Page 1 System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches) First Published: 2018-12-10 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883...
Page 3 MAC Addresses and VLANs MAC Addresses and Device Stacks Default MAC Address Table Settings ARP Table Management How to Administer the Device Configuring the Time and Date Manually System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 4: Table Of Contents
Example: Adding the Static Address to the MAC Address Table Example: Configuring Unicast MAC Address Filtering Additional References for Device Administration Feature History for Device Administration C H A P T E R 2 Boot Integrity Visibility System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 5 Configuring DHCP Auto-Image Update (Configuration File and Image) Configuring the Client to Download Files from DHCP Server Manually Assigning IP Information to Multiple SVIs Modifying the Device Startup Configuration System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 6 Generating a New Token from CSSM Registering a Device with the New Token Verifying the License Status After Registration Canceling a Device's Registration in CSSM Monitoring Smart Licensing Configuration System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 7 Setting the Message Display Destination Device Synchronizing Log Messages Disabling Message Logging Enabling and Disabling Time Stamps on Log Messages Enabling and Disabling Sequence Numbers in Log Messages Defining the Message Severity Level System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 8 Managing Configuration Files Prerequisites for Managing Configuration Files Restrictions for Managing Configuration Files Information About Managing Configuration Files Types of Configuration Files Configuration Mode and Selecting a Configuration Source System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches) viii...
Page 9 Storing the Configuration in Flash Memory on Class A Flash File Systems Loading the Configuration Commands from the Network Copying Configuration Files from Flash Memory to the Startup or Running Configuration System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 10 Replacing the Current Running Configuration with a Saved Cisco IOS Configuration File Reverting to the Startup Configuration File Performing a Configuration Replace Operation with the configure confirm Command Performing a Configuration Rollback Operation System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 11 Additional References for Flash File System Feature History for Flash File System C H A P T E R 1 2 Performing Factory Reset Prerequisites for Performing Factory Reset System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 12 C H A P T E R 1 5 Troubleshooting the Software Configuration Information About Troubleshooting the Software Configuration Software Failure on a Switch Lost or Forgotten Password on a Device Ping Layer 2 Traceroute System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 13 Scenarios to Troubleshoot Power over Ethernet (PoE) Configuration Examples for Troubleshooting Software Example: Pinging an IP Host Example: Performing a Traceroute to an IP Host Feature History for Troubleshooting Software Configuration System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches) xiii...
Page 14 Contents System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 15: C H A P T E
You can manage the system time and date on your device using automatic configuration methods (RTC and NTP), or manual configuration methods. Note For complete syntax and usage information for the commands used in this section, see the Cisco IOS Configuration Fundamentals Command Referenceon Cisco.com. System Clock The basis of the time service is the system clock.
Page 16 Cisco’s implementation of NTP does not support stratum 1 service; it is not possible to connect to a radio or atomic clock. We recommend that the time service for your network be derived from the public NTP servers available on the IP Internet.
Page 17 Figure 1: Typical NTP Network Configuration If the network is isolated from the Internet, Cisco’s implementation of NTP allows a device to act as if it is synchronized through NTP, when in fact it has learned the time by using other means. Other devices then synchronize to that device through NTP.
Page 18 20 clients. Broadcast-based NTP associations are also recommended for use on networks that have limited bandwidth, system memory, or CPU resources. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 19 NTP synchronization packets that do not contain a matching authenticator key are ignored. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 20 The following figure shows a typical network example using NTP. Switch A is the primary NTP, with the Switch B, C, and D configured in NTP server mode, in server association with Switch A. Switch E is configured System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 21 A greater-than symbol [>] is appended. The prompt is updated whenever the system name changes. For complete syntax and usage information for the commands used in this section, see the Cisco IOS Configuration Fundamentals Command Reference, Release 12.4 and the Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols, Release 12.4.
Page 22 (.) as the delimiting characters. For example, Cisco Systems is a commercial organization that IP identifies by a com domain name, so its domain name is cisco.com. A specific device in this domain, for example, the File Transfer Protocol (FTP) system is identified as ftp.cisco.com.
Page 23 The MAC address tables on all stack members are synchronized. At any given time, each stack member has the same copy of the address tables for each VLAN. When an address ages out, the address is removed from System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 24: Setting The System Clock
If you have an outside source on the network that provides time services, such as an NTP server, you do not need to manually set the system clock. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 25: Configuring The Time Zone
4. end 5. show running-config 6. copy running-config startup-config DETAILED STEPS Command or Action Purpose Step 1 enable Enables privileged EXEC mode. Enter your password if prompted. Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 26: Configuring Summer Time (Daylight Saving Time)
To configure summer time (daylight saving time) in areas where it starts and ends on a particular day of the week each year, perform this task: SUMMARY STEPS 1. enable System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 27 • (Optional) week Specifies the week of the month (1 to 4, first, or last). • (Optional) day Specifies the day of the week (Sunday, Monday...). System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 28 5. show running-config 6. copy running-config startup-config DETAILED STEPS Command or Action Purpose Step 1 Enables privileged EXEC mode. Enter your password if enable prompted. Example: Device> enable System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 29 Step 5 show running-config Verifies your entries. Example: Device# show running-config Step 6 copy running-config startup-config (Optional) Saves your entries in the configuration file. Example: Device# copy running-config startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 30: Configuring Ntp
8. [no] ntp server ip-address key key-id [prefer] 9. end DETAILED STEPS Command or Action Purpose Step 1 Enables privileged EXEC mode. enable Example: Enter your password if prompted. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 31 • cmac-aes-128: Authentication using Cipher-based message authentication codes (CMAC) with the AES-128 algorithm. The digest length is 128 bits and the key length is 16 or 32 bytes. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 32 • ip-address: The IP address of the time server providing the clock synchronization. Device(config)# ntp server 172.16.22.44 key 42 • key-id: Authentication key defined with the ntp authentication-key command. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 33: Configuring Poll-Based Ntp Associations
Device(config)# ntp peer 172.16.22.44 version 2 • number: NTP version number. The range is 1 to 3. By default, version 3 is selected. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 34: Configuring Broadcast-Based Ntp Associations
Returns to privileged EXEC mode. Example: Device(config)# end Configuring Broadcast-Based NTP Associations To configure broadcast-based NTP associations, perform this procedure: SUMMARY STEPS 1. enable 2. configure terminal 3. interface interface-id System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 35 Use the no form of this command to disable the interface from receiving NTP broadcast packets. Device(config-if)# ntp broadcast client Step 6 Returns to privileged EXEC mode. exit Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 36: Configuring Ntp Access Restrictions
Purpose Step 1 enable Enables privileged EXEC mode. Example: Enter your password if prompted. Device> enable Step 2 configure terminal Enters global configuration mode. Example: Device# configure terminal System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 37 Returns to privileged EXEC mode. Example: Device(config)# end Disabling NTP Services on a Specific Interface To disable NTP packets from being received on an interface, perform this procedure: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 38: Configuring A System Name
Returns to privileged EXEC mode. Example: Device(config-if)# end Configuring a System Name Follow these steps to manually configure a system name: SUMMARY STEPS 1. enable 2. configure terminal System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 39 Step 5 show running-config Verifies your entries. Example: Device# show running-config Step 6 (Optional) Saves your entries in the configuration file. copy running-config startup-config Example: Device# copy running-config startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 40: Setting Up Dns
If there is a period (.) in the hostname, the Cisco IOS software looks up the IP address without appending any default domain name to the hostname. Follow these steps to set up your switch to use the DNS: SUMMARY STEPS 1.
Page 41: Configuring A Message-Of-The-Day Login Banner
