- Index
- Preface
- Product Overview
- Command-Line Interfaces
- Initial Switch Configuration
- Supervisor Engine 720 Configuration
- Supervisor Engine 32 Configuration
- Supervisor Engine 2 and Switch Fabric Module Configuration
- NSF with SSO Supervisor Engine Redundancy
- RPR and RPR+ Supervisor Engine Redundancy
- Interface Configuration
- Layer 2 Ethernet Interface Configuration
- Flex Links
- Layer 3 and Layer 2 EtherChannel
- VLAN Trunking Protocol (VTP)
- VLANs
- Private VLANs (PVLANs)
- Cisco IP Phone Support
- IEEE 802.1Q Tunneling
- Layer 2 Protocol Tunneling (L2PT)
- Standard-Compliant IEEE MST
- STP and IEEE 802.1s MST
- STP Features
- Layer 3 Interface Configuration
- UDE and UDLR
- Multiprotocol Label Switching (MPLS)
- IPv4 Multicast VPN Support
- IP Unicast Layer 3 Switching
- IPv6 Multicast Layer 3 Switching
- IPv4 Multicast Layer 3 Switching
- IGMP Snooping
- PIM Snooping
- MLDv2 Snooping
- Router-Port Group Management Protocol (RGMP)
- Network Security
- Understanding Cisco IOS ACL Support
- VLAN ACLs (VACLs)
- Denial of Service (DoS) Protection
- DHCP Snooping
- Dynamic ARP Inspection (DAI)
- Traffic-Storm Control
- Unknown Unicast and Multicast Flood Blocking
- PFC QoS
- MPLS QoS
- PFC QoS Statistics Data Export
- Cisco IOS Firewall Feature Set
- Network Admission Control (NAC)
- IEEE 802.1X Port-Based Authentication
- Port Security
- Cisco Discovery Protocol (CDP)
- UniDirectional Link Detection (UDLD)
- NetFlow Table Configuration
- NetFlow Data Export (NDE)
- Local SPAN, Remote SPAN (RSPAN), and Encapsulated RSPAN
- SNMP IfIndex Persistence
- Power Management and Environmental Monitoring
- Online Diagnostic Configuration
- Top N Utility Reports
- Using the Layer 2 Traceroute Utility
- Online Diagnostic Tests
- Acronyms
Index
Numerics
4K VLANs (support for 4,096 VLANs) 2
802.10 SAID (default) 6
802.1Q
encapsulation 3
Layer 2 protocol tunneling
See Layer 2 protocol tunneling
trunks 3
restrictions 5
tunneling
configuration guidelines 3
configuring tunnel ports 6
overview 1
802.1Q Ethertype
specifying custom 15
802.1s
802.1w
802.1X
802.3ad
802.3x Flow Control 13
A
AAA 1
abbreviating commands 5
access control entries and lists 1
access-enable host timeout (not supported) 2
access port, configuring 14
ACEs and ACLs 1
acronyms, list of 1
addresses
advertisements, VTP 3
aggregate policing
aging time
accelerated
for MSTP 25
maximum
for MSTP 26
aging-time
IP MLS 8
alarms
major 12
minor 12
Allow DHCP Option 82 on Untrusted Port
configuring 10
understanding 3
any transport over MPLS (AToM) 13
compatibility with previous releases of AToM 16
Ethernet over MPLS 16
ARP ACL 70
ARP spoofing 1
AToM 13
audience 30
authentication
See also port-based authentication
Authentication, Authorization, and Accounting
Authentication, Authorization, and Accounting (AAA) 1
authorized ports with 802.1X 4
auto-sync command 6
auxiliary VLAN
B
BackboneFast
backup interfaces
binding database, DHCP snooping
See DHCP snooping binding database
binding table, DHCP snooping
See DHCP snooping binding database
blocking floods 1
blocking state, STP 8
boot bootldr command 26
boot command 22
boot config command 26
boot system flash command 22
BPDU
RSTP format 13
BPDU guard
bridge groups 2
bridge ID
bridge priority, STP 30
bridge protocol data units
bridging 2
broadcast storms
C
cautions for passwords
encrypting 17
TACACS+ 17
CDP
configuration task lists 2
enabling on an interface 3
monitoring and maintaining 3
overview 1
cdp enable command 3
CEF 1
configuring
MSFC2 5
supervisor engine 5
examples 3
Layer 3 switching 2
packet rewrite 2
CEF for PFC2
CGMP 8
channel-group group
command example 9
checking
configuration, system 10
Cisco Discovery Protocol
Cisco Emergency Responder 4
Cisco Express Forwarding 3
Cisco Group Management Protocol
Cisco IOS Unicast Reverse Path Forwarding 2
CiscoView 2
CIST 15
CIST regional root
CIST root
class command 75
class-map command 66
class map configuration 71
clear cdp counters command 3
clear cdp table command 3
clear counters command 18
clear interface command 18
clear mls ip multicast statistics command
clears IP MMLS statistics 27
CLI
accessing 2
backing out one level 5
console configuration mode 5
getting list of commands 5
global configuration mode 5
history substitution 4
interface configuration mode 5
privileged EXEC mode 5
ROM monitor 7
software basics 4
command line processing 3
commands, getting list of 5
Committed Access Rate (CAR), not supported 3
Common and Internal Spanning Tree
See also CIST 15
Common Spanning Tree
See CST 15
community ports 3
