Page 1
Switch 2600 Series Switch 2600-PWR Series Management and Switch 2800 Series Configuration Guide Switch 4100 Series Switch 6108 ProCurve Switches www.procurve.com...
Page 3
ProCurve Switch 2600 Series Switch 2600-PWR Series Switch 2800 Series Switch 4100gl Series Switch 6108 October 2005 Management and Configuration Guide...
Page 4
Applicable Products The only warranties for HP products and services are set forth in the express warranty statements accompanying ProCurve Switch 2626 (J4900A/B) such products and services. Nothing herein should be ProCurve Switch 2650 (J4899A/B) construed as constituting an additional warranty.
Advantages of Using the Web Browser Interface ..... 2-5 Advantages of Using ProCurve Manager or ProCurve Manager Plus ..2-6...
Page 6
3 Using the Menu Interface Contents ............3-1 Overview .
Page 7
Using a Standalone Web Browser in a PC or UNIX Workstation ..5-4 Using ProCurve Manager (PCM) or ProCurve Manager Plus (PCM+) ........... . 5-5 Tasks for Your First Web Browser Interface Session .
Page 8
Using Primary and Secondary Flash Image Options ....6-12 Displaying the Current Flash Image Data ..... . 6-12 Switch Software Downloads .
Page 9
IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads ..........8-16 Operating Rules for IP Preserve .
Page 10
Menu: Viewing Port Status and Configuring Port Parameters ..10-6 CLI: Viewing Port Status and Configuring Port Parameters ..10-7 Using the CLI To View Port Status ......10-8 Displaying Spanning Tree Configuration Details .
Page 11
11 Power Over Ethernet (PoE) Operation for the Series 2600-PWR Switches Contents ............11-1 Overview .
Page 12
Menu: Viewing and Configuring a Static Trunk Group ... 12-10 CLI: Viewing and Configuring a Static or Dynamic Port Trunk Group ..........12-12 Using the CLI To View Port Trunks .
Page 13
LLDP Configuration Options ....... . 13-27 Options for Reading LLDP Information Collected by the Switch . . 13-30 LLDP Standards Compatibility .
Page 14
CLI: Switch-To-Switch Downloads ..... . . A-15 Using ProCurve Manager Plus to Update Switch Software ..A-16 Troubleshooting TFTP Downloads .
Page 15
Spanning Tree Protocol (STP) Information ....B-18 Menu Access to STP Data ....... B-18 CLI Access to STP Data .
Page 16
Series 2600/2600-PWR, 2800 and 4100gl Switches ....D-6 E Daylight Savings Time on ProCurve Switches Configuring Daylight Savings Time ....... E-1...
■ Release Notes - posted on the ProCurve web site to provide information on software updates. The release notes describe new features, fixes, and enhancements that become available between revisions of the above guides.
Product Documentation Feature Index For the manual set supporting your switch model, the following feature index indicates which manual to consult for information on a given software feature. (Note that some software features are not supported on all switch models.) Feature Management and Advanced Traffic...
Page 19
Product Documentation Feature Management and Advanced Traffic Access Security Configuration Management Guide LACP Link LLDP MAC Address Management MAC Lockdown MAC Lockout MAC-based Authentication Monitoring and Analysis Multicast Filtering Network Management Applications (LLDP, SNMP) Passwords Ping Port Configuration Port Security Port Status Port Trunking (LACP) Port-Based Access Control...
Page 20
Product Documentation Feature Management and Advanced Traffic Access Security Configuration Management Guide Source-Port Filters Spanning Tree (STP, RSTP, MSTP) SSH (Secure Shell) Encryption SSL (Secure Socket Layer) Stack Management (Stacking) Syslog System Information TACACS+ Authentication Telnet Access TFTP Time Protocols (TimeP, SNTP) Traffic/Security Filters Troubleshooting VLANs...
For an overview of other product documentation for the above switches, refer to “Product Documentation” on page xv. The Product Documentation CD-ROM shipped with the switch includes a copy of this guide. You can also download a copy from the ProCurve website, http://www.procurve.com. Conventions This guide uses the following conventions for command syntax and displayed information.
ProCurve Switch 2626# ProCurve Switch 2650# ProCurve Switch 6108# To simplify recognition, this guide uses ProCurve to represent command prompts for all models. For example: ProCurve# (You can use the hostname command to change the text in the CLI prompt.)
Port Identity Examples This guide describes software applicable to both chassis-based and stackable ProCurve switches. Where port identities are needed in an example, this guide uses the chassis-based port identity system, such as “A1”, “B3 - B5”, “C7”, etc. However, unless otherwise noted, such examples apply equally to the stackable switches, which for port identities typically use only numbers, such as “1”, “3-5”, “15”, etc.
Page 25
For information on specific features in the Web browser interface, ■ use the online help. For information on Help options, see “Online Help for the Web Browser Interface” on page 5-1. For further information on ProCurve Networking switch technology, ■ visit the ProCurve website at: http://www.procurve.com...
If you just want to give the switch an IP address so that it can communicate on your network, or if you are not using multiple VLANs, ProCurve recommends that you use the Switch Setup screen to quickly configure IP addressing.
VLAN management. (ProCurve includes a copy of PCM+ in-box for a free 30-day trial.) This manual describes how to use the menu interface (chapter 3), the CLI (chapter 4), the web browser interface (chapter 5), and how to use these interfaces to configure and monitor the switch.
Selecting a Management Interface Advantages of Using the Menu Interface Advantages of Using the Menu Interface Figure 2-1. Example of the Console Interface Display Provides quick, easy management access to a menu-driven subset of ■ switch configuration and performance features: • IP addressing •...
Selecting a Management Interface Advantages of Using the CLI Advantages of Using the CLI Operator Level ProCurve> Manager Level ProCurve# Global Configuration Level ProCurve(config)# Context Configuration Levels (port, VLAN) ProCurve(<context>)# Figure 2-2. Command Prompt Examples ■ Provides access to the complete set of the switch configuration, perfor...
Selecting a Management Interface Advantages of Using the Web Browser Interface Advantages of Using the Web Browser Interface Figure 2-3. Example of the Web Browser Interface ■ Easy access to the switch from anywhere on the network Familiar browser interface--locations of window objects consistent ■...
Advantages of Using ProCurve Manager or ProCurve Manager Plus You can operate ProCurve Manager and ProCurve Manager Plus (PCM and PCM+) from a PC on the network to monitor traffic, manage your hubs and switches, and proactively recommend network changes to increase network uptime and optimize performance.
Page 33
Features and benefits of ProCurve Manager Plus: ■ • All of the Features of ProCurve Manager: Refer to the above listing. • In-Depth Traffic Analysis: An integrated, low-overhead traffic mon itor interface shows detailed information on traffic throughout the network.
Page 34
Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus • Device Software Updates: This feature automatically obtains new device software images from ProCurve and updates devices, allowing users to download the latest version or choose the desired version.
Reboot the switch For a detailed list of menu features, see the “Menu Features List” on page 3-14). Privilege Levels and Password Security. ProCurve strongly recom- mends that you configure a Manager password to help prevent unauthorized access to your network. A Manager password grants full read-write access to the switch.
Using the Menu Interface Starting and Ending a Menu Session N o t e If the switch has neither a Manager nor an Operator password, anyone having access to the console interface can operate the console with full manager privileges. Also, if you configure only an Operator password, entering the Operator password enables full manager privileges.
Access Security Guide for your switch.) • If no password has been configured, the CLI prompt appears. Go to the next step. 4. When the CLI prompt appears, display the Menu interface by entering the menu command. For example: ProCurve# menu [Enter] results in:...
Using the Menu Interface Starting and Ending a Menu Session Figure 3-1. The Main Menu with Manager Privileges For a description of Main Menu features, see “Main Menu Features” on page 3-7). N o t e To configure the switch to start with the menu interface instead of the CLI, go to the Manager level prompt in the CLI, enter the command, and in the setup...
Page 40
Using the Menu Interface Starting and Ending a Menu Session Aster sk indicates a configurat on change that requ res a reboot to activate. Figure 3-2. An Asterisk Indicates a Configuration Change Requiring a Reboot 1. In the current session, if you have not made configuration changes that require a switch reboot to activate, return to the Main Menu and press (zero) to log out.
Using the Menu Interface Main Menu Features Main Menu Features Figure 3-3. The Main Menu View with Manager Privileges The Main Menu gives you access to these Menu interface features: ■ Status and Counters: Provides access to display screens showing switch information, port status and counters, port and VLAN address tables, and spanning tree information.
Page 42
Using the Menu Interface Main Menu Features Command Line (CLI): Selects the Command Line Interface at the same ■ level (Manager or Operator) that you are accessing in the Menu interface. (See chapter 4, “Using the Command Line Interface (CLI)”.) ■...
Using the Menu Interface Screen Structure and Navigation Screen Structure and Navigation Menu interface screens include these three elements: ■ Parameter fields and/or read-only information such as statistics Navigation and configuration actions, such as Save, Edit, and Cancel ■ ■ Help line to describe navigation options, individual parameters, and read- only data For example, in the following System Information screen:...
Page 44
Using the Menu Interface Screen Structure and Navigation Table 3-1. How To Navigate in the Menu Interface Task: Actions: Execute an action Use either of the following methods: from the “Actions –>” • Use the arrow keys ([<] or [>]) to highlight the action you want to list at the bottom of execute, then press [Enter].
Page 45
Using the Menu Interface Screen Structure and Navigation To get Help on individual parameter descriptions. In most screens there is a Help option in the Actions line. Whenever any of the items in the Actions line is highlighted, press , and a separate help screen is displayed. For example: Pressing or h ghlighting Help and...
Using the Menu Interface Rebooting the Switch Rebooting the Switch Rebooting the switch from the menu interface ■ Terminates all current sessions and performs a reset of the operating system Activates any menu interface configuration changes that require a reboot ■...
Page 47
Using the Menu Interface Rebooting the Switch Rebooting To Activate Configuration Changes. Configuration changes for most parameters in the menu interface become effective as soon as you save them. However, you must reboot the switch in order to implement a change in the .
Using the Menu Interface Menu Features List Menu Features List Status and Counters • General System Information • Switch Management Address Information • Port Status • Port Counters • Address Table • Port Address Table • Spanning Tree Information Switch Configuration •...
To use the Run Setup option Refer to the Installation and Getting Started Guide shipped with the switch. To use the ProCurve Stack Manager See the chapter on stack management in the Advanced Traffic Management Guide. To view and monitor switch status and Appendix B, “Monitoring and Analyzing Switch...
Page 50
Using the Menu Interface Where To Go From Here — This page is intentionally unused. — 3-16...
Using the Command Line Interface (CLI) Overview Overview The CLI is a text-based command interface for configuring and monitoring the switch. The CLI gives you access to the switch’s full set of commands while providing the same password protection that is used in the web browser interface and the menu interface.
In the above case, you will enter the CLI at the level corresponding to the password you provide (operator or manager). If no passwords are set when you log onto the CLI, you will enter at the Manager level. For example: ProCurve# _...
Using the CLI C a u t i o n ProCurve strongly recommends that you configure a Manager password. If a Manager password is not configured, then the Manager level is not password- protected, and anyone having in-band or out-of-band access to the switch may be able to reach the Manager level and compromise switch and network security.
Manager prompt. For example: Enter config at the Manager prompt. ProCurve# _ ProCurve(config)#_The Global Config prompt.) ■ Context Configuration level: Provides all Operator and Manager privileges, and enables you to make configuration changes in a specific context, such as one or more ports or a VLAN.
Page 56
Execute context-specific configuration commands, such as a ProCurve(eth-5)# particular VLAN or switch port. This is useful for shortening the Configuration ProCurve(vlan-100)# command strings you type, and for entering a series of commands Level for the same context. For a list of available commands, enter ? at...
Global configuration ProCurve(config)# vlan 10 level ProCurve(vlan-10)# to a Context configuration level Context configuration ProCurve(vlan-10)# interface e 3 level ProCurve(int-3)# to another The CLI accepts "e" as the abbreviated Context configuration form of "ethernet". level Move from any level...
Using the Command Line Interface (CLI) Using the CLI For example, if you use the menu interface to configure an IP address of “X” for VLAN 1 and later use the CLI to configure a different IP address of “Y” for VLAN 1, then “Y”...
Page 59
[Tab] (with no spaces allowed). For example, at the Global Configuration level, if you press [Tab] immediately after typing "t", the CLI displays the available command options that begin with "t". For example: ProCurve(config)# t [Tab] telnet-server time trunk...
CLI completes the current word (if you have typed enough of the word for the CLI to distinguish it from other possibilities), including hyphenated exten sions. For example: ProCurve(config)# port [Tab] ProCurve(config)# port-security _ Pressing after a completed command word lists the further options for [Tab] that command.
Using the Command Line Interface (CLI) Using the CLI Listing Command Options. You can use the CLI to remind you of the options available for a command by entering command keywords followed . For example, suppose you want to see the command options for config uring port C5: This example displays the command options for configur ng the switch’s conso e settings.
Page 62
Using the Command Line Interface (CLI) Using the CLI Figure 4-6. Example of Context-Sensitive Command-List Help Displaying Help for an Individual Command. You can display Help for any command that is available at the current context level by entering enough of the command string to identify the command, along with help.
