Cisco 2960-XR - Manual

C H A P T E R 1 Using the Command-Line Interface This chapter contains the following topics: • Information About Using the Command-Line Interface, page 1 • How to Use the CLI to Configure Features, page 5 Information About Using the Command-Line Interface This section describes the Cisco IOS command...

About This Mode Exit Method Prompt Access Method Mode Line configuration Use this mode toconfigureparameters for theterminal line. To exit to globalconfiguration mode,enter exit . To return toprivileged EXECmode, press Ctrl-Z or enter end . Switch(config-line)# While in globalconfiguration mode,spec...

Purpose Command or Action Lists all commands available for a particular commandmode. ? Example: Switch> ? Step 4 Lists the associated keywords for a command. command ? Example: Switch> show ? Step 5 Lists the associated arguments for a keyword. command keyword ? Example: Switch(config)# cdp ho...

Table 2: Common CLI Error Messages How to Get Help Meaning Error Message Reenter the command followed bya question mark (?) with a spacebetween the command and thequestion mark. The possible keywords that you canenter with the command appear. You did not enter enoughcharacters for your switch toreco...

Changing the Command History Buffer Size By default, the switch records ten command lines in its history buffer. You can alter this number for a currentterminal session or for all sessions on a particular line. This procedure is optional. SUMMARY STEPS 1. terminal history [ size number-of-lines ] DE...

Purpose Command or Action Lists the last several commands that you just entered in privileged EXEC mode.The number of commands that appear is controlled by the setting of the terminal show history Example: Switch# show history Step 3 history global configuration command and the history line configur...

Purpose Command or Action Disables the enhanced editing mode for the current terminal sessionin the privileged EXEC mode. terminal no editing Example: Switch# terminal no editing Step 2 Editing Commands through Keystrokes The keystrokes help you to edit the command lines. These keystrokes are option...

Deletes from the cursor to the end of the word. Esc D Capitalizes at the cursor. Esc C Changes the word at the cursor to lowercase. Esc L Capitalizes letters from the cursor to the end of theword. Esc U Designates a particular keystroke as an executablecommand, perhaps as a shortcut. Ctrl-V or Esc Q...

DETAILED STEPS Purpose Command or Action Displays the global configuration command entry that extends beyondone line. access-list Example: Switch(config)# access-list 101 permit tcp Step 1 When the cursor first reaches the end of the line, the line is shifted tenspaces to the left and redisplayed. T...

Purpose Command or Action Expressions are case sensitive. For example, if you enter | exclude output , the lines that contain output are not displayed, but the lines that contain output appear. Example: Switch# show interfaces | include protocol Vlan1 is up, line protocol is upVlan10 is up, line pro...

C H A P T E R 2 Configuring VTP • Finding Feature Information, page 13 • Prerequisites for VTP, page 13 • Information About VTP, page 14 • Default VTP Configuration, page 23 • How to Configure VTP, page 24 • Monitoring VTP, page 34 • Configuration Examples for VTP, page 35 • Where to Go Next, page 3...

It does not work well in a situation where multiple updates to the VLAN database occur simultaneouslyon switches in the same domain, which would result in an inconsistency in the VLAN database. • The switch supports 1005 VLANs when running the IP Lite image. • However, the number of routed ports, SV...

Before adding a VTP client switch to a VTP domain, always verify that its VTP configuration revisionnumber is lower than the configuration revision number of the other switches in the VTP domain. Switchesin a VTP domain always use the VLAN configuration of the switch with the highest VTP configurati...

Description VTP Mode VTP transparent switches do not participate in VTP. A VTP transparent switch does notadvertise its VLAN configuration and does not synchronize its VLAN configuration basedon received advertisements. However, in VTP version 2 or version 3, transparent switchesdo forward VTP adver...

VTP pruning still applies only to VLANs 1 to 1005, and VLANs 1002 to 1005 are stillreserved and cannot be modified. Note • Private VLAN support. • Support for any database in a domain — In addition to propagating VTP information, version 3 can propagate Multiple Spanning Tree (MST) protocol database...

Related Topics Enabling VTP Pruning, on page 29 VTP and Switch Stacks VTP configuration is the same in all members of a switch stack. When the switch stack is in VTP server orclient mode, all switches in the stack carry the same VTP configuration. When VTP mode is transparent, thestack is not taking...

startup configuration file by entering the copy running-config startup-config privileged EXEC command. You must use this command if you want to save VTP mode as transparent, even if the switch resets. When you save VTP information in the switch startup configuration file and reboot the switch, the s...

