Page 1 Configuration — Layer 2 Ethernet Avaya Secure Router 2330/4134 Release 10.3.5 NN47263-501 Issue 04.03 July 2013...
Page 2 Product provided by Avaya including the selection, arrangement and to users of its products. Documentation does not include marketing design of the content is owned either by Avaya or its licensors and is materials. Avaya shall not be responsible for any modifications,...
Page 3 See the Avaya Support website: http://support.avaya.com for product notices and articles, or to report a problem with your Avaya product. For a list of support telephone numbers and contact addresses, go to the Avaya Support website: http://support.avaya.com, scroll to the bottom of the page, and select Contact Avaya Support.
Page 4 Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 5: Table Of Contents
Chapter 2: New in this release................... Features..............................13 Common and internal spanning tree information................13 Other changes............................13 Chapter 3: Secure Router 2330/4134 Ethernet interface fundamentals......Ethernet interface fundamentals....................... 15 FE and FE/PoE Medium Modules....................15 GbE Medium Module........................17 GbE Large Module...........................
Page 6 Maximum response time........................41 Fast-leave processing........................41 Multicast router ports........................42 GVRP................................ 42 Link aggregation............................43 LACP..............................43 Port mirroring............................43 Selectable range of ports.......................... 44 Chapter 6: Power over Ethernet configuration..............Configuring the PoE port mode......................... 45 Configuring PoE port power........................46 Configuring PoE port priority commands....................
Page 7 Chapter 8: Secure Router 2330/4134 Ethernet interfaces configuration....... Configuring Maximum Transmission Unit size..................77 Configuring jumbo frames......................... 78 Adding comments to an interface......................78 Adding comments at the beginning of a configuration file..............79 Adding comments at the end of a configuration file................. 79 Adding a description to an interface....................
Page 8 Enabling an access link on a WAN interface..................101 Changing the VLAN on an access port.................... 102 Disabling an access port........................103 Verifying an access port........................103 Example of configuring an access port on a WAN interface............103 Chapter 11: Link aggregation configuration..............Configuring LACP.............................
Page 9 Verifying VLAN stacking configuration...................... 128 Example of configuring VLAN stacking..................... 128 Configuration of the Secure Router 2330/4134 on interface A............130 Configuration of the Secure Router 2330/4134 on interface B............130 Configuration of the Secure Router 2330/4134 on interface C............131 Chapter 15: Port mirroring configuration.................
Page 10 Viewing common and internal spanning tree information..............164 Viewing information for MSTP instances..................165 Viewing bridge information for an instance..................165 Viewing interface information......................165 Viewing VLAN information for all instances..................166 Viewing VLAN information for a specified instance................166 Chapter 18: GVRP configuration..................
Page 11: Chapter 1: Introduction
Ongoing product training is available. For more information or to register, you can access the Web site at http://avaya-learning.com. Avaya Mentor videos Avaya Mentor is an Avaya-run channel on YouTube that includes technical content on how to install, configure, and troubleshoot Avaya products. Go to http://www.youtube.com/AvayaMentor...
Page 12: Support
Introduction Support Visit the Avaya Support website at http://support.avaya.com for the most up-to-date documentation, product notices, and knowledge articles. You can also search for release notes, downloads, and resolutions to issues. Use the online service request system to create a service request. Chat with live agents to get answers to questions, or request an agent to connect you to a support team if an issue requires additional expertise.
Page 13: Chapter 2: New In This Release
Chapter 2: New in this release The following sections detail what is new in Avaya Secure Router 2330/4134 Configuration — Layer 2 Ethernet (NN47263-501) for Release 10.3.5. Features The following new feature content has been added to Avaya Secure Router 2330/4134 Configuration —...
Page 14 New in this release Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 15: Chapter 3: Secure Router 2330/4134 Ethernet Interface Fundamentals
PoE capabilities. Power over Ethernet You can install up to two PoE power supply modules in the Secure Router 2330/4134. Each PoE power supply can provide 400 watts. There is a total allocation of 384 watts for each PoE card to support all 24 ports (with maximum power limit for each port is 16 watts). This section Configuration —...
Page 16 The number of powered devices that the Secure Router 2330/4134 supports is based on available power, the number of cards present in the chassis, and the actual power consumption of the powered devices connected to the PoE module.
Page 17: Gbe Medium Module
Layer 3 routing functionality. To use a GbE Medium Module, you must insert the SFP before you configure modular Ethernet. The Secure Router 2330/4134 performs a system check for an installed SFP. If no Configuration — Layer 2 Ethernet July 2013...
Page 18: Gbe Large Module
16 ports. There is, therefore, a 12:3 (4:1) or 16:4 (4:1) contention for the internal links. Chassis Ethernet ports In addition to the module Ethernet ports available for the Secure Router 2330/4134, the router has four chassis Ethernet ports on the front panel: •...
Page 19 Ethernet interface fundamentals Figure 1: Secure Router 2330/4134 chassis Ethernet ports All Ethernet ports on the Secure Router 2330/4134 (chassis and interface module Ethernet ports) support MDI and MDI-X. Ethernet interfaces on the Secure Router 2330/4134 are routed interfaces, by default. To configure them as Layer 2 interfaces, you use the switchport command.
Page 20 Secure Router 2330/4134 Ethernet interface fundamentals Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 21: Chapter 4: Ethernet Connectivity Fault Management
VLAN tag defines a service instance. Based on the customer VLAN, the customer receives service as defined in their customer agreement. When you initiate CFM frames from the Secure Router 2330/4134, the frames are tagged with the C-VLAN only. CFM is not supported on an interface that uses stacked VLANs.
Page 22: Maintenance End Point
The following figure shows the MD level assignments. Figure 2: Maintenance Domain levels Maintenance End Point MEPs are points at the edge of the MD. They define a boundary and confine connectivity fault management messages within this boundary. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 23 Figure is an Up MEP. An Up MEP does the following: • drops frames received from the wire side • processes frames received from the relay side Important: Secure Router 2330/4134 Release 10.1 supports Down MEPs only. A MEP provides the following functions: • fault detection • fault verification •...
