manualshive.com logo in svg

Cisco 6000 series, Configuration Manual, Page: 140 / 158

Share
Download
Cisco 6000 series Configuration Manual Download Page 140

Tunnel-IPSec: Example

This example shows the process of creating and applying a profile to an IPSec tunnel. The necessary preliminary
steps are also shown. You must first define a transform set and then create a profile before configuring the
IPSec tunnel.

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# crypto ipsec transform-set
tset1
RP/0/RP0/CPU0:router(configtransform-set tset1)# transform esp-sha-hmac
RP/0/RP0/CPU0:router(config-transform-set tset1)# end
Uncommitted changes found, commit them before exiting(yes/no/cancel)? [cancel]: yes

RP/0/RP0/CPU0:router# configure
RP/0/RP0/CPU0:router(config)# crypto ipsec profile user1
RP/0/RP0/CPU0:router(config-user1)# match sampleac1 transform-set tset1
RP/0/RP0/CPU0:router(config-user1)# set pfs group5
RP/0/RP0/CPU0:router(config-user1)# set type dynamic
RP/0/RP0/CPU0:router(config-user1)# exit

RP/0/RP0/CPU0:router# configure
RP/0/RP0/CPU0:router(config)# interface tunnel-ipsec 30
RP/0/RP0/CPU0:router(config-if)# profile user1
RP/0/RP0/CPU0:router(config-if)# tunnel source MgmtEth 0/RP0/CPU0/0
RP/0/RP0/CPU0:router(config-if)# tunnel destination 192.168.164.19
RP/0/RP0/CPU0:router(config-if)# end
Uncommitted changes found, commit them before exiting(yes/no/cancel)? [cancel]: yes

Where to Go Next

You now must apply a crypto profile to each transport. Applying the crypto profile set to a transport instructs
the router to evaluate all the interface's traffic against the crypto profile set and to use the specified policy
during connection or security association negotiation on behalf of traffic to be protected by crypto.

For information on applying a crypto profile to each transport, see the

Implementing IPSec Network Security

on

module of

System Security Configuration Guide

.

Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers, IOS XR Release 6.4.x

128

Configuring Tunnel Interfaces

Tunnel-IPSec: Example

Summary of Contents for 6000 series

Page 1: ... Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x First Published 2018 03 23 Americas Headquarters Cisco Systems Inc 170 West Tasman Drive San Jose CA 95134 1706 USA http www cisco com Tel 408 526 4000 800 553 NETS 6387 Fax 408 527 0883 ...

Page 2: ... OR IMPLIED INCLUDING WITHOUT LIMITATION THOSE OF MERCHANTABILITY FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING USAGE OR TRADE PRACTICE IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT SPECIAL CONSEQUENTIAL OR INCIDENTAL DAMAGES INCLUDING WITHOUT LIMITATION LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO US...

Page 3: ...d 5 Active and Standby RPs and Virtual Interface Configuration 5 How to Preconfigure Physical Interfaces 6 Configuration Examples for Preconfiguring Physical Interfaces 7 Preconfiguring an Interface Example 7 Additional References 8 Advanced Configuration and Modification of the Management Ethernet Interface 11 C H A P T E R 3 Prerequisites for Configuring Management Ethernet Interfaces 12 Informa...

Page 4: ...rnet 24 Layer 2 VPN on Ethernet Interfaces 25 Gigabit Ethernet Protocol Standards Overview 26 IEEE 802 3 Physical Ethernet Infrastructure 26 IEEE 802 3ab 1000BASE T Gigabit Ethernet 26 IEEE 802 3z 1000 Mbps Gigabit Ethernet 26 IEEE 802 3ae 10 Gbps Ethernet 26 IEEE 802 3ba 100 Gbps Ethernet 26 MAC Address 27 MAC Accounting 27 Ethernet MTU 27 Flow Control on Ethernet Interfaces 27 802 1Q VLAN 28 VRR...

Page 5: ...ions for an Interface 41 Verifying the LLDP Configuration 43 Configuration Examples for Ethernet 44 Configuring an Ethernet Interface Example 44 Configuring MAC Accounting Example 44 Configuring a Layer 2 VPN AC Example 45 Configuring LLDP Examples 45 Where to Go Next 45 Additional References 45 Configuring Ethernet OAM 47 C H A P T E R 5 Prerequisites for Configuring Ethernet OAM 47 Information A...

Page 6: ...ter Example 60 Where to Go Next 61 Additional References 61 Configuring Link Bundling 63 C H A P T E R 6 Prerequisites for Configuring Link Bundling 63 Prerequisites for Configuring Link Bundling 64 Information About Configuring Link Bundling 64 Link Bundling Overview 64 Features and Compatible Characteristics of Link Bundles 65 Link Aggregation Through LACP 66 IEEE 802 3ad Standard 66 LACP Short ...

Page 7: ...rminology 97 Characteristics of the Source Port 98 Characteristics of the Monitor Session 98 Characteristics of the Destination Port 98 Configure Traffic Mirroring 99 Configuring Virtual Loopback and Null Interfaces 103 C H A P T E R 8 Prerequisites for Configuring Virtual Interfaces 103 Information About Configuring Virtual Interfaces 103 Virtual Loopback Interface Overview 104 Null Interface Ove...

Page 8: ... 1Q VLAN Subinterfaces 113 Configuring an Attachment Circuit on a VLAN 115 What to Do Next 118 Removing an 802 1Q VLAN Subinterface 118 118 Configuration Examples for VLAN Interfaces 119 VLAN Subinterfaces Example 120 Additional References 121 Configuring Tunnel Interfaces 123 C H A P T E R 1 0 Prerequisites for Configuring Tunnel Interfaces 124 Information About Configuring Tunnel Interfaces 124 ...

Page 9: ...t to Do Next 135 Configuring IPoDWDM 135 Configuring the Optical Layer DWDM Ports 135 Configuring the Administrative State of DWDM Optical Ports 137 Configuration Examples 138 Turning On the Laser Example 139 Turning Off the Laser Example 139 IPoDWDM Configuration Examples 139 Optical Layer DWDM Port Configuration Examples 139 Administrative State of DWDM Optical Ports Configuration Examples 139 A...

Page 10: ...Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x x Contents ...

Page 11: ... 2018 Republished for Release 6 4 2 July 2018 Obtaining Documentation and Submitting a Service Request For information on obtaining documentation submitting a service request and gathering additional information see the monthly What s New in Cisco Product Documentation which also lists all new and revised Cisco technical documentation at http www cisco com c en us td docs general whatsnew whatsnew...

Page 12: ...Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x xii Preface Obtaining Documentation and Submitting a Service Request ...

Page 13: ...on sections Interface and Hardware Component Features Added or Modified in IOS XR Release 6 4 x on page 1 InterfaceandHardwareComponentFeaturesAddedorModified in IOS XR Release 6 4 x Where Documented Introduced Changed in Release Description Feature Not applicable Not applicable No new features were added None Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers I...

Page 14: ...mponent Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 2 New and Changed Interface and Hardware Component Features Interface and Hardware Component Features Added or Modified in IOS XR Release 6 4 x ...