Follow these steps to configure a MOTD login banner: SUMMARY STEPS 1. enable 2. configure terminal 3. banner motd c message c 4. end 5. show running-config 6. copy running-config startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 42: Configuring A Login Banner
You can configure a login banner to be displayed on all connected terminals. This banner appears after the MOTD banner and before the login prompt. Follow these steps to configure a login banner: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 43 Example: Device(config)# end Step 5 show running-config Verifies your entries. Example: Device# show running-config Step 6 (Optional) Saves your entries in the configuration file. copy running-config startup-config Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 44: Managing The Mac Address Table
Device(config)# mac address-table aging-time 500 vlan 2 vlan-id Valid IDs are 1 to 4094. Step 4 Returns to privileged EXEC mode. Example: Device(config)# end System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 45: Configuring Mac Address Change Notification Traps
Step 1 enable Enables privileged EXEC mode. Enter your password if prompted. Example: Device> enable Step 2 Enters the global configuration mode. configure terminal Example: Device# configure terminal System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 46 • (Optional) history-size value Specifies the Device(config)#mac address-table notification change history-size 100 maximum number of entries in the MAC notification history table. The range is 0 to 500; the default is 1. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 47: Configuring Mac Address Move Notification Traps
3. snmp-server host host-addr {traps | informs} {version {1 | 2c | 3}} community-string notification-type 4. snmp-server enable traps mac-notification move 5. mac address-table notification mac-move 6. end 7. show running-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 48 NMS. Example: Device(config)# snmp-server enable traps mac-notification move Step 5 mac address-table notification mac-move Enables the MAC address move notification feature. Example: Device(config)# mac address-table notification mac-move System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 49: Configuring Mac Threshold Notification Traps
4. snmp-server enable traps mac-notification threshold 5. mac address-table notification threshold 6. mac address-table notification threshold [limit percentage] | [interval time] 7. end 8. show running-config 9. copy running-config startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 50 Device(config)# mac address-table notification threshold Step 6 mac address-table notification threshold [limit Enters the threshold value for the MAC address threshold percentage] | [interval time] usage monitoring. Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 51: Adding And Removing Static Address Entries
4. show running-config 5. copy running-config startup-config DETAILED STEPS Command or Action Purpose Step 1 enable Enables privileged EXEC mode. Enter your password if prompted. Example: Device> enable System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 52: Configuring Unicast Mac Address Filtering
Follow these steps to configure the Device to drop a source or destination unicast static address: SUMMARY STEPS 1. enable 2. configure terminal 3. mac address-table static mac-addr vlan vlan-id drop 4. end 5. show running-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 53 Step 5 Verifies your entries. show running-config Example: Device# show running-config Step 6 copy running-config startup-config (Optional) Saves your entries in the configuration file. Example: Device# copy running-config startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 54: Monitoring And Maintaining Administration Of The Device
Displays the secure MAC addresses. show mac address-table static Displays only static MAC address table entries. show mac address-table vlan vlan-id Displays the MAC address table information for the specified VLAN. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 55: Configuration Examples For Device Administration
This example shows the banner that appears from the previous configuration: Unix> telnet 192.0.2.15 Trying 192.0.2.15... Connected to 192.0.2.15. Escape character is '^]'. This is a secure site. Only authorized users are allowed. For access, contact technical support. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 56: Example: Configuring A Login Banner
This example shows how to add the static address c2f3.220a.12f4 to the MAC address table. When a packet is received in VLAN 4 with this MAC address as its destination address, the packet is forwarded to the specified port: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 57: Example: Configuring Unicast Mac Address Filtering
Field Notices), the Cisco Technical Services Newsletter, and Really Simple Syndication (RSS) Feeds. Access to most tools on the Cisco Support website requires a Cisco.com user ID and password. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 58: Feature History For Device Administration
DNS. Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 59: Boot Integrity Visibility
During the boot process, the software creates a checksum record of each stage of the bootloader activities. You can retrieve this record and compare it with a Cisco-certified record to verify if your software image is genuine. If the checksum values do not match, you may be running a software image that is either not certified by Cisco or has been altered by an unauthorized party.
Page 60: Verifying Platform Identity And Software Integrity
The first certificate is the Cisco Root CA 2048 and the second is the Cisco subordinate CA (ACT2 SUDI CA). Both certificates can be verified to match those published on https://www.cisco.com/security/pki/. The third is the SUDI certificate.
Page 61 <Cisco subordinate CA (DER)> || <SUDI certificate (DER)> } Cisco management solutions are equipped with the ability to interpret the above output. However, a simple script using OpenSSL commands can also be used to display the identity of the platform and to verify the signature, thereby ensuring its Cisco unique device identity.
Page 62 These hashes can be compared against Cisco-provided reference values. An option to sign the output gives a verifier the ability to ensure the output is genuine and is not altered. A nonce can be provided to protect against replay attacks.
Page 63: Additional References For Boot Integrity Visibility
Field Notices), the Cisco Technical Services Newsletter, and Really Simple Syndication (RSS) Feeds. Access to most tools on the Cisco Support website requires a Cisco.com user ID and password. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 64: Feature History For Boot Integrity Visibility
Platform identity provides the platform’s manufacturing installed identity. Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 65: Performing Device Setup Configuration
PC to the Ethernet management port, and make sure you have configured the PC or terminal-emulation software baud rate and character format to match these of the device console port: • Baud rate default is 9600. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 66: Software Install Overview
The method that you use to upgrade Cisco IOS XE software depends on whether the switch is running in install mode or in bundle mode. In bundle mode or consolidated boot mode, a .bin image file is used from a local or remote location to boot the device.
Page 67: Installing The Software Package
IP address and reads the configuration file. If you are an experienced user familiar with the device configuration steps, manually configure the device. Otherwise, use the setup program described in the Boot Process section. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 68: Default Switch Information
IP address in the received packet. DHCP-based autoconfiguration replaces the BOOTP client functionality on your device. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 69: Dhcp Client Request Process
You can use the DHCP image upgrade features to configure a DHCP server to download both a new image and a new configuration file to one or more devices in a network. Simultaneous image and configuration System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 70: Restrictions For Dhcp-Based Autoconfiguration
To enable a DHCP auto-image update on the device, the TFTP server where the image and configuration files are located must be configured with the correct option 67 (the configuration filename), option 66 (the DHCP server hostname) option 150 (the TFTP server address), and option 125 (description of the Cisco IOS image file) settings.
Page 71: Purpose Of The Tftp Server
TFTP requests. Unavailability of other lease options does not affect autoconfiguration. • The device can act as a DHCP server. By default, the Cisco IOS DHCP server and relay agent features are enabled on your device but are not configured. (These features are not operational.)
Page 72: Purpose Of The Dns Server
TFTP server. If the cisconet.cfg file is read, the filename of the host is truncated to eight characters. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 73: How To Control Environment Variables
You can change the settings of the environment variables by accessing the boot loader or by using Cisco IOS commands. Under normal circumstances, it is not necessary to alter the setting of the environment variables.
Page 74: Common Environment Variables
If it is set to anything filesystem :/ file-url boot loader else, you must manually boot command, and specify the name of the up the switch from the boot bootable image. loader mode. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 75: Environment Variables For Tftp
TFTP. A reset is required for the new value to take effect. IP_ADDRESS Specifies the IP address and the subnet mask for the associated IP subnet of the switch. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 76: Scheduled Reload Of The Software Image
This task describes how to configure DHCP autoconfiguration of the TFTP and DHCP settings on an existing device in the network so that it can support the autoconfiguration of a new device. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 77 The prefix length must be preceded by a forward slash (/). Step 5 default-router address Specifies the IP address of the default router for a DHCP client. Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 78: Configuring Dhcp Auto-Image Update (Configuration File And Image)
