9032578-04
SmartSwitch Router User Reference Manual
SmartSwitch Router User Reference Manual
Vcci Notice
Industry Canada Notice
Cabletron SYSTEMS, INC Program License Agreement
SmartSwitch Router User Reference Manual
SmartSwitch Router User Reference Manual
SmartSwitch Router User Reference Manual
Cabletron Systems Limited Program License Agreement
SmartSwitch Router User Reference Manual
Laser Radiation and Connectors
Safety Information
EC Directive 73/23/EEC
EC Directive 89/336/EEC
SmartSwitch Router User Reference Manual
Contents
Hot Swapping Line Cards and Control Modules
Creating a non-IP/non-IPX Vlan
SmartTRUNK Configuration Guide
Vrrp Configuration Guide
127
IP Multicast Overview 199
Multicast Routing Configuration Guide 199
209
Web Hosting Configuration Guide 233
255
QoS Configuration Guide 283
WAN Configuration Guide 315
Contents
Preface
How to Use This Manual
About This Manual
Who Should Read This Manual?
Preface
Managing the SSR using Cabletron’s
Installing and setting up the SSR
Related Documentation
For Information About See
Preface SmartSwitch Router User Reference Manual
Chapter SSR Product Overview
SSR Hardware and software specifications
Feature Specification
Multicast IGMP, Dvmrp
IPX RIP, SAP
Supported Routing Protocols
Supported Media Encapsulation Type
Routing Information Protocol RIP Version 1
Configuring the SmartSwitch Router
Understanding the Command Line Interface
Access Modes
Basic Line Editing Commands
Common CLI key commands
Key Sequence Command
User Mode
Enable Mode
Exit
Configure Mode
Pvst
Boot Prom Mode
Disabling a Function or Feature
Loading System Images and Configuration Files
Boot and System Image
Configuration Files
Ssr# system show version
Loading System Image Software
Enter the system image list command to verify the change
Loading Boot Prom Software
Activating the Configuration Commands in the Scratchpad
Enter yes or y to activate the changes
Copying the Configuration to the Startup Configuration File
CLI displays the following message
Managing the SSR
Displaying Configuration Changes
Configuring NTP
Setting the SSR Name
Setting SSR Date and Time
Configuring DNS
Configuring the SSR CLI
Configuring Snmp Services
Configuring Logging
Connecting Between the SSR and Other Systems
Task Command
Monitoring Configuration
Show the type of Power-On Self Test Post
Show the SSR login banner
Show the configuration changes
Reboot Show the status of the switching fabric
Hot Swapping Line Cards
Chapter Hot Swapping Line Cards Control Modules
Hot Swapping Overview
Removing the Line Card
Deactivating the Line Card
Hot Swapping One Type of Line Card With Another
Installing a New Line Card
Hot Swapping a Secondary Control Module
Removing the Control Module
Deactivating the Control Module
Installing the Control Module
Hot Swapping a Switching Fabric Module SSR 8600 only
SSR-SF-16 Offline Switching Fabric
Spanning Tree Ieee 802.1d
Chapter Bridging Configuration Guide
Bridging Overview
Bridging Modes Flow-Based and Address-Based
Vlan Overview
MAC-address-based VLANs
Port-based VLANs
Protocol-based VLANs
Subnet-based VLANs
Multicast-based VLANs
SSR Vlan Support
Policy-based VLANs
VLANs and the SSR
Ports, VLANs, and L3 Interfaces
Access Ports and Trunk Ports 802.1Q support
Explicit and Implicit VLANs
Configuring SSR Bridging Functions
Configuring Address-based or Flow-based Bridging
Address-Based Bridge Table Flow-Based Bridge Table
Configuring Spanning Tree
More ports for a particular Vlan
Adjusting Spanning-Tree Parameters
Setting the Bridge Priority
Assigning Port Costs
Setting a Port Priority
Adjusting Bridge Protocol Data Unit Bpdu Intervals
Defining the Maximum Age
Adjusting the Interval between Hello Times
Defining the Forward Delay Interval
Configuring Vlan Trunk Ports
Configuring a Port or Protocol based Vlan
Configuring VLANs for Bridging
Creating a Port or Protocol Based Vlan
Monitoring Bridging
Configuring Layer-2 Filters
Creating an IP or IPX Vlan
Configuration Examples
Creating a non-IP/non-IPX Vlan
Show information on MACs
Page
Overview
Chapter SmartTRUNK Configuration Guide
Add Physical Ports to the SmartTRUNK
Configuring SmartTRUNKs
Creating a SmartTRUNK
Specify Traffic Distribution Policy Optional
Monitoring SmartTRUNKs
St.2 St.4 Router Switch Server
Example Configurations
