Page of 420
Download Print This PagePrint Bookmark
   
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420
2810
ProCurve Series 2810 Switches
N.10.XX
www.procurve.com
Management and
Configuration Guide

Advertising

   Related Manuals for HP ProCurve 2810 Series

   Summary of Contents for HP ProCurve 2810 Series

  • Page 1

    Management and Configuration Guide 2810 ProCurve Series 2810 Switches N.10.XX www.procurve.com...

  • Page 3

    ProCurve Series 2810 Switches July 2006 Management and Configuration Guide...

  • Page 4

    Trademark Credits Hewlett-Packard assumes no responsibility for the use or Microsoft, Windows, and Windows NT are US registered reliability of its software on equipment that is not furnished trademarks of Microsoft Corporation.

  • Page 5: Table Of Contents

    Contents Product Documentation About Your Switch Manual Set ........xv Feature Index .

  • Page 6: Table Of Contents, Using The Menu Interface, Using The Command Line Interface (cli)

    Custom Login Banners for the Console and Web Browser Interfaces ........2-8 Banner Operation with Telnet, Serial, or SSHv2 Access .

  • Page 7: Table Of Contents, Using The Web Browser Interface

    CLI Control and Editing ......... 4-16 5 Using the Web Browser Interface Contents .

  • Page 8: Table Of Contents, Switch Memory And Configuration, Interface Access And System Information

    6 Switch Memory and Configuration Contents ............6-1 Overview .

  • Page 9: Table Of Contents, Configuring Ip Addressing, Time Protocols

    8 Configuring IP Addressing Contents ............8-1 Overview .

  • Page 10: Table Of Contents

    CLI: Viewing and Configuring TimeP ......9-16 Viewing the Current TimeP Configuration ....9-17 Configuring (Enabling or Disabling) the TimeP Mode .

  • Page 11: Table Of Contents, Port Trunking

    The Role of 802.1Q VLAN Tagging ......10-26 Outbound Port Queues and Packet Priority Settings ... . 10-27 Operating Rules for Port-Based Priority .

  • Page 12: Table Of Contents

    12 Configuring for Network Management Applications Contents ............12-1 Using SNMP Tools To Manage the Switch .

  • Page 13: Table Of Contents

    LLDP and CDP Data Management ......12-51 LLDP and CDP Neighbor Data ......12-51 CDP Operation and Commands .

  • Page 14: Table Of Contents

    B Monitoring and Analyzing Switch Operation Contents ............B-1 Overview .

  • Page 15: Table Of Contents

    C Troubleshooting Contents ............C-1 Overview .

  • Page 16: Table Of Contents

    Restoring the Factory-Default Configuration ..... . C-43 Using the CLI ......... C-43 Using the Clear/Reset Buttons .

  • Page 17: Product Documentation

    Product Documentation About Your Switch Manual Set The switch manual set includes the following: Read Me First - a printed guide shipped with your switch. Provides ■ software update information, product notes, and other information. ■ Installation and Getting Started Guide - a printed guide shipped with your switch.

  • Page 18

    Product Documentation Feature Index For the manual set supporting your switch model, the following feature index indicates which manual to consult for information on a given software feature. (Note that some software features are not supported on all switch models.) Feature Management and Advanced Traffic...

  • Page 19

    Product Documentation Feature Management and Advanced Traffic Access Security Configuration Management Guide Link LLDP MAC Address Management MAC Lockdown MAC Lockout MAC-based Authentication Monitoring and Analysis Multicast Filtering Network Management Applications (LLDP, SNMP) Passwords Ping Port Configuration Port Security Port Status ­...

  • Page 20

    Product Documentation Feature Management and Advanced Traffic Access Security Configuration Management Guide SSL (Secure Socket Layer) Stack Management (Stacking) Syslog System Information TACACS+ Authentication Telnet Access TFTP Time Protocols (TimeP, SNTP) Traffic/Security Filters Troubleshooting VLANs Web-based Authentication Xmodem xviii...

  • Page 21: Contents

    Getting Started Contents Introduction ........... 1-2 Conventions .

  • Page 22: Introduction, Conventions, Feature Descriptions By Model, Command Syntax Statements

    Getting Started Introduction Introduction This Management and Configuration Guide is intended to support the following switches: ProCurve Series 2810 ■ This guide describes how to use the command line interface (CLI), menu interface, and web browser interface to configure, manage, and monitor switch operation.

  • Page 23: Command Prompts, Screen Simulations

    Getting Started Conventions Braces ( < > ) enclose required elements. ■ Braces within square brackets ( [ < > ] ) indicate a required element ■ within an optional choice. ■ Boldface indicates use of a CLI command, part of a CLI command syntax, or other displayed element in general text.

  • Page 24: Port Identity Examples, Sources For More Information

    Getting Started Sources for More Information In some cases, brief command-output sequences appear outside of a numbered figure. For example: ProCurve(config)# ip default-gateway 18.28.152.1/24 ProCurve(config)# vlan 1 ip address 18.28.36.152/24 ProCurve(config)# vlan 1 ip igmp Port Identity Examples This guide describes software applicable to both chassis-based and stackable ProCurve switches.

  • Page 25

    Getting Started Sources for More Information Online Help for Menu Figure 1-2. Getting Help in the Menu Interface ■ For information on a specific command in the CLI, type the command name followed by “help”. For example: Figure 1-3. Getting Help in the CLI ■...

  • Page 26: Need Only A Quick Start?, Ip Addressing

    Getting Started Need Only a Quick Start? Need Only a Quick Start? IP Addressing If you just want to give the switch an IP address so that it can communicate on your network, or if you are not using multiple VLANs, ProCurve recommends that you use the Switch Setup screen to quickly configure IP addressing.

  • Page 27

    Selecting a Management Interface Contents Overview ............2-2 Advantages of Using the Menu Interface .

  • Page 28: Overview

    Selecting a Management Interface Overview Overview Management interfaces enable you to reconfigure the switch and to monitor switch status and performance. Interface types include: ■ Menu interface—a menu-driven interface offering a subset of switch commands through the built-in VT-100/ANSI console—page 2-3 CLI—a command line interface offering the full set of switch commands ■...

  • Page 29: Advantages Of Using The Menu Interface

    Selecting a Management Interface Advantages of Using the Menu Interface Advantages of Using the Menu Interface Figure 2-1. Example of the Console Interface Display ■ Provides quick, easy management access to a menu-driven subset of switch configuration and performance features: • IP addressing •...

  • Page 30: Advantages Of Using The Cli

    Selecting a Management Interface Advantages of Using the CLI Allows faster navigation, avoiding delays that occur with slower ■ display of graphical objects over a web browser interface. ■ Provides more security; configuration information and passwords are not seen on the network. Advantages of Using the CLI Operator Level ProCurve>...

  • Page 31: Advantages Of Using The Web Browser Interface

    Selecting a Management Interface Advantages of Using the Web Browser Interface Advantages of Using the Web Browser Interface Figure 2-3. Example of the Web Browser Interface ■ Easy access to the switch from anywhere on the network ■ Familiar browser interface--locations of window objects consistent with commonly used browsers, uses mouse clicking for navigation, no terminal setup Many features have all their fields in one screen so you can view all...

  • Page 32: Advantages Of Using Procurve Manager Or Procurve Manager Plus

    Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus Advantages of Using ProCurve Manager or ProCurve Manager Plus You can operate ProCurve Manager and ProCurve Manager Plus (PCM and PCM+) from a PC on the network to monitor traffic, manage your hubs and switches, and proactively recommend network changes to increase network uptime and optimize performance.

  • Page 33

    Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus Features and benefits of ProCurve Manager: ■ • Network Status Summary: Upon boot-up, a network status screen displays high-level information on network devices, end nodes, events, and traffic levels. From here, users can research any one of these areas to get more details.

  • Page 34: Web Browser Interfaces

    Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus • Device Software Updates: This feature automatically obtains new device software images from ProCurve and updates devices, allowing users to download the latest version or choose the desired version. Updates can be scheduled easily across large groups of devices, all at user-specified times.

  • Page 35: Banner Operation With Telnet, Serial, Or Sshv2 Access, Banner Operation With Web Browser Access

    Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus N o t e The switch’s Web browser interface does not display the default banner. Banner Operation with Telnet, Serial, or SSHv2 Access When a system operator begins a login session, the switch displays the banner above the local password prompt or, if no password is configured, above the Press any key to continue prompt.

  • Page 36: Example Of Configuring And Displaying A Banner

    Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus Use show banner motd to display the current banner status. Syntax: banner motd < delimiter > no banner motd This command defines the single character used to termi­ nate the banner text and enables banner text input.

  • Page 37

    Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus Figure 1. Example of Configuring a Login Banner To view the current banner configuration, use either the show banner motd or show running command. ProCurve(config)# show banner motd Banner Information Banner status: Enabled Configured Banner:...

  • Page 38

    Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus ProCurve(config)# show running Running configuration: ; J9220A Configuration Editor; Created on release # N.10.XX hostname "ProCurve" snmp-server community "notpublic" Unrestricted vlan 1 name "DEFAULT_VLAN" untagged 1-24 ip address dhcp-bootp exit banner motd "...

  • Page 39: Operating Notes

    Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus Figure 5. Example of Web Browser Interface Result of the Login Banner Configuration Operating Notes The default banner appears only when the switch is in the factory ■...

  • Page 40

    Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus —This page is intentionally unused— 2-14...

  • Page 41

    Using the Menu Interface Contents Overview ............3-2 Starting and Ending a Menu Session .

  • Page 42

    Using the Menu Interface Overview Overview This chapter describes the following: Overview of the Menu Interface ■ Starting and ending a Menu session (page 3-3) ■ ■ The Main Menu (page 3-7) Screen structure and navigation (page 3-9) ■ Rebooting the switch (page 3-12) ■...

  • Page 43: Starting And Ending A Menu Session

    Using the Menu Interface Starting and Ending a Menu Session N o t e If the switch has neither a Manager nor an Operator password, anyone having access to the console interface can operate the console with full manager privileges. Also, if you configure only an Operator password, entering the Operator password enables full manager privileges.

  • Page 44: How To Start A Menu Interface Session

    Using the Menu Interface Starting and Ending a Menu Session How To Start a Menu Interface Session In its factory default configuration, the switch console starts with the CLI prompt. To use the menu interface with Manager privileges, go to the Manager level prompt and enter the command.

  • Page 45: How To End A Menu Session And Exit From The Console:

    Using the Menu Interface Starting and Ending a Menu Session Figure 3-1. The Main Menu with Manager Privileges For a description of Main Menu features, see “Main Menu Features” on page 3-7. N o t e To configure the switch to start with the menu interface instead of the CLI, go to the Manager level prompt in the CLI, enter the setup command, and in the resulting display, change the Logon Default parameter to Menu.

  • Page 46

    Using the Menu Interface Starting and Ending a Menu Session Asterisk indicates a configuration change that requires a reboot to activate. Figure 3-2. An Asterisk Indicates a Configuration Change Requiring a Reboot 1. In the current session, if you have not made configuration changes that require a switch reboot to activate, return to the Main Menu and press (zero) to log out.

  • Page 47: Main Menu Features

    Using the Menu Interface Main Menu Features Main Menu Features Figure 3-3. The Main Menu View with Manager Privileges The Main Menu gives you access to these Menu interface features: ■ Status and Counters: Provides access to display screens showing switch information, port status and counters, port and VLAN address tables, and spanning tree information.

  • Page 48

    Using the Menu Interface Main Menu Features Command Line (CLI): Selects the Command Line Interface at the same ■ level (Manager or Operator) that you are accessing in the Menu interface. (See chapter 4, “Using the Command Line Interface (CLI)”.) ■...

  • Page 49: Screen Structure And Navigation

    Using the Menu Interface Screen Structure and Navigation Screen Structure and Navigation Menu interface screens include these three elements: ■ Parameter fields and/or read-only information such as statistics Navigation and configuration actions, such as Save, Edit, and Cancel ■ ■ Help line to describe navigation options, individual parameters, and read- only data For example, in the following System Information screen:...

  • Page 50

    Using the Menu Interface Screen Structure and Navigation Table 3-1. How To Navigate in the Menu Interface Task: Actions: Execute an action Use either of the following methods: from the “Actions –>” • Use the arrow keys ([<] or [>]) to highlight the action you want to list at the bottom of execute, then press [Enter].

  • Page 51

    Using the Menu Interface Screen Structure and Navigation To get Help on individual parameter descriptions. In most screens there is a Help option in the Actions line. Whenever any of the items in the Actions line is highlighted, press , and a separate help screen is displayed. For example: Pressing [H] or highlighting Help and pressing [Enter] displays Help for the...

  • Page 52: Rebooting The Switch

    Using the Menu Interface Rebooting the Switch Rebooting the Switch Rebooting the switch from the menu interface ■ Terminates all current sessions and performs a reset of the operating system Activates any menu interface configuration changes that require a reboot ■...

  • Page 53

    Using the Menu Interface Rebooting the Switch Rebooting To Activate Configuration Changes. Configuration changes for most parameters in the menu interface become effective as soon as you save them. However, you must reboot the switch in order to implement a change in the .

  • Page 54: Menu Features List

    Using the Menu Interface Menu Features List Menu Features List Status and Counters • General System Information • Switch Management Address Information • Port Status • Port Counters • Address Table • Port Address Table • Spanning Tree Information Switch Configuration •...

  • Page 55: Where To Go From Here

    Using the Menu Interface Where To Go From Here Where To Go From Here This chapter provides an overview of the menu interface and how to use it. The following table indicates where to turn for detailed information on how to use the individual features available through the menu interface.

  • Page 56

    Using the Menu Interface Where To Go From Here — This page is intentionally unused. — 3-16...

  • Page 57

    Using the Command Line Interface (CLI) Contents Overview ............4-2 Accessing the CLI .

  • Page 58: Accessing The Cli, Overview, Using The Cli

    Using the Command Line Interface (CLI) Overview Overview The CLI is a text-based command interface for configuring and monitoring the switch. The CLI gives you access to the switch’s full set of commands while providing the same password protection that is used in the web browser interface and the menu interface.

  • Page 59: Privilege Levels At Logon

    Using the Command Line Interface (CLI) Using the CLI When you use the CLI to make a configuration change, the switch writes the change to the Running-Config file in volatile memory. This allows you to test your configuration changes before making them permanent. To make changes permanent, you must use the write memory command to save them to the Startup Config file in non-volatile memory.

  • Page 60: Privilege Level Operation, Operator Privileges

    Using the Command Line Interface (CLI) Using the CLI C a u t i o n ProCurve strongly recommends that you configure a Manager password. If a Manager password is not configured, then the Manager level is not password- protected, and anyone having in-band or out-of-band access to the switch may be able to reach the Manager level and compromise switch and network security.

  • Page 61: Manager Privileges

    Using the Command Line Interface (CLI) Using the CLI Manager Privileges Manager privileges give you three additional levels of access: Manager, Global Configuration, and Context Configuration. (See figure 4-2.) A “#” character delimits any Manager prompt. For example: ProCurve#_ Example of the Manager prompt. ■...

  • Page 62

    Using the Command Line Interface (CLI) Using the CLI Changing Interfaces. If you change from the CLI to the menu interface, or the reverse, you will remain at the same privilege level. For example, entering the menu command from the Operator level of the CLI takes you to the Operator privilege level in the menu interface.

  • Page 63: How To Move Between Levels

    Using the Command Line Interface (CLI) Using the CLI How To Move Between Levels Change in Levels Example of Prompt, Command, and Result Operator level ProCurve> enable Password:_ Manager level After you enter enable, the Password prompt appears. After you enter the Manager password, the system prompt appears with the # symbol: ProCurve#_...