Related Topics Configuring a VTP Version 3 Password, on page 26 Example: Configuring a Hidden Password, on page 35 VTP Version Follow these guidelines when deciding which VTP version to implement: • All switches in a VTP domain must have the same domain name, but they do not need to run the sameVTP ...

• For VTP version 1 and version 2, if extended-range VLANs are configured on the switch stack, youcannot change VTP mode to client or server. You receive an error message, and the configuration is notallowed. VTP version 1 and version 2 do not propagate configuration information for extended rangeVL...

Default Setting Feature None VTP password Disabled VTP pruning How to Configure VTP Configuring VTP Mode You can configure VTP mode as one of these: • When a switch is in VTP server mode, you can change the VLAN configuration and have it propagatedthroughout the network. • When a switch is in VTP cl...

Purpose Command or Action (Optional) Saves the configuration in the startup configuration file. copy running-config startup-config Step 7 Example: Switch# copy running-config Only VTP mode and domain name are saved in the switch runningconfiguration and can be copied to the startup configuration fil...

Purpose Command or Action To clear the password, enter the no vtp password global configuration command. Note Returns to privileged EXEC mode. end Example: Switch(config)# end Step 3 Verifies your entries. The output appears like this: show vtp password Step 4 Example: Switch# show vtp password VTP ...

Purpose Command or Action • (Optional) mst — Selects the multiple spanning tree (MST) database as the takeover feature. • (Optional) force — Overwrites the configuration of any conflicting servers. If you do not enter force , you are prompted for confirmation before the takeover. Related Topics Exam...

DETAILED STEPS Purpose Command or Action Enters the global configuration mode. configure terminal Example: Switch# configure terminal Step 1 Enables the VTP version on the switch. The default is VTPversion 1. vtp version { 1 | 2 | 3 } Example: Switch(config)# vtp version 2 Step 2 To return to the de...

Related Topics VTP Pruning, on page 18 Configuring VTP on a Per-Port Basis With VTP version 3, you can enable or disable VTP on a per-port basis. You can enable VTP only on portsthat are in trunk mode. Incoming and outgoing VTP traffic are blocked, not forwarded. SUMMARY STEPS 1. configure terminal ...

Purpose Command or Action Verifies the change to the port. show running-config interface interface-id Example: Switch# show running-config interface Step 5 gigabitethernet1/0/1 Verifies the configuration. show vtp status Example: Switch# show vtp status Step 6 Related Topics Example: Configuring VTP...

Purpose Command or Action Returns to privileged EXEC mode. The VLAN information on theswitch is updated. end Example: Switch(config)# end Step 8 (Optional) Verifies that the domain name is the same as in Step 1and that the configuration revision number is 0. show vtp status Example: Switch# show vtp...

Configuration Examples for VTP Example: Configuring the Switch as a VTP Server This example shows how to configure the switch as a VTP server with the domain name eng_group and the password mypassword : Switch(config)# vtp domain eng_group Setting VTP domain name to eng_group. Switch(config)# vtp mo...

VLANDB Yes 00d0.00b8.1400=00d0.00b8.1400 1 stp7Do you want to continue (y/n) [n]? y Related Topics Configuring a VTP Version 3 Primary Server, on page 27 Example: Configuring VTP on a Per-Port Basis This example shows how to configure VTP on a per-port basis: Switch(config)# interface gigabitetherne...

MIBs MIBs Link MIB To locate and download MIBs for selected platforms,Cisco IOS releases, and feature sets, use Cisco MIBLocator found at the following URL: http://www.cisco.com/go/mibs All supported MIBs for this release. Technical Assistance Link Description http://www.cisco.com/support The Cisco ...

Restrictions for VLANs The following are the restrictions for configuring VLANs: • The switch supports homogeneous stacking, but does not support mixed stacking. Information About VLANs Logical Networks A VLAN is a switched network that is logically segmented by function, project team, or applicatio...

interface-by-interface basis. When you assign switch interfaces to VLANs by using this method, it is knownas interface-based, or static, VLAN membership. Traffic between VLANs must be routed or fallback bridged. The switch can route traffic between VLANs by using switch virtual interfaces (SVIs). An...

