manualshive.com logo in svg

H3C S12500X-AF Series, Configuration Manual, Page: 129 / 224

Share
Download
H3C S12500X-AF Series Configuration Manual Download Page 129

 

118 

Figure 41 TC Snooping application scenario 

 

 

To avoid traffic interruption, you can enable TC Snooping on the IRF fabric. After receiving a 
TC-BPDU through a port, the IRF fabric updates MAC address table and ARP table entries 
associated with the port's VLAN. In this way, TC Snooping prevents topology change from 
interrupting traffic forwarding in the network. For more information about the MAC address table and 
the ARP table, see "Configuring the MAC address table" and 

Layer 3—IP Services Configuration 

Guide

Configuration restrictions and guidelines 

When you configure TC Snooping, follow these restrictions and guidelines: 

 

TC Snooping and the spanning tree feature are mutually exclusive. You must globally disable 
the spanning tree feature before enabling TC Snooping. 

 

TC Snooping does not support the PVST mode. 

Configuration procedure 

To enable TC Snooping: 

 

Step Command 

Remarks 

1. 

Enter system view. 

system-view 

N/A 

2. 

Globally disable the spanning 
tree feature. 

undo stp global enable 

By default, the spanning tree 
feature is globally disabled. 

3. 

Enable TC Snooping. 

stp tc-snooping 

By default, TC Snooping is 
disabled. 

 

Configuring protection features 

A spanning tree device supports the following protection features: 

 

BPDU guard 

 

Root guard 

 

Loop guard 

 

Port role restriction 

Summary of Contents for S12500X-AF Series

Page 1: ...H3C S12500X AF Switch Series Layer 2 LAN Switching Configuration Guide New H3C Technologies Co Ltd http www h3c com Software version Release 2609 and later Document version 6W102 20181204 ...

Page 2: ... New H3C Technologies Co Ltd any trademarks that may be mentioned in this document are the property of their respective owners Notice The information in this document is subject to change without notice All contents in this document including statements information and recommendations are believed to be accurate but they are presented without warranty of any kind express or implied H3C shall not b...

Page 3: ...ally as shown Italic Italic text represents arguments that you replace with actual values Square brackets enclose syntax choices keywords or arguments that are optional x y Braces enclose a set of required syntax choices separated by vertical bars from which you select one x y Square brackets enclose a set of optional syntax choices separated by vertical bars from which you select one or none x y ...

Page 4: ...pful information Network topology icons Convention Description Represents a generic network device such as a router switch or firewall Represents a routing capable device such as a router or Layer 3 switch Represents a generic switch such as a Layer 2 or Layer 3 switch or a router that supports Layer 2 forwarding and other Layer 2 features Represents an access controller a unified wired WLAN modul...

Page 5: ...hardware model configuration or software version It is normal that the port numbers sample output screenshots and other information in the examples differ from what you have on your device Documentation feedback You can e mail your comments about product documentation to info h3c com We appreciate your comments ...

Page 6: ...onfiguring a null interface 16 Configuring an inloopback interface 17 Displaying and maintaining loopback null and inloopback interfaces 17 Bulk configuring interfaces 18 Configuration restrictions and guidelines 18 Configuration procedure 18 Displaying and maintaining bulk interface configuration 19 Configuring the MAC address table 20 Overview 20 How a MAC address entry is created 20 Types of MA...

Page 7: ...ress for an aggregate interface 48 Specifying ignored VLANs for a Layer 2 aggregate interface 49 Setting the MTU for a Layer 3 aggregate interface 49 Setting the minimum and maximum numbers of Selected ports for an aggregation group 50 Setting the expected bandwidth for an aggregate interface 51 Configuring an edge aggregate interface 51 Enabling BFD for an aggregation group 52 Shutting down an ag...

Page 8: ...ode 99 Configuring an MST region 99 Configuring the root bridge or a secondary root bridge 100 Configuring the device as the root bridge of a specific spanning tree 101 Configuring the device as a secondary root bridge of a specific spanning tree 101 Configuring the device priority 101 Configuring the maximum hops of an MST region 102 Configuring the network diameter of a switched network 102 Sett...

Page 9: ...abling the device to log events of detecting or receiving TC BPDUs 123 Enabling SNMP notifications for new root election and topology change events 123 Displaying and maintaining the spanning tree 124 Spanning tree configuration example 125 MSTP configuration example 125 PVST configuration example 128 Configuring loop detection 132 Overview 132 Loop detection mechanism 132 Loop detection interval ...

Page 10: ...ing mechanism 168 Protocols and standards 169 LLDP configuration task list 169 Performing basic LLDP configurations 170 Enabling LLDP 170 Setting the LLDP bridge mode 170 Setting the LLDP operating mode 171 Setting the LLDP reinitialization delay 171 Enabling LLDP polling 171 Configuring the advertisable TLVs 172 Configuring the management address and its encoding format 174 Setting other LLDP par...

Page 11: ...vice loopback groups 190 Configuration procedure 190 Displaying and maintaining service loopback groups 190 Service loopback group configuration example 191 Network requirements 191 Configuration procedure 191 Index 192 ...

Page 12: ... PC for software loading and system debugging or connect it to a remote NMS for remote system management To configure a management Ethernet interface Step Command Remarks 1 Enter system view system view N A 2 Enter management Ethernet interface view interface M GigabitEthernet interface number N A 3 Optional Set the interface description description text The default setting is M GigabitEthernet0 0...

Page 13: ...cable For more information about the cable see the installation guides The 10 GE breakout interfaces support the same configuration and attributes as common 10 GE interfaces except that they are numbered in a different way After the using tengige command is successfully configured you can view the four 10 GE breakout interfaces by using the display interface brief command To split a 40 GE interfac...

Page 14: ...nterface type interface number N A 3 Set the description for the Ethernet interface description text The default setting is interface name Interface For example HundredGigE1 0 1 Interface 4 Set the duplex mode for the Ethernet interface duplex auto full By default the duplex mode is auto for Ethernet interfaces 5 Set the speed for the Ethernet interface speed 1000 10000 40000 100000 auto The defau...

Page 15: ...ate either as Layer 2 or Layer 3 Ethernet interfaces You can set the link mode to bridge or route You might fail to change the link mode of an Ethernet interface because of conflicting configurations on the interface To solve this problem manually delete all configurations of the interface and change the link mode again To configure the link mode of an Ethernet interface Step Command Remarks 1 Ent...

Page 16: ...enerates traps and logs to inform users to take the correct actions To prevent frequent physical link flapping from affecting system performance configure physical state change suppression You can configure this feature to suppress only link down events only link up events or both If an event of the specified type still exists when the suppression interval expires the system reports the event When...

Page 17: ...es the ceiling Suppress limit The accumulated penalty that triggers the device to dampen the interface In dampened state the interface does not report its state changes to the CPU For state change events the interface only generates SNMP traps and log messages Reuse limit When the accumulated penalty decreases to this reuse threshold the interface is not dampened Interface state changes are report...

Page 18: ... Do not enable the dampening feature on an interface with RRPP MSTP or Smart Link enabled Configuration procedure To configure dampening on an Ethernet interface Step Command Remarks 1 Enter system view system view N A 2 Enter Ethernet interface view interface interface type interface number N A 3 Enable dampening on the interface dampening half life reuse suppress max suppress time By default int...

Page 19: ...fault no loopback test is performed Configuring generic flow control on an Ethernet interface To avoid dropping packets on a link you can enable generic flow control at both ends of the link When traffic congestion occurs at the receiving end the receiving end sends a flow control Pause frame to ask the sending end to suspend sending packets Generic flow control includes the following types TxRx m...

Page 20: ...riority The state of the PFC feature is determined by the PFC configuration on the local end and on the peer end In Table 1 The first row lists the PFC configuration on the local interface The first column lists the PFC configuration on the peer The Enabled and Disabled fields in other cells are possible negotiation results Make sure all interfaces that a data flow passes through have the same PFC...

Page 21: ... N A 3 Set the statistics polling interval for the Ethernet interface flow interval interval By default the statistics polling interval is 300 seconds To display the interface statistics collected in the last statistics polling interval use the display interface command Configuring storm suppression The storm suppression feature ensures that the size of a particular type of traffic broadcast multi...

Page 22: ...n ratio pps max pps kbps max kbps By default unknown unicast suppression is disabled Configuring a Layer 2 Ethernet interface Configuring storm control on an Ethernet interface About storm control Storm control compares broadcast multicast and unknown unicast traffic regularly with their respective traffic thresholds on an Ethernet interface For each type of traffic storm control provides a lower ...

Page 23: ...t multicast or unknown unicast traffic storm constrain broadcast multicast unicast pps kbps ratio max pps values min pps values By default storm control is disabled 5 Set the control action to take when monitored traffic exceeds the upper threshold storm constrain control block shutdown By default storm control is disabled 6 Optional Enable the Ethernet interface to output log messages when it det...

Page 24: ...ll or remove fiber links or transceiver modules after you forcibly bring up the fiber port Configuration procedure To forcibly bring up a fiber port Step Command Remarks 1 Enter system view system view N A 2 Enter Ethernet interface view interface interface type interface number N A 3 Forcibly bring up the fiber port port up mode By default a fiber port is not forcibly brought up and the physical ...

Page 25: ...tatistics polling interval display counters rate inbound outbound interface interface type interface number Display the operational and status information of the specified interfaces display interface interface type interface number interface number subnumber brief description down Display information about dropped packets on the specified interfaces display packet drop interface interface type in...

Page 26: ...d In standalone mode Clear the Ethernet module statistics reset ethernet statistics slot slot number In IRF mode Clear the Ethernet module statistics reset ethernet statistics chassis chassis number slot slot number ...

Page 27: ...e device itself so the device does not forward these packets Using a loopback interface in dynamic routing protocols With no router ID configured for a dynamic routing protocol the system selects the highest loopback interface IP address as the router ID In BGP to avoid interruption of BGP sessions due to physical port failure you can use a loopback interface as the source interface of BGP packets...

Page 28: ...ace created by the system which cannot be configured or deleted The physical layer and link layer protocol states of an inloopback interface are always up All IP packets sent to an inloopback interface are considered packets sent to the device itself and are not forwarded Displaying and maintaining loopback null and inloopback interfaces Execute display commands in any view and reset commands in u...

Page 29: ...han 1000 interface range names After a command is executed in interface range view one of the following situations might occur The system displays an error message and stays in interface range view It means that the execution failed on one or multiple member interfaces If the execution failed on the first member interface the command is not executed on any member interfaces If the execution failed...

