|
|
Use the set port broadcast command to set the broadcast/multicast suppression for one or more ports. The broadcast threshold limits the backplane traffic received from the module.
set port broadcast mod_num/port_num threshold[%]
mod _num | Number of the module. |
port_num | Number of the port. |
threshold | Number of packets-per-second of broadcast/multicast traffic allowed on the port or the percentage of total available bandwidth that can be used by broadcast/multicast traffic. Valid values are: 0 to 150000 packets per second or 0 to 100 percent. 0 pps or 100% unlimits broadcast traffic. |
% | (Optional) Keyword used if threshold is expressed as a percentage of total available bandwidth that can be used by broadcast/multicast traffic. |
The default value for the threshold is 100 percent.
Switch command.
Privileged.
This command is not supported on the Catalyst 4000 and 2948G series switches.
Although bandwidth-based broadcast/multicast suppression applies to all ports on a module, you must still specify a port number according to the syntax rules of the set port broadcast mod_num/port_num threshold [%] command. For example, if you specify port 3 on module 4 (4/3), broadcast/multicast suppression is applied to every port on module 4. You can specify any port number between 1 and 24.
Only the Ethernet switching module (10BaseT 48 port, Telco, WS-X5012) supports bandwidth-based broadcast/multicast suppression on a per-port basis.
This command is not supported by the RSM.
On a Token Ring module, uplink ports connect to different switching buses, so the software/firmware knows which SAMBA to set. This is different from other modules with SAMBA, where set applies to all ports, and the SAMBA of switching bus A (to which SAGE inband link is connected) cannot be set for broadcast suppression.
The packets-per-second option is not supported by the 1000BaseX switching module.
This example shows how to limit broadcast traffic to 500 packets per second on ports 2/1 through 3/24:
Console> (enable) set port broadcast 2/1-3/24 500
Ports 2/1-3/24 broadcast traffic limited to 500 packets.
Console> (enable)
This example shows how to limit broadcast traffic to 20 percent to all ports on module 4 (see "Usage Guidelines" for more information):
Console> (enable)set port broadcast 4/3 20%Port 4/1-24 broadcast traffic limited to 20%.Console> (enable)
This example shows how to allow unlimited broadcast traffic to all ports on module 4 (see "Usage Guidelines" for more information):
Console> (enable)set port broadcast 4/3 100%Port 4/1-24 broadcast traffic unlimited.Console> (enable)
Use the set port channel command to configure EtherChannel on Ethernet module ports.
set port channel {port_list} [on | off | desirable | auto]
port_list | Module and ports to bundle. |
on | (Optional) Keyword to force the port to channel without negotiation. PAgP packets are not exchanged. |
off | (Optional) Keyword to prevent the port from channeling. PAgP packets are not exchanged. |
desirable | (Optional) Keyword to place a port into an active negotiating state, in which the port initiates negotiations with other ports by sending PAgP packets. |
auto | (Optional) Keyword to place a port into a passive negotiating state, in which the port responds to PAgP packets it receives but does not initiate PAgP packet negotiation. |
The default system configuration has EtherChannel set to auto on all module ports.
Switch command.
Privileged.
Make sure that all ports in the channel are configured with the same port speed, duplex mode, and so forth. For more information on EtherChannel, refer to the "Configuring Ethernet and Fast Ethernet Switching Modules" chapter in the Software Configuration Guide for your switch.
Disable the port security feature on the channeled ports (see the set port security command).
For Catalyst 5000 and 2926G series switches, up to eight ports on the same switch are allowed in each administrative group.
On the 1000Base-X switching module (WS-X5410), only ports 1 through 4 and 5 through 8 can be channeled. Port 9 cannot be channeled to other ports.
On the Catalyst 4912G switch, ports 1-4, 5-8, and 9-12 can be channeled.
On the Catalyst 4000 and 2948G series switches, port channel group restrictions apply for each module. The following ports can be channeled:
This command is not supported by the RSM.
This command is not supported by the three-port Gigabit Ethernet switching module (WS-X5403).
This example shows how to enable Fast EtherChannel on ports 5-8 of Fast Ethernet module 2:
Console> (enable) set port channel 2/5-8 on Ports 2/5-8 channel mode set to on. Console> (enable)
This example shows how to disable Fast EtherChannel on ports 5-8 of Fast Ethernet module 2:
Console> (enable) set port channel 2/5-8 off Ports 2/5-8 disabled and channel mode set to off. Console> (enable)
Use the set port disable command to disable a port or a range of ports.
set port disable mod_num/port_num
mod _num | Number of the module. |
port_num | Number of the port. |
The default system configuration has all ports enabled.