  • Page 64: Listing Commands And Command Options, Listing Commands Available At Any Privilege Level

    Using the Command Line Interface (CLI) Using the CLI For example, if you use the menu interface to configure an IP address of “X” for VLAN 1 and later use the CLI to configure a different IP address of “Y” for VLAN 1, then “Y”...

  • Page 65

    Using the Command Line Interface (CLI) Using the CLI Typing ? at the Manager level produces this listing: When - - MORE - - appears, use the Space bar or [Return] to list additional commands. Figure 4-4. Example of the Manager-Level Command Listing When - - MORE - - appears, there are more commands in the listing.

  • Page 66: Command Option Displays

    Using the Command Line Interface (CLI) Using the CLI Use [Tab] To Search for or Complete a Command Word. You can use [Tab] to help you find CLI commands or to quickly complete the current word in a command. To do so, type one or more consecutive characters in a command and then press [Tab] (with no spaces allowed).

  • Page 67: Displaying Cli "help", Displaying Cli "help

    Using the Command Line Interface (CLI) Using the CLI Listing Command Options. You can use the CLI to remind you of the options available for a command by entering command keywords followed . For example, suppose you want to see the command options for config­ uring port C5: This example displays the command options for configuring the switch’s console settings.

  • Page 68

    Using the Command Line Interface (CLI) Using the CLI Figure 4-6. Example of Context-Sensitive Command-List Help Displaying Help for an Individual Command. You can display Help for any command that is available at the current context level by entering enough of the command string to identify the command, along with help.

  • Page 69: Configuration Commands And The Context Configuration Modes

    Using the Command Line Interface (CLI) Using the CLI Figure 4-8. Example of Help for a Specific Instance of a Command Note that trying to list the help for an individual command from a privilege level that does not include that command results in an error message. For example, trying to list the help for the interface command while at the global configuration level produces this result: ProCurve# interface help...

  • Page 70

    Using the Command Line Interface (CLI) Using the CLI Lists the commands you ProCurve(eth-C5-C8)#? can use in the port or static trunk context, plus the ProCurve(eth-C5-C8)#? Manager, Operator, and context commands you can execute at this level. In the port context, the first block of commands in the "?" listing show the context-specific commands that will affect only ports C3-C6.

  • Page 71

    Using the Command Line Interface (CLI) Using the CLI VLAN Context . Includes VLAN-specific commands that apply only to the selected VLAN, plus Manager and Operator commands. The prompt for this mode includes the VLAN ID of the selected VLAN. For example, if you had already configured a VLAN with an ID of 100 in the switch: Command executed at configura­...

  • Page 72: Cli Control And Editing

    Using the Command Line Interface (CLI) CLI Control and Editing CLI Control and Editing Keystrokes Function [Ctrl] [A] Jumps to the first character of the command line. or [<] Moves the cursor back one character. [Ctrl] [B] [Ctrl] [C] Terminates a task and displays the command prompt. [Ctrl] [D] Deletes the character at the cursor.

  • Page 73

    Using the Web Browser Interface Contents Overview ............5-2 General Features .

  • Page 74

    Using the Web Browser Interface Overview Overview The Web browser interface built into the switch lets you easily access the switch from a browser-based PC on your network. This lets you do the following: Optimize your network uptime by using the Alert Log and other diagnostic ■...

  • Page 75: General Features

    Using the Web Browser Interface General Features General Features The switch includes these web browser interface features: Switch Configuration: • Ports • VLANs and Primary VLAN • Fault detection • Port monitoring (mirroring) • System information • Enable/Disable Multicast Filtering (IGMP) and Spanning Tree •...

  • Page 76: Starting A Web Browser Interface Session With The Switch

    Using the Web Browser Interface Starting a Web Browser Interface Session with the Switch Starting a Web Browser Interface Session with the Switch You can start a web browser session in the following ways: ■ Using a standalone web browser on a network connection from a PC or UNIX workstation: •...

  • Page 77: Using Procurve Manager (pcm) Or Procurve Manager Plus (pcm+)

    Using the Web Browser Interface Starting a Web Browser Interface Session with the Switch Using ProCurve Manager (PCM) or ProCurve Manager Plus (PCM+) ProCurve Manager and ProCurve Manager Plus are designed for installation on a network management workstation. For this reason, the system require­ ments are different from the system requirements for accessing the switch’s web browser interface from a non-management PC or workstation.

  • Page 78

    Using the Web Browser Interface Starting a Web Browser Interface Session with the Switch First-Time Alert Install Alert Figure 5-1. Example of Status Overview Screen N o t e The above screen appears somewhat different if the switch is configured as a stack Commander.

  • Page 79: Tasks For Your First Web Browser Interface Session, Viewing The "first Time Install" Window

    Using the Web Browser Interface Tasks for Your First Web Browser Interface Session Tasks for Your First Web Browser Interface Session The first time you access the web browser interface, there are three tasks that you should perform: ■ Review the “First Time Install” window Set Manager and Operator passwords ■...

  • Page 80: Creating Usernames And Passwords In The Browser Interface

    Using the Web Browser Interface Tasks for Your First Web Browser Interface Session This window is the launching point for the basic configuration you need to perform to set web browser interface passwords to maintain security and Fault Detection policy, which determines the types of messages that will be displayed in the Alert Log.

  • Page 81

    Using the Web Browser Interface Tasks for Your First Web Browser Interface Session Figure 5-3. The Device Passwords Window To set the passwords: 1. Access the Device Passwords screen by one of the following methods: • If the Alert Log includes a “First Time Install” event entry, double click on this event, then, in the resulting display, click on the secure access to the device link.

  • Page 82: Using The Passwords, Using The User Names

    Using the Web Browser Interface Tasks for Your First Web Browser Interface Session N o t e Passwords you assign in the web browser interface will overwrite previous passwords assigned in either the web browser interface, the Command Prompt, or the switch console. That is, the most recently assigned passwords are the switch’s passwords, regardless of which interface was used to assign the string.

  • Page 83: If You Lose A Password, Online Help For The Web Browser Interface

    Using the Web Browser Interface Tasks for Your First Web Browser Interface Session If You Lose a Password If you lose the passwords, you can clear them by pressing the Clear button on the front of the switch. This action deletes all password and user name protection from all of the switch’s interfaces.

  • Page 84: Support/mgmt Urls Feature

    Using the Web Browser Interface Support/Mgmt URLs Feature Support/Mgmt URLs Feature The Support/Mgmt URLs window enables you to change the World Wide Web Universal Resource Locator (URL) for two functions: ■ Support URL – a support information site for your switch Management Server URL –...

  • Page 85: Support Url, Help And The Management Server Url

    Using the Web Browser Interface Support/Mgmt URLs Feature Support URL This is the site that the switch accesses when you click on the Support tab on the web browser interface. The default URL is: http://www.procurve.com which is the web site for ProCurve’s networking products. Click on the [Support] button on that page and you can get to support informa­...

  • Page 86

    Using the Web Browser Interface Support/Mgmt URLs Feature In the default configuration, the switch uses the URL for accessing the web browser interface help files on the ProCurve web site. Figure 5-7. How To Access Web Browser Interface Online Help 5-14...

  • Page 87: Using The Pcm Server For Switch Web Help

    1. Go to the ProCurve Support web site to get the Device Help files: http://www.hp.com//rnd/device_help/ Copy the Web help files to the PCM server, under: C:\\program files\hewlett-packard\pnm\server\webroot\ rnd\sevice_help\help\hpwnd\webhelp 3. Add an entry, or edit the existing entry in the Discovery portion of the global properties (globalprops.prp) in PCM to redirect the switches to the...

  • Page 88: Status Reporting Features, The Overview Window

    Using the Web Browser Interface Status Reporting Features Status Reporting Features Browser elements covered in this section include: The Overview window (below) ■ ■ Port utilization and status (page 5-17) ■ The Alert log (page 5-20) The Status bar (page 5-22) ■...

  • Page 89: The Port Utilization And Status Displays, Port Utilization

    Using the Web Browser Interface Status Reporting Features Policy Management and Configuration. ProCurve PCM can perform network-wide policy management and configuration of your switch. The Management Server URL field (page 5-13) shows the URL for the management station performing that function. For more information, refer to the documen­ tation provided with the PCM software.

  • Page 90

    Using the Web Browser Interface Status Reporting Features % Error Pkts Rx: All error packets received by the port. (This indicator ■ is a reddish color on many systems.) Although errors received on a port are not propagated to the rest of the network, a consistently high number of errors on a specific port may indicate a problem on the device or network segment connected to the indicated port.

  • Page 91: Port Status

    Using the Web Browser Interface Status Reporting Features Figure 5-11. Display of Numerical Values for the Bar Port Status Port Status Indicators Legend Figure 5-12. The Port Status Indicators and Legend The Port Status indicators show a symbol for each port that indicates the general status of the port.

  • Page 92: The Alert Log, Sorting The Alert Log Entries

    Using the Web Browser Interface Status Reporting Features The Alert Log The web browser interface Alert Log, shown in the lower half of the screen, shows a list of network occurrences, or alerts, that were detected by the switch. Typical alerts are Broadcast Storm, indicating an excessive number of broadcasts received on a port, and Problem Cable, indicating a faulty cable.

  • Page 93: Alert Types And Detailed Views

    Using the Web Browser Interface Status Reporting Features Alert Types and Detailed Views As of April, 2004, the web browser interface generates the following alert types: • Auto Partition • High collision or drop rate • Backup Transition • Loss of Link •...

  • Page 94: The Status Bar

    Using the Web Browser Interface Status Reporting Features Figure 5-14.Example of Alert Log Detail View The Status Bar The Status Bar is displayed in the upper left corner of the web browser interface screen. Figure 5-15 shows an expanded view of the status bar. Most Critical Alert Description Status Indicator Product Name...

  • Page 95: Setting Fault Detection Policy

    Using the Web Browser Interface Status Reporting Features The Status bar consists of four objects: ■ Status Indicator. Indicates, by icon, the severity of the most critical alert in the current display of the Alert Log. This indicator can be one of three shapes and colors as shown in the following table.

  • Page 96

    Using the Web Browser Interface Status Reporting Features Figure 5-16. The Fault Detection Window The Fault Detection screen contains a list box for setting fault detection and response policy. You set the sensitivity level at which a network problem should generate an alert and send it to the Alert Log. To provide the most information on network problems in the Alert Log, the recommended sensitivity level for Log Network Problems is High Sensitivity.

  • Page 97

    Using the Web Browser Interface Status Reporting Features Never. Disables the Alert Log and transmission of alerts (traps) to the ■ management server (in cases where a network management tool such as ProCurve Manager is in use). Use this option when you don’t want to use the Alert Log.

  • Page 98

    Using the Web Browser Interface Status Reporting Features —This page is intentionally unused— 5-26...

  • Page 99

    Switch Memory and Configuration Contents Overview ............6-2 Overview of Configuration File Management .

  • Page 100: Overview Of Configuration File Management, Overview

    Switch Memory and Configuration Overview Overview This chapter describes: ■ How switch memory manages configuration changes How the CLI implements configuration changes ■ ■ How the menu interface and web browser interface implement configu­ ration changes ■ How the switch provides software options through primary/secondary flash image options How to use the switch’s primary and secondary flash options, including ■...

  • Page 101

    Switch Memory and Configuration Overview of Configuration File Management Running Config File: Exists in volatile memory and controls switch ■ operation. If no configuration changes have been made in the CLI since the switch was last booted, the running-config file is identical to the startup-config file.

  • Page 102

    Switch Memory and Configuration Overview of Configuration File Management “permanent”. When you are satisfied that the change is satisfactory, you can make it permanent by executing the write memory command. For example, suppose you use the following command to disable port 5: ProCurve(config)# interface ethernet 5 disable The above command disables port 5 in the running-config file, but not in the startup-config file.

  • Page 103: Using The Cli To Implement Configuration Changes

    Switch Memory and Configuration Using the CLI To Implement Configuration Changes Using the CLI To Implement Configuration Changes The CLI offers these capabilities: Access to the full set of switch configuration features ■ ■ The option of testing configuration changes before making them perma­ nent How To Use the CLI To View the Current Configuration Files.

  • Page 104

    Switch Memory and Configuration Using the CLI To Implement Configuration Changes 3. Observe the switch’s performance with the new parameter settings to verify the effect of your changes. 4. When you are satisfied that you have the correct parameter settings, use the write memory command to copy the changes to the startup-config file.

  • Page 105

    Switch Memory and Configuration Using the CLI To Implement Configuration Changes Disables port 1 in the running configuration, which causes port 1 to block all traffic. ProCurve(config)# interface e 1 disable ProCurve(config)# boot Device will be rebooted, do you want to continue [y/n]? y Press to continue the rebooting process.

  • Page 106: Configuration Changes, Configuration Changes Using The Menu Interface

    Switch Memory and Configuration Using the Menu and Web Browser Interfaces To Implement Configuration Changes How To Reset the startup-config and running-config Files to the Factory-Default Configuration. This command reboots the switch, replacing the contents of the current startup-config and running-config files with the factory-default startup configuration.

  • Page 107

    Switch Memory and Configuration Using the Menu and Web Browser Interfaces To Implement Configuration Changes N o t e The only exception to this operation are two VLAN-related parameter changes that require a reboot—described under “Rebooting To Activate Configuration Changes” on page 6-11. Using in the Menu Interface Save...

  • Page 108: Rebooting From The Menu Interface

    Switch Memory and Configuration Using the Menu and Web Browser Interfaces To Implement Configuration Changes N o t e If you reconfigure a parameter in the CLI and then go to the menu interface without executing a write memory command, those changes are stored only in the running configuration.

  • Page 109: Configuration Changes Using The Web Browser Interface

    Switch Memory and Configuration Using the Menu and Web Browser Interfaces To Implement Configuration Changes Rebooting To Activate Configuration Changes. Configuration changes for most parameters become effective as soon as you save them. However, you must reboot the switch in order to implement a change in the Maximum VLANs to support parameter (To access these parameters, go to the Main menu and select 2.

  • Page 110: Using Primary And Secondary Flash Image Options, Displaying The Current Flash Image Data

    Switch Memory and Configuration Using Primary and Secondary Flash Image Options Using Primary and Secondary Flash Image Options The switch features two flash memory locations for storing switch software image files: ■ Primary Flash: The default storage for a switch software image. ■...

  • Page 111

    Switch Memory and Configuration Using Primary and Secondary Flash Image Options For example, if the switch is using a software version of N.10.XX stored in Primary flash, show version produces the following: ProCurve(config)# show version Image stamp: /sw/code/build/bass(ppne_swt) Mar 17 2006 11:44:02 N.10.XX 2624 Boot Image:...

  • Page 112: Switch Software Downloads

    Switch Memory and Configuration Using Primary and Secondary Flash Image Options ProCurve(config)# show version Image stamp: /sw/code/build/bass(ppne_swt) 1. In this example show Mar 17 2006 11:44:02 version indicates the N.10.XX switch has version 2624 N.10.XX in primary flash. Boot Image: Primary Build Options: QA...

  • Page 113: Local Switch Software Replacement And Removal

    Switch Memory and Configuration Using Primary and Secondary Flash Image Options corrupted, as a result of an interruption, the switch will reboot from secondary flash and you can either copy the secondary image into primary or download another image to primary from an external source. See Appendix A, “File Transfers”.

  • Page 114

    Switch Memory and Configuration Using Primary and Secondary Flash Image Options Syntax: copy flash flash <destination flash> where: destination flash = primary or secondary: For example, to copy the image in secondary flash to primary flash: 1. Verify that there is a valid flash image in the secondary flash location. The following figure indicates that a software image is present in secondary flash.