Page 30: ...n mark at the interface range prompt N A 4 Use available commands to configure the interfaces Available commands depend on the interface N A 5 Optional Verify the configuration display this N A Displaying and maintaining bulk interface configuration Execute the display command in any view Task Command Display information about the interface ranges created by using the interface range name command ...

Page 31: ...the device receives a frame destined for MAC SOURCE after learning this source MAC address the device performs the following operations 3 Finds the MAC SOURCE entry in the MAC address table 4 Forwards the frame out of the port in the entry The device performs the learning process for each incoming frame with an unknown source MAC address until the table is fully populated Manually configuring MAC ...

Page 32: ...icast MAC address entries have no impact on the MAC address learning When receiving a frame whose source MAC address matches a multiport unicast entry the device can still learn the MAC address of the frame and generate a dynamic entry However the generated dynamic entry has lower priority The device prefers to use the multiport unicast entry to forward frames destined for the MAC address in the e...

Page 33: ...generated dynamic MAC address entry does not take effect Forwards frames destined for MACA based on the multiport unicast MAC address entry Blackhole MAC address entry Drops the frame Dynamic MAC address entry Learns the MAC address of the frames received on a different interface from that in the entry and overwrites the original entry Forwards the frame received on the same interface as that in t...

Page 34: ...reated the VLAN Adding or modifying a multiport unicast MAC address entry You can configure a multiport unicast MAC address entry to associate a unicast destination MAC address with multiple ports The frame with a destination MAC address matching the entry is sent out of multiple ports For example in NLB unicast mode see Figure 3 All servers within a cluster uses the cluster s MAC address as their...

Page 35: ... vlan id By default no multiport unicast MAC address entry is configured on the interface Make sure you have created the VLAN and assigned the interface to the VLAN Disabling MAC address learning MAC address learning is enabled by default To prevent the MAC address table from being saturated when the device is experiencing attacks disable MAC address learning For example you can disable MAC addres...

Page 36: ...commodate latest network topology changes A stable network requires a longer aging interval and an unstable network requires a shorter aging interval An aging interval that is too long might cause the MAC address table to retain outdated entries As a result the MAC address table resources might be exhausted and the MAC address table might fail to update its entries to accommodate the latest networ...

Page 37: ...entries to other cards of all member devices As shown in Figure 4 Device A and Device B form an IRF fabric enabled with MAC address synchronization Device A and Device B connect to AP C and AP D respectively When Client A associates with AP C Device A learns a MAC address entry for Client A and advertises it to Device B Figure 4 MAC address tables of devices when Client A accesses AP C When Client...

Page 38: ...ove occurs The MAC address move notifications feature enables the device to output MAC address move logs when MAC address moves are detected If a MAC address is continuously moved between the two interfaces Layer 2 loops might occur To detect and locate loops you can view the MAC address move information To display the MAC address move records after the device is started use the display mac addres...

Page 39: ...al is 30 seconds and the suppression threshold is 3 4 Enter interface view Enter Layer 2 Ethernet interface view interface interface type interface number Enter Layer 2 aggregate interface view interface bridge aggregation interface number N A 5 Enable MAC address move suppression mac address notification mac move suppression By default MAC address move suppression is disabled 6 Return to system v...

Page 40: ...address at ingress before a packet is forwarded To enable MAC address learning at ingress Step Command Remarks 1 Enter system view system view N A 2 Enable MAC address learning at ingress mac address mac learning ingress By default the device learns MAC addresses at egress Configuring the base MAC address The base MAC address is the start MAC address of the 90 consecutive MAC addresses that are re...

Page 41: ...guration guide for the device To enable SNMP notifications for the MAC address table Step Command Remarks 1 Enter system view system view N A 2 Enable SNMP notifications for the MAC address table snmp agent trap enable mac address mac move By default SNMP notifications are enabled for the MAC address table When SNMP notifications are disabled for the MAC address table syslog messages are sent to n...

Page 42: ...B Set the aging timer to 500 seconds for dynamic MAC address entries Figure 7 Network diagram Configuration procedure Add a static MAC address entry for MAC address 000f e235 dc71 on HundredGigE 1 0 1 that belongs to VLAN 1 Device system view Device mac address static 000f e235 dc71 interface hundredgige 1 0 1 vlan 1 Add a blackhole MAC address entry for MAC address 000f e235 abcd that belongs to ...

Page 43: ...32 MAC Address VLAN ID State Port NickName Aging 000f e235 abcd 1 Blackhole N A N Display the aging time of dynamic MAC address entries Device display mac address aging time MAC address aging time 500s ...

Page 44: ...Ethernet interface view interface interface type interface number N A 4 Enable MAC Information on the interface mac address information enable added deleted By default MAC Information is disabled on the interface Make sure you have enabled MAC Information globally before you enable it on the interface Configuring the MAC Information mode The following MAC Information modes are available for sendin...

Page 45: ...c address information queue length value The default setting is 50 MAC Information configuration example Network requirements Enable MAC Information on HundredGigE 1 0 1 on Device in Figure 8 to send MAC address changes in syslog messages to the log host Host B through interface HundredGigE 1 0 2 Figure 8 Network diagram Configuration restrictions and guidelines When you edit the file etc syslog c...

Page 46: ... a root user b Create a subdirectory named Device in directory var log mkdir var log Device c Create file info log in the Device directory to save logs from Device touch var log Device info log d Edit the file syslog conf in directory etc and add the following contents Device configuration messages local4 info var log Device info log In this configuration local4 is the name of the logging facility...

Page 47: ... mac address information enable added Device HundredGigE1 0 1 mac address information enable deleted Device HundredGigE1 0 1 quit Set the MAC Information queue length to 100 Device mac address information queue length 100 Set the MAC change notification interval to 20 seconds Device mac address information interval 20 ...

Page 48: ...member ports of the aggregation group Each aggregation group has a corresponding logical interface called an aggregate interface When an aggregate interface is created the device automatically creates an aggregation group of the same type and number as the aggregate interface An aggregate interface can be one of the following types Layer 2 A Layer 2 aggregate interface is created manually The memb...

Page 49: ...ation failure does not affect the attribute configuration changes made on the aggregate interface The configurations that have been synchronized from the aggregate interface are retained on the member ports even after the aggregate interface is deleted Any attribute configuration change on a member port might affect the aggregation states and running services of the member ports The system display...

Page 50: ...te configurations as the reference port The system chooses a reference port from the member ports in up state The candidate reference ports are organized into different priority levels following these rules 1 In descending order of port priority 2 Full duplex 3 In descending order of speed 4 Half duplex 5 In descending order of speed From the candidate ports with the same attribute configurations ...

Page 51: ...ause the device to recalculate the aggregation states of member ports The port is placed in Selected state when the following conditions are met The port and the Selected ports have different port priorities and the port has a higher port priority than a minimum of one Selected port The port has the same attribute configurations as the aggregate interface Any operational key or attribute configura...

Page 52: ...r port and its peer port both ports cannot send LACPDUs When LACP is operating in active mode on either end of a link both ports can send LACPDUs LACP priorities LACP priorities include system LACP priority and port priority as described in Table 4 The smaller the priority value the higher the priority Table 4 LACP priorities Type Description System LACP priority Used by two peer devices or system...

Page 53: ...ACP priority values are the same the two systems proceed to step b b The two systems compare their MAC addresses The lower the MAC address the smaller the system ID 2 The system with the smaller system ID chooses the port with the smallest port ID as the reference port A port ID contains a port priority and a port number The lower the port priority the smaller the port ID a The system chooses the ...

Page 54: ...r ports the same as their peer ports When you aggregate interfaces in dynamic mode follow these guidelines A dynamic link aggregation group chooses only full duplex ports as the Selected ports For stable aggregation and service continuity do not change the operational key or attribute configurations on any member port After the Selected port limit is reached a newly joining port becomes a Selected...

Page 55: ...ies packets into flows and forwards packets of the same flow on the same link This mode can be one or any combination of the following traffic classification criteria Ingress port Source or destination IP address Source or destination MAC address Source or destination port number Protocol number Per packet load sharing Load shares traffic on a per packet basis Ethernet link aggregation configurati...

Page 56: ... For a successful dynamic aggregation make sure the peer ports of the ports aggregated at one end are also aggregated The two ends can automatically negotiate the aggregation state of each member port Configuring a Layer 2 aggregation group Configuring a Layer 2 static aggregation group Step Command Remarks 1 Enter system view system view N A 2 Create a Layer 2 aggregate interface and enter Layer ...

Page 57: ...nterface number b Assign the interface to the specified Layer 2 aggregation group port link aggregation group group id Repeat these two substeps to assign more Layer 2 Ethernet interfaces to the aggregation group 7 Set the LACP operating mode for the interface Set the LACP operating mode to passive lacp mode passive Set the LACP operating mode to active undo lacp mode By default LACP is operating ...

Page 58: ...affect the aggregation states of the ports in the dynamic aggregation group 3 Create a Layer 3 aggregate interface and enter Layer 3 aggregate interface view interface route aggregation interface number When you create a Layer 3 aggregate interface the system automatically creates a Layer 3 static aggregation group numbered the same 4 Configure the aggregation group to operate in dynamic mode link...

Page 59: ...rface view Enter Layer 2 aggregate interface view interface bridge aggregation interface number Enter Layer 3 aggregate interface or subinterface view interface route aggregation interface number interface number subnumber N A 3 Configure the description of the aggregate interface or subinterface description text By default the description of an interface is interface name Interface Setting the MA...

Page 60: ...ve the same VLAN permit state and tagging mode as the corresponding Layer 2 aggregate interface To specify ignored VLANs for a Layer 2 aggregate interface Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 aggregate interface view interface bridge aggregation interface number N A 3 Specify ignored VLANs link aggregation ignore vlan vlan id list By default a Layer 2 aggregate ...

Page 61: ...comes up The maximum number of Selected ports allowed in an aggregation group is limited by either manual configuration or hardware limitation whichever value is smaller You can implement backup between two ports by performing the following tasks Assigning two ports to an aggregation group Setting the maximum number of Selected ports to 1 for the aggregation group Then only one Selected port is al...

Page 62: ... these restrictions and guidelines This configuration takes effect only on the aggregate interface corresponding to a dynamic aggregation group Link aggregation traffic redirection does not operate correctly on an edge aggregate interface For more information about link aggregation traffic redirection see Enabling link aggregation traffic redirection To configure an edge aggregate interface Step C...