Manager, and Operator commands. The prompt for this mode includes the identity of the selected port(s): ProCurve(config)# interface e c3-c6 Command executed at configuration level for ProCurve(config)# interface e trk1 entering port or trk1 static trunk-group context. Resulting prompt showing ProCurve(eth-C5-C8)#...
Page 64
Using the Command Line Interface (CLI) Using the CLI Lists the commands you ProCurve(eth-C5-C8)#? can use in the port or static trunk context, plus the ProCurve(eth-C5-C8)#? Manager, Operator, and context commands you can execute at this level. In the port context, the first block of commands in the "?"...
Page 65
VLAN ID of the selected VLAN. For example, if you had already configured a VLAN with an ID of 100 in the switch: Command executed at configura - ProCurve(config)# vlan 100 tion level to enter VLAN 100 context.
Using the Command Line Interface (CLI) CLI Control and Editing CLI Control and Editing Keystrokes Function [Ctrl] [A] Jumps to the first character of the command line. or [<] Moves the cursor back one character. [Ctrl] [B] [Ctrl] [C] Terminates a task and displays the command prompt. [Ctrl] [D] Deletes the character at the cursor.
Using the Web Browser Interface Overview Overview The Web browser interface built into the switch lets you easily access the switch from a browser-based PC on your network. This lets you do the following: Optimize your network uptime by using the Alert Log and other diagnostic ■...
Using the Web Browser Interface General Features General Features The switch includes these web browser interface features: Switch Configuration: • Ports • VLANs and Primary VLAN • Fault detection • Port monitoring (mirroring) • System information • Enable/Disable Multicast Filtering (IGMP) and Spanning Tree •...
Location or Address field instead of the IP address. Using DNS names typically improves browser performance. Contact your network adminis trator to enquire about DNS names associated with your ProCurve switch. Type the IP address (or DNS name) of the switch in the browser Location or Address (URL) field and press .
(optionally) a DNS name, and has been discovered by PCM or PCM+. (For more on assigning an IP address, refer to “IP Configuration” on page 8-3.) To establish a web browser session with ProCurve PCM or PCM+ running, do the following on the network management station: 1. Make sure the Java applets are enabled for your web browser.
Page 72
Using the Web Browser Interface Starting a Web Browser Interface Session with the Switch First-T me Alert Install Alert Figure 5-1. Example of Status Overview Screen N o t e The above screen appears somewhat different if the switch is configured as a stack Commander.
Using the Web Browser Interface Tasks for Your First Web Browser Interface Session Tasks for Your First Web Browser Interface Session The first time you access the web browser interface, there are three tasks that you should perform: ■ Review the “First Time Install” window Set Manager and Operator passwords ■...
Using the Web Browser Interface Tasks for Your First Web Browser Interface Session This window is the launching point for the basic configuration you need to perform to set web browser interface passwords to maintain security and Fault Detection policy, which determines the types of messages that will be displayed in the Alert Log.
Page 75
Using the Web Browser Interface Tasks for Your First Web Browser Interface Session Figure 5-3. The Device Passwords Window To set the passwords: 1. Access the Device Passwords screen by one of the following methods: • If the Alert Log includes a “First Time Install” event entry, double click on this event, then, in the resulting display, click on the secure access to the device link.
Using the Web Browser Interface Tasks for Your First Web Browser Interface Session N o t e Passwords you assign in the web browser interface will overwrite previous passwords assigned in either the web browser interface, the Command Prompt, or the switch console. That is, the most recently assigned passwords are the switch’s passwords, regardless of which interface was used to assign the string.
N o t e To access the online Help for the web browser interface, you need either ProCurve Manager (version 1.5 or greater) installed on your network or an active connection to the World Wide Web. Otherwise, Online help for the web browser interface will not be available.
Help files for this web browser nterface. (The default setting accesses the switch’s browser- based Help on the ProCurve web site.) Note that if you nstal PCM in your network, the PCM management station acts as...
URL in this field.) In the default configuration (and if PCM is not running on your network) ■ this field is set to the URL for accessing online Help from the ProCurve Networking Website: http://www.procurve.com Using this option, the Help files are automatically available if your work...
Page 80
Using the Web Browser Interface Support/Mgmt URLs Feature In the default configuration, the switch uses the URL for accessing the web browser nterface he p files on the ProCurve web site. Figure 5-7. How To Access Web Browser Interface Online Help 5-14...
Alert Log Contro Bar Figure 5-8. The Status Overview Window Policy Management and Configuration. ProCurve PCM can perform network-wide policy management and configuration of your switch. The Management Server URL field (page 5-13) shows the URL for the management station performing that function. For more information, refer to the documen...
Using the Web Browser Interface Status Reporting Features The Port Utilization and Status Displays The Port Utilization and Status displays show an overview of the status of the switch and the amount of network activity on each port. The following figure shows a sample reading of the Port Utilization and Port Status.
Page 83
Using the Web Browser Interface Status Reporting Features Maximum Activity Indicator: As the bars in the graph area change ■ height to reflect the level of network activity on the corresponding port, they leave an outline to identify the maximum activity level that has been observed on the port.
Using the Web Browser Interface Status Reporting Features Port Status Port Status Indicators Legend Figure 5-12. The Port Status Indicators and Legend The Port Status indicators show a symbol for each port that indicates the general status of the port. There are four possible statuses: ■...
Using the Web Browser Interface Status Reporting Features The Alert Log The web browser interface Alert Log, shown in the lower half of the screen, shows a list of network occurrences, or alerts, that were detected by the switch. Typical alerts are Broadcast Storm, indicating an excessive number of broadcasts received on a port, and Problem Cable, indicating a faulty cable.
Using the Web Browser Interface Status Reporting Features Alert Types and Detailed Views As of April, 2004, the web browser interface generates the following alert types: • Auto Partition • High collision or drop rate • Backup Transition • Loss of Link •...
Page 87
Using the Web Browser Interface Status Reporting Features Figure 5-14.Example of Alert Log Detail View 5-21...
Using the Web Browser Interface Status Reporting Features The Status Bar The Status Bar is displayed in the upper left corner of the web browser interface screen. Figure 5-15 shows an expanded view of the status bar. Most Critical Alert Descr ption Status Indicator Product Name Figure 5-15.
Using the Web Browser Interface Status Reporting Features Product Name. The product name of the switch to which you are ■ connected in the current web browser interface session. Setting Fault Detection Policy One of the powerful features in the web browser interface is the Fault Detection facility.
Page 90
Never. Disables the Alert Log and transmission of alerts (traps) to the management server (in cases where a network management tool such as ProCurve Manager is in use). Use this option when you don’t want to use the Alert Log.
Switch Memory and Configuration Overview Overview This chapter describes: ■ How switch memory manages configuration changes How the CLI implements configuration changes ■ ■ How the menu interface and web browser interface implement configu ration changes ■ How the switch provides software options through primary/secondary flash image options How to use the switch’s primary and secondary flash options, including ■...
Page 93
Switch Memory and Configuration Overview of Configuration File Management Running Config File: Exists in volatile memory and controls switch ■ operation. If no configuration changes have been made in the CLI since the switch was last booted, the running-config file is identical to the startup-config file.
Page 94
For example, suppose you use the following command to disable port 5: ProCurve(config)# interface ethernet 5 disable The above command disables port 5 in the running-config file, but not in the startup-config file.
Switch Memory and Configuration Using the CLI To Implement Configuration Changes Using the CLI To Implement Configuration Changes The CLI offers these capabilities: Access to the full set of switch configuration features ■ ■ The option of testing configuration changes before making them perma nent How To Use the CLI To View the Current Configuration Files.
Page 96
ProCurve(config)# interface e a5 speed-duplex auto-10 After you are satisfied that the link is operating properly, you can save the change to the switch’s permanent configuration (the startup-config file) by...
Page 97
Using the CLI To Implement Configuration Changes Disables port 1 in the running configuration, which causes port 1 to block all traffic. ProCurve(config)# interface e 1 disable ProCurve(config)# boot Device will be rebooted, do you want to continue [y/n]? y Press to continue the rebooting process.
Syntax: erase startup-config For example: ProCurve(config)# erase startup-config Configuration will be deleted and device rebooted, continue [y/n]? Figure 6-3.Resetting to the Factory-Default Configuration Press to replace the current configuration with the factory default config...
Page 99
Switch Memory and Configuration Using the Menu and Web Browser Interfaces To Implement Configuration Changes N o t e The only exception to this operation are two VLAN-related parameter changes that require a reboot—described under “Rebooting To Activate Configuration Changes” on page 6-11. Using in the Menu Interface Save...
Switch Memory and Configuration Using the Menu and Web Browser Interfaces To Implement Configuration Changes N o t e If you reconfigure a parameter in the CLI and then go to the menu interface without executing a write memory command, those changes are stored only in the running configuration.
Switch Memory and Configuration Using the Menu and Web Browser Interfaces To Implement Configuration Changes Rebooting To Activate Configuration Changes. Configuration changes for most parameters become effective as soon as you save them. However, you must reboot the switch in order to implement a change in the Maximum VLANs to support parameter (To access these parameters, go to the Main menu and select 2.
Switch Memory and Configuration Using Primary and Secondary Flash Image Options Using Primary and Secondary Flash Image Options The switch features two flash memory locations for storing switch software image files: ■ Primary Flash: The default storage for a switch software image. ■...
Page 103
Switch Memory and Configuration Using Primary and Secondary Flash Image Options For example, if the switch is using a software version of G.01.01 stored in Primary flash, show version produces the following: Figure 6-7. Example Showing the Identity of the Current Flash Image Determining Whether the Flash Images Are Different Versions.
Switch Memory and Configuration Using Primary and Secondary Flash Image Options In this example show version indicates the switch has version G.05.01 in primary flash After the boot system command, show version indi cates that version G.05.00 is n secondary flash.
Switch Memory and Configuration Using Primary and Secondary Flash Image Options Local Switch Software Replacement and Removal This section describes commands for erasing a software version and copying an existing software version between primary and secondary flash. N o t e It is not necessary to erase the content of a flash location before downloading another software file.
Page 106
Figure 6-10. Example Indicating Two Different Software Versions in Primary and Secondary Flash Execute the copy command as follows: ProCurve(config)# copy flash flash primary Erasing the Contents of Primary or Secondary Flash. This command deletes the software image file from the specified flash location.
Switch Memory and Configuration Using Primary and Secondary Flash Image Options The prompt shows which flash ocation wil be erased. Figure 6-11. Example of Erase Flash Prompt Type y at the prompt to complete the flash erase. Use show flash to verify erasure of the selected software flash image The "...
Page 108
Switch Memory and Configuration Using Primary and Secondary Flash Image Options Booting from Primary Flash. This command always boots the switch from primary flash, and executes the complete set of subsystem self-tests. Syntax: boot For example, to boot the switch from primary flash with pending configuration changes in the running-config file: Figure 6-13.
Switch Memory and Configuration Using Primary and Secondary Flash Image Options Booting from the Current Software Version. Reload reboots the switch from the flash image on which the switch is currently running, and saves to the startup-config file any configuration changes currently in the running config file.
Page 110
Switch Memory and Configuration Using Primary and Secondary Flash Image Options — This page is intentionally unused. — 6-20...
Interface Access and System Information Overview Overview This chapter describes how to: ■ View and modify the configuration for switch interface access Use the CLI kill command to terminate a remote session ■ ■ View and modify switch system information For help on how to actually use the interfaces built into the switch, refer to: ■...
Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet Menu: Modifying the Interface Access The menu interface enables you to modify these parameters: ■ Inactivity Time-out Inbound Telnet Enabled ■ Web Agent Enabled ■ To Access the Interface Access Parameters: From the Main Menu, Select...
Console Contro Options Figure 7-2. Listing of Show Console Command Reconfigure Inbound Telnet Access. In the default configuration, inbound Telnet access is enabled. Syntax: [no] telnet-server To disable inbound Telnet access: ProCurve(config)# no telnet-server To re-enable inbound Telnet access: ProCurve(config)# telnet-server...
Page 116
Reconfigure Web Browser Access. In the default configuration, web browser access is enabled. Syntax: [no] web-management To disable web browser access: ProCurve(config)# no web-management To re-enable web browser access: ProCurve(config)# web-management Reconfigure the Console/Serial Link Settings. You can reconfigure one or more console parameters with one console command.
Page 117
Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet For example, to use one command to configure the switch with the following: ■ VT100 operation ■ 19,200 baud No flow control ■ ■ 10-minute inactivity time ■ Critical log events you would use the following command sequence: The switch implements the Event Log change immediately.
Page 118
Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet CLI Local Terminal Mode (Series 2800 switches). To enable temporary and non-disruptive changes to the terminal mode without forcing a change in the switch’s terminal mode configuration, use the console local-terminal command.
Interface Access and System Information Denying Interface Access by Terminating Remote Management Sessions Denying Interface Access by Terminating Remote Management Sessions The switch supports up to four management sessions. You can use show ip ssh to list the current management sessions, and kill to terminate a currently running remote session.
