Manuals / Cisco Systems / Computer Equipment / Switch

Cisco Systems OL-4580-01 manual Configuring IP Unconditional Bridging, 6-10

Models: OL-4580-01

1 186

Download 186 pages 41.96 Kb

Page 154

Configuring IP Unconditional Bridging

Chapter 6 Configuring the Internet Protocol

Configuring IP Unconditional Bridging

Caution Enabling the CSS to forward the subnet broadcast can make the subnet susceptible to “smurf” attacks; an attacker sends an ICMP echo request frame using a subnet broadcast address as a destination and a forged address as the source.

If a “smurf” attack is successful, all the destination subnet hosts reply to the echo and flood the path back to the source. By disabling subnet broadcast forwarding, the original echo never reaches the hosts.

Configuring IP Unconditional Bridging

By default, the routing table lookup of a destination path by the CSS on received packets overrides bridging decisions to be made for those packets. If the routing table specifies that the CSS use a different physical Ethernet port than what is specified for port bridging, the CSS ignores the bridging decision. If you have a network that you want to bridge through the CSS to an upstream router, you may want to force the CSS to make a bridging decision on the received packets instead of making a routing table decision.

Use the ip uncond-bridgingglobal configuration command to always make a bridging decision on the received packets. With this command, the bridging decision always takes precedence over a routing table decision.

For example:

(config)# ip uncond-bridging

To restore the default behavior of the CSS, enter:

(config)# no ip uncond-bridging

Configuring IP Opportunistic Layer 3 Forwarding

The CSS opportunistic Layer 3 forwarding feature allows the CSS to reduce the number of network device hops for certain packets or flows. The CSS forwards packets at Layer 3 if the destination MAC address in the Ethernet header is the CSS MAC address. Use the ip opportunistic command to enable opportunistic Layer 3 forwarding and allow the CSS to make Layer 3 forwarding decisions even if the Layer 2 packet destination MAC address does not belong to the CSS.

	Cisco Content Services Switch Routing and Bridging Configuration Guide
6-10	OL-4580-01

Image 154

Cisco Systems OL-4580-01 Configuring IP Unconditional Bridging, Configuring IP Opportunistic Layer 3 Forwarding, 6-10