Page 15: ...modular services card is present because the verifiers themselves run only on the modular services card Such preconfiguration data is verified when the modular services card is inserted and the verifiers are initiated A configuration is rejected if errors are found when the configuration is copied from the preconfiguration area to the active area Only physical interfaces can be preconfigured Note ...

Page 16: ...ed and the interfaces are created the precreated configuration information is verified and if successful immediately applied to the router s running configuration When you plug the anticipated modular services card in make sure to verify any preconfiguration with the appropriate show commands Note Use the show run command to see interfaces that are in the preconfigured state We recommend filling o...

Page 17: ...ed by the router and for which drivers have been installed However the slot port subinterface number and channel interface number information cannot be validated Specifying an interface name that already exists and is configured or an abbreviated name like e0 3 0 0 is not permitted Note Active and Standby RPs and Virtual Interface Configuration The standby RP is available and in a state in which i...

Page 18: ...ED STEPS Purpose Command or Action Enters XR configuration mode configure Example Step 1 RP 0 RP0 CPU0 router configure Enters interface preconfiguration mode for an interface where type specifies the supported interface type that you interface preconfigure type interface path id Example Step 2 want to configure and interface path id specifies the RP 0 RP0 CPU0 router config interface preconfigure...

Page 19: ...or committing the configuration changes RP 0 RP0 CPU0 router config if pre commit Use the commit best effort command to save the configuration changes to the running configuration file and remain within the configuration session The commit best effort command merges the target configuration with the running configuration and commits only valid changes best effort Some configuration changes might f...

Page 20: ...rmation about user groups and task IDs Standards Title Standards No new or modified standards are supported by this feature and support for existing standards has not been modified by this feature MIBs MIBs Link MIBs To locate and download MIBs for selected platforms using Cisco IOS XR Software use the Cisco MIB Locator found at the following URL http cisco com public sw center netmgmt cmtk mibs s...

Page 21: ...ble technical content including links to products technologies solutions technical tips and tools Registered Cisco com users can log in from this page to access even more content Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 9 Preconfiguring Physical Interfaces Additional References ...

Page 22: ...Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 10 Preconfiguring Physical Interfaces Additional References ...

Page 23: ...tween PLIM ports and Management Ethernet interface ports use the rp mgmtethernet forwarding command Note Although the Management Ethernet interfaces on the system are present by default the user must configure these interfaces to use them for accessing the router using protocols and applications such as Simple Network Management Protocol SNMP Common Object Request Broker Architecture CORBA HTTP ex...

Page 24: ...thernet interfaces you must understand the following concept Default Interface Settings This table describes the default Management Ethernet interface settings that can be changed by manual configuration Default settings are not displayed in the show running config command output Table 2 Management Ethernet Interface Default Settings Configuration File Entry Default Value Parameter speed 10 100 10...

Page 25: ...show interfaces MgmtEth interface path id DETAILED STEPS Purpose Command or Action Enters XR configuration mode configure Example Step 1 RP 0 RP0 CPU0 routerconfigure terminal Enters interface configuration mode and specifies the Ethernet interface name and notation rack slot module port interface MgmtEth interface path id Example RP 0 RP0 CPU0 router config interface MgmtEth 0 RP0 CPU0 0 Step 2 T...

Page 26: ...down on the interface enabling it to move to an up or down state no shutdown Example RP 0 RP0 CPU0 router config if no shutdown Step 5 Saves configuration changes Do one of the following Step 6 end When you issue the end command the system prompts you to commit changes or commit Uncommitted changes found commit them before or exiting yes no cancel cancel Example Entering yes saves configuration ch...

Page 27: ...face configuration mode and specifies the Management Ethernet interface name and instance interface MgmtEth interface path id Example Step 2 RP 0 RP0 CPU0 router config interface MgmtEth 0 RP0 CPU0 0 Configures the interface duplex mode Valid options are full or half duplex full half Example Step 3 To return the system to autonegotiated duplex operation use the no duplex command Note RP 0 RP0 CPU0...

Page 28: ...ion Configuring the Speed for a Management Ethernet Interface Perform this task to configure the speed of the Management Ethernet interfaces for the RPs SUMMARY STEPS 1 configure 2 interface MgmtEth interface path id 3 speed 10 100 1000 4 Do one of the following end or commit DETAILED STEPS Purpose Command or Action Enters XR configuration mode configure Example Step 1 RP 0 RP0 CPU0 router configu...

Page 29: ... no exits the configuration session and returns the router to XR EXEC mode without committing the configuration changes Entering cancel leaves the router in the current configuration session without exiting or committing the configuration changes Use the commit command to save the configuration changes to the running configuration file and remain within the configuration session Modifying the MAC ...

Page 30: ...nfiguration changes to the running configuration file exits the configuration session and returns the router to XR EXEC mode Example RP 0 RP0 CPU0 router config if commit Entering no exits the configuration session and returns the router to XR EXEC mode without committing the configuration changes Entering cancel leaves the router in the current configuration session without exiting or committing ...

Page 31: ...ig if no shutdown RP 0 RP0 CPU0 router config if commit RP 0 RP0 CPU0 Mar 26 01 09 28 685 ifmgr 190 LINK 3 UPDOWN Interface MgmtEth0 RP0 CPU0 0 changed state to Up RP 0 RP0 CPU0 router config if end RP 0 RP0 CPU0 router show interfaces MgmtEth 0 RP0 CPU0 0 MMgmtEth0 RP0 CPU0 0 is up line protocol is up Hardware is Management Ethernet address is 0011 93ef e8ea bia 0011 93ef e8ea Description Connect...

Page 32: ...face configuration Related Documents Standards Title Standards No new or modified standards are supported by this feature and support for existing standards has not been modified by the feature MIBs MIBs Link MIBs To locate and download MIBs for selected platforms using Cisco IOS XR Software use the Cisco MIB Locator found at the following URL http cisco com public sw center netmgmt cmtk mibs shtm...

Page 33: ...cluding links to products technologies solutions technical tips and tools Registered Cisco com users can log in from this page to access even more content Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 21 Advanced Configuration and Modification of the Management Ethernet Interface Additional References ...

Page 34: ...rface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 22 Advanced Configuration and Modification of the Management Ethernet Interface Additional References ...

Page 35: ... 2 1 Prerequisites for Configuring Ethernet Interfaces on page 23 Information About Configuring Ethernet on page 24 How to Configure Ethernet on page 33 Configuration Examples for Ethernet on page 44 Where to Go Next on page 45 Additional References on page 45 Prerequisites for Configuring Ethernet Interfaces You must be in a user group associated with a task group that includes the proper task ID...

Page 36: ...thernet and 10 Gigabit Ethernet Modular Services Card Default Configuration Values Default Value Configuration File Entry Parameter off mac accounting MAC accounting egress offingress off flow control Flow control 1514 bytes for normal frames 1518 bytes for 802 1Q tagged frames 1522 bytes for Q in Q frames mtu MTU Hardware burned in address BIA mac address MAC address Default Configuration Values ...

Page 37: ...e packets In VLAN mode the configuration is performed under the l2transport configuration mode VLAN Mode Each VLAN on a CE customer edge or access network to PE provider edge link can be configured as a separate L2VPN connection using either VC type 4 or VC type 5 In VLAN mode the configuration is performed under the individual subinterface Switching can take place in three ways AC to PW Traffic r...