VTP Characteristics VLAN Membership Characteristics Membership Mode VTP is recommended but notrequired. VTP maintains VLANconfiguration consistency bymanaging the addition, deletion,and renaming of VLANs on anetwork-wide basis. VTPexchanges VLAN configurationmessages with other switches overtrunk li...

a switch, the vlan.dat file is stored in flash memory on the stack master. Stack members have a vlan.dat filethat is consistent with the stack master. Token Ring VLANs Although the switch does not support Token Ring connections, a remote device such as a Catalyst 5000 seriesswitch with Token Ring co...

Normal-Range VLAN Configuration Guidelines Normal-range VLANs are VLANs with IDs from 1 to 1005. VTP 1 and 2 only support normal-range VLANs. Follow these guidelines when creating and modifying normal-range VLANs in your network: • Normal-range VLANs are identified with a number between 1 and 1001. ...

Extended-Range VLAN Configuration Guidelines VTP 3 only supports extended-range VLANs. Extended-range VLANs are VLANs with IDs from 1006 to4094. Follow these guidelines when creating extended-range VLANs: • VLAN IDs in the extended range are not saved in the VLAN database and are not recognized by V...

Example: Creating an Extended-Range VLAN, on page 57 Default Ethernet VLAN Configuration The following table displays the default configuration for Ethernet VLANs. The switch supports Ethernet interfaces exclusively. Because FDDI and Token Ring VLANs are notlocally supported, you only configure FDDI...

How to Configure VLANs How to Configure Normal-Range VLANs You can set these parameters when you create a new normal-range VLAN or modify an existing VLAN inthe VLAN database: • VLAN ID • VLAN name • VLAN type ◦ Ethernet ◦ Fiber Distributed Data Interface [FDDI] ◦ FDDI network entity title [NET] ◦ T...

Purpose Command or Action Verifies your entries. show vlan { name vlan-name | id vlan-id } Example: Switch# show vlan name test20 id 20 Step 7 Related Topics Normal-Range VLAN Configuration Guidelines, on page 44 Example: Creating a VLAN Name, on page 57 Deleting a VLAN When you delete a VLAN from a...

Purpose Command or Action Removes the VLAN by entering the VLAN ID. no vlan vlan-id Example: Switch(config)# no vlan 4 Step 2 Returns to privileged EXEC mode. end Example: Switch(config)# end Step 3 Verifies the VLAN removal. show vlan brief Example: Switch# show vlan brief Step 4 Assigning Static-A...

How to Configure Extended-Range VLANs With VTP version 1 and version 2, when the switch is in VTP transparent mode (VTP disabled), you cancreate extended-range VLANs (in the range 1006 to 4094). VTP 3 version supports extended-range VLANsin server or transparent move. Extended-range VLANs enable ser...

Purpose Command or Action Exits from VLAN configuration mode, and returns to globalconfiguration mode. exit Example: Switch(config-vlan)# exit Step 8 Specifies the interface ID for the routed port that you shut down inStep 4, and enters interface configuration mode. interface interface-id Example: S...

Configuration Examples Example: Creating a VLAN Name This example shows how to create Ethernet VLAN 20, name it test20, and add it to the VLAN database: Switch# configure terminal Switch(config)# vlan 20 Switch(config-vlan)# name test20 Switch(config-vlan)# end Related Topics Creating or Modifying a...

Technical Assistance Link Description http://www.cisco.com/support The Cisco Support website provides extensive onlineresources, including documentation and tools fortroubleshooting and resolving technical issues withCisco products and technologies. To receive security and technical information abou...

Cisco switches separated by a cloud of non-Cisco IEEE 802.1Q switches. The non-Cisco IEEE 802.1Qcloud separating the Cisco switches is treated as a single trunk link between the switches. • Make sure the native VLAN for an IEEE 802.1Q trunk is the same on both ends of the trunk link. If thenative VL...

generate DTP frames. Use the switchport trunk encapsulation dot1q interface to select the encapsulation type on the trunk port. You can also specify on DTP interfaces whether the trunk uses IEEE 802.1Q encapsulation or if theencapsulation type is autonegotiated. The DTP supports autonegotiation of I...

Allowed VLANs on a Trunk By default, a trunk port sends traffic to and receives traffic from all VLANs. All VLAN IDs, 1 to 4094, areallowed on each trunk. However, you can remove VLANs from the allowed list, preventing traffic from thoseVLANs from passing over the trunk. To reduce the risk of spanni...