SmartTRUNK Configuration Guide
Page
Dhcp Overview
Configuration Guide
Chapter
Configuring an IP Address Pool
Configuring Dhcp
Configuring Client Parameters
Client Parameters
Grouping Scopes with a Common Interface
Configuring a Static IP Address
Monitoring the Dhcp Server
Configuring Dhcp Server Parameters
Updating the Lease Database
Define Dhcp network parameters for the scope ‘scope1’
Dhcp Configuration Examples
Define an IP address pool for addresses 10.1.1.10 through
Define a static IP address for
Configuring Secondary Subnets
Include ‘scope2’ in the superscope ‘super1’
Secondary Subnets and Directly-Connected Clients
Interacting with Relay Agents
Define the address pool for ‘scope1’
Page
IP Routing Overview
Chapter IP Routing Configuration Guide
SSR supports standards-based TCP, UDP, and IP
IP Routing Protocols
Unicast Routing Protocols
Multicast Routing Protocols
Configuring IP Addresses to Ports
Configuring IP Interfaces and Parameters
Configuring IP Interfaces for a Vlan
Specifying Ethernet Encapsulation Method
Configuring Proxy ARP
Configuring Address Resolution Protocol ARP
Configuring ARP Cache Entries
Defining MAC-to-IP Address Mappings
Configuring Reverse Address Resolution Protocol Rarp
Specifying IP Interfaces for Rarp
Configuring IP Services Icmp
Configuring DNS Parameters
Monitoring Rarp
Specify ping
Configuring Denial of Service DOS
Configuring IP Helper
Configuring Direct Broadcast
Monitoring IP Parameters
Configuring Router Discovery
Assigning IP/IPX Interfaces
IP Routing Configuration Guide
Vrrp Overview
Configuring Vrrp
Backup
Basic Vrrp Configuration
Configuration of Router R1
Following is the configuration file for Router R1 in Figure
Following is the configuration file for Router R2 in Figure
Symmetrical Configuration
Configuration for Router R2
Symmetrical Vrrp Configuration
Master for VRID=1 Master for VRID=2 Backup for VRID=2
Configuration of Router R2
Multi-Backup Configuration
Multi-Backup Vrrp Configuration
SmartSwitch Router User Reference Manual 101
Virtual Router Default Priority Configured Priority
Following is the configuration file for Router R3 in Figure
Additional Configuration
Configuration of Router R3
Setting Pre-empt Mode
Setting the Backup Priority
Setting the Advertisement Interval
Ip-redundancy trace
Setting an Authentication Key
Monitoring Vrrp
Ip-redundancy show
Vrrp Configuration Notes
Virtual routers Display information about all
Specific virtual router
SmartSwitch Router User Reference Manual 107
108
RIP Overview
Chapter RIP Configuration Guide
Configuring RIP
Enabling and Disabling RIP
Configuring RIP Interfaces
Configuring RIP Parameters
Characters Set the authentication method
Set the authentication method
To RIP
Specify that RIP V2 packets
Monitoring RIP
Configuring RIP Route Preference
Configuring RIP Route Default-Metric
Configuration Example
114
Ospf Overview
Ospf
Enable Ospf
Configuring Ospf
Disable Ospf
Ospf Multipath
Ospf Interface Parameters
Configuring Ospf Interface Parameters
Ospf Parameter Default Value
Add an interface to an Ospf area
Configuring an Ospf Area
Create an Ospf area
Creating Virtual Links
Configuring Ospf Area Parameters
Add a stub host to an Ospf area
Add a network to an Ospf area for
Create a virtual
Configuring Ospf over Non-Broadcast Multiple Access
Link
Set virtual link
Monitoring Ospf
Ospf Configuration Examples
Exporting All RIP, Interface & Static Routes to Ospf
Exporting All Interface & Static Routes to Ospf
Create a Ospf export destination for type-2 routes
Create a Ospf export destination for type-1 routes
Create a RIP export source
Create a Static export source
Create OSPF-ASE export source
Create a RIP export destination
Create Ospf export source
R10
BGP Overview
Chapter BGP Configuration Guide
SSR BGP Implementation
Basic BGP Tasks
Setting the Router ID
Setting the Autonomous System Number
Configuring a BGP Peer Group
Ip-router global set autonomous-system num1 loops num2
Autonomous-system number
Where
Starting BGP
Using AS-Path Regular Expressions
Adding and Removing a BGP Peer
132
To import MCI routes with a preference
Using the AS Path Prepend Feature
AS-Path Regular Expression Examples
Following is an example
BGP Configuration Examples
BGP Peering Session Example
Physical Link Peering Relationship
