H3C S5830V2 series Configuration Manual Download Page 182 | Manualshive

Page: 182 / 318

background image

165

Displaying and maintaining the private VLAN

Execute the

display

command in any view.

Task Command

Display information about primary VLANs and the
secondary VLANs associated with each primary VLAN.

display private-vlan

[

primary-vlan-id

]

Private VLAN configuration examples

Private VLAN configuration example in promiscuous mode

Network requirements

As shown in

:

•

On Device B, VLAN 5 is a primary VLAN which contains uplink port Ten-GigabitEthernet 1/0/5
and is associated with secondary VLANs VLAN 2 and VLAN 3. VLAN 2 contains member port

Ten-GigabitEthernet 1/0/2, and VLAN 3 contains member port Ten-GigabitEthernet 1/0/1.

•

On Device C, VLAN 6 is a primary VLAN which contains uplink port Ten-GigabitEthernet 1/0/5
and is associated with secondary VLANs VLAN 3 and VLAN 4. VLAN 3 contains member port

Ten-GigabitEthernet 1/0/3, and VLAN 4 contains member port Ten-GigabitEthernet 1/0/4.

•

Device A is aware of only VLAN 5 on Device B and VLAN 6 on Device C.

Figure 45

Network diagram

Configuration procedure

The following section describes only the configurations on Device B and Device C.

1.

Configure Device B:
# Configure VLAN 5 as a primary VLAN.

<DeviceB> system-view

[DeviceB] vlan 5

[DeviceB-vlan5] private-vlan primary

[DeviceB-vlan5] quit

«
...
180
181
182
183
184
...
»

Summary of Contents for S5830V2 series

Page 1: ...H3C S5830V2 S5820V2 Switch Series Layer 2 LAN Switching Configuration Guide Hangzhou H3C Technologies Co Ltd http www h3c com Software version Release 23xx Document version 6W102 20150315...

Page 2: ...gine SecPath SecCenter SecBlade Comware ITCMM and HUASAN are trademarks of Hangzhou H3C Technologies Co Ltd All other trademarks that may be mentioned in this manual are the property of their respecti...

Page 3: ...service provider network VLAN tag manipulations This preface includes Audience Added and modified features Conventions About the H3C S5830V2 S5820V2 documentation set Obtaining documentation Technical...

Page 4: ...he MTU for an Ethernet interface or subinterface Modified features Configuring the interface description Displaying summary information about the specified interface or all interfaces Configuring phys...

Page 5: ...le was added in the factory defaults When the device starts up with the default configuration file or factory defaults the spanning tree feature is enabled globally by default Loop detection N A VLAN...

Page 6: ...it delay Service loopback group N A Cut through N A Conventions This section describes the conventions used in this documentation set Command conventions Convention Description Boldface Bold text repr...

Page 7: ...provides helpful information Network topology icons Represents a generic network device such as a router switch or firewall Represents a routing capable device such as a router or Layer 3 switch Repr...

Page 8: ...he physical views specifications installation procedures and removal procedures for the LSVM1AC300 and LSVM1DC300 power modules Software configuration Configuration guides Describe software features a...

Page 9: ...http www h3c com Documentation feedback You can e mail your comments about product documentation to info h3c com We appreciate your comments...

Page 10: ...guring a Layer 3 Ethernet interface or subinterface 15 Setting the MTU for an Ethernet interface or subinterface 15 Displaying and maintaining an Ethernet interface 15 Configuring loopback null and in...

Page 11: ...thernet link aggregation 42 Basic concepts 42 Aggregation group member port and aggregate interface 42 Aggregation states of member ports in an aggregation group 43 Operational key 43 Configuration ty...

Page 12: ...ort isolation 75 Port isolation configuration example 76 Network requirements 76 Configuration procedure 76 Verifying the configuration 76 Configuring spanning tree protocols 78 STP 78 STP protocol pa...

Page 13: ...guidelines 111 Configuration procedure 111 Configuring Digest Snooping 112 Configuration restrictions and guidelines 112 Configuration procedure 113 Digest Snooping configuration example 113 Configur...

Page 14: ...ed VLANs 141 Introduction to port based VLAN 141 Assigning an access port to a VLAN 142 Assigning a trunk port to a VLAN 143 Assigning a hybrid port to a VLAN 144 Configuring IP subnet based VLANs 145...

Page 15: ...ng QinQ 195 Overview 195 How QinQ works 195 QinQ implementations 196 Protocols and standards 196 Restrictions and guidelines 197 Enabling QinQ 197 Configuring transparent transmission for VLANs 197 Co...

Page 16: ...ort 233 Configuring a downlink port 234 Displaying and maintaining PBB 234 PBB configuration example 235 Network requirements 235 Configuration procedures 235 Verifying the configuration 236 Troublesh...

Page 17: ...intaining LLDP 261 LLDP configuration examples 261 Basic LLDP configuration example 261 DCBX configuration example 265 Configuring service loopback groups 271 Configuration procedure 271 Displaying an...

Page 18: ...ng conventions The Ethernet interfaces are named in the format of interface type A B C The letters that follow the interface type represent the following elements A IRF member ID If the switch is not...

Page 19: ...t from a 40 GE interface support the same configuration and attributes as common 10 GE interfaces except that they are numbered in a different way 4 Reboot the device N A After creating the four 10 GE...

Page 20: ...mat of interface name Interface For example Ten GigabitEthernet1 0 1 Interface 4 Set the duplex mode of the Ethernet interface duplex auto full half The default setting is auto for Ethernet interfaces...

Page 21: ...ults in the new link mode The interfaces on this switch series can operate either as Layer 2 or Layer 3 Ethernet interfaces you can set the link mode to bridge or route To change the link mode of an E...

Page 22: ...The CPU then performs the following operations Notifies the upper layer protocol modules such as routing and forwarding modules of the change for guiding packet forwarding Automatically generates trap...

Page 23: ...and guidelines On an administratively shut down Ethernet interface displayed as in ADM or Administratively DOWN state you cannot perform an internal or external loopback test The speed duplex mdix mo...

Page 24: ...ith PFC enabled an interface requires its peer to suspend sending packets with certain 802 1p priorities when congestion occurs By decreasing the transmission rate PFC helps avoid packet loss You can...