  • Page 115

    Switch Memory and Configuration Using Primary and Secondary Flash Image Options Syntax: erase flash < primary | secondary > For example, to erase the software image in primary flash, do the following: 1. First verify that a usable flash image exists in secondary flash. The most reliable way to ensure this is to reboot the switch from the flash image you want to retain.

  • Page 116

    Switch Memory and Configuration Using Primary and Secondary Flash Image Options Table 6-2. Comparing the Boot and Reload Commands Actions Included In Included In Note Boot? Reload Save all configuration Optional, Yes, Config changes saved to the changes since the last boot with prompt automatic startup-config file...

  • Page 117

    Switch Memory and Configuration Using Primary and Secondary Flash Image Options For example, to reboot the switch from secondary flash when there are no pending configuration changes in the running-config file: Figure 6-14. Example of Boot Command with Primary/Secondary Flash Option In the above example, typing either a at the second prompt initiates the reboot operation.

  • Page 118

    Switch Memory and Configuration Using Primary and Secondary Flash Image Options Operating Notes Default Boot Source. The switch reboots from primary flash by default unless you specify the secondary flash. Boot Attempts from an Empty Flash Location. In this case, the switch aborts the attempt and displays Image does not exist Operation aborted.

  • Page 119

    Interface Access and System Information Contents Overview ............7-2 Interface Access: Console/Serial Link, Web, and Telnet .

  • Page 120

    Interface Access and System Information Overview Overview This chapter describes how to: ■ View and modify the configuration for switch interface access Use the CLI kill command to terminate a remote session ■ ■ View and modify switch system information For help on how to actually use the interfaces built into the switch, refer to: ■...

  • Page 121: Interface Access: Console/serial Link, Web, And Telnet

    Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet Interface Access: Console/Serial Link, Web, and Telnet Interface Access Features Feature Default Menu Inactivity Time 0 Minutes page 7-4 page 7-6 — (disabled) Inbound Telnet Access Enabled page 7-4 page 7-5 —...

  • Page 122: Menu: Modifying The Interface Access

    Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet Menu: Modifying the Interface Access The menu interface enables you to modify these parameters: ■ Inactivity Time-out Inbound Telnet Enabled ■ Web Agent Enabled ■ To Access the Interface Access Parameters: From the Main Menu, Select...

  • Page 123: Cli: Modifying The Interface Access

    Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet CLI: Modifying the Interface Access Interface Access Commands Used in This Section show console below [no] telnet-server below [no] web-management page 7-6 console page 7-6 local terminal mode page 7-8 Listing the Current Console/Serial Link Configuration.

  • Page 124

    Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet To re-enable inbound Telnet access: ProCurve(config)# telnet-server Outbound Telnet to Another Device. This feature operates indepen­ dently of the telnet-server status and enables you to Telnet to another device that has an IP address.

  • Page 125

    Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet N o t e If you change the Baud Rate or Flow Control settings for the switch, you should make the corresponding changes in your console access device. Oth­ erwise, you may lose connectivity between the switch and your terminal emulator due to differences between the terminal and switch settings for these two parameters.

  • Page 126

    Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet You can also execute a series of console commands and then save the configuration and boot the switch. For example: Configure individual parameters. Save the changes. Boot the switch.

  • Page 127

    Interface Access and System Information Interface Access: Console/Serial Link, Web, and Telnet When invoked in a console session, changes the terminal mode to “raw” (scripting mode) for that console session. (Scripting mode eliminates unwanted control characters that may appear in some scripting languages.) Use this option when the configured terminal mode is either vt100 or ansi, and you want to temporarily use the scripting mode.

  • Page 128: Sessions, Denying Interface Access By Terminating Remote Management

    Interface Access and System Information Denying Interface Access by Terminating Remote Management Sessions Denying Interface Access by Terminating Remote Management Sessions The switch supports up to four management sessions. You can use show ip ssh to list the current management sessions, and kill to terminate a currently running remote session.

  • Page 129: System Information

    Interface Access and System Information System Information System Information System Information Features Feature Default Menu System Name switch product page page page name 7-12 7-14 7-16 System Contact page page page 7-12 7-14 7-16 System Location page page page 7-12 7-14 7-16 MAC Age Time...

  • Page 130: Menu: Viewing And Configuring System Information

    Interface Access and System Information System Information Time Zone: The number of minutes your time zone location is to the West (-) or East (+) of Coordinated Universal Time (formerly GMT). The default 0 means no time zone is configured. For example, Berlin, Germany is in the +1 zone, while Vancouver, Canada is in the -8 zone.

  • Page 131: Cli: Viewing And Configuring System Information

    Interface Access and System Information System Information 3. Refer to the online help provided with this screen for further information on configuration options for these features. 4. When you have finished making changes to the above parameters, press [Enter], then press (for Save) and return to the Main Menu.

  • Page 132

    Interface Access and System Information System Information Configure a System Name, Contact, and Location for the Switch. To help distinguish one switch from another, configure a plain-language identity for the switch. Syntax: hostname <name-string> snmp-server [contact <system contact>] [location <system location>] Both fields allow up to 48 characters.

  • Page 133

    Interface Access and System Information System Information Reconfigure the Age Time for Learned MAC Addresses. This com­ mand corresponds to the MAC Age Interval in the menu interface, and is expressed in seconds. Syntax: mac-age-time <10 . . 1000000> (seconds) For example, to configure the age time to seven minutes: ProCurve(config)# mac-age-time 420 Configure the Time Zone and Daylight Time Rule.

  • Page 134: Web: Configuring System Parameters

    Interface Access and System Information System Information Web: Configuring System Parameters In the web browser interface, you can enter the following system information: ■ System Name System Location ■ System Contact ■ For access to the MAC Age Interval and the Time parameters, use the menu interface or the CLI.

  • Page 135

    Configuring IP Addressing Contents Overview ............8-2 IP Configuration .

  • Page 136

    Configuring IP Addressing Overview Overview You can configure IP addressing through all of the switch’s interfaces. You can also: ■ Easily edit a switch configuration file to allow downloading the file to multiple switches without overwriting each switch’s unique gateway and VLAN 1 IP addressing.

  • Page 137: Ip Configuration

    Configuring IP Addressing IP Configuration IP Configuration IP Configuration Features Feature Default Menu IP Address and Subnet Mask DHCP/Bootp page 8-5 page 8-7 page 8-11 Multiple IP Addresses on a VLAN page 8-9 Default Gateway Address none page 8-5 page 8-7 page 8-11 Packet Time-To-Live (TTL) 64 seconds...

  • Page 138: Just Want A Quick Start With Ip Addressing?, Ip Addressing With Multiple Vlans

    Configuring IP Addressing IP Configuration then the switch uses this gateway, even if a different gateway is received via DHCP or Bootp on the primary VLAN. (This is also true for TimeP and a non- default Time-To-Live.) See “Notes” on page 8-4 and refer to the chapter on Virtual LANs in the Advanced Traffic Management Guide.

  • Page 139: Ip Addressing In A Stacking Environment, Menu: Configuring Ip Address, Gateway, And Time-to-live (ttl)

    Configuring IP Addressing IP Configuration The IP addressing used in the switch should be compatible with your ■ network. That is, the IP address must be unique and the subnet mask must be appropriate for your IP network. ■ If you change the IP address through either Telnet access or the web browser interface, the connection to the switch will be lost.

  • Page 140

    Configuring IP Addressing IP Configuration For descriptions of these parameters, see the online Help for this screen. Before using the DHCP/ Bootp option, refer to “DHCP/Bootp Operation” on page 8-12. Figure 8-1. E xample of the IP Service Configuration Screen without Multiple VLANs Configured 2. Press (for Edit).

  • Page 141: Cli: Configuring Ip Address, Gateway, And Time-to-live (ttl)

    Configuring IP Addressing IP Configuration CLI: Configuring IP Address, Gateway, and Time-To- Live (TTL) IP Commands Used in This Section show ip page 8-7 vlan <vlan-id> ip page 8-8 address ip default-gateway page 8-11 ip ttl page 8-11 Viewing the Current IP Configuration. The following command displays the IP addressing for each VLAN configured in the switch.

  • Page 142

    Configuring IP Addressing IP Configuration Figure 8-3. Example of Show IP Listing with Non-Default IP Addressing Configured Configure an IP Address and Subnet Mask. The following command includes both the IP address and the subnet mask. You must either include the ID of the VLAN for which you are configuring IP addressing or go to the context configuration level for that VLAN.

  • Page 143

    Configuring IP Addressing IP Configuration Configure Multiple IP Addresses on a VLAN (Multinetting). You can configure one primary IP address per VLAN and up to seven secondary IP addresses for the same VLAN. That is, the switch enables you to assign up to eight networks to a VLAN.

  • Page 144

    Configuring IP Addressing IP Configuration If you then wanted to multinet the default VLAN, you would do the following: The secondary IP addresses in a VLAN are listed immediately after the primary IP address for the VLAN. Figure 8-5. Example of Multinetting on the Default VLAN N o t e The Internet (IP) Service screen in the Menu interface (figure 8-1 on page 8-6) displays only the primary IP address for each VLAN.

  • Page 145: Web: Configuring Ip Addressing, How Ip Addressing Affects Switch Operation

    Configuring IP Addressing IP Configuration Configure the Optional Default Gateway. Using the Global configura­ tion level, you can assign one default gateway to the switch. Syntax: ip default-gateway <ip-address> For example: ProCurve(config)# ip default-gateway 10.28.227.115 Configure Time-To-Live (TTL). Use this command at the Global config prompt to set the time that a packet outbound from the switch can exist on the network.

  • Page 146: Dhcp/bootp Operation

    Configuring IP Addressing IP Configuration Table 8-1. Features Available With and Without IP Addressing on the Switch Features Available Without an IP Address Additional Features Available with an IP Address and Subnet Mask • Direct-connect access to the CLI and the menu interface. • Web browser interface access, with configuration, security, and diagnostic tools, plus the Alert Log for • Stacking Candidate or Stack Member...

  • Page 147

    Configuring IP Addressing IP Configuration 2. When a DHCP or Bootp server receives the request, it replies with a previously configured IP address and subnet mask for the switch. The switch also receives an IP Gateway address if the server has been config­ ured to provide one.

  • Page 148

    Configuring IP Addressing IP Configuration operation, Bootp configurations are always the same for a specific receiving device. That is, the Bootp server replies to a request with a configuration previously stored in the server and designated for the requesting device. Bootp Database Record Entries.

  • Page 149: Network Preparations For Configuring Dhcp/bootp

    Configuring IP Addressing IP Configuration N o t e The above Bootp table entry is a sample that will work for the switch when the appropriate addresses and file names are used. Network Preparations for Configuring DHCP/Bootp In its default configuration, the switch is configured for DHCP/Bootp opera­ tion.

  • Page 150: File Downloads, Operating Rules For Ip Preserve, Ip Preserve: Retaining Vlan-1 Ip Addressing Across Configuration

    Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads IP Preserve enables you to copy a configuration file to multiple switches that use the same operating-system software while retaining the individual IP address and subnet mask on VLAN 1 in each switch, and the Gateway IP address assigned to the switch.

  • Page 151

    Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads ; J9022A Configuration Editor; Created on release #N.10.XX hostname "ProCurve Switch" time daylight-time-rule None Entering "ip preserve" in the last line of a configuration password manager file implements IP Preserve when the file is Password operator downloaded to the switch and the switch reboots.

  • Page 152

    Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads ; J9022A Configuration Editor; Created on release #N.10.XX hostname "ProCurve Switch" time daylight-time-rule None interface 11 no lacp interface 12 no lacp exit trunk 11-12 Trk1 Trunk Using figure 8-7, above, switches 1 - 3 ignore these ip default-gateway 10.22.32.1 entries because the file implements IP Preserve and...

  • Page 153

    Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads To summarize the IP Preserve effect on IP addressing: ■ If the switch received its most recent VLAN 1 IP addressing from a DHCP/ Bootp server, it ignores the IP Preserve command when it downloads the configuration file, and implements whatever IP addressing instructions are in the configuration file.

  • Page 154

    Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads — This page is intentionally unused. — 8-20...

  • Page 155

    Time Protocols Contents Overview ............9-2 TimeP Time Synchronization .

  • Page 156: Timep Time Synchronization, Overview, Sntp Time Synchronization

    Time Protocols Overview Overview This chapter describes: ■ SNTP Time Protocol Operation Timep Time Protocol Operation ■ Using time synchronization ensures a uniform time among inter operating devices. This helps you to manage and troubleshoot switch operation by attaching meaningful time data to event and error messages. The switch offers TimeP and SNTP (Simple Network Time Protocol) and a timesync command for changing the time protocol selection (or turning off time protocol operation).

  • Page 157: Turning Off Time Protocol Operation, General Steps For Running A Time Protocol On The Switch

    Time Protocols Overview: Selecting a Time Synchronization Protocol or Turning Off Time Protocol Operation N o t e To use Broadcast mode, the switch and the SNTP server must be in the same subnet. Unicast Mode: The switch requests a time update from the config­ ■...

  • Page 158: Sntp: Viewing, Selecting, And Configuring

    Time Protocols SNTP: Viewing, Selecting, and Configuring In the System Information screen of the Menu interface, set the Time ■ Synch Method parameter to None, then press [Enter], then [S] (for Save). In the Global config level of the CLI, execute no timesync. ■...

  • Page 159: Menu: Viewing And Configuring Sntp

    Time Protocols SNTP: Viewing, Selecting, and Configuring Table 9-1.SNTP Parameters SNTP Parameter Operation Time Sync Used to select either SNTP, TIMEP, or None as the time synchronization method. Method SNTP Mode Disabled The Default. SNTP does not operate, even if specified by the Menu interface Time Sync Method parameter or the CLI timesync command.

  • Page 160

    Time Protocols SNTP: Viewing, Selecting, and Configuring Time Protocol Selection Parameter – TIMEP – SNTP – None Figure 9-1. The System Information Screen (Default Values) 2. Press (for ). The cursor moves to the System Name field. Edit 3. Use [v] to move the cursor to the Time Sync Method field. 4. Use the Space bar to select SNTP, then press [v] once to display and move to the SNTP Mode field.

  • Page 161

    Time Protocols SNTP: Viewing, Selecting, and Configuring ii. Enter the IP address of the SNTP server you want the switch to use for time synchronization. Note: This step replaces any previously configured server IP address. If you will be using backup SNTP servers (requires use of the CLI), then see “SNTP Unicast Time Polling with Multiple SNTP Servers”...

  • Page 162: Cli: Viewing And Configuring Sntp, Viewing The Current Sntp Configuration

    Time Protocols SNTP: Viewing, Selecting, and Configuring CLI: Viewing and Configuring SNTP CLI Commands Described in this Section show sntp page 9-8 [no] timesync pages 9-9 and ff., 9-12 sntp broadcast page 9-9 sntp unicast page 9-10 sntp server pages 9-10 and ff. Protocol Version page 9-12 poll-interval...

  • Page 163: Configuring (enabling Or Disabling) The Sntp Mode

    Time Protocols SNTP: Viewing, Selecting, and Configuring Even though, in this example, TimeP is the current time synchronous method, the switch maintains the SNTP configuration. Figure 9-3. Example of SNTP Configuration When SNTP Is Not the Selected Time Synchronization Method Configuring (Enabling or Disabling) the SNTP Mode Enabling the SNTP mode means to configure it for either broadcast or unicast mode.

  • Page 164

    Time Protocols SNTP: Viewing, Selecting, and Configuring 2. Select SNTP as the time synchronization mode. 3. Enable SNTP for Broadcast mode. 4. View the SNTP configuration again to verify the configuration. The commands and output would appear as follows: show sntp displays the SNTP configuration and also shows that TimeP is the currently active time synchronization mode.