System Name: Using a unique name helps you to identify individual devices in stacking environments and where you are using an SNMP network manage ment tool such as ProCurve Manager. System Contact and Location: This information is helpful for identifying the person administratively responsible for the switch and for identifying the locations of individual switches.
Daylight Time Rule: Specifies the daylight savings time rule to apply for your location. The default is None. (For more on this topic, see Appendix E, “Daylight Savings Time on ProCurve Switches.) Time: Used in the CLI to specify the time of day, the date, and other system parameters.
Interface Access and System Information System Information 3. Refer to the online help provided with this screen for further information on configuration options for these features. 4. When you have finished making changes to the above parameters, press , then press (for Save) and return to the Main Menu.
Page 123
Interface Access and System Information System Information Configure a System Name, Contact, and Location for the Switch. To help distinguish one switch from another, configure a plain-language identity for the switch. Syntax: hostname <name-string> snmp-server [contact <system contact>] [location <system location>] Both fields allow up to 48 characters.
Page 124
Vancouver, Canada is -480 (zone -8, or -480 minutes). To configure the time zone and daylight time rule for Vancouver, Canada: ProCurve(config)# time timezone -480 daylight-time-rule continental-us-and-canada Configure the Time and Date. The switch uses the time command to con...
Interface Access and System Information System Information Web: Configuring System Parameters In the web browser interface, you can enter the following system information: ■ System Name System Location ■ System Contact ■ For access to the MAC Age Interval and the Time parameters, use the menu interface or the CLI.
Page 126
Interface Access and System Information System Information — This page is intentionally unused. — 7-16...
Configuring IP Addressing Overview Overview You can configure IP addressing through all of the switch’s interfaces. You can also: ■ Easily edit a switch configuration file to allow downloading the file to multiple switches without overwriting each switch’s unique gateway and VLAN 1 IP addressing.
Configuring IP Addressing IP Configuration IP Configuration IP Configuration Features Feature Default Menu IP Address and Subnet Mask DHCP/Bootp page 8-5 page 8-7 page 8-11 Multiple IP Addresses on a VLAN page 8-9 Default Gateway Address none page 8-5 page 8-7 page 8-11 Packet Time-To-Live (TTL) 64 seconds...
Enter setup at the CLI Manager level prompt. ■ ProCurve# setup Select 8. Run Setup in the Main Menu of the menu interface. ■ For more on using the Switch Setup screen, see the Installation and Getting Started Guide you received with the switch.
URL in your web browser. IP Addressing in a Stacking Environment If you are installing the switch into an ProCurve stack management environ ment, entering an IP address may not be required. See the chapter on stack management in the Advanced Traffic Management Guide.
Page 132
Configuring IP Addressing IP Configuration For descriptions of these parameters, see the online Help for this screen. Before using the DHCP/ Bootp option, refer to “DHCP/Bootp Operation” on page 8-12. Figure 8-1. Example of the IP Service Configuration Screen without Multiple VLANs Configured 2. Press (for Edit).
Configuring IP Addressing IP Configuration CLI: Configuring IP Address, Gateway, and Time-To- Live (TTL) IP Commands Used in This Section show ip page 8-7 vlan <vlan-id> ip page 8-8 address ip default-gateway page 8-11 ip ttl page 8-11 Viewing the Current IP Configuration. The following command displays the IP addressing for each VLAN configured in the switch.
Page 134
This example configures IP addressing on the default VLAN with the subnet mask specified in mask bits. ProCurve(config)# vlan 1 ip address 10.28.227.103/255.255.255.0 This example configures the same IP addressing as the preceding example, but specifies the subnet mask by mask length.
Page 135
Configuring IP Addressing IP Configuration Configure Multiple IP Addresses on a VLAN (Multinetting). You can configure one primary IP address per VLAN and up to seven secondary IP addresses for the same VLAN. That is, the switch enables you to assign up to eight networks to a VLAN.
Page 136
Configuring IP Addressing IP Configuration If you then wanted to multinet the default VLAN, you would do the following: The secondary IP addresses in a VLAN are l isted immediately after the primary IP address for the VLAN. Figure 8-5. Example of Multinetting on the Default VLAN N o t e The Internet (IP) Service screen in the Menu interface (figure 8-1 on page 8-6) displays only the primary IP address for each VLAN.
Syntax: ip default-gateway <ip-address> For example: ProCurve(config)# ip default-gateway 10.28.227.115 Note The switch uses the IP default gateway only while operating as a Layer 2 device. While routing is enabled on the switch, the IP default gateway is not used.
• DHCP or Bootp support for automatic IP address suggested solutions configuration, and DHCP support for automatic Timep • SNMP network management access such as ProCurve server IP address configuration Manager network configuration, monitoring, problem- • Spanning Tree Protocol finding and reporting, analysis, and recommendations for • Port settings and port trunking...
Page 139
Configuring IP Addressing IP Configuration The DHCP/Bootp Process. Whenever the IP Config parameter in the switch or in an individual VLAN in the switch is configured to DHCP/Bootp (the default), or when the switch is rebooted with this configuration: 1. DHCP/Bootp requests are automatically broadcast on the local network. (The switch sends one type of request to which either a DHCP or Bootp server can respond.) 2. When a DHCP or Bootp server receives the request, it replies with a...
Page 140
Configuring IP Addressing IP Configuration Bootp Operation. When a Bootp server receives a request it searches its Bootp database for a record entry that matches the MAC address in the Bootp request from the switch. If a match is found, the configuration data in the associated database record is returned to the switch.
Configuring IP Addressing IP Configuration TFTP server address (source of final configuration file) T144 is the vendor-specific “tag” identif y ing the configuration file to download. is a required entry that specifies t h e Bootp report format. For the switches described in this guide, set this parameter to rfc1048.
Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads IP Preserve enables you to copy a configuration file to multiple switches that use the same operating-system software while retaining the individual IP address and subnet mask on VLAN 1 in each switch, and the Gateway IP address assigned to the switch.
Page 143
Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads Enter ing "i p preserve" in the last line of a configuration file imp ements IP Preserve when the file is downloaded to the switch and the switch reboots. Figure 8-6.
Page 144
Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads Using figure 8-7, above, switches 1 - 3 ignore these entri es because the file imp ements IP Preserve and their current IP addressing was not acquired through DHCP/Bootp.
Page 145
Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads Because switch 4 (figure 8-7) received ts most recent IP addressing from a DHCP/Bootp server, the switch ignores the ip preserve command and implements the IP addressing incl uded in this file.
Page 146
Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads — This page is intentionally unused. — 8-20...
Time Protocols Overview Overview This chapter describes: ■ SNTP Time Protocol Operation Timep Time Protocol Operation ■ Using time synchronization ensures a uniform time among inter operating devices. This helps you to manage and troubleshoot switch operation by attaching meaningful time data to event and error messages. The switch offers TimeP and SNTP (Simple Network Time Protocol) and a timesync command for changing the time protocol selection (or turning off time protocol operation).
Time Protocols Overview: Selecting a Time Synchronization Protocol or Turning Off Time Protocol Operation ular server, it ignores time broadcasts from other SNTP servers unless the configurable expires three consecutive times without Poll Interval an update received from the first-detected server. Note To use Broadcast mode, the switch and the SNTP server must be in the same subnet.
Time Protocols SNTP: Viewing, Selecting, and Configuring Note that simply selecting a time synchronization protocol does not enable that protocol on the switch unless you also enable the protocol itself (step 2, above). For example, in the factory-default configuration, TimeP is the selected time synchronization method.
Time Protocols SNTP: Viewing, Selecting, and Configuring Table 9-1.SNTP Parameters SNTP Parameter Operation Time Sync Used to select either SNTP, TIMEP, or None as the time synchronization method. Method SNTP Mode Disabled The Default. SNTP does not operate, even if specified by the Menu interface Time Sync Method parameter or the CLI timesync command.
Page 152
Time Protocols SNTP: Viewing, Selecting, and Configuring me Protocol Selection Parameter – TIMEP – SNTP – None Figure 9-1. The System Information Screen (Default Values) 2. Press (for ). The cursor moves to the field. Edit System Name 3. Use [v] to move the cursor to the Time Sync Method field.
Page 153
Time Protocols SNTP: Viewing, Selecting, and Configuring ii. Enter the IP address of the SNTP server you want the switch to use for time synchronization. Note: This step replaces any previously configured server IP address. If you will be using backup SNTP servers (requires use of the CLI), then “SNTP Unicast Time Polling with Multiple SNTP Servers”...
Time Protocols SNTP: Viewing, Selecting, and Configuring CLI: Viewing and Configuring SNTP CLI Commands Described in this Section show sntp page 9-8 [no] timesync pages 9-9 and ff., 9-12 sntp broadcast page 9-9 sntp unicast page 9-10 sntp server pages 9-10 and ff. Protocol Version page 9-12 poll-interval...
Time Protocols SNTP: Viewing, Selecting, and Configuring Even though, in this example, TimeP is the current time synchronous method, the switch maintains the SNTP configuration. Figure 9-3. Example of SNTP Configuration When SNTP Is Not the Selected Time Synchronization Method Configuring (Enabling or Disabling) the SNTP Mode Enabling the SNTP mode means to configure it for either broadcast or unicast mode.
Page 156
Time Protocols SNTP: Viewing, Selecting, and Configuring 2. Select SNTP as the time synchronization mode. 3. Enable SNTP for Broadcast mode. 4. View the SNTP configuration again to verify the configuration. The commands and output would appear as follows: show sntp displays the SNTP configuration and also shows that TimeP is the currently active time synchronization mode.
Page 157
ProCurve(config)# timesync sntp Selects SNTP. ProCurve(config)# sntp unicast Activates SNTP in Unicast mode. ProCurve(config)# sntp server 10.28.227.141 Specifies the SNTP server and accepts the current SNTP server version (default: 3). In this example, the Poll Interval and the Protocol Version appear at their default settings.
Page 158
720 seconds. (This parameter is separate from the poll interval parameter used for Timep operation.) For example, to change the poll interval to 300 seconds: ProCurve(config)# sntp poll-interval 300 Disabling Time Synchronization Without Changing the SNTP Configuration. The recommended method for disabling time synchroniza...
Page 159
Time Protocols SNTP: Viewing, Selecting, and Configuring Figure 9-7. Example of SNTP with Time Sychronization Disabled Disabling the SNTP Mode. If you want to prevent SNTP from being used even if selected by (or the Menu interface’s param timesync Time Sync Method eter), configure the SNTP mode as disabled.
Time Protocols TimeP: Viewing, Selecting, and Configuring TimeP: Viewing, Selecting, and Configuring TimeP Feature Default Menu view the Timep time synchronization page 9-15 page 9-17 — configuration select Timep as the time synchronization TIMEP page 9-13 pages 9-18 — method disable time synchronization timep page 9-15...
Time Protocols TimeP: Viewing, Selecting, and Configuring Menu: Viewing and Configuring TimeP To View, Enable, and Modify the TimeP Protocol: 1. From the Main Menu, select: 2. Switch Configuration... 1. System Information me Protocol Selection Parameter – TIMEP (the default) –...
Time Protocols TimeP: Viewing, Selecting, and Configuring • Use the Space bar to select the mode. Manual i. Press [>] to move the cursor to the field. Server Address ii. Enter the IP address of the TimeP server you want the switch to use for time synchronization.
Time Protocols TimeP: Viewing, Selecting, and Configuring This section describes how to use the CLI to view, enable, and configure TimeP parameters. Viewing the Current TimeP Configuration This command lists both the time synchronization method (TimeP, SNTP, or None) and the TimeP configuration, even if SNTP is not the selected time protocol.
Time Protocols TimeP: Viewing, Selecting, and Configuring Configuring (Enabling or Disabling) the TimeP Mode Enabling the TimeP mode means to configure it for either broadcast or unicast mode. Remember that to run TimeP as the switch’s time synchronization protocol, you must also select TimeP as the time synchronization method by using the CLI timesync command (or the Menu interface Time Sync Method parameter).
Page 165
Time Protocols TimeP: Viewing, Selecting, and Configuring The commands and output would appear as follows: show timep displays the TimeP configuration and also shows that SNTP is the currently active time synchronization mode. show timep again displays the TimeP configuration and shows that TimeP is now the currently active time synchronization mode.
Page 166
TimeP: Viewing, Selecting, and Configuring ProCurve(config)# timesync timep Selects TimeP. ProCurve(config)# ip timep manual 10.28.227.141 Activates TimeP in Manual mode. Figure 9-13. Example of Configuring Timep for Manual Operation Changing the TimeP Poll Interval. This command lets you specify how long the switch waits between time polling intervals.
Time Protocols SNTP Unicast Time Polling with Multiple SNTP Servers Figure 9-14. Example of TimeP with Time Sychronization Disabled Disabling the TimeP Mode. Disabling the TimeP mode means to configure it as disabled. (Disabling TimeP prevents the switch from using it as the time synchronization protocol, even if it is the selected Time Sync Method option.)
Time Protocols SNTP Unicast Time Polling with Multiple SNTP Servers all servers in the list without success, it sends an error message to the Event Log and reschedules to try the address list again after the configured Poll Interval time has expired. Address Prioritization If you use the CLI to configure multiple SNTP servers, the switch prioritizes them according to the decimal values of their IP addresses.