Page 63: ...ports faster For more information about BFD see High Availability Configuration Guide Configuration restrictions and guidelines When you enable BFD for an aggregation group follow these restrictions and guidelines Make sure the source and destination IP addresses are consistent at the two ends of an aggregate link For example if you execute link aggregation bfd ipv4 source 1 1 1 1 destination 2 2 ...

Page 64: ...and Remarks 1 Enter system view system view N A 2 Enter aggregate interface view Enter Layer 2 aggregate interface view interface bridge aggregation interface number Enter Layer 3 aggregate interface or subinterface view interface route aggregation interface number interface number subnumber N A 3 Shut down the aggregate interface or subinterface shutdown By default a Layer 2 or Layer 3 aggregate ...

Page 65: ... ip source mac source port The default settings are as follows Layer 2 traffic is distributed based on the Ethernet type source and destination MAC address and source port IPv4 or IPv6 traffic is distributed based on the source and destination IP addresses source and destination ports and protocol number MPLS traffic with three or fewer layers of labels is distributed based on the source and desti...

Page 66: ...out IRF see IRF Configuration Guide Figure 12 Load sharing for multidevice link aggregation in an IRF fabric To enable local first load sharing for link aggregation Step Command Remarks 1 Enter system view system view N A 2 Enable local first load sharing for link aggregation link aggregation load sharing mode local first By default local first load sharing for link aggregation is enabled Configur...

Page 67: ...r known unicast traffic but does not protect unknown unicast traffic You can enable link aggregation traffic redirection globally or for an aggregation group Global link aggregation traffic redirection settings take effect on all aggregation groups A link aggregation group preferentially uses the group specific link aggregation traffic redirection settings If group specific link aggregation traffi...

Page 68: ...k aggregation capability for the device Perform this task to modify the maximum number of aggregation groups and the maximum number of Selected ports per aggregation group After you configure the link aggregation capability for the device save the configuration and reboot the device for the configuration to take effect Before rebooting the device make sure you know the possible impact on the netwo...

Page 69: ...type interface number route destination ip ip address destination ipv6 ipv6 address source ip ip address source ipv6 ipv6 address destination mac mac address destination port port id ethernet type type number ip protocol protocol id source mac mac address source port port id vlan vlan id Display detailed link aggregation information for link aggregation member ports display link aggregation member...

Page 70: ...ge Aggregation 1 DeviceA interface bridge aggregation 1 DeviceA Bridge Aggregation1 quit Assign ports HundredGigE 1 0 1 through HundredGigE 1 0 3 to link aggregation group 1 DeviceA interface hundredgige 1 0 1 DeviceA HundredGigE1 0 1 port link aggregation group 1 DeviceA HundredGigE1 0 1 quit DeviceA interface hundredgige 1 0 2 DeviceA HundredGigE1 0 2 port link aggregation group 1 DeviceA Hundre...

Page 71: ...regate Interface Bridge Aggregation1 Aggregation Mode Static Loadsharing Type NonS Management VLANs None Port Status Priority Oper Key HGE1 0 1 S 32768 1 HGE1 0 2 S 32768 1 HGE1 0 3 S 32768 1 The output shows that link aggregation group 1 is a Layer 2 static aggregation group that contains three Selected ports Layer 2 dynamic aggregation configuration example Network requirements On the network sh...

Page 72: ...gregation group 1 DeviceA HundredGigE1 0 2 quit DeviceA interface hundredgige 1 0 3 DeviceA HundredGigE1 0 3 port link aggregation group 1 DeviceA HundredGigE1 0 3 quit Configure Layer 2 aggregate interface Bridge Aggregation 1 as a trunk port and assign it to VLANs 10 and 20 DeviceA interface bridge aggregation 1 DeviceA Bridge Aggregation1 port link type trunk DeviceA Bridge Aggregation1 port tr...

Page 73: ...shown in Figure 15 perform the following tasks Configure Layer 2 static aggregation groups 1 and 2 on Device A and Device B respectively Enable VLAN 10 at one end of the aggregate link to communicate with VLAN 10 at the other end Enable VLAN 20 at one end of the aggregate link to communicate with VLAN 20 at the other end Configure link aggregation groups 1 and 2 to load share traffic across aggreg...

Page 74: ...DeviceA Bridge Aggregation1 port trunk permit vlan 10 DeviceA Bridge Aggregation1 quit Create Layer 2 aggregate interface Bridge Aggregation 2 DeviceA interface bridge aggregation 2 Configure Layer 2 aggregation group 2 to load share packets based on destination MAC addresses DeviceA Bridge Aggregation2 link aggregation load sharing mode destination mac DeviceA Bridge Aggregation2 quit Assign port...

Page 75: ... are both load shared Layer 2 static aggregation groups Each aggregation group contains two Selected ports Display all the group specific load sharing modes on Device A DeviceA display link aggregation load sharing mode interface Bridge Aggregation1 Load Sharing Mode source mac address Bridge Aggregation2 Load Sharing Mode destination mac address The output shows that Link aggregation group 1 load...

Page 76: ...regation group 1 Device HundredGigE1 0 2 quit Verifying the configuration Display detailed information about all aggregation groups on the device when the server is not configured with dynamic link aggregation Device display link aggregation verbose Loadsharing Type Shar Loadsharing NonS Non Loadsharing Port Status S Selected U Unselected I Individual Port A Auto port M Management port R Reference...

Page 77: ...on1 ip address 192 168 1 1 24 DeviceA Route Aggregation1 quit Assign Layer 3 Ethernet interfaces HundredGigE 1 0 1 through HundredGigE 1 0 3 to aggregation group 1 DeviceA interface hundredgige 1 0 1 DeviceA HundredGigE1 0 1 port link aggregation group 1 DeviceA HundredGigE1 0 1 quit DeviceA interface hundredgige 1 0 2 DeviceA HundredGigE1 0 2 port link aggregation group 1 DeviceA HundredGigE1 0 2...

Page 78: ...nterface Route Aggregation 1 DeviceA system view DeviceA interface route aggregation 1 Set the link aggregation mode to dynamic DeviceA Route Aggregation1 link aggregation mode dynamic Configure an IP address and subnet mask for Route Aggregation 1 DeviceA Route Aggregation1 ip address 192 168 1 1 24 DeviceA Route Aggregation1 quit Assign Layer 3 Ethernet interfaces HundredGigE 1 0 1 through Hundr...

Page 79: ...dex Oper Key SystemID Flag HGE1 0 1 32768 81 1 0x8000 000f e267 57ad ACDEF HGE1 0 2 32768 82 1 0x8000 000f e267 57ad ACDEF HGE1 0 3 32768 83 1 0x8000 000f e267 57ad ACDEF The output shows that link aggregation group 1 is a Layer 3 dynamic aggregation group that contains three Selected ports Layer 3 aggregation load sharing configuration example Network requirements On the network shown in Figure 1...

Page 80: ...aggregation load sharing mode destination ip Configure an IP address and subnet mask for Layer 3 aggregate interface Route Aggregation 2 DeviceA Route Aggregation2 ip address 192 168 2 1 24 DeviceA Route Aggregation2 quit Assign Layer 3 Ethernet interfaces HundredGigE 1 0 3 and HundredGigE 1 0 4 to aggregation group 2 DeviceA interface hundredgige 1 0 3 DeviceA HundredGigE1 0 3 port link aggregati...

Page 81: ...ggregation2 Load Sharing Mode destination ip address The output shows that Link aggregation group 1 load shares packets based on source IP addresses Link aggregation group 2 load shares packets based on destination IP addresses Layer 3 edge aggregate interface configuration example Network requirements As shown in Figure 20 a Layer 3 dynamic aggregation group is configured on the device The server...

Page 82: ...s not configured with dynamic link aggregation Device display link aggregation verbose Loadsharing Type Shar Loadsharing NonS Non Loadsharing Port Status S Selected U Unselected I Individual Port A Auto port M Management port R Reference port Flags A LACP_Activity B LACP_Timeout C Aggregation D Synchronization E Collecting F Distributing G Defaulted H Expired Aggregate Interface Route Aggregation1...

Page 83: ...e aggregation interface number The configuration in Layer 2 Ethernet interface view applies only to the interface The configuration in Layer 2 aggregate interface view applies to the Layer 2 aggregate interface and its aggregation member ports If the device fails to apply the configuration to the aggregate interface it does not assign any aggregation member port to the isolation group If the failu...

Page 84: ...view Device port isolate group 1 Assign HundredGigE 1 0 1 HundredGigE 1 0 2 and HundredGigE 1 0 3 to isolation group 1 Device interface hundredgige 1 0 1 Device HundredGigE1 0 1 port isolate enable group 1 Device HundredGigE1 0 1 quit Device interface hundredgige 1 0 2 Device HundredGigE1 0 2 port isolate enable group 1 Device HundredGigE1 0 2 quit Device interface hundredgige 1 0 3 Device Hundred...

Page 85: ...dGigE1 0 1 HundredGigE1 0 2 HundredGigE1 0 3 The output shows that HundredGigE 1 0 1 HundredGigE 1 0 2 and HundredGigE 1 0 3 are assigned to isolation group 1 As a result Host A Host B and Host C are isolated from one another at layer 2 ...

Page 86: ...refers to the IEEE 802 1d STP and various enhanced spanning tree protocols derived from that protocol STP protocol frames STP uses bridge protocol data units BPDUs also known as configuration messages as its protocol frames This chapter uses BPDUs to represent all types of spanning tree protocol frames STP enabled devices exchange BPDUs to establish a spanning tree BPDUs contain sufficient informa...

Page 87: ... BPDU transmission interval Forward delay Delay for STP bridges to transit port state Devices use the root bridge ID root path cost designated bridge ID designated port ID message age max age hello time and forward delay for spanning tree calculation TCN BPDUs Devices use TCN BPDUs to announce changes in the network topology Figure 23 shows the TCN BPDU format Figure 23 TCN BPDU format The payload...

Page 88: ...gnated port Classification Designated bridge Designated port For a device Device directly connected to the local device and responsible for forwarding BPDUs to the local device Port through which the designated bridge forwards BPDUs to this device For a LAN Device responsible for forwarding BPDUs to this LAN segment Port through which the designated bridge forwards BPDUs to this LAN segment As sho...