Contents

Software Version January Cisco Content Services Switch Routing and Bridging ConfigurationGuide Corporate HeadquartersCopyright 2004, Cisco Systems, Inc. All rights reserved C O N T E N T S PrefaceEnabling BPDU Guard Configuring CircuitsConfiguring Circuit-IP Unreachables Showing Interface InformationConfiguring Spanning-Tree Bridge Priority Configuring Router-Discovery Limited-BroadcastConfiguring Spanning-Tree Bridge Aging-Time Configuring Spanning -Tree Bridging for the CSSAreas OSPF OverviewStub Area Showing Summary Route Configuration Information Setting the Retransmission IntervalShowing the Configured Advertised ASE Routes OSPF Configuration in a Startup-Configuration FileContents Configuring Routing Information ProtocolConfiguring the Internet Protocol Configuring an IP Source RouteConfiguring the DHCP Relay Agent Setting the CDP Hold TimeConfiguring the Cisco Discovery Protocol ContentsContents OL-4580-01CSS Interfaces and Circuits Interface Trunking Between VLANsF I G U R E S Example of SPAN ConnectivityFigures OL-4580-01Interface and Circuit Configuration Quick Start Field Description for the show bridge port-fast CommandGlobal OSPF Configuration Quick Start Field Descriptions for the show circuits CommandField Descriptions for the show ospf redistribute Command IP Configuration Quick StartField Descriptions for the show ospf ase Command RIP Configuration Quick StartSymbols and Conventions Obtaining Documentation PrefaceAudience How to Use This Guide Related Documentation Documentation Feedback Obtaining Technical AssistanceChapter 1, Configuring How to Use This GuideAudience Configure the CSS interface ports and circuits forConfigure Cisco Discovery Protocol CDP Related DocumentationChapter 7, Configuring Chapter 8, ConfiguringDescription Document Titlexviii Document Title DescriptionSymbols and Conventions Cisco.com Obtaining DocumentationOrdering Documentation Cisco Technical Support Website Documentation FeedbackObtaining Technical Assistance http//tools.cisco.com/RPF/register/register.doTAC Case Priority Definitions Opening a TAC Casexxiii http//cisco.com/univercd/cc/td/doc/pcat Obtaining Additional Publications and Informationxxiv Internet Protocol Journal is a quarterly journal published by Cisco Systems for engineering professionals involved in designing, developing, and operating public and private internets and intranets. You can access the Internet Protocol Journal at this URL Preface Obtaining Additional Publications and Information xxviOL-4580-01 Interface and Circuit Overview Configuring Interfaces Interface and Circuit OverviewConfiguring Interfaces and Circuits Configuring Circuits Configuring RIP for an IP InterfaceFor an 802.1Q trunk, you can use the default-vlan command to Figure 1-2 Interface Trunking Between VLANs Figure 1-1 CSS Interfaces and CircuitsTrunk Interface and Circuit Configuration Quick Start Task and Command ExampleTask and Command Example 8. Optional Display the interface configurationConfiguring Interface Duplex and Speed Configuring InterfacesConfiguring an Interface Entering a Description for the Interface Setting Interface Maximum Idle Time Bridging an Interface to a VLANConfiguring an Interface Entering a Description for the InterfaceConfiguring Interface Duplex and Speed Use the phy command to configure the duplex, speed Fast Ethernet ports only, and flow control Gigabit Ethernet ports only for the interface ports, as follows Setting Interface Maximum Idle Time 1-10Specifying VLAN Trunking for an Interface Bridging an Interface to a VLAN1-11 config-trunkif2/3# no trunk Chapter 1 Configuring Interfaces and Circuits Configuring Interfaces1-12 config-if-vlan1/1-3# no default-vlan Selecting a Default VLAN in a Trunk1-13 Configuring Spanning-Tree Bridge Port Priority Configuring Spanning-Tree Bridging for a VLAN or a Trunked InterfaceConfiguring Spanning-Tree Bridge Pathcost Configuring Spanning-Tree Bridge StateConfiguring Spanning-Tree Bridge Port Priority Configuring Spanning-Tree Bridge Pathcost1-15 Enabling Port Fast Enabling BPDU Guard Showing Port Fast Information Configuring Port Fast on an InterfaceConfiguring Spanning-Tree Bridge State 1-16config-if2/1# bridge port-fast