Page 25: ...low control by using the flow control command on a port where PFC is enabled and PFC is enabled for the specified 802 1p priority values Configured Configurable Unconfigurable On a port configured wit...

Page 26: ...r the 10 GE copper ports of S5820V2 52Q switches this feature is available only when the ports operate at 10 Gbps To enable EEE energy saving Step Command Remarks 1 Enter system view system view N A 2...

Page 27: ...nnected the fiber port does not work To enable a fiber port to forward traffic over a single link you can use the port up mode command This command brings up a fiber port by force even when no fiber l...

Page 28: ...broadcast multicast or unknown unicast traffic on the interface exceeds this threshold the system discards packets until the traffic drops below this threshold Any of the storm constrain broadcast sup...

Page 29: ...interface to output threshold event traps and log messages when either of the following conditions exists Monitored traffic exceeds the upper threshold Monitored traffic falls below the lower thresho...

Page 30: ...control is disabled 5 Set the control action to take when monitored traffic exceeds the upper threshold storm constrain control block shutdown By default storm control is disabled 6 Optional Enable th...

Page 31: ...Layer 2 Ethernet interface view interface interface type interface number N A 3 Set the MDIX mode of the Ethernet interface mdix mode automdix mdi mdix By default a copper Ethernet interface operates...

Page 32: ...ampling interval display counters rate inbound outbound interface interface type interface number interface number subnumber Display the operational and status information of the specified interface o...

Page 33: ...16 Task Command Clear the Ethernet statistics reset ethernet statistics...

Page 34: ...te from the loopback interface to the peer is reachable by performing routing configuration All data packets sent to the loopback interface are considered packets sent to the device itself so the devi...

Page 35: ...escription text The default setting is NULL0 Interface 4 Restore the default settings for the null interface default N A Configuring an inloopback interface An inloopback interface is a virtual interf...

Page 36: ...19 Task Command Clear the statistics on the null interface reset counters interface null 0...

Page 37: ...gate interface and its member interfaces can break up the aggregation No limit is set on the maximum number of interfaces in an interface range The more interfaces in an interface range the longer the...

Page 38: ...e interface range to enter the interface range view 3 Optional Display commands available for the first interface in the interface range Enter a question mark at the interface range prompt N A 4 Use a...

Page 39: ...if an entry is found The device adds an entry for MAC SOURCE and port A if no entry is found 3 When the device receives a frame destined for MAC SOURCE after learning this source MAC address the devic...

Page 40: ...rts and it never ages out A multiport unicast entry has higher priority than a dynamically learned one A static blackhole or multiport unicast MAC address entry can overwrite a dynamic MAC address ent...

Page 41: ...ou save the configuration A frame whose source MAC address matches different types of MAC address entries is differently processed Type Description Static MAC address entry Discards the frame received...

Page 42: ...view interface bridge aggregation interface number Enter S channel interface view interface s channel interface number channel id Enter S channel aggregate interface view interface schannel aggregatio...

Page 43: ...luster Figure 2 NLB cluster Do not configure an interface as the output interface of a multiport unicast MAC address entry if the interface receives frames destined for the multiport unicast MAC addre...

Page 44: ...a large amount of frames with different source MAC addresses When MAC address learning is disabled the device immediately deletes the existing dynamic MAC address entries Disabling global MAC address...

Page 45: ...asis To disable MAC address learning on a VLAN Step Command Remarks 1 Enter system view system view N A 2 Enable global MAC address learning mac address mac learning enable By default global MAC addre...

Page 46: ...em view system view N A 2 Configure the aging timer for dynamic MAC address entries mac address timer aging seconds no aging By default the aging timer for dynamic MAC address entries is 300 seconds T...

Page 47: ...rface with low priority is not allowed to learn MAC addresses already learned on a high priority interface The MAC learning priority mechanism can help defend your network against MAC address spoofing...

Page 48: ...e 3 Device A and Device B form an IRF fabric enabled with MAC address synchronization Device A and Device B connect to AP C and AP D respectively When Client A associates with AP C Device A learns a M...

Page 49: ...ace A to interface B and a MAC address move occurs If a MAC address is continuously moved between the two interfaces Layer 2 loops might occur To detect and locate loops you can view the MAC address m...

Page 50: ...on interface A is changed to interface B when the following conditions exist Interface B receives a packet with the MAC address as the source MAC address Interface B belongs to the same VLAN as inter...

Page 51: ...Enter Layer 2 Ethernet interface view interface interface type interface number Enter Layer 2 aggregate interface interface bridge aggregation interface number N A 6 Optional Enable MAC address move s...

Page 52: ...mine the attributes of sending notifications After you disable SNMP notifications for the MAC address table the device will send log messages to the information center module You can set the output ru...

Page 53: ...ics display mac address statistics Display the MAC address move records display mac address mac move slot slot number Figure 6 An example for the display mac address nickname command MAC address table...

Page 54: ...seconds for dynamic MAC address entries Device mac address timer aging 500 Verifying the configuration Display the static MAC address entries for interface Ten GigabitEthernet 1 0 1 Device display mac...

Page 55: ...ges for blackhole MAC addresses static MAC addresses multiport unicast MAC addresses multicast MAC addresses and local MAC addresses For more information about MAC authentication 802 1X and secure MAC...

Page 56: ...can set the MAC change notification interval to a larger value To set the MAC change notification interval Step Command Remarks 1 Enter system view system view N A 2 Set the MAC change notification in...

Page 57: ...m view Device info center enable Specify the log host 192 168 1 2 24 and specify local4 as the logging facility Device info center loghost 192 168 1 2 facility local4 Disable log output to the log hos...

Page 58: ...g host which stores the logs to the specified file 3 Enable MAC Information on Device Enable MAC Information globally Device mac address information enable Configure the MAC Information mode as syslog...

Page 59: ...c concepts Aggregation group member port and aggregate interface Link bundling is implemented through interface bundling An aggregation group is a group of Ethernet interfaces bundled together which a...

Page 60: ...ports are assigned the same operational key Configuration types Every configuration setting on a port might affect its aggregation state Port configurations include the following types Attribute confi...

Page 61: ...Dynamic aggregation mode The peering system automatically maintains the aggregation state of the member ports thus reducing the workload of administrators An aggregation group in static mode is called...