Page 24 If you use the MEP ID as the address, and the MAC address of the remote MEP is unavailable, the command fails. You must repeat the command using the MAC address of the remote MEP. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 25 Maintenance Domain The destination MP responds with a Loopback Reply (LBR). When you issue the command to send an LBM, the command becomes unavailable until the LBR is received or a timeout occurs. You use LBM to discover if the target MP is reachable. LBM does not provide hop-by-hop discovery of a path.
Page 26: Maintenance Intermediate Point
ID. Use the show cfm linktrace-cache <session-id> command to view results. Fault notification The Secure Router 2330/4134 provides fault notification through CLI event messages and error logs. Maintenance Intermediate Point MIPs are internal to an MD (that is, MIPs are never at the boundary of an MD). MIPs respond to connectivity fault management frames only when triggered by linktrace and loopback messages.
Page 27: Connectivity Fault Management Messages
CFM uses standard Ethernet frames distinguished by EtherType or (for multicast messages) by MAC address. All connectivity fault management messages are confined to an MD. Secure Router 2330/4134 supports the following connectivity fault management messages: • CCM—multicast heartbeat messages that MEPs periodically initiate. CCM provide the...
Page 28: Connectivity Fault Management Modes
CFM frames. There are two options for sending CFM frames: • Egress tagged – sends VLAN tagged CFM frames • Egress untagged – sends untagged CFM frames - Trunk mode – Secure Router 2330/4134 can receive and send only VLAN tagged CFM frames. Connectivity Fault Management errors and statistics The heartbeat mechanism of CFM (using periodic CCM) makes it possible to detect a number of errors and accumulate data for statistical purposes.
Page 29: Chapter 5: Layer 2 Fundamentals
Layer 2 switching. The network processor handles LAN switching. Software forwarding works with the network processor to achieve LAN to WAN (and WAN to LAN) data switching. The Secure Router 2330/4134 also supports termination of Layer 3 traffic on a VLAN to achieve routing using the Layer 3 engine.
Page 30: Vlans
VLAN ID. VLAN tagging can be enabled or disabled on each interface. The Secure Router 2330/4134 uses IEEE 802.1Q tagging of frames and coordinates VLANs across multiple devices. The following figure shows the additional 4-octet (tag) header that is inserted into a frame after the source address and before the frame type. The tag contains the VLAN ID associated with the frame.
Page 31: Independent Vlan Learning
Tagging is set as true or false for the port and is applied to all VLANs on that port. The Secure Router 2330/4134 associates a frame with a VLAN based on the data content of the frame and the configuration of the destination port. Whether the frame is tagged or untagged dictates how that frame is treated.
Page 32: Static Multicast Mac Filtering
VID value equal to the null VLAN ID (that is, a priority-tagged frame). Supported protocols for protocol-based VLAN classification rules The following table lists the protocols that the Secure Router 2330/4134 supports for VLAN classification rules. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 33: Vlan Stacking
• Uses a layered architecture to improve scalability Multiple IP Helper Addresses on a VLAN The Secure Router 2330/4134 supports multiple IP Helper addresses on a VLAN. The Multiple IP Helper feature assists in broadcasting network traffic between client machines and servers residing on different subnets.
Page 34: Spanning Tree Protocol
VLANs by implementing STP. Multiple Spanning Tree Protocol The Secure Router 2330/4134 supports Multiple Spanning Tree Protocol (MSTP), and it is enabled by default. MSTP on the Secure Router 2330/4134 is backward-compatible with STP and Rapid Spanning Tree Protocol (RSTP). STP and RSTP can be implemented on a per-port basis on the Secure Router 2330/4134.
Page 35: Mstp Regions
Spanning Tree Protocol MSTP regions All devices are said to be in the same region if the following three elements are the same on all the devices: • region name (32 bytes) • revision number (2 bytes) • configuration digest (the numerical value derived from VLAN to instance mapping) The following figure shows a single MSTP region.
Page 36: Common Spanning Tree
As shown in the following figure, the traffic for all VLANs (2–100) must travel from Switch B to Switch A, while the path between Switch C and Switch A is unused. Figure 9: Common Spanning Tree Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 37: Mstp Instance
Spanning Tree Protocol MSTP instance With MSTP instances, traffic can be load-balanced between all the links. Within a region, each instance has its own independent spanning tree. It can have its own root bridge. Each bridge can have a different priority for each instance, so that the bridge can be selected as root in one instance and non-root in another instance.
Page 38: Rapid Transitions
(as in workstations with no other spanning tree devices). If you configure PortFast on a port that is connected to another bridge, there is the possibility of forming a loop. This can be prevented with the help of the Bridge Protocol Data Unit (BPDU) Guard feature. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 39: Igmp Snooping
"join" message to the multicast router when proxy is enabled, which reduces the number of IGMP messages exchanged between IP multicast routers and hosts. The Secure Router 2330/4134 IGMP Snooping feature supports both IGMPv1 and IGMPv2. IGMPv3 packets are silently discarded. Avaya recommends that in a network where IGMPv3 and IGMPv2 hosts co-exist, you configure the multicast router to send IGMPv2 messages so that all hosts communicate using IGMPv2.
Page 40: Igmp Proxy
Layer 2 fundamentals If IGMP Snooping is disabled, the Secure Router 2330/4134 handles IP multicast traffic in the same manner as broadcast traffic (forwards frames received on one interface to all other interfaces). Without IGMP Snooping, there is excessive traffic on the network, which negatively impacts network performance.
Page 41: Last Member Query Interval
The number of seconds for the maximum response time must be less than the query Interval. Fast-leave processing You can configure the Secure Router 2330/4134 to perform fast-leave processing. Configuration — Layer 2 Ethernet July 2013...
Page 42: Multicast Router Ports
"leave report". Multicast router ports Any Layer 2 port of a Secure Router 2330/4134 can become a multicast router (mrouter) port. When a port receives an IGMP v1/v2 general query, that port is marked as an mrouter port. If the Secure Router 2330/4134 stops receiving queries for a specific period of time, the dynamically-learned mrouter port is removed.
Page 43: Link Aggregation
IP, dest IP, and protocol leads to more balanced traffic distribution. Port mirroring The Secure Router 2330/4134 has a port mirroring feature that helps you to monitor and analyze network traffic. The monitoring (destination) port can be connected to a network analyzer or RMON probe for packet analysis.
Page 44: Selectable Range Of Ports