Switch command.
Privileged.
This command is not supported by the RSM.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to disable a port using the set port disable command:
Console> (enable) set port disable 5/10 Port 5/10 disabled. Console> (enable)
Use the set port duplex command to configure the duplex type of an Ethernet or Fast Ethernet port or range of ports.
set port duplex mod_num/port_num {full | half}
mod_num | Number of the module. |
port_num | Number of the port. |
full | Keyword to specify full-duplex transmission. |
half | Keyword to specify half-duplex transmission. |
The default configuration for 10-Mbps and 100-Mbps modules has all Ethernet ports set to half duplex.
Switch command.
Privileged.
You can configure Ethernet and Fast Ethernet interfaces to either full duplex or half duplex.
The set port duplex command is not valid on the 24- and 48-port group switching modules (WS-X5020 and WS-X5223) or the RSM.
The set port duplex command is not valid when issued against a Token Ring port. Use the set tokenring portmode command instead. If you enter a set port duplex command, you are directed to use the proper command.
The Gigabit Ethernet switching modules can only be configured as full duplex.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to set port 1 on module 2 to full duplex:
Console> (enable) set port duplex 2/1 full Port 2/1 set to full-duplex. Console> (enable)
This example shows what the set port duplex command displays if entered against a Token Ring port:
Console> (enable) set port duplex 3/1 full Port 3/1 is Token Ring, use `set tokenring portmode' command instead Console> (enable)
Use the set port enable command to enable a port or a range of ports.
set port enable mod_num/port_num
mod _num | Number of the module. |
port_num | Number of the port. |
The default system configuration has all ports enabled.
Switch command.
Privileged.
This command is not supported on the RSM.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to enable port 3 on module 2:
Console> (enable) set port enable 2/3 Port 2/3 enabled. Console> (enable)
Use the set port filter command to configure a MAC address filter or a protocol filter for ports on the Token Ring module.
set port filter mod_num/port_num {mac_addr | protocol_type} {permit | deny}
mod_num | Number of the module. |
port_num | Number of the port on the module. |
mac_addr | MAC address contained in the packets to be filtered. You can enter this address in canonical format (00-11-33-44-55) or noncanonical format (00:11:22:33:44:55). |
protocol_type | Protocol type that you want to filter. For a list of the protocol types that you can filter, see through Table 2-10. |
permit | Keyword to specify that the filter can permit packets with the specified MAC address or protocol type. |
deny | Keyword to specify that the filter can deny packets with the specified MAC address or protocol type. |
The command has no default setting.
Switch command.
Privileged.
You can configure up to 16 MAC address filters or 16 protocol (eight SAPs and eight DSAPs) filters per port on the Token Ring module. Refer to through Table 2-10 for lists of SAPs and Ethertypes that you can use when defining protocol filters.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
Table 2-8 and Table 2-9 list the SAPs that you can use to define protocol classes.
| Hexadecimal Value | Description |
|---|---|
X'02' | LLC Sublayer Management |
X'06' | DoD Internet |
X'x6' | National Standards Bodies |
X'0E' | Proway Network Management |
X'4E' | Manufacturing Message Service |
X'7E' | ISO 8208 |
X'8E' | Proway Active Station List Maintenance |
X'FE' | OSI Network Layer Protocols |
X'42' | Bridge Spanning-Tree Protocol |
| Hexadecimal Value | Description |
|---|---|
X'04' | SNA Path Control Individual |
X'F0' | NetBIOS |
X'F4' | LAN Management Individual |
X'F8' | IMPL |
X'FC' | Discovery |
X'DC' | Dynamic Address Resolution |
X'D4' | Resource Management |
Table 2-10 lists the possible Ethertypes that you can use to define protocol filters.