Page 89: ...evice ID as the root bridge ID By exchanging configuration BPDUs the devices compare their root bridge IDs to elect the device with the smallest root bridge ID as the root bridge 3 Root port and designated ports selection on the non root bridges Step Description 1 A non root bridge device regards the port on which it received the optimum configuration BPDU as the root port Table 6 describes how th...

Page 90: ...the former priority is higher the device replaces the content of the configuration BPDU generated by the port with the content of the received configuration BPDU 2 The device compares the configuration BPDUs of all the ports and chooses the optimum configuration BPDU The following are the principles of configuration BPDU comparison a The configuration BPDU with the lowest root bridge ID has the hi...

Page 91: ...t B2 Device C Port C1 2 0 2 Port C1 Port C2 2 0 2 Port C2 2 Configuration BPDUs comparison on each device In Table 8 each configuration BPDU contains the following fields root bridge ID root path cost designated bridge ID and designated port ID Table 8 Comparison process and result on each device Device Comparison process Configuration BPDU on ports after comparison Device A Port A1 performs the f...

Page 92: ...ompares the configuration BPDUs of all its ports 2 Decides that the configuration BPDU of Port B1 is the optimum 3 Selects Port B1 as the root port with the configuration BPDU unchanged Based on the configuration BPDU and path cost of the root port Device B calculates a designated port configuration BPDU for Port B2 0 5 1 Port B2 Device B compares it with the existing configuration BPDU of Port B2...

Page 93: ...Determines that it is the same as the existing configuration BPDU 3 Discards the received BPDU Port C1 0 0 0 Port A2 Port C2 0 5 1 Port B2 Device C determines that the root path cost of Port C1 is larger than that of Port C2 The root path cost of Port C1 is 10 root path cost of the received configuration BPDU 0 plus path cost of Port C1 10 The root path cost of Port C2 is 9 root path cost of the r...

Page 94: ... the network immediately As a result the old root ports and designated ports that have not detected the topology change continue forwarding data along the old path If the new root ports and designated ports begin to forward data as soon as they are elected a temporary loop might occur STP timers The most important timing parameters in STP calculation are forward delay hello time and max age Forwar...

Page 95: ...P BPDU uses the same format as an STP BPDU except that a Version1 length field is added to the payload of RSTP BPDUs The differences between an RSTP BPDU and an STP BPDU are as follows Protocol version ID The value is 0x02 for RSTP BPDU type The value is 0x02 for RSTP BPDUs Flags All 8 bits are used Version1 length The value is 0x00 which means no version 1 protocol information is present RSTP doe...

Page 96: ...er terminal The designated port connects to a point to point link and receives a handshake response from the directly connected device RSTP BPDU processing In RSTP a non root bridge actively sends RSTP BPDUs at the hello time through designated ports without waiting for the root bridge to send RSTP BPDUs This enables RSTP to quickly detect link failures If a device fails to receive any RSTP BPDUs ...

Page 97: ...rts fast network convergence like RSTP when connected to PVST enabled H3C devices or third party devices enabled with Rapid PVST PVST protocol frames As shown in Figure 28 a PVST BPDU uses the same format as an RSTP BPDU except the following differences The destination MAC address of a PVST BPDU is 01 00 0c cc cc cd which is a private MAC address Each PVST BPDU carries a VLAN tag The VLAN tag iden...

Page 98: ...brid port When the trunk or hybrid port permits too many VLANs both resources and calculations for maintaining the VLAN spanning trees increase dramatically If a status change occurs on the trunk or hybrid port that permits multiple VLANs the device CPU will be overburdened with recalculating the affected spanning trees As a result network performance is degraded MSTP features Developed based on I...

Page 99: ...e used to identify the MST region for the originating bridge CIST IRPC Internal root path cost IRPC from the originating bridge to the root of the MST region CIST bridge ID ID of the bridge that sends the MSTP BPDU CIST remaining ID Remaining hop count This field limits the scale of the MST region The regional root sends a BPDU with the remaining hop count set to the maximum value Each device that...

Page 100: ...ing topology of MST region 3 Figure 30 Basic concepts in MSTP Figure 31 Network diagram and topology of MST region 3 MST region 1 MST region 2 MST region 3 MST region 4 VLAN 1 MSTI 1 VLAN 2 MSTI 2 Other VLANs MSTI 0 VLAN 1 MSTI 1 VLAN 2 MSTI 2 Other VLANs MSTI 0 VLAN 1 MSTI 1 VLAN 2 MSTI 2 Other VLANs MSTI 0 VLAN 1 MSTI 1 VLAN 2 3 MSTI 2 Other VLANs MSTI 0 CST ...

Page 101: ...nd MSTIs In Figure 31 the VLAN to instance mapping table of MST region 3 is as follows VLAN 1 to MSTI 1 VLAN 2 and VLAN 3 to MSTI 2 Other VLANs to MSTI 0 MSTP achieves load balancing by means of the VLAN to instance mapping table CST The common spanning tree CST is a single spanning tree that connects all MST regions in a switched network If you regard each MST region as a device the CST is a span...

Page 102: ... port or master port is blocked the alternate port takes over Backup port Acts as the backup port of a designated port When the designated port is invalid the backup port becomes the new designated port A loop occurs when two ports of the same spanning tree device are connected so the device blocks one of the ports The blocked port acts as the backup Edge port Directly connects to a user host rath...

Page 103: ...arding How MSTP works MSTP divides an entire Layer 2 network into multiple MST regions which are connected by a calculated CST Inside an MST region multiple spanning trees called MSTIs are calculated Among these MSTIs MSTI 0 is the IST Like STP MSTP uses configuration BPDUs to calculate spanning trees An important difference is that an MSTP BPDU carries the MSTP configuration of the bridge from wh...

Page 104: ...from the blocking state to the forwarding state The forward delay is related to the hello time and network diameter If the forward delay is too short loops might occur This affects the stability of the network RSTP PVST and MSTP all use the rapid transition mechanism to speed up port state transition for edge ports root ports and designated ports The rapid transition mechanism for designated ports...

Page 105: ...ports transits to the discarding or learning state it sets the proposal flag in its BPDU Its peer bridge receives the BPDU and determines whether the receiving port is the root port If it is the root port the bridge blocks the other ports except edge ports The bridge then replies an agreement BPDU to the designated port The designated port immediately transits to the forwarding state upon receivin...

Page 106: ...oposal and agreement flags in its BPDU and sends it to Device B through Port A1 b Device B receives the BPDU Port B1 of Device B is elected as the root port c Device B then blocks all its ports except the edge ports d The root port Port B1 of Device B transits to the forwarding state and sends an agreement BPDU to Device A e Port A1 of Device A immediately transits to the forwarding state upon rec...

Page 107: ...nt with those of the corresponding Layer 2 aggregate interface The member ports of an aggregation group do not participate in spanning tree calculation However the ports still reserve their spanning tree configurations for participating in spanning tree calculation after leaving the aggregation group STP configuration task list Tasks at a glance Configuring the root bridge Required Setting the spa...

Page 108: ...al Configuring path costs of ports Optional Configuring the port priority Optional Configuring the port link type Optional Enabling outputting port state transition information Required Enabling the spanning tree feature Optional Performing mCheck Optional Configuring TC Snooping Optional Configuring protection features Optional Enabling SNMP notifications for new root election and topology change...

Page 109: ...econdary root bridge Optional Configuring the device priority Optional Configuring the maximum hops of an MST region Optional Configuring the network diameter of a switched network Optional Setting spanning tree timers Optional Setting the timeout factor Optional Configuring the BPDU transmission rate Optional Configuring edge ports Optional Configuring the port link type Optional Configuring the ...

Page 110: ...ork device CPUs will be overloaded Packet forwarding is interrupted and the network becomes unstable The device supports a maximum of 128 spanning tree enabled VLANs MSTP mode All ports of the device send MSTP BPDUs A port in this mode automatically transits to the STP mode when receiving STP BPDUs from the peer device A port in this mode does not transit to the RSTP mode when receiving RSTP BPDUs...

Page 111: ...vated yet check region configuration N A 7 Manually activate MST region configuration active region configuration N A Configuring the root bridge or a secondary root bridge You can have the spanning tree protocol determine the root bridge of a spanning tree through calculation You can also specify a device as the root bridge or as a secondary root bridge A device has independent roles in different...

Page 112: ...ry By default the device is not a secondary root bridge Configuring the device priority Device priority is a factor in calculating the spanning tree The priority of a device determines whether the device can be elected as the root bridge of a spanning tree A lower value indicates a higher priority You can set the priority of a device to a low value to specify the device as the root bridge of the s...

Page 113: ...ps of an MST region Step Command Remarks 1 Enter system view system view N A 2 Configure the maximum hops of the MST region stp max hops hops The default setting is 20 Configuring the network diameter of a switched network Any two terminal devices in a switched network can reach each other through a specific path and there are a series of devices on the path The switched network diameter is the ma...

Page 114: ...ng the spanning tree timers If the network diameter uses the default value the timers also use their default values Set the timers only on the root bridge The timer settings on the root bridge apply to all devices on the entire switched network Configuration restrictions and guidelines When you set spanning tree timers follow these restrictions and guidelines The length of the forward delay is rel...

Page 115: ... the timeout factor to 5 6 or 7 in the following situations To prevent undesired spanning tree calculations An upstream device might be too busy to forward configuration BPDUs in time for example many Layer 2 interfaces are configured on the upstream device In this case the downstream device fails to receive a BPDU within the timeout period and then starts an undesired spanning tree calculation To...

Page 116: ...dge port the port becomes a non edge port again if it receives a BPDU from another port To restore the edge port re enable it If a port directly connects to a user terminal configure it as an edge port and enable BPDU guard for it This enables the port to quickly transit to the forwarding state when ensuring network security On a port the loop guard feature and the edge port setting are mutually e...

Page 117: ...s The link speed is the sum of the link speed values of the Selected ports in the aggregation group IEEE 802 1d 1998 or the private standard always assigns the smallest possible value to a single port or aggregate interface with a speed exceeding 10 Gbps The forwarding path selected based on this criterion might not be the best one To solve this problem perform one of the following tasks Use dot1t...

Page 118: ...gregate interface containing three Selected ports 6666 16 Aggregate interface containing four Selected ports 5000 14 10 Gbps Single port 2 2000 2 Aggregate interface containing two Selected ports 1000 1 Aggregate interface containing three Selected ports 666 1 Aggregate interface containing four Selected ports 500 1 20 Gbps Single port 1 1000 1 Aggregate interface containing two Selected ports 500...