Concurrent routing and bridging (CRB) 2
CONFIG_FILE environment variable
description 25
config-register command 23
config terminal command 10
configuration
file, saving 11
register
changing settings 23
settings at startup 22
configuration example
EoMPLS VLAN mode 17
configuration register boot field
listing value 24
modification tasks 23
configure command 9
configure terminal command 23, 2
configuring 74
global parameters
procedure 3
using configuration mode 10
console configuration mode 5
control plane policing
CoPP
applying QoS service policy to control plane 30
configuring
ACLs to match traffic 30
enabling MLS QoS 30
packet classification criteria 30
service-policy map 30
control plane configuration mode
entering 30
displaying
dynamic information 31
number of conforming bytes and packets 31
rate information 31
entering control plane configuration mode 30
monitoring statistics 31
overview 28
packet classification guidelines 31
traffic classification
defining 32
guidelines 34
overview 32
sample ACLs 34
sample classes 32
copy running-config startup-config command 11
copy system
running-config nvram
startup-config command 26
CoS
counters
clearing interface 18
CSCsr62404 14
CSCtc21076 5
CSCte40004 5
CST 15
common spanning tree 18
D
debug commands
IP MMLS 27
DEC spanning-tree protocol 2
default configuration
802.1X 6
dynamic ARP inspection 5
Flex Links 2
IP MMLS 7
MSTP 16
supervisor engine 2
UDLD 3
voice VLAN 5
VTP 5
default gateway, configuring 12
default NDE configuration 10
default VLAN 10
deficit weighted round robin 109
denial of service protection
description command 16
destination-ip flow mask 3
destination-source-ip flow mask 3
DHCP binding database
See DHCP snooping binding database
DHCP binding table
See DHCP snooping binding database
DHCP option 82
circuit ID suboption 5
overview 3
packet format, suboption
circuit ID 5
remote ID 5
remote ID suboption 5
DHCP option 82 allow on untrusted port 10
DHCP snooping
binding database
See DHCP snooping binding database
configuration guidelines 6
configuring 9
default configuration 6
displaying binding tables 18
enabling 9, 10, 11, 12, 13, 14
enabling the database agent 14
message exchange process 4
option 82 data insertion 3
overview 1
Snooping database agent 5
DHCP snooping binding database
described 2
entries 2
DHCP snooping binding table
See DHCP snooping binding database
DHCP Snooping Database Agent
adding to the database (example) 18
enabling (example) 15
overview 5
reading from a TFTP file (example) 17
DHCP snooping increased bindings limit 7, 15
differentiated services codepoint
DiffServ
configuring short pipe mode 35
configuring uniform mode 40
short pipe mode 32
uniform mode 33
DiffServ tunneling modes 4
Disabling PIM Snooping Designated Router Flooding 6
distributed Cisco Express Forwarding
documentation, related 30
DoS protection
monitoring packet drop statistics 7
using monitor session commands 25
using VACL capture 26
Supervisor Engine 2
ARP throttling 5
configuration guidelines and restrictions 23
FIB rate limiting 4
QoS ACLs 3
recommendations 2
security ACLs 2
traffic storm control 5
Supervisor Engine 720 10
default configurations 22
egress ACL bridget packet rate limiters 8, 15
FIB glean rate limiters 17
FIB receive rate limiters 9, 17
ICMP redirect rate limiters 18
IGMP unreachable rate limiters 17
ingress ACL bridget packet rate limiters 8, 15
IP errors rate limiters 10, 20
IPv4 multicast rate limiters 10, 20
IPv6 multicast rate limiters 21
Layer 2 PDU rate limiters 10, 19
Layer 2 protocol tunneling rate limiters 10, 19
MTU failure rate limiters 19
multicast directyly connected rate limiters 20
multicast FIB miss rate limiters 20
multicast IGMP snooping rate limiters 10, 19
network under SYN attack 13
QoS ACLs 12
security ACLs 11
traffic storm control 13
TTL failure rate limiter 16
uRPF check 12
uRPF failure rate limiters 16
Supervisor Engine 720Layer 3 security features rate limiters 9, 18
understanding how it works 2
DSCP
DSCP-based queue mapping 100
duplex mode
configuring interface 7
DWRR 109
dynamic ARP inspection
ARP cache poisoning 2
ARP requests, described 2
ARP spoofing attack 2
clearing
log buffer 16
statistics 16
configuration guidelines 6
configuring
logging system messages 14
rate limit for incoming ARP packets 4, 9
default configuration 5
denial-of-service attacks, preventing 9
described 1
DHCP snooping binding database 3
displaying
ARP ACLs 15
configuration and operating state 15
log buffer 16
statistics 16
trust state and rate limit 15
error-disabled state for exceeding rate limit 4
function of 2