Figure 4: Load Sharing by Using STP Port Priorities Trunk 1 carries traffic for VLANs 8 through 10, and Trunk 2 carries traffic for VLANs 3 through 6. If theactive trunk fails, the trunk with the lower priority takes over and carries the traffic for all of the VLANs. Noduplication of traffic occurs ...

Feature Interactions Trunking interacts with other features in these ways: • A trunk port cannot be a secure port. • A trunk port cannot be a tunnel port. • Trunk ports can be grouped into EtherChannel port groups, but all trunks in the group must have thesame configuration. When a group is first cr...

Default Setting Feature VLANs 2 to 1001 VLAN range eligible for pruning VLAN 1 Default VLAN (for access ports) VLAN 1 Native VLAN (for IEEE 802.1Q trunks) How to Configure VLAN Trunks To avoid trunking misconfigurations, configure interfaces connected to devices that do not support DTP tonot forward...

Purpose Command or Action Displays the switch port configuration of the interface in the Administrative Mode and the Administrative Trunking Encapsulation fields of the display. show interfaces interface-id switchport Example: Switch# show interfaces Step 7 gigabitethernet1/0/2 switchport Displays t...

Changing the Pruning-Eligible List The pruning-eligible list applies only to trunk ports. Each trunk port has its own eligibility list. VTP pruningmust be enabled for this procedure to take effect. SUMMARY STEPS 1. configure terminal 2. interface interface-id 3. switchport trunk pruning vlan { add |...

Purpose Command or Action Returns to privileged EXEC mode. end Example: Switch(config)# end Step 4 Verifies your entries in the Pruning VLANs Enabled field of the display. show interfaces interface-id switchport Example: Switch# show interfaces Step 5 gigabitethernet2/0/1 switchport (Optional) Saves...

DETAILED STEPS Purpose Command or Action Enters the global configuration mode. configure terminal Example: Switch# configure terminal Step 1 Defines the interface that is configured as the IEEE802.1Q trunk, and enters interface configuration mode. interface interface-id Example: Switch(config)# inte...

Purpose Command or Action Assigns the port priority for the VLAN range specified.Enter a port priority value from 0 to 240. Port priorityvalues increment by 16. spanning-tree vlan vlan-range port-prioritypriority-value Example: Switch(config-if)# spanning-tree vlan 3-6 port-priority 16 Step 20 Retur...

Purpose Command or Action Returns to global configuration mode. end Example: Switch(config-if)# end Step 12 Repeat Steps 9 through 13 on the other configured trunkinterface on Switch A, and set the spanning-tree path costto 30 for VLANs 8, 9, and 10. Step 13 Returns to privileged EXEC mode. exit Exa...

Related Topics Configuring a Trunk Port, on page 67 Feature Interactions, on page 66 Example: Removing a VLAN This example shows how to remove VLAN 2 from the allowed VLAN list on a port: Switch(config)# interface gigabitethernet0/1 Switch(config-if)# switchport trunk allowed vlan remove 2 Switch(co...

MIBs MIBs Link MIB To locate and download MIBs for selected platforms,Cisco IOS releases, and feature sets, use Cisco MIBLocator found at the following URL: http://www.cisco.com/go/mibs All supported MIBs for this release. Technical Assistance Link Description http://www.cisco.com/support The Cisco ...

template is configured, use the sdm prefer default global configuration command to set the default template. Secondary and Primary VLAN Configuration Follow these guidelines when configuring private VLANs: • If the switch is running VTP version 1 or 2, you must set VTP to transparent mode. After you...

For more information about using the ip sticky-arp global configuration and the ip sticky-arp interface configuration commands, see the command reference for this release. • You can configure VLAN maps on primary and secondary VLANs. However, we recommend that youconfigure the same VLAN maps on priv...

Restrictions for Private VLANs The following are restrictions for configuring private VLANs: • Private VLANs are only supported on switches running the IP Lite image. Limitations with Other Features When configuring private VLANs, remember these limitations with other features: In some cases, the co...

Dynamic MAC addresses learned in one VLAN of a private VLAN are replicated inthe associated VLANs. For example, a MAC address learned in a secondary VLAN isreplicated in the primary VLAN. When the original dynamic MAC address is deletedor aged out, the replicated addresses are removed from the MAC a...

private VLAN can have multiple VLAN pairs, one pair for each subdomain. All VLAN pairs in a privateVLAN share the same primary VLAN. The secondary VLAN ID differentiates one subdomain from another. Figure 6: Private VLAN Domain Related Topics Configuring and Associating VLANs in a Private VLAN, on p...