  • Page 165

    Time Protocols SNTP: Viewing, Selecting, and Configuring N o t e Deleting an SNTP server when only one is configured disables SNTP unicast operation. For example, to select SNTP and configure it with unicast mode and an SNTP server at 10.28.227.141 with the default server version (3) and default poll interval (720 seconds): ProCurve(config)# timesync sntp Selects SNTP.

  • Page 166

    Time Protocols SNTP: Viewing, Selecting, and Configuring Deletes unicast SNTP server entry. Re-enters the unicast server with a non- default protocol version. show sntp displays the result. Figure 9-6. Example of Specifying the SNTP Protocol Version Number Changing the SNTP Poll Interval. Syntax: sntp poll-interval <...

  • Page 167

    Time Protocols SNTP: Viewing, Selecting, and Configuring Figure 9-7. Example of SNTP with Time Sychronization Disabled Disabling the SNTP Mode. If you want to prevent SNTP from being used even if selected by timesync (or the Menu interface’s Time Sync Method param­ eter), configure the SNTP mode as disabled.

  • Page 168: Timep: Viewing, Selecting, And Configuring

    Time Protocols TimeP: Viewing, Selecting, and Configuring TimeP: Viewing, Selecting, and Configuring TimeP Feature Default Menu view the Timep time synchronization page 9-15 page 9-17 — configuration select Timep as the time synchronization TIMEP page 9-13 pages 9-18 — method disable time synchronization timep page 9-15...

  • Page 169: Menu: Viewing And Configuring Timep

    Time Protocols TimeP: Viewing, Selecting, and Configuring Menu: Viewing and Configuring TimeP To View, Enable, and Modify the TimeP Protocol: 1. From the Main Menu, select: 2. Switch Configuration... 1. System Information Time Protocol Selection Parameter – TIMEP (the default) –...

  • Page 170: Cli: Viewing And Configuring Timep

    Time Protocols TimeP: Viewing, Selecting, and Configuring • Use the Space bar to select the mode. Manual i. Press [>] to move the cursor to the Server field. Address ii. Enter the IP address of the TimeP server you want the switch to use for time synchronization.

  • Page 171: Viewing The Current Timep Configuration

    Time Protocols TimeP: Viewing, Selecting, and Configuring This section describes how to use the CLI to view, enable, and configure TimeP parameters. Viewing the Current TimeP Configuration This command lists both the time synchronization method (TimeP, SNTP, or None) and the TimeP configuration, even if SNTP is not the selected time protocol.

  • Page 172: Configuring (enabling Or Disabling) The Timep Mode

    Time Protocols TimeP: Viewing, Selecting, and Configuring Configuring (Enabling or Disabling) the TimeP Mode Enabling the TimeP mode means to configure it for either broadcast or unicast mode. Remember that to run TimeP as the switch’s time synchronization protocol, you must also select TimeP as the time synchronization method by using the CLI timesync command (or the Menu interface Time Sync Method parameter).

  • Page 173

    Time Protocols TimeP: Viewing, Selecting, and Configuring The commands and output would appear as follows: show timep displays the TimeP configuration and also shows that SNTP is the currently active time synchronization mode. show timep again displays the TimeP configuration and shows that TimeP is now the currently active time synchronization mode.

  • Page 174

    Time Protocols TimeP: Viewing, Selecting, and Configuring Figure 9-13. Example of Configuring Timep for Manual Operation Changing the TimeP Poll Interval. This command lets you specify how long the switch waits between time polling intervals. The default is 720 minutes and the range is 1 to 9999 minutes.

  • Page 175: Sntp Unicast Time Polling With Multiple Sntp Servers, Address Prioritization

    Time Protocols SNTP Unicast Time Polling with Multiple SNTP Servers Disabling the TimeP Mode. Disabling the TimeP mode means to configure it as disabled. (Disabling TimeP prevents the switch from using it as the time synchronization protocol, even if it is the selected option.) Time Sync Method Syntax:...

  • Page 176: Adding And Deleting Sntp Server Addresses

    Time Protocols SNTP Unicast Time Polling with Multiple SNTP Servers accordingly, with the lowest decimal value assigned as the primary address, the second-lowest decimal value assigned as the next address, and the third- lowest decimal value as the last address. If the first octet is the same between two of the addresses, the second octet is compared, and so on.

  • Page 177: Addresses Configured

    Time Protocols SNTP Unicast Time Polling with Multiple SNTP Servers Deleting Addresses. To delete an address, you must use the CLI. If there are multiple addresses and you delete one of them, the switch re-orders the address priority. (See “Address Prioritization” on page 9-21.) Syntax: no sntp server <ip-addr>...

  • Page 178: Sntp Messages In The Event Log

    Time Protocols SNTP Messages in the Event Log SNTP Messages in the Event Log If an SNTP time change of more than three seconds occurs, the switch’s event log records the change. SNTP time changes of less than three seconds do not appear in the Event Log.

  • Page 179

    Port Status and Basic Configuration Contents Overview ........... . . 10-3 Viewing Port Status and Configuring Port Parameters .

  • Page 180

    Port Status and Basic Configuration Contents Messages Related to Prioritization ......10-31 Troubleshooting Prioritization ......10-31 Using Friendly (Optional) Port Names .

  • Page 181: Viewing Port Status And Configuring Port Parameters, Overview

    Port Status and Basic Configuration Overview Overview This chapter describes how to view the current port configuration and how to configure ports to non-default settings, including ■ Enable/Disable Mode (speed and duplex) ■ ■ Flow Control ■ Broadcast Limit Auto-MDIX ■...

  • Page 182

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Table 10-1. Status and Parameters for Each Port Type Status or Description Parameter Enabled Yes (default): The port is ready for a network connection. No: The port will not operate, even if properly connected in a network. Use this setting, for example, if the port needs to be shut down for diagnostic purposes or while you are making topology changes.

  • Page 183: Menu: Viewing Port Status And Configuring Port Parameters

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Status or Description Parameter Flow Control • Disabled (default): The port does not generate flow control packets, and drops any flow control packets it receives. • Enabled: The port uses 802.3x Link Layer Flow Control, generates flow control packets, and processes received flow control packets.

  • Page 184

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters In this example, ports A7 and A8 have previously been configured as a trunk group. Figure 10-1. Example of the Port Status Screen Using the Menu To Configure Ports. N o t e The menu interface uses the same screen for configuring both individual ports and port trunk groups.

  • Page 185: Cli: Viewing Port Status And Configuring Port Parameters, Using The Cli To View Port Status

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters 2. Press (for Edit). The cursor moves to the Enabled field for the first port. 3. Refer to the online help provided with this screen for further information on configuration options for these features.

  • Page 186

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Feature Show Interfaces Brief Show Interfaces Config Mode (Configured) MDIX Mode Operating Configured * There is also the show interfaces [< port-number >] option, which displays port statistics. Refer to “Viewing Port and Trunk Group Statistics and Flow Control Status”...

  • Page 187: Displaying Spanning Tree Configuration Details

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters ProCurve# show interface brief Current Operating Mode Status and Counters - Port Status | Intrusion Flow Bcast Port Type | Alert Enabled Status Mode Mode Ctrl Limit ----- --------- + --------- ------- ------ ---------- ----- ----- ------ 100/1000T | No Down 1000FDx...

  • Page 188: Using The Cli To Configure Ports

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters You can also use this command to view spanning tree parameters on a static trunk (see page 11-7). For information on how to configure spanning tree, see the chapter on “Spanning-Tree Operation” in the Advanced Traffic Manage­ ment Guide.

  • Page 189: Using The Cli To Configure A Broadcast Limit

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters ProCurve(eth-C8)# enable ProCurve(eth-C8)# speed-duplex 100-full ProCurve(eth-C8)# flow-control Using the CLI To Configure a Broadcast Limit The switches covered in this guide use per-port broadcast-limit settings. This command operates at the port context level to configure an individual instance of the broadcast limit for the ports included in a given context.

  • Page 190: Configuring Hp Auto-mdix, Manual Auto-mdix Override

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Configuring HP Auto-MDIX Copper ports on the switch can automatically detect the type of cable config­ uration (MDI or MDI-X) on a connected device and adjust to operate appro­ priately.

  • Page 191

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Table 10-1. Cable Types for Auto and Manual MDI/MDI-X Settings MDI/MDI-X Device Type Setting PC or Other MDI Device Type Switch, Hub, or Other MDI-X Device Manual MDI Crossover Cable Straight-Through Cable Manual MDI-X...

  • Page 192

    Port Status and Basic Configuration Viewing Port Status and Configuring Port Parameters Per-Port MDI Configuration Figure 10-8. Example of Displaying the Current MDI Configuration Per-Port MDI Operating Mode Figure 10-9. Example of Displaying the Current MDI Operating Mode N o t e Port Response to Switch Software Updates ■...

  • Page 193: Web: Viewing Port Status And Configuring Port Parameters, Jumbo Packets

    Port Status and Basic Configuration Jumbo Packets Web: Viewing Port Status and Configuring Port Parameters In the web browser interface: Click on the Configuration tab. Click on Port Configuration. Select the ports you want to modify and click on Modify Selected Ports. After you make the desired changes, click on Apply Settings.

  • Page 194: Terminology, Operating Rules

    Port Status and Basic Configuration Jumbo Packets Terminology Jumbo Packet: An IP packet exceeding 1522 bytes in size. The maximum Jumbo packet size is 9220 bytes. (This size includes 4 bytes for the VLAN tag.) Jumbo VLAN: A VLAN configured to allow inbound jumbo traffic. All ports belonging to a jumbo and operating at 1 Gbps or higher can receive jumbo packets from external devices.

  • Page 195: Configuring Jumbo Packet Operation, Overview

    Port Status and Basic Configuration Jumbo Packets traffic from devices on either VLAN. For a method to allow only some ports in a VLAN to receive jumbo traffic, refer to “Operating Notes for Jumbo Traffic-Handling” on page 10-20. Configuring Jumbo Packet Operation Command Page show vlans...

  • Page 196: Viewing The Current Jumbo Configuration

    Port Status and Basic Configuration Jumbo Packets Viewing the Current Jumbo Configuration Syntax: show vlans Lists the static VLANs configured on the switch and includes a Jumbo column to indicate which VLANs are configured to support inbound jumbo traffic. All ports belonging to a jumbo-enabled VLAN can receive jumbo traffic.

  • Page 197

    Port Status and Basic Configuration Jumbo Packets Indicates which static VLANs are configured to enable jumbo packets. Figure 10-11. Example of Listing the VLAN Memberships for a Range of Ports Syntax: show vlans < vid > This command shows port membership and jumbo configuration for the specified <...

  • Page 198: Enabling Or Disabling Jumbo Traffic On A Vlan, Operating Notes For Jumbo Traffic-handling

    Port Status and Basic Configuration Jumbo Packets Enabling or Disabling Jumbo Traffic on a VLAN Syntax: vlan < vid > jumbo [ no ] vlan < vid > jumbo Configures the specified VLAN to allow jumbo packets on all ports on the switch that belong to that VLAN. If the VLAN is not already configured on the switch, vlan <...

  • Page 199

    Port Status and Basic Configuration Jumbo Packets When a port is not a member of any jumbo-enabled VLAN, it drops all ■ jumbo traffic. If the port is receiving “excessive” inbound jumbo traffic, the port generates an Event Log message to notify you of this condition. This same condition generates a Fault-Finder message in the Alert log of the switch’s web browser interface, and also increments the switch’s “Giant Rx”...

  • Page 200: Troubleshooting

    Port Status and Basic Configuration Jumbo Packets Non-Jumbo VLAN Jumbo-Enabled VLAN VLAN 20 VLAN 10 Port 3 belongs to both VLAN 10 and VLAN 20. Jumbo packets received inbound on port 3 can be forwarded out the Non-Jumbo ports 4, 5, and 6. Figure 10-13.

  • Page 201: Qos Pass-through Mode, General Operation

    Port Status and Basic Configuration QoS Pass-Through Mode QoS Pass-Through Mode QoS Pass-Through mode is designed to enhance the performance of line-rate traffic transfers through the switches covered in this guide. This feature should only be used in environments where Quality of Service (QoS) is not of major importance, but where lossless data transfers are key.

  • Page 202: Priority Mapping With And Without Qos Pass-through Mode, How To Enable/disable Qos Pass-through Mode

    Port Status and Basic Configuration QoS Pass-Through Mode Any 802.1p tagging on a received packet, or any tag added to a ■ received frame by the switch via its QoS configuration, will be preserved as it is transmitted from the switch. Note As stated earlier, use of this QoS-Passthrough-Mode feature generally assumes that QoS tagged packets are not being sent through the switch.

  • Page 203

    Port Status and Basic Configuration QoS Pass-Through Mode Syntax: [no] qos-passthrough-mode write memory reload The above command sequence enables QoS pass-through mode. The no form of the command sequence disables QoS pass-through mode. (Default: Enabled) For example: ProCurveconfig)# qos-passthrough-mode Command will take effect after saving configuration and reboot ProCurveconfig)# write memory ProCurve(config)# reload...

  • Page 204: Configuring Port-based Priority For Incoming Packets, The Role Of 802.1q Vlan Tagging

    Port Status and Basic Configuration QoS Pass-Through Mode Configuring Port-Based Priority for Incoming Packets Feature Default Menu Assigning a priority level to traffic on the basis Disabled page 10-29 of incoming port When network congestion occurs, it is important to move traffic on the basis of relative importance.

  • Page 205: Outbound Port Queues And Packet Priority Settings

    Port Status and Basic Configuration QoS Pass-Through Mode Outbound Port Queues and Packet Priority Settings Ports on the ProCurve switches have the following outbound port queue structure: Switch Model Outbound Port Queues Switch 6108 Series 5300xl Switch Series 4100gl Switch Series 3400cl Switch Series 2600, 2600-PWR Switch Series 2800 Switch...

  • Page 206: Operating Rules For Port-based Priority

    Port Status and Basic Configuration QoS Pass-Through Mode A tagged packet with an 802.1p priority setting of 0 (zero) coming into the ■ switch on port A10 and leaving the switch through any other port config­ ured as a tagged VLAN member would leave the switch as a tagged packet with a priority level of 1.

  • Page 207: Configuring And Viewing Port-based Priority

    Port Status and Basic Configuration QoS Pass-Through Mode Trunked ports do not allow non-default (1 - 7) port-based priority settings. ■ If you configure a non-default port-based priority value on a port and then add the port to a port trunk, then the port-based priority for that port is returned to the default “0”.

  • Page 208: Messages Related To Prioritization, Troubleshooting Prioritization

    Port Status and Basic Configuration QoS Pass-Through Mode ProCurve Switch 2810-48G(config)# int 1-3 qos priority 1 Ports 1-3 are now ProCurve Switch 2810-48G(config)# write mem configured to assign a ProCurve Switch 2810-48G(config)# show config priority level of “1” (Low) to untagged, Startup configuration: incoming traffic.

  • Page 209: Using Friendly (optional) Port Names, Configuring And Operating Rules For Friendly Port Names

    Port Status and Basic Configuration Using Friendly (Optional) Port Names Using Friendly (Optional) Port Names Feature Default Menu Configure Friendly Port Names Standard Port page 32 Numbering Display Friendly Port Names page 34 This feature enables you to assign alphanumeric port names of your choosing to augment automatically assigned numeric port names.

  • Page 210: Configuring Friendly Port Names

    Port Status and Basic Configuration Using Friendly (Optional) Port Names To retain friendly port names across reboots, you must save the current ■ running-configuration to the startup-config file after entering the friendly port names. (In the CLI, use the write memory command.) Configuring Friendly Port Names Syntax: interface <port-list>...