Page 38: ...ut increases speed tenfold over Fast Ethernet to 1000 Mbps or 1 Gbps Gigabit Ethernet allows Ethernet to scale from 10 or 100 Mbps at the desktop to 100 Mbps up to 1000 Mbps in the data center Gigabit Ethernet conforms to the IEEE 802 3z protocol standard By leveraging the current Ethernet standard and the installed base of Ethernet and Fast Ethernet switches and routers network managers do not ne...

Page 39: ...o types of frame forwarding processes Fragmentation for IPV4 packets In this process IPv4 packets are fragmented as necessary to fit within the MTU of the next hop physical network IPv6 does not support fragmentation Note MTU discovery process determines largest packet size This process is available for all IPV6 devices and for originating IPv4 devices In this process the originating IP device det...

Page 40: ... router in the event of failure Several routers are connected to the same segment of an Ethernet FDDI or token ring network and work together to present the appearance of a single virtual router on the LAN The routers share the same IP and MAC addresses and therefore in the event of failure of one router the hosts on the LAN are able to continue forwarding packets to a consistent IP and MAC addres...

Page 41: ... default speed is the maximum speed allowed on the interface Both ends of a link must have the same interface speed A manually configured interface speed overrides any auto negotiated speed which can prevent a link from coming up if the configured interface speed at one end of a link is different from the interface speed on the other end Note Link Autonegotiation on Ethernet Interfaces Link autone...

Page 42: ... discover and acquire knowledge about other Cisco devices connected to the network To support non Cisco devices and to allow for interoperability between other devices the Cisco NCS 6000 Series Router also supports the IEEE 802 1AB Link Layer Discovery Protocol LLDP LLDP is a neighbor discovery protocol that is used by network devices to advertise information about themselves to other devices on t...

Page 43: ...bout a neighbor for a certain amount of time specified in the TTL TLV before aging and removing the information LLDP supports these additional operational characteristics LLDP operates independently in transmit or receive modes LLDP operates as a slow protocol using only untagged frames with transmission speeds of less than 5 frames per second LLDP packets are sent when these events occur The pack...

Page 44: ...P functions are not supported LLDP MED organizationally unique extension Interoperability however still exists between other devices that do support this extension Tunneled neighbors or neighbors more than one hop away LLDP TLVs cannot be disabled on a per interface basis Certain optional TLVs however can be disabled globally Carrier Delay on Ethernet Interfaces When enabled on an Ethernet interfa...

Page 45: ...create a basic Gigabit Ethernet 10 Gigabit Ethernet or 100 Gigabit Ethernet interface configuration SUMMARY STEPS 1 show version 2 show interfaces TenGigE interface path id 3 configure 4 interface GigabitEthernet TenGigE interface path id 5 ipv4 address ip address mask 6 flow control bidirectional egress ingress 7 mtu bytes 8 mac address value1 value2 value3 9 negotiation auto 10 no shutdown 11 Do...

Page 46: ...the primary IPv4 address for the interface RP 0 RP0 CPU0 router config if ipv4 address 172 18 189 38 255 255 255 224 Replace mask with the mask for the associated IP subnet The network mask can be specified in either of two ways The network mask can be a four part dotted decimal address For example 255 0 0 0 indicates that each bit equal to 1 means that the corresponding address bit belongs to the...

Page 47: ...if negotiation auto must be configured manually on both ends of the connection If autonegotiation is enabled any speed or duplex settings that you configure manually take precedence The negotiation auto command is available on Gigabit Ethernet interfaces only Note Removes the shutdown configuration which forces an interface administratively down no shutdown Example Step 10 RP 0 RP0 CPU0 router con...

Page 48: ...rface refer to the appropriate Cisco IOS XR software configuration guide What to Do Next To attach Layer 3 service policies such as Multiprotocol Label Switching MPLS or Quality of Service QoS to the Ethernet interface refer to the appropriate configuration guide Configuring MAC Accounting on an Ethernet Interface This task explains how to configure MAC accounting on an Ethernet interface MAC acco...

Page 49: ...ork mask can be a four part dotted decimal address For example 255 0 0 0 indicates that each bit equal to 1 means that the corresponding address bit belongs to the network address The network mask can be indicated as a slash and number For example 8 indicates that the first 8 bits of the mask are ones and the corresponding bits of the address are network address Generates accounting information fo...

Page 50: ...tics for an interface show mac accounting type location instance Example Step 6 RP 0 RP0 CPU0 router show mac accounting TenGigE location 0 2 0 4 Configuring a L2VPN Ethernet Port Use the following procedure to configure an L2VPN Ethernet port The steps in this procedure configure the L2VPN Ethernet port to operate in port mode Note SUMMARY STEPS 1 configure 2 interface TenGigE interface path id 3...

Page 51: ...anning tree protocol tunneling and data unit parameters vtp VLAN trunk protocol tunneling and data unit parameters tunnel Optional Tunnels the packets associated with the specified protocol experimental bits Optional Modifies the MPLS experimental bits for the specified protocol drop Optional Drop packets associated with the specified protocol Saves configuration changes Do one of the following St...

Page 52: ...guration This table shows values of the LLDP default configuration To change the default settings use the LLDP global configuration and LLDP interface configuration commands Table 6 LLDP Default Configuration Default LLDP Function Disabled LLDP global state 120 LLDP holdtime before discarding in seconds 30 LLDP timer packet update frequency in seconds 2 LLDP reinitialization delay in seconds All T...

Page 53: ...s such as the Chassis ID Port ID and Time to Live TTL TLVs These TLVs must be present in every LLDP packet You can suppress transmission of certain other optional TLVs in LLDP packets To disable transmission of optional LLDP TLVs complete these steps Disabling LLDP Receive and Transmit Operations for an Interface When you enable LLDP globally on the router all supported interfaces are automaticall...

Page 54: ...he following Step 6 end When you issue the end command the system prompts you to commit changes or commit Uncommitted changes found commit them before Example exiting yes no cancel cancel RP 0 RP0 CPU0 router config end Entering yes saves configuration changes to the running configuration file exits the configuration session and returns the router to EXEC mode Example RP 0 RP0 CPU0 router config c...

Page 55: ...Configuration To verify the LLDP interface status and configuration use the show lldp interface command as shown in this example RP 0 RP0 CPU0 router show lldp interface GigabitEthernet 0 1 0 7 Wed Apr 13 13 22 30 501 DST GigabitEthernet0 1 0 7 Tx enabled Rx enabled Tx state IDLE Rx state WAIT FOR FRAME What To Do Next To monitor and maintain LLDP on the system or get information about LLDP neighb...

Page 56: ...s on input flow control is on loopback not set ARP type ARPA ARP timeout 01 00 00 Last clearing of show interface counters never 5 minute input rate 0 bits sec 0 packets sec 5 minute output rate 0 bits sec 0 packets sec 0 packets input 0 bytes 0 total input drops 0 drops for unrecognized upper level protocol Received 0 broadcast packets 0 multicast packets 0 runts 0 giants 0 throttles 0 parity 0 i...

Page 57: ... to disable a specific Gigabit Ethernet interface for LLDP transmission RP 0 RP0 CPU0 router configure RP 0 RP0 CPU0 router config interface GigabitEthernet 0 2 0 0 RP 0 RP0 CPU0 router config if lldp RP 0 RP0 CPU0 router config lldp transmit disable Where to Go Next When you have configured an Ethernet interface you can configure individual VLAN subinterfaces on that Ethernet interface For inform...

Page 58: ...M MIB RFCs Title RFCs No new or modified RFCs are supported by this feature and support for existing RFCs has not been modified by this feature Technical Assistance Link Description http www cisco com techsupport The Cisco Technical Support website contains thousands of pages of searchable technical content including links to products technologies solutions technical tips and tools Registered Cisc...

Page 59: ...roper task IDs The command reference guides include the task IDs required for each command If you suspect user group assignment is preventing you from using a command contact your AAA administrator for assistance Before configuring Ethernet OAM confirm that at least one of the Gigabit Ethernet line cards supported on the router is installed Information About Configuring Ethernet OAM To configure E...

Page 60: ...ch it to an individual interface or to multiple interfaces The following standard Ethernet Link OAM features are supported on the router Neighbor Discovery Neighbor discovery enables each end of a link to learn the OAM capabilities of the other end and establish an OAM peer relationship Each end also can require that the peer have certain capabilities before it will establish a session You can con...

Page 61: ... link monitor 4 symbol period window window 5 symbol period threshold low threshold high threshold 6 frame window window 7 frame threshold low threshold high threshold 8 frame period window window 9 frame period threshold lowthreshold high threshold 10 frame seconds window window 11 frame seconds threshold low threshold high threshold 12 exit 13 mib retrieval 14 connection timeout timeout 15 hello...

Page 62: ...riod window window Example Step 4 802 3 standard defines the window size as a number of RP 0 RP0 CPU0 router config eoam lm symbol period window 60000 symbols rather than a time duration These two formats can be converted either way by using a knowledge of the interface speed and encoding The range is 1000 to 60000 The default value is 1000 Optional Configures the thresholds in symbols that trigge...

Page 63: ...ine cards Note Optional Configures the thresholds in errors per million frames that trigger an Ethernet OAM frame period error frame period threshold lowthreshold high threshold Example Step 9 event The frame period window is defined in the IEEE RP 0 RP0 CPU0 router config eoam lm frame period threshold low 100 high 1000000 specification as a number of received frames in our implementation it is x...

Page 64: ...to 900 The default value is 1 Exits back to Ethernet OAM mode exit Example Step 12 RP 0 RP0 CPU0 router config eoam lm exit Enables MIB retrieval in an Ethernet OAM profile or on an Ethernet OAM interface mib retrieval Example Step 13 RP 0 RP0 CPU0 router config eoam mib retrieval Configures the connection timeout period for an Ethernet OAM session as a multiple of the hello interval connection ti...

Page 65: ...nterface when it occurs Note RP 0 RP0 CPU0 router config eoam action capabilities conflict efd Specifies the action that is taken on an interface when a critical event notification is received from the remote action critical event disable error disable interface Example Step 21 Ethernet OAM peer The default action is to create a syslog entry RP 0 RP0 CPU0 router config eoam action critical event e...

Page 66: ...at no action is taken on an interface when a remote loopback event occurs The default action is to create a syslog entry action remote loopback disable Example RP 0 RP0 CPU0 router config eoam action remote loopback disable Step 25 If you change the default the log keyword option is available in Interface Ethernet OAM configuration mode to override the profile setting and log the event for the int...

Page 67: ...tion session down efd Step 29 If you change the default the error disable interface keyword option is available in Interface Ethernet OAM configuration mode to override the profile setting and put the interface into error disable state when the event occurs Note Enables detection of a local unidirectional link fault and sends notification of that fault to an Ethernet OAM peer uni directional link ...

Page 68: ...ified Ethernet OAM profile profile name and all of its configuration to the interface profile profile name Example Step 4 RP 0 RP0 CPU0 router config if eoam profile Profile_1 Saves the configuration changes to the running configuration file and remains within the configuration session commit Example Step 5 RP 0 RP0 CPU0 router config if commit Ends the configuration session and exits to the XR EX...

Page 69: ...ion perform these steps SUMMARY STEPS 1 configure 2 interface GigabitEthernet TenGigE interface path id 3 ethernet oam 4 interface Ethernet OAM command RP 0 CPU0 router config if eoam action capabilities conflict error disable interface 5 commit 6 end DETAILED STEPS Purpose Command or Action Enters global configuration mode configure Example Step 1 RP 0 CPU0 router configure terminal Enters interf...

Page 70: ...nabled N Mib retrieval enabled N Uni directional link fault detection enabled N Configured mode Active Connection timeout 5 Symbol period window 0 Symbol period low threshold 1 Symbol period high threshold None Frame window 1000 Frame low threshold 1 Frame high threshold None Frame period window 1000 Frame period low threshold 1 Frame period high threshold None Frame seconds window 60000 Frame sec...

Page 71: ...ssion down error disable interface action capabilities conflict error disable interface action wiring conflict error disable interface action remote loopback error disable interface commit Configuring Ethernet OAM Features on an Individual Interface Example The following example shows how to configure Ethernet OAM features on an individual interface configure terminal interface TenGigE 0 1 0 0 eth...

Page 72: ...emote loopback disable action uni directional link fault error disable interface commit configure terminal interface TenGigE 0 1 0 0 ethernet oam profile Profile_1 mode active action dying gasp log action critical event log action discovery timeout log action session up log action session down log action capabilities conflict log action wiring conflict log action remote loopback log action uni dir...

Page 73: ... and Hardware Component Command Reference Cisco IOS XR interface configuration commands Cisco IOS XR Interface and Hardware Component Command Reference Information about user groups and task IDs Standards Title Standards Connectivity Fault Management IEEE 802 1ag OAM Functions and Mechansims for Ethernet Based Networks ITU T Y 1731 Metro Ethernet Forum Technical Specification MEF 16 Ethernet Local...

Page 74: ...he Cisco Technical Support website contains thousands of pages of searchable technical content including links to products technologies solutions technical tips and tools Registered Cisco com users can log in from this page to access even more content Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 62 Configuring Ethernet OAM Additional R...

Page 75: ...ingle Layer 3 configuration set such as IP address ACL Quality of Service QoS and so on Link bundles do not have a one to one modular services card association Member links can terminate on different cards Note Feature History for Configuring Link Bundling Modification Release Bundle Fast Convergence feature was added Release 5 2 5 This feature was introduced Release 5 0 0 Prerequisites for Config...

Page 76: ...e virtual interface is treated as a single interface on which one can configure an IP address and other software features used by the link bundle Packets sent to the link bundle are forwarded to one of the links in the bundle The advantages of link bundles are as follows Multiple links can span several line cards to form a single interface Thus the failure of a single link does not cause a loss of...

Page 77: ...f IPv4 and IPv6 addressing is supported on Ethernet link bundles For Ethernet link bundling links within a single bundle should have the same speed For POS link bundling the links within a single bundle can have varying speeds The fastest link can be set to a maximum speed that is four times greater than the slowest link Mixed bandwidth bundle member configuration is only supported when 1 1 redund...

Page 78: ...nk bundles to ensure the following All links terminate on the same two systems Both systems consider the links to be part of the same bundle All links have the appropriate settings on the peer LACP transmits frames containing the local port state and the local view of the partner system s state These frames are analyzed to ensure both systems are in agreement IEEE 802 3ad Standard The IEEE 802 3ad...

