Extreme Networks BlackDiamond 6800 User Manual
Extreme Networks BlackDiamond 6800 User Manual

Extreme Networks BlackDiamond 6800 User Manual

Extreme blackdiamond 6800: user guide
Hide thumbs Also See for BlackDiamond 6800:
Table of Contents

Advertisement

BlackDiamond User
Guide
Extreme Networks, Inc.
10460 Bandley Drive
Cupertino, California 95014
(888) 257-3000
http://www.extremenetworks.com
Published: September 1998
Part number: 101000-00 Rev. A

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the BlackDiamond 6800 and is the answer not in the manual?

Questions and answers

Summary of Contents for Extreme Networks BlackDiamond 6800

  • Page 1 BlackDiamond User Guide Extreme Networks, Inc. 10460 Bandley Drive Cupertino, California 95014 (888) 257-3000 http://www.extremenetworks.com Published: September 1998 Part number: 101000-00 Rev. A...
  • Page 2 Copyright © Extreme Networks, Inc., 1998. All rights reserved. No part of this documentation may be reproduced in any form or by any means or used to make any derivative work (such as translation, transformation, or adaptation) without permission from Extreme Networks, Inc.
  • Page 3: Table Of Contents

    Contents REFACE Introduction Conventions Related Publications xvii LACK IAMOND VERVIEW BlackDiamond 6800 Components Summary of Features Full-Duplex Load Sharing Virtual LANs (VLANs) Spanning Tree Protocol (STP) Quality of Service (QoS) IP Unicast Routing IP Multicast Routing Network Configuration Example Factory Defaults...
  • Page 4 Line-Editing Keys Common Commands Configuring Management Access Methods of Managing the BlackDiamond Using Telnet IP Host Configuration Commands Using ExtremeWare Vista Using SNMP Checking Basic Connectivity Names Symbols Default Accounts Changing the Default Password Creating a Management Account Viewing Accounts 2-10 Deleting an Account 2-11...
  • Page 5 ONFIGURING LOTS AND Configuring a Slot Specifying One or More Ports Enabling and Disabling Ports Configuring Port Speed and Duplex Setting Turning Off Autonegotiation for a Gigabit Ethernet Port Port Commands Load Sharing Configuring Load Sharing Verifying the Load-Sharing Configuration Port-Mirroring Port-Mirroring Commands Port-Mirroring Example...
  • Page 6 ORWARDING Overview of the FDB Configuring FDB Entries Displaying FDB Entries Removing FDB Entries Overview of the Spanning Tree Protocol Spanning Tree Domains STP Configurations Configuring STP on the BlackDiamond Displaying STP Settings Disabling and Resetting STP Overview of Quality of Service Building Blocks Port Queue Monitor (FDB)
  • Page 7 IP Multinetting Operation IP Multinetting Examples Configuring IP Unicast Routing Verifying the IP Unicast Routing Configuration Configuring DHCP/BOOTP Relay Verifying the DHCP/BOOTP Relay Configuration Using Extreme Standby Router Protocol Configuring ESRP 8-11 IP Commands 8-12 Routing Configuration Example Displaying Router Settings...
  • Page 8 Overview of OSPF Unicast Route Distribution Configuring RIP RIP Configuration Example Displaying RIP Settings Resetting and Disabling RIP Configuring OSPF OSPF Configuration Example Displaying OSPF Settings Resetting and Disabling OSPF Settings IP M Overview Configuring IP Multicasting Routing Configuration Example Displaying IP Multicast Routing Settings Deleting and Resetting IP Multicast Settings VIII...
  • Page 9 Task Frame 12-4 Content Frame 12-4 Browser Controls Status Messages Standalone Buttons Saving Changes 12-5 Filtering Information Do a GET When Configuring a VLAN Sending Screen Output to Extreme Networks TATISTICS 11-11 11-13 11-14 11-17 11-18 ISTA 12-1 12-2 12-3...
  • Page 10 Downloading a New Image Saving Configuration Changes Using TFTP to Upload the Configuration Using TFTP to Download the Configuration Boot Option Commands ROUBLESHOOTING LEDs Using the Command-Line Interface NDEX OFTWARE PGRADE AND 13-1 Rebooting the System 13-2 Returning to Factory Defaults 13-5 UPPORTED TANDARDS...
  • Page 11 Figures BlackDiamond 6800 system BlackDiamond network configuration example Example of a port-based VLAN Single port-based VLAN spanning two switches Two port-based VLANs spanning two BlackDiamond systems Physical diagram of tagged and untagged traffic Logical diagram of tagged and untagged traffic...
  • Page 13 Tables Notice Icons Text Conventions BlackDiamond Factory Defaults Command Syntax Symbols Line-Editing Keys Common Commands Default Accounts IP Host Configuration Commands Supported MIBs 2-19 SNMP Configuration Commands SNMP Reset and Disable Commands Ping Command Parameters Port Commands Port Combinations for the G4X Module Port Combinations for the G6X Module Port Combinations for the F32T and F32F Modules Port-Mirroring Configuration Commands...
  • Page 14 OSPF Reset and Disable Commands IP Multicast Routing Configuration Commands IGMP Configuration Commands IP Multicast Routing Show Commands IP Multicast Routing Reset and Disable Commands Switch Monitoring Commands Port Monitoring Display Keys Fault Levels Assigned by the System Fault Log Subsystems 11-12...
  • Page 15: Preface

    Preface This Preface provides an overview of this guide, describes guide conventions, and lists other publications that may be useful. NTRODUCTION ™ This guide provides the required information to configure the BlackDiamond system and software. This guide is intended for use by network administrators who are responsible for installing and setting up network equipment.
  • Page 16: Conventions

    REFACE If the information in the “Release Notes” shipped with your switch differs from the information in this guide, follow the “Release Notes.” ONVENTIONS Table 1 Table 2 list conventions that are used throughout this guide. Table 1: Notice Icons...
  • Page 17: Related Publications

    The BlackDiamond documentation set includes the following: • BlackDiamond Hardware Installation Guide • BlackDiamond Quick Reference Guide • BlackDiamond “Release Notes” Documentation for Extreme Networks products is available on the World Wide Web at the following location: • Extreme Networks home page http://www.extremenetworks.com/ LACK...
  • Page 18 REFACE XVIII LACK IAMOND UIDE...
  • Page 19: Blackdiamond Overview

    BlackDiamond Overview The BlackDiamond 6800 is a chassis-based system that is designed to be placed in the core of your network. The BlackDiamond system is flexible and scalable, making it easy for you to meet the changing requirements of your network. The combination of...
  • Page 20: Blackdiamond 6800 System

    AMBER ACTIVITY GREEN LINK OK GREEN LINK OK FLASHING GREEN DISABLED FLASHING GREEN DISABLED DC OUT AC IN Power supplies Figure 1-1: BlackDiamond 6800 system MSM module slots 51020 51020 50014 50014 52010 AMBER ACTIVITY AMBER ACTIVITY GREEN LINK OK...
  • Page 21: Summary Of Features

    UMMARY OF The features of the BlackDiamond 6800 include the following: • A 10-slot chassis that can be populated with up to 8 input/output (I/O) modules and 2 Management Switch Fabric Modules (MSMs) • MSM and I/O modules are hot-swappable •...
  • Page 22: Full-Duplex

    LACK IAMOND VERVIEW • Simple Network Management Protocol (SNMP) support • Remote Monitoring (RMON) • Traffic mirroring for all ports For more information on BlackDiamond components, refer to the BlackDiamond Hardware Installation Guide . UPLEX The BlackDiamond provides full-duplex support for all ports. Full-duplex allows frames to be transmitted and received simultaneously and, in effect, doubles the bandwidth available on a link.
  • Page 23 • It eases the change and movement of devices on networks. If a device in VLAN marketing is moved to a port in another part of the network, all you must do is specify that the new port belongs to VLAN marketing. For more information on VLANs, refer to PANNING The BlackDiamond supports the IEEE 802.1D Spanning Tree Protocol (STP), which is a...
  • Page 24: Ip Unicast Routing

    ETWORK ONFIGURATION The BlackDiamond can be used as a core network switch, a segment switch, or a server switch. When used as a core network switch, the BlackDiamond performs collapsed-backbone routing and switching at wire-speed, allowing it to handle the growing influx of intranetwork and Internet traffic that travels between multiple networks.
  • Page 25 BlackDiamond can support Gigabit Ethernet segments and 10/100 Mbps server links to optimize client-to-server traffic. Multiple 10 Mbps, 100 Mbps, and 1,000 Mbps switch ports can be trunked into one logical link between the data centers, the network cores, and high-performance servers.
  • Page 26: Spanning Tree Protocol (Stp)

