Page 101
Chapter 6
Layer 3
The AT-8800 Series Switch routes IP and IP multicasting traffic at wire speed between VLANs, and supports a number of other Layer 3 protocols. Once a VLAN has been created (see “Virtual Local Area Networks (VLANs)” on page 72), the VLAN name can be used wherever a logical interface is required in commands for configuring routing protocols.
VLAN names are of the form:
VLAN-vlanname
or
VLANn
where vlanname is the manager-assigned name of the VLAN, and n is the VLAN identifier (VID).
For example, to create a VLAN called “admin” with a VID of 11, and add port 3 to it, use the commands:
CREATE VLAN=admin VID=11
ADD VLAN=11 PORT=3
The following names can be used to identify this VLAN in routing commands:
vlan-admin
vlan11
The following sections illustrate the use of VLANs for IP, RIP, IPX, AppleTalk and RSVP. For a complete description of all the protocols supported by the switch, see the Rapier Switch Software Reference.
Contents
AT-8800 Series Switch
Page
Contents
AT-8800 Series Switch User Guide
Operating the switch
Maintenance and Troubleshooting
Page
Chapter
Introducing the AT-8800 Series Switch
Why Read this User Guide?
AT-8800 Series Switch Documentation Set
Where To Find More Information
Introduction
Features of the AT-8800 Series Switch
Online Technical Support
Software Features
Management Features
Special Feature Licences
Do if You Clear Flash Memory Completely on
This Chapter
Getting Started with the Command Line Interface CLI
Parameters for terminal communication Value
Connecting a Terminal or PC
Terminal Communication Parameters
Getting Started with the Command Line Interface CLI
Enter the password at the password prompt
Logging
Assigning an IP Address
To change the IP address for an interface, enter the command
Setting Routes
To add a static route, enter the command
Changing a Password
Choosing a Password
Not available
Using the Commands
Aliases
Getting Command Line Help
To display the current help file, enter the command
Setting System Parameters
Enabling Special Feature Licences
Getting Started with the Graphical User Interface GUI
Getting Started with the Graphical User Interface GUI
Accessing the Switch via the GUI
What is the GUI?
Browser and PC Setup
Supported browsers and operating systems
Http Proxy Servers
See Option 3 Connecting to an Installed Switch on
Establishing a Connection to the Switch
See Option 1 Configuring the Switch before Installation on
See Option 2 Installing the Switch into the LAN on
See Http Proxy Servers on page 23 for more information
Option 1 Configuring the Switch before Installation
Use this procedure if
Default username is manager
Option 2 Installing the Switch into the LAN
At the login prompt, enter the user name and password
Plug the switch into the LAN
Assign the vlan1 interface an IP address
See Secure Access on page 29 for more information
Find out the IP address of the switch’s interface
Option 3 Connecting to an Installed Switch
Select a PC
If necessary, bypass the Http proxy server
Create a Security Officer user account
Secure Access
To create an RSA key pair, use the command
Then enter the password for CIPHER, sbr4y3
To enable system security, use the command
System Status
System Status
Configuration Menu
Using the GUI Navigation and Features
Using Configuration Pages
Quality of Service and traffic filters
An example of a configuration page with a selection table
Editable Fields
Monitoring Menu
Management Menu
Context Sensitive GUI Help
Diagnostics Menu
Changing the Password
Configuring Multiple Devices
Saving Configuration Entered with the GUI
Combining GUI and CLI Configuration
Then delete the GUI resource file, using the command
To upgrade the GUI
Load the new file onto the switch
Upgrading the GUI
Point your web browser at the switch’s IP address
Troubleshooting
Install the new file as the preferred GUI
Deleting Temporary Files
Accessing the Switch via the GUI
Traffic Flow
Solutions
Solution
IP Addresses and Dhcp
Time and NTP
Loading Software
Page
User Accounts and Privileges
Using Scripts on
Snmp and MIBs on
A Security Officer prompt looks like
Login
Operating the switch
Normal Mode and Security Mode
To display the current operating mode, enter the command
Specific Parameters
Storing Files in Flash Memory