Page 119: ...et interface or Layer 2 aggregate interface view interface interface type interface number N A 3 Configure the path cost of the ports In STP RSTP mode stp cost cost value In PVST mode stp vlan vlan id list cost cost value In MSTP mode stp instance instance list cost cost value By default the system automatically calculates the path cost of each port Configuration example In MSTP mode perform the f...

Page 120: ... trees As a result data of different VLANs can be propagated along different physical paths implementing per VLAN load balancing You can set port priority values based on the actual networking requirements When the priority of a port changes the system recalculates the port role and initiates a state transition To configure the priority of a port Step Command Remarks 1 Enter system view system vie...

Page 121: ...he following formats dot1s 802 1s compliant standard format legacy Compatible format By default the frame format recognition mode of a port is auto The port automatically distinguishes the two MSTP frame formats and determines the format of frames that it will send based on the recognized format You can configure the MSTP frame format on a port Then the port sends only MSTP frames of the configure...

Page 122: ...ed globally and on the desired ports In PVST mode make sure the spanning tree feature is enabled globally in the desired VLANs and on the desired ports To exclude specific ports from spanning tree calculation and save CPU resources disable the spanning tree feature for these ports with the undo stp enable command Make sure no loops occur in the network after you disable the spanning tree feature o...

Page 123: ...device is shut down or removed The port cannot detect the change To forcibly transit the port to operate in the original mode you can perform an mCheck operation For example Device A Device B and Device C are connected in sequence Device A runs STP Device B does not run any spanning tree protocol and Device C runs RSTP PVST or MSTP In this case when Device C receives an STP BPDU transparently tran...

Page 124: ...nsistency By default the inconsistent PVID protection feature is enabled Configuring Digest Snooping CAUTION Use caution with global Digest Snooping in the following situations When you modify the VLAN to instance mappings When you restore the default MST region configuration If the local device has different VLAN to instance mappings than its neighboring devices loops or traffic interruption will...

Page 125: ...tree feature To avoid traffic interruption do not configure Digest Snooping when the network is already working well Configuration procedure Use this feature on when your H3C device is connected to a third party device that uses its private key to calculate the configuration digest To configure Digest Snooping Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Ethernet interf...

Page 126: ...and MSTP the following types of messages are used for rapid state transition on designated ports Proposal Sent by designated ports to request rapid transition Agreement Used to acknowledge rapid transition requests Both RSTP and MSTP devices can perform rapid transition on a designated port only when the port receives an agreement packet from the downstream device RSTP and MSTP devices have the fo...

Page 127: ...state rapidly enable No Agreement Check on the downstream device s port Configuration prerequisites Before you configure the No Agreement Check feature complete the following tasks Connect a device to a third party upstream device that supports spanning tree protocols through a point to point link Configure the same region name revision level and VLAN to instance mappings on the two devices Root p...

Page 128: ...root bridge and Device A is the downstream device Figure 40 Network diagram Configuration procedure Enable No Agreement Check on HundredGigE 1 0 1 of Device A DeviceA system view DeviceA interface hundredgige 1 0 1 DeviceA HundredGigE1 0 1 stp no agreement check Configuring TC Snooping As shown in Figure 41 an IRF fabric connects to two user networks through double links Device A and Device B form...

Page 129: ...ons and guidelines When you configure TC Snooping follow these restrictions and guidelines TC Snooping and the spanning tree feature are mutually exclusive You must globally disable the spanning tree feature before enabling TC Snooping TC Snooping does not support the PVST mode Configuration procedure To enable TC Snooping Step Command Remarks 1 Enter system view system view N A 2 Globally disable...

Page 130: ...val see Fundamentals Configuration Guide You can configure the BPDU guard feature globally or on a per edge port basis BPDU guard does not take effect on loopback testing enabled ports For more information about loopback testing see Interface Configuration Guide Enabling BPDU guard globally The global BPDU guard setting takes effect on all edge ports that are not configured by using the stp port b...

Page 131: ...l state On a port the loop guard feature and the root guard feature are mutually exclusive Configure root guard on a designated port To enable root guard Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Ethernet interface or Layer 2 aggregate interface view interface interface type interface number N A 3 Enable the root guard feature stp root protection By default root guar...

Page 132: ...s to the user access network To configure port role restriction Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Ethernet interface or Layer 2 aggregate interface view interface interface type interface number N A 3 Enable port role restriction stp role restriction By default port role restriction is disabled Configuring TC BPDU transmission restriction CAUTION Enabling TC ...

Page 133: ...uard Step Command Remarks 1 Enter system view system view N A 2 Enable the TC BPDU guard feature stp tc protection By default TC BPDU guard is enabled As a best practice do not disable this feature 3 Optional Configure the maximum number of forwarding address entry flushes that the device can perform every 10 seconds stp tc protection threshold number The default setting is 6 Enabling BPDU drop In...

Page 134: ...events of receiving or detecting TC BPDUs stp log enable tc By default the device does not generate logs when it detects or receives TC BPDUs Enabling SNMP notifications for new root election and topology change events This task enables the device to generate logs and report new root election events or spanning tree topology changes to SNMP For the event notifications to be sent correctly you must...

Page 135: ...ne mode Display the port role calculation history for the specified MSTI or all MSTIs display stp instance instance list vlan vlan id list history slot slot number In IRF mode Display the port role calculation history for the specified MSTI or all MSTIs display stp instance instance list vlan vlan id list history chassis chassis number slot slot number In standalone mode Display the incoming and o...

Page 136: ...access layer devices The root bridges of MSTI 1 and MSTI 3 are Device A and Device B respectively and the root bridge of MSTI 4 is Device C Figure 42 Network diagram Configuration procedure 1 Configure VLANs and VLAN member ports Details not shown Create VLAN 10 VLAN 20 and VLAN 30 on both Device A and Device B Create VLAN 10 VLAN 20 and VLAN 40 on Device C Create VLAN 20 VLAN 30 and VLAN 40 on De...

Page 137: ... the MST region as 0 DeviceB mst region revision level 0 Activate MST region configuration DeviceB mst region active region configuration DeviceB mst region quit Configure Device B as the root bridge of MSTI 3 DeviceB stp instance 3 root primary Enable the spanning tree feature globally DeviceB stp global enable 4 Configure Device C Enter MST region view and configure the MST region name as exampl...

Page 138: ...anning tree information on each device Display brief spanning tree information on Device A DeviceA display stp brief MST ID Port Role STP State Protection 0 HundredGigE1 0 1 ALTE DISCARDING NONE 0 HundredGigE1 0 2 DESI FORWARDING NONE 0 HundredGigE1 0 3 ROOT FORWARDING NONE 1 HundredGigE1 0 1 DESI FORWARDING NONE 1 HundredGigE1 0 3 DESI FORWARDING NONE 3 HundredGigE1 0 2 DESI FORWARDING NONE 3 Hun...

Page 139: ...re 43 Figure 43 MSTIs mapped to different VLANs PVST configuration example Network requirements As shown in Figure 44 Device A and Device B work at the distribution layer and Device C and Device D work at the access layer Configure PVST to meet the following requirements Frames of a VLAN are forwarded along the spanning trees of the VLAN VLAN 10 VLAN 20 and VLAN 30 are terminated on the distributi...

Page 140: ...ing tree feature globally and in VLAN 10 VLAN 20 and VLAN 30 DeviceA stp global enable DeviceA stp vlan 10 20 30 enable 3 Configure Device B Set the spanning tree mode to PVST DeviceB system view DeviceB stp mode pvst Configure the device as the root bridge of VLAN 30 DeviceB stp vlan 30 root primary Enable the spanning tree feature globally and in VLAN 10 VLAN 20 and VLAN 30 DeviceB stp global en...

Page 141: ...brief spanning tree information on Device B DeviceB display stp brief VLAN ID Port Role STP State Protection 10 HundredGigE1 0 2 DESI FORWARDING NONE 10 HundredGigE1 0 3 ROOT FORWARDING NONE 20 HundredGigE1 0 1 DESI FORWARDING NONE 20 HundredGigE1 0 2 DESI FORWARDING NONE 20 HundredGigE1 0 3 ROOT FORWARDING NONE 30 HundredGigE1 0 1 DESI FORWARDING NONE 30 HundredGigE1 0 3 DESI FORWARDING NONE Disp...

Page 142: ...ndredGigE1 0 2 ALTE DISCARDING NONE 40 HundredGigE1 0 3 ROOT FORWARDING NONE Based on the output you can draw a topology for each VLAN spanning tree as shown in Figure 45 Figure 45 VLAN spanning tree topologies ...

Page 143: ...ection usually works within a VLAN If a detection frame is returned with a different VLAN tag than it was sent out with an inter VLAN loop has occurred To remove the loop examine the VLAN mapping configuration for incorrect settings For more information about the VLAN mapping see Configuring VLAN mapping Figure 46 Ethernet frame header for loop detection The Ethernet frame header for loop detectio...

Page 144: ...rk changes Loop detection frames are sent at the loop detection interval to determine whether loops occur on ports and whether loops are removed Loop protection actions When the device detects a loop on a port it generates a log but performs no action on the port by default You can configure the device to take one of the following actions Block Disables the port from learning MAC addresses and blo...

Page 145: ...ion Optional Setting the loop detection interval Enabling loop detection You can enable loop detection globally or on a per port basis The global configuration applies to all ports in the specified VLANs The per port configuration applies to the individual port only when the port belongs to the specified VLANs Per port configurations take precedence over global configurations Enabling loop detecti...

Page 146: ...N A 3 Set the loop protection action on the interface loopback detection action block no learning shutdown By default the device generates a log but performs no action on the port on which a loop is detected Setting the loop protection action on a Layer 2 aggregate interface Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 aggregate interface view interface interface type i...

Page 147: ...ple Network requirements As shown in Figure 48 configure loop detection on Device A to meet the following requirements Device A generates a log as a notification Device A automatically shuts down the port on which a loop is detected Figure 48 Network diagram Configuration procedure 1 Configure Device A Create VLAN 100 and globally enable loop detection for the VLAN DeviceA system view DeviceA vlan...