interface trust states 3
log buffer
clearing 16
displaying 16
logging of dropped packets, described 5
logging system messages
configuring 14
man-in-the middle attack, described 2
network security issues and interface trust states 3
priority of ARP ACLs and DHCP snooping entries 4
rate limiting of ARP packets
configuring 9
described 4
error-disabled state 4
statistics
clearing 16
displaying 16
validation checks, performing 11
Dynamic Host Configuration Protocol snooping
E
Egress ACL support for remarked DSCP 15
egress ACL support for remarked DSCP 62
egress replication performance improvement 14
Embedded CiscoView 2
enable mode 5
enable sticky secure MAC address 10
enabling
IP MMLS
on router interfaces 11
encapsulation 3
enhanced interface range command 4
environmental monitoring
LED indications 12
SNMP traps 12
supervisor engine and switching modules 12
Syslog messages 12
using CLI commands 10
environment variables
CONFIG_FILE 25
controlling 26
viewing 26
EoMPLS 14
configuring 16
configuring VLAN mode 16
guidelines and restrictions 14
port mode 16
port mode configuration guidelines 20
VLAN mode 16
erase startup-config command
configuration files cleared with 14
ERSPAN 1
EtherChannel
channel-group group
command example 9
configuration guidelines 5
configuring
Layer 2 8
configuring (tasks) 7
DFC restriction, see CSCdt27074 in the Release Notes
interface port-channel
command example 8
interface port-channel (command) 7
lacp system-priority
command example 10
Layer 2
configuring 8
load balancing
configuring 11
understanding 5
modes 3
PAgP
Understanding 3
port-channel interfaces 5
port-channel load-balance
command example 11
STP 5
switchport trunk encapsulation dot1q 6
understanding 1
EtherChannel Guard
EtherChannel Min-Links 12
Ethernet
setting port duplex 15
Ethernet over MPLS (EoMPLS) configuration
EoMPLS port mode 20
EoMPLS VLAN mode 17
examples
configuration
software configuration register21to 24
configuring global parameters 3
EXP mutation 4
extended range VLANs 2
extended system ID
MSTP 19
Extensible Authentication Protocol over LAN 1
F
fabric switching mode
fabric switching-mode allow dcef-only command on Supervisor Engine 720 2
fall-back bridging 2
fastethernet 2
fiber-optic, detecting unidirectional links 1
FIB TCAM 3
filters, NDE
destination host filter, specifying 17
destination TCP/UDP port, specifying 17
protocol 18
source host and destination TCP/UDP port 17
Flash memory
configuration process 25
configuring router to boot from 25
loading system image from 24
security precautions 25
write protection 25
Flex Links 1
configuration guidelines 2
configuring 3
default configuration 2
description 1
monitoring 4
flood blocking 1
flow control 13
flow masks
IP MLS
destination-ip 3
destination-source-ip 3
interface-destination-source-ip 3
ip-full 3
ip-interface-full 3
minimum 7
overview 3
flows
IP MMLS
completely and partially switched 4
forward-delay time
MSTP 25
forward-delay time, STP 32
frame distribution
See EtherChannel load balancing
G
gateway, configuring 12
generic online diagnostics 1
global configuration mode 5
global parameters, configuring 3
GOLD 1
H
hardware Layer 3 switching
guidelines 4
hello time
MSTP 24
hello time, STP 31
High Capacity Power Supply Support 4
history
CLI 4
host ports
kinds of 3
http
//www-tac.cisco.com/Teams/ks/c3/xmlkwery.php?srId=612293409 6
I
I-BPDU 16
ICMP unreachable messages 1
IEEE 802.10 SAID (default) 6
IEEE 802.1Q
IEEE 802.1Q Ethertype
specifying custom 15
IEEE 802.1s
IEEE 802.1w
IEEE 802.3ad
IEEE 802.3x Flow Control 13
IEEE bridging protocol 2
IGMP
enabling 10
Internet Group Management Protocol 1
join messages 2
leave processing
enabling 12
queries 3
query interval
configuring 11
snooping
fast leave 5
joining multicast group 2
leaving multicast group 4
understanding 2
snooping querier
enabling 9
understanding 2
IGMPv3 10
IGMP v3lite 10
ignore port trust 11, 19, 58, 76
IGRP, configuring 7
Integrated routing and bridging (IRB) 2
interface
command 10
configuration mode 5
Layer 2 modes 4
number 2
parameters, configuring 8
interface-destination-source-ip flow mask 3
interface port-channel
command example 8
interface port-channel (command) 7
interfaces
configuring 2
configuring, duplex mode 7
configuring, speed 7
configururing, overview 2
counters, clearing 18
descriptive name, adding 16
displaying information about 17
maintaining 17
monitoring 17
naming 16
range of 4
restarting 19
shutting down
task 19
interfaces command 2
interfaces range command 4
interfaces range macro command 6
Interior Gateway Routing Protocol
Internal Sub Tree Protocol
See ISTP 15