| Hexadecimal Value | Description |
|---|---|
X'0000' through X'05DC' | IEEE 802.3 |
X'0600' | Xerox XNS IDP |
X'0800' | DoD IP |
X'0801' | X.75 Internet |
X'0802' | NBS Internet |
X'0803' | ECMA Internet |
X'0804' | CHAOSnet |
X'0805' | X.25 Level 3 |
X'0806' | ARP (for IP and CHAOS) |
X'6001' | DEC MOP Dump/Load Assistance |
X'6002' | DEC MOP Remote Console |
X'6003' | DEC DECnet Phase IV |
X'6004' | DEC LAT |
X'6005' | DEC DECnet Diagnostics |
X'6010' through X'6014' | 3Com Corporation |
X'7000' through X'7002' | Ungermann-Bass download |
X'7030' | Proteon |
X'7034' | Cabletron |
X'8035' | Reverse ARP |
X'8046' through X'8047' | AT&T |
X'8088' through X'808A' | Xyplex |
X'809B' | Kinetics Ethertalk (Appletalk over Ethernet) |
X'80C0' through X'80C3' | Digital Communications Associates |
X'80D5' | IBM SNA Services over Ethernet |
X'80F2' | Retix |
X'80F3' through X'80F5' | Kinetics |
X'80F7' | Apollo Computer |
X'80FF' through X'8103' | Wellfleet Communications |
X'8137' through X'8138' | Novell |
This example shows how to configure a port filter on port 2 MAC address 00:40:0b:01:bc:65 of module 3:
Console> (enable) set port filter 3/2 00:40:0b:01:bc:65 permit Port 3/2 filter Mac Address 00:40:0b:01:bc:65 set to permit. Console> (enable)
clear port filter
show port filter
Use the set port flowcontrol command to set the receive flow-control value for a specfied port.
set port flowcontrol {mod_num/port_num} {receive | send} {off | on | desired}
mod_num | (Optional) Number of the module. |
port_num | (Optional) Number of the port on the module. |
receive | Keyword to indicate whether the port can receive administrative status from a remote device. |
send | Keyword to indicate whether the local port can send administrative status to a remote device. |
off | Keyword, when used with receive, to turn off an attached device's ability to send flow-control packets to a local port. When used with send, turns off the local port's ability to send administrative status to a remote device. |
on | Keyword, when used with receive, to require that a local port receive administrative status from a remote device. When used with send, the local port sends administrative status to a remote device. |
desired | Keyword, when used with receive, to allow a local port to operate with an attached device that is required to send flow-control packets, or with an attached device that is not required to but may send flow-control packets. When used with send, the local port sends administrative status to a remote device if the remote device supports it. |
Default for receive is off. Default for send is desired. Default on multiplexed ports is on. The exception to these defaults applies to the 18-port Gigabit module. The defaults are shown below:
Switch command.
Privileged.
This command is not supported for the RSM.
This command is supported on Gigabit Ethernet and some Fast Ethernet ports. If the port does not support the command, the following message appears:
Feature not supported on Port N/N.
where N/N is the module and port number.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
These examples show how to use the set port flowcontrol command set:
Console> (enable) set port flowcontrol receive 5/1 on Port 5/1 flow control receive administration status set to on (port will require far end to send flowcontrol) Console> (enable) Console> (enable) set port flowcontrol receive 5/1 desired Port 5/1 flow control receive administration status set to desired (port will allow far end to send flowcontrol if far end supports it) Console> (enable) Console> (enable) set port flowcontrol receive 5/1 off Port 5/1 flow control receive administration status set to off (port will not allow far end to send flowcontrol) Console> (enable) Console> (enable) set port flowcontrol send 5/1 on Port 5/1 flow control send administration status set to on (port will send flowcontrol to far end) Console> (enable) Console> (enable) set port flowcontrol send 5/1 desired Port 5/1 flow control send administration status set to desired (port will send flowcontrol to far end if far end supports it) Console> (enable) Console> (enable) set port flowcontrol send 5/1 off Port 5/1 flow control send administration status set to off (port will not send flowcontrol to far end) Console> (enable)
Use the set port gmrp command to enable or disable GMRP on the specified ports in all VLANs.
set port gmrp {mod/ports...} {enable | disable}
mod/ports... | Module number and port number list. |
enable | Keyword to enable GMRP on a specifed port. |
disable | Keyword to disable GMRP on a specifed port. |
The default is GMRP is disabled.
Switch command.
Privileged.
You can enter this command even when GMRP is not enabled, but the values come into effect only when GMRP is enabled using the set gmrp enable command.
This example shows how to enable GMRP on module 3, port 1:
Console> (enable) set port gmrp enable 3/1 GMRP enabled on port(s) 3/1. GMRP feature is currently disabled on the switch. Console> (enable)
This example shows how to disable GMRP on module 3, ports 1 through 5:
Console> (enable) set port gmrp disable 3/1-5 GMRP disabled on port(s) 3/1-5. Console> (enable)
Use the set port gvrp command to enable or disable GVRP the specified ports in all VLANs.
set port gvrp {mod/ports...} {enable | disable}
mod/ports... | Module number and port number list. |
enable | Keyword to enable GVRP on the specifed ports. |
disable | Keyword to disable GVRP on the specifed ports. |
The default is GVRP is disabled.
