Cisco Systems 15310-CL, 15310-MA manual Fcs

Page 99

Chapter 8 Configuring IEEE 802.1Q Tunneling and Layer 2 Protocol Tunneling on the ML-Series Card

Understanding IEEE 802.1Q Tunneling

Figure 8-2 Normal, IEEE 802.1Q, and IEEE 802.1Q-Tunneled Ethernet Packet Formats

 

Source

 

 

 

 

 

 

 

address

 

 

 

 

 

 

Destination

Length/

 

Frame Check

 

address

EtherType

 

 

Sequence

 

 

 

 

 

 

 

 

 

Original Ethernet frame

 

DA

SA

 

Len/Etype

Data

 

FCS

 

 

 

 

 

 

 

 

 

 

 

DA

SA

Etype

Tag

Len/Etype

Data

FCS

IEE 802.1Q frame from customer network

DA

SA

Etype

Tag

Etype

Tag

Len/Etype

Data

FCS

74072

Double-tagged frame in service provider infrastructure

When the packet enters the trunk port of the service-provider egress switch, the outer tag is again stripped as the packet is processed internally on the switch. However, the metro tag is not added when it is sent out the tunnel port on the edge switch into the customer network, and the packet is sent as a normal IEEE 802.1Q-tagged frame to preserve the original VLAN numbers in the customer network.

In Figure 8-1 on page 8-2, Customer A was assigned VLAN 30, and Customer B was assigned

VLAN 40. Packets entering the ML-Series card tunnel ports with IEEE 802.1Q tags are double-tagged when they enter the service-provider network, with the outer tag containing VLAN ID 30 or 40, appropriately, and the inner tag containing the original VLAN number, for example, VLAN 100. Even if both Customers A and B have VLAN 100 in their networks, the traffic remains segregated within the service-provider network because the outer tag is different. With IEEE 802.1Q tunneling, each customer controls its own VLAN numbering space, which is independent of the VLAN numbering space used by other customers and the VLAN numbering space used by the service-provider network.

At the outbound tunnel port, the original VLAN numbers on the customer’s network are recovered. If the traffic coming from a customer network is not tagged (native VLAN frames), these packets are bridged or routed as if they were normal packets, and the metro tag is added (as a single-level tag) when they exit toward the service provider network.

If the native VLAN (VLAN 1) is used in the service provider network as a metro tag, this tag must always be added to the customer traffic, even though the native VLAN ID is not normally added to transmitted frames. If the VLAN 1 metro tag is not added on frames entering the service provider network, then the customer VLAN tag appears to be the metro tag, with disastrous results. The global configuration vlan dot1q tag native command must be used to prevent this by forcing a tag to be added to VLAN 1.

Avoiding the use of VLAN 1 as a metro tag transporting customer traffic is recommended to reduce the risk of misconfiguration. A best practice is to use VLAN 1 as a private management VLAN in the service provider network.

The IEEE 802.1Q class of service (COS) priority field on the added metro tag is set to zero by default, but can be modified by input or output policy maps.

Cisco ONS 15310-CL and Cisco ONS 15310-MA Ethernet Card Software Feature and Configuration Guide R8.5

 

78-18133-01

8-3

 

 

 