Internet Group Management Protocol
IP
default gateway, configuring 12
static routes 12
IP accounting, IP MMLS and 9
IP addresses
assigned by BOOTP protocol 14
set to default 14
IP CEF
topology (figure) 4
ip flow-export destination command 14
ip flow-export source command 12, 13, 15, 3, 4
ip-full flow mask 3
ip http server 1
ip-interface-full flow mask 3
IP MLS
aging-time 8
flow masks
destination-ip 3
destination-source-ip 3
interface-destination-source-ip 3
ip-full 3
ip-interface-full 3
minimum 7
overview 3
IP MMLS
cache, overview 2
configuration guideline 8
debug commands 27
default configuration 7
enabling
on router interfaces 11
flows
completely and partially switched 4
Layer 3 MLS cache 2
overview 2
packet rewrite 3
router
enabling globally 10
enabling on interfaces 11
multicast routing table, displaying 21
PIM, enabling 10
switch
statistics, clearing 27
unsupported features 9
IP multicast
IGMP snooping and 9
MLDv2 snooping and 10
overview 2
IP multicast MLS
ip multicast-routing command
enabling IP multicast 10
IP phone
configuring 6
ip pim command
enabling IP PIM 11
IPsec 2
IP unnumbered 2
IPv4 Multicast over Point-to-Point GRE Tunnels 5
IPv4 Multicast VPN 1
IPv6 Multicast PFC3 and DFC3 Layer 3 Switching 1
IPv6 QoS 53
ISL encapsulation 3
ISL trunks 3
isolated port 3
ISTP 15
J
join messages, IGMP 2
jumbo frames 10
K
keyboard shortcuts 3
L
label edge router 2
label switched path 16
LACP
system ID 4
Layer 2
configuring interfaces 6
access port 14
trunk 8
defaults 5
interface modes 4
switching
understanding 1
trunks
understanding 3
VLAN
interface assignment 12
Layer 2 Interfaces
configuring 1
Layer 2 protocol tunneling
configuring Layer 2 tunnels 2
overview 1
Layer 2 remarking 18
Layer 2 Traceroute 1
Layer 2 traceroute
and ARP 2
and CDP 2
described 1
IP addresses and subnets 2
MAC addresses and VLANs 2
multicast traffic 2
multiple devices on a port 2
unicast traffic 1
usage guidelines 2
Layer 3
IP MMLS and MLS cache 2
Layer 3 switched packet rewrite
CEF 2
Layer 3 switching
CEF 2
Layer 4 port operations (ACLs) 8
leave processing, IGMP
enabling 12
leave processing, MLDv2
enabling 13
Link Failure
detecting unidirectional 8
link negotiation 8
link redundancy
Load Balancing 8
load balancing 15
Local Egress Replication 14
logical operation unit
loop guard
LOU
description 8
determining maximum number of 8
M
MAC address
adding to BOOTP configuration file 14
MAC address-based blocking 2
MAC move (port security) 2
main-cpu command 6
mapping 802.1Q VLANs to ISL VLANs 13, 16
markdown
match protocol 53
maximum aging time
MSTP 26
maximum aging time, STP 32
maximum hop count, MSTP 26
microflow policing rule
Min-Links 12
MLD
report 4
MLD snooping
query interval
configuring 12
MLDv2 1
enabling 10
leave processing
enabling 13
queries 5
snooping
fast leave 7
joining multicast group 4
leaving multicast group 6
understanding 2
snooping querier
enabling 9
understanding 2
MLDv2 Snooping 1
MLS
configuring threshold 15
MSFC
threshold 15
mls aging command
configuring IP MLS 8
mls flow command
mls ip multicast command
enabling IP MMLS 12, 13, 14, 16, 17, 18, 23, 24
mls nde flow command
configuring a host and port filter 17
configuring a host flow filter 17
configuring a port filter 17
configuring a protocol flow filter 18
mls nde sender command 11
monitoring
Flex Links 4
private VLANs 17
MPLS 2
aggregate label 2
any transport over MPLS 13
basic configuration 8
core 4
DiffServ Tunneling Modes 32
egress 4
experimental field 3
guidelines and restrictions 7
ingress 3
IP to MPLS path 3
labels 2
Layer 2 VPN load balancing 8
MPLS to IP path 4
MPLS to MPLS path 4
nonaggregate lable 2
QoS default configuration 15
VPN 12
VPN guidelines and restrictions 11
mpls l2 transport route command 16
MPLS QoS
Classification 2
Class of Service 2
commands 16
configuring a class map 20
configuring a policy map 23
configuring egress EXP mutation 29
configuring EXP Value Maps 31
Differentiated Services Code Point 2
displaying a policy map 28
E-LSP 2
enabling QoS globally 18
EXP bits 2
features 3
IP Precedence 2
QoS Tags 2
queueing-only mode 19
MPLS QoS configuration
class map to classify MPLS packets 20
MPLS VPN
limitations and restrictions 11
MQC 1
not supported
CAR 3
queuing 3
supported
policy maps 3
MST 15
boundary ports 19
configuration 18
configuring 33
edge ports 20
enabling 34
hop count 20
instances 18
interoperability 16
interoperability with PVST+ 16
link type 20
master 20
message age 20
MSTP
boundary ports
configuration guidelines 16
described 6
CIST, described 3
CIST root 5
configuration guidelines 16
configuring