    One VLAN named default ; all ports belong to the default VLAN; the default VLAN belongs to the STPD named s0 All packets are untagged on the default VLAN ( default) Disabled for the switch; enabled for each port in the STPD 300 seconds (5 minutes) Disabled...
  • Page 27: Accessing The System

    Accessing The System This chapter provides the following required information to begin managing the BlackDiamond: • Understanding the command syntax • Line-editing commands • Command history substitution • Configuring the system for management • System management methods • Configuring SNMP •...
  • Page 28: Syntax Helper

    CCESSING YSTEM NDERSTANDING THE This section describes the steps to take when entering a command. Refer to the sections that follow for detailed information on using the command-line interface. To use the command-line interface, follow these steps: 1 When entering a command at the prompt, ensure that you have the appropriate privilege level.
  • Page 29: Command Shortcuts

    BBREVIATED Abbreviated syntax is the shortest, most unambiguous, allowable abbreviation of a command or parameter. Typically, this is the first three letters of the command. OMMAND HORTCUTS All named components of the system configuration must have a unique name. Components are named using the configure a named component, you do not need to use the keyword of the component.
  • Page 30: Names

    CCESSING YSTEM You can specify a range of slots and ports. For example, port 2:3-4:5 indicates slot 2, port 3 through slot 4, port 5. AMES All named components of the system configuration must have a unique name. Names must begin with an alphabetical character and are delimited by whitespace, unless enclosed in quotation marks.
  • Page 31: Line-Editing Keys

    Table 2-1: Command Syntax Symbols (continued) Symbol braces { } DITING Table 2-2 describes the line-editing keys available using the command-line interface. Table 2-2: Line-Editing Keys Key(s) Backspace Delete or [Ctrl] + D [Ctrl] + K Insert Left Arrow Right Arrow Home or [Ctrl] + A End or [Ctrl] + E [Ctrl] + L...
  • Page 32: Common Commands

    CCESSING YSTEM OMMAND ISTORY The BlackDiamond “remembers” the last 49 commands you enter. You can display a list of these commands by using the following command: history OMMON OMMANDS Table 2-3 describes common commands used to manage the system. Commands specific to a particular feature are described in the other chapters of this guide.
  • Page 33 <number> disable bootp vlan [<name> | all] disable idletimeout disable port [<slot:portlist> | all] disable telnet disable web delete account <username> delete vlan <name> unconfig switch {all} show banner LACK IAMOND UIDE OMMON Description Configures an IP address and subnet mask for a VLAN.
  • Page 34 CCESSING YSTEM ONFIGURING ANAGEMENT CCESS The BlackDiamond supports the following two level levels of management: • User • Administrator A user-level account has viewing access to all manageable parameters, with the exception of the following: • User account database • SNMP community strings A user-level account can use the command to test device reachability, and change ping...
  • Page 35: Configuring Management Access

    EFAULT CCOUNTS By default, the system is configured with two accounts, as shown in Table 2-4: Default Accounts Account Name admin user HANGING THE EFAULT Default accounts do not have passwords assigned to them. Passwords must have a minimum of 4 characters and can have a maximum of 12 characters. User names and passwords are case-sensitive.
  • Page 36: Creating A Management Account

    CCESSING YSTEM 4 Enter the new password at the prompt. 5 Re-enter the new password at the prompt. If you forget your password while logged out of the command-line interface, contact your local technical support representative, who will advise on your next course of action.
  • Page 37: Methods Of Managing The Blackdiamond

    Output from the show accounts #show account User Name ------------- admin user ELETING AN CCOUNT To delete a account, you must have administrator privileges. Use the following command to delete an account: delete account <username> ETHODS OF You can manage the BlackDiamond using the following methods: •...
  • Page 38: Using The Console Interface

    CCESSING YSTEM SING THE ONSOLE NTERFACE The command-line interface built into the system is accessible by way of the 9-pin, RS-232 port labelled console, located on either of the MSMs. For more information on the console port pinouts, refer to the BlackDiamond Hardware Installation Guide .
  • Page 39: Configuring System Ip Parameters

    SING ELNET IP P ONFIGURING YSTEM ARAMETERS To manage the system by way of a Telnet connection or by using an SNMP Network Manager, you must first configure the system IP parameters. BOOTP S SING A ERVER If you are using IP and you have a BOOTP server set up correctly on your network, you must add the following information to the BOOTP server: •...
  • Page 40: Manually Configuring The Ip Settings

    CCESSING YSTEM IP S ANUALLY ONFIGURING THE If you are using IP without a BOOTP server, you must enter the IP parameters for the system in order for the SNMP Network Manager, Telnet software, or Web interface to communicate with the device. To assign IP parameters to the system, you must do the following: •...
  • Page 41: Disconnecting A Telnet Session

    5 Assign an IP address and subnetwork mask for the default VLAN by using the following command: config vlan <name> ipaddress <ipaddress> {<subnet_mask>} For example: config vlan default ipaddress 123.45.67.8 255.255.255.0 Your changes take effect immediately. 6 Configure the default route for the system using the following command: config iproute add default <ipaddress>...
  • Page 42: Disabling Telnet Access

    CCESSING YSTEM Sample output from the show session show session: Wed Sep 17 20:48:38 1997 Wed Sep 17 21:52:16 1997 The session number is the first number on the line of the 3 Terminate the session by using the following command: clear session <session_number>...
  • Page 43: Using Extremeware Vista

    Table 2-5: IP Host Configuration Commands (continued) Command config iproute add <ipaddress> <mask> <gateway> {<metric>} config iproute delete <ipaddress> <mask> <gateway> config iproute add default <gateway> {<metric>} config iproute delete default <gateway> show ipconfig {vlan <name> | all} show ipstats {vlan [<name> | all]} show iparp {<ipaddress | vlan <name>...
  • Page 44: Disabling Web Access

    CCESSING YSTEM For more information on using ExtremeWare Vista, refer to ISABLING CCESS By default, Web access is enabled on the BlackDiamond. To disable it, enter the following command: disable web To re-enable Web access, enter the following command: enable web Reboot the system in order for these changes to take effect.
  • Page 45: Supported Mibs

    UPPORTED Any Network Manager running SNMP can manage the BlackDiamond, provided the MIB is installed correctly on the management station. In addition to private MIBs, the BlackDiamond supports the standard MIBs listed in Table 2-6: Supported MIBs Description MIB II IP Forwarding Table MIB Bridge MIB Evolution of Interfaces...
  • Page 46 Deletes the IP address of a specified SNMP management station or all SNMP management stations. If you delete all addresses, any machine can have SNMP management access to the switch. Deletes the IP address of a specified trap receiver or all authorized trap receivers. LACK...
  • Page 47: Displaying Snmp Settings

    Table 2-7: SNMP Configuration Commands (continued) Command config snmp syscontact <string> config snmp sysname <string> config snmp syslocation <string> SNMP S ISPLAYING To display the SNMP settings configured on the BlackDiamond, enter the following command: show management This command displays the following information: •...
  • Page 48 CCESSING YSTEM ESETTING AND ISABLING To reset and disable SNMP settings, use the commands in Table 2-8: SNMP Reset and Disable Commands Command disable snmp access disable snmp trap unconfig management HECKING ASIC ONNECTIVITY The BlackDiamond offers the following commands for checking basic connectivity: •...
  • Page 49: Checking Basic Connectivity

    HECKING ASIC ONNECTIVITY RACEROUTE command enables you to trace the routed path between the traceroute BlackDiamond system and a destination endstation. The command syntax traceroute traceroute <ip_address> where is the IP address of the destination endstation. ip_address 2-23 LACK IAMOND UIDE...
  • Page 50 CCESSING YSTEM 2-24 LACK IAMOND UIDE...
  • Page 51: Configuring Slots And Ports

    Configuring Slots and Ports Ports on the BlackDiamond can be configured in the following ways: • Configuring a slot for a particular I/O module • Enabling and disabling individual ports • Configuring the port speed (Fast Ethernet ports only) • Configuring half- or full-duplex mode •...
  • Page 52 ONFIGURING LOTS AND ORTS For information on saving the configuration, refer to Chapter You can configure the BlackDiamond with the type of I/O module that is installed in each I/O slot. To do this, use the following command: config slot <slot> module [f32t | f32f | g4x | g6x] You can also pre-configure the slot before inserting the module card.
  • Page 53: Specifying One Or More Ports