Page 79: ...illiseconds In the range 100 to 1000 milliseconds The default is 1000 milliseconds 1 second Up to 64 member links Up to 1280 packets per second pps After 6 missed packets the link is detached from the bundle When the short period time interval is not configured LACP packets are transmitted over a member link every 30 seconds by default When the short period time interval is configured LACP packets...

Page 80: ...r flow load balancing and 3 tuple hashing is enabled all packets for a certain source destination pair will go through the same link though there are multiple links available Per flow load balancing ensures that packets for a certain source destination pair arrive in order For multicast traffic ingress forwarding is based on the Fabric Multicast Group Identifier FGID Egress forwarding over the bun...

Page 81: ...d to 1 Performing this configuration causes the highest priority link in the bundle to become active and the second highest priority link to become the standby The link priority is based on the value of the bundle port priority command If the active link fails the standby link immediately becomes the active link A link is configured as a member of a bundle from the interface configuration submode ...

Page 82: ... pending flag then when SLOW update AIB is received it looks for FAST down member If the BFC finds the FAST down member it clears the pending flag if it does not it processes the SLOW update and considers the FAST down member as down and programs to the hardware Condition for BFC The bundle must contain N members they may be of different bandwidth belong to different slices or Line Cards and at th...

Page 83: ... Link Bundles This section describes how to configure an Ethernet link bundle MAC accounting is not supported on Ethernet link bundles Note In order for an Ethernet bundle to be active you must perform the same configuration on both connection endpoints of the bundle Note SUMMARY STEPS 1 configure 2 interface Bundle Ether bundle id 3 ipv4 address ipv4 address mask Interface and Hardware Component ...

Page 84: ...ge is 1 to 65535 interface Bundle Ether bundle id Example Step 2 This interface Bundle Ether command enters you into the interface configuration submode where you can enter RP 0 RP0 CPU0 router config interface Bundle Ether 3 interface specific configuration commands are entered Use the exit command to exit from the interface configuration submode back to the normal XR configuration mode Assigns a...

Page 85: ... if lacp fast switchover optionally disable the wait while timer in the LACP state machine Disabling this timer causes a bundle member link in standby mode to expedite its normal state negotiations thereby enabling a faster switchover from a failed active link to the standby link Exits interface configuration submode for the Ethernet link bundle exit Example Step 8 RP 0 RP0 CPU0 router config if e...

Page 86: ... shutdown command returns the link to an up or down state depending on the configuration and state of the link no shutdown Example RP 0 RP0 CPU0 router config if no shutdown Step 12 Exits interface configuration submode for the Ethernet interface exit Example Step 13 RP 0 RP0 CPU0 router config if exit Optional Repeat Step 8 through Step 11 to add more links to the bundle interface TenGigE number ...

Page 87: ... config if exit Saves configuration changes Do one of the following Step 15 end When you issue the end command the system prompts you to commit changes commit Uncommitted changes found commit them before Example exiting yes no cancel cancel RP 0 RP0 CPU0 router config if end Entering yes saves configuration changes to the running configuration file exits the configuration Example session and retur...

Page 88: ...RP0 CPU0 router show bundle Bundle Ether 3 Optional Shows detailed information about LACP ports and their peers show lacp bundle Bundle Ether bundle id Example Step 20 RP 0 RP0 CPU0 router show lacp bundle Bundle Ether 3 Configuring EFP Load Balancing on an Ethernet Link Bundle This section describes how to configure Ethernet flow point EFP Load Balancing on an Ethernet link bundle By default Ethe...

Page 89: ...d balance hash hash value auto hash value Numeric value that specifies the physical member link through which all egressing traffic in this bundle will flow The values are 1 through 8 Example RP 0 RP0 CPU0 router config subif bundle load balancing hash 1 auto The physical member link through which all egressing traffic on this bundle will flow is automatically chosen Example Example RP 0 RP0 CPU0 ...

Page 90: ...Create an Ethernet bundle 2 Create VLAN subinterfaces and assign them to the Ethernet bundle 3 Assign Ethernet links to the Ethernet bundle These tasks are describe in detail in the procedure that follows In order for a VLAN bundle to be active you must perform the same configuration on both ends of the bundle connection Note SUMMARY STEPS 1 configure 2 interface Bundle Ether bundle id 3 ipv4 addr...

Page 91: ...erface Bundle Ether command enters you into the interface configuration submode where you can enter RP 0 RP0 CPU0 router config interface Bundle Ether 3 interface specific configuration commands Use the exit command to exit from the interface configuration submode back to the normal XR configuration mode Assigns an IP address and subnet mask to the virtual interface using the ipv4 address configur...

Page 92: ...cp fast switchover optionally disable the wait while timer in the LACP state machine Disabling this timer causes a bundle member link in standby mode to expedite its normal state negotiations thereby enabling a faster switchover from a failed active link to the standby link Exits the interface configuration submode exit Example Step 8 RP 0 RP0 CPU0 router config if exit Creates a new VLAN and assi...

Page 93: ... bundle you created in Step 2 Step 13 Example Example interface Bundle Ether bundle id vlan id Example dot1q vlan vlan id Example ipv4 address ipv4 address mask Example no shutdown Example exit Example RP 0 RP0 CPU0 router config subif interface Bundle Ether 3 1 Example RP 0 RP0 CPU0 router config subif ipv4 address 20 2 3 4 24 Example RP 0 RP0 CPU0 router config subif no shutdown Example exit Sav...

Page 94: ...de exit Example Step 16 RP 0 RP0 CPU0 router config exit Enters XR configuration mode configure Example Step 17 RP 0 RP0 CPU0 router configure Enters interface configuration mode for the Ethernet interface you want to add to the Bundle interface TenGigE interface path id Example Step 18 Enter the TenGigE keyword to specify the interface type Replace the interface path id argument with the node id ...

Page 95: ...following Step 23 end When you issue the end command the system prompts you to commit changes commit Uncommitted changes found commit them before Example exiting yes no cancel cancel RP 0 RP0 CPU0 router config subif end Entering yes saves configuration changes to the running configuration file exits the configuration Example session and returns the router to XR EXEC mode Example RP 0 RP0 CPU0 rou...

Page 96: ...how vlan trunks command to verify that all configured VLAN subinterfaces on an Ethernet bundle are up Optional If you enabled 1 1 link protection you set the value of the bundle maximum active links command to lacp fast switchover Example Step 28 1 on a bundle with member links running LACP you can RP 0 RP0 CPU0 router config if lacp fast switchover optionally disable the wait while timer in the L...

Page 97: ...d short Step 4 Saves configuration changes Do one of the following Step 5 end When you issue the end command the system prompts you to commit changes commit Uncommitted changes found commit them before Example exiting yes no cancel cancel RP 0 RP0 CPU0 router config if end Entering yes saves configuration changes to the running configuration file exits the configuration session and returns the rou...

Page 98: ...ntervals first and then the transmit intervals Note SUMMARY STEPS 1 configure 2 interface Bundle Ether bundle id 3 ipv4 address ipv4 address mask 4 bundle minimum active bandwidth kbps 5 bundle minimum active links links 6 bundle maximum active links links 7 exit 8 interface Bundle Ether bundle id vlan id 9 dot1q vlan vlan id 10 ipv4 address ipv4 address mask 11 no shutdown 12 exit 13 Repeat Step ...

Page 99: ...command ipv4 address ipv4 address mask Example RP 0 RP0 CPU0 router config if ipv4 address 10 1 2 3 255 0 0 0 Step 3 Optional Sets the minimum amount of bandwidth required before a user can bring up a bundle bundle minimum active bandwidth kbps Example Step 4 RP 0 RP0 CPU0 router config if bundle minimum active bandwidth 580000 Optional Sets the number of active links required before you can bring...

Page 100: ...n id argument with the interface Bundle Ether bundle id command you enter subinterface configuration mode Note Assigns a VLAN to the subinterface dot1q vlan vlan id Step 9 Example Replace the vlan id argument with a subinterface identifier Range is from 1 to 4094 inclusive 0 and 4095 are reserved RP 0 RP0 CPU0 router config subif dot1q vlan 10 Assigns an IP address and subnet mask to the subinterf...

Page 101: ...ithout exiting or committing the configuration changes Use the commit command to save the configuration changes to the running configuration file and remain within the configuration session Exits interface configuration mode exit Example Step 15 RP 0 RP0 CPU0 router config subif exit Exits XR configuration mode exit Example Step 16 RP 0 RP0 CPU0 router config exit Optional Displays the interface c...

Page 102: ... link no shutdown Example RP 0 RP0 CPU0 router config if no shutdown Step 21 Repeat Step 19 through Step 21 to add more Ethernet interfaces to the VLAN bundle Step 22 Saves configuration changes Do one of the following Step 23 end When you issue the end command the system prompts you to commit changes or commit Uncommitted changes found commit them before Example exiting yes no cancel cancel RP 0 ...

Page 103: ... Bundle This example shows how to join two ports to form an EtherChannel bundle running LACP RP 0 RP0 CPU0 router config RP 0 RP0 CPU0 router config interface Bundle Ether 3 RP 0 RP0 CPU0 router config if ipv4 address 1 2 3 4 24 RP 0 RP0 CPU0 router config if bundle minimum active bandwidth 620000 RP 0 RP0 CPU0 router config if bundle minimum active links 1 RP 0 RP0 CPU0 router config if bundle ma...

Page 104: ...P 0 RP0 CPU0 Router config exit RP 0 RP0 CPU0 Router show vlan trunks Example Configuring EFP Load Balancing on an Ethernet Link Bundle The following example shows how to configure all egressing traffic on the fixed members of a bundle to flow through the same physical member link automatically RP 0 RP0 CPU0 router configuration terminal RP 0 RP0 CPU0 router config interface bundle ether 1 1 l2tra...

Page 105: ... interface TenGigE 0 1 0 1 lacp period short transmit 100 commit Router B config interface TenGigE 0 1 0 1 lacp period short transmit 100 commit Router A config interface TenGigE 0 1 0 1 lacp period short receive 100 commit Router B config interface TenGigE 0 1 0 1 lacp period short receive 100 commit Additional References These sections provide references related to link bundle configuration Inte...

Page 106: ...w or modified RFCs are supported by this feature and support for existing RFCs has not been modified by this feature Technical Assistance Link Description http www cisco com techsupport The Cisco Technical Support website contains thousands of pages of searchable technical content including links to products technologies solutions technical tips and tools Registered Cisco com users can log in from...

Page 107: ...sco proprietary feature that enables you to monitor network traffic passing in or out of a set of ports You can then pass this traffic to a destination port on the same router Traffic mirroring copies traffic from one or more source ports and sends the copied traffic to one or more destinations for analysis by a network analyzer or other monitoring device Traffic mirroring does not affect the flow...

Page 108: ...psulated at the source router and is transferred across the network The packet is decapsulated at the destination router and then sent to the destination analyzer Supported Capabilities The following capabilities are supported Layer 3 interfaces such as physical and bundle interfaces or sub interface can be source interfaces ERSPAN with GRE IPv4 has tunnel destinations ERPSAN supports only RX dire...

Page 109: ...lways 0 for ERSPAN packets ERPAN with UDF ERSPAN with UDF feature enables the device to match on user defined fields UDFs of the outer or inner packet fields header or payload and to send the matching packets to the ERSPAN destination This feature helps you to analyze and isolate packet drops in the network Traffic Mirroring Terminology Ingress Traffic Traffic that comes into the router Egress Tra...

Page 110: ... Characteristics of the Monitor Session A monitor session is a collection of traffic mirroring configurations consisting of a single destination and potentially many source interfaces For any given monitor session the traffic from the source interfaces called source ports is sent to the monitoring port or destination port If there is more than one source port in a monitoring session the traffic fr...

Page 111: ... Configure remote traffic mirroring Router configure Router config monitor session session name mpls ipv4 Router config destination interface tunnel ip Router config exit Router config interface HundredGigE 0 1 0 1 Router config if monitor session mon1 mpls ipv4 direction rx only Router config if end Attach the configurable source interface Router configure Router config interface HundredGigE 0 1 ...

Page 112: ...packet statistics for each interface Router show monitor session counters Sat May 20 06 09 11 505 UTC Monitor session test1 MPLS IPv4 TenGigE0 7 0 6 9 2 Rx replicated 56197 packets 43440281 octets Tx replicated 0 packets 0 octets Non replicated 0 packets 0 octets TenGigE0 7 0 6 9 3 Rx replicated 56134 packets 43391582 octets Tx replicated 0 packets 0 octets Non replicated 0 packets 0 octets TenGig...

Page 113: ...E0 7 0 6 9 199 Direction Rx only Port level False ACL match Enabled acl101200 Portion Full packet Interval Mirror all packets Status Operational TenGigE0 7 0 6 9 198 Direction Rx only Port level False ACL match Enabled acl101200 The following output displays the configured traffic mirroring sessions for the specifed interface Router show monitor session source interface tenGigE 0 7 0 6 9 status in...

Page 114: ... level False ACL enabled acl1 mirroring first 0 bytes interval Mirror all packets last platform error Success Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 102 Configuring Traffic Mirroring Configure Traffic Mirroring ...

Page 115: ...itchover the virtual interfaces move to the ex standby which then becomes the newly active RP Feature History for Configuring Loopback and Null Interfaces Modification Release This feature was introduced on the Cisco NCS 6000 Series Router Release 5 0 0 Prerequisites for Configuring Virtual Interfaces on page 103 Information About Configuring Virtual Interfaces on page 103 How to Configure Virtual...

Page 116: ... with using access lists by directing undesired network traffic to the null interface The Null 0 interface can be displayed with the show interfaces null0 command Virtual Management Interface Overview Configuring an IPv4 virtual address enables you to access the router from a single virtual address with a management network without prior knowledge of which RP is active An IPv4 virtual address pers...

Page 117: ...ress with the designated or desired IPv4 address and set that as the source for protocols such as TACACS using the tacacs source interface command Note How to Configure Virtual Interfaces This section contains the following procedures Configuring Virtual Loopback Interfaces This task explains how to configure a basic loopback interface The IP address of a loopback interface must be unique across a...

Page 118: ...tion file exits the configuration session and returns the router to XR EXEC mode Example RP 0 RP0 CPU0 router config if commit Entering no exits the configuration session and returns the router to XR EXEC mode without committing the configuration changes Entering cancel leaves the router in the current configuration session without exiting or committing the configuration changes Use the commit com...

Page 119: ...guration file exits the configuration session and returns the router to XR EXEC mode Example Example Entering no exits the configuration session and returns the router to XR EXEC mode without committing the configuration changes RP 0 RP0 CPU0 router config null0 commit Entering cancel leaves the router in the current configuration session without exiting or committing the configuration changes Use...

Page 120: ...es found commit them before Example exiting yes no cancel cancel RP 0 RP0 CPU0 router config null0 end Entering yes saves configuration changes to the running configuration file exits the configuration session and returns the router to XR EXEC mode Example Example Entering no exits the configuration session and returns the router to XR EXEC mode without committing the configuration changes RP 0 RP...

Page 121: ...ckets 0 packets output 0 bytes 0 total output drops Output 0 broadcast packets 0 multicast packets Configuring a Null Interface Example The following example indicates how to configure a null interface RP 0 RP0 CPU0 router configure RP 0 RP0 CPU0 router config interface Null 0 RP 0 RP0 CPU0 router config null0 end Uncommitted changes found commit them yes yes RP 0 RP0 CPU0 router show interfaces N...

Page 122: ...uter config ipv4 virtual address 10 3 32 154 8 RP 0 RP0 CPU0 router config null0 commit Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 110 Configuring Virtual Loopback and Null Interfaces Configuring a Virtual IPv4 Interface Example ...

Page 123: ...ation Release This feature was introduced Release 5 0 0 Prerequisites for Configuring 802 1Q VLAN Interfaces on page 111 Information About Configuring 802 1Q VLAN Interfaces on page 112 How to Configure 802 1Q VLAN Interfaces on page 113 on page 118 Configuration Examples for VLAN Interfaces on page 119 Additional References on page 121 Prerequisites for Configuring 802 1Q VLAN Interfaces You must...

Page 124: ...The VLAN ID associates a frame with a specific VLAN and provides the information that switches must process the frame across the network A tagged frame is four bytes longer than an untagged frame and contains two bytes of Tag Protocol Identifier TPID residing within the type and length field of the Ethernet frame and two bytes of Tag Control Information TCI which starts after the source address fi...

Page 125: ...ub interfaces on a physical Ethernet interface To create a VLAN subinterface on an Ethernet bundle see the How to Configure 802 1Q VLAN Interfaces on page 113 section later in this module How to Configure 802 1Q VLAN Interfaces This section contains the following procedures Configuring 802 1Q VLAN Subinterfaces This task explains how to configure 802 1Q VLAN sub interfaces To remove these sub inte...

Page 126: ...art of the notation Sets the Layer 2 encapsulation of an interface encapsulation dot1q Example Step 3 RP 0 RP0 CPU0 router config subif encapsulation dot1q 100 Assigns an IP address and subnet mask to the subinterface ipv4 address ip address mask Step 4 Example Replace ip address with the primary IPv4 address for an interface RP 0 RP0 CPU0 router config subif ipv4 address 178 18 169 23 24 Replace ...

Page 127: ... commit Entering cancel leaves the router in the current configuration session without exiting or committing the configuration changes Use the commit command to save the configuration changes to the running configuration file and remain within the configuration session Optional Displays the interface configuration show ethernet trunk bundle ether instance Step 8 Example The Ethernet bundle instanc...

Page 128: ...nstance Range is from 1 through 65535 Replace the subinterface argument with the subinterface value Range is from 0 through 4095 Naming notation is instance subinterface and a period between arguments is required as part of the notation You must include the l2transport keyword in the command string otherwise the configuration creates a Layer 3 subinterface rather that an AC Note Assigns a VLAN AC ...

Page 129: ... the specified protocol drop Optional Drop packets associated with the specified protocol Saves configuration changes Do one of the following Step 5 end When you issue the end command the system prompts you to commit changes commit Uncommitted changes found commit them before Example exiting yes no cancel cancel RP 0 RP0 CPU0 router config if l2 end Entering yes saves configuration changes to the ...

Page 130: ...emoving an 802 1Q VLAN Subinterface This task explains how to remove 802 1Q VLAN subinterfaces that have been previously configured using the Configuring 802 1Q VLAN Subinterfaces on page 113 section in this module SUMMARY STEPS 1 configure 2 no interface TenGigE Bundle Ether interface path id subinterface 3 Repeat Step 2 to remove other VLAN subinterfaces 4 Do one of the following end commit 5 sh...

Page 131: ... config end Entering yes saves configuration changes to the running configuration file exits the configuration session and returns the router to XR EXEC mode Example Example Entering no exits the configuration session and returns the router to XR EXEC mode without committing the configuration changes RP 0 RP0 CPU0 router config commit Entering cancel leaves the router in the current configuration ...

Page 132: ...9604 up The following example shows how to create two VLAN subinterfaces on an Ethernet bundle RP 0 RP0 CPU0 router configure RP 0 RP0 CPU0 router config interface bundle ether 2 RP 0 RP0 CPU0 router config if ipv4 address 192 168 2 1 24 RP 0 RP0 CPU0 router config if exit RP 0 RP0 CPU0 router config interface bundle ether 2 1 RP 0 RP0 CPU0 router config subif dot1q vlan 10 RP 0 RP0 CPU0 router co...

Page 133: ...mibs shtml There are no applicable MIBs for this module Title RFCs No new or modified RFCs are supported by this feature and support for existing RFCs has not been modified by this feature Technical Assistance Link Description http www cisco com techsupport The Cisco Technical Support website contains thousands of pages of searchable technical content including links to products technologies solut...

Page 134: ...Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 122 Configuring 802 1Q VLAN Interfaces Additional References ...

Page 135: ...imultaneously have a Loopback 0 and a Null 0 Virtual interfaces have their control plane presence on the active route processor RP The configuration and control plane are mirrored onto the standby RP and in the event of a switchover the virtual interfaces will move to the standby which then becomes the newly active RP Subinterfaces can be physical or virtual depending on their parent interface Not...

Page 136: ...ddress interface id 3 Configure the tunnel destination tunnel destination ip address tunnel id Virtual Interface Naming Convention Virtual interface names never use the physical interface naming notation rack slot module port for identifying an interface s rack slot module and port because they are not tied to any physical interface or subinterface Virtual interfaces use a globally unique numerica...

Page 137: ...interfaces or to the crypto IPSec transport For IPSec to succeed between two IPSec peers the crypto profile entries of both peers must contain compatible configuration statements Two peers that try to establish a security association must each have at least one crypto profile entry that is compatible with one of the other peer s crypto profile entries For two crypto profile entries to be compatibl...

Page 138: ...fter configuring crypto profiles you must apply a crypto profile to each tunnel interface through which IPSec traffic will flow Applying the crypto profile set to a tunnel interface instructs the router to evaluate all the interface s traffic against the crypto profile set and to use the specified policy during connection or security association negotiation on behalf of traffic to be protected by ...