Switch command.
Privileged.
When VTP pruning is enabled, VTP pruning runs on all the GVRP-disabled trunks.
To run GVRP on a trunk, GVRP needs to be enabled both globally on the switch and enabled individually on the trunk.
You can configure GVRP on a port even when GVRP is globally disabled. However, the port will not become a GVRP participant until GVRP is also globally enabled.
GVRP can only be enabled on an 802.1Q trunk.
If you enter the command without specifying the port number, GVRP is affected globally in the switch.
This example shows how to enable GVRP on module 3, port 2:
Console> (enable) set port gvrp 3/2 enable GVRP enabled on 3/2. Console> (enable)
This example shows how to disable GVRP on module 3, port 2:
Console> (enable) set port gvrp 3/2 disable GVRP disabled on 3/2. Console> (enable)
This example shows what happens if you try to enable GVRP on a port that is not an 802.1Q trunk:
Console> (enable) set port gvrp 4/1 enable Failed to set port 4/1 to GVRP enable. Port not allow GVRP. Console> (enable)
This example shows what happens if you try to enable GVRP on a specific port when GVRP has not first been enabled using the set gvrp command:
Console> (enable) set port gvrp 5/1 enable GVRP enabled on 5/1. GVRP feature is currently disabled on the switch. Console> (enable)
This example shows what happens if you try to enable GVRP on a specific port when GVRP has not first been enabled using the set gvrp command:
Console> (enable) set port gvrp 5/1 enableGVRP enabled on port(s) 5/1.GVRP feature is currently disabled on the switch.Console> (enable)
show gvrp configuration
set gvrp
clear gvrp statistics
Use the set port level command to set the priority level of a port or range of ports on the switching bus.
set port level mod_num/port_num {normal | high}
mod_num | Number of the module. |
port_num | Number of the port on the module. |
normal | Keyword to set the port priority to normal. |
high | Keyword to set the port priority to high. |
The default configuration has all ports at normal priority level.
Switch command.
Privileged.
Packets traveling through a port set at normal priority are served only after packets traveling through a port set at high priority are served.
This command is not supported for the RSM.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to set the priority level for port 2 on module 1 to high:
Console> (enable) set port level 1/2 high Port 1/2 port level set to high. Console> (enable)
set port disable
set port enable
set port name
set port speed
show port
Use the set port membership command to dynamically or statically assign membership of a port or range of ports to a VLAN.
set port membership mod_num/port_num {dynamic | static}
mod_num | Module number. |
port_num | Port number. |
dynamic | Keyword to dynamically assign VLAN membership to a port. |
static | Keyword to statically assign VLAN membership to a port. |
Default port membership is static.
Switch command.
Privileged.
When a port is assigned a VLAN dynamically, the show port command output identifies the VLAN as dynamic and, if the dynamic port is shut down by a VMPS, its status is shown as shutdown.
This command is not supported on the RSM.
This command is not supported by the three-port Gigabit Ethernet switching module (WS-X5403).
Token Ring does not currently support dynamic VLAN membership---all Token Ring ports are static. If you issue a set port membership dynamic command against a Token Ring port, the following message is generated:
Feature not supported for Module x.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
These examples show how to assign VLAN membership to one or more ports using the set port membership command:
Console> (enable) set port membership 3/1-3 dynamic Ports 3/1-3 vlan assignment set to dynamic. Spantree port fast start option enabled for ports 3/1-3. Console> (enable) Console> (enable) set port membership 4/2 dynamic Ports 4/1-12 vlan assignment set to dynamic. Spantree port fast start option enabled for port 4/2. Console> (enable)
Use the set port name command to configure a name for a port.
set port name mod_num/port_num [port_name]
mod_num | Number of the module. |
port_num | Number of the port. |
port_name | (Optional) Name of the port. |
The default configuration has no port name configured for any port.
Switch command.
Privileged.
If you do not specify the name string, the port name is cleared.
This command is not supported for the RSM.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to set port 1 on module 4 to Snowy:
Console> (enable) set port name 4/1 Snowy Port 4/1 name set. Console> (enable)
set port disable
set port duplex
set port enable
set port speed
set port trap
show port
Use the set port negotiation command to enable or disable the link negotiation protocol on the specified port.
set port negotiation mod_num/port_num [enable | disable]
mod_num | Number of the module. |
port_num | Number of the port. |
enable | (Optional) Keyword to enable the link negotiation protocol. |
disable | (Optional) Keyword to disable the link negotiation protocol. |
The default is link negotiation protocol enabled.