Page 148: ...trunk ports and assign them to VLAN 100 DeviceB interface hundredgige 1 0 1 DeviceB HundredGigE1 0 1 port link type trunk DeviceB HundredGigE1 0 1 port trunk permit vlan 100 DeviceB HundredGigE1 0 1 quit DeviceB interface hundredgige 1 0 2 DeviceB HundredGigE1 0 2 port link type trunk DeviceB HundredGigE1 0 2 port trunk permit vlan 100 DeviceB HundredGigE1 0 2 quit 3 Configure Device C Create VLAN...

Page 149: ...etection configuration and status on devices for example Device A DeviceA display loopback detection Loop detection is enabled Loop detection interval is 35 second s No loopback is detected The output shows that the device has removed the loops from HundredGigE 1 0 1 and HundredGigE 1 0 2 according to the shutdown action Display the status of HundredGigE 1 0 1 on devices for example Device A Devic...

Page 150: ...ll workstations and servers used by a particular workgroup to the same VLAN regardless of their physical locations Hosts in the same VLAN can directly communicate with one another You need a router or a Layer 3 switch for hosts in different VLANs to communicate with one another All these VLAN features reduce bandwidth waste improve LAN security and enable flexible virtual group creation VLAN frame...

Page 151: ...is used here For information about the VLAN tag fields in other frame encapsulation formats see related protocols and standards For a frame that has multiple VLAN tags the device handles it according to its outermost VLAN tag and transmits its inner VLAN tags as the payload Protocols and standards IEEE 802 1Q IEEE Standard for Local and Metropolitan Area Networks Virtual Bridged Local Area Network...

Page 152: ...ist 3 Assign an IP address to the VLAN interface ip address ip address mask mask length sub By default no IP address is assigned to a VLAN interface 4 Configure the description for the VLAN interface description text The default setting is the VLAN interface name For example Vlan interface1 Interface 5 Optional Specify a traffic processing slot for the VLAN interface In standalone mode service slo...

Page 153: ...VID The PVID identifies the default VLAN of a port Untagged packets received on a port are considered as the packets from the port PVID When you set the PVID for a port follow these restrictions and guidelines An access port can join only one VLAN The VLAN to which the access port belongs is the PVID of the port A trunk or hybrid port supports multiple VLANs and the PVID configuration When you use...

Page 154: ...mmand Remarks 1 Enter system view system view N A 2 Enter VLAN view vlan vlan id N A 3 Assign one or multiple access ports to the VLAN port interface list By default all ports belong to VLAN 1 Assign an access port to a VLAN in interface view Step Command Remarks 1 Enter system view system view N A 2 Enter interface view Enter Layer 2 Ethernet interface view interface interface type interface numb...

Page 155: ...ed VLANs in interface view Make sure the VLANs have been created When you assign a hybrid port to a VLAN follow these restrictions and guidelines To change the link type of a port from trunk to hybrid set the link type to access first To enable a hybrid port to transmit packets from its PVID you must assign the hybrid port to the PVID by using the port hybrid vlan command To assign a hybrid port t...

Page 156: ...terface interface number Port based VLAN configuration example Network requirements As shown in Figure 51 Host A and Host C belong to Department A VLAN 100 is assigned to Department A Host B and Host D belong to Department B VLAN 200 is assigned to Department B Configure port based VLANs so that only hosts in the same department can communicate with each other Figure 51 Network diagram Configurati...

Page 157: ...0 0 24 Verifying the configuration Verify that Host A and Host C can ping each other but they both fail to ping Host B and Host D Details not shown Verify that Host B and Host D can ping each other but they both fail to ping Host A and Host C Details not shown Verify that VLANs 100 and 200 are correctly configured on Device A DeviceA HundredGigE1 0 3 display vlan 100 VLAN ID 100 VLAN type Static R...

Page 158: ...er VLAN tag Zero to two VLAN mapping Adds double VLAN tags to untagged packets Two to two VLAN mapping Replaces the outer and inner VLAN IDs of double tagged traffic with a new pair of VLAN IDs Two to three VLAN mapping Adds an outermost VLAN tag to double tagged packets VLAN mapping application scenarios One to one VLAN mapping Figure 52 shows a typical application scenario of one to one VLAN map...

Page 159: ...d two to two VLAN mapping Figure 53 shows a typical application scenario of one to two and two to two VLAN mapping In this scenario the two remote sites of the same VPN must communicate across two SP networks Campus switch Distribution network DHCP client DHCP server Wiring closet switch VLAN 1 VLAN 101 VLAN 2 VLAN 201 VLAN 3 VLAN 301 VLAN 1 VLAN 102 VLAN 2 VLAN 202 VLAN 3 VLAN 302 PC VoD VoIP VLA...

Page 160: ...e SP network before the mapping process was initiated Zero to two VLAN mapping The application scenario of zero to two VLAN mapping is similar to the scenario of one to two VLAN mapping Zero to two VLAN mapping is used on the customer side port of a PE to add double tags to untagged packets Two to three VLAN mapping The application scenario of two to three VLAN mapping is similar to the scenario o...

Page 161: ... to two VLAN mapping is implemented on the customer side port to add the SVLAN tag for the uplink traffic For the downlink traffic to be correctly sent to the customer network make sure the SVLAN tag is removed on the customer side port before transmission Use one of the following methods to remove the SVLAN tag from the downlink traffic Configure the customer side port as a hybrid port and assign...

Page 162: ...VLAN tag in the downlink traffic Configure the customer side port as a trunk port and assign it to the SVLAN Make sure the SVLAN is not the PVID Configure the customer side port as a hybrid port and assign it to the SVLAN as a tagged member Figure 57 Zero to two VLAN mapping implementation Two to two VLAN mapping As shown in Figure 58 two to two VLAN mapping is implemented on the customer side por...

Page 163: ... as a hybrid port and assign the port to the outermost VLAN as an untagged member Figure 59 Two to three VLAN mapping implementation VLAN mapping configuration task list To add or replace VLAN tags for packets you can configure both VLAN mapping and a QoS policy The QoS policy takes effect if a configuration conflict occurs For information about QoS policies see ACL and QoS Configuration Guide IMP...

Page 164: ...aggregation interface number N A 3 Set the link type of the port Set the port link type to trunk port link type trunk Set the port link type to hybrid port link type hybrid By default the link type of a port is access 4 Assign the port to the original VLANs and the translated VLANs For the trunk port port trunk permit vlan vlan id list For the hybrid port port hybrid vlan vlan id list tagged N A 5...

Page 165: ... port a Configure the SVLAN as the PVID of the trunk port port trunk pvid vlan vlan id b Assign the trunk port to the SVLAN port trunk permit vlan vlan id list all For the hybrid port port hybrid vlan vlan id list untagged N A 6 Configure a one to two VLAN mapping vlan mapping nest range vlan range list single vlan id list nested vlan vlan id By default no VLAN mapping is configured on an interfac...

Page 166: ...networks for example on PE 3 in Figure 53 Two to two VLAN mapping enables two sites in different VLANs to communicate at Layer 2 across two service provider networks that use different VLAN assignment schemes Before you configure two to two VLAN mapping create the original VLANs and the translated VLANs To configure two to two VLAN mapping Step Command Remarks 1 Enter system view system view N A 2...

Page 167: ...the link type of a port is access 4 Assign the port to the original SVLAN For the trunk port port trunk permit vlan vlan id list For the hybrid port port hybrid vlan vlan id list tagged By default a trunk port is assigned only to VLAN 1 and a hybrid port is an untagged member of VLAN 1 5 Configure the port to allow the packets from the outermost VLAN to pass through untagged For the trunk port a C...

Page 168: ...s As shown in Figure 60 Each household subscribes to PC VoD and VoIP services and obtains the IP address through DHCP On the home gateways VLANs 1 2 and 3 are assigned to PC VoD and VoIP traffic respectively To isolate traffic of the same service type from different households configure one to one VLAN mappings on the wiring closet switches This feature assigns one VLAN to each type of traffic fro...

Page 169: ... VLAN 503 Campus switch Switch C Distribution network DHCP client DHCP server Wiring closet Switch A VLAN 1 VLAN 101 VLAN 2 VLAN 201 VLAN 3 VLAN 301 VLAN 1 VLAN 102 VLAN 2 VLAN 202 VLAN 3 VLAN 302 PC VoD VoIP VLAN 2 Home gateway VLAN 1 VLAN 3 PC VoD VoIP VLAN 2 Home gateway VLAN 1 VLAN 3 VLAN 1 VLAN 103 VLAN 2 VLAN 203 VLAN 3 VLAN 303 VLAN 1 VLAN 104 VLAN 2 VLAN 204 VLAN 3 VLAN 304 PC VoD VoIP VLA...

Page 170: ...102 SwitchA HundredGigE1 0 2 vlan mapping 2 translated vlan 202 SwitchA HundredGigE1 0 2 vlan mapping 3 translated vlan 302 SwitchA HundredGigE1 0 2 quit Configure the network side port HundredGigE 1 0 3 as a trunk port SwitchA interface hundredgige 1 0 3 SwitchA HundredGigE1 0 3 port link type trunk Assign HundredGigE 1 0 3 to the translated VLANs SwitchA HundredGigE1 0 3 port trunk permit vlan 1...

Page 171: ...ndredGigE 1 0 1 to add SVLAN tag 100 to packets from VLAN 5 PE1 interface hundredgige 1 0 1 PE1 HundredGigE1 0 1 vlan mapping nest single 5 nested vlan 100 Configure HundredGigE 1 0 1 as a hybrid port PE1 HundredGigE1 0 1 port link type hybrid Assign HundredGigE 1 0 1 to VLAN 5 as a tagged member PE1 HundredGigE1 0 1 port hybrid vlan 5 tagged Assign HundredGigE 1 0 1 to VLAN 100 as an untagged mem...

Page 172: ... PE3 vlan200 quit Configure HundredGigE 1 0 1 as a trunk port PE3 interface hundredgige 1 0 1 PE3 HundredGigE1 0 1 port link type trunk Assign HundredGigE 1 0 1 to VLANs 100 and 200 PE3 HundredGigE1 0 1 port trunk permit vlan 100 200 Configure a two to two VLAN mapping on HundredGigE 1 0 1 to map SVLAN 100 and CVLAN 5 to SVLAN 200 and CVLAN 6 PE3 HundredGigE1 0 1 vlan mapping tunnel 100 5 translat...