Page 62: ...in Unselected state This prevents traffic interruption on the existing Selected ports Figure 9 Setting the aggregation state of a member port in a static aggregation group For more information about...

Page 63: ...IRF Configuration Guide LACP operating modes LACP can operate in active mode or passive mode When LACP is operating in passive mode on a local member port and its peer port both ports cannot send LAC...

Page 64: ...iate a reference port by using the following workflow 1 The systems compare their system IDs A system ID contains the system LACP priority and the system MAC address The lower the LACP priority the sm...

Page 65: ...ink aggregation group preferably sets full duplex ports as the Selected ports The group will set only one half duplex port as a Selected port when either of the following conditions exist None of the...

Page 66: ...device can receive LACPDUs from the server Then link aggregation between the device and the server operates correctly An edge aggregate interface takes effect only when it is configured on an aggrega...

Page 67: ...gregation group Configuration guidelines When you configure an aggregation group follow these guidelines You cannot assign a port to a Layer 2 aggregation group if any of the following features are co...

Page 68: ...ter Layer 2 aggregate interface view interface bridge aggregation interface number When you create a Layer 2 aggregate interface the system automatically creates a Layer 2 static aggregation group num...

Page 69: ...he aggregation state of the ports in a dynamic aggregation group 3 Create a Layer 2 aggregate interface and enter Layer 2 aggregate interface view interface bridge aggregation interface number When yo...

Page 70: ...ggregate interface and enter Layer 3 aggregate interface view interface route aggregation interface number When you create a Layer 3 aggregate interface the system automatically creates a Layer 3 stat...

Page 71: ...formed on Layer 2 or Layer 3 Ethernet interfaces can also be performed on Layer 2 or Layer 3 aggregate interfaces Configuring the description of an aggregate interface You can configure the descriptio...

Page 72: ...rface affects IP packets fragmentation and reassembly on the interface To change the MTU of a Layer 3 aggregate interface Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 3 aggre...

Page 73: ...rs of Selected ports for an aggregation group Step Command Remarks 1 Enter system view system view N A 2 Enter aggregate interface view Enter Layer 2 aggregate interface view interface bridge aggregat...

Page 74: ...terface Enabling BFD for an aggregation group This feature is available in Release 231 1P04 and later versions BFD for Ethernet link aggregation can monitor member link status in an aggregation group...

Page 75: ...an aggregation group is configured with the loopback command when you shut down the aggregate interface Similarly a port configured with the loopback command cannot be assigned to an aggregate interfa...

Page 76: ...ps and how to enable local first load sharing for link aggregation Setting load sharing modes for link aggregation groups You can set the global or group specific load sharing mode A link aggregation...

Page 77: ...ally across member ports on the device rather than all member ports When you aggregate ports on different member devices in an IRF fabric you can use local first load sharing to reduce traffic on IRF...

Page 78: ...Source MAC address Destination MAC address Source and destination IP addresses Source and destination MAC addresses To configure per flow load sharing algorithm settings for Ethernet link aggregation...

Page 79: ...Command Display information for an aggregate interface or multiple aggregate interfaces display interface bridge aggregation route aggregation brief down display interface bridge aggregation route agg...

Page 80: ...et 1 0 4 to VLAN 10 DeviceA system view DeviceA vlan 10 DeviceA vlan10 port ten gigabitethernet 1 0 4 DeviceA vlan10 quit Create VLAN 20 and assign port Ten GigabitEthernet 1 0 5 to VLAN 20 DeviceA vl...

Page 81: ...aring Type Shar Loadsharing NonS Non Loadsharing Port Status S Selected U Unselected I Individual Flags A LACP_Activity B LACP_Timeout C Aggregation D Synchronization E Collecting F Distributing G Def...

Page 82: ...dge Aggregation1 quit Assign ports Ten GigabitEthernet 1 0 1 through Ten GigabitEthernet 1 0 3 to link aggregation group 1 DeviceA interface ten gigabitethernet 1 0 1 DeviceA Ten GigabitEthernet1 0 1...

Page 83: ...ID Flag XGE1 0 1 1 32768 1 0x8000 000f e267 57ad ACDEF XGE1 0 2 2 32768 1 0x8000 000f e267 57ad ACDEF XGE1 0 3 3 32768 1 0x8000 000f e267 57ad ACDEF The output shows that Link aggregation group 1 is a...

Page 84: ...dge Aggregation1 link aggregation load sharing mode source mac DeviceA Bridge Aggregation1 quit Assign ports Ten GigabitEthernet 1 0 1 and Ten GigabitEthernet 1 0 2 to link aggregation group 1 DeviceA...

Page 85: ...eviceA Bridge Aggregation2 port link type trunk DeviceA Bridge Aggregation2 port trunk permit vlan 20 DeviceA Bridge Aggregation2 quit 2 Configure Device B in the same way Device A is configured Detai...

Page 86: ...ce so that both Ten GigabitEthernet 1 0 1 and Ten GigabitEthernet 1 0 2 can forward packets to improve link reliability Figure 15 Network diagram Configuration procedure Create Layer 2 aggregate inter...

Page 87: ...Priority Oper Key SystemID Flag XGE1 0 1 0 32768 0 0x8000 0000 0000 0000 DEF XGE1 0 2 0 32768 0 0x8000 0000 0000 0000 DEF The output shows that Ten GigabitEthernet 1 0 1 and Ten GigabitEthernet 1 0 2...

Page 88: ...hown Verifying the configuration Display detailed information about all aggregation groups on Device A DeviceA display link aggregation verbose Loadsharing Type Shar Loadsharing NonS Non Loadsharing P...

Page 89: ...gigabitethernet 1 0 2 DeviceA Ten GigabitEthernet1 0 2 port link aggregation group 1 DeviceA Ten GigabitEthernet1 0 2 quit DeviceA interface ten gigabitethernet 1 0 3 DeviceA Ten GigabitEthernet1 0 3...

Page 90: ...18 Network diagram Configuration procedure Create Layer 3 aggregate interface Route Aggregation 1 and set the link aggregation mode to dynamic Device system view Device interface route aggregation 1...

