|
|
This chapter describes how to configure the supervisor engine software, including IP address and subnet mask assignment, default gateway configuration, and password configuration.
This chapter consists of these sections:
TheCatalyst 6000 family switches have two configurable IP management interfaces; the in-band (sc0) interface and the SLIP (sl0) interface.
The in-band (sc0) management interface is connected to the switching fabric and participates in all the functions of a normal switch port, such as spanning tree, Cisco Discovery Protocol (CDP), VLAN membership, and so forth. The out-of-band management interface (sl0) is not connected to the switching fabric and does not participate in any of these functions.
IP address for Catalyst not configured BOOTP will commence after the ports are online
After the ports on all installed modules come online, the switch attempts to obtain an IP address for the sc0 interface by broadcasting 10 Bootstrap Protocol (BOOTP) requests and 10 Reverse Address Resolution Protocol (RARP) requests using the last MAC address in the MAC address range for the supervisor engine. If a BOOTP or RARP response is received, the switch sets the sc0 interface IP address according to the contents of the reply. If no response is received, the sc0 interface IP address remains set to 0.0.0.0.
When you configure the IP address, subnet mask, and broadcast address (and, on the sc0 interface, VLAN membership) of the sc0 interface, you can access the switch through Telnet or SNMP. When you configure the SLIP (sl0) interface, you can open a point-to-point connection to the switch through the console port from a workstation.
All IP traffic generated by the switch itself (for example, a Telnet session opened from the switch to a host) is forwarded according to the entries in the switch IP routing table. For intersubnetwork communication to occur, you must configure at least one default gateway for the sc0 interface. The switch IP routing table is used to forward traffic originating on the switch only, not for forwarding traffic sent by devices connected to the switch.
You can configure classless interdomain routing (CIDR) routes, such as IP supernets, in the switch IP routing table. The switch uses the longest-match network address in the IP routing table to determine which gateway to use to forward IP traffic.
Table 3-1 shows the default supervisor engine configuration. For information on the default configuration for supervisor engine uplinks, refer to "Configuring Ethernet, Fast Ethernet, and Gigabit Ethernet Switching."
| Feature | Default Value |
|---|---|
Administrative connection | Normal mode |
Global system information |
|
System clock | No value for system clock time |
Passwords | No passwords configured for normal mode or enable mode (press the Return key) |
System prompt | |
In-band (sc0) interface |
|
Default gateway address | Set to 0.0.0.0 with a metric of 0 |
SLIP1 (sl0) interface |
|
| 1SLIP=Serial Line Internet Protocol |
These sections describe how to configure the supervisor engine software:
You can configure the switch using the set, show, and clear commands. Enter set commands to change switch parameters. Enter show commands to verify the configuration. Use clear commands (or, in some cases, set commands) to overwrite or erase configuration parameters.
Before you configure the supervisor engine software, obtain the following information:
Make sure the terminal is connected to the switch and that the switch and terminal are on. Perform this task to establish a console port connection to the switch:
| Task | Command |
|---|---|
Step 1 Access the switch command-line interface (CLI) using the appropriate commands or application on the terminal (for example, using the tip command on a UNIX system). |
|
Step 2 At the Enter password: prompt, press Return. |
|
Step 3 Enter privileged mode. | enable |
Step 4 At the Enter password: prompt, press Return. |
|
Before you can Telnet to the switch or use SNMP to manage the switch, you must assign an IP address to either the in-band (sc0) logical interface or the management Ethernet (me1) interface.
You can specify the subnet mask (netmask) using the number of subnet bits or using the subnet mask in dotted decimal format.
For information on obtaining an IP address from a BOOTP or RARP server, see the "Using BOOTP or RARP to Obtain an IP Address" section.
To set the IP address and VLAN membership of the in-band (sc0) management interface, perform this task in privileged mode:
| Task | Command |
|---|---|
set interface sc0 [ip_addr[/netmask] [broadcast]] | |
Step 2 Assign the in-band interface to the proper VLAN (make sure the VLAN is associated with the network to which the IP address belongs). | set interface sc0 [vlan] |
Step 3 If necessary, bring the interface up. | set interface sc0 up |
Step 4 Verify the interface configuration. | show interface |
This example shows how to assign an IP address, specify the number of subnet bits, and specify the VLAN assignment for the in-band (sc0) interface:
Console> (enable) set interface sc0 172.20.52.124/29 Interface sc0 IP address and netmask set. Console> (enable) set interface sc0 5 Interface sc0 vlan set. Console> (enable)
This example shows how to assign the same IP address, specify the subnet mask in dotted decimal format, specify the VLAN assignment, and verify the configuration:
Console> (enable) set interface sc0 172.20.52.124/255.255.255.248
Interface sc0 IP address and netmask set.
Console> (enable) set interface sc0 5
Interface sc0 vlan set.
Console> (enable) show interface
sl0: flags=51<UP,POINTOPOINT,RUNNING>
slip 0.0.0.0 dest 0.0.0.0
sc0: flags=63<UP,BROADCAST,RUNNING>
vlan 5 inet 172.20.52.124 netmask 255.255.255.248 broadcast 172.20.52.17
Console> (enable)
The supervisor engine sends IP packets with unresolved destination IP addresses to the default gateway (typically a router). The switch does not use the IP routing table to forward traffic from connected devices, only IP traffic generated by the switch itself (for example, Telnet, TFTP, and ping).