• Promiscuous — A promiscuous port belongs to the primary VLAN and can communicate with all interfaces, including the community and isolated host ports that belong to the secondary VLANs associated withthe primary VLAN. • Isolated — An isolated port is a host port that belongs to an isolated seconda...

A feature of private VLANs across multiple switches is that traffic from an isolated port in switch A does notreach an isolated port on Switch B. Figure 7: Private VLANs Across Switches Because VTP does not support private VLANs, you must manually configure private VLANs on all switchesin the Layer ...

Multicast traffic is routed or bridged across private VLAN boundaries and within a single community VLAN.Multicast traffic is not forwarded between ports in the same isolated VLAN or between ports in differentsecondary VLANs. Private VLANs and SVIs In a Layer 3 switch, a switch virtual interface (SV...

3 Configure interfaces to be isolated or community host ports, and assign VLAN membership to the hostport. 4 Configure interfaces as promiscuous ports, and map the promiscuous ports to the primary-secondaryVLAN pair. 5 If inter-VLAN routing will be used, configure the primary SVI, and map the second...

Purpose Command or Action Example: Switch# copy running-config startup-config To save the private-VLAN configuration, you need to save theVTP transparent mode configuration and private-VLANconfiguration in the switch startup configuration file.Otherwise, if the switch resets, it defaults to VTP serv...

Purpose Command or Action single private VLAN ID or a hyphenated range of private VLANIDs. mapping 20 add 501-503 Enter a secondary_vlan_list , or use the add keyword with a secondary_vlan_list to map the secondary VLANs to the private VLAN promiscuous port. Use the remove keyword with a secondary_v...

Purpose Command or Action mapping Saves your entries in the switch startup configuration file. copy running-config startup config Example: Switch# copy running-config Step 6 startup-config Related Topics Example: Mapping Secondary VLANs to a Primary VLAN Interface, on page 103 Monitoring Private VLA...

Configuration Examples for Private VLANs Example: Configuring a Primary VLAN, Isolated VLAN, and a Community ofVLANs This example shows how to configure VLAN 20 as a primary VLAN, VLAN 501 as an isolated VLAN, andVLANs 502 and 503 as community VLANs, to associate them in a private VLAN, and to verif...

Negotiation of Trunking: OffAccess Mode VLAN: 1 (default)Trunking Native Mode VLAN: 1 (default)Administrative Native VLAN tagging: enabledVoice VLAN: noneAdministrative private-vlan host-association: 20 501Administrative private-vlan mapping: noneAdministrative private-vlan trunk native VLAN: noneAd...

Example: Monitoring Private VLANs This example shows output from the show vlan private-vlan command: Switch(config)# show vlan private-vlan Primary Secondary Type Ports ------- --------- ----------------- ------------------------------------------10 501 isolated Gi2/0/1, Gi3/0/1, Gi3/0/2 10 502 comm...

MIBs MIBs Link MIB To locate and download MIBs for selected platforms,Cisco IOS releases, and feature sets, use Cisco MIBLocator found at the following URL: http://www.cisco.com/go/mibs All supported MIBs for this release. Technical Assistance Link Description http://www.cisco.com/support The Cisco ...

Restrictions for VMPS • IEEE 802.1x ports cannot be configured as dynamic-access ports. If you try to enable IEEE 802.1x ona dynamic-access (VQP) port, an error message appears, and IEEE 802.1x is not enabled. If you try tochange an IEEE 802.1x-enabled port to dynamic VLAN assignment, an error messa...

• If the host is not allowed on the port and the VMPS is in open mode, the VMPS sends an access-deniedresponse. • If the VLAN is not allowed on the port and the VMPS is in secure mode, the VMPS sends a port-shutdownresponse. If the port already has a VLAN assignment, the VMPS provides one of these r...

Default VMPS Client Configuration The following table shows the default VMPS and dynamic-access port configuration on client switches. Table 13: Default VMPS Client and Dynamic-Access Port Configuration Default Setting Feature None VMPS domain server 60 minutes VMPS reconfirm interval 3 VMPS server ...

DETAILED STEPS Purpose Command or Action Enters the global configuration mode. configure terminal Example: Switch# configure terminal Step 1 Enters the IP address of the switch acting as the primaryVMPS server. vmps server ipaddress primary Example: Switch(config)# vmps server 10.1.2.3 primary Step ...