Configuring DHCP Auto-Image Update (Configuration File and Image) This task describes DHCP autoconfiguration to configure TFTP and DHCP settings on an existing device to support the installation of a new switch. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 79 DHCP pool configuration mode. Example: Device(config)# ip dhcp pool pool1 Step 3 boot filename Specifies the name of the file that is used as a boot image. Example: Device(dhcp-config)# boot config-boot.text System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 80 Device(config)# copy tftp flash image.bin Step 10 exit Returns to global configuration mode. Example: Device(dhcp-config)# exit Step 11 tftp-server flash: config.text Specifies the Cisco IOS configuration file on the TFTP server. Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 81 Device(config-if)# ip address 10.10.10.1 255.255.255.0 Step 17 Returns to privileged EXEC mode. Example: Device(config-if)# end Step 18 copy running-config startup-config (Optional) Saves your entries in the configuration file. Example: Device(config-if)# end System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 82: Configuring The Client To Download Files From Dhcp Server
Device(conf)# banner config-save ^C Caution - Saving Configuration File to NVRAM May Cause You to No longer Automatically Download Configuration Files at Reboot^C Step 5 Returns to privileged EXEC mode. Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 83: Manually Assigning Ip Information To Multiple Svis
IP information is assigned. The range is 1 to Example: 4094. Device(config)# interface vlan 99 Step 3 Enters the IP address and subnet mask. ip address ip-address subnet-mask Example: Device(config-vlan)# ip address 10.10.10.2 255.255.255.0 System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 84: Modifying The Device Startup Configuration
Specifying the Filename to Read and Write the System Configuration By default, the Cisco IOS software uses the config.text file to read and write a nonvolatile copy of the system configuration. However, you can specify a different filename, which will be loaded during the next boot cycle.
Page 85: Manually Booting The Switch
(Optional) Saves your entries in the configuration file. Example: Switch# copy running-config startup-config Manually Booting the Switch By default, the switch automatically boots up; however, you can configure it to manually boot up. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 86 • filesystem:—Uses flash: for the system board flash device. Switch: boot flash: • For file-url—Specifies the path (directory) and the name of the bootable image. Filenames and directory names are case-sensitive. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 87: Booting The Device In Installed Mode
USB flash using the commands boot flash:<image.bin> or boot usbflash0:<image.bin> . The following procedure explains how to boot the device from the TFTP server in the bundle mode. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 88: Configuring A Scheduled Software Image Reload
Schedules a reload of the software to take affect in the specified minutes or hours and minutes. The reload must Example: take place within approximately 24 days. You can specify Device# reload in 12 System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 89: Monitoring Device Setup Configuration
Image parsed from conf file is cat9k-rpboot.16.09.01.SPA.pkg ######################################################################################################################## Waiting for 120 seconds for other switches to boot ####################################################################################################################### Switch number is 1 Restricted Rights Legend Use, duplication, or disclosure by the Government is System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 90 If you are unable to comply with U.S. and local laws, return this product immediately. A summary of U.S. laws governing Cisco cryptographic products may be found at: http://www.cisco.com/wwl/export/crypto/tool/stqrg.html If you require further assistance please contact us by sending email to export@cisco.com.
Page 91 GPL code under the terms of GPL Version 2.0. For more details, see the documentation or "License Notice" file accompanying the IOS-XE software, or the applicable URL provided on the flyer accompanying the IOS-XE software. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 92: Configuration Examples For Performing Device Setup
If you are unable to comply with U.S. and local laws, return this product immediately. A summary of U.S. laws governing Cisco cryptographic products may be found at: http://www.cisco.com/wwl/export/crypto/tool/stqrg.html If you require further assistance please contact us by sending email to export@cisco.com.
Page 93 Checking status of Commit on [4 7] Commit: Passed on [4 7] Finished Commit Install will reload the system now! SUCCESS: install_add_activate_commit Thu Aug 30 20:51:55 IST 2018 System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 94: Verifying Software Install
DETAILED STEPS Step 1 enable Example: Device> enable Enables privileged EXEC mode. • Enter your password if prompted. Step 2 show install log Example: Device# show install log System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 95: Example: Configuring A Device As A Dhcp Server
Package is bootable on RP when specified by packages provisioning file. Example: Configuring a Device as a DHCP Server Device# configure terminal Device(config)# ip dhcp pool pool1 Device(dhcp-config)# network 10.10.10.0 255.255.255.0 System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 96: Example: Configuring Dhcp Auto-Image Update
Device(config-if)# end Device# show boot BOOT path-list: Config file: flash:/config.text Private Config file: flash:/private-config.text Enable Break: Manual Boot: HELPER path-list: NVRAM/Config file buffer size: 32768 Timeout for Config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 97: Examples: Scheduling Software Image Reload
Release Feature Feature Information Cisco IOS XE Fuji 16.9.2 Device Setup A device setup configuration can be performed, Configuration including auto configuration of IP address assignments and DHCP. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 98 Performing Device Setup Configuration Feature History for Performing Device Setup Configuration Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 99: Configuring Smart Licensing
• Network reachability to https://tools.cisco.com. Introduction to Smart Licensing Cisco Smart Licensing is a flexible licensing model that provides you with an easier, faster, and more consistent way to purchase and manage software across the Cisco portfolio and across your organization. And it’s secure –...
Page 100: Overview Of Cssm
• License Flexibility: Your software is not node-locked to your hardware, so you can easily use and transfer licenses as needed. To use Smart Licensing, you must first set up a Smart Account on Cisco Software Central (software.cisco.com). For a more detailed overview on Cisco Licensing, go to cisco.com/go/licensingguide.
Page 101 Connecting to CSSM Figure 4: Connection Options 1. Direct cloud access: In this method, Cisco products send usage information directly over the internet to Cisco.com; no additional components are needed for the connection. 2. Direct cloud access through an HTTPs proxy: In this method, Cisco products send usage information over the internet through a proxy server - either a Call Home Transport Gateway or an off-the-shelf proxy (such as Apache) to Cisco.com.
Page 102: Configuring A Connection To Cssm And Setting Up The License Level
Options 1 and 2 provide an easy connection option, and options 3 and 4 provide a secure environment connection option. Cisco Smart Software Manager On-Prem (formerly known as Cisco Smart Software Manager satellite) provides support for options 3 and 4.
Page 103 Forms a server association with the specified system. [prefer] Note The ntp server command is mandatory to Example: ensure that the device time is synchronized with CSSM. Device(config)# ntp server 198.51.100.100 version 2 prefer System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 104: Configuring The Call Home Service For Direct Cloud Access
The Call Home service provides email-based and web-based notification of critical system events to CSSM. To configure and enable the Call Home service, perform this procedure: SUMMARY STEPS enable System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 105 Call Home service, you must enable the Example: profile. Device(config-call-home)# profile CiscoTAC-1 Step 7 destination transport-method http Enables the Call Home service via HTTP. Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 106: Configuring The Call Home Service For Direct Cloud Access Through An Https Proxy Server
Configuring the Call Home Service for Direct Cloud Access through an HTTPs Proxy Server The Call Home service can be configured through an HTTPs proxy server. This configuration requires no user authentication to connect to CSSM. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 107 Enters global configuration mode. Example: Device# configure terminal Step 3 call-home Enters Call Home configuration mode. Example: Device(config)# call-home Step 4 contact-email-address email-address Configures the default email address as sch-smart-licensing@cisco.com. Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 108 Device(config-call-home-profile)# destination transport-method http Step 12 destination address http url Connects to CSSM. Example: Device(config-call-home-profile)# destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService Step 13 active Enables the destination profile. Example: Device(config-call-home-profile)# active System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 109: Configuring The Call Home Service For Cisco Smart Software Manager On-Prem