Page 98 Page 100
Image 99
Page 98 Page 100
Contents Text Part Number Americas HeadquartersCopyright 2007-2009 Cisco Systems, Inc. All rights reserved RPR Startup Configuration File Iii Configuring POS Interface Framing ModeUnderstanding VLANs Configuring Encapsulation over EtherChannel or POS Channel IP ACLs Vii Role of Sonet CircuitsViii Configuration GuidelinesUsing Technical Support C-1 Page 11-7 11-311-4 11-514-22 14-1314-17 14-1811-12 10-510-6 11-1113-3 17-717-8 Date PrefaceRevision History This section provides the following informationDocument Objectives AudienceRelated Documentation Italic Document ConventionsConvention Application BoldfaceWarnung Wichtige Sicherheitshinweise Bewaar Deze InstructiesAviso Instruções Importantes DE Segurança Avvertenza Importanti Istruzioni Sulla SicurezzaPage GEM Disse Anvisninger Viii Where to Find Safety and Warning Information Obtaining Optical Networking InformationCisco Optical Networking Product Documentation CD-ROM Page ML-Series Card Description Overview of the ML-Series CardIRB ML-Series Feature ListBundling the two POS ports LEX encapsulation only Cisco IOS Release 12.228SV Key ML-Series FeaturesCisco IOS GFP-F FramingRmon Link Aggregation FEC and POSTL1 Refresh CTC Operations on the ML-Series CardDisplaying ML-Series POS Statistics in CTC ML-Series POS Statistics Fields and ButtonsDisplaying ML-Series Ethernet Statistics in CTC Button DescriptionML-Series Ethernet Statistics Fields and Buttons CTC Displaying Sonet Alarms Displaying J1 Path TraceProvisioning Sonet Circuits 78-18133-01 Page Initial Configuration of the ML-Series Card Hardware InstallationCisco IOS on the ML-Series Card Telnetting to the Node IP Address and Slot Number Opening a Cisco IOS Session Using CTCCTC Node View Showing IP Address Telnetting to a Management PortRJ-11 Pin RJ-45 Pin Connecting a PC or Terminal to the Console PortML-Series IOS CLI Console Port RJ-11 to RJ-45 Console Cable AdapterStartup Configuration File Router enable PasswordsConfiguring the Management Port Command PurposeNvram Configuring the HostnameClick the IOS startup config button Loading a Cisco IOS Startup Configuration File Through CTCDatabase Restore of the Startup Configuration File Cisco IOS Command ModesEnter the line console Mode What You Use It For How to Access PromptEnter the configure terminal Interface fastethernet 0 forGetting Help Using the Command ModesRouter# configure ? ExitPage Configuring Interfaces on the ML-Series Card General Interface GuidelinesMAC Addresses MLSeries# show interfaces fastethernet Interface Port IDBasic Interface Configuration MLSeries# configure terminalMLSeriesconfig# interface fastethernet number Configuring the Fast Ethernet Interfaces Basic Fast Ethernet and POS Interface ConfigurationConfiguring the POS Interfaces Hdlc Monitoring Operations on the Fast Ethernet InterfacesFCR Example 4-3 show controller Command OutputDaytona# show run interface fastethernet Example 4-4 show run interface Command OutputConfiguring POS on the ML-Series Card Understanding POS on the ML-Series CardAvailable Circuit Sizes and Combinations Mbps STS-1 STS-1-1v STS-1-2v J1 Path Trace, and Sonet AlarmsLcas Support Ccat High Order Vcat High OrderGFP-F Framing Hdlc Framing Configuring the POS InterfaceEncapsulations LEX default Cisco Hdlc CRC Sizes Bit default None FCS disabledAdmindown Configuring POS Interface Framing ModeFraming mode changes on POS ports are Allowed only when the interface is shut downGFP default-The ML-Series card supports Sets the framing mode employed by the ONSNot a keyword choice in the command. The no Form of the command sets the framing modeConfiguring Sonet Alarms Sonet AlarmsAll -All alarms/signals Configuring Sonet Delay TriggersMonitoring and Verifying POS Hdlc Page Configuring STP and Rstp on the ML-Series Card STP FeaturesThese sections describe how the spanning-tree features work STP Overview Supported STP InstancesBridge Protocol Data Units Election of the Root Switch Bit Bridge ID, Switch Priority, and Extended System IDSpanning-Tree Timers Switch Priority ValueSpanning-Tree Interface States Creating the Spanning-Tree TopologySpanning-Tree Interface States Blocking StateForwarding State Disabled StateListening State Learning StateSpanning-Tree Address Management STP and Ieee 802.1Q TrunksSpanning Tree and Redundant Connectivity Rstp Features Accelerated Aging to Retain ConnectivitySupported Rstp Instances Port Roles and the Active Topology Is Port IncludedPort State Comparison Rapid Convergence