Switch command.
Privileged.
This command is supported on Gigabit Ethernet and some Fast Ethernet ports. If the port does not support the command, the following message appears (where N/N is the module and port number):
Feature not supported on Port N/N.
The ports on both ends of a link must have the same setting. The link will not come up if the ports at each end of the link are set inconsistently (link negotiation is enabled on one port and disabled on the other port).
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to disable link negotiation protocol on port 1, module 4:
Console> (enable) set port negotiation 4/1 disable Link negotiation protocol disabled on port 4/1. Console> (enable)
Use the set port protocol command to enable or disable protocol membership of ports.
set port protocol mod_num/port_num {ip | ipx | group} {on | off | auto}
mod_num | Number of the module. |
port_num | Number of the port. |
ip | Keyword to specify IP protocol. |
ipx | Keyword to specify IPX protocol. |
group | Keyword to specify AppleTalk, DECnet, and VINES protocols. |
on | Keyword to indicate the port will receive all the flood traffic for that protocol. |
off | Keyword to indicate the port will not receive any flood traffic for that protocol. |
auto | Keyword to indicate the port will be added to the protocol group only after receiving packets of the specific protocol. |
By default, ports are configured to on for the IP protocol groups and auto for IPX and Group protocols.
Switch command.
Privileged.
Protocol filtering is supported only on nontrunking Ethernet, Fast Ethernet, and Gigabit Ethernet ports. Trunking ports are always members of all the protocol groups.
If the port configuration is set to auto, the port initially does not receive any flood packets for that protocol. When the corresponding protocol packets are received on that port, the supervisor engine detects this and adds the port to the protocol group.
Ports configured as auto are removed from the protocol group if no packets are received for that protocol within a certain period of time. This aging time is set to 60 minutes. They are also removed from the protocol group on detection of a link down.
Protocol filtering is supported on MLS-based Catalyst 5000 and 2926G series switches and Catalyst 4000 and 2948G series switches.
VINES protocol is not supported by the Catalyst 4000 and 2948G series switches.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to disable IPX protocol membership of port 1 on module 2:
Console> (enable) set port protocol 2/1 ipx off IPX protocol disabled on port 2/1. Console> (enable)
This example shows how to enable automatic IP membership of port 1 on module 5:
Console> (enable) set port protocol 5/1 ip auto IP protocol set to auto mode on module 5/1. Console> (enable)
Use the set port qos cos command to set the CoS value for all unclassified frames.
set port qos mod/ports.. cos cos_value
mod/ports.. | Number of the module and the ports. |
cos_value | CoS value; valid values are 0 through 7. |
The default CoS on all ports is 0.
Switch command.
Privileged.
This example shows how to set the default value on a port:
Console> (enable)set port qos 2/1 cos 3Port 2/1 qos cos set to 3Console> (enable)
clear port qos cos
show qos info
Use the set port security command to configure port security on a port or range of ports on an Ethernet module.
set port security mod/ports... {enable | disable} [mac_addr]
mod | Number of the module. |
ports... | Number of the ports. |
enable | Keyword to enable port security. |
disable | Keyword to disable port security. |
mac_addr | (Optional) Secure MAC address of the enabled port. |
The default configuration has port security disabled.
Switch command.
Privileged.
If the MAC address is not given, the command turns on learning mode so that the first MAC address seen on the port becomes the secure MAC address.
If you issue this command against a Token Ring port, the following message is generated:
Feature not supported for Module x.
This command is not supported by the three-port Gigabit Ethernet switching module (WS-X5403).
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to set port security with a learned MAC address:
Console> (enable)set port security 3/1 enablePort 3/1 port security enabled with the learned mac address.Console> (enable)
This example shows how to set port security with a specific MAC address:
Console> (enable)set port security 3/1 enable 01-02-03-04-05-06Port 3/1 port security enabled with 01-02-03-04-05-06 as the secure mac address.Console> (enable)
Use the set port speed command to configure the speed of a port interface. You can configure the speed of an Ethernet interface.
set port speed mod_num/port_num {4 | 10 | 16 | 100 | auto}
mod_num | Number of the module. |
port_num | Number of the port on the module. |
4 | 10 | 16 | 100 | auto | Keyword to set a port speed to 4, 10, 16, 100 Mbps, or autospeed detection mode. |
The default configuration has all module ports set to auto.