CLI configuration for router SSR1 is as follows
AS-1 AS-2
CLI configuration for router SSR2 is as follows
Ibgp Configuration Example
Gated.conf file for router SSR1 is as follows
Gated.conf file for router SSR2 is as follows
Ibgp Routing Group Example
AS-64801
Sample Ibgp Configuration Routing Group Type
Following lines in the Cisco router configure Ospf
Ibgp Internal Group Example
Sample Ibgp Configuration Internal Group Type
Illustrates a sample Ibgp Internal group configuration
SmartSwitch Router User Reference Manual 143
Configuration for router C2 a Cisco router is as follows
Ebgp Multihop Configuration Example
Configuration for router C1 a Cisco router is as follows
Physical Link
AS-64800
CLI configuration for router SSR3 is as follows
Community Attribute Example
CLI configuration for router SSR4 is as follows
Gated.conf file for router SSR3 is as follows
Gated.conf file for router SSR4 is as follows
Sample BGP Configuration Specific Community
Sample BGP Configuration Well-Known Community
, router SSR11 has the following configuration
, router SSR13 has the following configuration
, router SSR14 has the following configuration
, router SSR10 has the following configuration
SmartSwitch Router User Reference Manual 153
LocalPref Attribute Example
Sample BGP Configuration LocalPref Attribute
Multi-Exit Discriminator Attribute Example
Router SSR6 has the following CLI configuration
Sample BGP Configuration MED Attribute
Ebgp Aggregation Example
Router SSR8 has the following CLI configuration
AS-64900
AS-64901
Route Reflection Example
Router SSR9 has the following CLI configuration
AS-64902
Shows a sample configuration that uses route reflection
SmartSwitch Router User Reference Manual 161
162
Route Import and Export Policy Overview
Chapter Routing Policy Configuration Guide
Preference
Default Preference Values
Preference Defined by CLI Command Default
Import-Source
Import Policies
Route-Filter
Export Policies
Export-Destination
Export-Source
Specifying a Route Filter
Aggregates and Generates
Aggregate-Source
Aggregate-Destination
Authentication Methods
Authentication
Authentication Keys and Key Management
Configuring Simple Routing Policies
Redistributing Directly Attached Networks
Redistributing Static Routes
Redistributing Aggregate Routes
Redistributing RIP into RIP
Redistributing RIP into Ospf Redistributing Ospf to RIP
To redistribute aggregate
Simple Route Redistribution Examples
Routes into Ospf
Example 1 Redistribution into RIP
Example 2 Redistribution into Ospf
Exporting a Given Static Route to All RIP Interfaces
Exporting All Static Routes to All RIP Interfaces
176
Configuring Advanced Routing Policies
178
Creating an Export Source
Creating an Export Destination
Creating a Route Filter
Creating an Import Source
Creating an Aggregate Route
Create a RIP import
SmartSwitch Router User Reference Manual 181
Creating an Aggregate Source
Creating an Aggregate Destination
Examples of Import Policies
Example 1 Importing from RIP
R41
184
Example 2 Importing from Ospf
186
R41
Importing a Selected Subset of OSPF-ASE Routes
Example 1 Exporting to RIP
Examples of Export Policies
Ip-router policy create rip-export-source ripExpSrc
Exporting a Given Static Route to a Specific RIP Interface
Exporting Aggregate-Routes into RIP
Ip-router policy create aggr-export-source aggrExpSrc
Example 2 Exporting to Ospf
SmartSwitch Router User Reference Manual 195
196
SmartSwitch Router User Reference Manual 197
198
Igmp Overview
Chapter Multicast Routing Configuration Guide
IP Multicast Overview
Dvmrp Overview
Configuring Igmp on an IP Interface
Configuring Igmp
Configuring Igmp Query Interval
Configuring Igmp Response Wait Time
Starting and Stopping Dvmrp
Configuring Dvmrp
Configuring Per-Interface Control of Igmp Membership
Configuring the Dvmrp Routing Metric
Configuring Dvmrp on an Interface
Configuring Dvmrp Parameters
Configuring a Dvmrp Tunnel
Configuring Dvmrp TTL & Scope
Monitoring Igmp & Dvmrp
Show all multicast routes
Show all interfaces running
Multicast protocols Igmp
Page
208
Chapter IP Policy-Based Forwarding Configuration Guide
Associating the Profile with an IP Policy
Configuring IP Policies
Defining an ACL Profile
Creating Multi-statement IP Policies
Setting the IP Policy Action
Setting Load Distribution for Next-hop Gateways