Page 173: ...ntagged Configure a one to two VLAN mapping on HundredGigE 1 0 2 to add SVLAN tag 200 to packets from VLAN 6 PE4 HundredGigE1 0 2 vlan mapping nest single 6 nested vlan 200 PE4 HundredGigE1 0 2 quit Verifying the configuration Verify VLAN mapping information on PE 1 PE1 display vlan mapping Interface HundredGigE1 0 1 Outer VLAN Inner VLAN Translated Outer VLAN Translated Inner VLAN 5 N A 100 5 Ver...

Page 174: ... Guide LLDP enables a network management system to quickly detect and identify Layer 2 network topology changes Basic concepts LLDP agent An LLDP agent is a mapping of an entity where LLDP runs Multiple LLDP agents can run on the same interface LLDP agents are divided into the following types Nearest bridge agent Nearest customer bridge agent Nearest non TPMR bridge agent A Two port MAC Relay TPMR...

Page 175: ...ifferent types This helps distinguish between LLDP frames sent and received by different agent types on the same interface The destination MAC address is fixed to one of the following multicast MAC addresses 0x0180 c200 000E for LLDP frames destined for nearest bridge agents 0x0180 c200 0000 for LLDP frames destined for nearest customer bridge agents 0x0180 c200 0003 for LLDP frames destined for n...

Page 176: ...evice information as shown in Figure 65 Figure 65 LLDPDU encapsulation format An LLDPDU can carry up to 32 types of TLVs Mandatory TLVs include Chassis ID TLV Port ID TLV Time to Live TLV and End of LLDPDU TLV Other TLVs are optional TLVs A TLV is an information element that contains the type length and value fields LLDPDU TLVs include the following categories Basic management TLVs Organizationall...

Page 177: ...The interface number and object identifier OID associated with the address IEEE 802 1 organizationally specific TLVs Table 16 IEEE 802 1 organizationally specific TLVs Type Description Port VLAN ID PVID Specifies the port VLAN identifier Port And Protocol VLAN ID PPVID Indicates whether the device supports protocol VLANs and if so what VLAN IDs these protocols will be associated with VLAN Name Spe...

Page 178: ... Frame Size Indicates the supported maximum frame size It is now the MTU of the port Power Stateful Control Indicates the power state control configured on the sending port including the following Power supply mode of the PSE PD PSE PD priority PSE PD power Energy Efficient Ethernet Indicates Energy Efficient Ethernet EEE NOTE The Power Stateful Control TLV is defined in IEEE P802 3at D1 0 and is ...

Page 179: ...If the LLDP MED capabilities TLV is not advertisable the other LLDP MED TLVs will not be advertised even if they are advertisable Management address The network management system uses the management address of a device to identify and manage the device for topology maintenance and network management The management address is encapsulated in the management address TLV Working mechanism LLDP operati...

Page 180: ...d information ages out Protocols and standards IEEE 802 1AB 2005 Station and Media Access Control Connectivity Discovery IEEE 802 1AB 2009 Station and Media Access Control Connectivity Discovery ANSI TIA 1057 Link Layer Discovery Protocol for Media Endpoint Devices DCB Capability Exchange Protocol Specification Rev 1 00 DCB Capability Exchange Protocol Base Specification Rev 1 01 IEEE Std 802 1Qaz...

Page 181: ...mber N A 4 Enable LLDP lldp enable By default LLDP is enabled on a port NOTE An LLDP enabled IRF physical interface supports only the nearest bridge agents Setting the LLDP bridge mode The following LLDP bridge modes are available Customer bridge mode LLDP supports nearest bridge agents nearest non TPMR bridge agents and nearest customer bridge agents LLDP processes the LLDP frames with destinatio...

Page 182: ...specify an agent type the command sets the operating mode for nearest bridge agents In aggregate interface view you can set the operating mode only for nearest customer bridge agents and nearest non TPMR bridge agents In IRF physical interface view you can set the operating mode only for nearest bridge agents Setting the LLDP reinitialization delay When the LLDP operating mode changes on a port th...

Page 183: ...rnet interface view Layer 2 Layer 3 aggregate interface view or IRF physical interface view interface interface type interface number N A 3 Configure the advertisable TLVs in Layer 2 Ethernet interface view lldp tlv enable basic tlv all port description system capability system description system name management address tlv ipv6 ip address dot1 tlv all port vlan id link aggregation dcbx protocol v...

Page 184: ...m description system name management address tlv ipv6 ip address dot1 tlv all link aggregation By default Nearest bridge agents can advertise all types of LLDP TLVs only link aggregation TLV is supported in 802 1 organizationally specific TLVs except network policy TLVs Nearest non TPMR bridge agents do not advertise TLVs Nearest customer bridge agents can advertise basic TLVs and IEEE 802 1 organ...

Page 185: ...st customer bridge agents can advertise basic TLVs and IEEE 802 1 organizationally specific TLVs only port and protocol VLAN ID VLAN name and management VLAN ID TLVs are supported Nearest bridge agents are not supported on Layer 2 aggregate interfaces 7 Configure the advertisable TLVs in Layer 3 aggregate interface view lldp agent nearest nontpmr nearest customer tlv enable basic tlv all managemen...

Page 186: ...est customer nearest nontpmr tlv enable basic tlv management address tlv ipv6 ip address interface loopback interface number In Layer 2 Layer 3 aggregate interface view lldp agent nearest customer nearest nontpmr tlv enable basic tlv management address tlv ipv6 ip address By default Nearest bridge agents and nearest customer bridge agents can advertise the management address in LLDP frames Nearest...

Page 187: ...ion format for LLDP frames LLDP frames can be encapsulated in the following formats Ethernet II With Ethernet II encapsulation configured an LLDP port sends LLDP frames in Ethernet II frames SNAP With SNAP encapsulation configured an LLDP port sends LLDP frames in SNAP frames Earlier versions of LLDP require the same encapsulation format on both ends to process LLDP frames To successfully communic...

Page 188: ...ur device to receive and recognize CDP packets from the neighboring CDP device and send CDP packets to the neighboring device The CDP packets sent to the neighboring CDP device carry the following information Device ID ID of the port connecting to the neighboring device Port IP address TTL The port IP address is the primary IP address of a VLAN interface in up state The VLAN ID of the VLAN interfa...

Page 189: ...ace view interface interface type interface number N A 4 Configure CDP compatible LLDP to operate in TxRx mode lldp compliance admin status cdp txrx By default CDP compatible LLDP operates in disable mode Configuring DCBX Data Center Ethernet DCE also known as Converged Enhanced Ethernet CEE is enhancement and expansion of traditional Ethernet local area networks for use in data centers DCE uses t...

Page 190: ...smission Selection ETS Priority based Flow Control PFC In IEEE Std 802 1Qaz 2011 ETS Configuration ETS Recommendation PFC APP H3C devices can send these types of DCBX information to a server or storage adapter supporting FCoE However H3C devices cannot accept these types of DCBX information DCBX configuration task list Tasks at a glance Required Enabling LLDP and DCBX TLV advertising Required Sett...

Page 191: ... DCBX version is autonegotiated the version IEEE Std 802 1Qaz 2011 is preferably negotiated To set the DCBX version Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Ethernet interface view interface interface type interface number N A 3 Set the DCBX version dcbx version rev100 rev101 standard By default the DCBX version is not configured It is autonegotiated by the local po...

Page 192: ...ass with the traffic behavior in the QoS policy and apply the association to DCBX classifier classifier name behavior behavior name mode dcbx By default no class behavior association exists For more information about the traffic classifier if match traffic behavior remark local precedence qos policy and classifier behavior commands see ACL and QoS Command Reference To configure the 802 1p priority...

Page 193: ... the server adapter To configure PFC parameters Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Ethernet interface view interface interface type interface number N A 3 Enable PFC in auto mode on the Ethernet interface priority flow control auto By default PFC is disabled To advertise the PFC data you must enable PFC in auto mode 4 Enable PFC for the specified 802 1p priori...

Page 194: ...terface view or management Ethernet interface view lldp notification med topology change enable By default LLDP MED trapping is disabled 5 Return to system view quit N A 6 Optional Set the LLDP trap transmission interval lldp timer notification interval interval The default setting is 30 seconds Setting the source MAC address of LLDP frames Step Command Remarks 1 Enter system view system view N A ...

Page 195: ...Ethernet interface view lldp management address arp learning nd learning vlan vlan id By default the device does not generate an ARP or ND entry when receiving a management address LLDP TLV In Layer 3 Ethernet interface view this option enables LLDP to generate the ARP or ND entry for the Layer 3 Ethernet subinterface identified by interface number subnumber where subnumber is the specified VLAN I...

Page 196: ...e 67 Network diagram Configuration procedure 1 Configure Switch A Enable LLDP globally SwitchA system view SwitchA lldp global enable Enable LLDP on HundredGigE 1 0 1 By default LLDP is enabled on ports SwitchA interface hundredgige 1 0 1 SwitchA HundredGigE1 0 1 lldp enable Set the LLDP operating mode to Rx on HundredGigE 1 0 1 SwitchA HundredGigE1 0 1 lldp admin status rx SwitchA HundredGigE1 0 ...

Page 197: ...y lldp status Global status of LLDP Enable Bridge mode of LLDP customer bridge The current number of LLDP neighbors 2 The current number of CDP neighbors 0 LLDP neighbor information last changed time 0 days 0 hours 4 minutes 40 seconds Transmit interval 30s Fast transmit interval 1s Transmit credit max 5 Hold multiplier 4 Reinit delay 2s Trap interval 30s Fast start times 4 LLDP status information...

Page 198: ... of LLDP Enable Admin status Disable Trap flag No MED trap flag No Polling interval 0s Number of LLDP neighbors 0 Number of MED neighbors 0 Number of CDP neighbors 0 Number of sent optional TLV 1 Number of received unknown TLV 0 LLDP agent nearest customer Port status of LLDP Enable Admin status Disable Trap flag No MED trap flag No Polling interval 0s Number of LLDP neighbors 0 Number of MED neig...

Page 199: ...ighbors 1 Number of CDP neighbors 0 Number of sent optional TLV 0 Number of received unknown TLV 5 LLDP agent nearest nontpmr Port status of LLDP Enable Admin status Disable Trap flag No MED trap flag No Polling interval 0s Number of LLDP neighbors 0 Number of MED neighbors 0 Number of CDP neighbors 0 Number of sent optional TLV 1 Number of received unknown TLV 0 LLDP status information of port 2 ...

