|
|
This chapter describes how to configure the Catalyst 5000 family Network Analysis Module.
 |
Note For complete syntax and usage information for the commands used in this chapter, refer to the Command Reference publication for your switch. |
This chapter consists of these sections:
|
Note These sections describe the Network Analysis Module configuration that can be done from the CLI of a Catalyst 5000 family switch. See the CiscoWorks2000 documentation for procedures required on the NMS. |
For Ethernet VLANs, the Network Analysis Module extends the RMON support provided by the supervisor engine software with the following (see the "Supported RMON and RMON2 MIB Objects" section for details):
The Network Analysis Module can analyze Ethernet VLAN traffic from either or both:
|
Note When monitoring a VLAN, a Fast Ethernet port, or more than two Ethernet ports, use a Supervisor Engine III in the system to ensure the most reliable SNMP access to the Network Analysis Module under heavy traffic conditions. |
The Network Analysis Module is managed and controlled from an SNMP management application, such as CiscoWorks2000 (see the "Using CiscoWorks2000" section).
Table 28-1 describes the Network Analysis Module default configuration.
| Feature | Default Setting |
|---|---|
SPAN (supervisor engine feature) | Disabled |
NetFlow Data Export | Disabled |
Extended RMON | Enabled |
Extended RMON Netflow | Disabled |
Extended RMON Vlanmode | Disabled |
Extended RMON Vlanagent | Disabled |
To configure the Network Analysis Module from the network management system (NMS), refer to the NMS documentation (see the "Using CiscoWorks2000" section). RMON domain configuration can be done only through SNMP from the NMS.
These sections describe how to use the CLI to configure the Network Analysis Module:
The Network Analysis Module can analyze Ethernet VLAN traffic from Ethernet or Fast Ethernet SPAN source ports, or you can specify an Ethernet VLAN as the SPAN source. To use the Network Analysis Module VLAN Monitor option, set a trunk port as the SPAN source port (for more information, see the "Enabling the VLAN Monitor Option" section).
|
Note For information on configuring NDE, refer to the Layer 3 Switching Software Configuration Guide--Catalyst 5000 Family, 4000 Family, 2926G Series, 2926 Series, 2948G, and 2980G Switches.. |
|
Note If you are using software release 5.4(2) and later, the password is not required. Skip steps 2 through 4 in the following procedure if your system is running a version 5.4(2) or later. |
To enable the NetFlow Monitor option, follow these steps:
Step 2 (Note that steps 2 through 4 are not required if you are using software release 5.4(2) and later.)
Obtain the Media Access Control (MAC) address of your Network Analysis Module by entering this command:
Console> show module mod_num
This example shows how to display the MAC address:
Console> show module 4 Mod Module-Name Ports Module-Type Model Serial-Num Status --- ------------------- ----- --------------------- --------- --------- ------- 4 1 Network Analysis/RMON WS-X5380 008175475 ok Mod MAC-Address(es) Hw Fw Sw --- -------------------------------------- ------ ---------- ----------------- 4 00-e0-14-10-18-00 0.100 4.1.1 4.3(1)
|
Note The MAC address in the example is 00-e0-14-10-18-00. |
Step 3 Access the URL specified on the NetFlow Monitor option license.
Step 4 Enter the registration key and the MAC address of the Network Analysis Module to generate the password for your Network Analyzer Module.
Step 5 Enter this command in privileged mode to enable the NetFlow Monitor option:
Console> set snmp extendedrmon netflow enable password
This example shows how to enable the NetFlow Monitor option and how to verify that it is enabled:
Console> (enable) set snmp extendedrmon netflow enable password Snmp extended RMON netflow enabled Console> (enable) show snmp RMON: Disabled Extended RMON: Enabled Extended RMON Netflow: Enabled Extended RMON Vlanmode: Disabled Extended RMON Vlanagent: Disabled <...output truncated...> Console> (enable)
Step 6 Enter this command in privileged mode to enable NDE:
Console> set mls nde enable
|
Note With a Network Analysis Module installed, you do not need to specify an external data collector with a set mls nde collector_ip [udp_port_number] command as described in the Layer 3 Switching Software Configuration Guide--Catalyst 5000 Family, 4000 Family, 2926G Series, 2926 Series, 2948G, and 2980G Switches.. Ignore messages that the host and port are not set. |
When the SPAN source is a trunk port and the VLAN Monitor option is enabled, the Network Analysis Module aggregates statistics by VLAN instead of the source MAC address.
To enable the VLAN Monitor option, perform this task in privileged mode:
Task | Command |
|---|---|
|
|
This example shows how to enable the VLAN Monitor option and how to verify that it is enabled:
Console> (enable) set snmp extendedrmon vlanmode enable Snmp extended RMON vlanmode enabled Console> (enable) show snmp RMON: Disabled Extended RMON: Enabled Extended RMON Netflow: Disabled Extended RMON Vlanmode: Enabled Extended RMON Vlanagent: Disabled <...output truncated...> Console> (enable)
|
Note The VLAN Agents option increases the load on the Network Analysis Module and might not be suitable for use on a heavily loaded switch, or when the switch is configured to analyze a high volume of network traffic. |
When the VLAN Agents option is enabled, the Network Analysis Module aggregates statistics by VLAN as well as by port.
To enable the VLAN Agents option, perform this task in privileged mode:
Task | Command |
|---|---|
|
|
This example shows how to enable the VLAN Agents option and how to verify that it is enabled:
Console> (enable) set snmp extendedrmon vlanagent enable Snmp extended RMON vlanagent enabled Console> (enable) show snmp RMON: Disabled Extended RMON: Enabled Extended RMON Netflow: Disabled Extended RMON Vlanmode: Disabled Extended RMON Vlanagent: Enabled <...output truncated...> Console> (enable)
The Network Analysis Module also supports these commands, which are described in the Command Reference publication for your switch:
| Command | Description |
|---|---|
clear config mod_num | Clears the configuration of the specified module |
clear config extendedrmon | Clears the Network Analysis Module RMON configuration from NVRAM |
clear counter mod_num | Clears the MAC and port counters on the specified Network Analysis Module |
clear log mod_num | Deletes all entries in the error log for the specified Network Analysis Module |
set module {enable | disable} mod_num | Enables or disables the module |
set module name mod_num | Sets the name of the module |
set port name mod_num/1 | Sets the name of the Network Analysis Module port |
show log mod_num | Displays the error logs for the specified Network Analysis Module |
show module [mod_num] | With a Network Analysis Module installed, displays "Network Analysis/RMON" under "Module-Type" |
show mac [mod_num[/1]] | Shows MAC counters |
show port [mod_num[/1]] | Shows port status and counters |
show port capabilities [mod_num[/1]] | Shows module information |
show port ifindex [mod_num[/1]] | Shows the module's SNMP ifindex |
show port status [mod_num[/1]] | Shows port status information |
show port trap [mod_num[/1]] | Shows port trap as disabled (cannot be enabled for the Network Analysis Module) |
show snmp |
|
show span |
|
show test [mod_num] | Displays the results of diagnostic tests |
download [mod_num] | Copies a software image from a specified host to the Flash memory of the Network Analysis module |
reset [mod_num] | Reboots the module. |
|
Note Entering a download command for a Network Analysis Module does not disconnect a Telnet session; ignore the message that says the command may disconnect your Telnet session. |
|
Note Any command not listed returns a "not supported" message. |
Posted: Tue Aug 8 17:18:06 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.