Juniper Networks
manual
EX2500 Ethernet Switch Configuration Guide 80 Appendixes
Rmon Group 3-Alarms
Default Vlan Settings
Configuration Guide
Accessing the Switch
Authorization
Quality of Service
Switch User Accounts
Using Telnet
Set the Lacp mode
Page 94
EX2500 Ethernet Switch Configuration Guide
80
Appendixes
Page 93
Page 95
Image 94
Page 93
Page 95
Contents
Configuration Guide
North Mathilda Avenue Sunnyvale, CA
Ii
Table of Contents
Chapter VLANs
Chapter Ports and Trunking
Rmon Overview Rmon Group 1-Statistics Rmon Group 2-History
Appendixes
Port Mirroring Overview Configuring Port Mirroring
Indexes
Default Vlan Settings
Port-Based Vlan Assignment
Page
List of Tables
EX2500 Ethernet Switch Configuration Guide List of Tables
Audience
About This Guide
Objectives
Supported Platforms
Documentation Conventions
Icon Meaning Description
Documentation Feedback
List of Technical Publications
Requesting Technical Support
Self-Help Online Tools and Resources
Opening a Case with Jtac
EX2500 Ethernet Switch Applications
Page
Accessing the Switch
Configuring the Management Interface
Dynamic Host Configuration Protocol
Configure the default gateway. Enable the gateway
Using Telnet
Using the EX2500 Web Device Manager
Configuring EX2500 Web Device Manager Access via Http
Configuring EX2500 Web Device Manager Access via Https
Using Snmp
SNMPv1, SNMPv2
User Configuration
Default Configuration
SNMPv3
SNMPv2 Trap Host Configuration
Configuring Snmp Trap Hosts
SNMPv1 Trap Host Configuration
Configure an entry in the notify table
Securing Access to the Switch
SNMPv3 Trap Host Configuration
Configuring Radius on the Switch
Radius Authentication and Authorization
How Radius Authentication Works
Configure the Radius secret
Radius Authentication Features in the EX2500 Switch
Switch User Accounts
Radius Attributes for EX2500 User Privileges
How TACACS+ Authentication Works
TACACS+ Authentication
TACACS+ Authentication Features in the EX2500 Switch
starttime stoptime elapsedtime disccause
Configuring TACACS+ Authentication on the Switch
Command Authorization and Logging
Configure the TACACS+ secret and second secret
Secure Shell
Configuring SSH Features on the Switch
Generating RSA Host and Server Keys for SSH Access
SSH Encryption of Management Messages
End User Access Control
SSH Integration with Radius and TACACS+ Authentication
Considerations for Configuring End User Accounts
User Access Control
Listing Current Users
Logging In to an End User Account
VLANs
Vlan Overview
Vlan Numbers
Port configuration
VLANs and Port Vlan ID Numbers
Pvid Numbers
Illustrates the default Vlan settings on the switch
Vlan Tagging
Default Vlan Settings
Port-Based Vlan Assignment
Vlan Configuration Rules
Vlan Topologies and Design Considerations
Multiple VLANs Configuration Example
Multiple VLANs example in is described in Table
Enable tagging on uplink ports that support multiple VLANs
Private VLANs
Private Vlan Ports
Configure a secondary Vlan and map it to the primary Vlan
Private Vlan Configuration Guidelines
Private Vlan Configuration Example
Verify the configuration
Spanning Tree Protocol
Spanning Tree Overview
Determining the Path for Forwarding BPDUs
Bridge Protocol Data Units BPDUs
Bridge Priority
Port Priority
Spanning Tree Group Configuration Guidelines
Changing the Spanning Tree Mode
Port Path Cost
Rules for Vlan Tagged Ports
Creating a Vlan
Adding and Removing Ports from STGs
Rapid Spanning Tree Protocol
Port State Changes
Port Type and Link Type
Rstp Configuration Guidelines
Rstp Configuration Example
Edge Port
Why Do We Need Multiple Spanning Trees?
Default Spanning Tree Configuration
Per Vlan Rapid Spanning Tree
Pvrst Configuration Guidelines
Configuring Pvrst
Mstp Region
Mstp Configuration Guidelines
Multiple Spanning Tree Protocol
Common Internal Spanning Tree
Multiple Spanning Tree Groups Configuration Example
Implementing Multiple Spanning Tree Groups
Fast Uplink Convergence
Vlan
Configuration Guidelines
Configuring Fast Uplink Convergence
Trunking Overview
Ports and Trunking
Statistical Load Distribution
Before Configuring Static Trunks
Built-In Fault Tolerance
Trunk Group Configuration Rules
Port Trunking Configuration Example
Port Trunk Group Configuration Example
Follow these steps on the EX2500 switch Define a trunk group
Destination MAC Dmac
Configurable Trunk Hash Algorithm
Link Aggregation Control Protocol
Destination IP DIP
48 Link Aggregation Control Protocol
Optionally Reducing Lacp Timeout
Lacp Configuration Guidelines
Configuring Lacp
Set the Lacp mode
Ex2500config-if# lacp timeout short ex2500config-if# exit
Quality of Service
QoS Overview
Using ACL Filters
COS
To delete a MAC Extended ACL
MAC Extended ACLs
IP Standard ACLs
To delete an IP Standard ACL
IP Extended ACLs
To delete an IP Extended ACL
Understanding ACL Priority
TCP/UDP
Viewing ACL Statistics
ACL Configuration Examples
Assigning ACLs to a Port
ACL Example 1-Blocking Traffic to a Host
ACL Example 3-Blocking Http Traffic
Add the ACL to a port
ACL Example 4-Blocking All Except Certain Packets
Assign the ACLs to a port
Configuring Storm Control
Using Storm Control Filters
Broadcast Storms
Using Dscp Values to Provide QoS
Differentiated Services Concepts
Per Hop Behavior
Assured Forwarding Drop Precedence Class
QoS Levels
Use the following command to perform Dscp mapping
Dscp Mapping
Using 802.1p Priority to Provide QoS
Shows the priority bits in a VLAN-tagged packet
Queuing and Scheduling
Remote Monitoring
Rmon Overview
Configure the Rmon statistics on a port
Rmon Group 1-Statistics
This configuration enables Rmon History collection on port
Configuring Rmon History
Configure the Rmon History parameters for a port
Rmon Group 2-History
Configuring Rmon Alarms
Rmon Group 3-Alarms
Alarm MIB Objects
Configure the Rmon Alarm parameters to track Icmp messages
Ex2500config# rmon event 110 type log-only
Rmon Group 9-Events
Page
Igmp
Igmp Snooping
FastLeave
Igmp Snooping Configuration Example
IGMPv3 Snooping
Static Multicast Router
Ex2500# show ip igmp groups
High Availability Through Uplink Failure Detection
High Availability Overview
Spanning Tree Protocol with UFD UFD Configuration Guidelines
Failure Detection Pair
UFD Configuration Example
Monitoring UFD
Page
Appendixes
EX2500 Ethernet Switch Configuration Guide 80 Appendixes
Port Mirroring Overview on Configuring Port Mirroring on
Port Mirroring Overview
Configuring Port Mirroring
Indexes
Index on
EX2500 Ethernet Switch Configuration Guide 84 Indexes
Index
Numerics
Physical. See switch ports
Management interface, configuring
Multi-links between switches, port trunking
Internet Group Management Protocol. See Igmp
Security
Quality of Service. See QoS
QoS
Segmentation. See IP subnets Segments. See IP subnets
Virtual Local Area Networks. See VLANs
Example showing multiple VLANs
Related pages
All Configuration page
Top
Page
Image
Contents