For information about Cisco Smart Software Manager On-Prem (formerly known as Cisco Smart Software Manager satellite), see https://www.cisco.com/c/en/us/buy/smart-accounts/software-manager-satellite.html. To configure the Call Home service for the Cisco Smart Software Manager On-Prem (formerly known as Cisco Smart Software Manager satellite), perform this procedure:...
Page 110 Enables the HTTP message transport method. Example: Device(config-call-home-profile)# destination transport-method http Step 8 destination address http url Configures the destination URL (CSSM) to which Call Home messages are sent. Example: Note System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 111 (Optional) Specifies that certificate checking is ignored. Example: Device(ca-trustpoint)# revocation-check none Step 16 (Optional) Exits ca-trustpoint configuration mode and returns to privileged EXEC mode. Example: Device(ca-trustpoint)# end System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 112: Configuring The License Level
5. write memory 6. show version 7. reload DETAILED STEPS Command or Action Purpose Step 1 enable Enables privileged EXEC mode. Example: Enter your password, if prompted. Device> enable System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 113: Registering A Device On Cssm
2. Register the device with the generated token. On successful registration, the device will receive an identity certificate. This certificate is saved on your device and automatically used for all future communications with Cisco. CSSM will attempt to renew the registration information every 30 days..
Page 114: Generating A New Token From Cssm
Note Downgrading a device from Cisco IOS XE Fuji 16.9.1 to any prior release will migrate the smart license to traditional license. All smart license information on the device will be removed. In case the device needs to be upgraded back to Cisco IOS XE Fuji 16.9.1, the license status will remain in evaluation mode until the...
Page 115: Registering A Device With The New Token
Registering a Device with the New Token Step 9 Check the Allow export-controlled functionality on the products registered with this token checkbox. Enabling this checkbox ensures Cisco compliance with US and country-specific export policies and guidelines. For more information, see https://www.cisco.com/c/en/us/about/legal/global-export-trade.html. Step 10 Click Create Token to create a token.
Page 116: Verifying The License Status After Registration
Next Communication Attempt: Aug 27 07:02:56 2018 IST Communication Deadline: Oct 26 06:57:50 2018 IST Utility: Status: DISABLED Data Privacy: Sending Hostname: yes Callhome hostname privacy: DISABLED Smart Licensing hostname privacy: DISABLED Version privacy: DISABLED System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 117: Canceling A Device's Registration In Cssm
License reservation: DISABLED Canceling a Device's Registration in CSSM When your device is taken off the inventory, shipped elsewhere for redeployment, or returned to Cisco for replacement using the return merchandise authorization (RMA) process, you can use the deregister command to cancel the registration of your device.
Page 118: Monitoring Smart Licensing Configuration
Otherwise, your device's evaluation period will expire. • Evaluation Period Expired: At the end of 90 days, if your device has not registered, the device enters Evaluation Expired mode. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 119: Configuration Examples For Smart Licensing
Periodic inventory info message is scheduled every 1 day of the month at 09:00 Alert-group Severity ------------------------ ------------ crash debug diagnostic minor environment warning inventory normal Syslog-Pattern Severity ------------------------ ------------ APF-.-WLC_.* warning major System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 120: Example: Viewing The License Information Before Registering
Status: EVAL MODE Product Information =================== UDI: PID:C9200L-48P-4X,SN:JPG221300KP Agent Version ============= Smart Agent for Licensing: 4.4.13_rel/116 Component Versions: SA:(1_3_dev)1.0.15, SI:(dev22)1.2.1, CH:(rel5)1.0.3, PK:(dev18)1.0.3 Reservation Info ================ License reservation: DISABLED System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 121 To display the license status information, use the show license status command: Device> enable Device# show license status Load for five secs: 1%/0%; one minute: 0%; five minutes: 0% No time source, 09:28:37.683 EDT Fri Jul 13 2018 System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 122: Example: Registering A Device
Virtual Account: Virtual Account 1 Export-Controlled Functionality: Allowed Initial Registration: First Attempt Pending Last Renewal Attempt: SUCCEEDED on Jul 19 14:49:49 2018 IST Next Renewal Attempt: Jan 15 14:49:48 2019 IST System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 123 Device# show license usage License Authorization: Status: AUTHORIZED on Jul 28 07:02:56 2018 IST C9200L DNA Advantage, 48-port Term license (C9200L-DNA-A-48): Description: C9200L DNA Advantage, 48-port Term license System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 124 Smart Licensing is ENABLED Utility: Status: DISABLED Data Privacy: Sending Hostname: yes Callhome hostname privacy: DISABLED Smart Licensing hostname privacy: DISABLED Version privacy: DISABLED Transport: Type: Callhome Registration: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 125: Additional References
Unless noted otherwise, subsequent releases of that software release train also support that feature. Use Cisco Feature Navigator to find information about platform support and Cisco software image support. To access Cisco Feature Navigator, go to www.cisco.com/go/cfn. An account on Cisco.com is not required.
Page 126 Smart Licensing is a cloud-based, software license management Licensing 16.9.2 solution that allows you to manage and track the status of your license and hardware and software usage trends. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 127: Configuring Sdm Templates
When a new switch is added to a stack, the SDM configuration that is stored on the active switch overrides the template configured on an individual switch. You can use the show switch privileged EXEC command to see if any stack members are in SDM mismatch mode. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 128: How To Configure Sdm Templates
EXEC command to verify the new template configuration. If you enter the show sdm prefer command Device# reload before you enter the reload privileged EXEC command, the System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 129: Monitoring And Maintaining Sdm Templates
STP Instances: Security Access Control Entries: 1408 QoS Access Control Entries: 1024 Policy Based Routing ACEs: Netflow Input ACEs: Netflow Output ACEs: Ingress Netflow ACEs: Egress Netflow ACEs: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 130: Examples: Configuring Sdm Templates
* values can be modified by sdm cli. Examples: Configuring SDM Templates Device(config)# sdm prefer advanced Device(config)# exit Device# reload Proceed with reload? [confirm] System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 131: Additional References For Sdm Templates
Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 132 Configuring SDM Templates Feature History for SDM Templates System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 133: Configuring System Message Logs
Use Cisco Feature Navigator to find information about platform support and Cisco software image support. To access Cisco Feature Navigator, go to https://cfnng.cisco.com/. An account on Cisco.com is not required.
Page 134: System Log Message Format
The facility to which the message refers (for example, SNMP, SYS, and so forth). Single-digit code from 0 to 7 that is the severity of the message. severity Text string that uniquely describes the message. MNEMONIC System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 135: Default System Message Logging Settings
The history table lists the level keywords and severity level. For SNMP usage, the severity level values increase by 1. For example, emergencies equal 1, not 0, and critical equals 3, not 2. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 136: How To Configure System Message Logs
IP address of the host to be used as the syslog server. Device(config)# logging 125.1.1.100 To build a list of syslog servers that receive logging messages, enter this command more than once. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 137: Synchronizing Log Messages
After the unsolicited messages appear, the console again displays the user prompt. This task is optional. SUMMARY STEPS 1. configure terminal 2. line [console | vty] line-number [ending-line-number] System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 138 • (Optional) limit number-of-buffers Specifies the number of buffers to be queued for the terminal after which new messages are dropped. The range is 0 to 2147483647. The default is 20. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 139: Disabling Message Logging
Enters global configuration mode. Example: Device# configure terminal Step 2 no logging console Disables message logging. Example: Device(config)# no logging console Step 3 Returns to privileged EXEC mode. Example: Device(config)# end System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 140: Enabling And Disabling Time Stamps On Log Messages
If there is more than one log message with the same time stamp, you can display messages with sequence numbers to view these messages. By default, sequence numbers in log messages are not displayed. This task is optional. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 141: Defining The Message Severity Level
3. logging monitor level 4. logging trap level 5. end DETAILED STEPS Command or Action Purpose Step 1 configure terminal Enters global configuration mode. Example: Device# configure terminal System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 142: Limiting Syslog Messages Sent To The History Table And To Snmp
2. logging history level 3. logging history size number 4. end DETAILED STEPS Command or Action Purpose Step 1 configure terminal Enters global configuration mode. Example: Device# configure terminal System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 143: Logging Messages To A Unix Syslog Daemon