Selectable range of ports With Release 10.2 and later, you can specify a range of Ethernet ports to configure at the same time. To do so, you must use the interface range ethernet command. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 45: Chapter 6: Power Over Ethernet Configuration
Chapter 6: Power over Ethernet configuration Use the procedures in this section to configure Power over Ethernet (PoE). Configuring the PoE port mode Use the procedure in this section to configure PoE port modes. Procedure steps 1. To access configuration mode, enter: configure terminal 2.
Page 46: Configuring Poe Port Power
<slot/port>. You can configure this only when the mode of operation is "auto" or "static" mode. If you use this command when the mode of operation is "never", the command has no Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 47: Configuring Poe Port Priority Commands
Configuring PoE port priority commands Variable Value impact on the system configuration. For ports that are in "auto" or "static" mode, the port power is enabled and powered devices connected to these ports receive power. no poe portpower <slot/port> • disables power on port <slot/port>.
Page 48: Configuring Poe Device Detection
802.3af detection for the module in slot <slot>. 802.3af is disabled by default. Configuring PoE port power limits Use the procedure in this section to configure PoE port power limits. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 49: Viewing Poe Information
Viewing PoE information Procedure steps 1. To access configuration mode, enter: configure terminal 2. To configure the PoE port power limit, enter: poe portpowerlimit <slot/port> <power limit> Table 8: Variable definitions Variable Value <power limit> Specifies the power limit for a port that is in static mode.
Page 50 Specifies the slot and port number that identify the port to for which you want to view PoE-related information. Valid values for slot are 5 to 7. Valid values for port are 1 to 24. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 51: Chapter 7: Ethernet Connectivity Fault Management Configuration
Use the procedures in this section to configure an MD, the MAs, the MEPs, the remote MEPs, the MIPs, and global parameters for CFM. Accessing the CFM tools Use the procedure in this section to access the Ethernet CFM tools on the Avaya Secure Router 2330/4134. Procedure steps 1.
Page 52: Configuring The Cfm Frame Ethertype
4. To specify the ethertype for CFM frames, enter: ethtype <value> Table 12: Variable definitions Variable Value <value> The Ethernet type of the CFM frames. Valid values are 88E6 and 8902. The default value is 88E6. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 53: Enabling Cfm Event Messages
Enabling CFM event messages Enabling CFM event messages Use the procedure in this section to enable CFM-related event messages globally. Procedure steps 1. To access configuration mode, enter: configure terminal 2. To enable CFM-related event messages globally, enter: [no] system logging console enable [priority <value>] Table 13: Variable definitions Variable Value...
Page 54: Creating A Maintenance Domain
The full name of the MD (up to 31 characters). Place quotation marks around the full name. For example, name “MD 1- full name” . The full name is used in Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 55: Configuring A Maintenance Association
Configuring a Maintenance Association Variable Value CCM, if you configure a full name for the MD. If you do not configure a full name, the short name of the MD is used in CCM. Configuring a Maintenance Association Use the procedure in this section to define an MA within an MD. Procedure steps 1.
Page 56: Configuring A Maintenance End Point
<mep id> <interface id> mep-state {enable|disable} [cc- state {enable|disable}] Important: The Secure Router 2330/4134 does not support the Fault Notification Generator (FNG) in Release 10.1. You may see these parameters in the CLI for MEPs, but you cannot configure this feature.
Page 57: Deleting A Maintenance End Point
Configuring a Maintenance End Point Variable Value ma <WORD> The short name for the MA (up to eight characters). For example, md <WORD> The short name of the MD (up to eight characters). For example <mep id> The numerical identifier for the MEP. There is no default value.
Page 58: Configuring A Remote Maintenance End Point
The MAC address of the host. Enter the MAC address in the form aa:bb:cc:dd:ee:ff. This parameter is optional. The Secure Router 2330/4134 can auto-detect remote MEPs. md <WORD> The short name of the MD (up to eight characters). For example <rmep id>...
Page 59: Deleting A Remote Maintenance End Point
Deleting a remote Maintenance End Point Deleting a remote Maintenance End Point Use the procedure in this section if you must delete a remote MEP. Procedure steps 1. To access configuration mode, enter: configure terminal 2. To access the Ethernet OAM tools to configure CFM, enter: 3.
Page 60: Deleting A Maintenance Intermediate Point
1. To access configuration mode, enter: configure terminal 2. To access the Ethernet OAM tools to configure CFM, enter: 3. To configure CFM, enter: 4. To specify the MD with which the MIP is associated, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 61: Configuring Continuity Check Messages
Configuring Continuity Check Messages md <WORD> 5. To delete an MIP, enter: no mip <mip id> Configuring Continuity Check Messages Use the procedure in this section to define continuity check parameters for an MA. Procedure steps 1. To access configuration mode, enter: configure terminal 2.
Page 62: Removing An Auto-Detected Remote Maintenance End Point
6. To remove auto detected remote MEPs from the MA, enter: remove-ad-rmeps Issuing CFM loopback tests Use the procedures in this section to issue CFM loopback messages and verify that remote MEPs or MIPs are accessible. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 63: Verifying The Path To A Remote Mep
Issuing CFM loopback tests Verifying the path to a remote MEP Use the procedure in this section to verify a successful path to a remote MEP. Procedure steps 1. To access test mode, enter: test 2. To access the Ethernet OAM test mode, enter: 3.
Page 64: Verifying The Path To A Remote Mip
The default is a pattern of all zeroes. [priority <priority_indicator>] The user priority field in the VLAN tag. The default priority indicator is 7. The range is 0 to 7. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 65: Issuing Cfm Linktrace Tests
Issuing CFM linktrace tests Issuing CFM linktrace tests Use the procedures in this section to issue CFM path trace messages and to discover the path to a remote MEP or MIP. Tracing the path to a remote MEP Use the procedure in this section to discover the path to a remote MEP. Procedure steps 1.
Page 66: Tracing The Path To A Remote Mip
<md-short-name> The short name of the MD. Enter the name of the MD and MA if the MEP identifier is not unique in the Secure Router 2330/4134 (that is, if there is more than one MD defined). <ma-short-name> The short name of the MA. Enter the name...
Page 67: Example Of Configuring Ethernet Connectivity Fault Management
Example of configuring Ethernet Connectivity Fault Management Variable Value terminates. Enter a value from 1 to 255. The default value is 64. [priority <priority_indicator>] The user priority field in the VLAN tag. The default priority indicator is 7. The range is 0 to 7.