Page 169
(See “Address Prioritization” on page 9-22.) Syntax: no sntp server <ip-addr> For example, to delete the primary address in the above example (and automatically convert the secondary address to primary): ProCurve(config)# no sntp server 10.28.227.141 9-23...
Time Protocols SNTP Messages in the Event Log Menu Interface Operation with Multiple SNTP Server Addresses Configured When you use the Menu interface to configure an SNTP server IP address, the new address writes over the current primary address, if one is configured. If there are multiple addresses configured, the switch re-orders the addresses according to the criteria described under “Address Prioritization”...
Port Status and Basic Configuration Contents Overview ........... . . 10-3 Viewing Port Status and Configuring Port Parameters .
Page 172
Port Status and Basic Configuration Contents Outbound Port Queues and Packet Priority Settings ... . 10-30 Operating Rules for Port-Based Priority ..... . 10-31 Configuring and Viewing Port-Based Priority .
Port Status and Basic Configuration Overview Overview This chapter describes how to view the current port configuration and how to configure ports to non-default settings, including ■ Enable/Disable Mode (speed and duplex) ■ ■ Flow Control ■ Broadcast Limit Auto-MDIX ■...
Page 174
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Table 10-1. Status and Parameters for Each Port Type Status or Description Parameter Enabled Yes (default): The port is ready for a network connection. No: The port will not operate, even if properly connected in a network. Use this setting, for example, if the port needs to be shut down for diagnostic purposes or while you are making topology changes.
Page 175
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Status or Description Parameter Mode 10/100/1000Base-T: (Continued) • Auto-10: Allows the port to negotiate between ha lf-duplex (HDx) and full-duplex (FDx) while keeping speed at 10 Mbps. Also negotiates flow control (enabled or disabled). HP recommends Auto-10 for links between 10/100 autosensing ports connected with Cat 3 cabling.
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Status or Description Parameter show trunk Type This parameter appears in the CLI listing and, for a port in a trunk group, specifies the type of trunk group. The default Type is passive LACP, which can be displayed by using the CLI show lacp command. For more on port trunking, see “Port Trunking”...
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Using the Menu To Configure Ports. N o t e The menu interface uses the same screen for configuring both individual ports and port trunk groups. For information on port trunk groups, see Chapter 12, “Port Trunking”...
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters From the CLI, you can configure and view all port parameter settings and view all port status indicators. Using the CLI To View Port Status Use the following commands to display port status and configuration: show interfaces brief: Lists the full status and configuration for all ports ■...
Page 179
Current Operating Mode Figure 10-3. Example Show Interface Command Listing, 4100gl Switch Current Configured Mode Figure 10-4. Example Show Interface Config Command Listing, 4100gl Switch ProCurve(config)# show interface brief Current Operating Mode Status and Counters - Port Status | Intrusion...
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters ProCurve(config)# show interface config Port Settings Current Configured Mode Port Type | Enabled Mode Flow Ctrl MDI ------- --------- + ------- ------------ --------- ---- 10/100TX | Yes Auto...
100FDx with flow-control active, you could do so with either of the following command sets. These commands enable and configure port C8 from the config level: ■ ProCurve(config)# int e c8 enable ProCurve(config)# int e c8 speed-duplex 100-full ProCurve(config)# int e c8 flow-control ■...
Page 182
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Syntax: broadcast-limit < 0 . . 99 > Configures the theoretical maximum bandwidth percentage that can be used on the switch ports for incoming broadcasts. The switch drops any broadcast or multicast traffic exceeding that limit.
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters running-config file. (Rebooting is not necessary.) Use write-memory to save the configuration to the startup-config file. Syntax: interface < port-list > broadcast-limit < 0 - 99 > Configures the theoretical maximum bandwidth percentage that can be used on the specified switch port(s) for broadcasts and multicasts.
The following port types on your switch support the IEEE 802.3ab standard, which includes the “Auto MDI/MDI-X” feature: ProCurve Series ProCurve Series ProCurve Switch ProCurve 6108...
Page 185
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Table 10-1 shows the cabling requirements for the MDI/MDI-X settings. Table 10-1. Cable Types for Auto and Manual MDI/MDI-X Settings MDI/MDI-X Device Type Setting PC or Other MDI Device Type Switch, Hub, or Other MDI-X Device Manual MDI Crossover Cable...
Page 186
Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters For example, show interfaces config displays the following data when port 1 is configured for auto-mdix, port 2 is configured for mdi, and port 3 is configured for mdix. Per-Port MDI Configuration Figure 10-2.
However, to configure a port trunk group, you must use the CLI or the menu interface. For more on this topic, see Chapter 12, “Port Trunking” . Jumbo Packets on the Series 2800 Switches This section applies only to the ProCurve Series 2800 switches. Feature Default Menu display VLAN jumbo status —...
Port Status and Basic Configuration Jumbo Packets on the Series 2800 Switches Terminology Jumbo Packet: On the Series 2800 switches, an IP packet exceeding 1522 bytes in size. The maximum Jumbo packet size is 9220 bytes. (This size includes 4 bytes for the VLAN tag.) Jumbo VLAN: A VLAN configured to allow inbound jumbo traffic.
Port Status and Basic Configuration Jumbo Packets on the Series 2800 Switches traffic from devices on either VLAN. For a method to allow only some ports in a VLAN to receive jumbo traffic, refer to “Operating Notes for Jumbo Traffic-Handling” on page 10-22. Configuring Jumbo Packet Operation Command Page...
Port Status and Basic Configuration Jumbo Packets on the Series 2800 Switches Viewing the Current Jumbo Configuration Syntax: show vlans Lists the static VLANs configured on the switch and includes a Jumbo column to indicate which VLANs are configured to support inbound jumbo traffic.
Page 191
Port Status and Basic Configuration Jumbo Packets on the Series 2800 Switches Indicates which static VLANs are configured to enable umbo packets. Figure 10-5. Example of Listing the VLAN Memberships for a Range of Ports Syntax: show vlans < vid > This command shows port membership and jumbo configuration for the specified <...
VLAN.) Operating Notes for Jumbo Traffic-Handling ■ ProCurve does not recommend configuring a voice VLAN to accept jumbo packets. Voice VLAN packets are typically small, and allowing a voice VLAN to accept jumbo packet traffic can degrade the voice transmission performance.
Page 193
Port Status and Basic Configuration Jumbo Packets on the Series 2800 Switches When a port is not a member of any jumbo-enabled VLAN, it drops all ■ jumbo traffic. If the port is receiving “excessive” inbound jumbo traffic, the port generates an Event Log message to notify you of this condition. This same condition generates a Fault-Finder message in the Alert log of the switch’s web browser interface, and also increments the switch’s “Giant Rx”...
Port Status and Basic Configuration Jumbo Packets on the Series 2800 Switches Non-Jumbo VLAN Jumbo-Enabled VLAN VLAN 20 VLAN 10 Port 3 belongs to both VLAN 10 and VLAN 20. Jumbo packets received inbound on port 3 can be forwarded out the Non-Jumbo ports 4, 5, and 6. Figure 10-7.
Port Status and Basic Configuration QoS Pass-Through Mode on the Series 2800 and 4100gl Switches QoS Pass-Through Mode on the Series 2800 and 4100gl Switches QoS Pass-Through mode is designed to enhance the performance of line-rate traffic transfers through the Series 2800 and 4100gl switches. This feature should only be used in environments where Quality of Service (QoS) is not of major importance, but where lossless data transfers are key.
Port Status and Basic Configuration QoS Pass-Through Mode on the Series 2800 and 4100gl Switches Any 802.1p tagging on a received packet, or any tag added to a ■ received frame by the switch via its QoS configuration, will be preserved as it is transmitted from the switch.
Page 197
ProCurve Switch 2824(config)# qos-passthrough-mode Command will take effect after saving configuration and reboot ProCurve Switch 2824(config)# write memory ProCurve Switch 2824(config)# reload This command can be enabled and disabled only from the switch's CLI. QoS passthrough mode cannot be enabled or disabled through either the switch's menu or web browser interfaces.
Port Status and Basic Configuration Configuring Port-Based Priority for Incoming Packets on the 4100gl and 6108 Switches Configuring Port-Based Priority for Incoming Packets on the 4100gl and 6108 Switches Feature Default Menu Assigning a priority level to traffic on the basis Disabled page 10-31 of incoming port...
VLAN, then the tag is stripped from the packet, which then exits from the switch without a priority setting. Outbound Port Queues and Packet Priority Settings Ports on the ProCurve switches have the following outbound port queue structure: Switch Model...
Port Status and Basic Configuration Configuring Port-Based Priority for Incoming Packets on the 4100gl and 6108 Switches For example, suppose you have configured port A10 to assign a priority level of 1 (low): ■ An untagged packet coming into the switch on port A10 and leaving the switch through any other port configured as a tagged VLAN member would leave the switch as a tagged packet with a priority level of 1.
Port Status and Basic Configuration Configuring Port-Based Priority for Incoming Packets on the 4100gl and 6108 Switches On a given port, an inbound, tagged packet received on the port with a ■ preset priority of 1 - 7 in its tag keeps that priority and is assigned an outbound queue on the basis of that priority (regardless of the port-based priority configured on the port).
Port Status and Basic Configuration Configuring Port-Based Priority for Incoming Packets on the 4100gl and 6108 Switches For example, suppose you wanted to configure ports A10 -A12 on the switch to prioritize all untagged, inbound VLAN traffic as "Low" (priority level = 1; refer to table 10-3 on page 10-29).
Port Status and Basic Configuration Using Friendly (Optional) Port Names Using Friendly (Optional) Port Names Feature Default Menu Configure Friendly Port Names Standard Port page 34 Numbering Display Friendly Port Names page 36 This feature enables you to assign alphanumeric port names of your choosing to augment automatically assigned numeric port names.
Port Status and Basic Configuration Using Friendly (Optional) Port Names To retain friendly port names across reboots, you must save the current ■ running-configuration to the startup-config file after entering the friendly port names. (In the CLI, use the write memory command.) Configuring Friendly Port Names Syntax: interface <port-list>...
Page 205
Port Status and Basic Configuration Using Friendly (Optional) Port Names Configuring the Same Name for Multiple Ports. Suppose that you want to use ports A5 through A8 as a trunked link to a server used by a drafting group. In this case you might configure ports A5 through A8 with the name “Draft-Server:Trunk”.
Port Status and Basic Configuration Using Friendly (Optional) Port Names Displaying Friendly Port Names with Other Port Data You can display friendly port name data in the following combinations: show name: Displays a listing of port numbers with their corresponding ■...
Page 207
Port Status and Basic Configuration Using Friendly (Optional) Port Names Port Without a "Fr endly" Name Friend y port names assigned in previous examp les. Figure 10-14. Example of Friendly Port Name Data for Specific Ports on the Switch Including Friendly Port Names in Per-Port Statistics Listings. A friendly port name configured to a port is automatically included when you display the port’s statistics output.
Page 208
Port Status and Basic Configuration Using Friendly (Optional) Port Names For a given port, if a friendly port name does not exist in the running-config file, the Name line in the above command output appears as: Name not assigned To Search the Configuration for Ports with Friendly Port Names. This option tells you which friendly port names have been saved to the startup...
Page 209
Power Over Ethernet (PoE) Operation for the Series 2600-PWR Switches Contents Overview ........... . . 11-2 Configuration Options .
(referred to collectively as the Series 2600-PWR switches): ProCurve Switch 2600-8-PWR (J8762A) ■ ■ ProCurve Switch 2626-PWR (J8164A) ■ ProCurve Switch 2650-PWR (J8165A) The switches provision their 10/100Base-TX ports with power for PoE applications compatible with the IEEE 802.3af standard. The PoE ports on your switch support both standard networking links and PoE links.
PoE provisioning on the switch becomes oversubscribed. EPS External Power Supply; for exam ple, a ProCurve 600 RPS/EPS or a ProCurve 610 EPS. An EPS device provides power to provision PoE ports on a switch. See also “RPS” below.
The switch must have a minimum of 15.4 watts of unused PoE power available when you connect an 802.3af-compliant PD, regardless of how much power the PD actually uses. On the Switch 2626-PWR and Switch 2600-8-PWR, there will always be enough power available to connect and support 802.3af PoE operation on all 10/100-TX ports.
Power Over Ethernet (PoE) Operation for the Series 2600-PWR Switches Power Availability and Provisioning Disconnecting a PD from a port causes the switch to stop providing PoE power to that port and makes the power available to other ports configured for PoE operation.
Page 214
“Critical” ports in ascending order, beginning with the lowest- numbered port in the class, which, in this case, is port 25. For this example, the CLI command to set ports to “Critical” is: ProCurve(config)# interface e 25-48 power critical 9 - 12 High This priority class receives power only if all PDs on ports with a Critical priority setting are receiving full power.
Power Over Ethernet (PoE) Operation for the Series 2600-PWR Switches Configuring PoE Operation Configuring PoE Operation By default, PoE support is enabled on the switch’s 10/100Base-TX ports, with the power priority set to Low and the power threshold set to 80 (%). The following commands allow you to adjust these settings.