forward-delay time 25
hello time 24
link type for rapid convergence 26
maximum aging time 26
maximum hop count 26
MST region 17
neighbor type 27
path cost 22
port priority 21
root switch 19
secondary root switch 20
switch priority 23
CST
defined 3
operations between regions 4
default configuration 16
displaying status 28
enabling the mode 17
extended system ID
effects on root switch 19
effects on secondary root switch 20
unexpected behavior 19
IEEE 802.1s
implementation 7
port role naming change 7
terminology 5
interoperability with IEEE 802.1D
described 9
restarting migration process 28
IST
defined 3
master 4
operations within a region 4
mapping VLANs to MST instance 17
M-record 16
MST region
CIST 3
configuring 17
described 2
hop-count mechanism 6
IST 3
supported spanning-tree instances 3
M-tree 16
overview 1
root switch
configuring 19
effects of extended system ID 19
unexpected behavior 19
status, displaying 28
MTU size (default) 6
multicast
IGMP snooping and 9
MLDv2 snooping and 10
NetFlow statistics 10
non-RPF 5
overview 2
PIM snooping 4
RGMP 2
multicast, displaying routing table 21
Multicast enhancement - egress replication performance improvement 14
Multicast Enhancement - Replication Mode Detection 12
multicast flood blocking 1
multicast groups
joining 2
multicast groups, IPv6
joining 4
Multicast Listener Discovery version 2
multicast multilayer switching
Multicast Replication Mode Detection enhancement 12
multicast RPF 2
multicast storms
Multilayer MAC ACL QoS Filtering 67
multilayer switch feature card
multiple forwarding paths 15
multiple path RPF check 2
Multiple Spanning Tree
Multiple Spanning Tree Protocol
See MSTP 15
N
NAC
non-responsive hosts 5
native VLAN 10
NDE
configuration, displaying 18
displaying configuration 18
enabling 10
filters
destination host, specifying 17
destination TCP/UDP port, specifying 17
protocol, specifying 18
source host and destination TCP/UDP port, specifying 17
multicast 10
specifying
destination host filters 17
destination TCP/UDP port filters 17
protocol filters 18
NDE configuration, default 10
NDE version 8 3
Netflow Multiple Export Destinations 14
NetFlow version 9 3
Network Admission Control
Network Admission Control (NAC) 1
Network-Based Application Recognition 1
network fault tolerance 15
network management
configuring 1
non-RPF multicast 5
Nonstop Forwarding
nonvolatile random-access memory
normal-range VLANs
NSF 1
NSF with SSO does not support IPv6 multicast traffic. 1
NVRAM
saving settings 11
O
OIR 16
online diagnostics
configuring 2
memory tests 10
overview 1
running tests 5
test descriptions 1
understanding 1
online diagnostic tests 1
online insertion and removal
operating system image
out of profile
P
packet burst 16
packet recirculation 15
packet rewrite
CEF 2
IP MMLS and 3
packets
multicast 4
PAgP
understanding 3
passwords
configuring
enable password 15
enable secret 15
line password 16
static enable password 15
TACACS+ 16
TACACS+ (caution) 17
encrypting 17
(caution) 17
recovering lost enable passwords 19
path cost
MSTP 22
PBR 4
PFC2
NetFlow
table, displaying entries 6
PFC3BXL
hardware features 5
MPLS guidelines and restrictions 7
MPLS label switching 1
MPLS supported commands 7
recirculation 4
supported Cisco IOS features 5
VPN supported commands 11
VPN switching 10
PIM, IP MMLS and 10
PIM snooping
designated router flooding 6
enabling globally 5
enabling in a VLAN 5
overview 4
platform ipv4 pbr optimize tcam command 4
police command 78
policing
policy 66
policy-based routing
policy enforcement 6
policy map 74
attaching to an interface 81
Port Aggregation Protocol
port-based authentication
authentication server
defined 2
client, defined 2
configuration guidelines 6
configuring
initializing authentication of a client 11
manual reauthentication of a client 11
quiet period 12
RADIUS server 10
RADIUS server parameters on the switch 9
switch-to-authentication-server retransmission time 14
switch-to-client EAP-request frame retransmission time 13
switch-to-client frame-retransmission number 14
switch-to-client retransmission time 12
default configuration 6
described 1
device roles 2
displaying statistics 16
EAPOL-start frame 3
EAP-request/identity frame 3
EAP-response/identity frame 3
enabling
periodic reauthentication 10
encapsulation 3
initiation and message exchange 3
method lists 7
ports
authorization state and dot1x port-control command 4
authorized and unauthorized 4
resetting to default values 15
switch
as proxy 2
RADIUS client 2
topologies, supported 5
port-based QoS features
port channel
switchport trunk encapsulation dot1q 6