Page 68 MD2 level 3 ma MA2 mep 21 0/2 mep-state enable vlan 20 cc auto-detect-rmeps enable 4. To configure SR2330/4134 3, enter: configure terminal md MD1 level 5 mip 2 interface 0/4 Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 69 Example of configuring Ethernet Connectivity Fault Management vlan 20 exit exit md MD2 level 3 ma MA2 mep 22 0/3 mep-state enable vlan 20 cc auto-detect-rmeps enable 5. To test the connection from MEP 11 to remote MEP 12, enter: SR4134 1/test/oam/cfm MD1 MA1 11# lbmmep rmep-id 12 The router returns the following: Loopback test: MEP ID: 11, RMEP ID: 12, RMEP MAC:...
Page 70 Last Egress ID: 00:01:02:01:01:01 Next Egress ID: 00:01:03:01:01:04 Reply TTL: 62 Summary: ----------------------------------------------- Reply #Remote MACErrors?Forward?TTL ----------------------------------------------- 200:01:03:01:01:04NoY62 ----------------------------------------------- Reply #3 ------------- Errors in LTR: No Remote MAC addr: 00:01:04:01:01:04 LTM Forwarded? No Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 71: Displaying Ethernet Cfm Information
Displaying Ethernet CFM information Terminal MP? Yes Transaction ID: 9174 Last Egress ID: 00:01:03:01:01:04 Next Egress ID: Reply TTL: 61 Summary: ----------------------------------------------- Reply #Remote MACErrors?Forward?TTL ----------------------------------------------- 300:01:04:01:01:04NoY61 ----------------------------------------------- Displaying Ethernet CFM information Use the procedures in this section to view information related to your CFM configuration. Displaying information related to Maintenance Domains Use the commands in this section to view information related to the configuration of MDs.
Page 72: Displaying Information Related To Maintenance Associations
3. To display detailed information for a specific MEP, enter: show cfm mep <mep id> [ma <WORD>] [md <WORD>] 4. To display summary information for all MIPs configured in the Secure Router 2330/4134, enter: show cfm mips [md <WORD>] 5. To display detailed information for a specific MIP, enter: show cfm mip <mip id>...
Page 73: Displaying Information Related To Continuity Checks
Displaying Ethernet CFM information Table 27: Variable definitions Variable Value ma <WORD> The short name of the MA (up to eight characters). For example md <WORD> The short name of the MD (up to eight characters). For example <mep id> The numerical identifier for the MEP.
Page 74: Displaying Information Related To Cfm Stats
[mep <mep id> md <WORD> ma <WORD>] 2. To display stats for an MIP logged to the Secure Router 2330/4134 since a reset or clear, enter: show cfm mip-stats [md <WORD> mip <mip id>]...
Page 75: Displaying Information Related To Path Trace Cache Entries
Use the commands in this section to view information related to path trace cache entries. Procedure steps To display path trace cache entries logged to the Secure Router 2330/4134 since a reset or clear, enter: show cfm linktrace-cache [session <session id>] [mep <mep id>] [rmep-id <rmep id>] [ma <WORD>] [md <WORD>] [mac-addr <mac...
Page 76: Clearing Ethernet Cfm Information
3. To clear CFM MIP stats logged to the Secure Router 2330/4134, enter: clear cfm mip-stats [md <WORD> mip <mip id>] 4. To clear the path trace cache entries logged to the Secure Router 2330/4134, enter: clear cfm linktrace-cache [session <session id>] [mep <mep id>] [rmep-id <rmep id>] [ma <WORD>] [md <WORD>] [mac-addr...
Page 77: Chapter 8: Secure Router 2330/4134 Ethernet Interfaces Configuration
Use the procedure in this section to configure the MTU size for an Ethernet interface. Important: The Avaya Secure Router 2330/4134 management Ethernet interface (FE 0/0) on the rear panel does not support jumbo frames. Therefore, the management port Maximum Transmission Unit (MTU) can be configured with a value in the range of 64 to 1500 bytes.
Page 78: Configuring Jumbo Frames
Therefore, the management port Maximum Transmission Unit (MTU) can be configured with a value in the range of 64 to 1500 bytes. Use the procedure in this section to configure the Secure Router 2330/4134 system settings to support jumbo frames.
Page 79: Adding Comments At The Beginning Of A Configuration File
Adding comments to an interface Adding comments at the beginning of a configuration file Use the procedure in this section to add comments at the beginning of the Ethernet area of a configuration file. Procedure steps 1. To access configuration mode, enter: configure terminal 2.
Page 80: Adding A Description To An Interface
Secure Router 2330/4134 Ethernet interfaces configuration Table 36: Variable definitions Variable Value <string> Specifies the comments. The string length for comments is 80 characters. You must enclose comments in quotation marks. For example, REM_ "Configured on July 30" <slot/port> Specifies the slot and port numbers that identify the port for configuration.
Page 81: Configuring The Speed Of An Interface
Configuring the speed of an interface Configuring the speed of an interface Use the procedure in this section to configure the speed of an Ethernet interface. Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an interface, enter: interface ethernet <slot/port>...
Page 82 Secure Router 2330/4134 Ethernet interfaces configuration Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 83: Chapter 9: Layer 2 Configuration
• The Avaya Secure Router 2330/4134 must be securely installed in an equipment rack, and properly grounded. • You must have commissioned your Secure Router 2330/4134 so it is ready for software feature configuration. • You can configure Layer 2 features (with the exception of port mirroring and LACP) on WAN interfaces that are configured with Point-to-Point Protocol (PPP) or Frame Relay (FR) encapsulation.
Page 84 Layer 2 configuration Figure 13: Layer 2 configuration procedures Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 85: Chapter 10: Interface Mode Configuration
Chapter 10: Interface mode configuration You can configure a port on an Avaya Secure Router 2330/4134 as an access port, a trunk port, or a hybrid port. You can enable Layer 2 switching on all Ethernet and WAN interfaces. The Secure Router 2330/4134 supports all Layer 2 switching features on WAN interfaces that are configured with PPP or FR encapsulation.
Page 86: Specifying Vlans To Trunk
Adding a specified VLAN to a trunk link Use the procedure in this section to selectively add VLANs to a trunk link. Procedure steps 1. To access configuration mode, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 87: Disabling Trunking
Configuring trunking on Ethernet interfaces configure terminal 2. To select an interface, enter: interface [range] ethernet <slot/port> 3. To add a specific VLAN to the selected trunk link, enter: switchport trunk allowed vlan <vid> Note: To add multiple VLANs to the selected trunk link, enter each VLAN ID separated by a comma.
Page 88: Verifying Trunks
Configuring trunking on a WAN interface Use the procedures in this section to configure trunking on a WAN interface. For detailed information about how to configure WAN interfaces, see Avaya Secure Router 2330/4134 Configuration — WAN interfaces (NN47263-500). For an example network scenario that shows the use of trunking, see...
Page 89: Enabling Trunking On Wan Interfaces