Page 91: ...lted H Expired Aggregate Interface Route Aggregation1 Aggregation Mode Dynamic Loadsharing Type NonS System ID 0x8000 000f e267 6c6a Local Port Status Priority Oper Key Flag XGE1 0 1 I 32768 1 AG XGE1...

Page 92: ...te interface view interface bridge aggregation interface number The configuration in Layer 2 Ethernet interface view applies only to the interface The configuration in Layer 2 aggregate interface view...

Page 93: ...ew Device port isolate group 2 Assign Ten GigabitEthernet 1 0 1 Ten GigabitEthernet 1 0 2 and Ten GigabitEthernet 1 0 3 to isolation group 2 Device interface ten gigabitethernet 1 0 1 Device Ten Gigab...

Page 94: ...Ten GigabitEthernet1 0 1 Ten GigabitEthernet1 0 2 Ten GigabitEthernet1 0 3 The output shows that interfaces Ten GigabitEthernet 1 0 1 Ten GigabitEthernet 1 0 2 and Ten GigabitEthernet 1 0 3 are assign...

Page 95: ...ages as its protocol packets This chapter uses BPDUs to represent all types of spanning tree protocol packets STP enabled network devices exchange BPDUs to establish a spanning tree BPDUs contain suff...

Page 96: ...s no root port Designated bridge and designated port Classification Designated bridge Designated port For a device Device directly connected with the local device and responsible for forwarding BPDUs...

Page 97: ...5 describes how the optimum configuration BPDU is selected 2 Based on the configuration BPDU and the path cost of the root port the device calculates a designated port configuration BPDU for each of t...

Page 98: ...their root path costs are compared For example the root path cost in a configuration BPDU plus the path cost of a receiving port is S The configuration BPDU with the smallest S value has the highest...

Page 99: ...process Configuration BPDU on ports after comparison Device A Port A1 performs the following actions 1 Receives the configuration BPDU of Port B1 1 0 1 Port B1 2 Determines that its existing configur...

Page 100: ...tion BPDU and path cost of the root port Device B calculates a designated port configuration BPDU for Port B2 0 5 1 Port B2 Device B compares it with the existing configuration BPDU of Port B2 1 0 1 P...

Page 101: ...ves a periodic configuration BPDU 0 0 0 Port A2 from Port A2 2 Determines that it is the same as the existing configuration BPDU 3 Discards the received one Port C1 0 0 0 Port A2 Port C2 0 5 1 Port B2...

Page 102: ...to timeout The device generates a configuration BPDU with itself as the root and sends the BPDUs and TCN BPDUs This triggers a new spanning tree calculation process to establish a new path to restore...

Page 103: ...n an STP or RSTP enabled LAN all bridges share one spanning tree Traffic from all VLANs is forwarded along the spanning tree and ports cannot be blocked on a per VLAN basis to prune loops PVST allows...

Page 104: ...better load sharing mechanism for redundant links MSTP provides the following features MSTP divides a switched network into multiple regions each of which contains multiple spanning trees that are in...

Page 105: ...d the network segments among them All these devices have the following characteristics A spanning tree protocol enabled Same region name MST region 1 MST region 2 MST region 3 MST region 4 VLAN 1 MSTI...

Page 106: ...to MSTI 2 Other VLANs to MSTI 0 MSTP achieves load balancing by means of the VLAN to instance mapping table CST The common spanning tree CST is a single spanning tree that connects all MST regions in...

Page 107: ...ectly connects to a host Figure 25 Port roles MSTP calculation involves the following port roles Root port Forwards data for a non root bridge to the root bridge The root bridge does not have any root...

Page 108: ...sively associated with a port role Table 8 lists the port states that each port role supports A check mark indicates that the port supports this state while a dash indicates that the port does not sup...

Page 109: ...iction TC BPDU transmission restriction Protocols and standards MSTP is documented in the following protocols and standards IEEE 802 1d Media Access Control MAC Bridges IEEE 802 1w Part 3 Media Access...

Page 110: ...member ports The spanning tree protocol enable state and forwarding state of each selected member port is consistent with those of the corresponding Layer 2 aggregate interface The member ports of an...

Page 111: ...Optional Configuring the port link type Optional Enabling outputting port state transition information Required Enabling the spanning tree feature Configuring the leaf nodes Required Setting the span...

Page 112: ...iguring the port link type Optional Enabling outputting port state transition information Required Enabling the spanning tree feature Configuring the leaf nodes Required Setting the spanning tree mode...

Page 113: ...ning tree feature Configuring the leaf nodes Required Setting the spanning tree mode Required Configuring an MST region Optional Configuring the device priority Optional Setting the timeout factor Opt...

Page 114: ...ype of a port On an access port the PVST mode is compatible with other spanning tree modes in all VLANs On a trunk port or hybrid port the PVST mode is compatible with other spanning tree modes only i...

Page 115: ...fault all VLANs in an MST region are mapped to the CIST or MSTI 0 5 Configure the MSTP revision level of the MST region revision level level The default setting is 0 6 Optional Display the MST region...

Page 116: ...function as the root bridge Configuring the current device as a secondary root bridge of a specific spanning tree Step Command Remarks 1 Enter system view system view N A 2 Configure the current devi...

Page 117: ...the MST region is limited Make this configuration only on the root bridge All other devices in the MST region use the maximum hop value set for the root bridge You can configure the maximum hops of a...

Page 118: ...no configuration BPDUs within the timeout period it recalculates the spanning tree The formula for calculating the timeout period is timeout period timeout factor 3 hello time Max age In the CIST of...

Page 119: ...forward delay timer In STP RSTP MSTP mode stp timer forward delay time In PVST mode stp vlan vlan id list timer forward delay time The default setting is 15 seconds 3 Set the hello timer In STP RSTP...

Page 120: ...w N A 2 Enter Layer 2 Ethernet or aggregate interface view interface interface type interface number N A 3 Configure the BPDU transmission rate of the ports stp transmit limit limit The default settin...

Page 121: ...The device supports the following standards dot1d 1998 The device calculates the default path cost for ports based on IEEE 802 1d 1998 dot1t The device calculates the default path cost for ports based...

Page 122: ...0 Mbps Single port 100 2000000 2000 Aggregate interface containing two Selected ports 1000000 1800 Aggregate interface containing three Selected ports 666666 1600 Aggregate interface containing four S...