Remote Management
Example output from the Show File command
Using Scripts
Storing Multiple Scripts
Saving the Switch’s Configuration
File extensions and file types Extension File type/function
Loading and Uploading Files
File Naming Conventions
SPA
Loading Files
Example Load a Patch File Using Http
Setting Loader Defaults
To load a patch file Configure the Loader
Download the patch file
Example Upload a Configuration File Using Tftp
Uploading Files From the Switch
More information
To upload a log file
Upgrading Switch Software
Load the new release file onto the switch
Example Upgrade to a New Software Release Using
To upgrade to a new software release
Make the release the default permanent release
Enter the licence password for the software release
Enter licence information for the release
Test the release
Check that the file is successfully loaded
Example Upgrade to a new patch file
To upgrade to a new patch file
Snmp and MIBs
Using the Built-in Editor
For More About Operations and Facilities
Where interface is the name of an interface, such as vlan11
AT-8800 Series Switch User Guide
Enabling and Disabling Switch Ports
Switch Ports
To display information about switch ports, use the command
To enable or disable a switch port, use the commands
STP
Autonegotiation of Port Speed and Duplex Mode
Speed 10/100
Port Trunking
Show VLAN=ALL
Packet Storm Protection
Layer 2 Switching
Port Mirroring
Port security
Virtual Local Area Networks VLANs
Example output from the Show Switch Port Intrusion command
Tpid
Vlan Tagging
Format of user priority and Vlan data in an Ethernet frame
Vlan Membership using Vlan Tags
Member ports
Vlan membership of example of a network using tagged ports
Vlan Membership of Untagged Packets
Vlans with untagged ports
Creating VLANs
To destroy a VLAN, use the command
To add tagged ports to a VLAN, use the command
Vlan Interaction with STPs and Trunk Groups
Summary of Vlan tagging rules
Protected VLANs
Ingress Rules
Layer 2 Switching Process
Generic Vlan Registration Protocol Gvrp
Learning Process
Forwarding Process
Layer 2 Filtering
Example output from the Show Switch Filter command
Egress Rules
Quality of Service
Spanning Tree Modes
Spanning Tree Protocol STP
Rapid Spanning Tree port states State Meaning
Spanning Tree and Rapid Spanning Tree Port States
Spanning tree port states State Meaning
Configuring STP
SET STP=stpnameALL PRIORITY=0..65535
Example output from the Show STP command
Do not occur
Parameter Meaning
Switch Max Age
To display STP port information, use the command
Example output from the Show STP Port command
94AT-8800 Series Switch User Guide
To show STP counters, use the command
Receive
96AT-8800 Series Switch User Guide
Transmit
Discarded
Igmp Snooping
Interfaces to Layer 3 Protocols
Disable Igmpsnooping
Group List
Example output from the Show IP Igmp command
Event
Triggers
Description
Parameters
Layer
Displays the interfaces enabled for IP routing Figure
Then use either of the following commands
Internet Protocol IP
IP Multicasting
Layer 103
Routing Information Protocol RIP
Novell IPX
AppleTalk
Example output from the Show IPX Circuit command
Layer 105
Resource Reservation Protocol Rsvp
Page
Maintenance and Troubleshooting
Switch startup messages
How the Switch Starts Up
Set system territory
How to Avoid Problems
Watch for software updates
If you accidentally do this, you will need to
What to Do if You Clear Flash Memory Completely
Getting the Most Out of Technical Support
What to Do if Passwords are Lost
What to Do if the PPP Link Disconnects Regularly
Checking Connections Using Ping
Resetting Switch Defaults
To get debugging output, enter the command
Maintenance and Troubleshooting 113
To set Ping defaults, enter the command
Troubleshooting IP Configurations
Stop a Ping that is in progress, enter the command
Telnet Fails
Your switch is acting as a Dhcp client
Troubleshooting Dhcp IP Addresses
Your switch is acting as a Dhcp server
Maintenance and Troubleshooting 115
To check that the PPP link is active, enter the command
Troubleshooting IPX Configurations
Local Workstations Can Not Access Remote Servers
No Routes are Visible to the Remote Router
Check route tables
Using Trace Route for IP Traffic
To halt a trace route that is in progress, enter the command