To cycle the power on a PD receiving power from a PoE port on the switch, disable, then re-enable the power to that port. For example, to cycle the power on a PoE device connected to port 1 on a 2600-PWR switch: ProCurve(config)# no interface 1 power ProCurve(config)# interface 1 power 11-8...
(non-standard) IP phones. Note For a current listing of PDs supported by this feature, visit the ProCurve Networking website at http://www.procurve.com. Click on Technical support, and then on FAQs, and then select the switch model 2600-8-PWR.
For example, in the default PoE configuration, when the switch is running with several ports supporting PD loads, show power-management displays data similar to the following on a Switch 2626-PWR device: Figure 11-2. Example of Show Power-Management Output 11-10...
Power Over Ethernet (PoE) Operation for the Series 2600-PWR Switches Viewing PoE Configuration and Status Displaying an Overview of PoE Status on All Ports Syntax:show power-management brief Displays the following port power status: • Port: Lists all PoE-capable ports on the switch. • Power Enable: Shows Yes for ports on which PoE is enabled (the default) and No for ports on which PoE is disabled.
Power Over Ethernet (PoE) Operation for the Series 2600-PWR Switches Viewing PoE Configuration and Status Displaying the PoE Status on Specific Ports Syntax:show power-management [e] < port-list > Displays the following PoE status and statistics (since the last reboot) for each port in < port-list >: • Power Enable: Shows Yes for ports enabled to support PoE (the default) and No for ports on which PoE is disabled.
Planning and Implementing a PoE Configuration This section provides an overview of some considerations for planning a PoE application. For additional information, refer to the ProCurve PoE Planning and Implementation Guide. Assigning PoE Ports to VLANs If your network includes VLANs, you may want to assign various PoE...
Power Over Ethernet (PoE) Operation for the Series 2600-PWR Switches PoE Event Log Messages MAC Address Security: Using Port Security, you can configure each ■ switch port with a unique list of up to eight MAC addresses for devices that are authorized to access the network through that port. For more information, refer to the chapter titled “Configuring and Monitoring Port Security”...
Page 223
• Fan fault: A fan in an external power supply has failed. • Temperature fault: The operating temperature in an external power supply has exceeded the normal operating range. • 50V fault: The ProCurve 600 RPS/EPS or ProCurve 610 EPS reported a fault condition. Contact your ProCurve support representative.
Page 224
Power Over Ethernet (PoE) Operation for the Series 2600-PWR Switches PoE Event Log Messages POE usage has exceeded threshold of < 1 - 99 > % < slot-# > POE usage has exceeded threshold of < 1 - 99 > % Indicates that POE usage in the switch or indicated slot (if the switch includes module slots) has exceeded the configured threshold for the switch, as specified by the last execution of the...
Page 225
Port Trunking Contents Overview ........... . . 12-2 Port Status and Configuration .
This capability applies to connections between backbone devices as well as to connections in other network areas where traffic bottlenecks exist. Port Trunking Support ProCurve ProCurve ProCurve ProCurve Series 2600,...
Port Trunking Port Status and Configuration The multiple physica links in a trunk behave as one logica link Switch 2: port c1 port a1 Switch 1: port a2 port c2 Ports a2 and Ports c1 - c4 port a3 port c3 a4 - a6 are configured port a4...
To remove ports from an existing trunk, use the following command: ProCurve(config)# no trunk < ports-to-remove > Trunk Group Boundary Requirement for the Series 4100gl Switch 10/100/1000 Module (J4908A) On the J4908A, a trunk group (manual or dynamic LACP) must be comprised of ports from the same port group, as shown in table 3.
LACP option to Active on the ports you want to use for the trunk. For example, the following command configures ports C1-C4 to LACP active: ProCurve(config) int c1-c4 lacp active Note that the above example works if the ports are not already operating in a trunk.
Page 230
Port Trunking Port Status and Configuration ProCurve(config)# interface c1-c4 ProCurve(eth-c1-c4)#_ ProCurve(eth-c1-c4)# disable Change all four ports to LACP-passive and re-enable the ports. ProCurve(eth-c1-c4)# lacp passive ProCurve(eth-c1-c4)# enable N o t e If you change the port trunk configuration on a link, ensure that the port trunk configuration on the other end of the link matches the new configuration.
Page 231
Port Trunking Port Status and Configuration Table 12-2. Trunk Configuration Protocols Protocol Trunking Options LACP Provides dynamic and static LACP trunking options. (802.3ad) • Dynamic LACP — Use the switch-negotiated dynamic LACP trunk when: – The port on the other end of the trunk link is configured for Active or Passive LACP. – You want to achieve fault-tolerance for high-availability applications where you want a four-link trunk (2600, 2600-PWR, 4100gl, and 6108) or an eight-link trunk (2800) with one or more standby links available in case an active link goes down.
Page 232
Port Trunking Port Status and Configuration Table 12-3. General Operating Rules for Port Trunks Media: All ports on both ends of a trunk group must have the same media type and mode (speed and duplex). The switch blocks any trunked links that do not conform to this rule. (For the switches covered in this guide, HP recommends leaving Auto Auto-10 the port Mode setting at...
Page 233
Port Trunking Port Status and Configuration Trunk Group Boundary Requirement for the Series 4100gl Switch 10/100/1000 Module (J4908A): Trunks must be created, manually or dynamically, with ports from the same group, Group1 or Group2. Group1: Ports 1-5, 7-11, 16 Group2: Ports 6, 12-15, 17-22 For example, a trunk made up of ports 3 - 5 is valid;...
Port Trunking Port Status and Configuration Menu: Viewing and Configuring a Static Trunk Group Important Configure port trunking before you connect the trunked links to another switch, routing switch, or server. Otherwise, a broadcast storm could occur. (If you need to connect the ports before configuring them for trunking, you can temporarily disable the ports until the trunk is configured.
Page 235
Port Trunking Port Status and Configuration • All ports in a trunk must have the same media type and mode (such as 10/100TX set to 100FDx, or 100FX set to 100FDx). The flow control settings must also be the same for all ports in a given trunk. To verify these settings, see “Viewing Port Status and Configuring Port Param...
Port Trunking Port Status and Configuration During the Save process, traffic on the ports configured for trunking will be delayed for several seconds. If the Spanning Tree Protocol is enabled, the delay may be up to 30 seconds. 8. Connect the trunked ports on the switch to the corresponding ports on the opposite device.
Page 237
Port Trunking Port Status and Configuration Using a port list specifies, for switch ports in a static trunk group, only the ports you want to view. In this case, the command specifies ports A5 through A7. However, because port A6 is not in a static trunk group, it does not appear in the resulting listing: Port A5 appears with an example of a name that you can optionally assign using the Friendly Port Names feature.
Page 238
Port Trunking Port Status and Configuration Listing Static LACP and Dynamic LACP Trunk Data. This command lists data for only the LACP-configured ports. Syntax: show lacp In the following example, ports A1 and A2 have been previously configured for a static LACP trunk. (For more on “Active”, see table 12-5 on page 12-22.) Figure 12-8.
Trunks configured as FEC (Fast Ethernet Channel) are not supported. To configure port trunk groups, use static or LACP trunks. For release notes describing the latest software updates, visit the ProCurve Networking website at http://www.procurve.com. Click on Technical support, and then click on Product manuals.
Page 240
The following example uses ports C4 - C6 to create a non-protocol static trunk group with the group name of Trk2. ProCurve(config)# trunk c4-c6 trk2 trunk Removing Ports from a Static Trunk Group. This command removes one or more ports from an existing Trkx trunk group.
Page 241
< port-list > lacp active This example uses ports C4 and C5 to enable a dynamic LACP trunk group. ProCurve(config)# interface c4-c5 lacp active Removing Ports from a Dynamic LACP Trunk Group. To remove a port from dynamic LACP trunk operation, you must turn off LACP on the port. (On...
C6 from the dynamic trunk and return it to passive LACP, you would do the following: ProCurve>(config)# no interface c6 lacp ProCurve>(config)# interface c6 lacp passive Note that in the above example, if the port on the other end of the link is configured for active LACP or static LACP, the trunked link will be re...
Page 243
Port Trunking Port Status and Configuration N o t e Dynamic LACP trunks operate only in the default VLAN (unless GVRP is enabled and Forbid is used to prevent the trunked ports from joining the default VLAN). Thus, if an LACP dynamic trunk forms using ports that are not in the default VLAN, the trunk will automatically move to the default VLAN unless GVRP operation is configured to prevent this from occurring.
Page 244
Port Trunking Port Status and Configuration Table 12-4. LACP Trunk Types LACP Port Trunk Operation Configuration 802.3ad-compliant Dynamic LACP This option automat i cally establishes an trunk group, with LACP for the port Type parameter and DynX for the port Group name, where X is an automatically assigned value from 1 to 6 (2600, 2600-PWR, 4100gl, and 6108) or 1 to 24 (2800), depending on how many dynamic and static trunks are currently on the switch.
LACP to be disabled on the port. The following table describes the elements of per-port LACP operation. To display this data for a particular switch, execute the following command in the CLI: ProCurve> show lacp 12-21...
Page 246
Port Trunking Port Status and Configuration Table 12-5. LACP Port Status Data Status Name Meaning Port Numb Shows the physical port number for each port conf i gured for LACP operation (C1, C2, C3 . . .). Unlisted port numbers indicate that the missing ports are assigned to a static Trunk group or are not configured for any trunking.
LACP configuration, displays a notice that LACP is disabled on the port(s), and enables port security on that port. For example: ProCurve(config)# port-security a17 learn-mode static address-limit 2 LACP has been disabled on secured port(s). The switch will not allow you to configure LACP on a port on which port security is enabled.
Page 248
Port Trunking Port Status and Configuration Static LACP Trunks. Where a port is configured for LACP (Active or Passive), but does not belong to an existing trunk group, you can add that port to a static trunk. Doing so disables dynamic LACP on that port, which means you must manually configure both ends of the trunk.
Port Trunking Port Status and Configuration Half-Duplex and/or Different Port Speeds Not Allowed in LACP Trunks. The ports on both sides of an LACP trunk must be configured for the same speed and for full-duplex (FDx). The 802.3ad LACP standard speci fies a full-duplex (FDx) requirement for LACP trunking.
In actual networking environments, this is rarely a problem. However, if it becomes a problem, you can use the ProCurve Man ager Plus network management software to quickly and easily identify the sources of heavy traffic (top talkers) and make adjustments to improve performance.
Page 251
Port Trunking Port Status and Configuration Switch Switch Figure 12-12. Example of Port-Trunked Network Table 12-6. Example of Link Assignments in a Trunk Group (SA/DA Distribution) Source: Destination: Link: Node A Node W Node B Node X Node C Node Y Node D Node Z Node A...
Page 252
Port Trunking Port Status and Configuration — This page is intentionally unused. — 12-28...
Configuring for Network Management Applications Contents Using SNMP Tools To Manage the Switch ......13-3 Overview ..........13-3 SNMP Management Features .
Page 254
Configuring for Network Management Applications Contents LLDP Operation and Commands ......13-32 Viewing the Current LLDP Configuration .
Overview You can manage the switch via SNMP from a network management station running an application such as ProCurve Manager (PCM) or ProCurve Manager Plus (PCM+). For more on PCM and PCM+, visit the ProCurve web site at: http://www.procurve.com Click on products index in the sidebar, then click on the appropriate link appearing under the Network Management heading.
The switch SNMP agent also uses certain variables that are included in a Hewlett-Packard proprietary MIB (Management Information Base) file. To ensure that you have the latest version in the database of your SNMP network management tool, you can copy the MIB file from the ProCurve Networking web site at: http://www.procurve.com Click on software, then MIBs.
IP Authorized Manager feature. (Refer to the Access Security Guide for your switch.) C a u t i o n The “public” community exists by default and is used by ProCurve’s network management applications. Deleting the “public” community disables many network management functions (such as auto-discovery, traffic monitoring, SNMP trap generation, and threshold setting).
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP Version 3 Commands SNMP version 3 (SNMPv3) adds new commands to the CLI for configuring SNMPv3 functions. You can: Enable SNMPv3 with the snmpv3 enable command. An initial user entry ■...
(given fewer features), but not upgraded with new features added. For this I n i t i a l U s e r s reason ProCurve recommends that you create a second user with SHA and DES at when you enable SNMPv3...
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP Version 3 Users The second step to using SNMPv3 on the switch is to configure the users that you assign to different groups. To establish users on the switch: Add the users to the User table.
Page 261
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch [no] snmpv3 group group_name user user_name sec-model <ver1| ver2c | ver3> (— Continued —) user user_name This is the user to be added to the access group. This must match the user name added with the snmpv3 user command...
Page 262
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Then you must set the group access level to the user. This is done with the snmpv3 group command. For more details on the MIBs access for a give group see “Group Access Levels”...
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Group Access Levels The switch supports eight predefined group access levels. There are four levels for use with version 3 users and four are used for access by version 2c or version 1 management applications.
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP Communities SNMP commuities are supported by the switch to allow management application that use version 2c or version 1 to access the switch. The communities are mapped to Group Access Levels that are used for version 2c or version 1 support.