  • Page 211

    Port Status and Basic Configuration Using Friendly (Optional) Port Names Configuring the Same Name for Multiple Ports. Suppose that you want to use ports A5 through A8 as a trunked link to a server used by a drafting group. In this case you might configure ports A5 through A8 with the name “Draft-Server:Trunk”.

  • Page 212: Displaying Friendly Port Names With Other Port Data

    Port Status and Basic Configuration Using Friendly (Optional) Port Names Displaying Friendly Port Names with Other Port Data You can display friendly port name data in the following combinations: show name: Displays a listing of port numbers with their corresponding ■...

  • Page 213

    Port Status and Basic Configuration Using Friendly (Optional) Port Names Port Without a "Friendly" Name Friendly port names assigned in previous examples. Figure 10-19. E xample of Friendly Port Name Data for Specific Ports on the Switch Including Friendly Port Names in Per-Port Statistics Listings. A friendly port name configured to a port is automatically included when you display the port’s statistics output.

  • Page 214

    Port Status and Basic Configuration Using Friendly (Optional) Port Names For a given port, if a friendly port name does not exist in the running-config file, the Name line in the above command output appears as: Name not assigned To Search the Configuration for Ports with Friendly Port Names. This option tells you which friendly port names have been saved to the startup­...

  • Page 215

    Port Trunking Contents Overview ........... . . 11-2 Port Status and Configuration .

  • Page 216: Port Status And Configuration, Overview

    Port Trunking Overview Overview This chapter describes creating and modifying port trunk groups. This includes non-protocol trunks and LACP (802.3ad) trunks. Port Status and Configuration Feature Default Menu viewing port trunks page 11-8 page 11-10 page 11-16 configuring a static trunk none page 11-8 page 11-14...

  • Page 217: Port Connections And Configuration, Link Connections, Port Trunk Options And Operation

    Port Trunking Port Status and Configuration The multiple physical links in a trunk behave as one logical link Switch 2: port c1 port a1 Switch 1: port a2 port c2 Ports a2 and Ports c1 - c4 port a3 port c3 a4 - a6 are configured port a4...

  • Page 218: Trunk Configuration Methods

    Port Trunking Port Status and Configuration Fault Tolerance: If a link in a port trunk fails, the switch redistributes traffic originally destined for that link to the remaining links in the trunk. The trunk remains operable as long as there is at least one link in operation. If a link is restored, that link is automatically included in the traffic distribution again.

  • Page 219

    Port Trunking Port Status and Configuration Table 11-1. Trunk Types Used in Static and Dynamic Trunk Groups Trunking Method LACP Trunk Dynamic Static Table 11-2. Trunk Configuration Protocols Protocol Trunking Options LACP Provides dynamic and static LACP trunking options. (802.3ad) •...

  • Page 220

    Port Trunking Port Status and Configuration Table 11-3. General Operating Rules for Port Trunks Media: All ports on both ends of a trunk group must have the same media type and mode (speed and duplex). The switch blocks any trunked links that do not conform to this rule. (For the switches covered in this guide, ProCurve recommends Auto Auto-10 leaving the port Mode setting at...

  • Page 221

    Port Trunking Port Status and Configuration Spanning Tree: Spanning Tree operates as a global setting on the switch (one instance of Spanning Tree per switch). However, you can adjust Spanning Tree parameters on a per-port basis. A static trunk of any type appears in the Spanning Tree configuration display, and you can configure Spanning Tree parameters for a static trunk in the same way that you would configure Spanning Tree parameters on a non-trunked port.

  • Page 222: Menu: Viewing And Configuring A Static Trunk Group

    Port Trunking Port Status and Configuration Menu: Viewing and Configuring a Static Trunk Group Important Configure port trunking before you connect the trunked links to another switch, routing switch, or server. Otherwise, a broadcast storm could occur. (If you need to connect the ports before configuring them for trunking, you can temporarily disable the ports until the trunk is configured.

  • Page 223

    Port Trunking Port Status and Configuration • All ports in a trunk must have the same media type and mode (such as 10/100TX set to 100FDx, or 100FX set to 100FDx). The flow control settings must also be the same for all ports in a given trunk. To verify these settings, see “Viewing Port Status and Configuring Port Param­...

  • Page 224: Dynamic Port Trunk Group, Using The Cli To View Port Trunks

    Port Trunking Port Status and Configuration 8. Connect the trunked ports on the switch to the corresponding ports on the opposite device. If you previously disabled any of the trunked ports on the switch, enable them now. (See “Viewing Port Status and Configur­ ing Port Parameters”...

  • Page 225

    Port Trunking Port Status and Configuration Using a port list specifies, for switch ports in a static trunk group, only the ports you want to view. In this case, the command specifies ports A5 through A7. However, because port A6 is not in a static trunk group, it does not appear in the resulting listing: Port A5 appears with an example of a name that you can optionally assign using the Friendly Port Names feature.

  • Page 226

    Port Trunking Port Status and Configuration Listing Static LACP and Dynamic LACP Trunk Data. This command lists data for only the LACP-configured ports. Syntax: show lacp In the following example, ports A1 and A2 have been previously configured for a static LACP trunk. (For more on “Active”, see table 11-5 on page 11-20.) Figure 11-6.

  • Page 227: Using The Cli To Configure A Static Or Dynamic Trunk Group

    Port Trunking Port Status and Configuration “Up” Links Standby Link Figure 11-7. Example of a Dynamic LACP Trunk with One Standby Link Using the CLI To Configure a Static or Dynamic Trunk Group I m p o r t a n t Configure port trunking before you connect the trunked links between switches.

  • Page 228

    Port Trunking Port Status and Configuration Configuring a Static Trunk or Static LACP Trunk Group. For switches covered in this guide: Syntax: trunk <port-list> < trk1 ... trk24 > < trunk | lacp > The following example uses ports C4 - C6 to create a non-protocol static trunk group with the group name of Trk2.

  • Page 229

    Port Trunking Port Status and Configuration Switch “A” Switch “B” with ports set with ports set to LACP to LACP passive (the passive (the default). default). Dynamic LACP trunk cannot automatically form because both ends of the links are LACP passive. (In this case STP blocking is needed to prevent a loop.

  • Page 230: Web: Viewing Existing Port Trunk Groups, Trunk Group Operation Using Lacp

    Port Trunking Port Status and Configuration Syntax: no interface <port-list> lacp In this example, port C6 belongs to an operating, dynamic LACP trunk. To remove port C6 from the dynamic trunk and return it to passive LACP, you would do the following: ProCurve>(config)# no interface c6 lacp ProCurve>(config)# interface c6 lacp passive Note that in the above example, if the port on the other end of the link is...

  • Page 231

    Port Trunking Port Status and Configuration N o t e Dynamic LACP trunks operate only in the default VLAN (unless GVRP is enabled and Forbid is used to prevent the trunked ports from joining the default VLAN). Thus, if an LACP dynamic trunk forms using ports that are not in the default VLAN, the trunk will automatically move to the default VLAN unless GVRP operation is configured to prevent this from occurring.

  • Page 232

    Port Trunking Port Status and Configuration Table 11-4. LACP Trunk Types LACP Port Trunk Operation Configuration 802.3ad-compliant Dynamic LACP This option automatically establishes an trunk group, with LACP for the port Type parameter and DynX for the port Group name, where X is an automatically assigned value 1 to 24 depending on how many dynamic and static trunks are currently on the switch.

  • Page 233: Default Port Operation

    Port Trunking Port Status and Configuration Default Port Operation In the default configuration, all ports are configured for passive LACP. How­ ever, if LACP is not configured, the port will not try to detect a trunk configuration and will operate as a standard, untrunked port. N o t e Passive and active LACP port will pause and listen for LACP packets once a link is established.

  • Page 234

    Port Trunking Port Status and Configuration Table 11-5. LACP Port Status Data Status Name Meaning Port Numb Shows the physical port number for each port configured for LACP operation (C1, C2, C3 . . .). Unlisted port numbers indicate that the missing ports are assigned to a static Trunk group or are not configured for any trunking.

  • Page 235: Lacp Notes And Restrictions

    Port Trunking Port Status and Configuration LACP Notes and Restrictions 802.1X (Port-Based Access Control) Configured on a Port. To main­ tain security, LACP is not allowed on ports configured for 802.1X authenticator operation. If you configure port security on a port on which LACP (active or passive) is configured, the switch removes the LACP configuration, displays a notice that LACP is disabled on the port(s), and enables 802.1X on that port.

  • Page 236

    Port Trunking Port Status and Configuration Static LACP Trunks. Where a port is configured for LACP (Active or Passive), but does not belong to an existing trunk group, you can add that port to a static trunk. Doing so disables dynamic LACP on that port, which means you must manually configure both ends of the trunk.

  • Page 237: Trunk Group Operation Using The "trunk" Option, How The Switch Lists Trunk Data

    Port Trunking Port Status and Configuration Half-Duplex and/or Different Port Speeds Not Allowed in LACP Trunks. The ports on both sides of an LACP trunk must be configured for the same speed and for full-duplex (FDx). The 802.3ad LACP standard speci­ fies a full-duplex (FDx) requirement for LACP trunking.

  • Page 238: Outbound Traffic Distribution Across Trunked Links

    Port Trunking Port Status and Configuration Interface Option Dynamic LACP Static LACP Static Non-Protocol Trunk Group Trunk Group Trunk Group Menu Interface CLI: show trunk show interfaces show lacp show spanning-tree show igmp show config Outbound Traffic Distribution Across Trunked Links Both trunk group options (LACP and Trunk) use source-destination address pairs (SA/DA) for distributing outbound traffic over trunked links.

  • Page 239

    Port Trunking Port Status and Configuration Switch Switch Figure 11-10. Example of Port-Trunked Network Table 11-6. Example of Link Assignments in a Trunk Group (SA/DA Distribution) Source: Destination: Link: Node A Node W Node B Node X Node C Node Y Node D Node Z Node A...

  • Page 240

    Port Trunking Port Status and Configuration —This page is intentionally unused— 11-26...

  • Page 241

    Configuring for Network Management Applications Contents Using SNMP Tools To Manage the Switch ......12-3 Overview ..........12-3 SNMP Management Features .

  • Page 242: Table Of Contents

    Configuring for Network Management Applications Contents Configuring LLDP Operation ....... . 12-32 Viewing the Current Configuration .

  • Page 243: Using Snmp Tools To Manage The Switch, Overview

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Using SNMP Tools To Manage the Switch Overview You can manage the switch via SNMP from a network management station running an application such as ProCurve Manager (PCM) or ProCurve Manager Plus (PCM+).

  • Page 244: Snmp Management Features, Configuring For Snmp Access To The Switch

    (RFC 1515), and others The switch SNMP agent also uses certain variables that are included in a Hewlett-Packard proprietary MIB (Management Information Base) file. To ensure that you have the latest version in the database of your SNMP network management tool, you can copy the MIB file from the ProCurve Networking web site at: http://www.procurve.com...

  • Page 245: Configuring For Snmp Version 3 Access To The Switch

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch If you want to restrict access to one or more specific nodes, you can use the switch’s IP Authorized Manager feature. (Refer to the Access Security Guide for your switch.) C a u t i o n The “public”...

  • Page 246: Snmp Version 3 Commands

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP Version 3 Commands SNMP version 3 (SNMPv3) adds new commands to the CLI for configuring SNMPv3 functions. You can: Enable SNMPv3 with the snmpv3 enable command. An initial user entry ■...

  • Page 247: Snmpv3 Enable

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMPv3 Enable The snmpv3 enable command starts a dialog that performs three functions: enabling the switch to receive SNMPv3 messages, configuring the initial users, and, optionally, to restrict non version-3 messages to “read only”. Figure 12-1 shows and example of this dialog.

  • Page 248: Snmp Version 3 Users

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP Version 3 Users The second step to using SNMPv3 on the switch is to configure the users that you assign to different groups. To establish users on the switch: Add the users to the User table.

  • Page 249

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch [no] snmpv3 group group_name user user_name sec-model <ver1| ver2c | ver3> user user_name This is the user to be added to the access group. This must match the user name added with the snmpv3 user command sec-model <ver1 | ver2c | ver3>...

  • Page 250

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Then you must set the group access level to the user. This is done with the snmpv3 group command. For more details on the MIBs access for a give group see “Group Access Levels”...

  • Page 251: Group Access Levels

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Group Access Levels The switch supports eight predefined group access levels. There are four levels for use with version 3 users and four are used for access by version 2c or version 1 management applications.

  • Page 252: Snmp Communities

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP Communities SNMP commuities are supported by the switch to allow management application that use version 2c or version 1 to access the switch. The communities are mapped to Group Access Levels that are used for version 2c or version 1 support.

  • Page 253

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Figure 12-4 shows the assigning of the Operator community on MgrStation1 to the CommunityOperatorReadWrite group. Any other Operator only has an access level of CommunityOperatorReadOnly. Add mapping to allow write access for Operator community on MgrStation1 Two Operator Access Levels Figure 12-4.

  • Page 254: Version 3 Communities

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch C a u t i o n Deleting or changing the community named “public” prevents network management applications (such as auto-discovery, traffic monitoring, SNMP trap generation, and threshold setting) from operating in the switch. (Changing or deleting the “public”...

  • Page 255

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch If you are adding a community, the fields in this screen are blank. If you are editing an existing community, Type the value for this field. the values for the currently selected Use the Space bar to select Community appear...

  • Page 256: Cli: Viewing And Configuring Snmp Community Names

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch CLI: Viewing and Configuring SNMP Community Names Community Name Commands Page show snmp-server [<community-string>] 12-16 [no] snmp-server 12-17 [community <community-str>] 12-17 [host <community-str> <ip-addr>] 12-22 [<none | debug | all | not-info | critical>] [enable traps <authentication>...

  • Page 257

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Configuring Community Names and Values. The snmp-server command enables you to add SNMP communities with either default or specific access attributes, and to delete specific communities. Syntax: [no] snmp-server community < community-name > Configures a new community name.

  • Page 258: Snmp Notification And Traps

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP Notification and Traps The switches covered in this guide support the SNMPv3 notification process. They also support version 1or version 2c traps. For more information on version 1 or version 2c traps, see “Trap Features” on page 12-20. The SNMPv3 notification process allows for the messages passed to be authenticated and encrypted if you choose.

  • Page 259

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch [no] snmpv3 targetaddress <addr-name> params < params-name> < IP-Addr > max-msg-size<size> The maximum number of bytes of length a message to this target can be. ( Default:1472) taglist < tag-params> Set list of values used to select this entry from snmpNotifyTable.

  • Page 260: Trap Features

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Trap Features Feature Default Menu snmp-server host (trap receiver) public — page — 12-22 snmp-server enable (authentication trap) none — page — 12-23 A trap receiver is a management station designated by the switch to receive SNMP traps sent from the switch.

  • Page 261

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Using the CLI To List Current SNMP Trap Receivers. This command lists the currently configured trap receivers and the setting for authentication traps (along with the current SNMP community name data — see “SNMP Communities”...

  • Page 262

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Configuring Trap Receivers. This command specifies trap receivers by community membership, management station IP address, and the type of Event Log messages to send to the trap receiver. N o t e If you specify a community name that does not exist—that is, has not yet been configured on the switch—the switch still accepts the trap receiver...

  • Page 263: Using The Cli To Enable Authentication Traps

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch For example, to configure a trap receiver in a community named "red-team" with an IP address of 10.28.227.130 to receive only "critical" log messages: ProCurve(config)# snmp-server trap-receiver red-team 10.28.227.130 critical N o t e s To replace one community name with another for the same IP address, you...

