Juniper Networks
EX2500
manual
Default Vlan Settings, Port-Based Vlan Assignment
Rmon Group 3-Alarms
Default Vlan Settings
Configuration Guide
Accessing the Switch
Authorization
Quality of Service
Switch User Accounts
Using Telnet
Set the Lacp mode
Page 7
List of Figures
Figure 1: Default VLAN Settings
24
Figure 2:
Port-Based
VLAN Assignment
25
Figure 3: 802.1Q Tagging (after
Port-Based
VLAN Assignment)
25
Figure 4: 802.1Q Tag Assignment
25
Figure 5: 802.1Q Tagging (after 802.1Q Tag Assignment)
26
Figure 6: Sample Network with Multiple VLANs
27
Figure 7: Two VLANs on One Spanning Tree Group
37
Figure 8: Two VLANs, Each on a Different Spanning Tree Group
38
Figure 9: Implementing Multiple Spanning Tree Groups
40
Figure 10: Port Trunk Group Configuration Example
45
Figure 11: QoS Model
52
Figure 12: Layer 3 IPv4 Packet
60
Figure 13: Layer 2 802.1q/802.1p
VLAN-Tagged
Packet
63
Figure 14: Uplink Failure Detection Example
76
Figure 15: Monitoring Ports
81
List of Figures
vii
Page 6
Page 8
Image 7
Page 6
Page 8
Contents
North Mathilda Avenue Sunnyvale, CA
Configuration Guide
Ii
Table of Contents
Chapter VLANs
Rmon Overview Rmon Group 1-Statistics Rmon Group 2-History
Chapter Ports and Trunking
Appendixes
Port Mirroring Overview Configuring Port Mirroring
Indexes
Port-Based Vlan Assignment
Default Vlan Settings
Page
List of Tables
EX2500 Ethernet Switch Configuration Guide List of Tables
Supported Platforms
About This Guide
Objectives
Audience
Icon Meaning Description
Documentation Conventions
Documentation Feedback
List of Technical Publications
Requesting Technical Support
Opening a Case with Jtac
Self-Help Online Tools and Resources
EX2500 Ethernet Switch Applications
Page
Configuring the Management Interface
Accessing the Switch
Configure the default gateway. Enable the gateway
Dynamic Host Configuration Protocol
Using the EX2500 Web Device Manager
Using Telnet
Configuring EX2500 Web Device Manager Access via Https
Configuring EX2500 Web Device Manager Access via Http
SNMPv1, SNMPv2
Using Snmp
User Configuration
Default Configuration
SNMPv3
Configure an entry in the notify table
Configuring Snmp Trap Hosts
SNMPv1 Trap Host Configuration
SNMPv2 Trap Host Configuration
SNMPv3 Trap Host Configuration
Securing Access to the Switch
Configure the Radius secret
Radius Authentication and Authorization
How Radius Authentication Works
Configuring Radius on the Switch
Radius Authentication Features in the EX2500 Switch
Radius Attributes for EX2500 User Privileges
Switch User Accounts
How TACACS+ Authentication Works
TACACS+ Authentication
TACACS+ Authentication Features in the EX2500 Switch
starttime stoptime elapsedtime disccause
Configuring TACACS+ Authentication on the Switch
Command Authorization and Logging
Configure the TACACS+ secret and second secret
SSH Encryption of Management Messages
Configuring SSH Features on the Switch
Generating RSA Host and Server Keys for SSH Access
Secure Shell
SSH Integration with Radius and TACACS+ Authentication
End User Access Control
User Access Control
Considerations for Configuring End User Accounts
Logging In to an End User Account
Listing Current Users
Vlan Overview
VLANs
Pvid Numbers
Port configuration
VLANs and Port Vlan ID Numbers
Vlan Numbers
Vlan Tagging
Illustrates the default Vlan settings on the switch
Default Vlan Settings
Port-Based Vlan Assignment
Vlan Topologies and Design Considerations
Vlan Configuration Rules
Multiple VLANs example in is described in Table
Multiple VLANs Configuration Example
Enable tagging on uplink ports that support multiple VLANs
Private Vlan Ports
Private VLANs
Verify the configuration
Private Vlan Configuration Guidelines
Private Vlan Configuration Example
Configure a secondary Vlan and map it to the primary Vlan
Spanning Tree Overview
Spanning Tree Protocol
Determining the Path for Forwarding BPDUs
Bridge Protocol Data Units BPDUs
Bridge Priority
Port Path Cost
Spanning Tree Group Configuration Guidelines
Changing the Spanning Tree Mode
Port Priority
Rules for Vlan Tagged Ports
Creating a Vlan
Adding and Removing Ports from STGs
Port State Changes
Rapid Spanning Tree Protocol
Edge Port
Rstp Configuration Guidelines
Rstp Configuration Example
Port Type and Link Type
Why Do We Need Multiple Spanning Trees?