Page 123: ...ports 500 1 Aggregate interface containing three Selected ports 333 1 Aggregate interface containing four Selected ports 250 1 40 Gbps Single port 1 500 1 Aggregate interface containing two Selected...

Page 124: ...Cost of every port will be reset and automatically re calculated after you change the current pathcost standard Continue Y N y Cost of every port has been re calculated Sysname interface ten gigabite...

Page 125: ...ly connects two devices If two root ports or designated ports are connected over a point to point link they can rapidly transit to the forwarding state after a proposal agreement handshake process Con...

Page 126: ...ort to send 802 1s MSTP packets shut down and then bring up the port When the number of existing MSTIs exceeds 48 the port can send only 802 1s MSTP packets To configure the MSTP packet format to be s...

Page 127: ...e spanning tree feature is disabled globally by default If the device starts up with the factory defaults the spanning tree feature is enabled globally by default For more information about the startu...

Page 128: ...A runs STP Device B does not run any spanning tree protocol and Device C runs RSTP PVST or MSTP In this case when Device C receives an STP BPDU transparently transmitted by Device B the receiving por...

Page 129: ...delines When you configure Digest Snooping follow these guidelines Before you enable Digest Snooping make sure associated devices of different vendors are connected and run spanning tree protocols Wit...

Page 130: ...g digest snooping By default Digest Snooping is disabled globally Digest Snooping configuration example Network requirements As shown in Figure 26 Device A and Device B connect to Device C which is a...

Page 131: ...the following types of messages are used for rapid state transition on designated ports Proposal Sent by designated ports to request rapid transition Agreement Used to acknowledge rapid transition re...

Page 132: ...ard delay To enable the designated port of the upstream device to transit its state rapidly enable No Agreement Check on the downstream device s port Configuration prerequisites Before you configure t...

Page 133: ...abitethernet 1 0 1 DeviceA Ten GigabitEthernet1 0 1 stp no agreement check Configuring TC Snooping As shown in Figure 30 Device A and Device B form an IRF fabric The spanning tree feature is disabled...

Page 134: ...g follow these restrictions and guidelines TC Snooping and the spanning tree feature are mutually exclusive You must globally disable the spanning tree feature before enabling TC Snooping TC Snooping...

Page 135: ...on a device with BPDU guard enabled the device performs the following actions Shuts down these ports Notifies the NMS that these ports have been shut down by the spanning tree protocol The device reac...

Page 136: ...ot protection By default root guard is disabled Enabling loop guard By continuing to receive BPDUs from the upstream device a device can maintain the state of the root port and blocked ports However l...

Page 137: ...Enable port role restriction stp role restriction By default port role restriction is disabled Configuring TC BPDU transmission restriction CAUTION Enabling TC BPDU transmission restriction on a port...

Page 138: ...DU guard is enabled H3C recommends not disabling this feature 3 Optional Configure the maximum number of forwarding address entry flushes that the device can perform every 10 seconds stp tc protection...

Page 139: ...p instance instance list vlan vlan id list interface interface list slot slot number brief Display the MST region configuration information that has taken effect display stp region configuration Displ...

Page 140: ...viceA mst region region name example Map VLAN 10 VLAN 30 and VLAN 40 to MSTI 1 MSTI 3 and MSTI 4 respectively DeviceA mst region instance 1 vlan 10 DeviceA mst region instance 3 vlan 30 DeviceA mst re...

Page 141: ...me example map VLAN 10 VLAN 30 and VLAN 40 to MSTI 1 MSTI 3 and MSTI 4 respectively DeviceC mst region instance 1 vlan 10 DeviceC mst region instance 3 vlan 30 DeviceC mst region instance 4 vlan 40 Co...

Page 142: ...NONE 3 Ten GigabitEthernet1 0 3 ROOT FORWARDING NONE Display brief spanning tree information on Device B DeviceB display stp brief MST ID Port Role STP State Protection 0 Ten GigabitEthernet1 0 1 DESI...

Page 143: ...Device A and Device B work at the distribution layer Device C and Device D work at the access layer Configure PVST to meet the following requirements Packets of a VLAN are forwarded along the spannin...

Page 144: ...the spanning tree feature globally and in VLAN 10 VLAN 20 and VLAN 30 DeviceA stp global enable DeviceA stp vlan 10 20 30 enable 3 Configure Device B Set the spanning tree mode to PVST DeviceB system...

Page 145: ...NONE 20 Ten GigabitEthernet1 0 2 DESI FORWARDING NONE 20 Ten GigabitEthernet1 0 3 DESI FORWARDING NONE 30 Ten GigabitEthernet1 0 2 DESI FORWARDING NONE 30 Ten GigabitEthernet1 0 3 ROOT FORWARDING NON...

Page 146: ...en GigabitEthernet1 0 2 ROOT FORWARDING NONE 20 Ten GigabitEthernet1 0 3 ALTE DISCARDING NONE 30 Ten GigabitEthernet1 0 1 ROOT FORWARDING NONE 30 Ten GigabitEthernet1 0 2 ALTE DISCARDING NONE 40 Ten G...

Page 147: ...at the port is on a looped link Loop detection usually works within a VLAN If a detection frame is returned with a VLAN tag different from the one it was sent out with an inter VLAN loop has occurred...

Page 148: ...nding port Optional Sub Slot ID Sub slot ID of the sending port Optional Loop detection uses the following important concepts Loop detection interval Loop detection is a continuous process as the netw...

Page 149: ...p Loop detection configuration task list Tasks at a glance Required Enabling loop detection Optional Configuring the loop protection action Optional Setting the loop detection interval Enabling loop d...

Page 150: ...w N A 2 Configure the global loop protection action loopback detection global action shutdown By default the switch generates a log but performs no action on the port on which a loop is detected Confi...

Page 151: ...detection speed when you set the loop detection interval To set the loop detection interval Step Command Remarks 1 Enter system view system view N A 2 Set the loop detection interval loopback detectio...

Page 152: ...e trunk DeviceA Ten GigabitEthernet1 0 1 port trunk permit vlan 100 DeviceA Ten GigabitEthernet1 0 1 quit DeviceA interface ten gigabitethernet 1 0 2 DeviceA Ten GigabitEthernet1 0 2 port link type tr...