For example, 7/1. <type> Specifies the type of WAN interface. For example, t1. For detailed information on WAN interfaces that support PPP or FR encapsulation, see Avaya Secure Router 2330/4134 Configuration — WAN interfaces (NN47263-500). Configuration — Layer 2 Ethernet July 2013...
Page 90: Adding All Vlans To A Trunk Link
Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select a WAN interface, enter: interface bundle <bundle-name> 3. To add a specific VLAN to the selected interface, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 91: Removing A Specified Vlan From A Trunk Link
Configuring trunking on a WAN interface switchport trunk allowed vlan <vid> Removing a specified VLAN from a trunk link Use the procedure in this section to selectively remove VLANs from a trunk link. Procedure steps 1. To access configuration mode, enter: configure terminal 2.
Page 92: Example Of Configuring Trunking On A Wan Interface
2. To select an Ethernet interface, enter: interface [range] ethernet <slot/port> 3. To configure the interface as a Layer 2 interface, enter: switchport 4. To configure the interface as a hybrid port, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 93: Associating Vlans With Hybrid Links
Configuring a hybrid link on an Ethernet interface switchport mode hybrid Associating VLANs with hybrid links When configuring hybrid links, ensure that all frames transmitted by a bridge on a hybrid link are tagged in the same way on that link. The frames must be either all tagged, or all tagged and carrying the same VLAN ID.
Page 94 Removing a specified VLAN from a link Use the procedure in this section to selectively remove VLANs from a hybrid link. Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an interface, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 95: Disabling A Hybrid Link
Configuring a hybrid link on an Ethernet interface interface [range] ethernet <slot/port> 3. To remove a specific VLAN from the selected hybrid link, enter: switchport hybrid remove vlan <vid> egress {tagged|untagged} Disabling a hybrid link Use the procedure in this section to disable a hybrid link. Procedure steps 1.
Page 96: Configuring A Hybrid Link On A Wan Interface
Specifies the name of the bundle. For example, T1IF. {ppp | fr} Specifies the encapsulation. You can configure a hybrid link only on WAN interfaces that are configured with PPP or FR encapsulation. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 97: Adding All Vlans To A Hybrid Link
<type> Specifies the type of WAN interface. For example, t1. For detailed information on WAN interfaces that support PPP or FR encapsulation, see Avaya Secure Router 2330/4134 Configuration — WAN interfaces (NN47263-500). Adding all VLANs to a hybrid link Use the procedure in this section to add all VLANs to a hybrid link.
Page 98: Adding A Specified Vlan To A Hybrid Link
Use the procedure in this section to disable a hybrid link. Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an interface, enter: interface bundle <bundle-name> 3. To disable the hybrid link on the interface, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 99: Verifying A Hybrid Link
Configuring an access port on an Ethernet interface no switchport Verifying a hybrid link Use the procedure in this section to verify the successful configuration of a hybrid link. Procedure steps 1. To view information related to the interface mode, enter: show bridge port 2.
Page 100: Enabling An Access Link On An Ethernet Port
[range] ethernet <slot/port> 3. To assign a VLAN to the selected access port, enter: switchport pvid <vid> Disabling an access port Use the procedure in this section to disable an access port. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 101: Verifying An Access Port
Configuring an access port on a WAN interface Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an interface, enter: interface [range] ethernet <slot/port> 3. To disable the selected access port, enter: no switchport Verifying an access port Use the procedure in this section to verify the successful configuration of an access port.
Page 102: Changing The Vlan On An Access Port
<type> Specifies the type of WAN interface. For example, t1. For detailed information on WAN interfaces that support PPP or FR encapsulation, see Avaya Secure Router 2330/4134 Configuration — WAN interfaces (NN47263-500). Changing the VLAN on an access port Use the procedure in this section to change the VLAN assigned to an access link.
Page 103: Disabling An Access Port
Configuring an access port on a WAN interface Disabling an access port Use the procedure in this section to disable an access port. Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an interface, enter: interface bundle <bundle-name> 3.
Page 104: Encapsulation Ppp
Interface mode configuration encapsulation ppp 5. To configure the interface as an access port, enter: switchport Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 105: Chapter 11: Link Aggregation Configuration
(LAG), such that a MAC client can treat the LAG as if it were a single link. LACP is supported on all Ethernet ports. Prior to release 10.2, LACP was supported only on the Avaya Secure Router 4134 Ethernet module ports. In the current release, LACP is supported on SR4134 Module Ethernet ports and Chassis Ethernet ports.
Page 106: Configuring Passive Mode
1 to 8. Configuring passive mode In passive mode, the Secure Router 2330/4134 does not initiate the channel, but does understand incoming LACP packets. The peer (in active state) initiates negotiation to form the aggregation channel with the peer.
Page 107: Changing The Channel Group
Changing the channel group interface ethernet <slot/port> 3. Enter the configuration context: lacp 4. To add the selected physical port to a link (channel group), enter channel-group <value> mode active Table 44: Variable definitions Variable Value <value> The channel group ID number. Valid values are 1 to 8.
Page 108: Removing Lacp Configuration
Table 45: Variable definitions Variable Value <short | long> Specifies an interval of time between LACP Protocol Data Units (PDUs), after which the bridge considers the LACP link partner to be Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 109: Configuring Lacp System Priority
Configuring LACP system priority Variable Value down. The supported values are the following: • short : a fast timeout. This is approximately 3 seconds. long • : a slow timeout. This is approximately 90 seconds. long The default value is Configuring LACP system priority Use the procedure in this section to configure the system priority for a local system.
Page 110: Configuring A Lag Interface
Procedure steps 1. To access configuration mode, enter: configure terminal 2. To create a LAG, enter: interface lag lag<id> 3. To configure the LAG interface as a Layer 2 interface, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 111: Verifying The Successful Configuration Of A Lag
Verifying the successful configuration of a LAG switchport 4. To configure the LAG interface as a trunk link, enter: switchport mode trunk 5. To add all VLANs to the trunk, enter: switchport trunk allowed vlan all Table 48: Variable definitions Variable Value lag<id>...
Page 112: Viewing Lag Interface Information
Example of configuring LACP For the purposes of this example, the LACP mode on SWITCH_2 is configured as passive. Avaya recommends, however, to always configure both ends as active. Figure 15: Link aggregation group Configuration on SWITCH_1 In this example, you aggregate lines 6/1 and 6/2 (between SWITCH_1 and SWITCH_2) as channel group number 1 (lag1).