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Figure 13-4 shows the assigning of the Operator community on MgrStation1 to the CommunityOperatorReadWrite group. Any other Operator only has an access level of CommunityOperatorReadOnly. Add mapp ng to allow write access for Operator commun on MgrStation1 Two Operator Access Levels...
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch C a u t i o n Deleting or changing the community named “public” prevents network management applications (such as auto-discovery, traffic monitoring, SNMP trap generation, and threshold setting) from operating in the switch. (Changing or deleting the “public”...
Page 267
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch If you are adding a community, the fields in this screen are blank. If you are editing an existing community, Type the value for this field. the values for the currently selected Use the Space bar to select Community appear...
— see “SNMP Notification and Traps” on page 13-18). Syntax: show snmp-server [<community-string>] This example lists the data for all communities in a switch; that is, both the default ProCurve "public" community name and another community named "blue-team". Default Community and Settings...
Page 269
(Access to all MIB objects (read-only) except the CONFIG MIB.) ProCurve(config)# snmp-server community red-team manager unrestricted ProCurve(config)# snmp-server community blue-team operator restricted To eliminate a previously configured community named "gold-team": ProCurve(config) # no snmp-server community gold-team 13-17...
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP Notification and Traps The switches covered in this guide support the SNMPv3 notification process. They also support version 1or version 2c traps. For more information on version 1 or version 2c traps, see “Trap Features” on page 13-20. The SNMPv3 notification process allows for the messages passed to be authenticated and encrypted if you choose.
Page 271
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch [no] snmpv3 targetaddress < addr-name > params < parms-name> < IP-Addr > ( — Continued — ) max-msg-size<size> The maximum number of bytes of length a message to this target can be.
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Trap Features Feature Default Menu snmp-server host (trap receiver) public — page — 13-22 snmp-server enable (authentication trap) none — page — 13-23 A trap receiver is a management station designated by the switch to receive SNMP traps sent from the switch.
Page 273
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Using the CLI To List Current SNMP Trap Receivers. This command lists the currently configured trap receivers and the setting for authentication traps (along with the current SNMP community name data — see “SNMP Communities”...
Page 274
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Configuring Trap Receivers. This command specifies trap receivers by community membership, management station IP address, and the type of Event Log messages to send to the trap receiver. N o t e If you specify a community name that does not exist—that is, has not yet been configured on the switch—the switch still accepts the trap receiver...
Using SNMP Tools To Manage the Switch For example, to configure a trap receiver in a community named "red-team" with an IP address of 10.28.227.130 to receive only "critical" log messages: ProCurve(config)# snmp-server trap-receiver red-team 10.28.227.130 critical N o t e s To replace one community name with another for the same IP address, you must use no snmp-server host <...
Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Advanced Management: RMON The switches covered in this guide support RMON (Remote Monitoring) on all connected network segments. This allows for troubleshooting and optimizing your network. The following RMON groups are supported: ■...
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) LLDP (Link-Layer Discovery Protocol) To standardize device discovery on all ProCurve switches, LLDP has been implemented while offering limited read-only support for CDP as documented in this manual. For current information on your switch model, consult the latest Release Notes (available on the ProCurve Networking web site).
Active Port: A port linked to another active device (regardless of whether STP is blocking the link). LLDP: Link Layer Discovery Protocol. ProCurve switches are compatible with IEEE 802.1AB-2005. LLDP-Aware: A device that has LLDP in its operating code, regardless of whether LLDP is enabled or disabled.
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) General LLDP Operation An LLDP packet contains data about the transmitting switch and port. The switch advertises itself to adjacent (neighbor) devices by transmitting LLDP data packets out all ports on which outbound LLDP is enabled, and reading LLDP advertisements from neighbor devices on ports that are inbound LLDP- enabled.
Page 280
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Transmit and Receive Mode. With LLDP enabled, the switch periodically transmits an LLDP advertisement (packet) out each active port enabled for outbound LLDP transmissions, and receives LLDP advertisements on each active port enabled to receive LLDP traffic (page 13-39). Per-Port configuration options include four modes: ■...
Page 281
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Data Type Configuration Default Description Options Remote Management Address 4, 6 Type Always Enabled Shows the network address type. Address Default or Uses a default address selection method unless an optional address is Configured configured.
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Options for Reading LLDP Information Collected by the Switch You can extract LLDP information from the switch to identify adjacent LLDP devices. Options include: ■ Using the switch’s command options to display data show lldp info collected on adjacent LLDP devices—as well as the local data the switch is transmitting to adjacent LLDP devices (page 13-32).
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) LLDP Operating Rules Port Trunking. LLDP manages trunked ports individually. That is, trunked ports are configured individually for LLDP operation, in the same manner as non-trunked ports. Also, LLDP sends separate advertisements on each port in a trunk, and not on a per-trunk basis.
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) LLDP Operation and Commands In the default configuration, LLDP is enabled and in both transmit and receive mode on all active ports. The LLDP configuration includes global settings that apply to all active ports on the switch, and per-port settings that affect only the operation of the specified ports.
Page 285
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) For example, show lldp config produces the following display when the switch is in the default LLDP configuration: Note: This value corresponds to the lldp refresh-interval command (page 13-35). Figure 13-1. Example of Viewing the General LLDP Configuration Displaying Port Configuration Details.
LLDP configuration when LLDP is disabled. After LLDP is disabled, the information in the LLDP neighbors database remains until it times-out. (Default: Enabled) For example, to disable LLDP on the switch: ProCurve(config)# no lldp run 13-34...
Page 287
Time-to-Live for advertisements transmitted from the switch is 60 seconds (4 x 15). To reduce the Time-to-Live, you could lower the holdtime-interval to 2, which would result in a Time-to- Live of 30 seconds. ProCurve(config)# lldp holdtime-multiplier 2 13-35...
Page 288
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Changing the Delay Interval Between Advertisements Generated by Value or Status Changes to the LLDP MIB. The switch uses a delay- interval setting to delay transmitting successive advertisements resulting from these LLDP MIB changes. If a switch is subject to frequent changes to its LLDP MIB, lengthening this interval can reduce the frequency of successive advertisements.
(Default: 2 seconds; Range: 1 - 10 seconds) For example, the following command changes the reinitialization delay interval to five seconds: ProCurve(config)# setmib lldpreinitdelay.0 -i 5 Configuring SNMP Notification Support You can enable SNMP trap notification of LLDP data changes detected on advertisements received from neighbor devices, and control the interval between successive notifications of data changes on the same neighbor.
Page 290
Refer to IEEE 802.1AB-2005 or later for more information.) (Default: 5 seconds) For example, the following command limits change notification traps from a particular switch to one per minute. ProCurve(config)# setmib lldpnotificationinterval.0 -i 60 lldpNotificationInterval.0 = 60 13-38...
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Configuring Per-Port LLDP Transmit and Receive Modes These commands control LLDP advertisement traffic inbound and outbound on active ports. Syntax lldp admin-status < port-list > < txonly | rxonly | tx_rx | disable > With LLDP enabled on the switch in the default LLDP configuration, each port is configured to transmit and receive LLDP packets.
Page 292
IP address of 10.10.10.100 and you wanted port 3 to use this secondary address in LLDP advertisements, you would need to execute the following command: ProCurve(config)# lldp config 3 ipAddrEnable 10.10.10.100 Optional Data. You can configure an individual port or group of ports to exclude one or more of these data types from outbound LLDP advertisements.
Also includes information on whether the capabilities are enabled. For example, if you wanted to exclude the system name from the outbound LLDP advertisements for all ports on a 2626 switch, you would use this command: ProCurve(config)# no lldp config 1-26 basicTlvEnable...
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Displaying Switch Information Available for Outbound Advertisements These commands display the current switch information that will be used to populate outbound LLDP advertisements. Syntax show lldp info local-device [ port-list ] Without the [ port-list ] option, this command displays the global switch information and the per-port information currently available for populating outbound LLDP advertisements.
Page 295
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) The Management Address field d splays only the LLDP-configurable IP addresses on the switch. (Only manually-configured IP addresses are LLDP-configurable. If the switch has only an IP address from a DHCP or Bootp server, then the Management Address fiel d is empty (because there are no LLDP-...
Page 296
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Syntax show lldp info remote-device [ port-list ] Without the [ port-list ] option, this command provides a global list of the individual devices it has detected by reading LLDP advertisements (and also CDP advertisements). Discovered devices are listed by the inbound port on which they were discovered.
Page 297
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) The data shown for port 3 was translated from a CDP advertisement from a 5300xl switch with LLDP disabled. (Not all fields expected by the LLDP device are populated with the CDP data. Figure 13-6.
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Displaying LLDP Statistics LLDP statistics are available on both a global and a per-port levels. Rebooting the switch resets the LLDP statistics counters to zero. Disabling the transmit and/or receive capability on a port “freezes” the related port counters at their current values.
Page 299
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) — Continued from the preceding page. — Per-Port LLDP Counters: NumFramesRecvd: Shows the total number of valid, inbound LLDP advertisements received from any neighbor(s) on < port- list >. Where multiple neighbors are connected to a port through a hub, this value is the total number of LLDP advertisements received from all sources.
Page 300
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Counters showing frames sent on a port but no frames received on that port indicates an active link with a device that either has LLDP disabled on the link or is not LLDP- aware.
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) LLDP Operating Notes Neighbor Maximum. The neighbors table in the switch supports as many neighbors as there are ports on the switch. The switch can support multiple neighbors connected through a hub on a given port, but if the switch neighbor maximum is reached, advertisements from additional neighbors on the same or other ports will not be stored in the neighbors table unless some existing neighbors time-out or are removed.
LLDP packets received from neighbor devices. CDP operation is limited to reading incoming CDP packets from neighbor devices. (ProCurve switches do not generate CDP packets.) LLDP and CDP Neighbor Data With both LLDP and (read-only) CDP enabled on a switch port, the port can read both LLDP and CDP advertisements, and stores the data from both types of advertisements in its neighbor database.
Page 303
LLDP (Link-Layer Discovery Protocol) N o t e Because ProCurve switches do not generate CDP packets, they are not represented in the CDP data collected by any neighbor devices running CDP. A switch with CDP disabled forwards the CDP packets it receives from other devices, but does not store the CDP information from these packets in its own MIB.
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) CDP Operation and Commands By default the switches covered by this guide have CDP enabled on each port. This is a read-only capability, meaning that the switch can receive and store information about adjacent CDP devices but does not generate CDP packets.
Page 305
Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) The following example shows the default CDP configuration. CDP Enable/Disab e on the Switch Per-Port CDP Enable/Disable Figure 13-11. Example of Show CDP with the Default CDP Configuration Viewing the Switch’s Current CDP Neighbors Table. Devices are listed by the port on which they were detected.
Page 306
Disabling CDP on a port causes it to drop inbound CDP packets without recording their data in the CDP Neighbors table. Syntax: [no] cdp enable < [e] port-list > For example, to disable CDP on port A1: ProCurve(config)# no cdp enable a1 13-54...
In the switch console interface, the switch software is referred to as the OS, for switch “operating system”. Downloading Switch Software ProCurve Networking periodically provides switch software updates through the ProCurve website (http://www.procurve.com). For more information, see the support and warranty booklet shipped with the switch. After you acquire...
An switch software file for the switch has been stored on a TFTP server ■ accessible to the switch. (The switch software file is typically available from the ProCurve website at http://www.procurve.com.) The switch is properly connected to your network and has already been ■...
File Transfers Downloading Switch Software N o t e If your TFTP server is a Unix workstation, ensure that the case (upper or lower) that you specify for the filename is the same case as the characters in the switch software filenames on the server. Menu: TFTP Download from a Server to Primary Flash Note that the menu interface accesses only the primary flash.
Page 311
File Transfers Downloading Switch Software Progress Bar Figure A-2. Example of the Download OS Screen During a Download A “progress” bar indicates the progress of the download. When the entire switch software file has been received, all activity on the switch halts and you will see Validating and writing system software to FLASH...
You will need to reboot to activate. At this point, use the boot command to reboot the switch and activate the software you just downloaded: ProCurve # boot (For more on these commands, refer to “Rebooting the Switch” on page 6-17.) 4. To confirm that the switch software downloaded correctly, execute show...
As described earlier in this chapter you can use a TFTP client on the admin istrator workstation to update software images. This is a plain text mechanism and it connects to a standalone TFTP server or another ProCurve switch acting as a TFTP server to obtain the software image file(s). Using SCP and SFTP allows you to maintain your switches with greater security.
File Transfers Downloading Switch Software Note SFTP over SSH version 1 (SSH v1) is not supported. A request from either the client or the switch (or both) using SSH v1 generates an error message. The actual text of the error message differs, depending on the client software in use.
As a matter of policy, administrators should not enable the SSHv1-only or the SSHv1-or-v2 advertisement modes. SSHv1 is supported on only some legacy switches (such as the ProCurve Series 2500 switches). To confirm that SSH is enabled type in the command ProCurve(config)# show ip ssh 3. Once you have confirmed that you have enabled an SSH session (with the...
File Transfers Downloading Switch Software Authentication Switch memory allows up to ten public keys. This means the authentication and encryption keys you use for your third-party client SCP/SFTP software can differ from the keys you use for the SSH session, even though both SCP and SFTP use a secure SSH tunnel.