Switch command.
Privileged.
You can configure Ethernet interfaces on the 10/100-Mbps Ethernet switching modules to either 10 Mbps or 100 Mbps, or to autosensing mode, allowing them to sense and distinguish between 10-Mbps and 100-Mbps port transmission speeds and full-duplex or half-duplex port transmission types at a remote port connection. If you set the interfaces to autosensing mode, they configure themselves automatically to operate at the proper speed and transmission type.
You can configure Token Ring interfaces on the Token Ring module to either 4 Mbps or 16 Mbps, or to autospeed detection mode, allowing them to sense and distinguish between 4-Mbps and 16-Mbps port transmission speed. If you set the interfaces to autospeed detection mode, they automatically configure themselves to operate at the proper speed.
If you change the transmission speed of a port that is open to 4 or 16 Mbps, the port will close and reopen at the new transmission speed. If a port closes and reopens on an existing ring using a transmission speed different from that which the ring is operating, the ring will beacon.
If you set the port speed to auto, duplex mode is automatically set to auto.
The 4 and 16 port-speed options are not supported by the Catalyst 4000 and 2948G series switches.
If the ports on the Token Ring module are configured to detect the speed of the ring automatically, the first port inserted on the ring does not set the speed, because it is unable to detect the speed.
This command is not supported by the Gigabit Ethernet switching modules; port speed is factory set to 1000.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to configure port 1 on module 2 to auto:
Console> (enable) set port speed 2/1 auto Port 2/1 speed set to auto-sensing mode. Console> (enable)
This example shows how to configure port 2 on module 2 port speed to 10 Mbps:
Console> (enable) set port speed 2/2 10 Port 2/2 speed set to 10 Mbps. Console> (enable)
This example shows how to configure port 4 on module 3 port speed to 16 Mbps:
Console> (enable) set port speed 3/4 16 Port(s) 3/4 speed set to 16Mbps. Console> (enable)
set port disable
set port enable
set port name
set port trap
show port
Use the set port trap command to enable or disable the operation of the standard SNMP link trap (up or down) for a port or range of ports.
set port trap mod_num/port_num {enable | disable}
mod_num | Number of the module. |
port_num | Number of the port. |
enable | Keyword to activate the SNMP link trap. |
disable | Keyword to deactivate the SNMP link trap. |
The default configuration has all port traps disabled.
Switch command.
Privileged.
The Catalyst 2948G is a fixed configuration switch. All ports are located on "module 2;" for this reason, if you enter 1/N for the module/port number, an error message is displayed.
This example shows how to enable the SNMP link trap for module 1, port 2:
Console> (enable) set port trap 1/2 enable Port 1/2 up/down trap enabled. Console> (enable)
set port disable
set port duplex
set port enable
set port name
set port speed
show port
Use the set prompt command to change the prompt for the CLI.
set prompt prompt_string
prompt_string | String to use as the command prompt. |
The default configuration has the prompt set to Console>.
Switch command.
Privileged.
In Catalyst 5000 and 2926G series software release 4.1(1) and later, and Catalyst 4000 and 2948G series software release 4.4 and later, if you use the set system name command to assign a name to the switch, the switch name is used as the prompt string. However, if you specify a different prompt string using the set prompt command, that string is used for the prompt.
This example shows how to set the prompt to system100>:
Console> (enable) set prompt system100> system100> (enable)
Use the set protocolfilter command to activate or deactivate protocol filtering.
set protocolfilter {enable | disable}
enable | Keyword to activate protocol filtering. |
disable | Keyword to deactivate protocol filtering. |
The default configuration has protocol filtering disabled.
Switch command.
Privileged.
This example shows how to activate protocol filtering:
Console> (enable) set protocolfilter enable Protocol filtering enabled on this switch. Console> (enable)
This example shows how to deactivate protocol filtering:
Console> (enable) set protocolfilter disable Protocol filtering disabled on this switch. Console> (enable)
Use the set qos command to turn on or turn off QoS functionality on the switch.
set qos enable | disable
enable | Keyword to activate QoS functionality. |
disable | Keyword to deactivate QoS functionality. |
The default is QoS functionality is disabled. Refer to Table 2-1 for the QoS default settings.
Switch command.
Privileged.
You can change the QoS default configuration. Refer to the Software Configuration Guide for your switch for additional information.