Page 153: ...DeviceC Ten GigabitEthernet1 0 2 port link type trunk DeviceC Ten GigabitEthernet1 0 2 port trunk permit vlan 100 DeviceC Ten GigabitEthernet1 0 2 quit Verifying the configuration After the configura...

Page 154: ...Display the status of Ten GigabitEthernet 1 0 1 on Device A DeviceA display interface ten gigabitethernet 1 0 1 Ten GigabitEthernet1 0 1 current state DOWN Loop detection down Display the status of Te...

Page 155: ...mains as shown in Figure 38 Figure 38 A VLAN diagram A VLAN is logically divided on an organizational basis rather than on a physical basis For example you can assign all workstations and servers used...

Page 156: ...r configurable A network device handles an incoming frame depending on whether the frame is VLAN tagged and the value of the VLAN tag For more information see Introduction to port based VLAN Ethernet...

Page 157: ...Before you create a VLAN interface for a VLAN create the VLAN first You cannot create a VLAN interface for a sub VLAN For more information about sub VLANs see Configuring super VLANs You cannot create...

Page 158: ...vice that does not support VLAN packets or is used in scenarios that do not distinguish VLANs Trunk A trunk port can forward packets from multiple VLANs Except packets from the port VLAN ID PVID packe...

Page 159: ...if its VLAN is permitted on the port Drops the frame if its VLAN is not permitted on the port In the outbound direction Removes the VLAN tag and sends the frame Removes the tag and sends the frame if...

Page 160: ...stops applying the configuration to aggregation member ports The configuration made in S channel interface view or S channel aggregate interface view applies only to the interface For more information...

Page 161: ...S channel interface view or S channel aggregate interface view applies only to the interface For more information about S channel interfaces see EVB Configuration Guide 3 Configure the link type of t...

Page 162: ...nel aggregate interface view applies only to the interface For more information about S channel interfaces see EVB Configuration Guide 3 Configure the link type of the port as hybrid port link type hy...

Page 163: ...apply only to the port The configurations made in Layer 2 aggregate interface view apply to the aggregate interface and its aggregation member ports If the system fails to apply the configurations to...

Page 164: ...e protocol type and encapsulation format in the packet matches a protocol template the packet is tagged with the VLAN tag specific to the protocol template If no protocol template is matched the packe...

Page 165: ...is access 8 Associate the hybrid port with the specified protocol based VLAN port hybrid protocol vlan vlan vlan id protocol index to protocol end all By default a port is not associated with any pro...

Page 166: ...A vlan100 port ten gigabitethernet 1 0 1 DeviceA vlan100 quit Create VLAN 200 and assign port Ten GigabitEthernet 1 0 2 to VLAN 200 DeviceA vlan 200 DeviceA vlan200 port ten gigabitethernet 1 0 2 Devi...

Page 167: ...d Description VLAN 0100 Name VLAN 0100 Tagged ports Ten GigabitEthernet1 0 3 Untagged ports Ten GigabitEthernet1 0 1 DeviceA Ten GigabitEthernet1 0 3 display vlan 200 VLAN ID 200 VLAN type Static Rout...

Page 168: ...through DeviceC interface ten gigabitethernet 1 0 11 DeviceC Ten GigabitEthernet1 0 11 port link type hybrid DeviceC Ten GigabitEthernet1 0 11 port hybrid vlan 100 tagged DeviceC Ten GigabitEthernet1...

Page 169: ...index IP address Subnet mask 0 192 168 5 0 255 255 255 0 VLAN ID 200 Subnet index IP address Subnet mask 0 192 168 50 0 255 255 255 0 Display IP subnet based VLANs on Ten GigabitEthernet 1 0 1 Device...

Page 170: ...ol VLAN for IPv6 Assign Ten GigabitEthernet 1 0 12 to VLAN 200 Device vlan200 port ten gigabitethernet 1 0 12 Configure VLAN 200 as a protocol based VLAN and create an IPv6 protocol template with the...

Page 171: ...tEthernet 1 0 2 with the IPv4 and ARP protocol templates of VLAN 100 and the IPv6 protocol template of VLAN 200 The protocol indexes for IPv4 ARP and IPv6 protocol templates are 1 2 and 1 respectively...

Page 172: ...Interface Ten GigabitEthernet1 0 1 VLAN ID Protocol index Protocol type Status 100 1 IPv4 Active 100 2 Ethernet II Etype 0x0806 Active 200 1 IPv6 Active Interface Ten GigabitEthernet 1 0 2 VLAN ID Pro...

Page 173: ...or ND on the super VLAN interface as follows In an IPv4 network enable local proxy ARP on the super VLAN interface The super VLAN can then forward and process ARP requests and replies In an IPv6 netwo...

Page 174: ...em view N A 2 Create a VLAN interface and enter its view interface vlan interface vlan interface id The vlan interface id argument must be the super VLAN ID 3 Configure an IP address for the VLAN inte...

Page 175: ...rnet 1 0 1 and Ten GigabitEthernet 1 0 2 to VLAN 2 Ten GigabitEthernet 1 0 3 and Ten GigabitEthernet 1 0 4 to VLAN 3 and Ten GigabitEthernet 1 0 5 and Ten GigabitEthernet 1 0 6 to VLAN 5 The sub VLANs...

Page 176: ...t 1 0 6 Sysname vlan5 quit Configure VLAN 10 as a super VLAN and associate sub VLANs VLAN 2 VLAN 3 and VLAN 5 with the super VLAN Sysname vlan 10 Sysname vlan10 supervlan Sysname vlan10 subvlan 2 3 5...

Page 177: ...255 255 255 0 Description VLAN 0003 Name VLAN 0003 Tagged ports none Untagged ports Ten GigabitEthernet1 0 3 Ten GigabitEthernet1 0 4 VLAN ID 5 VLAN type static It is a sub VLAN Route interface Confi...

Page 178: ...in Figure 38 the private VLAN feature is enabled on Device B VLAN 10 is the primary VLAN VLAN 2 VLAN 5 and VLAN 8 are secondary VLANs associated with VLAN 10 and are invisible to Device A Figure 44 Pr...

Page 179: ...ines After you complete the private VLAN configurations perform the following tasks For a port operating in promiscuous mode make sure the following requirements are met The primary VLAN is the PVID o...