Purpose Command or Action Configures the port as eligible for dynamic VLANmembership. switchport access vlan dynamic Example: Switch(config-if)# switchport access vlan dynamic Step 4 The dynamic-access port must be connected to an endstation. Returns to privileged EXEC mode. end Example: Switch(conf...

DETAILED STEPS Purpose Command or Action Reconfirms dynamic-access port VLAN membership. vmps reconfirm Example: Switch# vmps reconfirm Step 1 Verifies the dynamic VLAN reconfirmation status. show vmps Example: Switch# show vmps Step 2 Changing the Reconfirmation Interval VMPS clients periodically r...

Purpose Command or Action Sets the number of minutes between reconfirmations of thedynamic VLAN membership. The range is 1 to 120. The defaultis 60 minutes. vmps reconfirm minutes Example: Switch(config)# vmps reconfirm 90 Step 2 To return the switch to its default setting, use the no vmps reconfirm...

DETAILED STEPS Purpose Command or Action Enters the global configuration mode. configure terminal Example: Switch# configure terminal Step 1 Changes the retry count. The retry range is 1 to 10; the defaultis 3. vmps retry count Example: Switch(config)# vmps retry 5 Step 2 To return the switch to its...

Monitoring the VMPS You can display information about the VMPS by using the show vmps privileged EXEC command. The switch displays this information about the VMPS: • VMPS VQP Version — The version of VQP used to communicate with the VMPS. The switch queries the VMPS that is using VQP Version 1. • Re...

• VTP • VLANs • VLAN Trunking • Private VLANs • Tunneling • Voice VLANs Additional References Related Documents Document Title Related Topic Catalyst 2960-XR Switch VLAN ManagementCommand Reference For complete syntax and usage information for thecommands used in this chapter. Standards and RFCs Tit...

Technical Assistance Link Description http://www.cisco.com/support The Cisco Support website provides extensive onlineresources, including documentation and tools fortroubleshooting and resolving technical issues withCisco products and technologies. To receive security and technical information abou...

IEEE 802.1Q Tunneling and Incompatibilities Although IEEE 802.1Q tunneling works well for Layer 2 packet switching, there are incompatibilities betweensome Layer 2 features and Layer 3 switching. • A tunnel port cannot be a routed port. • IP routing is not supported on a VLAN that includes IEEE 802....

Layer 2 Tunneling for EtherChannels To configure Layer 2 point-to-point tunneling to facilitate the automatic creation of EtherChannels, you needto configure both the SP (service-provider) edge switch and the customer switch. Related Topics Configuring Layer 2 Protocol Tunneling, on page 135 Example...

Example: Configuring an IEEE 802.1Q Tunneling Port, on page 143 IEEE 802.1Q Tunneling Configuration Guidelines When you configure IEEE 802.1Q tunneling, you should always use an asymmetrical link between the customerdevice and the edge switch, with the customer device port configured as an IEEE 802....

• Ensure that the native VLAN ID on the edge-switch trunk port is not within the customer VLAN range.For example, if the trunk port carries traffic of VLANs 100 to 200, assign the native VLAN a numberoutside that range. Figure 11: Potential Problems with IEEE 802.1Q Tunneling and Native VLANs System...

SP switch, remote customer switches receive the PDUs and can negotiate the automatic creation ofEtherChannels. For example, in the following figure (Layer 2 Protocol Tunneling for EtherChannels), Customer A has twoswitches in the same VLAN that are connected through the SP network. When the network ...

access ports in the same metro VLAN. Therefore, the Layer 2 PDUs remain intact and are delivered acrossthe service-provider infrastructure to the other side of the customer network. See the Layer 2 Protocol Tunneling figure in Layer 2 Protocol Tunneling Overview, on page 129 , with Customer X and Cu...

How to Configure Tunneling Configuring an IEEE 802.1Q Tunneling Port SUMMARY STEPS 1. configure terminal 2. interface interface-id 3. switchport access vlan vlan-id 4. switchport mode dot1q-tunnel 5. exit 6. vlan dot1q tag native 7. end 8. Use one of the following: • show dot1q-tunnel • show running...

Purpose Command or Action (Optional) Saves your entries in the configuration file. copy running-config startup-config Example: Switch# copy running-config startup-config Step 10 Related Topics IEEE 802.1Q Tunneling, on page 124 IEEE 802.1Q Tunneling and Incompatibilities, on page 122 Example: Config...