  • Page 264: Advanced Management: Rmon

    Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Advanced Management: RMON The switches covered in this guide support RMON (Remote Monitoring) on all connected network segments. This allows for troubleshooting and optimizing your network. The following RMON groups are supported: ■...

  • Page 265: Lldp (link-layer Discovery Protocol), Lldp (link-layer Discovery Protocol), Lldp (link-layer Discovery Protocol)

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) LLDP (Link-Layer Discovery Protocol) To standardize device discovery on all ProCurve switches, LLDP has been implemented while offering limited read-only support for CDP as documented in this manual. For current information on your switch model, consult the latest Release Notes (available on the ProCurve Networking web site).

  • Page 266

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Also, by using show commands to access the switch’s neighbor database for information collected by an individual switch, system administrators can learn about other devices connected to the switch, including device type (capability) and some configuration information.

  • Page 267: General Lldp Operation, Packet Boundaries In A Network Topology

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) NANP (North American Numbering Plan): A ten-digit telephone number format where the first three digits are an area code and the last seven-digits are a local telephone number. Neighbor: See “LLDP Neighbor”. Non-LLDP Device: A device that is not capable of LLDP operation.

  • Page 268: Configuration Options

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) An intervening hub or repeater forwards the LLDP packets it receives in ■ the same manner as any other multicast packets it receives. Thus, two LLDP switches joined by a hub or repeater handle LLDP traffic in the same way that they would if directly connected.

  • Page 269

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Disable (disable): This setting disables LLDP packet transmissions and ■ reception on a port. In this state, the switch does not use the port for either learning about LLDP neighbors or informing LLDP neighbors of its pres­ ence.

  • Page 270: Options For Reading Lldp Information Collected By The Switch

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Data Type Configuration Default Description Options System capabilities Enable/Disable Enabled Identifies the primary switch functions that are enabled. 5, 6 enabled The Packet Time-to-Live value is included in LLDP data packets. (Refer to “Changing the Time-to-Live for Transmitted Advertisements”...

  • Page 271: Lldp Standards Compatibility, Lldp Operating Rules

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) LLDP Standards Compatibility The operation covered by this section is compatible with these standards: ■ IEEE P802.1AB RFC 2922 (PTOPO, or Physical Topology MIB) ■ RFC 2737 (Entity MIB) ■ ■ RFC 2863 (Interfaces MIB) LLDP Operating Rules Port Trunking.

  • Page 272: Configuring Lldp Operation, Viewing The Current Configuration

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Spanning-Tree Blocking. Spanning tree does not prevent LLDP packet transmission or receipt on STP-blocked links. 802.1X Blocking. Ports blocked by 802.1X operation do not allow transmission or receipt of LLDP packets. Configuring LLDP Operation In the default configuration, LLDP is enabled and in both transmit and receive mode on all active ports.

  • Page 273

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) For example, show lldp config produces the following display when the switch is in the default LLDP configuration: Note: This value corresponds to the lldp refresh-interval command (page 12-35). Med Topology Trap Enabled ------------------------- False True...

  • Page 274: Configuring Global Lldp Packet Controls

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Displaying Port Configuration Details. This command displays the port- specific configuration, including. Syntax show lldp config < port-list > Displays the LLDP port-specific configuration for all ports in < port-list >, including which optional TLVs and any non-default IP address that are included in the port’s outbound advertisements.

  • Page 275

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Enabling or Disabling LLDP Operation on the Switch. Enabling LLDP operation (the default) causes the switch to: ■ Use active, LLDP-enabled ports to transmit LLDP packets describing itself to neighbor devices. Add entries to its neighbors table based on data read from incoming LLDP ■...

  • Page 276

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Changing the Time-to-Live for Transmitted Advertisements. The Time-to-Live value (in seconds) for all LLDP advertisements transmitted from a switch is controlled by the switch that generates the advertisement, and determines how long an LLDP neighbor retains the advertised data before discarding it.

  • Page 277

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Syntax setmib lldpTxDelay.0 -i < 1 - 8192 > Uses setmib to change the minimum time (delay-interval) any LLDP port will delay advertising successive LLDP advertisements due to a change in LLDP MIB content. (Default: 2;...

  • Page 278: Configuring Snmp Notification Support

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) delay interval delays the port’s ability to reinitialize and generate LLDP traffic following an LLDP disable/enable cycle. Syntax setmib lldpReinitDelay.0 -i < 1 - 10 > Uses setmib to change the minimum time (reinitialization delay interval) an LLDP port will wait before reinitializing after receiving an LLDP disable command followed closely by a txonly or tx_rx command.

  • Page 279: Configuring Per-port Transmit And Receive Modes

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Changing the Minimum Interval for Successive Data Change Notifications for the Same Neighbor. If LLDP trap notification is enabled on a port, a rapid succession of changes in LLDP information received in advertisements from one or more neighbors can generate a high number of traps.

  • Page 280: Configuring Basic Lldp Per-port Advertisement Content

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Configuring Basic LLDP Per-Port Advertisement Content In the default LLDP configuration, outbound advertisements from each port on the switch include both mandatory and optional data. Mandatory Data. An active LLDP port on the switch always includes the mandatory data in its outbound advertisements.

  • Page 281

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) For example, if port 3 belongs to a subnetted VLAN that includes an IP address of 10.10.10.100 and you wanted port 3 to use this secondary address in LLDP advertisements, you would need to execute the following command: ProCurve(config)# lldp config 3 ipAddrEnable 10.10.10.100 Optional Data.

  • Page 282: Displaying Advertisement Data

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) system_cap For outbound advertisements, this TLV includes a bitmask of supported system capabilities (device functions). Also includes information on whether the capabilities are enabled. (Default: Enabled) For example, if you wanted to exclude the system name TLV from the outbound LLDP advertisements for all ports on a switch, you would use this command: ProCurve(config)# no lldp config 1-24 basicTlvEnable...

  • Page 283: Advertisements

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Displaying Switch Information Available for Outbound Advertisements These commands display the current switch information that will be used to populate outbound LLDP advertisements. Syntax show lldp info local-device [ port-list ] Without the [ port-list ] option, this command displays the global switch information and the per-port information currently available for populating outbound LLDP advertisements.

  • Page 284

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) The Management Address field displays only the LLDP-configurable IP addresses on the switch. (Only manually-configured IP addresses are LLDP-configurable.) If the switch has only an IP address from a DHCP or Bootp server, then the Management Address field is empty (because there are no LLDP­...

  • Page 285

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Syntax show lldp info remote-device [ port-list ] Without the [ port-list ] option, this command provides a global list of the individual devices it has detected by reading LLDP advertisements (and also CDP advertisements). Discovered devices are listed by the inbound port on which they were discovered.

  • Page 286

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) The data shown for port 3 was translated from a CDP advertisement from a 5300xl switch with LLDP disabled. (Not all fields expected by the LLDP device are populated with the CDP data.) Figure 12-15.

  • Page 287: Displaying Lldp Statistics

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Displaying LLDP Statistics LLDP statistics are available on both a global and a per-port levels. Rebooting the switch resets the LLDP statistics counters to zero. Disabling the transmit and/or receive capability on a port “freezes” the related port counters at their current values.

  • Page 288

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) — Continued from the preceding page. — Per-Port LLDP Counters: NumFramesRecvd: Shows the total number of valid, inbound LLDP advertisements received from any neighbor(s) on < port- list >. Where multiple neighbors are connected to a port through a hub, this value is the total number of LLDP advertisements received from all sources.

  • Page 289

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Counters showing frames sent on a port but no frames received on that port indicates an active link with a device that either has LLDP disabled on the link or is not LLDP- aware.

  • Page 290: Lldp Operating Notes

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) LLDP Operating Notes Neighbor Maximum. The neighbors table in the switch supports as many neighbors as there are ports on the switch. The switch can support multiple neighbors connected through a hub on a given port, but if the switch neighbor maximum is reached, advertisements from additional neighbors on the same or other ports will not be stored in the neighbors table unless some existing neighbors time-out or are removed.

  • Page 291: Lldp And Cdp Data Management, Lldp And Cdp Neighbor Data

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) LLDP and CDP Data Management This section describes points to note regarding LLDP (Link-Layer Discovery Protocol) and CDP (Cisco Discovery Protocol) data received by the switch from other devices. LLDP operation includes both transmitting LLDP packets to neighbor devices and reading LLDP packets received from neighbor devices.

  • Page 292

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) N o t e Because ProCurve switches do not generate CDP packets, they are not represented in the CDP data collected by any neighbor devices running CDP. A switch with CDP disabled forwards the CDP packets it receives from other devices, but does not store the CDP information from these packets in its own MIB.

  • Page 293: Cdp Operation And Commands

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) CDP Operation and Commands By default the switches covered by this guide have CDP enabled on each port. This is a read-only capability, meaning that the switch can receive and store information about adjacent CDP devices but does not generate CDP packets.

  • Page 294

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) The following example shows the default CDP configuration. CDP Enable/Disable on the Switch Per-Port CDP Enable/Disable Figure 12-19. Example of Show CDP with the Default CDP Configuration Viewing the Switch’s Current CDP Neighbors Table. Devices are listed by the port on which they were detected.

  • Page 295

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Enabling CDP Operation. Enabling CDP operation (the default) on the switch causes the switch to add entries to its CDP Neighbors table for any CDP packets it receives from other neighboring CDP devices. Disabling CDP Operation.

  • Page 296

    Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) —This page is intentionally unused— 12-56...

  • Page 297

    File Transfers Contents Overview ........... . . A-2 Downloading Switch Software .

  • Page 298: Downloading Switch Software, Overview

    File Transfers Overview Overview You can download new switch software and upload or download switch configuration files. These features are useful for acquiring periodic switch software upgrades and for storing or retrieving a switch configuration. This appendix includes the following information: ■...

  • Page 299: General Switch Software Download Rules, Using Tftp To Download Switch Software From A Server

    File Transfers Downloading Switch Software General Switch Software Download Rules A switch software image downloaded through the menu interface always ■ goes to primary flash. ■ After a switch software download, you must reboot the switch to imple­ ment the newly downloaded code. Until a reboot occurs, the switch continues to run on the software it was using before the download started.

  • Page 300: Menu: Tftp Download From A Server To Primary Flash

    File Transfers Downloading Switch Software N o t e If your TFTP server is a Unix workstation, ensure that the case (upper or lower) that you specify for the filename is the same case as the characters in the switch software filenames on the server. Menu: TFTP Download from a Server to Primary Flash Note that the menu interface accesses only the primary flash.

  • Page 301

    File Transfers Downloading Switch Software Progress Bar Figure A-2. Example of the Download OS Screen During a Download A “progress” bar indicates the progress of the download. When the entire switch software file has been received, all activity on the switch halts and you will see Validating and writing system software to FLASH...

  • Page 302: Or Secondary Flash

    File Transfers Downloading Switch Software CLI: TFTP Download from a Server to Primary or Secondary Flash This command automatically downloads a switch software image to primary or secondary flash. Syntax: copy tftp flash < ip-address > < remote-os-file > [< primary | secondary >] Note that if you do not specify the flash destination, the Xmodem download defaults to primary flash.

  • Page 303: Using Secure Copy And Sftp

    File Transfers Downloading Switch Software If you need information on primary/secondary flash memory and the boot commands, refer to “Using Primary and Secondary Flash Image Options” on page 6-12. Using Secure Copy and SFTP For some situations you may want to use a secure method to issue commands or copy files to the switch.

  • Page 304: How It Works

    File Transfers Downloading Switch Software Note SFTP over SSH version 1 (SSH v1) is not supported. A request from either the client or the switch (or both) using SSH v1 generates an error message. The actual text of the error message differs, depending on the client software in use.

  • Page 305: The Scp/sftp Process, Command Options

    File Transfers Downloading Switch Software The SCP/SFTP Process To use SCP and SFTP: 1. Open an SSH session as you normally would to establish a secure encrypted tunnel between your computer and the switch. For more detailed directions on how to open an SSH session see the chapter titled “Configuring Secure Shell (SSH)”...

  • Page 306: Authentication, Scp/sftp Operating Notes

    File Transfers Downloading Switch Software Authentication Switch memory allows up to ten public keys. This means the authentication and encryption keys you use for your third-party client SCP/SFTP software can differ from the keys you use for the SSH session, even though both SCP and SFTP use a secure SSH tunnel.

  • Page 307: A Pc Or Unix Workstation

    File Transfers Downloading Switch Software All files have read-write permission. Several SFTP commands, such as ■ create or remove, are not allowed and return an error message. The switch displays the following files: +---cfg running-config startup-config +---log crash-data crash-log event log +---os primary secondary...

  • Page 308: Menu: Xmodem Download To Primary Flash

    File Transfers Downloading Switch Software Menu: Xmodem Download to Primary Flash Note that the menu interface accesses only the primary flash. 1. From the console Main Menu, select 7. Download OS (for Edit). 2. Press 3. Use the Space bar to select XMODEM in the Method field. 4. Press [Enter], then (for eXecute) to begin the switch software download.

  • Page 309: To Primary Or Secondary Flash

    File Transfers Downloading Switch Software CLI: Xmodem Download from a PC or Unix Workstation to Primary or Secondary Flash Using Xmodem and a terminal emulator, you can download a switch software file to either primary or secondary flash. Syntax: copy xmodem flash [< primary | secondary >] Note that if you do not specify the flash destination, the Xmodem download defaults to primary flash.

  • Page 310: Switch-to-switch Download, Menu: Switch-to-switch Download To Primary Flash

    File Transfers Downloading Switch Software 4. To confirm that the operating system downloaded correctly, use the show system, show version, or show flash CLI commands. Check the Firmware revision line. It should show the switch software version that you downloaded in the preceding steps. If you need information on primary/secondary flash memory and the boot commands, refer to “Using Primary and Secondary Flash Image Options”...

  • Page 311: Cli: Switch-to-switch Downloads

    File Transfers Downloading Switch Software 7. After the primary flash memory has been updated with the new operating system, you must reboot the switch to implement the newly downloaded (for Reboot Switch). You will then software. From the Main Menu, press see this prompt: Continue reboot of system? Press the space bar once to change No to Yes, then press...

  • Page 312: Using Procurve Manager Plus To Update Switch Software

    File Transfers Downloading Switch Software Running Total of Bytes Downloaded Figure A-5. Switch-To-Switch, from Primary in Source to Either Flash in Destination Downloading from Either Flash in the Source Switch to Either Flash in the Destination Switch. This command (executed in the destination switch) gives you the most options for downloading between switches.

  • Page 313: Troubleshooting Tftp Downloads

    File Transfers Troubleshooting TFTP Downloads Troubleshooting TFTP Downloads When using the menu interface, if a TFTP download fails, the Download OS screen indicates the failure. Message Indicating cause of TFTP Download Failure Figure A-7. Example of Message for Download Failure To find more information on the cause of a download failure, examine the messages in the switch’s Event Log by executing this CLI command: ProCurve# show log tftp...

  • Page 314: Transferring Switch Configurations

    File Transfers Transferring Switch Configurations For a Unix TFTP server, the file permissions for the switch software file ■ do not allow the file to be copied. ■ Another console session (through either a direct connection to a terminal device or through Telnet) was already running when you started the session in which the download was attempted.

  • Page 315

    File Transfers Transferring Switch Configurations TFTP: Copying a Configuration File to a Remote Host. Syntax: copy < startup-config | running-config > tftp < ip-addr > < remote-file > This command copies the switch’s startup configuration (startup-config file) to a remote TFTP host. For example, to upload the current startup configuration to a file named sw2810 in the configs directory on drive “d”...