Page 180: ...in promiscuous mode in the specified VLAN port private vlan vlan id promiscuous Configure the uplink port to operate in trunk promiscuous mode in the specified VLANs port private vlan vlan id list tru...

Page 181: ...uit N A 19 Optional Configure Layer 3 communication between the specified secondary VLANs a Enter VLAN interface view of the primary VLAN interface interface vlan interface vlan id b Enable Layer 3 co...

Page 182: ...VLAN 2 contains member port Ten GigabitEthernet 1 0 2 and VLAN 3 contains member port Ten GigabitEthernet 1 0 1 On Device C VLAN 6 is a primary VLAN which contains uplink port Ten GigabitEthernet 1 0...

Page 183: ...2 quit Associate the secondary VLANs 2 and 3 with the primary VLAN 5 DeviceB vlan 5 DeviceB vlan5 private vlan secondary 2 to 3 DeviceB vlan5 quit 2 Configure Device C Configure VLAN 6 as a primary VL...

Page 184: ...e interface Not configured Description VLAN 0005 Name VLAN 0005 Tagged ports None Untagged ports Ten GigabitEthernet1 0 1 Ten GigabitEthernet1 0 2 Ten GigabitEthernet1 0 5 VLAN ID 2 VLAN type Static P...

Page 185: ...ry VLAN 5 On Device B the downlink port Ten GigabitEthernet 1 0 6 permits secondary VLAN 6 and the downlink port Ten GigabitEthernet 1 0 8 permits secondary VLAN 8 Secondary VLANs 6 and 8 are associat...

Page 186: ...et1 0 3 port private vlan host DeviceB Ten GigabitEthernet1 0 3 quit Associate the secondary VLANs 2 and 3 with the primary VLAN 5 DeviceB vlan 5 DeviceB vlan5 private vlan secondary 2 to 3 DeviceB vl...

Page 187: ...lan 5 Primary VLAN ID 5 Secondary VLAN ID 2 3 VLAN ID 5 VLAN type Static Private VLAN type Primary Route interface Not configured Description VLAN 0005 Name VLAN 0005 Tagged ports Ten GigabitEthernet1...

Page 188: ...and VLAN 21 to pass through tagged The downlink port Ten GigabitEthernet 1 0 1 permits VLAN 22 The downlink port Ten GigabitEthernet 1 0 3 permits VLAN 12 Secondary VLANs 1 1 and 12 are associated wit...

Page 189: ...it Assign the downlink port Ten GigabitEthernet 1 0 3 to VLAN 12 and configure the port to operate in host mode DeviceA interface ten gigabitethernet 1 0 3 DeviceA Ten GigabitEthernet1 0 3 port access...

Page 190: ...tagged DeviceC interface ten gigabitethernet 1 0 5 DeviceC Ten GigabitEthernet1 0 5 port link type hybrid DeviceC Ten GigabitEthernet1 0 5 port hybrid vlan 10 20 tagged DeviceC Ten GigabitEthernet1 0...

Page 191: ...erface Not configured Description VLAN 0020 Name VLAN 0020 Tagged ports Ten GigabitEthernet1 0 2 Ten GigabitEthernet1 0 5 Untagged ports Ten GigabitEthernet1 0 1 VLAN ID 21 VLAN type Static Private vl...

Page 192: ...VLANs to be isolated at Layer 2 but interoperable at Layer 3 Figure 48 Network diagram Configuration procedure Create VLAN 2 and VLAN 3 DeviceB system view DeviceB vlan 2 to 3 Configure VLAN 10 as a p...

Page 193: ...terface10 private vlan secondary 2 3 Assign the IP address 192 168 1 1 24 to VLAN interface 10 DeviceB Vlan interface10 ip address 192 168 1 1 255 255 255 0 Enable local proxy ARP DeviceB Vlan interfa...

Page 194: ...type Secondary Route interface Configured IPv4 address 192 168 1 1 IPv4 subnet mask 255 255 255 0 Description VLAN 0003 Name VLAN 0003 Tagged ports None Untagged ports Ten GigabitEthernet1 0 1 Ten Gi...

Page 195: ...ant Similarly a port that participates in an MVRP application is called an MVRP participant As shown in Figure 49 an MRP participant registers and deregisters its attribute values on other MRP partici...

Page 196: ...to the peer participant to declare the topology change Upon receiving a New message from the peer participant an MRP participant registers the attributes in the message and propagates the New message...

Page 197: ...eregistration of attributes Upon receiving a Leave message MRP starts the Leave timer If it receives a Join message for the attributes in the Leave message before the Leave timer expires MRP does not...

Page 198: ...restrictions and guidelines When you configure MVRP follow these restrictions and guidelines MVRP can work with STP RSTP or MSTP but not other link layer topology protocols that include service loopb...

Page 199: ...ort and globally 3 Enter Layer 2 Ethernet interface view or Layer 2 aggregate interface view interface interface type interface number N A 4 Configure the port as a trunk port port link type trunk By...

Page 200: ...view interface interface type interface number N A 3 Configure the LeaveAll timer mrp timer leaveall timer value Optional The default setting is 1000 centiseconds 4 Configure the Join timer mrp timer...

Page 201: ...h GVRP compatibility enabled works with MSTP the network might operate incorrectly Disable the Period timer when you enable GVRP compatibility for MVRP Otherwise the VLAN status might frequently chang...

Page 202: ...A Device B Device C and Device D can register and deregister dynamic VLANs and keep identical VLAN configuration for each MSTI When the network is stable set the MVRP registration mode to fixed on the...

Page 203: ...eA Ten GigabitEthernet1 0 1 mvrp enable DeviceA Ten GigabitEthernet1 0 1 quit Configure port Ten GigabitEthernet 1 0 2 as a trunk port and configure it to permit VLAN 40 DeviceA interface ten gigabite...

Page 204: ...able DeviceB Ten GigabitEthernet1 0 1 quit Configure port Ten GigabitEthernet 1 0 2 as a trunk port and configure it to permit all VLANs DeviceB interface ten gigabitethernet 1 0 2 DeviceB Ten Gigabit...