    PECIFYING On the BlackDiamond, the port number is a combination of the slot number and the port number. The nomenclature for the port number is as follows: slot:port For example, if a G4X I/O module (having a total of four ports) is installed in slot 2 of the BlackDiamond chassis, the following ports are valid: •...
  • Page 54: Configuring Port Speed And Duplex Setting

    ONFIGURING LOTS AND ORTS ONFIGURING By default, the BlackDiamond is configured to use autonegotiation to determine the port speed and duplex setting for each port. You can select to manually configure the duplex setting and the speed of 10/100 Mbps ports, and you can manually configure the duplex setting on Gigabit Ethernet ports.
  • Page 55: Port Commands

    Table 3-1: Port Commands Command enable learning port <slot:portlist> enable port <slot:portlist> enable sharing <slot:master_port> grouping <slot:portlist> config port <slot:portlist> auto on config port [<slot:portlist> | all] auto off {speed [10 | 100]} duplex [half | full] config port <slot:portlist> qosprofile <qosname>...
  • Page 56 Port state Link state Autonegotiation state Link speed Duplex mode Load-sharing information Extreme Discovery Protocol (EDP) status VLAN information QoS information Displays a histogram of packet statistics. Displays real-time QoS statistics. For more information on QoS, refer to Chapter Displays real-time receive error statistics.
  • Page 57: Load Sharing

    This feature is supported between BlackDiamond systems and Summit switches only, but may be compatible with third-party “trunking” or link-aggregation algorithms. Check with an Extreme Networks technical representative for more information. ONFIGURING To set up the BlackDiamond to load share among ports, you must create a load-sharing group of ports.
  • Page 58: Port Combinations For The G4X Module

    ONFIGURING LOTS AND ORTS • Follow the outlined boxes in port combinations. • The first port in the load-sharing group is configured to be the “master” logical port. This is the reference port used in configuration commands. It can be thought of as the logical port representing the entire port group.
  • Page 59: Verifying The Load-Sharing Configuration

    To define a load-sharing group, you assign a group of ports to a single, logical port number. To enable or disable a load-sharing group, use the following commands: enable sharing <slot:master_port> grouping <slot:portlist> disable sharing <slot:master_port> The ports assigned to a load-sharing group cannot be members of a Spanning Tree Diamond (STPD).
  • Page 60: Port-Mirroring Commands

    ONFIGURING LOTS AND ORTS • VLAN — All data to and from a particular VLAN, regardless of the physical port configuration, is copied to the monitor port. • Virtual port — All data specific to a VLAN on a specific port is copied to the monitor port.
  • Page 61 IRRORING The following example sends all traffic coming into or out of the system on slot 8, port 1 and the VLAN default to the mirror port: config mirroring add port 8:1 vlan default 3-11 LACK IAMOND UIDE...
  • Page 62 ONFIGURING LOTS AND ORTS 3-12 LACK IAMOND UIDE...
  • Page 63: Virtual Lans (Vlans)

    The term “VLAN” is used to refer to a collection of devices that communicate as if they were on the same physical LAN. Any set of ports (including all ports on the switch) is considered a VLAN. LAN segments are not restricted by the hardware that physically connects them.
  • Page 64: Types Of Vlans

    ASED In a port-based VLAN, a VLAN name is given to a group of one or more ports on the switch. A port can be a member of only one port-based VLAN. For example, on the G6X module in Marketing; ports 3 and 4 are part of VLAN Sales; and port 6 is in VLAN Finance. On the F32T module, ports 1 through 4 and ports 17 through 20 are part of VLAN Marketing;...
  • Page 65: Spanning Systems With Port-Based Vlans

    Sales Figure 4-1: Example of a port-based VLAN For the members of the different IP VLANs to communicate, the traffic must be routed by the BlackDiamond, even if they are physically part of the same I/O module. This means that each VLAN must be configured as a router interface with a unique IP address.
  • Page 66 (VLAN IRTUAL Figure 4-2 illustrates a single VLAN that spans two BlackDiamond systems. All ports on both systems belong to VLAN Sales. The two systems are connected using slot 1, port 4 on System 1, and slot 2, port 1 on System 2. System 1 Figure 4-2: Single port-based VLAN spanning two switches To create multiple VLANs that span two systems in a port-based VLAN, a port on...
  • Page 67: Two Port-Based Vlans Spanning Two Blackdiamond Systems

    VLAN Accounting spans System 1 and System 2 by way of a connection between Switch 1, slot 1, port 6 and Switch 2, slot 3, port 1. VLAN Engineering spans Switch 1 and Switch 2 by way of a connection between Switch 1, slot 8, port 6 and Switch 2, slot 7, port 1.
  • Page 68: Tagged Vlans

    (VLAN IRTUAL VLAN AGGED Tagging is a process that inserts a marker (called a tag) into the Ethernet frame. The tag contains the identification number of a specific VLAN, called the VLANid. The use of 802.1Q tagged packets may lead to the appearance of packets slightly bigger than the current IEEE 802.3/Ethernet maximum of 1518 bytes.
  • Page 69 Figure 4-4 illustrates the physical view of a network that uses tagged and untagged traffic. = Marketing = Sales = Tagged port Marketing & Sales 802.1Q Tagged server Figure 4-4: Physical diagram of tagged and untagged traffic LACK IAMOND UIDE System 1 System 2 VLAN...
  • Page 70 • The trunk port on each system carries traffic for both VLAN Marketing and VLAN Sales. • The trunk port on each switch is tagged. • The server connected to slot 1, port 1 on System 1 has a NIC that supports 802.1Q tagging.
  • Page 71: Mixing Port-Based And Tagged Vlans

    VLAN information that would otherwise have to be manually configured in each switch. GVRP can also be run by network servers. These servers are usually configured to join several VLANs, and then signal the network switches of the VLANs of which they want to be part.
  • Page 72 Switch B provide Switch B with the information it needs to forward traffic. Switch A automatically adds slot 8, port 6 to VLAN Red because Switch A now knows that there are other devices on slot 8, port 6 that need access to VLAN Red.
  • Page 73: Gvrp Commands

    GVRP C OMMANDS Table 4-1 describes GVRP commands. Table 4-1: GVRP Commands Command enable gvrp config gvrp {listen | send | both | none} {port <slot:portlist> | all} disable gvrp show gvrp ROTOCOL ASED Protocol-based VLANs enable you to define a packet filter that the BlackDiamond uses as the matching criteria to determine if a particular packet belongs to a particular VLAN.
  • Page 74: Predefined Protocol Filters

    (VLAN IRTUAL 192.207.35.1 192.207.35.0 Finance Figure 4-7: Protocol-based VLANs REDEFINED ROTOCOL ILTERS The following protocol filters are predefined on the BlackDiamond: • IP • IPX • NetBIOS • DECNet • IPX_8022 • IPX_SNAP • AppleTalk 4-12 192.207.36.1 My Company 192.207.36.0 Personnel = IP traffic = All other traffic...
  • Page 75: Defining Protocol Filters

    EFINING ROTOCOL If necessary, you can define a customized protocol filter based on EtherType, LLC, and/or SNAP. Up to six protocols may be part of a protocol filter. To define a protocol filter, do the following: 1 Create a protocol using the following command: create protocol <protocol_name>...
  • Page 76: Deleting A Protocol Filter

    VLAN names are locally significant. That is, VLAN names used on one system are only meaningful to that system. If another system is connected to it, the VLAN names have no significance to the other switch. You should use VLAN names consistently across your entire network.
  • Page 77: Default Vlan

    VLAN are in STP forwarding mode. The default setting is disabled. Configures an IEEE 802.1Q Ethertype. Use this command only if you have another switch that supports 802.1Q, but uses a different Ethertype value than 8100. VLAN...
  • Page 78 (VLAN IRTUAL Table 4-2: VLAN Configuration Commands (continued) Command config protocol <protocol_name> [add | delete] <protocol_type> <hex_value> {<protocol_type> <hex_value>} ... config vlan <name> ipaddress <ipaddress> {<mask>} config vlan <name> [add | delete] port <slot:portlist> {tagged | untagged} config vlan <name> delete port <slot:portlist> {tagged | untagged} config vlan <name>...
  • Page 79: Configuring Vlans On The Blackdiamond