  • Page 316

    File Transfers Transferring Switch Configurations Xmodem: Copying a Configuration File from a Serially Connected PC or Unix Workstation. To use this method, the switch must be connected via the serial port to a PC or Unix workstation on which is stored the configuration file you want to copy.

  • Page 317: Copying Diagnostic Data To A Remote Host, Pc, Or Unix Workstation

    File Transfers Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation You can use the CLI to copy the following types of switch data to a text file in a management device: ■...

  • Page 318: Copying Event Log Output To A Destination Device

    File Transfers Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation Copying Event Log Output to a Destination Device This command uses TFTP or Xmodem to copy the Event Log content to a PC or UNIX workstation on the network. Syntax: copy event-log tftp <...

  • Page 319: Copying Crash Log Data Content To A Destination Device

    File Transfers Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation Copying Crash Log Data Content to a Destination Device This command uses TFTP or Xmodem to copy the Crash Log content to a PC or UNIX workstation on the network. You can copy individual slot information or the master switch information.

  • Page 320

    File Transfers Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation —This page is intentionally unused— A-24...

  • Page 321

    Monitoring and Analyzing Switch Operation Contents Overview ........... . . B-3 Status and Counters Data .

  • Page 322

    Monitoring and Analyzing Switch Operation Contents Port and Static Trunk Monitoring Features ..... . . B-24 Menu: Configuring Port and Static Trunk Monitoring ... B-25 CLI: Configuring Port and Static Trunk Monitoring .

  • Page 323

    Monitoring and Analyzing Switch Operation Overview Overview The switch has several built-in tools for monitoring, analyzing, and trouble­ shooting switch and network operation: ■ Status: Includes options for displaying general switch information, man­ agement address data, port status, port and trunk group statistics, MAC addresses detected on each port or VLAN, and STP, IGMP, and VLAN data (page B-4).

  • Page 324: Status And Counters Data

    Monitoring and Analyzing Switch Operation Status and Counters Data Status and Counters Data This section describes the status and counters screens available through the switch console interface and/or the web browser interface. N o t e You can access all console screens from the web browser interface via Telnet to the console.

  • Page 325: Menu Access To Status And Counters

    Monitoring and Analyzing Switch Operation Status and Counters Data Menu Access To Status and Counters Beginning at the Main Menu, display the Status and Counters menu by select­ ing: 1. Status and Counters Figure B-1. The Status and Counters Menu Each of the above menu items accesses the read-only screens described on the following pages.

  • Page 326: General System Information, Menu Access, Cli Access

    Monitoring and Analyzing Switch Operation Status and Counters Data General System Information Menu Access From the console Main Menu, select: 1. Status and Counters 1. General System Information Figure B-2. Example of General Switch Information This screen dynamically indicates how individual switch resources are being used.

  • Page 327: Switch Management Address Information, Menu Access, Cli Access

    Monitoring and Analyzing Switch Operation Status and Counters Data Switch Management Address Information Menu Access From the Main Menu, select: 1. Status and Counters . . . 2. Switch Management Address Information Figure B-3. Example of Management Address Information with VLANs Configured This screen displays addresses that are important for management of the switch.

  • Page 328: Module Information, Menu: Displaying Port Status, Cli Access

    Monitoring and Analyzing Switch Operation Status and Counters Data Module Information Use this feature to determine which slots have modules installed and which type(s) of modules are installed. Menu: Displaying Port Status From the Main Menu, select: 1. Status and Counters . . . 3.

  • Page 329: Menu: Displaying Port Status, Port Status, Cli Access, Web Access

    Monitoring and Analyzing Switch Operation Status and Counters Data Port Status The web browser interface and the console interface show the same port status data. Menu: Displaying Port Status From the Main Menu, select: 1. Status and Counters . . . 4.

  • Page 330: Viewing Port And Trunk Group Statistics And Flow Control Status

    Monitoring and Analyzing Switch Operation Status and Counters Data Viewing Port and Trunk Group Statistics and Flow Control Status Feature Default Menu viewing port and trunk statistics for all page B-11 page B-12 page B-12 ports, and flow control status viewing a detailed summary for a page B-11 page B-12...

  • Page 331: Menu Access To Port And Trunk Statistics

    Monitoring and Analyzing Switch Operation Status and Counters Data Menu Access to Port and Trunk Statistics To access this screen from the Main Menu, select: 1. Status and Counters . . . 4. Port Counters Figure B-6. Example of Port Counters on the Menu Interface To view details about the traffic on a particular port, use the [v] key to highlight that port number, then select Show Details.

  • Page 332: Cli Access To Port And Trunk Group Statistics, Statistics

    Monitoring and Analyzing Switch Operation Status and Counters Data CLI Access To Port and Trunk Group Statistics To Display the Port Counter Summary Report. This command provides an overview of port activity for all ports on the switch. Syntax: show interfaces To Display a Detailed Traffic Summary for Specific Ports.

  • Page 333: Viewing The Switch's Mac Address Tables, Menu Access To The Mac Address Views And Searches

    Monitoring and Analyzing Switch Operation Status and Counters Data Viewing the Switch’s MAC Address Tables Feature Default Menu viewing MAC addresses on all page B-13 page B-16 — ports on a specific VLAN viewing MAC addresses on a page B-15 page B-16 —...

  • Page 334

    Monitoring and Analyzing Switch Operation Status and Counters Data Figure B-8. Example of the Address Table To page through the listing, use Next page and Prev page. Finding the Port Connection for a Specific Device on a VLAN. This feature uses a device’s MAC address that you enter to identify the port used by that device.

  • Page 335

    Monitoring and Analyzing Switch Operation Status and Counters Data Port-Level MAC Address Viewing and Searching. This feature displays and searches for MAC addresses on the specified port instead of for all ports on the switch. 1. From the Main Menu, select: 1.

  • Page 336: Cli Access For Mac Address Views And Searches

    Monitoring and Analyzing Switch Operation Status and Counters Data CLI Access for MAC Address Views and Searches Syntax: show mac-address [vlan < vlan-id >] [ethernet]< port-list >] [< mac-addr >] To List All Learned MAC Addresses on the Switch, with The Port Number on Which Each MAC Address Was Learned.

  • Page 337: Spanning Tree Protocol (stp) Information, Menu Access To Stp Data

    Monitoring and Analyzing Switch Operation Status and Counters Data Spanning Tree Protocol (STP) Information Menu Access to STP Data From the Main Menu, select: 1. Status and Counters . . . 8. Spanning Tree Information STP must be enabled on the switch to display the following data: Figure B-12.

  • Page 338: Cli Access To Stp Data

    Monitoring and Analyzing Switch Operation Status and Counters Data Figure B-13. Example of STP Port Information CLI Access to STP Data This option lists the STP configuration, root data, and per-port data (cost, priority, state, and designated bridge). Syntax: show spanning-tree ProCurve>...

  • Page 339: Internet Group Management Protocol (igmp) Status

    Monitoring and Analyzing Switch Operation Status and Counters Data Internet Group Management Protocol (IGMP) Status The switch uses the CLI to display the following IGMP status on a per-VLAN basis: Show Command Output show ip igmp Global command listing IGMP status for all VLANs configured in the switch: •...

  • Page 340: Vlan Information

    Monitoring and Analyzing Switch Operation Status and Counters Data VLAN Information The switch uses the CLI to display the following VLAN status: Syntax: show vlan Lists: • Maximum number of VLANs to support • Existing VLANs • Status (static or dynamic) • Primary VLAN Syntax: show vlan <...

  • Page 341

    Monitoring and Analyzing Switch Operation Status and Counters Data Listing the VLAN ID (VID) and Status for ALL VLANs in the Switch. Figure B-15. Example of VLAN Listing for the Entire Switch Listing the VLAN ID (VID) and Status for Specific Ports. Because ports A1 and A2 are not members of VLAN­...

  • Page 342: Web Browser Interface Status Information

    Monitoring and Analyzing Switch Operation Status and Counters Data Web Browser Interface Status Information The “home” screen for the web browser interface is the Status Overview screen, as shown below. As the title implies, it provides an overview of the status of the switch, including summary graphs indicating the network utili­...

  • Page 343: Port And Static Trunk Monitoring Features

    Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features Port and Static Trunk Monitoring Features Port Monitoring Features Feature Default Menu display monitoring disabled page B-24 page B-26 page B-28 configuration configure the monitor port(s) ports: none page B-24 page B-26 page B-28 selecting or removing ports none selected page B-24 page B-27 page B-28 You can designate a port for monitoring inbound (ingress) and outbound...

  • Page 344: Menu: Configuring Port And Static Trunk Monitoring

    Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features Menu: Configuring Port and Static Trunk Monitoring This procedure describes configuring the switch for monitoring when moni­ toring is disabled. (If monitoring has already been enabled, the screens will appear differently than shown in this procedure.) 1. From the Console Main Menu, select: 2.

  • Page 345

    Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features Move the cursor to the Monitoring Port parameter. Port where monitored traffic exits the switch. Figure B-20. How To Select a Monitoring Port 5. Use the Space bar to select the port to use for monitoring. 6. Use the down arrow key to move the cursor to the Action column for the individual ports and position the cursor at a port you want to monitor.

  • Page 346: Cli: Configuring Port And Static Trunk Monitoring

    Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features CLI: Configuring Port and Static Trunk Monitoring Port and Static Trunk Monitoring Commands Used in This Section show monitor below mirror-port page B-26 monitor page B-27 You must use the following configuration sequence to configure port and static trunk monitoring in the CLI: Assign a monitoring (mirror) port.

  • Page 347

    Monitoring and Analyzing Switch Operation Port and Static Trunk Monitoring Features To turn off monitoring: ProCurve(config)# no mirror-port Selecting or Removing Ports and Static Trunks As Monitoring Sources. After you configure a monitor port you can use either the global configuration level or the interface context level to select ports and static trunks as monitoring sources.

  • Page 348: Web: Configuring Port Monitoring, Locating A Device

    Monitoring and Analyzing Switch Operation Locating a Device Web: Configuring Port Monitoring To enable port monitoring: Click on the Configuration tab. Click on Monitor Port. To monitor one or more ports. Click on the radio button for Monitor Selected Ports. b.

  • Page 349

    Monitoring and Analyzing Switch Operation Locating a Device ProCurve(config)# chassislocate blink <1-1440> Blink the chassis locate led (default 30 minutes). Turn the chassis locate led off. on <1-1440> Turn the chassis locate led on (default 30 minutes). ProCurve(config)# chassislocate Figure B-24. The chassislocate command �����...

  • Page 350

    Monitoring and Analyzing Switch Operation Locating a Device —This page is intentionally unused— B-30...

  • Page 351

    Troubleshooting Contents Overview ........... . . C-3 Troubleshooting Approaches .

  • Page 352

    Troubleshooting Contents Displaying the Configuration File ......C-39 CLI: Viewing the Configuration File ..... . C-39 Web: Viewing the Configuration File .

  • Page 353: Troubleshooting Approaches, Overview

    Troubleshooting Overview Overview This chapter addresses performance-related network problems that can be caused by topology, switch configuration, and the effects of other devices or their configurations on switch operation. (For switch-specific information on hardware problems indicated by LED behavior, cabling requirements, and other potential hardware-related problems, refer to the installation guide you received with the switch.) N o t e...

  • Page 354

    Troubleshooting Troubleshooting Approaches Check the network cables – Cabling problems are a frequent cause of ■ network faults. Check the cables for damage, correct type, and proper connections. You should also use a cable tester to check your cables for compliance to the relevant IEEE 802.3 specification.

  • Page 355: Chassis Over-temperature Detection

    Troubleshooting Chassis Over-Temperature Detection Chassis Over-Temperature Detection i. If a switch reaches an over-temperature condition, it generates a chassis-module Warning message in the Event Log and in any optionally configured debug destinations (console session and SyslogD servers). If the switch later returns to its acceptable temperature range, it signals this event with a chassis module Information message to the same destinations.

  • Page 356

    Troubleshooting Chassis Over-Temperature Detection If there are no fan failures, ensure that the ambient temperature in the ■ switch’s operating area is not causing the over-temperature condition. If the condition persists, remove power from the switch until you can find the cause and apply an effective remedy.

  • Page 357: Browser Or Telnet Access Problems

    Troubleshooting Browser or Telnet Access Problems Browser or Telnet Access Problems Cannot access the web browser interface: Access may be disabled by the Web Agent Enabled parameter in the switch ■ console. Check the setting on this parameter by selecting: 2.

  • Page 358

    Troubleshooting Browser or Telnet Access Problems Cannot Telnet into the switch console from a station on the network: Telnet access may be disabled by the Inbound Telnet Enabled parameter in ■ the System Information screen of the menu interface: 2. Switch Configuration 1.

  • Page 359: Unusual Network Activity, General Problems

    Troubleshooting Unusual Network Activity Unusual Network Activity Network activity that fails to meet accepted norms may indicate a hardware problem with one or more of the network components, possibly including the switch. Such problems can also be caused by a network loop or simply too much traffic for the network as it is currently designed and implemented.

  • Page 360: Prioritization Problems, Igmp-related Problems

    Troubleshooting Unusual Network Activity This can also happen, for example, if the server is first configured to issue IP addresses with an unlimited duration, then is subsequently configured to issue IP addresses that will expire after a limited duration. One solution is to configure “reservations”...

  • Page 361: Lacp-related Problems

    Troubleshooting Unusual Network Activity IP Multicast Traffic Floods Out All Ports; IGMP Does Not Appear To Filter Traffic. The IGMP feature does not operate if the switch or VLAN does not have an IP address configured manually or obtained through DHCP/ Bootp.

  • Page 362: Port-based Access Control (802.1x)-related Problems

    Troubleshooting Unusual Network Activity Port-Based Access Control (802.1X)-Related Problems Note To list the 802.1X port-access Event Log messages stored on the switch, use show log 802. See also “Radius-Related Problems” on page C-15. The switch does not receive a response to RADIUS authentication requests.

  • Page 363

    Troubleshooting Unusual Network Activity The switch appears to be properly configured as a supplicant, but cannot gain access to the intended authenticator port on the switch to which it is connected. If aaa authentication port-access is configured for Local, ensure that you have entered the local login (operator-level) username and password of the authenticator switch into the identity and secret parame­...

  • Page 364

    Troubleshooting Unusual Network Activity a server-specific key. If the switch already has a server-specific key assigned to the server’s IP address, then it overrides the global key and must match the server key. Global RADIUS Encryption Key Unique RADIUS Encryption Key for the RADIUS server at 10.33.18.119 Figure C-3. Example of How To List the Global and Server-Specific Radius Encryption Keys...

  • Page 365: Radius-related Problems

    Troubleshooting Unusual Network Activity Radius-Related Problems The switch does not receive a response to RADIUS authentication requests. In this case, the switch will attempt authentication using the secondary method configured for the type of access you are using (console, Telnet, or SSH). There can be several reasons for not receiving a response to an authentication request.

  • Page 366: Spanning-tree Protocol (stp) And Fast-uplink Problems

    Troubleshooting Unusual Network Activity Spanning-Tree Protocol (STP) and Fast-Uplink Problems C a u t i o n If you enable STP, it is recommended that you leave the remainder of the STP parameter settings at their default values until you have had an opportunity to evaluate STP performance in your network.

  • Page 367: Ssh-related Problems

    Troubleshooting Unusual Network Activity SSH-Related Problems Switch access refused to a client. Even though you have placed the cli­ ent’s public key in a text file and copied the file (using the copy tftp pub-key­ file command) into the switch, the switch refuses to allow the client to have access.

  • Page 368: Stacking-related Problems, Tacacs-related Problems

    Troubleshooting Unusual Network Activity The public key file you are trying to download has one of the following problems: ■ A key in the file is too long. The maximum key length is 1024 characters, including spaces. This could also mean that two or more keys are merged together instead of being separated by a <CR><LF>.