Page 113: Configuration On Switch_2
Example of configuring LACP configure terminal 2. To select Ethernet interface 6/1, enter: interface ethernet 6/1 3. To specify the LACP configuration context, enter: lacp 4. To configure the channel group, enter: channel-group 1 mode active 5. To exit the LACP configuration context, enter: exit 6.
Page 114 7. To select Ethernet interface 6/2, enter: interface ethernet 6/2 8. To specify the LACP configuration context, enter: lacp 9. To configure the channel group, enter: channel-group 1 mode active Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 115: Chapter 12: Vlan Configuration
Chapter 12: VLAN configuration Use the procedures in this section to create or remove VLANs from the system. Creating a VLAN Use the procedure in this section to create VLANs in the bridge global database. Procedure steps 1. To access configuration mode, enter: configure terminal 2.
Page 116: Verifying Vlans
Use the following procedure to configure IP Helper addresses on a VLAN. Procedure steps 1. To configure IP Helper addresses, enter Configuration Mode. configure terminal 2. To configure an interface, enter Interface Mode. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 117: Example Of Creating Vlans And Binding Each Vlan To An Interface
Example of creating VLANs and binding each VLAN to an interface interface vlan vlan <id> 3. Specify an IP address. ip address <A.B.C.D/M> 4. Specify a Helper address. ip helper-address <A.B.C.D> [service <service>] [protocol <protocol>] [port <port>] 5. To add up to six Helper addresses, repeat Step 4. Table 50: Variable definitions Variable Value...
Page 118: Example Of Binding A Bundle Access Interface To A Vlan
5. To configure the interface as an access port, enter: switchport 6. To bind the bundle access interface to VLAN 2, enter: switchport pvid 2 This changes the default PVID from 1 to 2. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 119: Example Of Binding A Lag Trunk Port To Vlans
Example of creating VLANs and binding each VLAN to an interface Example of binding a LAG trunk port to VLANs Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select the previously configured channel group number 1, enter: interface lag lag1 3.
Page 120 VLAN configuration Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 121: Chapter 13: Vlan Classification Configuration
Chapter 13: VLAN classification configuration Creating VLAN classification rules There are two types of VLAN classification rules that you can create: • IPv4 subnet-based VLAN classification rule (if the source IP address matches the IP subnet specified in the VLAN classification rule, the received packets are mapped to the specified VLAN) •...
Page 122: Configuring A Protocol-Based Vlan Classification Rule
• mpls • arp • rarp • vlan-tagged • appletalk • ipx • pppoe-disc • pppoe-session <encapsulation> The encapsulation type. Enter one of the following: • ethv2 • llcsnap • llc Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 123: Deleting Vlan Classification Rules
Deleting VLAN classification rules Deleting VLAN classification rules Use the procedure in this section to delete VLAN classification rules. Procedure steps 1. To access configuration mode, enter: configure terminal 2. Enter the configuration context: vlan classification 3. To delete a subnet-based classification rule, enter: no rule <id>...
Page 124: Creating Protocol Vlan Classification Rules
Use the procedures in this section to remove VLAN classification rules from an interface. Deleting protocol rules from an interface Use the procedure in this section to delete a protocol-based VLAN classification rule from an interface. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 125: Deleting Ipv4 Rules From An Interface
Example of configuring VLAN classification rules Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an interface, enter: interface ethernet <slot/port> 3. To delete a protocol-based classification rule from the selected interface, enter: no vlan classification protocol rule <id> vlan <vid> Deleting IPv4 rules from an interface Use the procedure in this section to delete an IPv4-based VLAN classification rule from an interface.
Page 126 13. To select a previously-configured LAG interface (in this example, channel group number 1), enter: interface lag lag1 14. To apply a classification rule to the selected interface, enter: vlan classification protocol rule 3 vlan 12 Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 127: Chapter 14: Vlan Stacking Configuration
Chapter 14: VLAN stacking configuration Use the procedures in this section to configure VLAN stacking. Enabling VLAN stacking You can configure VLAN stacking on access, trunk, and hybrid interfaces. Use the procedure in this section to enable VLAN stacking on an interface. Prerequisites •...
Page 128: Verifying Vlan Stacking Configuration
Example of configuring VLAN stacking In this example, the enterprise switch (that is, the Avaya Secure Router 2330/4134 acting as an Enterprise switch) hosts computers on the LAN segments, and provides connectivity through the WAN interface to the Carrier Device (that is, the Secure Router 2330/4134 acting as a Carrier Device).
Page 129 Example of configuring VLAN stacking Figure 16: Example of VLAN stacking Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an interface (in this example, Ethernet interface 6/1), enter: interface ethernet 6/1 3. To enable VLAN stacking on the selected Ethernet port, enter: switchport mode access vlan-stacking 4.
Page 130: Configuration Of The Secure Router 2330/4134 On Interface A
VLAN stacking configuration switchport mode access vlan-stacking Configuration of the Secure Router 2330/4134 on interface A Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an interface (in this example, Ethernet interface 5/1), enter: interface ethernet 5/1 3.
Page 131: Configuration Of The Secure Router 2330/4134 On Interface C
Example of configuring VLAN stacking Configuration of the Secure Router 2330/4134 on interface C In the following procedure, you configure the interface as a trunk (same as interface B) in Steps 1–5. You enable VLAN stacking after setting the interface to trunk mode (Steps 6–7).
Page 132 VLAN stacking configuration Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 133: Chapter 15: Port Mirroring Configuration
Chapter 15: Port mirroring configuration The port mirroring feature is supported only on the interface module Ethernet ports. You can configure a maximum of one analyzer (destination) port for each module. There is no limitation on the number of ports that can be monitored for "receive" packets. However, each analyzer port can monitor up to eight ports for both transmit and receive (both) packets.
Page 134: Disabling Port Mirroring
<interface id> destination <interface id> direction {both|receive} Verifying port mirroring configuration Use the procedure in this section to view summary information about mirrored ports on the Avaya Secure Router 2330/4134. Procedure steps To view port mirroring information and status, enter: show mirror...
Page 135: Chapter 16: Mac Entry Configuration