    VLAN C ONFIGURATION The following example creates a port-based VLAN named accounting, assigns the IP address 132.15.121.1, and assigns slot 2, ports 1, 2, 3, and 6, and slot 4, ports 1 and 2 to create vlan accounting config accounting ipaddress 132.15.121.1 config default delete port 2:1-2:3,2:6,4:1,4:2 config accounting add port 2:1-2:3,2:6,4:1,4:2 Because VLAN names are unique, you do not need to enter the keyword...
  • Page 80: Displaying Vlan Settings

    (VLAN IRTUAL The following example defines a protocol filter, myprotocol and applies it to the VLAN named myvlan. This is an example only, and has no real-world application. create protocol myprotocol config protocol myprotocol add etype 0xf0f0 config protocol myprotocol add etype 0xffff create vlan myvlan config myvlan protocol myprotocol VLAN S...
  • Page 81 VLAN S ISPLAYING ETTINGS command displays summary information about each VLAN, and includes the show following: • Name • VLANid • How the VLAN was created (manually or by GVRP) • IP address • STPD information • Protocol information • QOS profile information •...
  • Page 82: Deleting Vlans

    (VLAN IRTUAL VLAN ELETING To delete a VLAN, or to return VLAN settings to their defaults, use the commands listed in Table 4-3. Table 4-3: VLAN Delete and Reset Commands Command disable ignore-stp vlan <name> unconfig vlan <name> ipaddress delete vlan <name> delete protocol <protocol>...
  • Page 83: Forwarding Database (Fdb)

    Forwarding Database (FDB) This chapter describes the contents of the forwarding database (FDB), how the FDB works, and how to configure the FDB. VERVIEW OF THE The BlackDiamond maintains a database of all media access control (MAC) addresses received on all of its ports. It uses the information in this database to decide whether a frame should be forwarded or filtered.
  • Page 84 Blackhole entries are treated like permanent entries in the event of a switch reset or power off/on cycle. Blackhole entries are never aged out of the database.
  • Page 85: How Fdb Entries Get Added

    FDB E NTRIES Entries are added into the FDB in the following two ways: • The BlackDiamond can learn entries. The system updates its FDB with the source MAC address from a packet, the VLAN, and the port identifier on which the source packet is received.
  • Page 86: Fdb Configuration Examples

    (FDB) ORWARDING ATABASE Table 5-1: FDB Configuration Commands (continued) Command config fdb agingtime <number> enable learning port <slot:portlist> disable learning port <slot:portlist> FDB C ONFIGURATION This example adds a permanent entry to the FDB: create fdbentry 00:E0:2B:12:34:56 vlan marketing port 3:4 The permanent entry has the following characteristics: •...
  • Page 87: Displaying Fdb Entries

    ISPLAYING To display FDB entries, use the command show fdb {all | <mac_address> | vlan <name> | <slot:portlist> | permanent | qos} where the following is true: • — Displays all FDB entries. • — Displays the entry for a particular MAC address. mac_address —...
  • Page 88: Removing Fdb Entries

    VLAN. • Entry method (shown in the field labeled Flags): — Static entry configured by the user — Dynamic entry learned by the switch — MAC address entry — MAC address entry that is used for IP routing •...
  • Page 89: Spanning Tree Protocol (Stp)

    Spanning Tree Protocol (STP) Using the Spanning Tree Protocol (STP) functionality of the BlackDiamond makes your network more fault tolerant. The following sections explain more about STP and the STP features supported by the system. STP is a part of the 802.1D bridge specification defined by the IEEE Computer Society.
  • Page 90: Defaults

    • Manufacturing is defined on Switch Y, Switch Z, and Switch M. • Engineering is defined on Switch Y, Switch Z, and Switch M. • Marketing is defined on all switches (Switch A, Switch B, Switch Y, Switch Z, and Switch M).
  • Page 91 6-1, the connection between Switch A and Switch B is put into blocking state, and the connection between Switch Y and Switch Z is put into blocking state. After STP converges, all the VLANs can communicate, and all bridging loops are prevented.
  • Page 92 • The tagged trunk connections for three switches form a triangular loop that is not permitted in an STP topology. • All VLANs in each switch are members of the same STPD. STP may block traffic between Switch 1 and Switch 3 by disabling the trunk ports for that connection on each switch. LACK...
  • Page 93: Configuring Stp On The Blackdiamond

    Switch 2 has no ports assigned to VLAN marketing. Therefore, if the trunk for VLAN marketing on Switches 1 and 3 is blocked, the traffic for VLAN marketing will not be able to traverse the switches. ONFIGURING STP configuration involves the following actions: •...
  • Page 94: Stp Configuration Commands

    2 seconds. Specifies the time (in seconds) that the ports in this STPD spend in the listening and learning states when the switch is the Root Bridge. The range is 4 through 30. The default setting is 15 seconds. LACK...
  • Page 95 32,768. A setting of 0 indicates the highest priority. Specifies the path cost of the port in this STPD. The range is 1 through 65,535. The switch automatically assigns a default path cost based on the speed of the port, as follows: For a 10Mbps port, the default cost is 100.
  • Page 96: Configuration Example

    (STP) PANNING ROTOCOL ONFIGURATION XAMPLE The following example creates and enables an STPD named Backbone_st. It assigns the Manufacturing VLAN to the STPD. It disables STP on slot 2, ports 1 through 7, and slot 3 port 12. create stpd backbone_st config stpd backbone_st add vlan manufacturing enable stpd backbone_st disable stpd backbone_st port 2:1-2:7,3:12...
  • Page 97: Disabling And Resetting Stp

    To display the STP state of a port, use the following command: show stpd <stpd_name> port <slot:portlist> This command displays the following: • STPD port configuration • STPD state (root bridge, and so on) • STPD port state (forwarding, blocking, and so on) ISABLING AND To disable STP or return STP settings to their defaults, use the commands listed in Table...
  • Page 98 (STP) PANNING ROTOCOL 6-10 LACK IAMOND UIDE...
  • Page 99: Quality Of Service (Qos)

    Quality of Service (QoS) This chapter describes the concept of Quality of Service (QoS) and explains how to implement QoS on the BlackDiamond. VERVIEW OF QoS is a feature of the BlackDiamond that allows you to specify different service levels for outbound traffic.
  • Page 100: Qos Mode

    ERVICE QoS profiles are assigned to traffic classifications, independent of the QoS mode chosen, in order to modify switch forwarding behavior. There are two modes of QoS. Ingress mode, the default, can use a wide variety of traffic classifications, but has a limitation of being able to use only the default four QoS profiles.
  • Page 101: Traffic Groupings

    • Priority — The level of priority in which the traffic will be serviced by the switch. Choices include: — Low — Normal — Medium — High A QoS profile does not alter the behavior of the BlackDiamond until it is assigned to a traffic classification.
  • Page 102: Ingress Traffic Groupings

    UALITY OF ERVICE NGRESS RAFFIC ROUPINGS Ingress traffic groupings include the following: • IP destination address — A specific QoS profile can be associated with an IP destination address, or range of IP destination addresses specified using a subnet mask. The QoS parameters are dynamically associated with a route when the route table is built.
  • Page 103: Egress Traffic Groupings

    • PACE — When 3Com PACE traffic is seen, it is mapped to the profile named qp3. Observance of PACE can be controlled by using the following command: {enable | disable} pace • Source port — You can configure a QoS profile to all the traffic being received from a particular port.
  • Page 104: Prioritization

    UALITY OF ERVICE Egress mode • IP destination address • Destination MAC address • VLAN RIORITIZATION Prioritization is used when there is bandwidth contention for transmission on a port. The four levels of priority are used as a mechanism for resolving the contention between traffic groups.
  • Page 105: Assigning A Qos Profile

    UEUE ONITOR SSIGNING A ROFILE Once you have established one or more traffic classifications and configured one or more QoS profiles, you can match them together using one of the following commands: config vlan <name> qosprofile <qosname> config port <slot:portlist> qosprofile <qosname> You can assign a QoS profile to a MAC entry by using the following command: create fdbentry <mac_address>...
  • Page 106: Configuring Qos

    UALITY OF ERVICE Table 7-3 describes the PQM commands. Table 7-3: PQM Commands Command enable qosmonitor {port <slot:portlist>} disable qosmonitor show port {<slot:portlist>} qosmonitor ONFIGURING Table 7-4 describes the commands used to configure QoS. Table 7-4: QoS Configuration Commands Command enable pace create qosprofile <qosname>...
  • Page 107: Sample Ingress Mode Qos Configuration