  • Page 369

    Troubleshooting Unusual Network Activity memory to save the authentication configuration to flash, then pressing the Reset button or cycling the power reboots the switch with the boot-up configuration. Disconnect the switch from network access to any TACACS+ servers ■ and then log in to the switch using either Telnet or direct console port access.

  • Page 370: Timep, Sntp, Or Gateway Problems, Vlan-related Problems

    Troubleshooting Unusual Network Activity The access attempt is outside of the time frame allowed for the ■ account. The allowed number of concurrent logins for the account has been ■ exceeded For more help, refer to the documentation provided with your TACACS+ server application.

  • Page 371

    Troubleshooting Unusual Network Activity None of the devices assigned to one or more VLANs on an 802.1Q­ compliant switch are being recognized. If multiple VLANs are being used on ports connecting 802.1Q-compliant devices, inconsistent VLAN IDs may have been assigned to one or more VLANs. For a given VLAN, the same VLAN ID must be used on all connected 802.1Q-compliant devices.

  • Page 372

    Troubleshooting Unusual Network Activity Note that attempting to create redundant paths through the use of VLANs will cause problems with some switches. One symptom is that a duplicate MAC address appears in the Port Address Table of one port, and then later appears on another port.

  • Page 373: Using Logging To Identify Problem Sources, Event Log Operation

    Troubleshooting Using Logging To Identify Problem Sources Using Logging To Identify Problem Sources Event Log Operation The Event Log records operating events as single-line entries listed in chrono­ logical order, and serves as a tool for isolating problems. Each Event Log entry is composed of five fields: Severity Date...

  • Page 374

    Troubleshooting Using Logging To Identify Problem Sources (The event log is not erased by using the Reboot Switch command in the Main Menu.) Table C-1.Event Log System Modules Module Event Description Module Event Description addrMgr Address table Console management chassis switch hardware ports Change in port status;...

  • Page 375: Menu: Entering And Navigating In The Event Log

    Troubleshooting Using Logging To Identify Problem Sources Menu: Entering and Navigating in the Event Log From the Main Menu, select Event Log. Range of Events in the Log Range of Log Events Displayed Log Status Line Figure C-8. Example of an Event Log Display The log status line at the bottom of the display identifies where in the sequence of event messages the display is currently positioned.

  • Page 376: Cli:

    Troubleshooting Using Logging To Identify Problem Sources CLI: Using the CLI, you can list ■ Events recorded since the last boot of the switch ■ All events recorded Event entries containing a specific keyword, either since the last boot or ■...

  • Page 377: Debug And Syslog Operation

    Troubleshooting Using Logging To Identify Problem Sources Debug and Syslog Operation You can direct switch debug (Event log) messages to these destinations: ■ Up to six SyslogD servers One management-access session through: ■ • A direct-connect RS-232 console CLI session •...

  • Page 378

    Troubleshooting Using Logging To Identify Problem Sources Debug Types. This section describes the types of debug messages the switch can send to configured debug destinations. Syntax: [no] debug < debug-type > Configures the switch to send all debug types to the config­ ured debug destination(s).

  • Page 379

    Troubleshooting Using Logging To Identify Problem Sources Configuring the Switch To Send Debug Messages to One or More SyslogD Servers. Use the logging command to configure the switch to send Syslog messages to a SyslogD server, or to remove a SyslogD server from the switch configuration.

  • Page 380

    Troubleshooting Using Logging To Identify Problem Sources For example, on a switch where there are no SyslogD servers configured, you would do the following to configure SyslogD servers 18.120.38.155 and 18.120.43.125 and automatically enable Syslog logging (with user as the default logging facility): logging <...

  • Page 381

    Troubleshooting Using Logging To Identify Problem Sources Enabling or Disabling Logging to Management Sessions and SyslogD Servers. Use this command when you want to do any of the following: ■ Disable Syslog logging on all currently configured SyslogD servers with­ out removing the servers from the switch configuration.

  • Page 382

    Troubleshooting Using Logging To Identify Problem Sources Shows that Syslog (Destination) logging is enabled and transmitting log messages to IP address 18.120.38.155. Also shows that the logging facility is set to user (the default), and that session logging is enabled.) Disables Syslog logging (but retains the Syslog IP address in the switch configuration).

  • Page 383

    Troubleshooting Using Logging To Identify Problem Sources Syntax: show debug List the current debug status for both Syslog logging and Session logging. Shows that Syslog logging is enabled and sending event messages to the user facility on the SyslogD server at IP address 18.120.38.155.

  • Page 384: Diagnostic Tools, Port Auto-negotiation

    Troubleshooting Diagnostic Tools Ensure that your Syslog server(s) will accept Debug messages. All ■ Syslog messages the switch generates carry the configured facility. All Syslog messages resulting from debug operation carry a “debug” severity. If you configure the switch to transmit debug messages to a SyslogD server, ensure that the server’s Syslog application is configured to accept the “debug”...

  • Page 385: Ping And Link Tests

    Troubleshooting Diagnostic Tools 2. If the attached end-node does not have an Auto mode setting, then you must manually configure the switch port to the same setting as the end- node port. See Chapter 10, “Port Status and Basic Configuration”. Ping and Link Tests The Ping test and the Link test are point-to-point tests between your switch and another IEEE 802.3-compliant device on your network.

  • Page 386: Web: Executing Ping Or Link Tests

    Troubleshooting Diagnostic Tools Web: Executing Ping or Link Tests 1. Click here. 2. Click here. 4. For a Ping test, enter the IP address of the 3. Select Ping Test (the target device. For a default) or Link Test. Link test, enter the MAC address of the target device.

  • Page 387: Cli: Ping Or Link Tests

    Troubleshooting Diagnostic Tools To halt a Link or Ping test before it concludes, click on the Stop button. To reset the screen to its default settings, click on the Defaults button. CLI: Ping or Link Tests Ping Tests. You can issue single or multiple ping tests with varying repeti­ tions and timeout periods.

  • Page 388

    Troubleshooting Diagnostic Tools Link Tests. You can issue single or multiple link tests with varying repeti­ tions and timeout periods. The defaults are: ■ Repetitions: 1 (1 - 999) Timeout: 5 seconds (1 - 256 seconds) ■ Syntax: link < mac-address > [repetitions < 1 - 999 >] [timeout < 1 - 256 >] [vlan <...

  • Page 389: Displaying The Configuration File, Cli: Viewing The Configuration File, Web: Viewing The Configuration File

    Troubleshooting Diagnostic Tools Displaying the Configuration File The complete switch configuration is contained in a file that you can browse from either the web browser interface or the CLI. It may be useful in some troubleshooting scenarios to view the switch configuration. CLI: Viewing the Configuration File Using the CLI, you can display either the running configuration or the startup configuration.

  • Page 390: In Troubleshooting

    Troubleshooting Diagnostic Tools Listing Switch Configuration and Operation Details for Help in Troubleshooting The show tech command outputs, in a single listing, switch operating and running configuration details from several internal switch sources, including: ■ Image stamp (software version data) Running configuration ■...

  • Page 391

    Troubleshooting Diagnostic Tools In Hyperterminal, click on Transfer | Capture Text... Figure C-17. The Capture Text window of the Hypertext Application Used with Microsoft Windows Software 2. In the File field, enter the path and file name under which you want to store the show tech output.

  • Page 392: Cli Administrative And Troubleshooting Commands

    Troubleshooting Diagnostic Tools CLI Administrative and Troubleshooting Commands These commands provide information or perform actions that you may find helpful in troubleshooting operating problems with the switch. N o t e For more on the CLI, refer to “Using the Command Line Interface (CLI)” on page 4-1.

  • Page 393: Restoring The Factory-default Configuration, Using The Cli, Using The Clear/reset Buttons

    Troubleshooting Restoring the Factory-Default Configuration Restoring the Factory-Default Configuration As part of your troubleshooting process, it may become necessary to return the switch configuration to the factory default settings. This process momen­ tarily interrupts the switch operation, clears any passwords, clears the console event log, resets the network counters to zero, performs a complete self test, and reboots the switch into its factory default configuration including deleting an IP address.

  • Page 394: Restoring A Flash Image

    Troubleshooting Restoring a Flash Image Restoring a Flash Image The switch can lose its operating system if either the primary or secondary flash image location is empty or contains a corrupted OS file and an operator uses the erase flash command to erase a good OS image file from the opposite flash location.

  • Page 395

    Troubleshooting Restoring a Flash Image 4. Since the OS file is large, you can increase the speed of the download by changing the switch console and terminal emulator baud rates to a high speed. For example: a. Change the switch baud rate to 115,200 Bps. =>...

  • Page 396

    Troubleshooting Restoring a Flash Image Figure C-19. Example of Xmodem Download in Progress 8. When the download completes, the switch reboots from primary flash using the OS image you downloaded in the preceding steps, plus the most recent startup-config file. C-46...

  • Page 397

    MAC Address Management Contents Overview ........... . . D-2 Determining MAC Addresses in the Switch .

  • Page 398: Determining Mac Addresses In The Switch, Overview

    MAC Address Management Overview Overview The switch assigns MAC addresses in these areas: ■ For management functions: • One Base MAC address assigned to the default VLAN (VID = 1) • Additional MAC address(es) corresponding to additional VLANs you configure in the switch ■...

  • Page 399: Menu: Viewing The Switch's Mac Addresses

    MAC Address Management Determining MAC Addresses in the Switch Use the CLI to view the switch’s port MAC addresses in hexadecimal ■ format. Menu: Viewing the Switch’s MAC Addresses The Management Address Information screen lists the MAC addresses for: Base switch (default VLAN; VID = 1) ■...

  • Page 400: Cli: Viewing The Port And Vlan Mac Addresses

    MAC Address Management Determining MAC Addresses in the Switch CLI: Viewing the Port and VLAN MAC Addresses The MAC address assigned to each switch port is used internally by such features as Flow Control and the Spanning Tree Protocol. Using the walkmib command to determine the MAC address assignments for individual ports can sometimes be useful when diagnosing switch operation.

  • Page 401

    MAC Address Management Determining MAC Addresses in the Switch ifPhysAddress.1 - 6: Ports A1 - A6 in Slot 1 (Addresses 7 - 24 in slot 1 and 25 - 48 in slot 2 are unused.) ifPhysAddress.49 - 51: Ports C1 - C3 in Slot 3 (Addresses 52 - 72 in slot 3 are unused.) ifPhysAddress.205 Base MAC Address (MAC...

  • Page 402: Viewing The Mac Addresses Of Connected Devices

    MAC Address Management Viewing the MAC Addresses of Connected Devices Viewing the MAC Addresses of Connected Devices Syntax show mac-address [ mac-addr ] Lists the MAC addresses of the devices the switch has detected, along with the number of the specific port on which each MAC address was detected.

  • Page 403

    MAC Address Management Viewing the MAC Addresses of Connected Devices To list the MAC addresses of devices the switch has detected, use the show mac-address command. For example, ProCurve(config)# show mac-address Status and Counters - Port Address Table MAC Address Located on Port ------------- --------------- 001e6-09620c...

  • Page 404

    MAC Address Management Viewing the MAC Addresses of Connected Devices —This page is intentionally blank—...

  • Page 405: Configuring Daylight Savings Time

    Daylight Savings Time on ProCurve Switches Configuring Daylight Savings Time This information applies to the following ProCurve switches: • 2510 • 3400cl • 1600M • ProCurve AdvanceStack • 2512 • 4108gl • 2400M Switches • 2524 • 4104gl • 2424M •...

  • Page 406

    Daylight Savings Time on ProCurve Switches Configuring Daylight Savings Time Canada and Continental US: • Begin DST at 2am the first Sunday on or after April 1st. • End DST at 2am the first Sunday on or after October 25th. Middle Europe and Portugal: •...

  • Page 407

    Daylight Savings Time on ProCurve Switches Configuring Daylight Savings Time Before configuring a "User defined" Daylight Time Rule, it is important to understand how the switch treats the entries. The switch knows which dates are Sundays, and uses an algorithm to determine on which date to change the system clock, given the configured "Beginning day"...

  • Page 408

    Daylight Savings Time on ProCurve Switches Configuring Daylight Savings Time — This page is intentionally unused. —...

  • Page 409

    Index Symbols boot ROM console … A-3 boot ROM mode … C-44 => prompt … C-44 Bootp Bootp table file … 8-14 Numerics Bootptab file … 8-14 effect of no reply … C-9 802.1X operation … 8-13 LLDP blocked … 12-32 using with Unix systems …...

  • Page 410

    console … 7-3 event log … C-33 copying … A-18 syntax … C-28 download … A-3 debug logging factory default … 6-8, 8-2 configuration, viewing … C-32 IP … 8-3 general operation … C-27 network monitoring … B-23 session, not current … C-33 permanent …...

  • Page 411

    See also debug logging. IEEE 802.3ab … 10-4 severity level … C-23 IEEE P802.1AB/D9 … 12-31 temperature messages … C-5 IGMP use during troubleshooting … C-23 host not receiving … C-10 with debug … C-33 not working … C-10 excessive packets … 10-22 statistics …...

  • Page 412

    GVRP operation … 10-16 description … C-35 management VLAN … 10-20 for troubleshooting … C-35 maximum size … 10-15 link, serial … 7-3 MTU … 10-15 LLDP port adds and moves … 10-16 802.1D-compliant switch … 12-50 port speed … 10-16 802.1X blocking …...

  • Page 413

    IP address, options … 12-40 transmit and receive … 12-28 IP address, version advertised … 12-40 transmit/receive modes … 12-28 LLDP-aware … 12-26 transmit/receive modes, per-port … 12-39 LLDPDU … 12-26 trap notice interval … 12-39 MIB … 12-27, 12-31 trap notification …...

  • Page 414

    monitoring traffic … B-23 operator … 5-8 Multiline Telephone system … 12-26 set … 3-7 multinetting … 8-9 setting … 5-9 multinetting, limit … 8-9 using to access browser and console … 5-10 multiple VLAN … 12-3 PD … 12-27 multi-port bridge …...

  • Page 415

    monitor port restrictions … 11-7 nonconsecutive ports … 11-2 quick configuration … 3-8 number of trunks … 11-3 quick start … 1-6, 8-4 port security restriction … 11-7 removing port from static trunk … 11-14 requirements … 11-6 SA/DA … 11-24 reboot …...

  • Page 416

    setmib, delay interval … 12-36 poll interval … 9-12 setmib, reinit delay … 12-38 See also TimeP. setting fault detection policy … 5-23 selecting … 9-3 setup screen … 1-6, 8-4 unicast mode … 9-3, 9-10 severity code, event log … C-23 unicast time polling …...

  • Page 417

    switch software traffic monitoring … 12-5, B-23 See OS. traffic, port … B-10 switch-to-switch download … A-14 transceiver, fiber-optic … 10-4 Syslog trap … 5-25 facility, user … C-34 authentication … 12-20 See debug logging. authentication trap … 12-23 severity, "debug" … C-34 CLI access …...

  • Page 418

    browser interface online help location … 5-13 web browser enable/disable … 7-4 management … 5-13 web browser interface management server … 5-12, 5-13 access parameters … 5-8 ProCurve Networking … 5-13 alert log … 5-6, 5-20 support … 5-12, 5-13 alert log details …...

  • Page 419

    — This page is intentionally unused. —...

  • Page 420

    Technical information in this document is subject to change without notice. © Copyright 2000-2006 Hewlett-Packard Development Company, L.P. All rights reserved. Reproduction, adaptation, or translation without prior written permission is prohibited except as allowed under the copyright laws. July 2006...

Comments to this Manuals

Symbols: 0
Latest comments: