Manuals / Brands / Computer Equipment / Switch / HP / Computer Equipment / Switch

HP 5300XL, 5304XL, 5348XL Using the CLI To Enable Authentication Traps

1 632

Download 632 pages, 11.34 Mb

N o t e s

N o t e

Configuring for Network Management Applications

Using SNMP Tools To Manage the Switch

For example, to configure a trap receiver in a community named “red-team” with an IP address of 10.28.227.130 to receive only “critical” log messages:

HPswitch(config)# snmp-server trap-receiver red-team 10.28.227.130 critical

To replace one community name with another for the same IP address, you must use no snmp-server host < community-name> < ip-address > to delete the unwanted community name. Otherwise, adding a new community name with an IP address already in use with another community name simply creates two allowable community name entries for the same management station.

If you do not specify the event level ([<none all non-info critical debug>]) then the switch does not send event log messages as traps. “Well-Known” traps and threshold traps (if configured) will still be sent.

Using the CLI To Enable Authentication Traps

For this feature to operate, one or more trap receivers must be configured on the switch. See “In the default configuration, there are no trap receivers configured, and the authentication trap feature is disabled. From the CLI you can configure up to ten SNMP trap receivers to receive SNMP traps from the switch. As an option, you can also configure the switch to send Event Log messages as traps. CLI: Configuring and Displaying Trap Receivers” on page 10-8.

Using the CLI To Enable Authentication Traps.

Syntax: [no] snmp-server enable traps authentication

Enables or disables sending an authentication trap to the configured trap receiver(s) if an unauthorized management station attempts to access the switch.

For example:

HPswitch(config)# snmp-server enable traps authentication

Check the Event Log in the console interface to help determine why the authentication trap was sent. (Refer to “Using the Event Log To Identify Problem Sources” on page C-22.)

10-11

Contents

Page Page HP Procurve Series 5300XL Switches Page Getting Started 1 Selecting a Management Interface 2 Using the Menu Interface 3 Using the Command Line Interface (CLI) 4 Using the HP Web Browser Interface 5 Switch Memory and Configuration 6Interface Access, System Information, and Friendly Port Names 7 Configuring IP Addressing 8 Time Protocols 9Optimizing Traffic Flow with Port Controls, Port Trunking, and Filters 10 Configuring for Network Management Applications 11 Port-BasedVirtual LANs (VLANs) and GVRP 12 Multimedia Traffic Control with IP Multicast (IGMP) 13802.1w Rapid Spanning Tree Protocol (RSTP) 802.1d Spanning Tree Protocol (STP) 14 Switch Meshing 15Quality of Service (QoS): Managing Bandwidth More Effectively 16 IP Routing Features A File Transfers B Monitoring and Analyzing Switch Operation C Troubleshooting D MAC Address Management E Daylight Savings Time on HP Procurve Switches Index Page Getting Started Conventions copy tftp HPswitch hostname Figure i. Example of a Figure Showing a Simulated Screen Related Publications Read Me First Release Notes Getting Documentation From the Web 2.Click on technical support manuals Sources for More Information http://www.hp.com/go/hpprocurve Need Only a Quick Start IP Addressing setup 8. Run Setup I m p o r t a n t ! Page Selecting a Management Interface Understanding Management Interfaces Advantages of Using the Menu Interface Figure 1-1.Example of the Console Interface Display Provides quick, easy management access Offers out-of-band Advantages of Using the CLI Figure 1-2.Command Prompt Examples Advantages of Using the HP Web Browser Interface Figure 1-3.Example of the HP Web Browser Interface Easy access Familiar browser Advantages of Using HP TopTools for Hubs & Switches Figure 1-4.Example of HP TopTools Home Page Page Page Using the Menu Interface Page N o t e Menu Interaction with Other Interfaces Starting and Ending a Menu Session menu Figure 2-1.The Main Menu with Manager Privileges Switch Configuration Figure 2-2.An Asterisk Indicates a Configuration Change Requiring a Reboot Reboot Switch Main Menu Features Figure 2-3.The Main Menu View with Manager Privileges Status and Counters: Switch Configuration: Event Log: Command Line (CLI): Reboot Switch: Download OS: Run Setup: Logout: Screen Structure and Navigation Figure 2-4.Elements of the Screen Structure Table 2-5.How To Navigate in the Menu Interface Help Figure 2-6.Example Showing How To Display Help Rebooting the Switch Figure 2-7.The Reboot Switch Option in the Main Menu Rebooting To Activate Configuration Changes 2.Switch Configuration 8.VLAN Menu Figure 2-8.Indication of a Configuration Change Requiring a Reboot Menu Features List Where To Go From Here Page Using the Command Line Interface (CLI) Accessing the CLI Command Line (CLI) Using the CLI Figure 3-1.Example of CLI Log-OnScreen with Password(s) Set C a u t i o n Figure 3-2.Access Sequence for Privilege Levels enable config Context Configuration level: Changing Interfaces Table 3-1.Privilege Level Hierarchy Command Line Interface (CLI) Figure 3-3.Example of the Operator Level Command Listing Figure 3-4.Example of the Manager-LevelCommand Listing - - MORE Figure 3-5.Example of How To List the Options for a Specific Command Syntax: help Figure 3-6.Example of Context-Sensitive Command-ListHelp Syntax: interface Figure 3-7.Example of How To Display Help for a Specific Command Figure 3-8.Example of Help for a Specific Instance of a Command Port or Trunk-Group Context Figure 3-9. Context-SpecificCommands Affecting Port Context VLAN Context Figure 3-10. Context-SpecificCommands Affecting VLAN Context CLI Control and Editing Using the HP Web Browser Interface Agent Enabled No General Features Starting an HP Web Browser Interface Session with the Switch Java JavaScript Java Permissions http://.) switch4108 Location or Address Figure 4-1.Example of Status Overview Screen Tasks for Your First HP Web Browser Interface Session Figure 4-2. First-TimeInstall Window Operator Manager Figure 4-3.The Device Passwords Window secure access to the device Security Figure 4-4.Example of the Password Window in the Web Browser Interface Figure 4-5.The Help Button Support/Mgmt URLs Feature Support URL Management Server URL Figure 4-6.The Default Support/Mgmt URLs Window Support http://www.hp.com/go/procurve Providing Online Help If Online Help Fails To Operate. Do one of the following: http://www.hp.com/rnd/device_help Figure 4-7.How To Access Web Browser Interface Online Help Status Reporting Features Figure 4-8.The Overview Window Figure 4-9.The Graphs Area % Unicast Rx & All Tx: Maximum Activity Indicator: Utilization Guideline To change the amount of bandwidth the Port Utilization bar graph Figure 4-10.Changing the Graph Area Scale Figure 4-11.Display of Numerical Values for the Bar Figure 4-12.The Port Status Indicators and Legend Port Connected Port Not Connected Port Disabled Port Figure 4-13.Example of the Alert Log Alert Description Excessive CRC/Alignment errors on port: Table 4-1.Alert Strings and Descriptions Acknowledge Event Delete Event Cancel Button Figure 4-14.Example of Alert Log Detail View Figure 4-15.Example of the Status Bar Status Indicator Table 4-2.Status Indicator Key System Name system name Product Name Figure 4-16.The Fault Detection Window Log Network Problems High Sensitivity Medium Sensitivity Low Sensitivity Never Apply Changes Switch Memory and Configuration Overview of Configuration File Management Figure 5-1.Conceptual Illustration of Switch Memory Operation Running Config File: Startup-config File: In the menu interface: Page Using the CLI To Implement Configuration Changes running-config write terminal show config status How To Cancel Changes You Have Made to the Running-ConfigFile Figure 5-2.Boot Prompt for an Unsaved Configuration How To Reset the startup-configand running-configFiles to the Factory Default Configuration Using the Menu and Web Browser Interfaces To Implement Configuration Changes ancel Cancelled Figure 5-4.The Reboot Switch Option in the Main Menu 2. Switch Configuration 8. VLAN Menu Figure 5-5.Indication of a Configuration Change Requiring a Reboot Using Primary and Secondary Flash Image Options Primary Flash: Secondary Flash: show version Figure 5-6.Example Showing the Identity of the Current Flash Image Figure 5-7.Example Showing Different Flash Image Versions Figure 5-8.Determining the OS Version in Primary and Secondary Flash Table 5-1.Primary/Secondary Memory Access Download Interruptions show flash primary secondary Figure 5-9.Example Indicating Two Different OS Versions in Primary and Secondary Flash C a u t i o n - - N o U n d o Figure 5-10.Example of Erase Flash Prompt Figure 5-11.Example of Show Flash Listing After Erasing Primary Flash Table 5-2.Comparing the Boot and Reload Commands Booting from Primary Flash Syntax: boot Figure 5-12.Example of Boot Command (Default Primary Flash) Figure 5-13.Example of Boot Command with Primary/Secondary Flash Option Syntax: reload Figure 5-14.Using Reload with Pending Configuration Changes Default Boot Source Boot Attempts from an Empty Flash Location. In this case, the switch Interaction of Primary and Secondary Flash Images with the Current Page Interface Access, System Information, and Friendly Port Names kill Interface Access: Console/Serial Link, Web, and Inbound Telnet Interface Access Features To Access the Interface Access Parameters: 2.Switch Configuration 1.System Information Interface Access Commands Used in This Section Listing the Current Console/Serial Link Configuration. This com Syntax Figure 6-2.Listing of Show Console Command Reconfigure Inbound Telnet Access. In the default configuration Page Figure 6-4.Example of Executing a Series of Console Commands Denying Interface Access by Terminating Remote Management Sessions System Information System Information Features System Name: System Contact and Location: MAC Age Time: Time Zone: Daylight Time Rule: Time: System Information Commands Used in This Section Listing the Current System Information. This command lists the current Figure 6-7.Example of CLI System Information Listing Configure a System Name, Contact, and Location for the Switch. To Figure 6-8.System Information Listing After Executing the Preceding Commands Configure the Time Zone and Daylight Time Rule. These commands: Configure the Time and Date Configure System Parameters in the Web Browser Interface Using Friendly (Optional) Port Names Show show name show interface invalid input Figure 6-9.Example of Configuring a Friendly Port Name Figure 6-10.Example of Configuring One Friendly Port Name on Multiple Ports To List All Ports or Selected Ports with Their Friendly Port Names Figure 6-11.Example of Friendly Port Name Data for All Ports on the Switch Figure 6-12.Example of Friendly Port Name Data for Specific Ports on the Switch Including Friendly Port Names in Per-PortStatistics Listings. A Figure 6-13.Example of a Friendly Port Name in a Per-PortStatistics Listing To Search the Configuration for Ports with Friendly Port Names Configuring IP Addressing Why Configure IP Addressing IP Configuration IP Configuration Features N o t e s IP Config To Configure IP Addressing 5.IP Configuration show ip Figure 7-1.Example of the IP Service Configuration Screen without Multiple VLANs Configured Default Gateway Default TTL DHCP/ Bootp IP Commands Used in This Section Syntax: show ip Figure 7-2.Example of the Switch’s Default IP Addressing Disabled Figure 7-4.Example of Configuring and Displaying a Multinetted VLAN Figure 7-5.Example of Multinetting on the Default VLAN show ip secondary Figure 7-6.Show IP Secondary Lists Secondary IP Groups Configure the Optional Default Gateway. Using the Global configura Note ip route Table 7-1.Features Available With and Without IP Addressing on the Switch Overview Bootp Database Record Entries /etc/bootptab Page Page IP Preserve: Retaining VLAN-1IP Addressing Across Configuration File Downloads ip preserve Page Page Page Globally Assigned IP Network Addresses Page Time Protocols timesync Unicast Mode: SNTP: Viewing, Selecting, and Configuring Table 8-1.SNTPParameters Figure 8-1.The System Information Screen (Default Values) Page TimeP SNTP Figure 8-2.Example of SNTP Configuration When SNTP Is the Selected Time Synchronization Method Page Figure 8-4.Example of Enabling SNTP Operation in Broadcast Mode Enabling SNTP in Unicast Mode Figure 8-5.Example of Configuring SNTP for Unicast Operation Figure 8-6.Example of Specifying the SNTP Protocol Version Number Figure 8-7.Example of SNTP with Time Sychronization Disabled Disabling the SNTP Mode Figure 8-8.Example of Disabling Time Synchronization by Disabling the SNTP Mode TimeP: Viewing, Selecting, and Page Page Page Page Page Page Page SNTP Unicast Time Polling with Multiple SNTP Servers Adding Addresses Figure 8-16.Example of SNTP Server Address Prioritization Deleting Addresses SNTP Messages in the Event Log Optimizing Traffic Flow with Port Controls, Port Trunking, and Filters Viewing Port Status and Configuring Port Parameters Port Status and Configuration Features Note On Connecting Transceivers to Table 9-1.Status and Parameters for Each Port Type Page 1.Status and Counters 4.Port Status Figure 9-1.Example of the Port Status Screen Using the Menu To Configure Ports 2. Switch Configuration Figure 9-2.Example of Port/Trunk Settings with a Trunk Group Configured Enabled Port Status and Configuration Commands show interface config show interfaces Figure 9-3.Example of a Show Interface Command Listing Figure 9-4.Example of a Show Interface Config Command Listing int ethernet int e Page Port Trunking Figure 9-5.Conceptual Example of Port Trunking Table 9-2.Bandwidth Capacity for Trunk Groups Configured for Full-Duplex Link Connections Port Security Restriction L A C P N o t e 10FDx, 100FDx, and 1000FDx settings Fault Tolerance: Table 9-3.Trunk Types Used in Static and Dynamic Trunk Groups Trunk Configuration Protocols Table 9-5.General Operating Rules for Port Trunks Dyn1 Trk1 Page Important 2.Port/Trunk Settings Figure 9-6.Example of the Menu Screen for Configuring a Port Trunk Group Trk1 . . . Trk36 Figure 9-7.Example of the Configuration for a Two-PortTrunk Group Trunk FEC Trunk Status and Configuration Commands Listing Static Trunk Type and Group for All Ports or Selected Ports Figure 9-8.Example Listing Specific Ports Belonging to Static Trunks Figure 9-9.Example of a Show Trunk Listing Without Specifying Ports Figure 9-10.Example of a Show LACP Listing I m p o r t a n t Trk2 Page Page show lacp Forbid Table 9-6.LACP Trunk Types Trk Table 9-7.LACP Port Status Data 802.1x (Port-BasedAccess Control) Configured on a Port. To main Changing Trunking Methods Static LACP Trunks Dynamic LACP Trunks trunk VLANs and Dynamic LACP Half-Duplexand/or Different Port Speeds Not Allowed in LACP Trunks Page Figure 9-14.Example of Port-TrunkedNetwork Table 9-8.Example of Link Assignments in a Trunk Group (SA/DA Distribution) Traffic/Security Filters Table 9-9.Filter Types and Criteria Page Syntax: filter Note: Forward Figure 9-15.Configuring Various Traffic/Security Filters Figure 9-16.Example of Displaying Filter Data Table 9-10.Maximum Allowed Number of Multicast Filters N o t e : Page Page Configuring for Network Management Applications Using SNMP Tools To Manage the Switch software MIBs SNMP Community Features To View, Edit, or Add SNMP Communities: 6.SNMP Community Names Figure 10-1.The SNMP Communities Screen (Default Values) Add Figure 10-2.The SNMP Add or Edit Screen Need Help elp Figure 10-3.Example of the SNMP Community Listing with Two Communities snmp-server operator manager restricted community- name Trap Features public Using the CLI To List Current SNMP Trap Receivers Figure 10-4.Example of Show SNMP-ServerListing Configuring Trap Receivers Note: Table 10-1.Options for Sending Event Log Messages as Traps Using the CLI To Enable Authentication Traps Page CDP CDP Device: CDP-Aware: CDP-Disabled Non-CDP Device: Figure 10-5.Example of How the Switch Stores Data on Neighbor CDP Devices Figure 10-6.Example of Outgoing CDP Packet Operation Figure 10-7.Example of Incoming CDP Packet Results Switch A: Switch B: Table 10-2.How Devices Handle Incoming CDP Packets Default Configuration holdtime timer Syntax: show cdp Figure 10-9.Example of Show CDP with the Default CDP Configuration Figure 10-10.Example of CDP Neighbors Table Listing Page Figure 10-13.Example of Disabling CDP on an Individual Port Changing the Transmission Interval for Outbound CDP Packets Changing the Hold Time (CDP Packet Time-To-Live)for a Switch’s Figure 10-14.Example of STP Effect on CDP Packet Transmission Page Table 10-3.CDP Neighbors Data Displaying CDP Neighbor Data Figure 10-16.Example of CDP Neighbor Data in a Series 5300XL Switch MIB Neighbor Maximum CDP Version Data Port Trunking with CDP CDP-Capable Hubs Troubleshooting CDP Operation Page Port-BasedVirtual LANs (VLANs) and GVRP �Port-BasedVLANs — Page 11-3: �GVRP — Page 11-34: Port-BasedVirtual LANs (Static VLANs) Figure 11-1.Example of Routing Between VLANs via an External Router Figure 11-2.Example of Overlapping VLANs Using the Same Server Figure 11-3.Example of Connecting Multiple VLANs Through the Same Link Introducing Tagged VLAN Technology into Networks Running Legacy (Untagged) VLANs Figure 11-4.Example of Tagged and Untagged VLAN Technology in the Same Network show vlan Figure 11-5.Comparing Per-PortVLAN Options With and Without GVRP Table 14-1. Per-PortVLAN Configuration Options Page 8.VLAN Menu 1.VLAN Support Figure 11-6.The Default VLAN Support Screen GVRP Enabled Figure 11-7.VLAN Menu Screen Indicating the Need To Reboot the Switch 2.VLAN Names Figure 11-8.The Default VLAN Names Screen Name Figure 11-9.Example of VLAN Names Screen with a New VLAN Added 3.VLAN Port Assignment Figure 11-10.Example of VLAN Port Assignment Screen Untagged, or Forbid) Untagged VLANs Figure 11-11.Example of VLAN Assignments for Specific Ports VLAN Commands Figure 11-12.Example of “Show VLAN” Listing (GVRP Enabled) Displaying the Configuration for a Particular VLAN . This command Figure 11-13.Example of “Show VLAN” for a Specific Static VLAN Figure 11-14.Example of “Show VLAN” for a Specific Dynamic VLAN Changing the Primary VLAN Creating a New Static VLAN Changing the VLAN Context Level Figure 11-16.Example of Creating a New Static VLAN Page VLAN already exists Page Figure 11-17.Example of Tagged and Untagged VLAN Port Assignments Figure 11-18.Example of VLAN ID Numbers Assigned in the VLAN Names Screen Figure 11-19.Example of Networked 802.1Q-CompliantDevices with Multiple VLANs on Some Ports Switch Switch Y Page Page Manual reboot Default: Disabled My_VLAN Figure 11-22.Illustration of Configuration Example write-memory Page Page HP Router Requirements routers GVRP Figure 11-24. .Exampleof Forwarding Advertisements and Dynamic Joining Switch “D” GVRP On Figure 11-25.Example of GVRP Operation Page Table 11-3.Options for Handling “Unknown VLAN” Advertisements: show gvrp Figure 11-26.Example of GVRP Unknown VLAN Settings Page Table 11-4.Controlling VLAN Behavior on Ports with Static VLANs Page Disable Figure 11-27.The VLAN Support Screen (Default Configuration) Unknown VLAN Figure 11-28.Example Showing Default Settings for Handling Advertisements GVRP Commands Used in This Section Figure 11-29.Example of “Show GVRP” Listing with GVRP Disabled Figure 11-30.Example of Show GVRP Listing with GVRP Enabled Enabling and Disabling GVRP on the Switch. This command enables Syntax: gvrp show vlans Figure 11-31.Example of Listing Showing Dynamic VLANs Page Page Multimedia Traffic Control with IP Multicast (IGMP) Page Terminology IGMP Device: IGMP Host: Leave Group: Multicast Group: IGMP Operating Features Forward with High Priority Auto/Blocked/Forward: forward Querier: IP Addressing: IGMP: Forced Figure 12-1.Example Listing of IGMP Configuration for All VLANs in the Switch Figure 12-2.Example Listing of IGMP Configuration for A Specific VLAN Configuring Per-PortIGMP Packet Control. Use this command in the Default: Default: normal Configuring the Querier Capability. The default querier capability is Default: Yes More on IGMP Operation Report (Join): IGMP Data Page Figure 12-3.The Advantage of Using IGMP Figure 12-4.Isolating IP Multicast Traffic in a Network Figure 12-5.Example of Data-DrivenIGMP Operation max-vlans Table 12-1.Maximum Allowed Number of Multicast Filters Automatic Operation Figure 12-6.Example of Automatic Fast-LeaveIGMP Criteria To list the Forced Fast-Leavestate for all ports in the switch: To list the Forced Fast-Leavestate for a single port Figure 12-8.Listing the Forced Fast-LeaveState for a Single Port Page Table 12-1.Well-KnownIP Multicast Address Groups Excluded from IGMP Filtering 802.1w Rapid Spanning Tree Protocol (RSTP) 802.1d Spanning Tree Protocol (STP) Page single-instance STP How Spanning Tree Operates Figure 13-2.Example of Using a Trunked Link with STP and VLANs Fast-UplinkSTP for Improving the Recovery (Convergence) Time Configuring Rapid Reconfiguration Spanning Tree (RSTP) Page Menu Menu: CLI: Viewing the Current Spanning Tree Configuration. Even if spanning Abbreviation: Figure 13-3.Example of the Spanning Tree Configuration Display Enabling or Disabling RSTP Abbreviation: [no] span Enabling STP Instead of RSTP Abbreviation: span prot stp Table 13-1.Whole-SwitchRSTP Parameters Abbreviations: Defaults: Reconfiguring Per-PortSpanning Tree Values. You can configure one or Table 13-2.Per-PortRSTP Parameters Note on Path Cost Protocol Version RSTP or STP Note: STP Enabled Figure 13-4.Example of the RSTP Configuration Screen 6. Reboot Switch Page 802.1p Spanning-TreeProtocol (STP) Figure 13-5.The Default “Spanning Tree Operation” Screen Figure 13-6.Enabling Spanning-TreeOperation Mode Actions line Page Figure 13-9.Example of the Default STP Configuration Listing with 802.1d STP Configured at the Protocol Version stp Figure 13-10.Steps for Changing Spanning-TreeOperation to the 802.1d Protocol Enabling (or Disabling) Spanning Tree Operation on the Switch Table 13-3.GeneralSTP Operating Parameters maximum-age hello-time Reconfiguring Per-PortSTP Operation on the Switch. This command Table 13-4.Per-PortSTP Parameters fast To Enable or Disable Fast Mode for a Switch Port: Figure 13-11.Example of How To Implement Fast-UplinkSTP Page Table 13-5.STPParameter Settings for Figure Scenario 1: Scenario 2: Figure 13-13.Example of a Disallowed Connection Between Edge Switches Page Figure 13-15.Changing from RSTP to STP Requires a System Reboot STP Figure 13-16.The Spanning Tree Operation Screen 7.Spanning Tree Information Page Figure 13-20.Example Topology for the Listing Shown in Figure Page Page Page Web: Enabling or Disabling STP Page Switch Meshing Figure 14-1.Example of Switch Meshing Meshing Allows Scalable Responses to Increasing Bandwidth Switch Meshing Fundamentals Switch Mesh Domain Figure 14-2.Example of a Switch Mesh Domain in a Network Page G V R P N o t e Page Page Page Configuring Switch Meshing show mesh Edit Figure 14-7.Example of the Screen for Configuring Ports for Meshing Mesh Figure 14-8.Example of Mesh Group Assignments for Several Ports Type Figure 14-9.After Saving a Mesh Configuration Change, Reboot the Switch a.�� (for Reboot Switch) State Adjacent Switch Peer Port Figure 14-10.Example of the Show Mesh Report Page Table 14-2.Operating Details for Figure Figure 14-12.Example of the Show Mesh Listing for the Topology in Figure Figure 14-13.Example of How To Configure Ports for Meshing mesh Figure 14-14.Example of Removing a Port from the Mesh Operating Notes for Switch Meshing Figure 14-15.Example of a Broadcast Path Through a Switch Mesh Domain Page Problem: Solution: Figure 14-16.Example Using STP Without and With Switch Meshing Figure 14-17.Connecting a Switch Mesh Domain to Non-MeshedDevices Figure 14-18.Interconnecting Switch Mesh Domains with Redundant Links Page Figure 14-19.VLAN Operation with a Switch Mesh Domain Mesh Domain Size: Figure 14-20.Example of a Backbone Using the Maximum Number of Meshed Switches Figure 14-21.Example of the Maximum Meshed Switch Hop Count Fast EtherChannel (FEC): Automatic Broadcast Control: Network Monitor Port: Page Quality of Service (QoS): Managing Bandwidth More Effectively Page Page 802.1p prioritization: Type-of-Service (ToS): Page Table 15-1.PortQueue Exit Priorities Page C r i t e r i a Table 15-4.Precedence Criteria for QoS Classifiers Page Preparation for Configuring QoS Table 15-5.Summary of QoS Capabilities Table 15-6.Applying QoS Options to Traffic Types Defined by QoS Classifiers Page QoS Classifier Precedence: Options for Assigning Priority TCP/UDP Port Number Ranges. There are three ranges: http://www.iana.org Protocol Number Assignment Services Page Page Steps for Creating a DSCP Policy Based on TCP/UDP Port Number Classifiers Figure 15-4.Display the Current DSCP-MapConfiguration Figure 15-5.Assign Priorities to the Selected DSCPs Page Page Page Figure 15-8.Display the Current DSCP-MapConfiguration Figure 15-9.Assigning 802.1p Priorities to the Selected DSCPs Figure 15-10.The Completed Device-Priority/CodepointConfiguration ToS IP-Precedence Mode: IP Precedence Syntax: Figure 15-11.Example of Enabling ToS IP-PrecedencePrioritization diff services Operating Notes 4.Enable diff-services Page diff-services Figure 15-13.Example Showing Codepoints Available for Direct 802.1p Priority Assignments incoming-DSCP outgoing- DSCP Figure 15-15.Display the Current DSCP-MapConfiguration Page Page Figure 15-18.The ToS Codepoint and Precedence Bits Table 16-7.Howthe Switch Uses the ToS Configuration ToS Option: Page Page Page Figure 15-20.Example of a List of VLANs Available for QoS Prioritization Figure 15-21.Configuring and Displaying QoS Priorities on VLANs Figure 15-22.Returning a QoS-PrioritizedVLAN to “No-override”Status Steps for Creating a Policy Based on VLAN-IDClassifier Page Figure 15-23.Display the Current Configuration in the DSCP Policy Table Figure 15-24.Assign Priorities to the Selected DSCPs Figure 15-25.The Completed VID-DSCPPriority Configuration Page Figure 15-26.Configuring and Displaying Source-PortQoS Priorities Figure 15-27.Returning a QoS-PrioritizedVLAN to “No-override”Status Steps for Creating a Policy Based on Source-PortClassifiers Priority show qos Page Figure 15-28.Display the Current Configuration in the DSCP Policy Table Figure 15-29.Assign Priorities to the Selected DSCPs Figure 15-30.The Completed Source-Port DSCP-PriorityConfiguration Page Table 16-8.The Default DSCP Policy Table > priority < 0 - 7 >) Effect of Cannot modify DSCP Policy < codepoint > - in use by other qos rules show qos classifier show qos type-of-service Figure 15-32.Example of Trying To Change the Priority on a Policy In Use by a Page device-priority port-priority udp-port Configuring QoS from the Web Browser Interface Figure 15-34.The Default QoS Configuration Screen QoS Messages in the CLI For Devices that Do Not Support 802.1Q Tagged VLANs: VLAN Tagging Rules: Loss of Communication on a Tagged VLAN: Page IP Routing Features Overview of IP Routing IP Static Routes RIP OSPF DHCP Relay Page show ip route Page Table 16-1.IP Global Parameters for Routing Switches Page Table 16-2.IP Interface Parameters – Routing Switches Configuring IP Parameters for Routing Switches show ip ospf <ip-addr Page Page Page Burst-Normal Reply Limit Echo messages Address Mask replies Page Configuring Static IP Routes Standard Null (reject) reject Page Page Configuring RIP distance vector Table 16-3.RIP Global Parameters Table 16-4.RIP Interface Parameters RIPv1 RIPv1-compatible-v2 if needed RIPv2-only restrict <value show ip rip RIP protocol Auto-summary Default Metric Route changes Queries RIP Interface Information RIP Peer Information Page Status Send mode Recv mode Metric Auth Bad routes Last update timeticks router rip redistribute router rip restrict Configuring OSPF Autonomous System (AS) areas Area Border Routers (ABRs) Page Page Page Global Parameters: Interface Parameters: ip ospf… normal stub Normal Stub Assign a Totally Stubby Area <num> | no-summary range Example <ospf-area-id range VLAN interface level Area: Authentication-key: Cost: Dead-interval: Hello-interval: Priority: Retransmit-interval: transit area ID Figure 16-1.Defining OSPF virtual links within a network area <ip-addr | <num <router-id cost area help Hello Interval Retransmit Interval Page type2 Table 16-2.OSPF Traps and Associated MIB Objects OSPF Trap Name MIB Object Examples: OSPF Information Type Page Table 16-3.CLI Display of OSPF General Information Table 16-4.CLI Display of OSPF Area Information Table 16-5.CLI Display of OSPF External Link State Information status link-state-id router-id sequence-number An example of the show ip ospf external-link-stateadvertise is the following: Table 16-6.CLI Display of OSPF Interface Information Page Table 16-7.CLI Display of OSPF Interface Information – VLAN or IP Address BCAST Page Table 16-8.CLI Display of OSPF Link State Information Other options for this command: The status keyword is optional and can area-id type link-state Table 16-9.CLI Display of OSPF Neighbor Information Page Page Table 16-11.CLI Display of OSPF Virtual Link Information Page Page Table 16-13.CLI Display of OSPF Route and Status Information enabled send don't send ospf metric Configuring IRDP Packet type Hold time broadcast | multicast maxadvertinterval preference Configuring DHCP Relay Page Page File Transfers Downloading an Operating System (OS) OS Download Features Page Download OS Figure A-1.Example of the Download OS Screen (Default Values) TFTP TFTP Server ecute Validating and writing system software to FLASH b.Check the Firmware revision line copy Figure A-3.Example of the Command to Download an OS Validating and Writing System Software to FLASH show system Send File ransfer 7.Download OS XMODEM Press enter and then initiate Xmodem transfer Firmware revision 7. Download OS Remote File Name flash /os/secondary Figure A-4. Switch-To-Switch,from Primary in Source to Either Flash in Destination Downloading from Either Flash in the Source Switch to Either Flash Page Troubleshooting TFTP Downloads Figure A-6.Example of Message for Download Failure Transferring Switch Configurations TFTP: Copying a Configuration from a Remote Host TFTP: Copying a Configuration File to a Remote Host sw5300 Xmodem: Copying a Configuration File from the Switch to a Serially Xmodem: Copying a Configuration File from a Serially Connected PC Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation Figure A-7.Example of Sending Command Output to a File on an Attached PC Figure A-8.Example of Sending Event Log Content to a File on an Attached PC Figure A-9.Example of Copying Switch Crash Data Content to a PC Page Monitoring and Analyzing Switch Operation Status: Counters: Event Log Port monitoring (mirroring): Status and Counters Data 1. Status and Counters Figure B-1.The Status and Counters Menu Figure B-2.Example of General Switch Information 1 Status and Counters 2. Switch Management Address Information Figure B-3.Example of Management Address Information with VLANs Configured 3.Module Information Figure B-4.Example