You can define up to three default IP gateways. Use the primary keyword to give a default IP gateway higher priority than other default gateways. If no primary default gateway is specified, the first gateway configured is the primary gateway. If more than one gateway is designated as primary, the last primary gateway configured is the primary default gateway.
Defining multiple default gateways provides redundancy; if the primary default gateway fails, the switch uses the secondary default gateways in the order in which they were configured.
To specify one or more default gateways, perform this task in privileged mode:
| Task | Command |
|---|---|
Step 1 Configure a default IP gateway address for the switch. | set ip route default gateway [metric] [primary] |
Step 2 (Optional) Configure additional default gateways for the switch. | set ip route default gateway [metric] [primary] |
Step 3 Verify that the default gateways appear correctly in the IP routing table. | show ip route |
This example shows how to configure three default gateways on the switch and how to verify the default gateway configuration:
Console> (enable) set ip route default 10.1.1.1 primary Route added. Console> (enable) set ip route default 10.1.1.10 Route added. Console> (enable) set ip route default 10.1.1.20 Route added. Console> (enable) show ip route Fragmentation Redirect Unreachable ------------- -------- ----------- enabled enabled enabled The primary gateway: 10.1.1.1 Destination Gateway Flags Use Interface ----------------------- ----------------------- ------ ---------- --------- default 10.1.1.20 G 0 sc0 default 10.1.1.10 G 0 sc0 default 10.1.1.1 UG 12 sc0 10.0.0.0 10.1.1.100 U 0 sc0 default default UH 0 sl0 Console> (enable)
Use the SLIP (sl0) interface for point-to-point SLIP connections between the switch and an IP host.
| Caution You must use the console port for the SLIP connection. When the SLIP connection is enabled and SLIP is attached on the console port, an EIA/TIA-232 terminal cannot connect via the console port. If you are connected to the switch CLI through the console port and you enter the slip attach command, you will lose the console port connection. Use Telnet to access the switch, enter privileged mode, and enter the slip detach command to restore the console port connection. |
To enable and attach SLIP on the console port, perform this task:
| Task | Command |
|---|---|
Step 1 Access the switch from a remote host with Telnet. | telnet {host_name | ip_addr} |
Step 2 Enter privileged mode on the switch. | enable |
Step 3 Set the console port SLIP address and the destination address of the attached host. | set interface sl0 slip_addr dest_addr |
Step 4 Enable SLIP for the console port. | slip attach |
Step 5 Verify the SLIP interface configuration. | show interface |
This example shows how to configure SLIP on the console port and verify the configuration:
sparc20% telnet 172.20.52.71
Trying 172.20.52.71 ...
Connected to 172.20.52.71.
Escape character is '^]'.
Cisco Systems Console
Enter password:
Console> enable
Enter password:
Console> (enable) set interface sl0 10.1.1.1 10.1.1.2
Interface sl0 slip and destination address set.
Console> (enable) slip attach
Console Port now running SLIP.
Console> (enable) show interface
sl0: flags=51<UP,POINTOPOINT,RUNNING>
slip 10.1.1.1 dest 10.1.1.2
sc0: flags=63<UP,BROADCAST,RUNNING>
vlan 523 inet 172.20.52.71 netmask 255.255.255.224 broadcast 172.20.52.95
Console> (enable)
The switch makes BOOTP and RARP requests only if the sc0 interface IP address is set to 0.0.0.0 when the switch boots up. This address is the default for a new switch or a switch whose configuration file has been cleared using the clear config all command. BOOTP and RARP requests are only broadcast out the sc0 interface. The switch transmits 10 BOOTP and 10 RARP requests. If no reply is received, the sc0 interface IP address remains set to 0.0.0.0.
The me1 interface does not participate in BOOTP or RARP. If both the sc0 and me1 interfaces are unconfigured (IP address 0.0.0.0), the me1 interface is brought down to allow the switch to broadcast BOOTP or RARP requests on the sc0 interface. If the me1 interface is configured and the sc0 interface is not, BOOTP and RARP requests are not sent. Similarly, if the sc0 interface is not configured but the interface is configured down, BOOTP and RARP requests are not sent.
To use BOOTP or RARP to obtain an IP address for the switch, perform this task:
| Task | Command |
|---|---|
Step 1 Make sure you have BOOTP or RARP server code installed correctly on the workstation. |
|
Step 2 Obtain the last address in the MAC address range for module 1 (the supervisor engine). This address is displayed under the MAC-Address(es) heading. | show module |
Step 3 Add an entry in the BOOTP or RARP configuration file for each switch. Press Return after each entry to create a blank line between each entry. |
|
Step 4 Set the sc0 interface IP address to 0.0.0.0. | set interface sc0 0.0.0.0 |
Step 5 Reset the switch. The switch broadcasts BOOTP and RARP requests only when the switch boots up. | reset system |
Step 6 When the switch reboots, confirm that the sc0 interface IP address is set correctly. | show interface |
To set the user mode and privileged mode passwords, perform this task in privileged mode:
| Task | Command |
|---|---|
Step 1 Set the password for normal mode. Enter your old password (press Return on a switch with no password configured), enter your new password, and reenter your new password. | set password |
Step 2 Set the password for privileged mode. Enter your old password, enter your new password, and reenter your new password. | set enablepass |
This example shows how to set the passwords on the switch:
Console> (enable) set password Enter old password: Enter new password: Retype new password: Password changed. Console> (enable) set enablepass Enter old password: Enter new password: Retype new password: Password changed. Console> (enable)
Posted: Wed Nov 10 13:18:25 PST 1999
Copyright 1989-1999©Cisco Systems Inc.