When QoS is enabled and disabled in quick succession (within 2 seconds of each other), the ports may go through a line up and down due to a modification of the txq-ratio size, and you might receive a bus timeout.
This example shows how to enable QoS:
Console> (enable)set qos enable<...trunking reset messages deleted ...>QoS is enabled.Console> (enable)
This example shows how to disable QoS:
Console> (enable)set qos disable<...trunking reset messages deleted ...>QoS is disabled.Console> (enable)
Use the set qos ip-filter command to create access control entries (ACEs) with Layer 3 values or with both Layer 3 and 4 values.
set qos ip-filter cos {src_ip_addr_spec} {dest_ip_addr_spec} [before ACE# | modify ACE#]
cos | CoS to assign to packets matching this filter; valid values are from 0 to 7. |
src_ip_addr_ spec | Source IP address. See the Usage Guidelines below for the format. |
dest_ip_addr_ spec | Destination IP address. See the Usage Guidelines below for the format. |
before ACE# | (Optional) Keyword and variable to insert an ACE in front of the specified ACE. |
modify ACE# | (Optional) Keyword and variable to replace an ACE with the new ACE. |
protocol | Type of protocol that the ACE matches; valid values are tcp, udp, or any. |
src_port | Number of the source port. |
dest_port | Number of the destination port. |
This command has no default setting.
Switch command.
Privileged.
If you do not specify the before ACE# argument, the new entry is placed after the last. The ACE number of any entry is its current position in the list. These can be viewed by the show qos ip-filter command.
If you do not enter the protocol variable, the set qos ip-filter command specifies an ACE that is independent of the Layer 4 protocol and port. If you enter the protocol variable, the command specifies an ACE that matches specific Layer 4 protocols and ports.
The dest_ip_addr_spec and src_ip_addr_spec variables are entered in the following format:
{any | {host ip_addr} | {ip_addr wildcard_mask}}where:
Layer 4 ports can only be specified for unicast addresses. If the destination address specifies a multicast address, and you enter the set qos ip-filter cos {dest_ip_addr} {src_ip_addr mask} proto dst_port src_port] [before ACE#] command, an error is displayed. If the destination address includes multicast addresses and the same command is used, a message displays that the command only applies to unicast addresses.
If you enter a 0 for the src_port variable, it means any source port matches.
If you enter a 0 for the dest_port variable, it means any destination port matches.
This example shows how to create ACEs and an ACE within the list and verify the configuration using the show qos ip-filter command:
Console>(enable)set qos ip-filter 7 100.100.1.1 0.0.0.255 200.200.1.1 0.0.0.255qos ip-filter is set successfully.Console>(enable)
Console> (enable)show qos ipThere are 1 IP filter(s).ACE# Dest IP and Mask Src IP and Mask---- -------------------------------- --------------------------------1 100.100.1.1 0.0.0.255 200.200.1.1 0.0.0.255Protocol Dst Port Src Port CoS-------- -------- -------- ---both 0 0 7Console> (enable)
Console> (enable)set qos ip-filter 4 120.100.1.1 0.0.0.255 210.210.1.1 0.0.0.255 tcp 23 47qos ip-filter is set successfully.Console>(enable)
Console> (enable)show qos ipThere are 2 IP filter(s).ACE# Dest IP and Mask Src IP and Mask---- -------------------------------- --------------------------------1 100.100.1.1 0.0.0.255 200.200.1.1 0.0.0.255Protocol Dst Port Src Port CoS-------- -------- -------- ---both 0 0 72 120.100.1.1 0.0.0.255 210.210.1.1 0.0.0.255Protocol Dst Port Src Port CoS-------- -------- -------- ---tcp 23 47 4Console>(enable)Console> (enable)set qos ip-filter 1 20.20.20.1 0.255.255.255 30.30.1.1 0.255.255.255 before 7qos ip-filter is set successfully.Console>(enable)Console> (enable)show qos ipThere are 3 IP filter(s).ACE# Dest IP and Mask Src IP and Mask---- -------------------------------- --------------------------------1 20.20.20.1 0.255.255.255 30.30.1.1 0.255.255.255Protocol Dst Port Src Port CoS-------- -------- -------- ---both 0 0 12 100.100.1.1 0.0.0.255 200.200.1.1 0.0.0.255Protocol Dst Port Src Port CoS-------- -------- -------- ---both 0 0 73 120.100.1.1 0.0.0.255 210.210.1.1 0.0.0.255Protocol Dst Port Src Port CoS-------- -------- -------- ---tcp 23 47 4Console> (enable)
show qos ip
clear qos ip-filter
Use the set qos mac-cos command to set the CoS value to the MAC address and VLAN pair.
set qos mac-cos dest_mac vlan cos
dest_mac | MAC address of the destination host. |
vlan | Number of the VLAN; valid values are 1 to 1001. |
cos | CoS value; valid values are 0 to 7, with the higher numbers representing higher priority. |
This command has no default setting.