    Table 7-4: QoS Configuration Commands (continued) Command config qosprofile <qosname> {minbw <percent>} {maxbw <percent>} {priority <level>} config port <slot:portlist> qosprofile <qosname> config vlan <name> qosprofile <qosname> disable pace AMPLE NGRESS The following ingress mode example modifies an existing QoS profile and applies it to a VLAN traffic grouping.
  • Page 108: Sample Egress Mode Qos Configuration

    • Applies the QoS profile mktgqos to a range of IP addresses. The steps to configure this example are as follows: 1 Configure the switch for the egress mode, by typing the following: config qosmode egress 2 Reboot the switch.
  • Page 109: Resetting Qos

    Additionally, QoS information can be displayed from the traffic group perspective by using one of the following commands: • show fdb permanent Shows destination MAC entries and their QoS profiles. • show switch Includes PACE enable/disable information. • show vlan Shows the QoS profile assignments to the VLAN. •...
  • Page 110 UALITY OF ERVICE 7-12 LACK IAMOND UIDE...
  • Page 111: Ip Unicast Routing

    IP Unicast Routing This chapter describes how to configure IP routing on the BlackDiamond. It assumes that you are already familiar with IP unicast routing. If not, refer to the following publications for additional information: RFC 1256 — ICMP Router Discovery Messages RFC 1812 —...
  • Page 112: Router Interfaces

    IP U NICAST OUTING OUTER NTERFACES The routing software and hardware routes IP traffic between router interfaces. A router interface is simply a VLAN that has an IP address assigned to it. As you create VLANs with IP addresses belonging to different IP subnets, you can also choose to route between the VLANs.
  • Page 113: Populating The Routing Table

    OPULATING THE The BlackDiamond maintains an IP routing table for both network routes and host routes. The table is populated from the following sources: • Dynamically, by way of routing protocol packets or ICMP redirects exchanged with other routers • Statically, by way of routes entered by the administrator —...
  • Page 114: Static Routes

    IP U NICAST OUTING A static route must be associated with a valid IP subnet. An IP subnet is associated with a single VLAN by its IP address and subnet mask. If the VLAN is subsequently deleted, the static route entries using that subnet must be deleted manually. ULTIPLE OUTES When there are multiple, conflicting choices of a route to a particular destination, the...
  • Page 115: Proxy Arp Between Subnets

    ARP Request. The BlackDiamond answers on behalf of the device at address 100.101.45.67, using its own MAC address. All subsequent data packets from 100.101.102.103 are sent to the switch, and the switch routes the packets to 100.101.45.67. IP M ULTINETTING IP multinetting is used in many legacy IP networks when there is a need to overlap multiple subnets into one physical segment.
  • Page 116: Ip Multinetting Operation

    IP U NICAST OUTING The following rules apply when you are configuring IP multinetting: • A maximum of one IP address is associated with a router interface (or VLAN). • Multiple VLANs must be used to implement IP multinetting. • A maximum of four subnets are allowed on one multinetted port. •...
  • Page 117: Ip Multinetting Examples

    11 If you are using RIP, disable RIP on the dummy VLANs. config rip delete net22 IP M ULTINETTING The following example configures the switch to have one multinetted segment (slot 5, port 5) that contains three subnets (192.67.34.0, 192.67.35.0, and 192.67.37.0). config default delete port 5:5 create protocol mnet...
  • Page 118 IP U NICAST OUTING The following example configures the switch to have one multinetted segment (slot 5: port 5) that contains three subnets (192.67.34.0, 192.67.35.0, and 192.67.37.0). It also configures a second multinetted segment consisting of two subnets (192.67.36.0 and 192.99.45.0).
  • Page 119: Configuring Ip Unicast Routing

    ONFIGURING This section describes the commands associated with configuring IP unicast routing on the BlackDiamond. Configuring routing involves the following steps: 1 Create and configure two or more VLANs. Although it is possible to enable IP forwarding and an IP routing protocol (such as RIP) with only one VLAN defined, the BlackDiamond does not create or respond appropriately to ICMP messages unless at least two VLANs are created and configured.
  • Page 120: Configuring Dhcp/Bootp Relay

    IP U NICAST OUTING Additional verification commands include the following: • show iparp Displays the IP ARP table of the system. • show ipfdb Displays the hosts that have been transmitting or receiving packets, and the port and VLAN for each host. •...
  • Page 121: Using Extreme Standby Router Protocol

    SING XTREME The Extreme Standby Router Protocol (ESRP) provides a way to keep hosts communicating when a physical router becomes unavailable. ESRP works by allowing you to configure a virtual router on two or more BlackDiamond systems (and Summit switches) that are part of the same network segment. Connected hosts are then configured using the IP address of the virtual router as the default gateway.
  • Page 122: Ip Commands

    IP U NICAST OUTING Table 8-1: ESRP Commands (continued) Command config vlan <name> esrp timer <hello_timer> disable esrp vlan <name> The following example creates a VLAN named esrp1. create vlan esrp1 config vlan esrp1 add port 2:1-2:4 config vlan esrp1 ipaddress 10.1.2.3/16 config vlan esrp1 timer 10 config vlan esrp1 esrp priority 10 enable esrp vlan esrp1...
  • Page 123 When mask is not specified, an address with the mask 255.255.255.255 is assumed. When mac_address is not specified, the MAC address of the switch is used in the ARP Response. When always is specified, the switch answers ARP Requests without filtering requests that belong to the same subnet of the receiving router interface.
  • Page 124 IP U NICAST OUTING Table 8-2: Basic IP Commands (continued) Command clear ipfdb [<ipaddress> | vlan <name> | all] enable esrp port <slot:portlist> config port <slot:portlist> esrp group <number> config port <slot:portlist> esrp priority <value> config port <slot:portlist> esrp timer <hello_value> disable esrp port <slot:portlist>...
  • Page 125: Icmp Configuration Commands

    Table 8-3: Route Table Configuration Commands (continued) Command config iproute add default <gateway> {<metric>} config iproute delete default <gateway> disable iproute sharing Table 8-4 describes the commands used to configure the ICMP protocol. Table 8-4: ICMP Configuration Commands Command enable icmp redirects {vlan <name> | all} enable icmp unreachables {vlan <name>...
  • Page 126: Routing Configuration Example

    {vlan <name> | all} OUTING ONFIGURATION Figure 8-2 illustrates a switch that has three VLANs defined as follows: • Finance — Protocol-sensitive VLAN using the IP protocol — All ports on slots 1 and 3 have been assigned —...
  • Page 127 • Personnel — Protocol-sensitive VLAN using the IP protocol — All ports on slots 2 and 4 have been assigned — IP address 192.207.36.1 • MyCompany — Port-based VLAN — All ports on slots 1 through 4 have been assigned 192.207.35.0 Finance NetBIOS...
  • Page 128: Displaying Router Settings

    IP U NICAST OUTING In this configuration, all IP traffic from stations connected to slots 1 and 3 have access to the router by way of the VLAN Finance. Ports on slots 2 and 4 reach the router by way of the VLAN Personnel.
  • Page 129 Table 8-5: Router Show Commands (continued) Command show ipconfig {vlan <name> | all} show ipqos {<ip_destination_address> <mask> | all} show ipstats {vlan [<name> | all]} show iparp {<ipaddress | vlan <name> | all | permanent} show ipfdb {<ipaddress> <netmask> | vlan <name>...
  • Page 130: Resetting And Disabling Router Settings

    IP U NICAST OUTING ESETTING AND ISABLING To return router settings to their defaults and disable routing functions, use the commands listed in Table 8-6. Table 8-6: Router Reset and Disable Commands Command clear iparp [<ipaddress> | vlan <name> | all] clear ipfdb [<ipaddress>...
  • Page 131: Routing Protocols

    Routing Protocols This chapter describes the IP unicast routing protocols available on the BlackDiamond. It assumes that you are already familiar with IP unicast routing. If not, refer to the following publications for additional information: RFC 1058 — Routing Information Protocol (RIP) RFC 1256 —...
  • Page 132: Rip Versus Ospf

    OUTING ROTOCOLS RIP V OSPF ERSUS The distinction between RIP and OSPF lies in the fundamental differences between distance-vector protocols and link-state protocols. Using a distance-vector protocol, each router creates a unique routing table from summarized information obtained from neighboring routers. Using a link-state protocol, every router maintains an identical routing table created from information obtained from all routers in the autonomous system.
  • Page 133: Overview Of Rip