3. Make sure the syslog daemon reads the new changes. DETAILED STEPS Command or Action Purpose Step 1 Add a line to the file /etc/syslog.conf. • local7 Specifies the logging facility. Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 144: Monitoring And Maintaining System Message Logs
18:47:02: %SYS-5-CONFIG_I: Configured from console by vty2 (10.34.195.36) *Mar 1 18:48:50.483 UTC: %SYS-5-CONFIG_I: Configured from console by vty2 (10.34.195.36) 00:00:46: %LINK-3-UPDOWN: Interface Port-channel1, changed state to up (Switch-2) System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 145: Example: Switch System Message
1 18:48:50.483 UTC: %SYS-5-CONFIG_I: Configured from console by vty2 (10.34.195.36) Feature History and Information For System Message Logs Release Modification Cisco IOS XE Fuji 16.9.2 This feature was introduced. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 146 Configuring System Message Logs Feature History and Information For System Message Logs System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 147: Configuring Online Diagnostics
After you configure online diagnostics, you can manually start diagnostic tests or display the test results. You can also see which tests are configured for the device or switch stack and the diagnostic tests that have already run. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 148: Generic Online Diagnostics (Gold)
ASIC level to verify that the ports are not stuck. The test displays syslog messages, and users can take corrective actions using the Cisco IOS Embedded Event Manager (EEM). Configure the time interval and threshold by entering the diagnostic monitor interval and diagnostic monitor threshold commands, respectively.
Page 149: How To Configure Online Diagnostics
2 test basic • test-id—Enters the ID number of the test. • test-id-range—Enters the range of test IDs by using integers separated by a comma and a hyphen. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 150: Configuring Online Diagnostics
Device(config)# diagnostic schedule 3 test 1-5 on July 3 2013 23:10 • test-id—ID number of the test that appears in the show diagnostic content command output. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 151: Configuring Health-Monitoring Diagnostics
{name | test-id | test-id-range | all} show diagnostic { content | post | result | schedule | status | } show running-config copy running-config startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 152 (Optional) Sets the failure threshold for the | test-id | test-id-range | all} failure count count health-monitoring tests. Example: When specifying the tests, use one of these parameters: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 153 Step 9 show running-config Verifies your entries. Example: Device# show running-config Step 10 copy running-config startup-config (Optional) Saves your entries in the configuration file. Example: Device# copy running-config startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 154: Monitoring And Maintaining Online Diagnostics
Device# show diagnostic ondemand settings Test iterations = 1 Action on test failure = continue This example shows how to display diagnostic events for errors: Device# show diagnostic events event-type error System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 155 This test runs the exhaustive ASIC memory test during normal switch operation NG3K utilizes mbist for this test. Memory test is very disruptive in nature and requires switch reboot after the test. Device# System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 156: Additional References For Online Diagnostics
Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 157: Managing Configuration Files
Restrictions for Managing Configuration Files • Many of the Cisco IOS commands described in this document are available and function only in certain configuration modes on the device. • Some of the Cisco IOS configuration commands are only available on certain device platforms, and the command syntax may vary on different platforms.
Page 158: Configuration Mode And Selecting A Configuration Source
To enter configuration mode on the device, enter the configure command at the privileged EXEC prompt. The Cisco IOS software responds with the following prompt asking you to specify the terminal, memory, or a file stored on a network server (network) as the source of configuration commands:...
Page 159: Copy Configuration Files From A Network Server To The Device
Refer to your TFTP documentation for more information. Copying a Configuration File from the Device to an RCP Server You can copy a configuration file from the device to an RCP server. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 160 You also can enable rcp support to allow users on remote systems to copy files to and from the device. To configure the Cisco IOS software to allow remote users to copy files to and from the device, use the ip rcmd rcp-enable global configuration command.
Page 161: Copying A Configuration File From The Device To An Ftp Server
The RCP protocol requires a client to send a remote username on each RCP request to a server. When you copy a configuration file from the device to a server using RCP, the Cisco IOS software sends the first valid username it encounters in the following sequence: 1.
Page 162: Copying Files Through A Vrf
The configurations are now copied onto the other switch. After the configurations are copied, to save your configurations, use write memory command and then either reload the switch or run the copy startup-config running-config command System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 163: Configuration Files Larger Than Nvram
Release 10.0 or later release boot ROMs. Installing new ROMs is a one-time operation and is necessary only if you do not already have Cisco IOS Release 10.0 in ROM. If the boot ROMs do not recognize a compressed configuration, the following message is displayed:...
Page 164: How To Manage Configuration File Information
Example: Device# more 10.1.1.1 Step 4 show running-config Displays the contents of the running configuration file. (Command alias for the more system:running-config Example: command.) Device# show running-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 165: Modifying The Configuration File
The CONFIG_FILE variable defaults to NVRAM. Modifying the Configuration File The Cisco IOS software accepts one configuration command per line. You can enter as many configuration commands as you want. You can add comments to a configuration file describing the commands you have entered.
Page 166 When the startup configuration is NVRAM, it stores the current configuration information in text format as configuration commands, recording only non-default settings. The memory is checksummed to guard against corrupted data. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 167: Copying A Configuration File From The Device To A Tftp Server
The following example copies a configuration file from a device to a TFTP server: Device# copy system:running-config tftp://172.16.2.155/tokyo-confg Write file tokyo-confg on host 172.16.2.155? [confirm] Y Writing tokyo-confg!!! [OK] System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 168: What To Do Next
Do one of the following: • Specifies that the device running configuration file is to be stored on an RCP server • copy system:running-config rcp: [[[//[username@]location ]/directory ]/filename ] System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 169: Examples
Copying a Configuration File from the Device to the FTP Server To copy a startup configuration file or a running configuration file from the device to an FTP server, complete the following tasks: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 170 FTP server. • copy system:running-config ftp: [[[//[username [:password ]@]location]/directory ]/filename ] or • copy nvram:startup-config ftp: [[[//[username [:password ]@]location]/directory ]/filename ] Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 171: Examples
To copy a configuration file from a TFTP server to the device, complete the tasks in this section: SUMMARY STEPS 1. enable 2. copy tftp: [[[//location]/directory]/filename] system:running-config 3. copy tftp: [[[//location]/directory]/filename] nvram:startup-config 4. copy tftp: [[[//location]/directory]/filename]flash-[n]:/directory/startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 172: What To Do Next
The prompt displayed depends on how much information you provide in the copy command and the current setting of the file prompt global configuration command. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 173: Copying A Configuration File From The Rcp Server To The Device
Do one of the following: Copies the configuration file from an rcp server to the running configuration or startup configuration. • copy rcp:[[[//[username@]location]/directory]/filename]system:running-config • copy rcp:[[[//[username@]location]/directory]/filename]nvram:startup-config Example: Device# copy System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 174: Examples
To copy a configuration file from an FTP server to the running configuration or startup configuration, complete the tasks in this section: SUMMARY STEPS 1. enable 2. configure terminal 3. ip ftp username username System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 175 Using FTP copies the configuration file from a network server to running memory or the startup configuration. • copy ftp: [[[//[username[:password]@]location] /directory ]/filename]system:running-config • copy ftp: [[[ //[username[:password]@]location]/directory]/filename]nvram:startup-config Example: Device# copy ftp:nvram:startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 176: Examples
To maintain a configuration file that exceeds the size of NVRAM, perform the tasks described in the following sections: Compressing the Configuration File To compress configuration files, complete the tasks in this section: SUMMARY STEPS 1. enable 2. configure terminal 3. service compress-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 177 When you have finished changing the running-configuration, save the new configuration. Example: Device(config)# copy system:running-config nvram:startup-config Examples The following example compresses a 129-KB configuration file to 11 KB: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 178: Storing The Configuration In Flash Memory On Class A Flash File Systems
