged mode. Step 2 Enter the message of the day. |
enable set banner motd |
Multiple Module Download
Configuring Multiple Module Download:
|
enable |
Security management controls access to network resources, so that designated areas are unavailable to unauthorized users.
Table 1-10 contains a quick reference for Network Security configuration.
| Feature | Command |
|---|---|
MAC Address Security
Configuring MAC Address Security:
|
set port security mod_num/port_num(s) enable [mac_addr] |
Terminal Access Controller Access Control System Plus (TACACS+)
Configuring TACACS+: Step 1 Enable TACACS+ authentication for login. Step 2 Enable TACACS+ authentication for enable. Step 3 Configure the key used to encrypt packets. Step 4 Configure the server on which the TACACS+ server daemon resides. Step 5 Configure the number of login attempts allowed to the TACACS+ server. Step 6 Set the timeout interval in which the server daemon must respond. |
set authentication login tacacs enable set authentication enable tacacs enable set tacacs key key set tacacs server ip_addr
set tacacs timeout N |
|
|