enable Enabling Port FastEnabling BPDU Guard config-if2/1# bridge port-fast disableField Showing Port Fast Informationdisabled command DescriptionShowing Bridge Configurations Showing Trunking Configurations Showing Interface ConfigurationsShowing Bridge Configurations Showing Interface Statistics Showing Ethernet Interface ErrorsField FieldDescription DescriptionDescription Command continuedField 1-21Field Showing Trunking ConfigurationsShowing Interface Information DescriptionField Showing Interface Duplex and SpeedTable 1-6 Field Descriptions for the show interface Command DescriptionField Showing Interface StatisticsTable 1-7 Field Descriptions for the show phy Command DescriptionDescription Table 1-8 describes the fields in the show mibii command outputField 1-25Description Table 1-8 Field Descriptions for the show mibii Command continuedField 1-26Description Showing Ethernet Interface ErrorsField 1-27Description Field1-28 config-ife3# admin-shutdown Shutting Down an InterfaceShutting Down All Interfaces config-ife3# shutRestarting All Interfaces Restarting an Interface1-30 Configuring a Circuit IP Interface Configuring CircuitsEntering Circuit Configuration Mode Entering Circuit Configuration ModeConfiguring a Circuit-IP Broadcast Address Configuring a Circuit IP Address1-32 Configuring Router-Discovery Preference for a Circuit IP Interface Configuring Circuit-IP RedirectsConfiguring Circuit-IP Unreachables config-circuit-ipVLAN7-172.16.6.58# no redirectsConfiguring Router-Discovery Protocol Settings for a Circuit Enabling and Disabling a Circuit IP1-34 Configuring the Router-Discovery Lifetime Configuring the Router-Discovery LifetimeConfiguring Router-Discovery Limited-Broadcast Configuring Router-Discovery Limited-Broadcastconfig-circuitVLAN7# router-discovery max-advertisement-interval 300 Configuring the Router-Discovery Max-Advertisement-IntervalConfiguring the Router-Discovery Min-Advertisement-Interval config-circuitVLAN7# router-discovery min-advertisement-interval 100Field Showing CircuitsTable 1-10 Field Descriptions for the show circuits Command DescriptionField Showing IP InterfacesTable 1-11 Field Descriptions for the show ip interfaces Command DescriptionEnabling RIP on an IP Interface Configuring a RIP Default Route Configuring RIP for an IP InterfaceEnabling RIP on an IP Interface Configuring a RIP Receive Version Configuring RIP Send VersionConfiguring RIP Send Version Configuring a RIP Default RouteConfiguring a RIP Receive Version config-circuit-ipVLAN7-192.168.1.58# rip default-routeShowing RIP Configurations for IP Addresses Configuring RIP Packet Logging1-41 Description Table 1-12 Field Descriptions for the show rip CommandField 1-42Field FieldDescription DescriptionConfiguring the Switched Port Analyzer Feature 1-44SSPAN Rx 1-45Figure 1-3 Example of SPAN Connectivity SSPAN Txsetspan srcport number destport number copyBothcopyTxOnlycopyRxOnly Configuring SPAN on a CSSConfiguring SPAN on a CSS Verifying the SPAN Configuration on a CSS 1-46Description Verifying the SPAN Configuration on a CSSField 1-47Description Table 1-15 Field Descriptions for the show setspan Command continuedField 1-48Configuring Spanning-Tree Bridging for the CSS C H A P T E RConfiguring Spanning-Tree Bridge Forward-Time CSS Spanning-Tree Bridging Quick StartConfiguring Spanning-Tree Bridge Aging-Time Configuring Spanning-Tree Bridge Hello-TimeTask and Command Example Configuring Spanning-Tree Bridge Aging-TimeTable 2-1 Spanning-Tree Bridging Configuration Quick Start continued Configuring Spanning-Tree Bridge Max-Age Configuring Spanning-Tree Bridge Hello-TimeConfiguring Spanning-Tree Bridge Forward-Time Configuring Spanning-Tree Bridge Priority Disabling Bridge Spanning-TreeDescription Showing Bridge ConfigurationsField FieldField DescriptionShowing Bridge Configurations Chapter 2 Configuring Spanning-Tree Bridging for the CSSOL-4580-01 Configuring OSPF on the CSS Configuring OSPF on a CSS IP Interface Configuring Open Shortest Path First OSPFOSPF Overview CSS OSPF Configuration Quick Start OSPF Configuration in a Startup-Configuration FileOSPF Overview OSPF Routing Hierarchy Link-State DatabasesOSPF Routing Hierarchy Areas Autonomous