• Enter your password if prompted. Device> enable Step 2 copy nvram:startup-config flash-filesystem:filename Copies the current startup configuration to the new location to create the configuration file. Example: Device# copy nvram:startup-config usbflash0:switch-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 179 Examples The following example stores the configuration file in usbflash0: Device# copy nvram:startup-config usbflash0:switch-config Device# configure terminal Device(config)# boot config usbflash0:switch-config Device(config)# end Device# copy system:running-config nvram:startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 180: Loading The Configuration Commands From The Network
Device(config)# boot network ftp://user1:guessme@example.com/dir10/file1 Step 5 service config Enables the switch to download configuration files at system startup. Example: Device(config)# service config Step 6 Exits global configuration mode. Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 181: Copying Configuration Files From Flash Memory To The Startup Or Running Configuration
Device# copy usbflash0:4:ios-upgrade-1 nvram:startup-config Examples The following example copies the file named ios-upgrade-1 from partition 4 of the flash memory PC Card in usbflash0 to the device startup configurations: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 182: Copying Configuration Files Between Flash Memory File Systems
1 of usbflash0 on a device. In this example, the source partition is not specified, so the device prompts for the partition number: Device# copy flash: usbflash0: System flash System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 183: Copying A Configuration File From An Ftp Server To Flash Memory Devices
6. copy ftp: [[//location]/directory ]/bundle_name flash: DETAILED STEPS Command or Action Purpose Step 1 enable Enables privileged EXEC mode. Example: • Enter your password if prompted. Device> enable System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 184: What To Do Next
To copy a configuration file from an RCP server to a flash memory device, complete the tasks in this section: SUMMARY STEPS 1. enable 2. configure terminal 3. ip rcmd remote-username username 4. end 5. copy rcp: [[[//[username@]location ]/directory] /bundle_name] flash: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 185: Copying A Configuration File From A Tftp Server To Flash Memory Devices
2. copy tftp: [[[//location ]/directory ]/bundle_name flash: DETAILED STEPS Command or Action Purpose Step 1 enable Enables privileged EXEC mode. Example: • Enter your password if prompted. Device> enable System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 186: Re-Executing The Configuration Commands In The Startup Configuration File
Setup command facility so that you can configure the device from scratch. To clear the contents of your startup configuration, complete the task in this section: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 187: Deleting A Specified Configuration File
SUMMARY STEPS 1. enable 2. delete flash-filesystem:filename DETAILED STEPS Command or Action Purpose Step 1 enable Enables privileged EXEC mode. Example: • Enter your password if prompted. Device> enable System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 188: Specifying The Config_File Environment Variable On Class A Flash File Systems
Specifying the CONFIG_FILE Environment Variable on Class A Flash File Systems On Class A flash file systems, you can configure the Cisco IOS software to load the startup configuration file specified by the CONFIG_FILE environment variable. The CONFIG_FILE variable defaults to NVRAM.
Page 189 Device(config)# boot config usbflash0:config2 Device(config)# end Device# copy system:running-config nvram:startup-config [ok] Device# show boot BOOT variable = usbflash0:rsp-boot-m CONFIG_FILE variable = nvram: Current CONFIG_FILE variable = usbflash0:config2 Configuration register is 0x010F System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 190: What To Do Next
NVRAM, the device enters the Setup command facility. Configuring the Device to Download the Network Configuration File To configure the Cisco IOS software to download a network configuration file from a server at startup, complete the tasks in this section: SUMMARY STEPS 1.
Page 191 Step 5 Exits global configuration mode. Example: Device(config)# end Step 6 copy system:running-config nvram:startup-config Saves the running configuration to the startup configuration file. Example: Device# copy system:running-config nvram:startup-config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 192: Configuring The Device To Download The Host Configuration File
Configuring the Device to Download the Host Configuration File Configuring the Device to Download the Host Configuration File To configure the Cisco IOS software to download a host configuration file from a server at startup, complete the tasks in this section: SUMMARY STEPS 1.
Page 193: Feature History For Managing Configuration Files
CLI in a configuration mode. Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 194 Managing Configuration Files Feature History for Managing Configuration Files System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 195: Configuration Replace And Configuration Rollback
The format of the configuration files used as input by the Configuration Replace and Configuration Rollback feature must comply with standard Cisco software configuration file indentation rules as follows: • Start all commands on a new line with no indentation, unless the command is within a configuration submode.
Page 196: Restrictions For Configuration Replace And Configuration Rollback
Rollback Configuration Archive The Cisco IOS configuration archive is intended to provide a mechanism to store, organize, and manage an archive of Cisco IOS configuration files to enhance the configuration rollback capability provided by the configure replace command. Before this feature was introduced, you could save copies of the running configuration using the copy running-config destination-url command, storing the replacement file either locally or remotely.
Page 197: Configuration Replace
The configure replace privileged EXEC command provides the capability to replace the current running configuration with any saved Cisco IOS configuration file. This functionality can be used to revert to a previous configuration state, effectively rolling back any configuration changes that were made since the previous configuration state was saved.
Page 198: Configuration Rollback
Cisco IOS configuration rollback capability uses the concept of reverting to a specific configuration state based on a saved Cisco IOS configuration file. This concept is similar to the database idea of saving a checkpoint (a saved version of the database) to preserve a specific state.
Page 199: How To Use Configuration Replace And Configuration Rollback
No prerequisite configuration is needed to use the configure replace command. Using the configure replace command in conjunction with the Cisco IOS configuration archive and the archive config command is optional but offers significant benefit for configuration rollback scenarios. Before using the archive config command, the configuration archive must be configured.
Page 200 Step 8 archive config Saves the current running configuration file to the configuration archive. Example: The path command must be configured before Note using this command. Device# archive config System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 201: Performing A Configuration Replace Or Configuration Rollback Operation
Performing a Configuration Replace or Configuration Rollback Operation Performing a Configuration Replace or Configuration Rollback Operation Perform this task to replace the current running configuration file with a saved Cisco IOS configuration file. Note You must create a configuration archive before performing this procedure. See...
Page 202 Use this command only if the time seconds Note Device# configure confirm keyword and argument of the configure replace command are specified. Step 5 exit Exits to user EXEC mode. Example: Device# exit System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 203: Monitoring And Troubleshooting The Feature
Device> enable Device# Step 2 show archive Use this command to display information about the files saved in the Cisco IOS configuration archive. Example: Device# show archive There are currently 1 archive configurations saved. The next archive file will be named flash:myconfiguration-2...
Page 204 <- Most Recent Step 3 debug archive versioning Use this command to enable debugging of the Cisco IOS configuration archive activities to help monitor and troubleshoot configuration replace and rollback. Example: Device# debug archive versioning 9 06:46:28.419:backup_running_config 9 06:46:28.419:Current = 7...
Page 205: Configuration Examples For Configuration Replace And Configuration Rollback
Configuration Rollback Creating a Configuration Archive The following example shows how to perform the initial configuration of the Cisco IOS configuration archive. In this example, flash:myconfiguration is specified as the location and filename prefix for the files in the configuration archive and a value of 10 is set as the maximum number of archive files to be saved.
Page 206: Reverting To The Startup Configuration File
Reverting to the Startup Configuration File The following example shows how to revert to the Cisco IOS startup configuration file using the configure replace command. This example also shows the use of the optional force keyword to override the interactive...
Page 207: Feature History For Configuration Replace And Configuration Rollback
This table provides release and related information for features explained in this module. These features are available on all releases subsequent to the one they were introduced in, unless noted otherwise. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 208 Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 209: C H A P T E
An SMU provides a significant benefit over classic Cisco IOS software because it allows you to address network issues quickly while reducing the time and scope of the testing required. The Cisco IOS XE platform internally validates SMU compatibility and does not allow you to install noncompatible SMUs.