Specify whether frames received with the configured MAC address are to be discarded or forwarded. <interface> Specifies the interface on which the frame enters the Avaya Secure Router 2330/4134. For example, ethernet6/1. <vid> Specifies the VLAN ID of the received frames.
Page 136: Verifying Static Mac Address Entries
Configuring MAC address aging time Use the procedure in this section to specify an age-out time for a learned MAC address. The learned MAC address will persist until the configured age-out time is expired. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 137: Restoring The Default Mac Address Aging Time
Restoring the default MAC address aging time Procedure steps 1. To access configuration mode, enter: configure terminal 2. To access the bridge command context, enter: bridge 3. To configure the MAC address age-out time, enter: mac aging-time <age-out value> Table 55: Variable definitions Variable Value <age-out value>...
Page 138: Example Of Configuring Mac Address Aging Time
2. To access the bridge command context, enter: bridge 3. To configure the MAC address aging time to 100 seconds, enter: mac aging-time 100 4. To restore the default MAC address aging time, enter: no mac aging-time 100 Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 139: Chapter 17: Multiple Spanning Tree Protocol Configuration
Chapter 17: Multiple Spanning Tree Protocol configuration Use the procedures in this section to configure Multiple Spanning Tree Protocol (MSTP) on the Avaya Secure Router 2330/4134. Configuring the region name and revision number Use the procedure in this section to configure the MSTP region name and revision number.
Page 140: Resetting The Revision Number
You can assign a priority to the bridge. The lower the priority, the greater the chance that the bridge becomes root for the CST. Procedure steps 1. To access configuration mode, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 141: Configuring Hop Count
Configuring Common Spanning Tree configure terminal 2. To access the bridge command context, enter: bridge 3. To configure the priority value, enter: priority <value> Table 58: Variable definitions Variable Value <value> Specifies the bridge priority. The default value is 32768 (or hex 0x8000). Valid values are 0 to 61440, and are increments of 4096.
Page 142 4. To restore the default maximum hops value, enter: no max-hops <value> Table 61: Variable definitions Variable Value <value> Specifies the maximum hop value that is currently configured. Valid values are 1 to 40. The default value is 20. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 143: Configuring Link Path Cost And Priority
Configuring Common Spanning Tree Procedure job aid Figure 17: Hop count of a packet Configuring link path cost and priority Use the procedures in this section to configure the path cost and priority for a port. The port with the least path cost is selected as the preferred port for traffic transmission. Similarly, the lower the port priority, the greater the chance that the port is selected for traffic transmission.
Page 144 Specifies the path cost that is currently configured. The default value is auto-detect. Valid values are 1 to 200000000. Configuring link priority Use the procedure in this section to configure the link priority for an interface. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 145 Configuring Common Spanning Tree Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an interface, enter: interface [range] ethernet <slot/port> 3. To access the Spanning Tree command context, enter: spanning-tree 4. To configure the link priority, enter: priority <value>...
Page 146: Configuring Portfast
Figure 18: Link bandwidth and priority Configuring PortFast Use the procedure in this section to enable and disable rapid transitions. Enabling rapid transitions with PortFast Use the procedure in this section to enable rapid transitions. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 147 Configuring Common Spanning Tree Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an Ethernet interface, enter: interface [range] ethernet <slot/port> 3. To access the Spanning Tree command context, enter: spanning-tree 4. To enable rapid transitions, enter: portfast Table 66: Variable definitions Variable...
Page 148: Configuring Portfast Bpdu Guard
Use the procedure in this section to disable BPDU Guard on a port. Procedure steps 1. To access configuration mode, enter: configure terminal 2. To select an Ethernet interface, enter: interface [range] ethernet <slot/port> 3. To access the Spanning Tree command context, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 149: Configuring Portfast Bpdu Filter
Configuring Common Spanning Tree spanning-tree 4. To disable BPDU Guard, enter: no portfast bpdu-guard Table 69: Variable definitions Variable Value <slot/port> The slot and port numbers that identify the port on which you disable BPDU guard. For example, 7/1. Configuring PortFast BPDU Filter Use the procedure in this section to enable and disable PortFast BPDU Filter on a port.
Page 150: Configuring Mstp Timers
Portfast BPDU Filter. For example, 7/1. Configuring MSTP timers The Secure Router 2330/4134 transmits a BPDU at every hello time. Use the procedures in this section to configure the timer value. Configuring hello time The hello time is the time, in seconds, after which (if the bridge is the root bridge) all the bridges in a bridged LAN exchange BPDUs.
Page 151 Configuring Common Spanning Tree bridge 3. To configure the hello time interval, enter: hello-time <time value> Table 72: Variable definitions Variable Value <time value> The interval, expressed in seconds, between BPDU exchanges. The default value is 2 seconds. Valid values are 1 to 10 seconds. Restoring the default hello time value Use the procedure in this section to restore the hello time value to the default setting (2 seconds).
Page 152: Configuring Forward Delay
Forward delay is the time interval that bridges use to transition root and designated ports to the forwarding state. When the Secure Router 2330/4134 powers up, or when a device is connected to a port, the port normally enters the Spanning Tree listening state. When the forward delay timer expires, the port enters the learning state.
Page 153 Configuring Common Spanning Tree Table 74: Variable definitions Variable Value <time value> Specifies the forward time delay, expressed in seconds. The default value is 15 seconds. Valid values are 4 to 30 seconds. Restoring the default forward delay value Use the procedure in this section to restore the forward delay value to the default setting (15 seconds).
Page 154: Configuring Maximum Age Time
Valid values are 6 to 40 seconds. Restoring the default maximum age time Use the procedure in this section to restore the maximum age time to the default setting (20 seconds). Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 155: Configuring Link Types
Configuring Common Spanning Tree Procedure steps 1. To access configuration mode, enter: configure terminal 2. To access the bridge command context, enter: bridge 3. To restore the default maximum age time, enter: no max-age <time value> Table 77: Variable definitions Variable Value <time value>...
Page 156 Specifies the link type. Valid values are point- to-point and shared. The default value is point-to-point. Procedure job aid When devices are connected back-to-back, the link is a point-to-point link. The following figure shows a point-to-point link. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 157: Configuring An Mstp Instance