Proposal and Agreement Handshaking for Rapid Convergence Synchronization of Port RolesBridge Protocol Data Unit Format and Processing Bit FunctionRstp Bpdu Flags Topology Changes Processing Superior Bpdu InformationProcessing Inferior Bpdu Information Interoperability with Ieee 802.1D STP Configuring STP and Rstp FeaturesDefault STP and Rstp Configuration Feature Default SettingDisabling STP and Rstp Configuring the Root Switch Configuring the Port PriorityPort-channel-number Configuring the Switch Priority of a Bridge Group Configuring the Path CostConfiguring the Hello Time Configuring the Forwarding-Delay Time for a Bridge Group Configuring the Maximum-Aging Time for a Bridge GroupVerifying and Monitoring STP and Rstp Status Displays brief summary of STP or Rstp information Commands for Displaying Spanning-Tree StatusExample 6-1 show spanning-tree Commands Displays detailed STP or Rstp informationPage Understanding VLANs Configuring VLANs on the ML-Series CardConfiguring Ieee 802.1Q Vlan Encapsulation MLSeriesconfig-subif# end Ieee 802.1Q Vlan ConfigurationReturns to privileged Exec mode Optional Saves your configuration changes toBridging Ieee 802.1Q VLANs Example 7-2 Output for show vlans Command Monitoring and Verifying Vlan OperationML-Series#show vlans Page Understanding Ieee 802.1Q Tunneling Ieee 802.1Q Tunnel Ports in a Service-Provider Network FCS Configuring Ieee 802.1Q Tunneling Ieee 802.1Q Tunneling and Compatibility with Other FeaturesConfiguring an Ieee 802.1Q Tunneling Port Ieee 802.1Q Example Untagged will be switched based on this bridge-group. OtherDisplays the tunnel ports on the switch Optional Saves your entries in the configuration fileVLAN-Transparent Services VLAN-Specific Services Example 8-2 MLSeries B ConfigurationVLAN-Transparent Service Versus VLAN-Specific Services Example 8-3applies to ML-Series card a Example 8-3 ML-Series Card a ConfigurationExample 8-5applies to ML-Series card C Example 8-4 ML-Series Card B ConfigurationExample 8-5 ML-Series Card C Configuration Example 8-4applies to ML-Series card BUnderstanding Layer 2 Protocol Tunneling Configuring Layer 2 Protocol TunnelingDefault Layer 2 Protocol Tunneling Configuration Default Layer 2 Protocol Tunneling ConfigurationLayer 2 Protocol Tunneling Configuration Guidelines 2shows the default Layer 2 protocol tunneling configurationConfiguring Layer 2 Tunneling on a Port Monitoring and Verifying Tunneling Status Configuring Layer 2 Tunneling Per-VLANUnderstanding Link Aggregation Configuring Link Aggregation on the ML-Series CardConfiguring Fast EtherChannel Configuring Link AggregationCisco IOS Configuration Fundamentals Configuration Guide EtherChannel Configuration ExampleAssigns an IP address and subnet mask to the POS Configuring POS ChannelConfigure one POS channel on the ML-Series card Creates the POS channel interface. You canPOS Channel Configuration Example Understanding Encapsulation over FEC or POS Channel Configuring Encapsulation over EtherChannel or POS ChannelEncapsulation over EtherChannel Example Configuration mode and enable otherSupported interface commands to meet Example 9-5 MLSeries a ConfigurationMonitoring and Verifying EtherChannel and POS Example 9-6 MLSeries B ConfigurationPort Load Balancing on the ML-Series cardsFor the Frame XOR Result Port ChannelEtherChannel Used MemberInterface for FrameFourth SecondFirst ThirdUsed Member This chapter includes the following major sections Configuring IRB on the ML-Series CardCisco IOS Command Reference publication Understanding Integrated Routing and Bridging10-2 Configuring IRB10-3 IRB Configuration Example10-4 Example 10-1 Configuring MLSeries aExample 10-2 Configuring MLSeries B Monitoring and Verifying IRB10-5 10-6 Field Description11-1 Configuring Quality of Service on the ML-Series Card11-2 IP Precedence and Differentiated Services Code PointUnderstanding QoS Priority Mechanism in IP and Ethernet11-3 Ethernet CoSML-Series QoS Classification11-4 Policing Marking and Discarding with a Policer11-5 Queuing Scheduling11-6 11-7 Control Packets and L2 Tunneled Protocols11-8 Egress Priority MarkingIngress Priority Marking QinQ ImplementationQoS on RPR Flow Control Pause and QoS11-9 Configuring QoS Creating a Traffic Class11-10 11-11 Creating a Traffic PolicyMaximum of 40 alphanumeric characters Syntax of the class command isPolicy-map policy-nameno policy-map policy-name Class class-map-name no class class-map-name11-13 11-14 Command11-15 Attaching a Traffic Policy to an InterfaceTraffic