    VERVIEW OF VERVIEW OF RIP is an Interior Gateway Protocol (IGP) first used in computer routing in the ARPAnet as early as 1969. It is primarily intended for use in homogeneous networks of moderate size. To determine the best path to a distant network, a router using RIP always selects the path that has the least number of hops.
  • Page 134: Triggered Updates

    OUTING ROTOCOLS RIGGERED PDATES Triggered updates occur whenever a router changes the metric for a route, and it is required to send an update message immediately, even if it is not yet time for a regular update message to be sent. This will generally result in faster convergence, but may also result in more RIP-related traffic.
  • Page 135: Overview Of Ospf

    OSPF VERVIEW OF OSPF VERVIEW OF OSPF is a link-state protocol that distributes routing information between routers belonging to a single IP domain, also known as an autonomous system. In a link-state routing protocol, each router maintains a database describing the topology of the autonomous system.
  • Page 136: Area

    OUTING ROTOCOLS The three types of routers defined by OSPF are as follows: • Internal Router (IR) An internal router has all of its interfaces within the same area. • Area Border Router (ABR) An ABR has interfaces in multiple areas. It is responsible for exchanging summary advertisements with other ABRs.
  • Page 137: Virtual Links

    Area 0 Figure 9-1: Stub area IRTUAL INKS In the situation when a new area is introduced that does have a direct physical attachment to the backbone, a virtual link is used. A virtual link provides a logical path between the ABR of the disconnected area and the ABR of the backbone. A virtual link must be established between two ABRs that have a common area, with one ABR connected to the backbone.
  • Page 138 OUTING ROTOCOLS Virtual link Area 2 Figure 9-2: Virtual link for stub area Virtual links are also used to repair a discontiguous backbone area. For example, in Figure 9-3, if the connection between ABR1 and the backbone fails, the connection using ABR2 provides redundancy so that the discontiguous area can continue to communicate with the backbone using the virtual link.
  • Page 139: Unicast Route Distribution

    NICAST OUTE Both RIP and OSPF can be enabled simultaneously on the BlackDiamond system. If you enable both protocols, you have the option of propagating routes learned by one protocol to the other protocol. This is known as route distribution. Using route distribution, you can configure the following options: •...
  • Page 140 OUTING ROTOCOLS Table 9-1: RIP Configuration Commands (continued) Command enable rip export static enable rip export ospf {<metric>} enable rip poisonreverse enable rip splithorizon enable rip triggerupdate config rip add {vlan <name> | all} config rip delete [vlan <name> | all] config rip garbagetime {<delay>} config rip routetimeout {<delay>} config rip rxmode [none | v1only | v2only | any]...
  • Page 141: Rip Configuration Example

    {<delay>} RIP C ONFIGURATION Figure 9-4 illustrates a switch that has three VLANs defined as follows: • Finance — Protocol-sensitive VLAN using the IP protocol — All ports on slots 1 and 3 have been assigned — IP address 192.207.35.1 •...
  • Page 142: Rip Configuration Example

    OUTING ROTOCOLS 192.207.35.1 192.207.35.0 Finance NetBIOS NetBIOS NetBIOS Figure 9-4: RIP configuration example The stations connected to the system generate a combination of IP traffic and NetBIOS traffic. The IP traffic is filtered by the protocol-sensitive VLANs. All other traffic is directed to the VLAN MyCompany.
  • Page 143: Displaying Rip Settings

    The example in Figure 9-4 create vlan Finance create vlan Personnel create vlan MyCompany config Finance protocol ip config Personnel protocol ip config Finance add port 1:*,3:* config Personnel add port 2:*,4:* config MyCompany add port all config Finance ipaddress 192.207.35.1 config Personnel ipaddress 192.207.36.1 enable ipforwarding config rip add vlan all...
  • Page 144: Resetting And Disabling Rip

    OUTING ROTOCOLS ESETTING AND ISABLING To return RIP settings to their defaults, or to disable RIP, use the commands listed in Table 9-3. Table 9-3: RIP Reset and Disable Commands Command config rip delete [vlan <name> | all] disable rip disable rip aggregation disable rip splithorizon disable rip poisonreverse...
  • Page 145 Table 9-4: OSPF Configuration Commands (continued) Command enable ospf export rip type [1 | 2] {<metric>} config ospf [vlan <name> | area <areaid> | virtual-link <routerid> <areaid>] authentication [simple-password <password> | md5 <md5_key_id> <md5_key>| none] config ospf vlan <name> area <areaid> config ospf [vlan <name>...
  • Page 146 Deletes a range of IP addresses in an OSPF area. Configures the OSPF router ID. If automatic is specified, the switch uses the largest IP interface address as the OSPF router ID. The default setting is automatic. Configures the timers for one interface or all interfaces in the same OSPF area.
  • Page 147: Ospf Configuration Example

    OSPF C ONFIGURATION Figure 9-5 shows an example of an autonomous system using OSPF routers. The details of this network follow. Area 0 Headquarters ABR 2 160.26.25.1 160.26.25.2 Area 5 Figure 9-5: OSPF configuration example LACK IAMOND UIDE XAMPLE IR 2 10.0.1.1 10.0.3.2 ABR 1...
  • Page 148 OUTING ROTOCOLS Area 0 is the backbone area. It is located at the headquarters and has the following characteristics: • 2 internal routers (IR1 and IR2) • 2 area border routers (ABR1 and ABR2) • Network number 10.0.x.x • 2 identified VLANs (HQ_10_0_2 and HQ_10_0_3) Area 5 is connected to the backbone area by way of ABR1 and ABR2.
  • Page 149: Configuration For Abr1

    ONFIGURATION FOR The following is the configuration for the router labeled ABR1: create vlan HQ_10_0_2 create vlan HQ_10_0_3 create vlan LA_161_48_2 create vlan Chi_160_26_2 config vlan HQ_10_0_2 ipaddress 10.0.2.1 255.255.255.0 config vlan HQ_10_0_3 ipaddress 10.0.3.1 255.255.255.0 config vlan LA_161_48_2 ipaddress 161.48.2.2 255.255.255.0 config vlan Chi_160_26_2 ipaddress 160.26.2.1 255.255.255.0 create ospf area 0.0.0.5 create ospf area 0.0.0.6...
  • Page 150: Displaying Ospf Settings

    OUTING ROTOCOLS OSPF S ISPLAYING To display settings for OSPF, use the commands listed in Table 9-5: OSPF Show Commands Command show ospf show ospf area {<areaid> | all} show ospf interfaces {vlan <name> | area <areaid> | all} show ospf lsdb {detail} {area <areaid> | all} {router | network | summary_net | summary_asb | as_external | all} show ospf virtual-link {<areaid>...
  • Page 151: Ip Multicast Routing

    IP Multicast Routing This chapter describes the components of IP multicast routing, and how to configure IP multicast routing on the BlackDiamond. For more information on IP multicasting, refer to RFC 1112, RFC 1075, RFC 2236, and other more recent Internet draft documents. VERVIEW IP multicast routing is a function that allows a single IP host to send a packet to a group of IP hosts.
  • Page 152: Dvmrp Overview

    IGMP S NOOPING IGMP snooping adds intelligence to a layer 2 device (such as a switch), to reduce the flooding of IP multicast traffic. The goal of IGMP snooping is to optimize the usage of network bandwidth and prevent multicast traffic from being flooded to parts of the network that do not need to see it.
  • Page 153: Ip Multicast Routing Configuration Commands

    3 Enable DVMRP on all IP multicast routing interfaces, using the following command: config dvmrp add {vlan <name> | all} 4 Enable DVMRP on the router, using the following command: enable dvmrp Table 10-1 describes the commands used to configure IP multicast routing. Table 10-1: IP Multicast Routing Configuration Commands Command enable dvmrp...
  • Page 154 IP M ULTICAST OUTING Table 10-1: IP Multicast Routing Configuration Commands (continued) Command config dvmrp timer <route_report_interval> <route_replacement_time> config ipmc cache timeout <seconds> Table 10-2 describes the command used to configure the Internet Gateway Message Protocol (IGMP). Table 10-2: IGMP Configuration Commands Command enable igmp {vlan <name>...
  • Page 155: Configuration Example