Page 200: ... neighbors 0 Number of CDP neighbors 0 Number of sent optional TLV 1 Number of received unknown TLV 0 LLDP agent nearest customer Port status of LLDP Enable Admin status Disable Trap flag No MED trap flag No Polling interval 0s Number of LLDP neighbors 0 Number of MED neighbors 0 Number of CDP neighbors 0 Number of sent optional TLV 16 Number of received unknown TLV 0 ...

Page 201: ...gned to a service loopback group The ports support the service type of the service loopback group and are not members of any other service loopback group You cannot change the service type of a service loopback group Do not delete a service loopback group that is being used by a feature For correct traffic processing make sure a service loopback group has a minimum of one member port when it is be...

Page 202: ...HundredGigE 1 0 3 to service loopback group 1 DeviceA interface hundredgige 1 0 1 DeviceA HundredGigE1 0 1 port service loopback group 1 All configurations on the interface will be lost Continue Y N y DeviceA HundredGigE1 0 1 quit DeviceA interface hundredgige 1 0 2 DeviceA HundredGigE1 0 2 port service loopback group 1 All configurations on the interface will be lost Continue Y N y DeviceA Hundre...

Page 203: ... protection 133 adding MAC address table blackhole entry 23 MAC address table entry global 22 MAC address table entry on interface 22 MAC address table multiport unicast entry 23 address MAC address learning disable 24 MAC Information queue length 34 advertising LLDP advertisable TLV 172 LLDP DCBX TLV advertisement 179 aggregating link See link aggregation aging MAC address table timer 25 spanning...

Page 204: ...78 CDP LLDP CDP compatibility 177 checking spanning tree No Agreement Check 115 117 choosing Ethernet link aggregation reference port 39 42 Cisco Discovery Protocol Use CDP LLDP CDP compatibility 177 CIST calculation 92 network device connection 90 spanning tree max age timer 103 combining Ethernet interfaces 10 GE 40 GE 2 common root bridge 91 configuring 0 2 VLAN mapping 154 1 1 VLAN mapping 153...

Page 205: ...interface 1 MST region 99 MST region max hops 102 MSTP 98 125 port isolation 72 73 port based VLAN 142 145 PVST 97 128 RSTP 97 service loopback group 190 191 spanning tree 75 96 125 spanning tree BPDU guard 119 spanning tree BPDU transmission rate 104 spanning tree device priority 101 spanning tree Digest Snooping 113 114 spanning tree edge port 105 spanning tree No Agreement Check 115 117 spannin...

Page 206: ...er 102 Digest Snooping spanning tree 113 114 directing Ethernet link aggregation traffic redirection 56 disabling LLDP PVID inconsistency check 177 MAC address learning global 24 MAC address learning on interface 25 spanning tree inconsistent PVID protection 113 discarding MST discarding port state 92 displaying bulk interface configuration 19 Ethernet interface 14 Ethernet link aggregation 58 Eth...

Page 207: ...figuration 132 136 loop detection protection action Layer 2 Ethernet interface 135 MAC address table configuration 20 21 31 MAC Information configuration 33 34 port isolation configuration 72 73 port based VLAN assignment access port 143 port based VLAN assignment hybrid port 144 port based VLAN assignment trunk port 143 port based VLAN configuration 142 service loopback group configuration 190 19...

Page 208: ...rst load sharing 55 maintain 58 member port 37 member port state 37 39 42 modes 39 operational key 38 reference port 42 reference port choice 39 static mode 39 traffic redirection 56 traffic redirection restrictions 56 Ethernet subinterface 1 See also Ethernet interface Layer 2 Ethernet subinterface Layer 3 Ethernet subinterface basic settings 3 display 14 maintain 14 MTU setting Layer 3 14 ETS pa...

Page 209: ...oad sharing mode 44 54 Ethernet link aggregation member port state 37 H hello spanning tree timer 103 STP timer 83 hybrid port port based VLAN assignment hybrid port 144 I ignored VLAN Layer 2 aggregate interface 49 implementing 0 2 VLAN mapping 149 151 1 1 VLAN mapping 149 150 1 2 VLAN mapping 149 150 2 2 VLAN mapping 149 151 2 3 VLAN mapping 149 152 MSTP device 93 ingress MAC address table learn...

Page 210: ...et link aggregation group Layer 3 static 46 Ethernet link aggregation group load sharing 54 Ethernet link aggregation group load sharing mode 54 Ethernet link aggregation group restrictions 45 Ethernet link aggregation LACP 41 Ethernet link aggregation load sharing Layer 2 62 Ethernet link aggregation load sharing Layer 3 68 Ethernet link aggregation load sharing mode 44 Ethernet link aggregation ...

Page 211: ...ernet link aggregation Layer 3 static 66 Ethernet link aggregation configuration 37 44 58 Ethernet link aggregation edge aggregate interface 44 51 Ethernet link aggregation group 45 46 Ethernet link aggregation group load sharing 54 Ethernet link aggregation group load sharing mode 54 Ethernet link aggregation load sharing 68 Ethernet link aggregation local first load sharing 55 Ethernet link aggr...

Page 212: ...MED types 165 TLV organization specific types 165 load balancing service loopback group configuration 190 191 load sharing Ethernet link aggregation group configuration 54 Ethernet link aggregation group load sharing 44 Ethernet link aggregation load sharing Layer 2 62 Ethernet link aggregation load sharing Layer 3 68 Ethernet link aggregation load sharing mode 54 Ethernet link aggregation local f...

Page 213: ...Use MTU mCheck global performance 112 interface view performance 112 spanning tree 112 MED LLDP MED trapping 182 MIB LLDP basic configuration 170 185 LLDP configuration 163 169 mode Ethernet interface link 4 Ethernet link aggregation dynamic 39 40 Ethernet link aggregation LACP operation active 41 Ethernet link aggregation LACP operation passive 41 Ethernet link aggregation load sharing 44 Etherne...

Page 214: ...gate interface Layer 2 edge 64 Ethernet link aggregation dynamic mode 40 Ethernet link aggregation Layer 2 dynamic 60 Ethernet link aggregation Layer 2 static 58 Ethernet link aggregation Layer 3 dynamic 67 Ethernet link aggregation Layer 3 static 66 Ethernet link aggregation static mode 39 Ethernet link aggregation configuration types 38 Ethernet link aggregation edge aggregate interface 44 Ether...

Page 215: ...ning tree TC BPDU event logging PVST mode 123 spanning tree TC Snooping 117 spanning tree TC BPDU guard 122 spanning tree TC BPDU transmission restriction 121 STP algorithm calculation 78 STP basic concepts 77 STP path cost 78 VLAN basic configuration 140 VLAN interface 141 VLAN mapping 0 2 implementation 151 VLAN mapping 1 1 implementation 150 VLAN mapping 1 2 implementation 150 VLAN mapping 2 2 ...

Page 216: ...ggregation Layer 2 dynamic 60 Ethernet link aggregation Layer 2 static 58 Ethernet link aggregation Layer 3 dynamic 67 Ethernet link aggregation Layer 3 static 66 Ethernet link aggregation static mode 39 Ethernet link aggregation configuration 37 44 58 Ethernet link aggregation configuration types 38 Ethernet link aggregation device capability configuration 57 Ethernet link aggregation edge aggreg...

Page 217: ...n restriction 121 STP designated port 77 STP edge port rapid transition 93 STP port state 77 STP rapid transition 93 STP root port 77 STP root port rapid transition 94 VLAN port link type 142 port isolation configuration 72 73 display 72 group assignment multiple ports 72 port based VLAN assignment access port 143 assignment hybrid port 144 assignment trunk port 143 configuration 142 145 port fram...

Page 218: ...rnet link aggregation load sharing Layer 3 68 configuring Ethernet subinterface Layer 3 14 configuring Ethernet subinterface basic settings 3 configuring interface inloopback 17 configuring interface loopback 16 configuring interface null 16 configuring LLDP 169 configuring LLDP 802 1p to local priority mapping 180 configuring LLDP advertisable TLVs 172 configuring LLDP basics 170 185 configuring ...

Page 219: ...direction 56 enabling LLDP 170 enabling LLDP ARP entry generation 184 enabling LLDP polling 171 enabling LLDP DCBX TLV advertisement 179 enabling loop detection global 134 enabling loop detection port specific 134 enabling MAC address synchronization 26 enabling MAC address table ARP fast update 28 enabling MAC address table learning 29 enabling MAC address table move notification 27 enabling MAC ...

Page 220: ...n setting 135 spanning tree protection 118 protocols and standards Ethernet link aggregation protocol configuration 38 LLDP 169 MSTP 95 MSTP protocol frames 87 PVST protocol frames 86 RSTP protocol frames 84 STP protocol frames 75 VLAN 140 PVID spanning tree inconsistent PVID protection disable 113 PVID port based VLAN 142 PVST 75 See also STP basic concepts 87 configuration 97 128 feature enable ...

Page 221: ...back group configuration 190 191 display 190 setting Ethernet aggregate interface MAC address 48 Ethernet interface MTU Layer 3 14 Ethernet interface statistics polling interval 10 Ethernet link aggregate group Selected ports min max 50 Ethernet link aggregate interface expected bandwidth 51 Ethernet link aggregation load sharing mode global 54 Ethernet link aggregation load sharing mode group spe...

Page 222: ...yer 2 58 Ethernet link aggregation Layer 3 66 Ethernet link aggregation static mode 39 Ethernet link aggregation group 45 46 Ethernet link aggregation group BFD 52 Ethernet link aggregation mode 39 Layer 2 Ethernet link aggregation group 45 Layer 3 Ethernet link aggregation group 46 MAC address table entry 20 MAC address table entry configuration global 22 MAC address table entry configuration on ...

Page 223: ...on delay 171 MAC address table dynamic aging 25 spanning tree forward delay 103 spanning tree hello 103 spanning tree max age 103 STP forward delay 83 STP hello 83 STP max age 83 TLV LLDP advertisable TLV configuration 172 LLDP management address configuration 174 LLDP management address encoding format 174 LLDP parameters 175 LLDP DCBX TLV advertisement 179 LLDPDU basic management types 165 LLDPD...

Page 224: ...N termination VLAN mapping 0 2 application scenario 147 149 0 2 configuration 154 0 2 implementation 149 151 1 1 application scenario 147 147 1 1 configuration 153 157 1 1 implementation 149 150 1 2 application scenario 147 148 1 2 configuration 153 159 1 2 implementation 149 150 2 2 application scenario 147 148 2 2 configuration 155 159 2 2 implementation 149 151 2 3 application scenario 147 149 ...

Reviews:

No comments