Checking the Availability of Next-hop Gateways
Applying an IP Policy to an Interface
Routing Traffic to Different ISPs
IP Policy Configuration Examples
An IP interface Apply a defined IP policy to
All IP interfaces on the SSR
Using an IP policy to route traffic to two different ISPs
Using an IP policy to prioritize service to customers
Prioritizing Service to Customers
Using an IP policy to authenticate users through a firewall
Authenticating Users through a Firewall
Selecting Next Hop Gateway from IP Packet Information
Firewall Load Balancing
Display information about all
Monitoring IP Policies
IP policies
Display statistics about a
Ip-policy show interface interface
SmartSwitch Router User Reference Manual 221
222
Chapter Network Address Translation Configuration Guide
Setting Inside and Outside Interfaces
Configuring NAT
Managing Dynamic Bindings
Setting NAT Rules
Static
Dynamic
Specify the FTP session timeout
Static Configuration
NAT and FTP
Monitoring NAT
First step is to create the interfaces
Using Static NAT
Next, define the interfaces to be NAT inside or outside
Then, define the NAT static rules
Using Dynamic NAT
Dynamic Configuration
Dynamic NAT with IP Overload PAT Configuration
Dynamic NAT with Outside Interface Redundancy
Using Dynamic NAT with IP Overload
Using Dynamic NAT with Matching Interface Redundancy
232
Chapter Web Hosting Configuration Guide
Load Balancing
Configuring Load Balancing
Creating the Server Group
Specifying Load Balancing Policy Optional
Adding Servers to the Load Balancing Group
Setting Server Status
Load Balancing and FTP
Allowing Access to Load Balancing Servers
Setting Timeouts for Load Balancing Mappings
Displaying Load Balancing Information
Configuration Examples
207.135.89.16 10.1.1.1 Ftp.quick..com 10.1.1.2
Ftp.quick.com Internet Router User Queries
207.135.89.16 207.135.89.17 207.135.89.18
Virtual IP Address Ranges
Web Caching
Configuring Web Caching
Specifying the Clients for the Cache Group Optional
Creating the Cache Group
Redirected to cache servers
Not redirected to cache servers
Bypassing Cache Servers
Configuration Example
Other Configurations
Proxy Server Redundancy
Distributing Frequently-Accessed Sites Across Cache Servers
Monitoring Web-Caching
Show cache server information
Show caching policy information
RIP Routing Information Protocol
Chapter IPX Routing Configuration Guide
IPX Routing Overview
SAP Service Advertising Protocol
IPX Addresses
Configuring IPX RIP & SAP
Creating IPX Interfaces
Configuring IPX Addresses to Ports
Configuring IPX Interfaces and Parameters
Configuring IPX Interfaces for a Vlan
Specifying IPX Encapsulation Method
Configuring Static Routes
Configuring IPX Routing
Enabling IPX RIP
Enabling SAP
Creating an IPX Access Control List
Configuring Static SAP Table Entries
Controlling Access to IPX Networks
Creating an IPX GNS Access Control List
Creating an IPX Type 20 Access Control List
Creating an IPX SAP Access Control List
Monitoring an IPX Network
Creating an IPX RIP Access Control List
Adds a SAP access list Adds a GNS access list
254
Chapter Access Control List Configuration Guide
Defining Selection Criteria in ACL Rules
ACL Basics
How ACL Rules are Evaluated
Implicit Deny Rule
Allowing External Responses to Established TCP Connections
Editing ACLs Offline
Following ACL illustrates this feature
Creating and Modifying ACLs
Maintaining ACLs Using the ACL Editor
These uses of ACLs are described in the following sections
Using ACLs
Applying ACLs to Interfaces
Using ACLs as Profiles
Applying ACLs to Services
Using Profile ACLs with the IP Policy Facility
Following SSR features use ACL profiles
SSR Feature ACL Profile Usage
Using Profile ACLs with the Traffic Rate Limiting Facility
Using Profile ACLs with the Port Mirroring Facility
Using Profile ACLs with Dynamic NAT
Redirecting Http Traffic to Cache Servers
Using Profile ACLs with the Web Caching Facility
Preventing Web Objects From Being Cached
Enabling ACL Logging
Monitoring ACLs
270
Security Overview
Chapter Security Configuration Guide
Configuring Radius
Configuring SSR Access Security
Monitoring Tacacs
Configuring Tacacs
Monitoring Radius
Monitoring Tacacs Plus
Configuring Tacacs Plus
Layer-2 Security Filters
Configuring Passwords
Configuring Layer-2 Port-to-Address Lock Filters