Configuring an MSTP instance Figure 21: Point-to-point link When devices are connected through a hub (or any broadcasting device), the link is a shared link. MSTP requires more time for convergence over a shared link (that is, compared to a point- to-point link).
Page 158: Associating A Vlan With An Instance
3. To access the MSTP command context, enter: mstp 4. To select the MSTP instance, enter: instance <instance id> 5. To associate a VLAN with the MSTP instance, enter: vlan <vid> Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 159: Configuring Priority For An Instance
Configuring an MSTP instance Table 81: Variable definitions Variable Value <instance id> Specifies the MSTP instance ID. Valid values are 0 to 15. <vid> Specifies the VLAN ID to associate with the MSTP instance. Valid values are 1 to 4000. Removing a VLAN from an MSTP instance Use the procedure in this section to remove a VLAN from an MSTP instance.
Page 160 2. To access the bridge command context, enter: bridge 3. To access the MSTP command context, enter: mstp 4. To select an MSTP instance, enter: instance <instance id> 5. To restore the default priority for the instance, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 161: Configuring Link Path Cost And Priority For An Instance
Configuring an MSTP instance no priority <value> Table 84: Variable definitions Variable Value <instance id> Specifies the MSTP instance ID. Valid values are 0 to 15. <value> Specifies the priority that you assign to the instance. The default value for priority is 32768.
Page 162 Assigning port priority in an instance (Internal Spanning Tree) Use the procedure in this section to set the port priority for an MSTP instance. Procedure steps 1. To access configuration mode, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 163 Configuring an MSTP instance configure terminal 2. To select an Ethernet interface, enter: interface [range] ethernet <slot/port> 3. To access the Spanning Tree command context, enter: spanning-tree 4. To select an MSTP instance, enter: instance <instance id> 5. To configure the port priority for the instance, enter: priority <value>...
Page 164: Verifying Mstp Operation
Use the procedure in this section to view information about the default common and internal spanning tree (CIST) instance of MSTP. Procedure steps To view CIST information, enter: show spanning-tree mstp cist <vlan> <port> Table 89: Variable definitions Variable Value <vlan> Display VLAN configuration information. Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 165: Viewing Information For Mstp Instances
Verifying MSTP operation Variable Value <port> Display port configuration information. Viewing information for MSTP instances Use the procedure in this section to view information about the state and role of all ports in Common Spanning Tree and in all instances. Procedure steps To view information about the ports in Common Spanning Tree and in all instances, enter:...
Page 166: Viewing Vlan Information For All Instances
Use the procedure in this section to view information about the VLANs in a specified instance. Procedure steps To view information about VLANs in an instance, enter: show spanning-tree mstp instance <instance id> vlan Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 167: Chapter 18: Gvrp Configuration
Chapter 18: GVRP configuration Use the procedures in this section to configure GVRP. GVRP is primarily used to prune traffic from VLANs that do not pass between trunking switches. In this section, GVRP is configured on Ethernet interfaces, but you can also configure GVRP on LAG interfaces.
Page 168: Enabling Gvrp On Ports And Configuring Port Registration State
If the device on the other side is incapable of sending GVRP messages, or if you do not want to allow the Avaya Secure Router 2330/4134 to prune any of the VLANs, use the "fixed" mode. Fixed mode ports will forward for all VLANs that exist in the switch database. Ports in forbidden mode forward only for VLAN 1.
Page 169: Disabling Gvrp On An Interface
Configuring GVRP for dynamic VLAN creation GVRP can dynamically create VLANs on devices for trunking purposes. When you enable GVRP dynamic VLAN creation, a Secure Router 2330/4134 adds VLANs to its database when it receives GVRP join messages about VLANs it does not have.
Page 170: Disabling Dynamic Vlan Creation
Use the commands in this section to disable dynamic VLAN creation. Procedure steps 1. To access configuration mode, enter: configure terminal 2. To access the GVRP command context, enter: gvrp 3. To disable dynamic VLAN creation, enter: no dynamic-vlan-creation Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 171: Configuring Gvrp Timers
Configuring GVRP timers Configuring GVRP timers Use the gvrp timer command to adjust the values of the join, leave, and leaveall timers. Timer values are in centi-seconds and valid values are from 1 to 10000. You must maintain the following relationship for the various timer values: •...
Page 172: Resetting Gvrp Timers
20 leave 60 leaveall 1000 Verifying GVRP configuration Use the procedure in this section to display GVRP information, and verify successful operation. Procedure steps 1. To view detail information for GVRP, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 173: Clearing Gvrp Command Options
Clearing GVRP command options show gvrp detail 2. To view finite state-machine information for GVRP, enter: show gvrp state-machine 3. To view GVRP statistics, enter: show gvrp statistics 4. To view GVRP timer information, enter: show gvrp timer Table 94: Variable definitions Variable Value option...
Page 174: Example Of Configuring Gvrp
2. To select Ethernet interface 5/1, enter: interface ethernet 5/1 3. To configure the interface as a trunk port, enter: switchportswitchport mode trunk 4. To access the GVRP command context, enter: Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...
Page 175 Example of configuring GVRP gvrp 5. To enable GVRP on the interface, enter: gvrp-enable 6. To exit the GVRP command context, enter: exit 7. To deselect interface 5/1, enter: exit 8. To select Ethernet interface 6/1, enter: interface ethernet 6/1 9.
Page 176: Configuration — Layer 2 Ethernet July
GVRP configuration Configuration — Layer 2 Ethernet July 2013 Comments? infodev@avaya.com...

This manual is also suitable for:

4134

Avaya 2330 Manual

Chapter 1: Introduction

Chapter 2: New in this Release

Chapter 3: Secure Router 2330/4134 Ethernet Interface Fundamentals

Chapter 4: Ethernet Connectivity Fault Management

Chapter 5: Layer 2 Fundamentals

Chapter 6: Power over Ethernet Configuration

Chapter 7: Ethernet Connectivity Fault Management Configuration

Chapter 8: Secure Router 2330/4134 Ethernet Interfaces Configuration

Chapter 9: Layer 2 Configuration

Chapter 10: Interface Mode Configuration

Chapter 11: Link Aggregation Configuration

Chapter 12: VLAN Configuration

Chapter 13: VLAN Classification Configuration

Chapter 14: VLAN Stacking Configuration

Chapter 15: Port Mirroring Configuration

Chapter 16: MAC Entry Configuration

Chapter 17: Multiple Spanning Tree Protocol Configuration

Chapter 18: GVRP Configuration

Quick Links

Need help?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Avaya 2330

Summary of Contents for Avaya 2330