Page 139: ...ancel cancel RP 0 RP0 CPU0 router config if end Entering yes saves configuration changes to the running configuration file exits the configuration session and returns the router to XR EXEC mode Example Example Entering no exits the configuration session and returns the router to XR EXEC mode without committing the configuration changes RP 0 RP0 CPU0 router config if commit Entering cancel leaves t...

Page 140: ...it RP 0 RP0 CPU0 router configure RP 0 RP0 CPU0 router config interface tunnel ipsec 30 RP 0 RP0 CPU0 router config if profile user1 RP 0 RP0 CPU0 router config if tunnel source MgmtEth 0 RP0 CPU0 0 RP 0 RP0 CPU0 router config if tunnel destination 192 168 164 19 RP 0 RP0 CPU0 router config if end Uncommitted changes found commit them before exiting yes no cancel cancel yes Where to Go Next You no...

Page 141: ...M Controllers on page 129 Information about IPoDWDM on page 130 How to Configure DWDM Controllers on page 130 Configuring IPoDWDM on page 135 Configuration Examples on page 138 Additional References on page 140 Prerequisites for Configuring DWDM Controller Interfaces You must be in a user group associated with a task group that includes the proper task IDs The command reference guides include the ...

Page 142: ...WDM feature IPoDWDM currently provides the following software features Shared Risk Link Group SRLG Shared Risk Link Group SRLG The Shared Risk Link Group SRLG provides shared risk information between the DWDM optical layer L0 and the router layer L3 and the applications that use the shared risk information An SRLG is a set of links that share a resource whose failure may affect all links in the se...

Page 143: ... 5 wavelength channel number 6 commit 7 admin state in service 8 Do one of the following end commit 9 show controllers dwdm interface path id optics DETAILED STEPS Purpose Command or Action Enter the XR Config mode configure Example Step 1 RP 0 RP0 CPU0 router configure Specifies the DWDM controller name in the notation rack slot module port and enters DWDM configuration mode controller dwdm inter...

Page 144: ... to support all normal operation admin state in service Example Step 7 RP 0 RP0 CPU0 router config dwdm admin state in service Saves configuration changes Do one of the following Step 8 end When you issue the end command the system prompts you to commit changes commit Uncommitted changes found commit them before exiting yes no cancel cancel Example RP 0 RP0 CPU0 router config dwdm end Entering yes...

Page 145: ...nly when the controller is in the shutdown state Use the admin state command SUMMARY STEPS 1 configure 2 controller dwdm interface path id 3 Do one of the following admin state maintenance admin state out of service 4 commit 5 g709 disable 6 g709 fec disable standard 7 g709 report alarm disable 8 Do one of the following end commit 9 admin state in service 10 show controllers dwdm interface path id...

Page 146: ...P 0 RP0 CPU0 router config dwdm g709 disable Optional Configures the forward error correction mode FEC for the DWDM controller By default enhanced FEC is enabled g709 fec disable standard Example RP 0 RP0 CPU0 router config dwdm g709 fec disable Step 6 Optional Disables the logging of selected optical channel alarms to the console for a DWDM controller By default all alarms are logged to the conso...

Page 147: ...ong with the FEC statistics and threshold based alerts show controllers dwdm interface path id g709 Example RP 0 RP0 CPU0 router show controller dwdm 0 1 0 0 optics Step 10 What to Do Next All interface configuration tasks for the Gigabit Ethernet interfaces still must be performed in interface configuration mode Refer to the corresponding modules in this book for more information Configuring IPoD...

Page 148: ...system prompts you to commit changes commit Uncommitted changes found commit them before exiting yes no cancel cancel Example RP 0 RP0 CPU0 router config dwdm end Entering yes saves configuration changes to the running configuration file exits the configuration session and returns the router to EXEC mode Example Example Entering no exits the configuration session and returns the router to EXEC mod...

Page 149: ...ation mode configure Example Step 1 RP 0 RP0 CPU0 router config Specifies the DWDM controller and enters DWDM controller mode controller dwdm interface path id Example Step 2 RP 0 RP0 CPU0 router config controller dwdm 0 1 0 1 Specifies the transport administration state admin state in service maintenance out of service Example Step 3 RP 0 RP0 CPU0 router config dwdm admin state maintenance Exits ...

Page 150: ...es no cancel cancel Example RP 0 RP0 CPU0 router config dwdm end Entering yes saves configuration changes to the running configuration file exits the configuration session and returns the router to EXEC mode Example Example Entering no exits the configuration session and returns the router to EXEC mode without committing the configuration changes RP 0 RP0 CPU0 router config dwdm commit Entering ca...

Page 151: ...ction includes the following examples Optical Layer DWDM Port Configuration Examples The following example shows how to configure Optical Layer DWDM ports RP 0 RP0 CPU0 router configure RP 0 RP0 CPU0 router config controller dwdm 0 1 0 1 RP 0 RP0 CPU0 router config dwdm network port id 1 0 1 1 RP 0 RP0 CPU0 router config dwdm network connection id 1 1 1 1 Administrative State of DWDM Optical Ports...

Page 152: ...em Security Configuration Guide andCisco IOS XR System Security Command Reference Cisco IOS XR AAA services configuration information Standards Title Standards Interfaces for the optical transport network OTN ITU T G 709 Y 1331 MIBs MIBs Link MIBs To locate and download MIBs for selected platforms using Cisco IOS XR software use the Cisco MIB Locator found at the following URL http www cisco com g...

Page 153: ...tent including links to products technologies solutions technical tips and tools Registered Cisco com users can log in from this page to access even more content Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 141 Configuring Dense Wavelength Division Multiplexing Controllers Additional References ...

Page 154: ...Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 142 Configuring Dense Wavelength Division Multiplexing Controllers Additional References ...

Page 155: ...IP header point to the end points of the IP in IP tunnel The stack of IP headers are used to direct the packet over a predetermined path to the destination provided the network adminstrator knows the loopback addresses of the routers transporting the packet This tunneling mechanism can be used for determining availability and latency for most network architectures It is to be noted that the entire...

Page 156: ...ter fabric network Figure 4 IP in IP De capsulation through a Data Center Network The following illustration shows how the stacked IPv4 headers are de capsulated as they traverse through the de capsulating routers Figure 5 IP Header De capsulation Stacked IP Header in an Encapsulated Packet The encapsulated packet will have an outer IPv4 header stacked over the original IPv4 header as shown in the...

Page 157: ...el ip 10 RP 0 RP0 CPU0 router config if tunnel mode ipv4 decap RP 0 RP0 CPU0 router config if tunnel source loopback 0 RP 0 RP0 CPU0 router config if tunnel destination 10 10 1 2 32 tunnel ip configures an IP in IP tunnel interface Interface and Hardware Component Configuration Guide for Cisco NCS 6000 Series Routers IOS XR Release 6 4 x 145 Configuring IP in IP Decapsulation IP in IP Decapsulatio...

Page 158: ...tes the destination address for the IP in IP decap tunnel w r t the router interface Running Configuration RP 0 RP0 CPU0 router show running config interface tunnel ip 10 interface tunnel ip 10 tunnel mode ipv4 decap tunnel source Loopback 0 tunnel destination 10 10 1 2 32 This completes the configuration of IP in IP de capsulation Interface and Hardware Component Configuration Guide for Cisco NCS...

Reviews:

No comments