    Table 10-2: IGMP Configuration Commands (continued) Command config igmp snooping <router_timeout> <host_timeout> ONFIGURATION Figure 10-1 is used in Refer to Chapter 9 system labeled IR1 is configured for IP multicast routing. LACK IAMOND UIDE Description Configures the IGMP snooping timers. Timers should be set to approximately 2.5 times the router query interval in use on the network.
  • Page 156: Ip Multicast Routing Configuration Example

    IP M ULTICAST OUTING Area 0 IR 2 10.0.3.2 Headquarters ABR 2 160.26.26.1 160.26.25.1 Virtual link 160.26.26.2 160.26.25.2 Area 5 Figure 10-1: IP multicast routing configuration example 10-6 10.0.1.1 10.0.1.2 10.0.2.2 ABR 1 10.0.3.1 10.0.2.1 161.48.2.2 Chicago Area 6 (stub) IR 1 Los Angeles 161.48.2.1...
  • Page 157: Configuration For Ir1

    ONFIGURATION FOR The following is the configuration for the router labeled IR1: config vlan HQ_10_0_1 ipaddress 10.0.1.2 255.255.255.0 config vlan HQ_10_0_2 ipaddress 10.0.2.2 255.255.255.0 config ospf add vlan all enable ipforwarding enable ospf enable ipmcforwarding config dvmrp add vlan all enable dvmrp ISPLAYING To display settings for IP multicast routing components, use the commands listed in...
  • Page 158: Deleting And Resetting Ip Multicast Settings

    IP M ULTICAST OUTING ELETING AND ESETTING To return IP multicast routing settings to their defaults and disable IP multicast routing functions, use the commands listed in Table 10-4: IP Multicast Routing Reset and Disable Commands Command disable dvmrp disable ipmcforwarding {vlan <name> | all} disable igmp {vlan <name>...
  • Page 159: Status Monitoring And Statistics

    The status monitoring facility provides information about the BlackDiamond. This information may be useful for your technical support representative if you have a problem. Table 11-1 describes the Table 11-1: Switch Monitoring Commands Command show account show banner LACK IAMOND...
  • Page 160 TATUS ONITORING AND TATISTICS Table 11-1: Switch Monitoring Commands (continued) Command show config show diag show dvmrp {vlan <name> | route | all} show fdb {all | <macaddress> | vlan <name> | <port:portlist> | permanent | qos} show gvrp show igmp snooping {<vlan <name> | all} show iparp {<ip_address>...
  • Page 161 Table 11-1: Switch Monitoring Commands (continued) Command show ipmc cache {<group> {<src_ipaddress> <mask>}} | all} show ipqos {<ip_destination_address> <mask> | all} show iproute vlan {<name> | all | permanent | <ipaddress> <mask>} show ipstats {vlan [<name> | all]} show log {<priority>} {<subsystem>}...
  • Page 162 TATUS ONITORING AND TATISTICS Table 11-1: Switch Monitoring Commands (continued) Command show management show memory show mirroring show ospf show ospf area {<areaid> | all} show ospf interfaces {vlan <name> | area <areaid> | all} show ospf lsdb {detail} {area <areaid> |...
  • Page 163 Table 11-1: Switch Monitoring Commands (continued) Command show port {<slot:portlist>} information show port {<slot:portlist>} packet show port {<slot:portlist>} qosmonitor show port {<slot:portlist>} rxerrors show port {<slot:portlist>} stats show port {<slot:portlist>} txerrors show port {<slot:portlist>} utilization show protocol {<protocol> | all} show qosprofile {<qosname>...
  • Page 164 Number of RIP peers Peer information Displays the currently active Telnet and console sessions communicating with the switch. Provides the user name, IP address of the incoming Telnet session, whether a console session is currently active, and login time. Sessions are numbered.
  • Page 165 System ID Power supply and fan status Displays the hardware and software versions currently running on the switch. Displays the switch serial number and version numbers of MSM and I/O modules. When used with the keyword all, or with no named VLANs, displays a summary list of VLAN names with a portlist and associated status of each.
  • Page 166: Slot Diagnostics

    IAGNOSTICS The BlackDiamond system provides a facility for running normal or extended diagnostics on an I/O module or a Management Switch Fabric Module (MSM) without affecting the operation of the rest of the system. If you select to run the diagnostic routine on an I/O module, that module is taken off-line while the diagnostic test is performed.
  • Page 167: Port Statistics

    To view port statistics, use the following command: show port <slot:portlist> stats The following port statistic information is collected by the switch: • Link Status — The current status of the link. Options are — Ready — The port is ready to accept a link.
  • Page 168: Port Errors

    To view port receive errors, use the following command: show port <slot:portlist> rxerrors The following port receive error information is collected by the switch: • Receive Bad CRC Frames (RX CRC) — The total number of frames received by the port that were of the correct length, but contained a bad FCS value.
  • Page 169: Port Monitoring Display Keys

    CRC error and does not contain an integral number of octets. • Receive Frames Lost (RX Lost) — The total number of frames received by the port that were lost because of buffer overflow in the switch. ONITORING Table 11-2...
  • Page 170 Table 11-3: Fault Levels Assigned by the System Level Description Critical A desired switch function is inoperable. The switch may need to be reset. Warning A noncritical error that may lead to a function failure. Informational Actions and events that are consistent with expected behavior.
  • Page 171: Local Logging

    (more critical). Priorities include critical, warning, and informational. If not specified, informational priority messages and higher are displayed. — Filters the log to display messages associated with the selected switch • subsystem subsystem. Subsystems include Syst, STP Brdg, SNMP, Telnet, VLAN, and Port. If not specified, all subsystems are displayed.
  • Page 172: Remote Logging

    TATUS ONITORING AND TATISTICS EMOTE OGGING In addition to maintaining an internal log, the BlackDiamond supports remote logging by way of the UNIX syslog host facility. To enable remote logging, do the following: • Configure the syslog host to accept and log messages. •...
  • Page 173: Logging Commands

    — Filters the log to display messages associated with the selected switch subsystem. Subsystems include Syst, STP Brdg, SNMP, Telnet, VLAN, and Port. If not specified, all subsystems are displayed. Configures the syslog host address and filter messages sent to the syslog host.
  • Page 174: Rmon

    IP address, the priority level of messages being logged locally, and the priority level of messages being sent to the syslog host. Clears all switch statistics and port counters. Clears the log. If static is specified, the critical log messages are also cleared. LACK...
  • Page 175: About Rmon

    RMON BOUT RMON is the common abbreviation for the Remote Monitoring Management Information Base (MIB) system defined by the Internet Engineering Task Force (IETF) documents RFC 1271 and RFC 1757, which allows you to monitor LANs remotely. A typical RMON setup consists of the following two components: •...
  • Page 176: Alarms

    IAMOND RMON requires one probe per LAN segment, and standalone RMON probes have traditionally been expensive. Therefore, Extreme’s approach has been to build an inexpensive RMON probe into the agent of each system. This allows RMON to be widely deployed around the network without costing more than traditional network management.
  • Page 177: Event Actions

    VENT CTIONS The actions that you can define for each alarm are shown in Table 11-6: Event Actions Action No action Notify only Notify and log To be notified of events using SNMP traps, you must configure one or more trap receivers, as described in LACK IAMOND...
  • Page 178 TATUS ONITORING AND TATISTICS 11-20 LACK IAMOND UIDE...
  • Page 179: Using Extremeware Vista

    Using ExtremeWare Vista ExtremeWare Vista is device-management software running in the BlackDiamond that allows you to access the system over a TCP/IP network, using a standard Web browser. Any properly configured standard Web browser that supports frames and JavaScript (such as Netscape Navigator 3.0 or higher, or Microsoft Internet Explorer 3.0 or higher) can be used to manage the system.
  • Page 180: Setting Up Your Browser

    • Turn off one or more of the browser toolbars to maximize the viewing space of the ExtremeWare Vista content screen. • If you will be using ExtremeWare Vista to send an e-mail to the Extreme Networks Technical Support department, configure the e-mail settings in your browser.
  • Page 181: Accessing Extremeware Vista

    Statistics and Support information. For more information on assigning user names, levels, and passwords, refer to Chapter If multiple people access the same switch using ExtremeWare Vista, you might see the following error message: Web:server busy To correct this situation, log out of the switch and log in again.
  • Page 182: Task Frame

    SING XTREME ISTA RAME The task frame has two sections: menu buttons submenu links. There are four task buttons, as follows: • Configuration • Statistics • Support • Logout Below the task buttons are options. Options are specific to the task button that you select.
  • Page 183: Status Messages