class Monitoring and Verifying QoS ConfigurationConfiguring CoS-Based QoS Displays all configured traffic policies11-17 QoS Configuration ExamplesTraffic Classes Defined Example Traffic Policy Created Example11-18 Match spr1 Interface Example Example 11-6 Class Map Match All Command ExampleExample 11-7 Class Map Match Any Command Example Example 11-8 Class Map SPR Interface Command Example11-20 Example 11-9 ML-Series VoIP CommandsML-Series VoIP Example ML-Series Policing ExampleML-Series CoS-Based QoS Example Example 11-10 ML-Series Policing CommandsRouterconfig# class-map match-all policer Routerconfig# policy-map policef0ML-Series CoS Example 11-2211-23 Default Multicast QoSConfiguring Multicast Priority Queuing QoS Multicast Priority Queuing QoS Restrictions11-24 11-25 QoS not Configured on Egress ML-Series Egress Bandwidth Example11-26 Bandwidth 11-2711-28 Understanding CoS-Based Packet StatisticsFast Ethernet Statistics Collected Interface Subinterface Vlan11-29 Configuring CoS-Based Packet StatisticsMLSeries# show interface pos0 cos Understanding IP SLA11-30 MLSeries# show interface fastethernet 0 cosIP SLA on the ML-Series IP SLA Restrictions on the ML-Series11-31 11-32 Understanding the SDM Understanding SDM Regions12-1 Lookup Type Configuring SDMConfiguring SDM Regions Default SizeEntries Configuring Access Control List Size in TcamTask Command Monitoring and Verifying SDM12-4 13-1 Configuring Access Control Lists on ML-Series CardUnderstanding ACLs ML-Series ACL Support13-2 IP ACLsNamed IP ACLs User GuidelinesCreating IP ACLs Creating Numbered Standard and Extended IP ACLs13-3 13-4 Creating Named Standard IP ACLsCreating Named Extended IP ACLs Control Plane Only Applying the ACL to an InterfaceApplying ACL to Interface Controls access to an interfaceModifying ACL Tcam Size 13-513-6 Configuring Resilient Packet Ring on ML-Series Card Understanding RPR14-1 Role of Sonet Circuits Packet Handling Operations14-2 14-3 Ring Wrapping14-4 RPR Framing ProcessRPR Frame for ML-Series Card DA-MAC and 0x00 for Unknown DA-MACRPR as the source 14-5CTM and RPR Configuring RPRMAC Address and Vlan Support RPR QoSConfiguring CTC Circuits for RPR CTC Circuit Configuration Example for RPR14-7 Three-Node RPR Example 14-814-9 14-10 Configures a station ID. The user must configure aOptional Sets the RPR ring wrap mode to either wrap Immediate delayed14-11 Assigning the ML-Series Card POS Ports to the SPR Interface14-12 14-13 14-14 RPR Cisco IOS Configuration ExampleExample 14-1 SPR Station-ID 1 Configuration Example 14-2 SPR Station-ID 2 ConfigurationCRC Threshold Configuration and Detection Example 14-3 SPR Station-ID 3 Configuration14-15 Example 14-5 Example of show run interface spr 1 Output Monitoring and Verifying RPR14-16 Example 14-4 Example of show interface spr 1 Output14-17 Add an ML-Series Card into an RPRThree-Node RPR After the Addition 14-1814-19 Adding an ML-Series Card into an RPR14-20 Cisco ONS 15454 Procedure GuideEnables the port Endpoint of the first newly created circuit14-21 Stop. You have completed this procedureDelete an ML-Series Card from an RPR Endpoint of the second newly created circuitThree-Node RPR Before the Deletion 14-2214-23 Deleting an ML-Series Card from an RPRLog into Adjacent Node 1 with CTC Double-click the ML-Series card in Adjacent Node14-24 Cisco Proprietary RPR Shortest Path Configuring Cisco Proprietary RPR KeepAliveConfiguring Shortest Path and Topology Discovery Cisco Proprietary RPR KeepAlive14-26 Redundant InterconnectMonitoring and Verifying Shortest Path andTopolgy Discovery Redundant Interconnect is only supported on 454 platformsConfiguring Security for the ML-Series Card Understanding Security15-1 Understanding SSH Secure Login on the ML-Series CardDisabling the Console Port on the ML-Series Card Secure Shell on the ML-Series CardThis section has configuration information Configuring SSHConfiguration Guidelines Setting Up the ML-Series Card to Run SSH15-4 Configuring the SSH ServerRouter config# ip ssh timeout Displaying the SSH Configuration and StatusRouter # configure terminal Router config# ip ssh version 1Radius Relay Mode Radius on the ML-Series Card15-6 Radius Stand Alone Mode Configuring Radius Relay Mode15-7 Configuring Radius Understanding Radius15-8 Default Radius Configuration Identifying the Radius Server Host15-9 15-10 Switchconfig# radius-server host host1 Configuring AAA Login AuthenticationRouter# configure terminal Enter global configuration mode Router config# aaa new-model Enable