of Module Information in the Menu Interface Figure B-5.Example of Port Status on the Menu Interface N o t e o n R e s e t 4.Port Counters Figure B-6.Example of Port Counters on the Menu Interface how Details Figure B-7.Example of the Display for Show details on a Selected Port Reset Page 5.VLAN Address Table Figure B-8.Example of the Address Table ext page rev page earch Figure B-9.Example of Menu Indicating Located MAC Address 7.Port Address Table Figure B-10.Listing MAC Addresses for a Specific Port Determining Whether a Specific Device Is Connected to the Selected Port To List All Learned MAC Addresses on the Switch, with The Port Number on Which Each MAC Address Was Learned Corresponding Port Numbers To Find the Port On Which the Switch Learned a Specific MAC 8.Spanning Tree Information Figure B-11.Example of Spanning Tree Information how ports Figure B-12.Example of STP Port Information Figure B-13.Example of IGMP Group Data Ports Listing the VLAN ID (VID) and Status for ALL VLANs in the Switch Figure B-14.Example of VLAN Listing for the Entire Switch Listing the VLAN ID (VID) and Status for Specific Ports Figure B-15.Example of VLAN Listing for Specific Ports Listing Individual VLAN Status Figure B-16.Example of Port Listing for an Individual VLAN Figure B-17.Example of a Web Browser Interface Status Overview Screen Interface Monitoring Features 3.Network Monitoring Port Figure B-18.The Default Network Monitoring Configuration Screen Monitoring Port Figure B-19.How To Select a Monitoring Port Ports: Monitor Action show monitor Figure B-20.Example of Monitored Port Listing b5-b8 trk1 Figure B-22.Example of Configuring VLAN Monitoring Figure B-23.Examples of Removing Ports as Monitoring Sources Monitor Selected Ports Monitoring Off Troubleshooting Page Troubleshooting Approaches Browser or Telnet Access Problems Cannot access the web browser interface: Web Agent Enabled 2. Switch Configuration 1. System Information Cannot Telnet into the switch console from a station on the network: Inbound Telnet Enabled Note Unusual Network Activity The network runs slow; processes fail; users cannot access servers or other devices Duplicate IP Addresses ip: Invalid ARP source: IP address on IP address The Switch Has Been Configured for DHCP/Bootp Operation, But Has Ports configured for non-defaultprioritization (level 1 - 7) are not performing the specified action IP Multicast Traffic Floods Out All Ports; IGMP Does Not Appear To Filter Traffic Try Using the Web Browser Interface: � Using the Switch Console Interface: From the Main Menu, check the then execute interface [ e ] < port-number > lacp Traffic on a dynamic VLAN does not get through the switch mesh The Switch Mesh Does Not Allow An HP Procurve Switch 1600M 2400M/2424M/4000M/8000M Port To Join the Mesh . One of the Series show log ping radius-server timeout During RADIUS-authenticatedclient sessions, access to a VLAN on the The supplicant statistics listing shows multiple ports with the same Figure C-1.Authenticator Ports Remain “Open” Until Activated RADIUS server fails to respond to a request for service, even though show radius show port- access authenticator The switch does not receive a response to RADIUS authentication requests Figure C-2.Examples of Global and Unique Encryption Keys Broadcast Storms Appearing in the Network. This can occur when Links in that VLAN pub-key file client-public-key Event Log tacacs-server aaa authentication num-attempts The Switch Cannot Find the Time Server or the Configured Gateway Monitor Port None of the devices assigned to one or more VLANs on an 802.1Q Figure C-3.Example of Correct VLAN Port Assignments on a Link Figure C-4.Example of Duplicate MAC Address Using the Event Log To Identify Problem Sources 08/05/01 10:52:32 ports: Table C-1.Event Log System Modules Event Log Figure C-5.Example of an Event Log Display Next page Prev page End Page Diagnostic Tools Diagnostic Features Page Figure C-6.Link and Ping Test Screen on the Web Browser Interface Successes Failures Number of Packets to Send Ping Tests Figure C-7.Examples of Ping Tests Link Tests Figure C-8.Example of Link Tests Diagnostics Figure C-9.The Capture Text window of the Hyperterminal Application Page Restoring the Factory-Default Configuration erase startup-config Restoring a Flash Image erase flash Call Disconnect ii.Select File | Properties vi.Select Call | Connect File Figure C-11.Example of Xmodem Download in Progress Page MAC Address Management Determining MAC Addresses Configured on the Switch: Figure B-1.Example of the Management Address Information Screen walkmib Figure B-2.Example of Port MAC Address Assignments Page Daylight Savings Time on HP Procurve Switches Middle Europe and Portugal: Southern Hemisphere: Western Europe: Figure E-1.Menu Interface with “User-Defined”Daylight Time Rule Option Page Page Symbols Numerics