port-channel
port-channel load-balance
port cost, STP 28
port debounce timer
disabling 15
displaying 15
enabling 15
PortFast
PortFast BPDU filtering
See STP PortFast BPDU filtering
port mode 16
port negotiation 8
port priority
MSTP 21
port priority, STP 26
ports
setting the debounce timer 15
port security
configuring 4
default configuration 3
described 2
displaying 13
enable sticky secure MAC address 10
sticky MAC address 3
violations 2
Port Security is supported on trunks 3, 4, 5, 9, 11
port security MAC move 2
port security on PVLAN ports 3
Port Security with Sticky Secure MAC Addresses 3
power management
enabling/disabling redundancy 2
overview 1
powering modules up or down 4
system power requirements, nine-slot chassis 5
primary links 1
primary VLANs 2
priority
private VLANs 1
across multiple switches 5
and SVIs 6
benefits of 2
configuration guidelines 7, 9, 11
configuring 11
host ports 14
pomiscuous ports 15
routing secondary VLAN ingress traffic 13
secondary VLANs with primary VLANs 12
VLANs as private 11
end station access to 4
IP addressing 4
monitoring 17
ports
community 3
configuration guidelines 9
isolated 3
promiscuous 3
primary VLANs 2
secondary VLANs 2
subdomains 2
traffic in 6
privileged EXEC mode 5
privileges
changing default 18
configuring
multiple levels 17
privilege level 18
exiting 19
logging in 18
procedures
global parameters, configuring3to 8
using configuration mode 10
promiscuous ports 3
protocol tunneling
See Layer 2 protocol tunneling 1
pruning, VTP
PVLANs
PVRST
See Rapid-PVST 14
Q
QoS
IPv6 53
QoS classification (definition) 123
QoS congestion avoidance
definition 123
QoS CoS
and ToS final L3 Switching Engine values 14
and ToS final values from L3 Switching Engine 14
definition 123
port value, configuring 93
QoS default configuration 113, 2
QoS DSCP
definition 123
internal values 12
maps, configuring 87
QoS dual transmit queue
thresholds
QoS Ethernet egress port
scheduling 113
scheduling, congestion avoidance, and marking 14, 16
QoS Ethernet ingress port
classification, marking, scheduling, and congestion avoidance 8
QoS final L3 Switching Engine CoS and ToS values 14
QoS internal DSCP values 12
QoS L3 Switching Engine
classification, marking, and policing 11
feature summary 19
QoS labels (definition) 124
QoS mapping
CoS values to DSCP values 85, 88
DSCP markdown values 30, 89, 16
DSCP values to CoS values 90
IP precedence values to DSCP values 88
QoS markdown 23
QoS marking
definition 124
trusted ports 17
untrusted ports 17
QoS MSFC
marking 20
QoS multilayer switch feature card 20
QoS OSM egress port
feature summary 16
QoS out of profile 23
QoS policing
definition 124
microflow, enabling for nonrouted traffic 60
QoS policing rule
aggregate 20
creating 65
microflow 20
QoS port
trust state 91
QoS port-based or VLAN-based 61
QoS queues
transmit, allocating bandwidth between 109
QoS receive queue 10, 104, 107
drop thresholds 25
QoS scheduling (definition) 124
QoS single-receive, dual-transmit queue ports
configuring 99
QoS statistics data export 1
configuring 2
configuring destination host 8
configuring time interval 7, 9
QoS ToS
and CoS final values from L3 Switching Engine 14
definition 123
QoS traffic flow through QoS features 4
QoS transmit queue
QoS transmit queues 26, 101, 103, 105, 106
QoS trust-cos
QoS trust-dscp
QoS trust-ipprec
QoS untrusted port keyword 17, 18
QoS VLAN-based or port-based 13, 61
queries, IGMP 3
queries, MLDv2 5
R
range
command 4
macro 6
of interfaces 4
rapid convergence 11
Rapid-PVST
enabling 33
overview 14
Rapid Spanning Tree
See RSTP 13
Rapid Spanning Tree Protocol
rapid spanning tree protocol 15
receive queues
reduced MAC address 2
redundancy (NSF) 1
configuring
BGP 14
CEF 13
EIGRP 19
IS-IS 16
OSPF 15
configuring multicast NSF with SSO 13
configuring supervisor engine 10
routing protocols 4
redundancy (RPR+) 1
configuring 6
configuring supervisor engine 5
displaying supervisor engine configuration 7
redundancy command 6
route processor redundancy plus 3
redundancy (SSO)
redundancy command 12
related documentation 30
reload command 23
Remote source-route bridging (RSRB) 2
Replication Mode Detection 12
report, MLD 4
reserved-range VLANs
rewrite, packet
CEF 2
IP MMLS 3
RGMP 1
overview 2
packet types 2
RIF cache monitoring 17
rommon command 24
ROM monitor
boot process and 20
CLI 7
root bridge, STP 24
root guard
root switch
MSTP 19
route processor redundancy
router-port group management protocol
routing table, multicast 21
RPF
failure 5
multicast 2
non-RPF multicast 5
unicast 2
RPR+
RPR and RPR+ support IPv6 multicast traffic 1