SystemBackbone Area Stub Area Area Border RoutersAutonomous System Boundary Routers Link-State Databases Global OSPF Configuration Quick Start CSS OSPF Configuration Quick StartGlobal OSPF Configuration Quick Start OSPF IP Interface Configuration Quick Startconfig ospf router-id Task and Command ExampleTable 3-1 Global OSPF Configuration Quick Start config ospf areaOSPF IP Interface Configuration Quick Start Task and Command Exampleconfig-circuit-ipVLAN6-3.1.2.2# ospf Task and Command Exampleconfig-circuitVLAN6# ip address 3.1.2.2/24 config-circuit-ipVLAN6-3.1.2.2 ospf areaVerifying Your Configuration 3-11Configuring the OSPF Router ID Enabling OSPF Configuring an Area Configuring OSPF on the CSSConfiguring the OSPF Router ID Configuring Equal-Cost Routes Configuring Summarized Routes at an ABREnabling OSPF Configuring an Area3-13 Removing an Area Configuring Equal-Cost RoutesConfiguring Summarized Routes at an ABR 3-14config# no ospf range 0.1.0.1 192.168.0.0 Configuring the CSS as an Autonomous System Boundary Routerconfig# no ospf enable config# ospf range 0.1.0.1 192.168.0.0 config# ospf range 0.1.0.1 192.168.0.0 255.255.0.0 blockAdvertising a Route as an OSPF ASE Route Advertising a Route as an OSPF ASE RouteAdvertising a Default ASE Route Advertising Other Routes Through OSPF 3-163-17 Chapter 3 Configuring Open Shortest Path First OSPFConfiguring OSPF on the CSS OL-4580-01config# ospf advertise 192.168.44.0 Chapter 3 Configuring Open Shortest Path First OSPFConfiguring OSPF on the CSS 3-18config# ospf advertise 193.23.44.0 255.255.255.0 metric 3 type1 config# no ospf advertise3-19 config# ospf default Advertising a Default ASE Route3-20 config# no ospf default Advertising Other Routes Through OSPFconfig# ospf default metric 10 type1 config# ospf redistribute firewallEnabling OSPF on the Interface Configuring the Interface Attributes Configuring OSPF on a CSS IP InterfaceConfiguring the CSS IP Interface as an OSPF Interface Assigning an OSPF Area to the InterfaceConfiguring the CSS IP Interface as an OSPF Interface 3-23Enabling OSPF on the Interface Configuring the Interface AttributesAssigning an OSPF Area to the Interface Setting the Cost Setting the Dead Router IntervalSetting the Hello Packet Interval Setting the CostSetting the Dead Router Interval Setting the Retransmission Interval Setting the Transit-Link DelaySetting the Poll Interval Setting the Password3-26 Setting the Retransmission Interval Setting the Priority of the CSS3-27 Showing ASE Entries Showing the Configured Advertised ASE Routes Setting the Transit-Link DelayShowing OSPF Information Showing Summary Route Configuration InformationField Showing OSPF Area InformationShowing Global Statistics DescriptionDescription Showing IP Interface InformationField FieldDescription Field3-31 Description Field3-32 Description Showing Link-State DatabasesField 3-33Description Table 3-6 Field Descriptions for the show ospf lsdb CommandField 3-34ADV Router FieldDescription 3-35Field Showing ASE Entriesshow ospf asegrep DescriptionField Showing the Configured Advertised ASE RoutesTable 3-8 Field Descriptions for the show ospf advertise Command DescriptionDescription Showing the Redistribution PolicyFirewall Field 3-38Field Showing Summary Route Configuration InformationShowing OSPF Neighbors DescriptionAddress FieldDescription 3-40Description Field3-41 Description Field3-42 OSPF Configuration in a Startup-Configuration File OSPF Configuration in a Startup-Configuration FileChapter 3 Configuring Open Shortest Path First OSPF GLOBAL ospf router-id 121.23.21.1 ospf enable3-44 Chapter 3 Configuring Open Shortest Path First OSPFOSPF Configuration in a Startup-Configuration File OL-4580-01ARP Configuration Quick Start Configuring ARP Mapping Configuring the Address ResolutionProtocol Configuring ARP Timeout Configuring ARP Wait Updating ARP ParametersTask and Command Example ARP Configuration Quick StartTable 4-1 ARP Configuration Quick Start Configuring ARP Mapping arp iporhost macaddress interface vlanConfiguring ARP Timeout Configuring ARP WaitUpdating ARP Parameters Clearing ARP ParametersShowing ARP Information show arp configfilemanagement-portsummaryiporhostField Table 4-2 Field