File Transfers Downloading Switch Software All files have read-write permission. Several SFTP commands, such as ■ create or remove, are not allowed and return an error message. The switch displays the following files: +---cfg running-config startup-config +---log crash-data crash-log event log +---os primary secondary...
File Transfers Downloading Switch Software 1. From the console Main Menu, select 7. Download OS (for Edit). 2. Press 3. Use the Space bar to select XMODEM in the Method field. (for eXecute) to begin the switch software download. 4. Press , then [Enter] The following message then appears:...
Page 319
File Transfers Downloading Switch Software Note that if you do not specify the flash destination, the Xmodem download defaults to primary flash. For example, to download a switch software file named G0103.swi from a PC (running a terminal emulator program such as HyperTerminal) to primary flash: 1. Execute the following command in the CLI: Figure A-4. Example of the Command to Download Switch Software Using...
File Transfers Downloading Switch Software Switch-to-Switch Download You can use TFTP to transfer a switch software file between two ProCurve switches that use the same software code base. The menu interface enables you to transfer primary-to-primary or secondary-to-primary. The CLI enables all combinations of flash location options.
File Transfers Downloading Switch Software General System Information b. Check the Firmware revision line. CLI: Switch-To-Switch Downloads You can download a switch software file between two switches that use the same code base and which are connected on your LAN. To do so, use a copy tftp command from the destination switch.The options for this CLI feature include: Copy from primary flash in the source to either primary or secondary in...
Destination Using ProCurve Manager Plus to Update Switch Software ProCurve Manager Plus include a software update utility for updating on ProCurve switch products. For further information, refer to the Getting Started Guide and the Administrator’s Guide, provided electronically with the application.
To find more information on the cause of a download failure, examine the messages in the switch’s Event Log by executing this CLI command: ProCurve# show log tftp (For more on the Event Log, see “Using Logging To Identify Problem Sources”...
(Refer to Chapter 6, “Switch Memory and Configuration” for information on the startup-config file.) For example, to download a configuration file named sw4100 in the configs directory on drive "d" in a remote host having an IP address of 10.28.227.105: ProCurve# copy tftp startup-config 10.28.227.105 d:\configs\sw4100 A-18...
Page 325
For example, to upload the current startup configuration to a file named sw4100 in the configs directory on drive "d" in a remote host having an IP address of 10.28.227.105: ProCurve# copy startup-config tftp 10.28.227.105 d:\configs\sw4100 Xmodem: Copying a Configuration File from the Switch to a Serially Connected PC or Unix Workstation.
Page 326
File Transfers Transferring Switch Configurations Xmodem: Copying a Configuration File from a Serially Connected PC or Unix Workstation. To use this method, the switch must be connected via the serial port to a PC or Unix workstation on which is stored the configuration file you want to copy.
File Transfers Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation You can use the CLI to copy the following types of switch data to a text file in a management device: ■...
File Transfers Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation Copying Event Log Output to a Destination Device This command uses TFTP or Xmodem to copy the Event Log content to a PC or UNIX workstation on the network. Syntax: copy event-log tftp <...
File Transfers Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation Copying Crash Log Data Content to a Destination Device This command uses TFTP or Xmodem to copy the Crash Log content to a PC or UNIX workstation on the network. You can copy individual slot information or the master switch information.
Page 330
File Transfers Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation — This page is intentionally unused. — A-24...
Monitoring and Analyzing Switch Operation Contents Overview ........... . . B-3 Status and Counters Data .
Page 332
Monitoring and Analyzing Switch Operation Contents Switch 6108 and Series 4100gl Switches ..... . B-24 Series 2600, 2600-PWR, and 2800 Switches ....B-24 Menu: Configuring Port and Static Trunk Monitoring .
Monitoring and Analyzing Switch Operation Overview Overview The switch has several built-in tools for monitoring, analyzing, and trouble shooting switch and network operation: ■ Status: Includes options for displaying general switch information, man agement address data, port status, port and trunk group statistics, MAC addresses detected on each port or VLAN, and STP, IGMP, and VLAN data (page B-4).
Monitoring and Analyzing Switch Operation Status and Counters Data Status and Counters Data This section describes the status and counters screens available through the switch console interface and/or the web browser interface. N o t e You can access all console screens from the web browser interface via Telnet to the console.
Monitoring and Analyzing Switch Operation Status and Counters Data Menu Access To Status and Counters Beginning at the Main Menu, display the Status and Counters menu by select ing: 1. Status and Counters Figure B-1. The Status and Counters Menu Each of the above menu items accesses the read-only screens described on the following pages.
Monitoring and Analyzing Switch Operation Status and Counters Data General System Information Menu Access From the console Main Menu, select: 1. Status and Counters 1. General System Information Figure B-2. Example of General Switch Information This screen dynamically indicates how individual switch resources are being used.
Monitoring and Analyzing Switch Operation Status and Counters Data Switch Management Address Information Menu Access From the Main Menu, select: 1 Status and Counters . . . 2. Switch Management Address Information Figure B-3. Example of Management Address Information with VLANs Configured This screen displays addresses that are important for management of the switch.
Monitoring and Analyzing Switch Operation Status and Counters Data Module Information Use this feature to determine which slots have modules installed and which type(s) of modules are installed. Menu: Displaying Port Status From the Main Menu, select: 1. Status and Counters . . . 3.
Monitoring and Analyzing Switch Operation Status and Counters Data Port Status The web browser interface and the console interface show the same port status data. Menu: Displaying Port Status From the Main Menu, select: 1. Status and Counters . . . 4.
Monitoring and Analyzing Switch Operation Status and Counters Data Viewing Port and Trunk Group Statistics and Flow Control Status Feature Default Menu viewing port and trunk statistics for all page B-11 page B-12 page B-12 ports, and flow control status viewing a detailed summary for a page B-11 page B-12...
Monitoring and Analyzing Switch Operation Status and Counters Data Menu Access to Port and Trunk Statistics To access this screen from the Main Menu, select: 1. Status and Counters . . . 4. Port Counters Figure B-6. Example of Port Counters on the Menu Interface To view details about the traffic on a particular port, use the [v] key to highlight that port number, then select Show Details.
Monitoring and Analyzing Switch Operation Status and Counters Data CLI Access To Port and Trunk Group Statistics To Display the Port Counter Summary Report. This command provides an overview of port activity for all ports on the switch. Syntax: show interfaces To Display a Detailed Traffic Summary for Specific Ports.
Monitoring and Analyzing Switch Operation Status and Counters Data Viewing the Switch’s MAC Address Tables Feature Default Menu viewing MAC addresses on all page B-14 page B-16 — ports on a specific VLAN viewing MAC addresses on a page B-15 page B-16 —...
Monitoring and Analyzing Switch Operation Status and Counters Data Menu Access to the MAC Address Views and Searches Per-VLAN MAC-Address Viewing and Searching. This feature lets you determine which switch port on a selected VLAN is being used to communi cate with a specific device on the network.
Page 345
Monitoring and Analyzing Switch Operation Status and Counters Data Finding the Port Connection for a Specific Device on a VLAN. This feature uses a device’s MAC address that you enter to identify the port used by that device. 1. Proceeding from figure B-8, press (for Search), to display the following prompt: Enter MAC address: _...
[< mac-addr >] To List All Learned MAC Addresses on the Switch, with The Port Number on Which Each MAC Address Was Learned. ProCurve> show mac-address To List All Learned MAC Addresses on one or more ports, with Their B-16...
Page 347
To List All Learned MAC Addresses on a VLAN, with Their Port Numbers. This command lists the MAC addresses associated with the ports for a given VLAN. For example: ProCurve> show mac-address vlan 100 N o t e The switch operates with a multiple forwarding database architecture. For more on this topic, refer to “Duplicate MAC Addresses Across VLANs”...
Monitoring and Analyzing Switch Operation Status and Counters Data Spanning Tree Protocol (STP) Information Menu Access to STP Data From the Main Menu, select: 1. Status and Counters . . . 8. Spanning Tree Information STP must be enabled on the switch to display the following data: Figure B-12.
Status and Counters Data Figure B-13. Example of STP Port Information CLI Access to STP Data This option lists the STP configuration, root data, and per-port data (cost, priority, state, and designated bridge). Syntax: show spanning-tree ProCurve> show spanning-tree B-19...
Monitoring and Analyzing Switch Operation Status and Counters Data Internet Group Management Protocol (IGMP) Status The switch uses the CLI to display the following IGMP status on a per-VLAN basis: Show Command Output show ip igmp Global command listing IGMP status for all VLANs configured in the switch: •...
Monitoring and Analyzing Switch Operation Status and Counters Data VLAN Information The switch uses the CLI to display the following VLAN status: Syntax: show vlan Lists: • Maximum number of VLANs to support • Existing VLANs • Status (static or dynamic) • Primary VLAN Syntax: show vlan <...
Page 352
Monitoring and Analyzing Switch Operation Status and Counters Data Listing the VLAN ID (VID) and Status for ALL VLANs in the Switch. Figure B-15. Example of VLAN Listing for the Entire Switch Listing the VLAN ID (VID) and Status for Specific Ports. Because ports A1 and A2 are not members of VLAN -...
Monitoring and Analyzing Switch Operation Status and Counters Data Web Browser Interface Status Information The “home” screen for the web browser interface is the Status Overview screen, as shown below. As the title implies, it provides an overview of the status of the switch, including summary graphs indicating the network utili...
Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features Port and Static Trunk Monitoring Features Port Monitoring Features Feature Default Menu display monitoring disabled page B-25 page B-27 page B-29 configuration configure the monitor port(s) ports: none page B-25 page B-27 page B-29 selecting or removing ports none selected page B-25 page B-28 page B-29 Switch 6108 and Series 4100gl Switches...
Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features Menu: Configuring Port and Static Trunk Monitoring This procedure describes configuring the switch for monitoring when moni toring is disabled. (If monitoring has already been enabled, the screens will appear differently than shown in this procedure.) 1. From the Console Main Menu, Select: 2.
Page 356
Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features Move the cursor to the Mon toring Port parameter. Port where monitored traffic exits the switch. Figure B-20. How To Select a Monitoring Port 5. Use the Space bar to select the port to use for monitoring. 6. Use the down arrow key to move the cursor to the Action column for the individual ports and position the cursor at a port you want to monitor.
Remov ing the monitor port disables port monitoring and resets the monitoring parameters to their factory-default settings. Syntax: [no] mirror-port [< port-num >] For example, to assign port A6 as the monitoring port: ProCurve(config)# mirror-port a6 B-27...
Page 358
Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features To turn off monitoring: ProCurve(config)# no mirror-port Selecting or Removing Ports and Static Trunks As Monitoring Sources. After you configure a monitor port you can use either the global configuration level or the interface context level to select ports and static trunks as monitoring sources.
Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features Web: Configuring Port Monitoring To enable port monitoring: Click on the Configuration tab. Click on Monitor Port. To monitor one or more ports. Click on the radio button for Monitor Selected Ports. b.
Page 360
Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features — This page is intentionally unused. — B-30...
For information on support and warranty provisions, see the Support and Warranty booklet shipped with the switch. Troubleshooting Approaches Use these approaches to diagnose switch problems: Check the ProCurve web site – the web site may have software updates ■ or other information to help solve your problem: http://www.procurve.com ■...
Page 364
Status and Counters screens – Event Log – Diagnostics tools (Link test, Ping test, configuration file browser, and advanced user commands) • ProCurve Manager / ProCurve Manager + – Use ProCurve Man ager to help isolate problems and recommend solutions.
■ Check the event log for fan failure warnings. If the switch has experienced a fan failure, remove power from the switch and contact your ProCurve service and support representative. If there are no fan failures, ensure that the ambient temperature in the ■...
Troubleshooting Browser or Telnet Access Problems Browser or Telnet Access Problems Cannot access the web browser interface: Access may be disabled by the Web Agent Enabled parameter in the switch ■ console. Check the setting on this parameter by selecting: 2.
Page 367
Troubleshooting Browser or Telnet Access Problems Cannot Telnet into the switch console from a station on the network: Telnet access may be disabled by the Inbound Telnet Enabled parameter in ■ the System Information screen of the menu interface: 2. Switch Configuration 1.
Unusual network activity is usually indicated by the LEDs on the front of the switch or measured with the switch console interface or with a network management tool such as the ProCurve Manager. Refer to the Installation Guide you received with the switch for information on using LEDs to identify unusual network activity.
Troubleshooting Unusual Network Activity This can also happen, for example, if the server is first configured to issue IP addresses with an unlimited duration, then is subsequently configured to issue IP addresses that will expire after a limited duration. One solution is to configure “reservations”...
Removing a port from a trunk without first disabling the port can create a traffic loop that can slow down or halt your network. Before removing a port from a trunk, ProCurve recommends that you either disable the port or disconnect it from the LAN.
Page 371
Troubleshooting Unusual Network Activity There can be several reasons for not receiving a response to an authentication request. Do the following: Use ping to ensure that the switch has access to the configured RADIUS ■ servers. Verify that the switch is using the correct encryption key (RADIUS secret ■...