AAARouter config# aaa authentication Router config# line console tty15-12 15-13 Router config# end Return to privileged Exec modeRouter# show running-config Verify your entries Defining AAA Server GroupsRouter # show running-config Router config# aaa group serverRouter config-sg-radius# server Router config-sg-radius# end15-15 Radius15-16 Starting Radius AccountingConfiguring a nas-ip-address in the Radius Packet Configuring Settings for All Radius Servers15-17 15-18 Default is 0 the range is 1 to 1440 minutesDeadtime minutes Marked as dead, the skipping will not take place15-19 Send accounting authentication15-20 Displaying the Radius ConfigurationConfiguring Bridging on the ML-Series Card Understanding Bridging16-1 16-2 Configuring BridgingFor any statically configured forwarding entries Monitoring and Verifying Bridging16-3 Brief displays summary information about spanning tree Displays detailed information about spanning treeBridge-group-number restricts the spanning tree information To specific bridge groups17-1 CE-100T-8 Ethernet OperationCE-100T-8 Overview SonetCE-100T-8 Ethernet Features Autonegotiation, Flow Control, and Frame Buffering17-2 17-3 Ethernet Link Integrity SupportEnhanced State Model for Ethernet and Sonet Ports Ieee 802.1Q CoS and IP ToS Queuing17-4 17-5 IP ToS Priority Queue MappingsCoS Priority Queue Mappings 17-6 CE-100T-8 Sonet Circuits and FeaturesRmon and Snmp Support Statistics and Counters17-7 Ccat High Order Vcat High Order Vcat Low OrderNumber of STS-3c Circuits Maximum Number of STS-1 Circuits Maximum Number of STS-1-2v Circuits17-8 CE-100T-8 Maximum Service DensitiesCE-100T-8 STS/VT Allocation Tab 7x=1-12 6x=1-14 5x=1-16 =1-2117-9 CE-100T-8 Vcat Characteristics17-10 CE-100T-8 POS Encapsulation, Framing, and CRC17-11 CE-100T-8 Loopback, J1 Path Trace, and Sonet Alarms17-12 Command Reference for the ML-Series Card Rstp Related Commands bridge-groupDrpri-rstp IeeeRelated Commands show interface Clear countersRouter# clear counters Clock timezone Syntax Description Defaults Command Modes Usage GuidelinesNo clock auto Clock summertimeInterface spr Defaults Command ModesNo pos mode gfp fcs-disabled Related Commands shutdownMLSeriesconfig-if # pos mode gfp fcs-disable No pos pdi holdoff time No pos report alarm Related CommandsPos trigger defects Syntax Description Defaults Related Commands pos trigger delayNon pos trigger defects condition Command is 50 milliseconds No pos trigger delay timeTime Delay time in milliseconds, 200 to Default value is 200 millisecondsImmediate No pos vcat defect immediate delayedDelayed Parameter DescriptionMLSeries# show controller pos 0 Interface POS0 Show controller pos interface-numberdetailsRelated Commands show interface pos Clear counters Use this command to display the status of the POS interface Related Commands show controller pos Clear countersShow interface pos interface-number MLSeries# show ons alarm Show ons alarm78-18133-01 Eqpt StsVcg MLSeries# show ons alarm defect sts Related Commands show controller pos Show ons alarm failuresML-Series#show ons alarm failure port MLSeries# show ons alarm failure eqptMLSeries# show ons alarm failure sts Interface spr Spr station-id Spr wrap Assigns the POS interface to the SPR interfacePort-based Related Commands interface sprNo spr load-balance auto port-based AutoSpr-intf-id Spr wrap Configures a station IDDefaultsN/A Following example sets an ML-Series card SPR station ID toSpr wrap immediate delayed Wraps RPR traffic after the carrier delay time expiresInterface spr Spr-intf-id Spr station-id Unsupported CLI Commands for the ML-Series Card Unsupported Privileged Exec CommandsUnsupported Global Configuration Commands Page Unsupported POS Interface Configuration Commands Unsupported FastEthernet Interface Configuration Commands Unsupported Port-Channel Interface Configuration Commands Rate-limit Random-detect Timeout Tx-ring-limit Unsupported BVI Interface Configuration CommandsGathering Information About Your Internetwork Using Technical SupportGetting the Data from Your ML-Series Card Providing Data to Your Technical Support Representative Page IN-5 IN-6 IS,AINSIN-7 CRC RPRRstp SDM SSHIN-9 Rstp STPSee also framing GFP-FIN-10 IN-11 LcasPOS RPR SDMIN-12 IN-13 Rmon RstpIN-14 Snmp See also BpduIN-15 Tcam VcatIN-16 VTP Layer 2 protocol tunneling Vty Configuring as Layer 2 tunnel Configuring Ieee 802.1QCustomer numbering in service-provider SDM STP and Rstp statusIN-18
Related manuals
Manual 8 pages 60.19 Kb Manual 352 pages 59.1 Kb