Switch command.
Privileged.
The set qos mac-cos command creates a permanent CAM entry that remains in the CAM table until the active supervisor is reset.
The port associated with the MAC address is learned when the first packet with this source MAC address is received. These entries are not aged out.
The CoS for a packet going to the specified MAC address is overwritten even if it is coming from a trusted port.
If you enter the show cam command, entries made with the set qos mac-cos command are displayed as dynamic because QoS considers them to be dynamic, but they do not age out.
This example shows how to assign the CoS value 3 to VLAN 2:
Console> (enable)set qos mac-cos 0f-ab-12-12-00-13 2 3CoS 3 is assigned to 0f-ab-12-12-00-13 vlan 2.Console> (enable)
clear qos mac-cos
show qos mac-cos
Use the set qos map command to associate CoS values to a transmit queue drop threshold.
set qos map port_type q# thr# cos coslist
port_type | Only valid value for port_type is 1q4t. |
q# | Number of queue. The only valid value is 1. |
thr# | Value determined by the number of drop thresholds available at a port; valid values are 1 to 4, with the higher value indicating lower chances of being dropped. |
cos | Keyword used to specify CoS values. |
coslist | List of CoS values between 0 to 7, with the higher numbers representing higher priority. |
The default mappings for all ports are shown in Table 2-1.
Switch command.
Privileged.
This example shows how to assign the CoS values 1, 2, and 5 to the first queue and the first drop threshold in that queue:
Console> (enable) set qos map 1q4t 1 1 cos 1,2,5
Qos tx priority queue and threshold mapped to cos successfully.
Console> (enable)
This example shows how to assign the CoS values to queue 1 and threshold 2 in that queue:
Console> (enable) set qos map 1q4t 1 2 cos 3-4,7
Qos tx priority queue and threshold mapped to cos successfully.
Console> (enable)
Use the set qos router-mac command to configure the router MAC address.
set qos router-mac mac_address vlan
mac_address | MAC address contained in the packets to be filtered. You can enter this address in canonical format (00-11-33-44-55) or noncanonical format (00:11:22:33:44:55). |
vlan | Number of the VLAN; valid values are 1 to 1005. |
This command has no default setting.
Switch command.
Privileged.
This command is not supported by the MLS-RP.
This example shows how to set the router MAC address on a specific VLAN:
Console> (enable) set qos router-mac 00-40-0b-30-03-48 2Router MAC/Vlan is set for QoS.Console> (enable)
clear qos router-mac
show qos mac-cos
Use the set qos wred-threshold command to specify the transmit queue drop thresholds on all ports in the switch.
set qos wred-threshold port_type [rx | tx] queue {q# thr1 thr2 thr3 thr4}
port_type | Only valid value for port_type is 1q4t. |
rx | (Optional) Keyword to specify input queuing. This keyword is not supported. |
tx | (Optional) Keyword to specify output queuing. |
queue | Keyword to specify the queue value. |
q# | Number of queue. The only valid value is 1. |
thr# | Value of threshold; valid values are 1 to 100 percent. |
The defaults are output queuing and the threshold values are 10%, 20%, 40%, and 100%.
Switch command.
Privileged.
The number preceding the t letter in the port_type (1q4t) determines the number of threshold values the hardware supports. For example, with 1q4t, the number of thresholds specified is four.
The number preceding the q letter in the port_type determines the number of the queues that the hardware supports. For example, with 1q4t, the number of queues specified is one.
The transmit drop threshold percentages specified select a buffer usage level where each threshold applies. The percentages to buffer usage level are as follows:
Due to the granularity of programming the hardware, the values set in hardware will be close approximations of the values provided.
This example shows how to configure the transmit queue drop thresholds.
Console> (enable) set qos wred-threshold 1q4t tx queue 1 30 50 80 100
Transmit drop thresholds for queue 1 set at 30% 50% 80% 100%
Console> (enable)
Posted: Thu Feb 10 09:08:56 PST 2000
Copyright 1989 - 2000©Cisco Systems Inc.