RSTP 15
active topology 10
BPDU
format 13
processing 14
designated port, defined 10
designated switch, defined 10
interoperability with IEEE 802.1D
described 9
restarting migration process 28
topology changes 15
overview 9
port roles 13
described 10
synchronized 12
port states 14
proposal-agreement handshake process 11
rapid convergence
described 11
edge ports and Port Fast 11
root ports 11
root port, defined 10
S
SAID 6
Sampled NetFlow
description 8
saving the configuration file 11
scheduling
secondary VLANs 2
Secure MAC Address Aging Type 12
security
configuring 1
security, port 2
security precautions with Flash memory card 25
serial interfaces
clearing 18
synchronous
maintaining 18
service-policy command 67
service-policy input command 62, 81, 84, 87, 30
service-provider network, MSTP and RSTP 2
set power redundancy enable/disable command 2
setup command 2
shaped round robin 109
short pipe mode
configuring 35
show boot command 26
show catalyst6000 chassis-mac-address command 3
show cdp entry command 3
show cdp interface command 3
show cdp neighbors command 3
show cdp traffic command 3
show ciscoview package command 3
show ciscoview version command 3
show configuration command 16
show debugging command 3
show eobc command 17
show hardware command 3
show history command 4
show ibc command 17
show interfaces command 2, 12, 13, 16, 17, 7, 12
clearing interface counters 18
displaying, interface type numbers 2
displaying, speed and duplex mode 9
show ip flow export command
displaying NDE export flow IP address and UDP port 15
show ip interface command
displaying IP MMLS interfaces 19
show ip mroute command
displaying IP multicast routing table 21
show ip pim interface command
displaying IP MMLS router configuration 19
show mls aging command 9
show mls entry command 6
show mls ip multicast group command
displaying IP MMLS group 22, 25
show mls ip multicast interface command
displaying IP MMLS interface 22, 25
show mls ip multicast source command
displaying IP MMLS source 22, 25
show mls ip multicast statistics command
displaying IP MMLS statistics 22, 25
show mls ip multicast summary
displaying IP MMLS configuration 22, 25
show mls nde command 18
displaying NDE flow IP address 15
show mls rp command
displaying IP MLS configuration 8
show module command 7
show protocols command 17
show rif command 17
show running-config command 10, 16, 17
show startup-config command 11
show version command 9, 23, 24, 17
shutdown command 19
shutdown interfaces
result 19
Single Spanning Tree
See SST 15
slot number, description 2
SNMP
support and documentation 1
snooping
software configuration register functions21to 24
source-only-ip flow mask 3
source specific multicast with IGMPv3, IGMP v3lite, and URD 10
SPAN
configuration guidelines 6
configuring 14
VLAN filtering 24
overview 1
SPAN Destination Port Permit Lists 14
spanning-tree backbonefast
command example 14
spanning-tree cost
command 28
command example 29
spanning-tree portfast
command example 9
spanning-tree portfast bpdu-guard
command 12
spanning-tree port-priority
command 27
spanning-tree protocol for bridging 2
spanning-tree uplinkfast
command 13
command example 13
spanning-tree vlan
spanning-tree vlan cost
command 28
spanning-tree vlan forward-time
command 32
command example 32
spanning-tree vlan hello-time
command 31
command example 31
spanning-tree vlan max-age
command 32
command example 32
spanning-tree vlan port-priority
command 27
command example 28
spanning-tree vlan priority
command 30
command example 30
speed
configuring interface 7
SRR 109
SST 15
interoperability 16
Standard-Compliant IEEE 802.1s MST 1
standby link 1
standby links 1
static route, configuring 12
statistics
802.1X 16
Sticky ARP 35
sticky ARP 35
sticky MAC address 3
Sticky secure MAC addresses 10, 11
storm control
STP
configuring 22
bridge priority 30
forward-delay time 32
hello time 31
maximum aging time 32
port cost 28
port priority 26
root bridge 24
secondary root switch 26
defaults 21
EtherChannel 5
understanding 2
802.1Q Trunks 12
Blocking State 8
BPDUs 4
disabled state 12
forwarding state 11
learning state 10
listening state 9
overview 2
port states 6
protocol timers 5
root bridge election 4
topology 5
STP BackboneFast
and MST 16
configuring 13
figure
adding a switch 7
spanning-tree backbonefast
command example 14
understanding 4
STP BPDU Guard
and MST 16
configuring 12
spanning-tree portfast bpdu-guard
command 12
understanding 2
STP bridge ID 2
STP EtherChannel guard 6
STP loop guard
and MST 16
configuring 15
overview 7
STP PortFast
and MST 16
BPDU filter