Page 372
Troubleshooting Unusual Network Activity unauthorized. 802.1X is not active on the switch. After you execute aaa port- access authenticator active, all ports configured with control unauthorized should be listed as Closed. Port A9 shows an “Open” status even though Access Contro is set to Unauthorized (Force Auth).
Troubleshooting Unusual Network Activity Global RADIUS Encryption Key Unique RADIUS Encryption Key for the RADIUS server at 10.33.18.119 Figure C-3. Example of How To List the Global and Server-Specific Radius Encryption Keys Also, ensure that the switch port used to access the RADIUS server is not blocked by an 802.1X configuration on that port.
Page 374
Troubleshooting Unusual Network Activity requests. In this case, the switch will attempt authentication using the secondary method configured for the type of access you are using (console, Telnet, or SSH). There can be several reasons for not receiving a response to an authentication request.
Troubleshooting Unusual Network Activity Spanning-Tree Protocol (STP) and Fast-Uplink Problems C a u t i o n If you enable STP, it is recommended that you leave the remainder of the STP parameter settings at their default values until you have had an opportunity to evaluate STP performance in your network.
Troubleshooting Unusual Network Activity SSH-Related Problems Switch access refused to a client. Even though you have placed the cli- ent’s public key in a text file and copied the file (using the copy tftp pub-key- file command) into the switch, the switch refuses to allow the client to have access.
Troubleshooting Unusual Network Activity Switch does not detect a client’s public key that does appear in the switch’s public key file (show ip client-public-key). The client’s public key entry in the public key file may be preceded by another entry that does not terminate with a new line (CR).
Troubleshooting Unusual Network Activity TACACS-Related Problems Event Log. When troubleshooting TACACS+ operation, check the switch’s Event Log for indications of problem areas. All Users Are Locked Out of Access to the Switch. If the switch is func tioning properly, but no username/password pairs result in console or Telnet access to the switch, the problem may be due to how the TACACS+ server and/or the switch are configured.
Page 379
Troubleshooting Unusual Network Activity The encryption key configured in the server does not match the ■ encryption key configured in the switch (by using the tacacs-server key command). Verify the key in the server and compare it to the key configured in the switch.
Troubleshooting Unusual Network Activity TimeP, SNTP, or Gateway Problems The Switch Cannot Find the Time Server or the Configured Gateway . TimeP, SNTP, and Gateway access are through the primary VLAN, which in the default configuration is the DEFAULT_VLAN. If the primary VLAN has been moved to another VLAN, it may be disabled or does not have ports assigned to it.
Page 381
Troubleshooting Unusual Network Activity Link supporting VLAN_1 and VLAN_2 Switch “Y” Switch “X” Port Y- 7 Port X-3 VLAN Port Assignment VLAN Port Assignment Port VLAN_1 VLAN_2 Port VLAN_1 VLAN_2 Untagged Tagged Untagged Tagged Figure C-5. Example of Correct VLAN Port Assignments on a Link 1. If VLAN_1 (VID=1) is configured as “Untagged”...
Page 382
Troubleshooting Unusual Network Activity MAC Address “A”; VLAN 1 Server VLAN 1 Switch with ProCurve Single Switches Covered MAC Address “A”; VLAN 2 Forwarding by this Guide Database VLAN 2 (Multiple Forwarding Database) Problem: This switch detects continual moves of MAC address “A” between ports.
Troubleshooting Using Logging To Identify Problem Sources Using Logging To Identify Problem Sources Event Log Operation The Event Log records operating events as single-line entries listed in chrono logical order, and serves as a tool for isolating problems. Each Event Log entry is composed of five fields: Severity Date...
Page 384
Troubleshooting Using Logging To Identify Problem Sources (The event log is not erased by using the Reboot Switch command in the Main Menu.) Table C-1.Event Log System Modules Module Event Description Module Event Description addrMgr Address table Console management chassis switch hardware ports Change in port status;...
Troubleshooting Using Logging To Identify Problem Sources Menu: Entering and Navigating in the Event Log From the Main Menu, select Event Log. Range of Events in the Log Range of Log Events Displayed Log Status Line Figure C-8. Example of an Event Log Display The log status line at the bottom of the display identifies where in the sequence of event messages the display is currently positioned.
Lists recorded log messages since last reboot. ProCurve> show logging -a Lists all recorded log messages, including those before the last reboot. ProCurve> show logging -a system Lists log messages with “system” in the text or module name. ProCurve> show logging system Lists all log messages since the last reboot that have “system”...
• Switch 2800 Series For the latest feature information on ProCurve switches, visit the ProCurve web site and check the latest release notes for the switch products you use. ■ Configure the switch to send Event Log messages to the current manage- ment-access session (serial-connect CLI, Telnet CLI, or SSH).
Page 388
Troubleshooting Using Logging To Identify Problem Sources Debug Types. This section describes the types of debug messages the switch can send to configured debug destinations. Syntax: [no] debug < debug-type > Configures the switch to send all debug types to the config- ured debug destination(s).
Page 389
< facility-name > Specifies the destination subsystem the SyslogD server(s) must use. (All SyslogD servers must use the same subsystem.) ProCurve recommends the default (user) subsystem unless your application specifically requires another subsystem. Options include: user (the default) - Various user-level messages...
Page 390
Figure C-10. Example of Configuring and Enabling Syslog Logging To use a non-default logging facility, such as lpr, in the same operation as in figure C-10, you would use this command set: ProCurve(config)# logging 18.120.38.155 ProCurve(config)# logging 18.120.43.125 ProCurve(config)# logging facility lpr C-30...
Page 391
Troubleshooting Using Logging To Identify Problem Sources Enabling or Disabling Logging to Management Sessions and SyslogD Servers. Use this command when you want to do any of the following: ■ Disable Syslog logging on all currently configured SyslogD servers with out removing the servers from the switch configuration.
Page 392
Troubleshooting Using Logging To Identify Problem Sources Shows that Syslog (Destination) logging is enabled and transmitting log messages to IP address 18.120.38.155. A lso shows that the ogging facil ty is set to user (the default), and that session logging is enabled. Disabl es Syslog logg ng (but retains the Syslog IP address in the switch...
Page 393
Troubleshooting Using Logging To Identify Problem Sources Syntax: show debug List the current debug status for both Syslog logging and Session logging. Shows that Syslog logging is enabled and sending event messages to the user facility on the SyslogD server at IP address 18.120.38.155.
Troubleshooting Diagnostic Tools Ensure that your Syslog server(s) will accept Debug messages. All ■ Syslog messages the switch generates carry the configured facility. All Syslog messages resulting from debug operation carry a “debug” severity. If you configure the switch to transmit debug messages to a SyslogD server, ensure that the server’s Syslog application is configured to accept the “debug”...
Troubleshooting Diagnostic Tools 2. If the attached end-node does not have an Auto mode setting, then you must manually configure the switch port to the same setting as the end- node port. See Chapter 10, “Port Status and Basic Configuration”. Ping and Link Tests The Ping test and the Link test are point-to-point tests between your switch and another IEEE 802.3-compliant device on your network.
Troubleshooting Diagnostic Tools Web: Executing Ping or Link Tests 1. Click here. 2. Click here. 3. Select Ping Test (the default) or Link Test 4. For a Ping test, enter the IP address of the target device. For a Link test, enter the MAC address of the target device.
Troubleshooting Diagnostic Tools Timeout in Seconds is the number of seconds to allow per attempt to test a connection before determining that the current attempt has failed. To halt a Link or Ping test before it concludes, click on the Stop button. To reset the screen to its default settings, click on the Defaults button.
Page 398
Troubleshooting Diagnostic Tools Link Tests. You can issue single or multiple link tests with varying repeti tions and timeout periods. The defaults are: ■ Repetitions: 1 (1 - 999) Timeout: 5 seconds (1 - 256 seconds) ■ Syntax: link < mac-address > [repetitions < 1 - 999 >] [timeout < 1 - 256 >] [vlan <...
Troubleshooting Diagnostic Tools Displaying the Configuration File The complete switch configuration is contained in a file that you can browse from either the web browser interface or the CLI. It may be useful in some troubleshooting scenarios to view the switch configuration. CLI: Viewing the Configuration File Using the CLI, you can display either the running configuration or the startup configuration.
Troubleshooting Diagnostic Tools Listing Switch Configuration and Operation Details for Help in Troubleshooting Release G.04.05 and greater includes the command. This command show tech outputs, in a single listing, switch operating and running configuration details from several internal switch sources, including: ■...
Page 401
[Start] 4. Execute show tech ProCurve# show tech a. Each time the resulting listing halts and displays -- MORE --, press the Space bar to resume the listing. b. When the CLI prompt appears, the show tech listing is complete. At...
Troubleshooting Diagnostic Tools CLI Administrative and Troubleshooting Commands These commands provide information or perform actions that you may find helpful in troubleshooting operating problems with the switch. N o t e For more on the CLI, refer to “Using the Command Line Interface (CLI)” on page 4-1.
■ Clear/Reset button combination N o t e ProCurve recommends that you save your configuration to a TFTP server before resetting the switch to its factory-default configuration. You can also save your configuration via Xmodem, to a directly connected PC.
Troubleshooting Restoring a Flash Image Restoring a Flash Image The switch can lose its operating system if either the primary or secondary flash image location is empty or contains a corrupted OS file and an operator uses the erase flash command to erase a good OS image file from the opposite flash location.
Page 405
Troubleshooting Restoring a Flash Image 4. Since the OS file is large, you can increase the speed of the download by changing the switch console and terminal emulator baud rates to a high speed. For example: a. Change the switch baud rate to 115,200 Bps. =>...
Page 406
Troubleshooting Restoring a Flash Image Figure C-19. Example of Xmodem Download in Progress 8. When the download completes, the switch reboots from primary flash using the OS image you downloaded in the preceding steps, plus the most recent startup-config file. C-46...
MAC Address Management Overview Overview The switch assigns MAC addresses in these areas: ■ For management functions: • One Base MAC address assigned to the default VLAN (VID = 1) • Additional MAC address(es) corresponding to additional VLANs you configure in the switch ■...
MAC Address Management Determining MAC Addresses in the Switch Use the CLI to view the switch’s port MAC addresses in hexadecimal ■ format. Menu: Viewing the Switch’s MAC Addresses The Management Address Information screen lists the MAC addresses for: Base switch (default VLAN; VID = 1) ■...
2. Type the following command to display the MAC address for each port on the switch: ProCurve# walkmib ifPhysAddress (The above command is not case-sensitive.) For example, with a six-port module in slot 1, a three-port module in slot 3,...
Page 411
MAC Address Management Determining MAC Addresses in the Switch ifPhysAddress.1 - 6: Ports A1 - A6 in Slot 1 (Addresses 7 - 24 in slot 1 and 25 - 48 in slot 2 are unused.) ifPhysAddress.49 - 51: Ports C1 - C3 in Slot 3 (Addresses 52 - 72 in slot 3 are unused.) ifPhysAddress.205 Base MAC Address (MAC...
MAC address was detected. To list the MAC addresses of devices the switch has detected, use the show mac-address command. For example, ProCurve# show mac-address Status and Counters - Port Address Table MAC Address...
• 224M • 2848 ProCurve switches provide a way to automatically adjust the system clock for Daylight Savings Time (DST) changes. To use this feature you define the month and date to begin and to end the change from standard time. In addition to the value "none"...
Page 414
Daylight Savings Time on ProCurve Switches Configuring Daylight Savings Time • End DST at 2am the first Sunday on or after October 25th. Middle Europe and Portugal: • Begin DST at 2am the first Sunday on or after March 25th.
Page 415
Daylight Savings Time on ProCurve Switches Configuring Daylight Savings Time Before configuring a "User defined" Daylight Time Rule, it is important to understand how the switch treats the entries. The switch knows which dates are Sundays, and uses an algorithm to determine on which date to change the system clock, given the configured "Beginning day"...
Page 416
Daylight Savings Time on ProCurve Switches Configuring Daylight Savings Time — This page is intentionally unused. —...
Page 417
Index Symbols See also reboot. boot ROM console … A-3 => prompt … C-44 boot ROM mode … C-44 Bootp Numerics Bootp table file … 8-14 Bootptab file … 8-14 802.1x effect of no reply … C-8 LLDP blocked … 13-31 operation …...
Page 420
excessive inbound … 10-23 link speed, port trunk … 12-3 flow control … 10-18, 10-22 link test GVRP operation … 10-18 description … C-35 management VLAN … 10-22 for troubleshooting … C-35 maximum size … 10-17 link, serial … 7-3 MTU …...
Page 423
… 12-3 power over ethernet menu access to static trunk … 12-10 See PoE. monitor port restrictions … 12-9 ProCurve Networking nonconsecutive ports … 12-2 support URL … 5-13 number of trunks … 12-5 prompt, => … C-44 port groups for Series 2800 …...
Page 424
secure FTP broadcast mode … 9-2, 9-9 See SCP/SFTP. broadcast mode, requirement … 9-3 security … 5-11, 7-3 configuration … 9-4 Self Test LED disabling … 9-11 behavior during factory default reset … C-43 enabling and disabling … 9-9 serial number … B-6 event log messages …...