    At the bottom of some of the content frames is a section that contains standalone buttons. Standalone buttons are used to perform tasks that are not associated with a particular configuration option. An example of this is the Reboot Switch button. AVING...
  • Page 184: Filtering Information

    If you attempt to log out without saving your changes, ExtremeWare Vista prompts you to save your changes. If you select Yes, the changes are saved to the selected configuration area. To change the selected configuration area, you must go to the Configuration task button, Switch option. ILTERING NFORMATION Some pages have a Filter button.
  • Page 185: Sending Screen Output To Extreme Networks

    4 From Microsoft Internet Explorer 4.0, right-click in the content frame, select View Source, and save the HTML text by copying it and pasting it into a text editor. 5 Attach the file to the e-mail message that you are sending to Extreme Networks. LACK...
  • Page 186 SING XTREME ISTA 12-8 LACK IAMOND UIDE...
  • Page 187: Software Upgrade And Boot Options

    Software Upgrade and Boot Options This chapter describes the procedure for upgrading the system software image. This chapter also discusses how to save and load a primary and secondary image and configuration file on the BlackDiamond. OWNLOADING A MAGE The image file contains the executable code that runs on the BlackDiamond. It comes preinstalled from the factory.
  • Page 188: Rebooting The System

    The values use the following format: mm/dd/yyyy hh:mm:ss If you do not specify a reboot time, the reboot happens immediately following the command, and any previously scheduled reboots are cancelled. To cancel a previously...
  • Page 189: Saving Configuration Changes

    Settings that are stored in run-time memory are not retained by the switch when the switch is rebooted. To retain the settings, and have them be loaded when you reboot the switch, you must save the configuration to NVRAM.
  • Page 190: Using Tftp To Upload The Configuration

    • Modify the configuration using a text editor, and later download a copy of the file to the same system, or to one or more different systems. • Send a copy of the configuration file to Extreme Networks Technical Support for problem-solving purposes.
  • Page 191: Boot Option Commands

    TFTP SING You can download a previously saved configuration from a TFTP server. To download a configuration, use the following command: download config <ipaddress> <filename> After the ASCII configuration file is downloaded by way of TFTP, you are prompted to reboot the system.
  • Page 192 Uploads the current runtime configuration to the specified TFTP server. If every <time> is specified, the switch automatically saves the configuration to the server once per day, at the specified time. To cancel automatic upload, use the cancel option. If no options are specified, the current configuration is uploaded immediately.
  • Page 193: Supported Standards

    Supported Standards The following is a list of software standards supported on the BlackDiamond system. SNMP SNMP protocol (RFC 1157) MIB-II (RFC 1213) Bridge MIB (RFC 1493) Interfaces MIB (RFC 1573) RMON MIB (RFC 1757) 802.3 MAU MIB (RFC 2239) IP Forwarding MIB (RFC 1354) OSPF2 MIB (RFC 1850) RIP2 MIB (RFC 1724)
  • Page 194 UPPORTED TANDARDS LACK IAMOND UIDE...
  • Page 195: Troubleshooting

    Troubleshooting If you encounter problems when using the BlackDiamond, this appendix may be helpful. If you have a problem not listed here or in the “Release Notes”, contact your local technical support representative. Power LED does not light: Check that the power cable is firmly connected to the device and to the supply outlet. On powering-up, the MGMT LED lights yellow: The device has failed its Power On Self Test (POST) and you should contact your supplier for advice.
  • Page 196: Using The Command-Line Interface

    I/O module that conflicts with the software configuration, use one of the following commands to reset the slot configuration: clear slot config slot <slot> module [f32t | f32f | g4x | g6x] Otherwise, contact Extreme Networks for further assistance. SING THE OMMAND The initial welcome prompt does not display: Check that your terminal or terminal emulator is correctly configured.
  • Page 197 Telnet facility. Check that Telnet access was not disabled for the switch. If you attempt to log in and the maximum number of Telnet sessions are being used, you should receive an error message indicating so.
  • Page 198: Vlans

    ROUBLESHOOTING Check that the community strings configured for the device and the Network Manager are the same. Check that SNMP access was not disabled for the system. Permanent entries remain in the FDB: If you have made a permanent entry in the FDB (which requires you to specify the VLAN to which it belongs and then delete the VLAN), the FDB entry will remain.
  • Page 199 Remember that VLAN names are only locally significant through the command-line interface. For two switches to communicate across a 802.1Q link, the VLAN ID for the VLAN on one switch should have a corresponding VLAN ID for the VLAN on the other switch.
  • Page 200: Stp

    The BlackDiamond has STP enabled, and the endstation is booting before the STP initialization process is complete. Specify that STP has been disabled for that VLAN, or turn off STP for the switch ports of the endstation and devices to which it is attempting to connect, and then reboot the endstation.
  • Page 201: Index

    access levels 2-8 accounts, creating 2-10 account 2-9 admin aging entries 5-1 alarm actions 11-19 Alarms, RMON 11-18 area 0, OSPF 9-6 areas, OSPF 9-5 autonegotiation 3-4 backbone area, OSPF 9-6 BlackDiamond boot option commands (table) 13-5 components 1-1 configuration example 1-6 factory defaults 1-8 features 1-3 home page 2-17, 12-3...
  • Page 202 8-11 configuration commands (table) 8-11 configuring 8-11 description 8-11 example 8-12 groups 8-11 Events, RMON 11-18 Extreme Standby Router Protocol. See ESRP ExtremeWare Vista accessing 12-3 browser controls 12-4 browser setup 12-2 capturing screen output 12-7 description 12-1...
  • Page 203 2-9 management access 2-8 master port, load sharing 3-8 max age 6-5 MIBs 2-19 mode, QoS 7-2 monitoring the switch 11-1 multiple routes 8-4 names, VLANs 4-14 non-aging entries 5-2 Open Shortest Path First. See OSPF OSPF advantages 9-2...
  • Page 204 poison reverse 9-3 port autonegotiation 3-4 commands (table) 3-5 configuring 3-1 enabling and disabling 3-3 errors,viewing 11-10 master port 3-8 monitoring display keys 11-11 priority, STP 6-6 receive errors 11-10 statistics, viewing 11-9 STP state, displaying 6-9 STPD membership 6-2 transmit errors 11-10 Port Queue Monitor.
  • Page 205 6-8 domains 6-1 examples 6-2 overview 6-1 port state, displaying 6-9 stub area, OSPF 9-6 switch logging 11-11 switch monitoring commands (table) 11-1 syntax, understanding 2-2 syslog host 11-14 tagging, VLAN 4-6 Telnet disabling 2-16 disconnecting a session 2-15...
  • Page 206 NDEX...
  • Page 207: Index Of Commands

    clear counters 11-16 clear fdb 5-6 clear igmp snooping 10-8 clear iparp 2-16, 8-13, 8-20 clear ipfdb 8-14, 8-20 clear ipmc cache 10-8 clear log 11-16 clear session 2-7, 2-16 clear slot 3-2 clear slot module 3-5 config account 2-6 config banner 2-6 config bootprelay add 8-13 config bootprelay delete 8-13...
  • Page 208 config qosmode 7-8 config qosprofile 7-9 config rip add 9-10 config rip delete 9-10, 9-14 config rip garbagetime 9-10 config rip routetimeout 9-10 config rip rxmode 9-10 config rip txmode 9-11 config rip updatetime 9-11 config slot 3-2 config slot module 2-6, 3-5 config snmp add 2-20 config snmp add trapreceiver 2-20 config snmp delete 2-20...
  • Page 209 enable bootp 2-7, 8-12 enable bootprelay 8-12 enable dvmrp 10-3 enable esrp port 8-14 enable esrp vlan 8-11 enable gvrp 4-11 enable icmp redirects 8-15 enable icmp unreachables 8-15 enable icmp useredirects 8-15 enable idletimeout 2-7 enable igmp 10-4 enable ignore-stp 4-15 enable ipforwarding 8-12 enable ipforwarding broadcast 8-13 enable ipmcforwarding 10-3...
  • Page 210 9-13, 11-6 show session 2-15, 11-6 show slot 3-2, 3-7, 11-6 show stpd 6-8, 11-6 show stpd port 6-9, 11-6 show switch 11-7 show version 11-7 show vlan 4-18, 11-7 telnet 2-12 traceroute 2-23 unconfig dvmrp 10-8...

Table of Contents