configuring 10
BPDU filtering 2
configuring 8
spanning-tree portfast
command example 9
understanding 2
STP Portfast BPDU filtering
and MST 16
and MST 16
STP UplinkFast
and MST 16
configuring 12
spanning-tree uplinkfast
command 13
command example 13
understanding 3
subdomains, private VLAN 2
supervisor engine
configuring 1
default configuration 2
default gateways 12
environmental monitoring 10
redundancy 1
ROM monitor 20
startup configuration 20
static routes 12
synchronizing configurations 20, 7
Supervisor Engine 32 1
supervisor engine redundancy
supervisor engines
displaying redundancy configuration 7
Switched Port Analyzer
switch fabric functionality 2
configuring 4
monitoring 4
switch fabric module 1
configuring 3
monitoring 5
slot locations 2
switchport
configuring 14
example 13
example 14
example 14
switchport mode dynamic 9
switchport mode dynamic auto 4
switchport mode dynamic desirable 4
default 5
example 13
switchport nonegotiate 4
switchport trunk allowed vlan 11
switchport trunk encapsulation 8
switchport trunk encapsulation dot1q 4
example 13
switchport trunk encapsulation isl 4
switchport trunk encapsulation negotiate 4
default 5
switchport trunk native vlan 10
switchport trunk pruning vlan 12
switch priority
MSTP 23
switch TopN reports
foreground execution 2
overview 1
running 2
viewing 2
system
configuration register
settings at startup 22
configuring global parameters3to 8
System Hardware Capacity 5
system image
determining if and how to load 22
loading from Flash 24
T
TACACS+ 1
TCP Intercept 2
TDR
checking cable connectivity 19
enabling and disabling test 19
guidelines 19
Telnet
accessing CLI 2
Time Domain Reflectometer
TopN reports
traceroute, Layer 2
and ARP 2
and CDP 2
described 1
IP addresses and subnets 2
MAC addresses and VLANs 2
multicast traffic 2
multiple devices on a port 2
unicast traffic 1
usage guidelines 2
traffic flood blocking 1
traffic-storm control
command
broadcast 4
described 1
monitoring 5
thresholds 1
traffic suppression
translational bridge numbers (defaults) 6
transmit queues
trunks 3
802.1Q Restrictions 5
allowed VLANs 11
configuring 8
default interface configuration 7
default VLAN 10
different VTP domains 3
encapsulation 3
native VLAN 10
to non-DTP device 4
VLAN 1 minimization 11
trust-dscp
trust-ipprec
tunneling, 802.1Q
See 802.1Q 1
U
UDE 1
configuration 4
overview 2
UDE and UDLR 1
UDLD
default configuration 3
enabling
globally 4
overview 1
UDLR 1
back channel 2
configuration 6
tunnel
(example) 7
ARP and NHRP 3
UDLR (unidirectional link routing)
UMFB 1
unauthorized ports with 802.1X 4
Unicast and Multicast Flood Blocking 1
unicast flood blocking 1
unicast RPF 2
unicast storms
Unidirectional Ethernet
unidirectional ethernet
example of setting 5
UniDirectional Link Detection Protocol
uniform mode
configuring 40
unknown multicast flood blocking
unknown unicast flood blocking
untrusted
upgrade guidelines 16
UplinkFast
URD 10
User-Based Rate Limiting 22, 79
user EXEC mode 5
UUFB 1
V
VACLs 2
configuring 4
examples 9
Layer 3 VLAN interfaces 8
Layer 4 port operations 7
logging
configuration example 11
configuring 11
restrictions 11
MAC address based 5
multicast packets 4
overview 2
SVIs 8
WAN interfaces 2
virtual LAN
vlan
command example 11
VLAN-based QoS filtering 68
VLAN-bridge spanning-tree protocol 2
vlan database
example 11
vlan mapping dot1q
command example 17
VLAN mode 16
VLANs
allowed on trunk 11
configuration guidelines 8
configuration options
global configuration mode 9
VLAN database mode 9
configuring 1
configuring (tasks) 9
defaults 6
extended range 2
ID (default) 6
interface assignment 12
name (default) 6
normal range 2
private
reserved range 2
support for 4,096 VLANs 2
token ring 3
trunks
understanding 3
understanding 1
VLAN 1 minimization 11
VTP domain 3
VLAN translation
VLAN Trunking Protocol
voice VLAN
Cisco 7960 phone, port connections 2
configuration guidelines 5
configuring IP phone for data traffic
override CoS of incoming frame 7, 8
configuring ports for voice traffic in
802.1Q frames 6
connecting to an IP phone 6
default configuration 5
overview 1
VPN
configuration example 12
guidelines and restrictions 11
VTP
advertisements 3
client, configuring 9
configuration guidelines 5
default configuration 5
disabling 9
domains 2
VLANs 3
modes
client 2
server 2
transparent 2
monitoring 10
overview 1
pruning
configuration 12
configuring 7
overview 4
server, configuring 9
statistics 10
transparent mode, configuring 9
version 2
enabling 8
overview 3
W
web browser interface 1
weighted round robin 109
WRR 109
X
xconnect command 16