Page 210: Smu Workflow
3. Commit the SMU changes so that it is persistent across reloads. SMU Workflow The SMU process is initiated with a request to the Cisco Customer Support. Contact your customer support to raise an SMU request. At release time, the SMU package is posted to the...
Page 211: Installing An Smu Package: 3-Step Process
SMU is compatible with software image cat9k_lite_iosxe.16.09.04.CSCvk70181.SPA.smu.bin cat9k_lite_iosxe.16.09.04.SPA.bin SUMMARY STEPS 1. enable 2. install add file location filename 3. install activate file location filename 4. install commit System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 212: Managing An Smu
2. install rollback to {base | committed | id commit-ID} 3. install deactivate file location filename 4. install remove {file location filename | inactive} 5. show version 6. show install summary System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 213: Configuration Examples For Software Maintenance Upgrade
The following example shows how to install a SMU package by using the 3-step process. Here the SMU package file is saved in the device's flash. 1. Copying the SMU package file from flash and installing it. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 214 Executing pre scripts..Executing pre sripts done. --- Starting SMU Activate operation --- Performing SMU_ACTIVATE on all members [1] SMU_ACTIVATE package(s) on switch 1 [1] Finished SMU_ACTIVATE on switch 1 System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 215 --- Starting SMU Commit operation --- Performing SMU_COMMIT on all members [1] SMU_COMMIT package(s) on switch 1 [1] Finished SMU_COMMIT on switch 1 Checking status of SMU_COMMIT on [1] System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 216 The SMU files being installed on the switch stack are: cat9k_lite_iosxe.16.12.03.CSCvt22238.SPA.smu.bin cat9k_lite_iosxe.16.12.03.CSCvt72427.SPA.smu.bin 1. (Optional) Checking that the switch stack is ready and that the SMU package files are in the device's flash. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 217 Fri Oct 26 07:11:45 UTC 2035 Oct 26 07:11:46.695 %INSTALL-5-INSTALL_COMPLETED_INFO: R0/0: install_engine: Completed install add SMU flash:cat9k_lite_iosxe.16.12.03.CSCvt22238.SPA.smu.bin Device# *Oct 26 07:11:46.656: %INSTALL-5-INSTALL_COMPLETED_INFO: Switch 1 R0/0: install_engine: Completed install add SMU flash:cat9k_lite_iosxe.16.12.03.CSCvt22238.SPA.smu.bin System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 218 Verifying the addition and installation of both the SMU package files by using the show install summary command. The status of both package files is , because they have not been activated and committed yet. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 219 [2] Finished SMU_ACTIVATE on switch 2 [3] SMU_ACTIVATE package(s) on switch 3 [3] Finished SMU_ACTIVATE on switch 3 [4] SMU_ACTIVATE package(s) on switch 4 [4] Finished SMU_ACTIVATE on switch 4 System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 220 C - Activated & Committed, D - Deactivated & Uncommitted -------------------------------------------------------------------------------- Type Filename/Version -------------------------------------------------------------------------------- flash:cat9k_lite_iosxe.16.12.03.CSCvt22238.SPA.smu.bin flash:cat9k_lite_iosxe.16.12.03.CSCvt72427.SPA.smu.bin 16.12.3.0.3752 -------------------------------------------------------------------------------- Auto abort timer: active on install_activate, time before rollback - 01:50:16 -------------------------------------------------------------------------------- 4. Committing the SMU package file System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 221 State (St): I - Inactive, U - Activated & Uncommitted, C - Activated & Committed, D - Deactivated & Uncommitted -------------------------------------------------------------------------------- Type Filename/Version -------------------------------------------------------------------------------- flash:cat9k_lite_iosxe.16.12.03.CSCvt22238.SPA.smu.bin flash:cat9k_lite_iosxe.16.12.03.CSCvt72427.SPA.smu.bin 16.12.3.0.3752 -------------------------------------------------------------------------------- Auto abort timer: inactive -------------------------------------------------------------------------------- System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 222 [ Switch 1 2 ] Installed Package(s) Information: State (St): I - Inactive, U - Activated & Uncommitted, C - Activated & Committed, D - Deactivated & Uncommitted System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 223 Verifying that the update package is now committed, and that it will be persistent across reloads: Device# show install summary Active Packages: tftp:cat9k_lite_iosxe.16.09.04.CSCvk70181.SPA.smu.bin Inactive Packages: No packages Committed Packages: tftp:cat9k_lite_iosxe.16.09.04.CSCvk70181.SPA.smu.bin Uncommitted Packages: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 224 Inactive Packages: No packages Committed Packages: tftp:cat9k_lite_iosxe.16.09.04.CSCvk70181.SPA.smu.bin Uncommitted Packages: No packages Device# The following is sample output from the show install log command: Device# show install log System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 225 The following is sample output from the show install summary command: Device# show install summary Active Packages: No packages Inactive Packages: No packages Committed Packages: No packages Uncommitted Packages: No packages System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 226: Additional References For Software Maintenance Upgrade
The SMU package supports patching of the PKI 16.10.1 Infrastructure (PKI) component. Patching Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 227: Working With The Flash File System
Use Cisco Feature Navigator to find information about platform support and Cisco software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Page 228: Displaying Available File Systems
(for example, the system) or a download interface, such as brimux. unknown—The file system is an unknown type. Flags Permission for file system. ro—read-only. rw—read/write. wo—write-only. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 229: Setting The Default File System
To display information about files on a file system, use one of the privileged EXEC commands listed in the following table. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 230: Changing Directories And Displaying The Working Directory
Aug 12 2015 05:30:57 +00:00 stardust.x86.idprom.0718B 11250098176 bytes total (9128050688 bytes free) device# Changing Directories and Displaying the Working Directory Follow these steps to change directories and to display the working directory: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 231: Creating Directories
Example: Device# cd Creating Directories Beginning in privileged EXEC mode, follow these steps to create a directory: SUMMARY STEPS 1. dir filesystem: 2. mkdir directory_name 3. dir filesystem: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 232: Removing Directories
Xmodem or Ymodem protocol. Network file system URLs include ftp:, rcp:, tftp:, scp:, http:, and https: and have these syntaxes: • FTP—ftp:[[//username [:password]@location]/directory]/filename • RCP—rcp:[[//username@location]/directory]/filename System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 233: Deleting Files
You can create a file and write files into it, list the files in a file, and extract the files from a file as described in the next sections. Beginning in privileged EXEC mode, follow these steps to create a file, display the contents, and extract it: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 234 These options are supported: device# archive tar /table flash: /new_configs • Local flash file system syntax: flash: • FTP syntax: ftp:[[//username[:password]@location]/directory]/-filename. • RCP syntax: rcp:[[//username@location]/directory]/-filename. • TFTP syntax: tftp:[[//location]/directory]/-filename. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 235: Additional References For Flash File System
Cisco IOS Configuration Fundamentals Command Reference Standards Standards Title No new or modified standards are supported by this feature, and support for existing standards has not been modified by this feature. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 236: Feature History For Flash File System
Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 237: Performing Factory Reset
Factory Reset removes all the customer specific data that has been added to the device since the time of its shipping. Data erased includes configurations, log files, boot variables, core files, and credentials like FIPS-related keys. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 238: How To Perform Factory Reset
The device reloads to perform the Factory Reset task. Note that this reload results in a ROMMON mode. After the Factory Reset operation is complete, you can load the Cisco IOS image either through a USB or TFTP.
Page 239: Feature History And Information For Factory Reset
After the Factory Reset process is successfully completed, the device reboots and stops at ROMMON mode. Feature History and Information for Factory Reset Release Feature Information Cisco IOS XE Fuji 16.9.2 This feature was introduced. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 240 Performing Factory Reset Feature History and Information for Factory Reset System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 241: Configuring Secure Storage
1. configure terminal 2. service private-config-encryption 3. end 4. write memory DETAILED STEPS Command or Action Purpose Step 1 configure terminal Enters the global configuration mode. Example: Device# configure terminal System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 242: Disabling Secure Storage
Example: text in the NVRAM. Device(config)# no service private-config-encryption Step 3 Returns to privileged EXEC mode. Example: Device(config)# end System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 243: Verifying The Status Of Encryption
Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 244 Configuring Secure Storage Feature Information for Secure Storage System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 245: Conditional Debug And Radioactive Tracing