Descriptions for the show arp CommandTable 4-3 Field Descriptions for the show arp summary Command Description# show arp config Table 4-4 Field Descriptions for the show arp config CommandTable 4-5 Field Descriptions for the show arp management-port Command Field# show arp Chapter 4 Configuring the Address Resolution ProtocolShowing ARP Information # show arp fileShowing ARP Information Chapter 4 Configuring the Address Resolution Protocol4-10 OL-4580-01Configuring RIP Redistribute Configuring Equal-Cost RIP Routes Configuring Routing Information ProtocolRIP Configuration Quick Start Configuring RIP Advertise Showing RIP ConfigurationsTask and Command Example RIP Configuration Quick StartTable 5-1 RIP Configuration Quick Start Configuring RIP Redistribute Configuring RIP Advertiserip redistribute firewalllocalospfstatic metric Configuring Equal-Cost RIP Routes Field Showing RIP ConfigurationsTable 5-2 Field Descriptions for the show rip Command DescriptionField Table 5-2 Field Descriptions for the show rip Command continuedTable 5-3 Field Descriptions for the show rip globals Command DescriptionField Table 5-4 Field Descriptions for the show rip statistics CommandDescription Showing RIP Configurations Chapter 5 Configuring Routing Information ProtocolOL-4580-01 Disabling an Implicit Service for the Static Route Next Hop Configuring the Internet ProtocolIP Configuration Quick Start Configuring an IP Route Configuring an IP Source Route Configuring the IP Record RouteTask and Command Example IP Configuration Quick StartTable 6-1 IP Configuration Quick Start Configuring an IP Route ip no-implicit-service ip redundancyPage 0.0.0.0 /0 and a next hop address of 192.167.1.1, enter Disabling an Implicit Service for the Static Route Next Hop config# ip source-route Configuring an IP Source RouteConfiguring the IP Record Route config# no ip source-routeConfiguring IP Equal-Cost Multipath Configuring Box-to-Box Redundancyip ecmp addressno-prefer-ingressroundrobin Forwarding IP Subnet Broadcast Addressed Frames ip subnet-broadcast commandConfiguring IP Opportunistic Layer 3 Forwarding Configuring IP Unconditional Bridging6-10 Figure 6-1 Example of Opportunistic Layer 3 Forwarding Internet Router1 default Subnet CSS6-11 VLAN1 End Station AShowing IP Interface Information Showing IP Routing Information Showing IP Configuration InformationShowing IP Global Configuration Parameters Showing IP Statistics Showing a Summary of IP Global StatisticsField Showing IP Global Configuration ParametersTable 6-2 Field Descriptions for the show ip config Command DescriptionField Table 6-3 Field Descriptions for the show ip interfaces CommandShowing IP Interface Information DescriptionDescription Showing IP Routing InformationField 6-15Description Showing IP StatisticsField Field6-17 FieldDescription TCP Statistics6-18 FieldDescription ICMP Statistics6-19 FieldDescription ARP StatisticsField Resetting IP StatisticsShowing a Summary of IP Global Statistics DescriptionTotal Hosts FieldDescription 6-216-22 Chapter 6 Configuring the Internet ProtocolShowing IP Configuration Information OL-4580-01Configuring the Cisco Discovery Protocol C H A P T E RSetting the CDP Transmission Rate Showing CDP Information CDP Configuration Quick StartCDP Configuration Quick Start Enabling CDP Setting the CDP Hold Time Task and Command ExampleEnabling CDP Setting the CDP Hold Timecdp holdTime 255 cdp timer config# show cdp Global CDP information Setting the CDP Transmission RateShowing CDP Information Sending CDP packets every 60 secondsDisplaying the DHCP Relay Configuration Configuring the DHCP Relay AgentDHCP Relay Agent Configuration Quick Start C H A P T E RTask and Command Example DHCP Relay Agent Configuration Quick StartTable 8-1 DHCP Relay Agent Configuration Quick Start Adding a DHCP Destination on a Circuit Enabling and Disabling DHCP on the CircuitField Displaying the DHCP Relay ConfigurationDefining the Hops Field Value for Forwarding DHCP Messages DescriptionField DescriptionDisplaying the DHCP Relay Configuration Chapter 8 Configuring the DHCP Relay AgentOL-4580-01 I N D E IN-12-2, 4-2, 5-2, 6-2 IN-23-12 IN-3 IN-4 IN-5 IN-6 IN-7 IN-8 Index IN-9OL-4580-01 Index IN-10OL-4580-01