Default Spanning Tree Configuration
Per Vlan Rapid Spanning Tree
Configuring Pvrst
Pvrst Configuration Guidelines
Common Internal Spanning Tree
Mstp Configuration Guidelines
Multiple Spanning Tree Protocol
Mstp Region
Implementing Multiple Spanning Tree Groups
Multiple Spanning Tree Groups Configuration Example
Vlan
Fast Uplink Convergence
Configuring Fast Uplink Convergence
Configuration Guidelines
Trunking Overview
Ports and Trunking
Statistical Load Distribution
Before Configuring Static Trunks
Built-In Fault Tolerance
Trunk Group Configuration Rules
Port Trunk Group Configuration Example
Port Trunking Configuration Example
Follow these steps on the EX2500 switch Define a trunk group
Destination IP DIP
Configurable Trunk Hash Algorithm
Link Aggregation Control Protocol
Destination MAC Dmac
48 Link Aggregation Control Protocol
Set the Lacp mode
Lacp Configuration Guidelines
Configuring Lacp
Optionally Reducing Lacp Timeout
Ex2500config-if# lacp timeout short ex2500config-if# exit
QoS Overview
Quality of Service
COS
Using ACL Filters
To delete an IP Standard ACL
MAC Extended ACLs
IP Standard ACLs
To delete a MAC Extended ACL
To delete an IP Extended ACL
IP Extended ACLs
TCP/UDP
Understanding ACL Priority
ACL Example 1-Blocking Traffic to a Host
ACL Configuration Examples
Assigning ACLs to a Port
Viewing ACL Statistics
Add the ACL to a port
ACL Example 3-Blocking Http Traffic
Assign the ACLs to a port
ACL Example 4-Blocking All Except Certain Packets
Configuring Storm Control
Using Storm Control Filters
Broadcast Storms
Differentiated Services Concepts
Using Dscp Values to Provide QoS
Assured Forwarding Drop Precedence Class
Per Hop Behavior
QoS Levels
Use the following command to perform Dscp mapping
Dscp Mapping
Shows the priority bits in a VLAN-tagged packet
Using 802.1p Priority to Provide QoS
Queuing and Scheduling
Rmon Overview
Remote Monitoring
Rmon Group 1-Statistics
Configure the Rmon statistics on a port
Rmon Group 2-History
Configuring Rmon History
Configure the Rmon History parameters for a port
This configuration enables Rmon History collection on port
Configure the Rmon Alarm parameters to track Icmp messages
Rmon Group 3-Alarms
Alarm MIB Objects
Configuring Rmon Alarms
Rmon Group 9-Events
Ex2500config# rmon event 110 type log-only
Page
Igmp Snooping
Igmp
FastLeave
IGMPv3 Snooping
Igmp Snooping Configuration Example
Ex2500# show ip igmp groups
Static Multicast Router
High Availability Overview
High Availability Through Uplink Failure Detection
Failure Detection Pair
Spanning Tree Protocol with UFD UFD Configuration Guidelines
Monitoring UFD
UFD Configuration Example
Page
Appendixes
EX2500 Ethernet Switch Configuration Guide 80 Appendixes
Port Mirroring Overview
Port Mirroring Overview on Configuring Port Mirroring on
Configuring Port Mirroring
Index on
Indexes
EX2500 Ethernet Switch Configuration Guide 84 Indexes
Numerics
Index
Internet Group Management Protocol. See Igmp
Management interface, configuring
Multi-links between switches, port trunking
Physical. See switch ports
Segmentation. See IP subnets Segments. See IP subnets
Quality of Service. See QoS
QoS
Security
Example showing multiple VLANs
Virtual Local Area Networks. See VLANs
Related pages
All Error page
Appendix C Isdn LAN Modem Factory Defaults for 3Com 3C892
Factory default settings of the Console port for KTI Networks KC-1300
Default for Motorola E360
Context Pool Setting Default Value for IBM 6.1.X
Errors for Toshiba MA-1535-2
Remedies for Paper Out Error for Epson SEIJ98006
Defect and error management for Seagate ST3450056FC (FDE)
System Error Logs for ZyXEL Communications wireless n gigbit router zyxel
Using the Default button on the Image Color tab for FARGO electronic HDPii
System Error nnn for HP LX
How can I back up my data before using
LaCie 4big Quadra software
?
Top
Page
Image
Contents