Use Cisco Feature Navigator to find information about platform support and Cisco software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Page 246: Introduction To Radioactive Tracing
/crashinfo/tracelogs. In the archive directory, up to 25 files are accumulated, after which the oldest one is replaced by the newly rotated file from /tmp. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 247: Configuring Conditional Debugging
Displays the current conditions set. Example: Device# show platform condition Device# show debug Step 5 Stops conditional debugging (this will stop radioactive debug platform condition stop tracing). Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 248 Of these, mac_log <..date..> is the most important file, as it gives the messages for the MAC we are debugging. The command show platform software trace filter-binary also generates the same flash files, and also prints the mac_log on the screen. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 249: Radioactive Tracing For L2 Multicast
Copy to flash: file system ftp: Copy to ftp: file system http: Copy to http: file system https: Copy to https: file system null: Copy to null: file system System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 250: Monitoring Conditional Debugging
Feature Condition Type Value -----------------------|-----------------------|-------------------------------- Device# The following is an output example of the show debug command. Device# show debug IOSXE Conditional Debug Configs: Conditional Debug Global State: Start System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 251: Additional References For Conditional Debugging And Radioactive Tracing
Field Notices), the Cisco Technical Services Newsletter, and Really Simple Syndication (RSS) Feeds. Access to most tools on the Cisco Support website requires a Cisco.com user ID and password. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 252: Feature History For Conditional Debugging And Radioactive Tracing
Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 253: Troubleshooting The Software Configuration
C H A P T E R Troubleshooting the Software Configuration This chapter describes how to identify and resolve software problems related to the Cisco IOS software on the switch. Depending on the nature of the problem, you can use the command-line interface (CLI), Device Manager, or Network Assistant to identify and solve problems.
Page 254: Ping
Layer 2 Traceroute Guidelines • Cisco Discovery Protocol (CDP) must be enabled on all the devices in the network. For Layer 2 traceroute to function properly, do not disable CDP. If any devices in the physical path are transparent to CDP, the switch cannot identify the path through these devices.
Page 255: Ip Traceroute
VLAN. However, if the intermediate Device is a multilayer Device that is routing a particular packet, this Device shows up as a hop in the traceroute output. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 256: Debug Commands
System reports or crashinfo files save information that helps Cisco technical support representatives to debug problems that caused the Cisco IOS image to fail (crash). It is necessary to quickly and reliably collect critical crash information with high fidelity and integrity. Further, it is necessary to collect this information and bundle it in a way that it can be associated or identified with a specific crash occurrence.
Page 257 Update (merge with) current system configuration scp: Copy to scp: file system startup-config Copy to startup configuration syslog: Copy to syslog: file system system: Copy to system: file system System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 258: Onboard Failure Logging On The Switch
You should manually set the system clock or configure it by using Network Time Protocol (NTP). When the Device is running, you can retrieve the OBFL data by using the show logging onboard privileged EXEC commands. If the Device fails, contact your Cisco technical support representative to find out how to retrieve the data.
Page 259: Fan Failures
Press the Mode button, and at the same time, reconnect the power cord to the switch. Step 6 From the bootloader prompt, ensure that you can ping your TFTP server. a) Set switch IP address: set IP_ADDRESS ip_address Example: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 260 170 West Tasman Drive San Jose, California 95134-1706 Cisco IOS Software [Everest], Catalyst L3 Switch Software (CAT9K_IOSXE), Version 16.6.1 RELEASE SOFTWARE (fc2) Copyright (c) 1986-2017 by Cisco Systems, Inc. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 261 If you are unable to comply with U.S. and local laws, return this product immediately. A summary of U.S. laws governing Cisco cryptographic products may be found at: http://www.cisco.com/wwl/export/crypto/tool/stqrg.html If you require further assistance please contact us by sending email to export@cisco.com.
Page 262 Package cat9k-wlc.16.05.01a.SPA.pkg /temp//stage/cat9k-wlc.16.05.01a.SPA.pkg is Digitally Signed Package /cat9k-rpboot.16.05.01a.SPA.pkg /temp//rpboot/cat9k-rpboot.16.05.01a.SPA.pkg is Digitally Signed Preparing flash..Flash filesystem unmounted successfully /dev/sdb3 Syncing device..Emergency Install successful... Rebooting Will reboot now System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 263: Recovering From A Lost Or Forgotten Password
• Connect a PC to the Ethernet management port. Step 2 Set the line speed on the emulation software to 9600 baud. Step 3 Power off the standalone switch or the entire switch stack. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 264: Procedure With Password Recovery Enabled
Step 4 At the switch prompt, enter privileged EXEC mode. Device> enable Device# Step 5 Copy the startup configuration to running configuration. Device# copy startup-config running-config Destination filename [running-config]? System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 265: Procedure With Password Recovery Disabled
After the device boots up, disable manual boot on the device. Device(config)# no boot manual Procedure with Password Recovery Disabled If the password-recovery mechanism is disabled, this message appears: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 266 Continue with the configuration dialog? [yes/no]: N Step 4 At the device prompt, enter privileged EXEC mode: Device> enable Step 5 Enter global configuration mode: Device# configure terminal Step 6 Change the password: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 267: Preventing Switch Stack Problems
If you want the switch stacks to remain separate, change the IP address or addresses of the newly created switch stacks. To recover from a partitioned switch stack, follow these steps: System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 268: Preventing Autonegotiation Mismatches
SFP modules and module interfaces. If you are using a non-Cisco SFP module, remove the SFP module from the Device, and replace it with a Cisco module. After inserting a Cisco SFP module, use the errdisable recovery cause gbic-invalid global configuration command to verify the port status, and enter a time interval for recovering from the error-disabled state.
Page 269: Executing Ping
If the module is identified as a Cisco SFP module, but the system is unable to read vendor-data information to verify its accuracy, an SFP module error message is generated. In this case, you should remove and reinsert the SFP module.
Page 270: Executing Ip Traceroute
To view all conditional debug options run the command show debug condition The commands can be listed by selecting either a condition identifier <1-1000> or all conditions. To disable debugging, use the no debug all command. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 271: Verifying Troubleshooting Of The Software Configuration
This example shows normal CPU utilization. The output shows that utilization for the last 5 seconds is 8%/0%, which has this meaning: • The total CPU utilization is 8 percent, including both time running Cisco IOS processes and time spent handling interrupts.
Page 272: Scenarios For Troubleshooting The Software Configuration
(available PoE). Use the show power inline command to verify the amount of available power. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 273 If there is still no PoE at any port, a fuse might be open in the PoE section of the power supply. This normally produces an alarm. Check the log again for alarms reported earlier by system messages. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 274: Configuration Examples For Troubleshooting Software
This example shows how to ping an IP host: Device# ping 172.20.52.3 Type escape sequence to abort. Sending 5, 100-byte ICMP Echoes to 172.20.52.3, timeout is 2 seconds: !!!!! System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 275: Example: Performing A Traceroute To An Ip Host
Table 18: Traceroute Output Display Characters Character Description The probe timed out. Unknown packet type. Administratively unreachable. Usually, this output means that an access list is blocking traffic. Host unreachable. Network unreachable. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)
Page 276: Feature History For Troubleshooting Software Configuration
Cisco IOS software on the switch. Use Cisco Feature Navigator to find information about platform and software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. System Management Configuration Guide, Cisco IOS XE Gibraltar 16.10.x (Catalyst 9200 Switches)

Cisco Catalyst 9200 Configuration Manual

C H a P T E

Chapter 2

Boot Integrity Visibility

CHAPTER 3 Performing Device Setup Configuration

CHAPTER 4 Configuring Smart Licensing

CHAPTER 5 Configuring SDM Templates

CHAPTER 6 Configuring System Message Logs

CHAPTER 7 Configuring Online Diagnostics

CHAPTER 8 Managing Configuration Files

CHAPTER 9 Configuration Replace

C H a P T E

Software Maintenance Upgrade

Working with the Flash File System

CHAPTER 12 Performing Factory Reset

CHAPTER 13 Configuring Secure Storage

CHAPTER 14 Conditional Debug and Radioactive Tracing

CHAPTER 15 Troubleshooting the Software Configuration

Quick Links

Troubleshooting

Related Manuals for Cisco Catalyst 9200

Summary of Contents for Cisco Catalyst 9200