15310-CL, 15310-MA specifications

Cisco Systems has established itself as a leader in the networking domain, offering a wide array of solutions to meet the needs of modern businesses. Among its impressive product lineup are the Cisco 15310-CL and 15310-MA routers, designed to provide advanced network performance and reliability.

The Cisco 15310-CL is a versatile platform that primarily serves as a carrier-class router aimed at supporting high-speed data and voice services. It is built to handle the demands of large enterprises and service providers, offering a robust design that ensures maximum uptime and performance. One of its standout features is its modular architecture, which enables users to customize their configurations based on specific application needs. This scalability allows for future expansion without the need for a complete hardware overhaul.

Key technologies integrated into the Cisco 15310-CL include high-density Ethernet interfaces and a comprehensive suite of Layer 2 and Layer 3 protocol support. The device is capable of supporting multiple types of connections, including TDM, ATM, and Ethernet. This flexibility makes it an ideal choice for organizations that require seamless migration between various service types. Moreover, with features such as MPLS (Multiprotocol Label Switching) support and advanced Quality of Service (QoS) mechanisms, the router ensures that critical applications receive the necessary bandwidth and low latency required for optimal performance.

In contrast, the Cisco 15310-MA focuses on access solutions, providing a cost-effective entry point for businesses looking to enhance their network capabilities. It is well-suited for smaller offices or branch locations that need reliable connectivity without the expense and complexity associated with larger systems. The device supports a range of access methods and provides essential features like firewall capabilities, VPN support, and comprehensive security measures to protect sensitive data.

Both models benefit from Cisco's commitment to security and manageability, offering features like enhanced encryption protocols and user authentication mechanisms that help safeguard networks against threats. Additionally, they can be managed through Cisco’s intuitive software tools, simplifying configuration and monitoring tasks for IT administrators.

The Cisco 15310-CL and 15310-MA are ideal solutions for businesses seeking to enhance their network infrastructure, ensuring firms can keep pace with evolving technology demands while maintaining a focus on security and performance. Their combination of advanced features, modular capabilities, and robust support makes them valuable assets in the networking landscape.
Top Page Image Contents