Configuring Layer-2 Address Filters
Configuring Layer-2 Secure Port Filters
Configuring Layer-2 Static Entry Filters
Configure a source static
Configure a destination static
Monitoring Layer-2 Security Filters
Static Entries Example
Layer-2 Filter Examples
Et.1.1 Et.1.2 Et.1.3 Hub
Example 2 Secure Ports
Port-to-Address Lock Examples
Layer-3 Access Control Lists ACLs
282
QoS & Layer-2/Layer-3/Layer-4 Flow Overview
Chapter QoS Configuration Guide
Precedence for Layer-3 Flows
Layer-2 and Layer-3 & Layer-4 Flow Specification
SSR Queuing Policies
Configuring Layer-2 QoS
Traffic Prioritization for Layer-2 Flows
Traffic Prioritization for Layer-3 & Layer-4 Flows
Configuring IP QoS Policies
Setting an IP QoS Policy
Configuring IPX QoS Policies
Setting an IPX QoS Policy
Specifying Precedence for an IP QoS Policy
Allocating Bandwidth for a Weighted-Fair Queuing Policy
Configuring SSR Queueing Policy
ToS Rewrite
Specifying Precedence for an IPX QoS Policy
MBZ
Configuring ToS Rewrite for IP Packets
Tos-rewrite
Limiting Traffic Rate
Monitoring QoS
Show all IP QoS flows
Show all IPX QoS flows
Define a rate limit profile
Example Configuration
Apply a rate limit profile to an
Interface
Interface interface
Displaying Rate Limit Information
294
Performance Monitoring Overview
Chapter Performance Monitoring Guide
Show information about the master
Show port error statistics
MAC table Show information about a
Particular MAC address Show info about multicasts
Only IP ACLs can be specified for port mirroring
Configuring the SSR for Port Mirroring
Monitoring Broadcast Traffic
298
Rmon Overview
Configuring and Enabling Rmon
Example of Rmon Configuration Commands
Lite Rmon Groups
Rmon Groups
Professional Rmon Groups
Standard Rmon Groups
Control Tables
Using Rmon
Configuring Rmon Groups
Num status enabledisable
Enabledisable
String status enabledisable
Size owner string status enabledisable
Oid type absolutedelta status enabledisable
Port port owner string status enabledisable
Rmon protocol-distribution index index-number
Rmon user-history-control index index-number
Displaying Rmon Information
Rmon CLI Filters
01000CCCCCCC
Following shows Host table output without a CLI filter
Creating Rmon CLI Filters
Troubleshooting Rmon
Using Rmon CLI Filters
312
Ssr# rmon show status Rmon Status
Allocating Memory to Rmon
Rmon set memory number
WAN Overview
WAN
Primary and Secondary Addresses
Configuring WAN Interfaces
Static, Mapped, and Dynamic Peer IP/IPX Addresses
Static Addresses
Following command line displays two examples for PPP
Following command line displays an example for a Vlan
Mapped Addresses
Dynamic Addresses
Packet Compression
Following command line displays an example for PPP
Forcing Bridged Encapsulation
Average Packet Size
Example Configurations
Nature of the Data
Link Integrity
Packet Encryption
WAN Quality of Service
Source Filtering and ACLs
Weighted-Fair Queueing
Congestion Management
Random Early Discard RED
Adaptive Shaping
Frame Relay Overview
Virtual Circuits
Permanent Virtual Circuits PVCs
Configuring Frame Relay Interfaces for the SSR
Applying a Service Profile to an Active Frame Relay WAN Port
Setting up a Frame Relay Service Profile
Monitoring Frame Relay WAN Ports
Frame Relay Port Configuration
326
Use of LCP Magic Numbers
Configuring PPP Interfaces
Point-to-Point Protocol PPP Overview
Defining the Type and Location of a PPP Interface
Setting up a PPP Service Profile
Compression on MLP Bundles or Links
Applying a Service Profile to an Active PPP Port
Configuring Multilink PPP Bundles
Monitoring PPP WAN Ports
PPP Port Configuration
Ssrconfig# ppp apply service profile2 ports hs.5.1
Simple Configuration File
WAN Configuration Examples
Multi-router WAN configuration
Multi-Router WAN Configuration
Following configuration file applies to Router R1
Router R1 Configuration File
Router R2 Configuration File
Following configuration file applies to Router R2
Following configuration file applies to Router R3
Router R3 Configuration File
Router R4 Configuration File
Following configuration file applies to Router R4
Following configuration file applies to Router R5
Router R5 Configuration File
Router R6 Configuration File
Following configuration file applies to Router R6
SmartSwitch Router User Reference Manual 337
338