Purpose Command or Action startup-config Related Topics Layer 2 Protocol Tunneling on Ports, on page 131 Layer 2 Protocol Tunneling , on page 122 Layer 2 Tunneling for EtherChannels, on page 124 Example: Configuring Layer 2 Protocol Tunneling, on page 144 Configuring the SP Edge Switch Before You Be...

Purpose Command or Action Displays the Layer 2 tunnel ports on the switch, including the protocolsconfigured, the thresholds, and the counters. show l2protocol Example: Switch)# show l2protocol Step 13 (Optional) Saves your entries in the configuration file. copy running-config startup-config Exampl...

Purpose Command or Action Example: Switch(config)# shutdown Enables the interface. no shutdown Step 9 Example: Switch(config)# no shutdown Returns to privileged EXEC mode. end Example: Switch(config)# end Step 10 Displays the Layer 2 tunnel ports on the switch, includingthe protocols configured, the...

Switch(config-if)# switchport access vlan 22 % Access VLAN does not exist. Creating vlan 22Switch(config-if)# switchport mode dot1q-tunnel Switch(config-if)# exit Switch(config)# vlan dot1q tag native Switch(config)# end Switch# show dot1q-tunnel interface gigabitethernet1/0/7 Port-----Gi1/0/1Port--...

Examples: Configuring the SP Edge and Customer Switches This example shows how to configure the SP edge switch 1 and edge switch 2. VLANs 17, 18, 19, and 20are the access VLANs, Fast Ethernet interfaces 1 and 2 are point-to-point tunnel ports with PAgP and UDLDenabled, the drop threshold is 1000, an...

Switch(config-if)# switchport mode trunk Switch(config-if)# udld enable Switch(config-if)# channel-group 1 mode desirable Switch(config-if)# exit Switch(config)# interface gigabitethernet1/0/4 Switch(config-if)# switchport trunk encapsulation dot1q Switch(config-if)# switchport mode trunk Switch(con...

Technical Assistance Link Description http://www.cisco.com/support The Cisco Support website provides extensive onlineresources, including documentation and tools fortroubleshooting and resolving technical issues withCisco products and technologies. To receive security and technical information abou...

Trunk ports can carry any number of voice VLANs, similar to regular VLANs. Theconfiguration of voice VLANs is not supported on trunk ports. Note • Before you enable voice VLAN, we recommend that you enable QoS on the switch by entering the mls qos global configuration command and configure the port ...

Figure 15: Cisco 7960 IP Phone Connected to aSwitch Cisco IP Phone Voice Traffic You can configure an access port with an attached Cisco IP Phone to use one VLAN for voice traffic andanother VLAN for data traffic from a device attached to the phone. You can configure access ports on theswitch to sen...

• In untrusted mode, all traffic in IEEE 802.1Q or IEEE 802.1p frames received through the access porton the Cisco IP Phone receive a configured Layer 2 CoS value. The default Layer 2 CoS value is 0.Untrusted mode is the default. Untagged traffic from the device attached to the Cisco IP Phone passes...

• Voice VLAN ports can also be these port types: ◦ Dynamic access port. ◦ IEEE 802.1x authenticated port. If you enable IEEE 802.1x on an access port on which a voice VLAN is configured andto which a Cisco IP Phone is connected, the phone loses connectivity to the switch forup to 30 seconds. Note ◦ ...

Purpose Command or Action • none — Allows the phone to use its own configuration to send untagged voice traffic. • untagged — Configures the phone to send untagged voice traffic. Before configuring the switch port to detect and recognize aCisco IP phone, confirm that the phone is powered by PoE. The...

Purpose Command or Action Returns to privileged EXEC mode. end Example: Switch(config-if)# end Step 4 Verifies your entries. show interfaces interface-id switchport Example: Switch# show interfaces Step 5 gigabitethernet1/0/1 switchport (Optional) Saves your entries in the configuration file. copy r...

Technical Assistance Link Description http://www.cisco.com/support The Cisco Support website provides extensive onlineresources, including documentation and tools fortroubleshooting and resolving technical issues withCisco products and technologies. To receive security and technical information abou...

I N D E X C Cisco 7960 IP Phone 150 Cisco IP Phone Data Traffic 151 Cisco IP Phone Voice Traffic 151 configuring 111 confirming 113 CoS 155 override priority 155 D default Ethernet VLAN configuration 46 Default Layer 2 Ethernet Interface VLAN Configuration 66 default private VLAN configuration 93 de...