Page 205: ...net1 0 1 mvrp enable DeviceC Ten GigabitEthernet1 0 1 quit Configure port Ten GigabitEthernet 1 0 2 as a trunk port and configure it to permit all VLANs DeviceC interface ten gigabitethernet 1 0 2 Dev...

Page 206: ...net 1 0 2 DeviceD Ten GigabitEthernet1 0 2 mvrp enable DeviceD Ten GigabitEthernet1 0 2 quit Verifying the configuration 1 Verify the normal registration mode configuration Use the display mvrp runnin...

Page 207: ...tEthernet 1 0 1 has registered VLAN 1 declared VLAN 1 VLAN 10 and VLAN 20 and propagated VLAN 1 through MVRP Port Ten GigabitEthernet 1 0 2 has declared VLAN 1 and registered and propagated no VLANs P...

Page 208: ...mer 1000 centiseconds Registration Type Normal Registered VLANs 1 default 10 Declared VLANs 20 Propagated VLANs 10 The output shows that the following events have occurred Port Ten GigabitEthernet 1 0...

Page 209: ...d VLANs 1 default 20 The output shows that the following events have occurred Port Ten GigabitEthernet 1 0 1 has registered VLAN 1 VLAN 10 and VLAN 20 declared VLAN 1 and propagated VLAN 1 and VLAN 10...

Page 210: ...e and verify the configuration Set the MVRP registration mode to fixed on Ten GigabitEthernet 1 0 3 of Device B so that the dynamic VLANs that Device B has registered will not be deregistered Set the...

Page 211: ...tus interface ten gigabitethernet 1 0 3 MVRP Global Info Global Status Enabled Compliance GVRP False Ten GigabitEthernet1 0 3 Config Status Enabled Running Status Enabled Join Timer 20 centiseconds Le...

Page 212: ...rs to keep their VLAN assignment schemes unchanged when the service provider changes its VLAN assignment scheme Allows different customers to use overlapping CVLAN IDs Devices in the service provider...

Page 213: ...he frame does not have any 802 1Q tag it becomes a frame tagged with the PVID QinQ provides the most basic VLAN manipulation method which tags all incoming frames tagged or untagged with the PVID tag...

Page 214: ...de ports of PEs A QinQ enabled port tags an incoming frame with its PVID To enable QinQ Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Ethernet interface view or Layer 2 aggr...

Page 215: ...ID setting is the same across all devices so 802 1Q tagged frames can be identified correctly TPID settings include CVLAN TPID and SVLAN TPID A QinQ enabled port uses the CLAN TPID to match incoming t...

Page 216: ...not configure both features on a port To configure the SVLAN TPID on a service provider side port Step Command Remarks 1 Enter system view system view N A 2 Enter Ethernet interface view or aggregate...

Page 217: ...t Match 802 1p priority if match customer dot1p dot1p value 1 8 Use either command 4 Return to system view quit N A 5 Create a traffic behavior and enter traffic behavior view traffic behavior behavio...

Page 218: ...ning QinQ Execute the display command in any view Task Command Display QinQ enabled ports display qinq interface interface type interface number QinQ configuration example Network requirements As show...

Page 219: ...igure the port as a trunk port and assign it to VLANs 100 and 200 PE1 interface ten gigabitethernet 1 0 2 PE1 Ten GigabitEthernet1 0 2 port link type trunk PE1 Ten GigabitEthernet1 0 2 port trunk perm...

Page 220: ...ssign it to VLANs 100 and 200 PE2 interface ten gigabitethernet 1 0 2 PE2 Ten GigabitEthernet1 0 2 port link type trunk PE2 Ten GigabitEthernet1 0 2 port trunk permit vlan 100 200 Set the TPID value i...

Page 221: ...edure Configuring PE 1 1 Configure Ten GigabitEthernet 1 0 1 Configure the port as a trunk port and assign it to VLANs 10 through 50 100 and 3000 PE1 system view PE1 interface ten gigabitethernet 1 0...

Page 222: ...N 100 as the PVID of the port PE1 Ten GigabitEthernet1 0 1 port trunk pvid vlan 100 Enable QinQ on the port PE2 Ten GigabitEthernet1 0 1 qinq enable Configure the port to transparently transmit frames...

Page 223: ...multiple VLAN tags with the same VLAN tag One to two VLAN mapping Tags single tagged packets with an outer VLAN tag Two to two VLAN mapping Replaces the SVLAN ID CVLAN ID or both IDs for an incoming...

Page 224: ...stomer configure one to one VLAN mapping on the wiring closet switches This feature assigns a separate VLAN to each type of traffic from each customer The required total number of VLANs in the network...

Page 225: ...es SVLAN tag 10 with SVLAN tag 20 Replaces CVLAN tag 2 with CVLAN tag 3 One to two VLAN mapping provides the following benefits Enables a VPN user to plan the VLAN IDs in the network without conflicti...

Page 226: ...apping In Figure 59 many to one VLAN mapping is implemented on both the customer side and network side ports as follows For the uplink traffic the customer side many to one VLAN mapping replaces multi...

Page 227: ...emove the SVLAN tag from the downlink traffic Configure the customer side port as a hybrid port and assign the port to the SVLAN as an untagged member Configure the customer side port as a trunk port...

Page 228: ...one to one or many to one VLAN mapping the switch tags the packet with the PVID For more information about QinQ see Configuring QinQ To add or replace VLAN tags for packets you can configure both VLAN...

Page 229: ...ifferent homes Before configuring one to one VLAN mapping create the original VLAN and the translated VLAN To configure one to one VLAN mapping Step Command Remarks 1 Enter system view system view N A...

Page 230: ...ng from the service provider network to the customer network do not configure many to one VLAN mapping together with uRPF For more information about uRPF see Security Configuration Guide Customer side...

Page 231: ...anslated VLANs port trunk permit vlan vlan id list port hybrid vlan vlan id list tagged By default A trunk port allows only packets from VLAN 1 to pass through A hybrid port is an untagged member of t...

Page 232: ...any to one mapping to replace the VLAN tags of the packets destinated to the user network vlan mapping nni By default the port does not replace the VLAN tags of the packets destinated to the user netw...

Page 233: ...Enabling ARP detection 2 Required Configuring the customer side port 3 Required Configuring the network side port Enabling ARP snooping Enable ARP snooping for all involved VLANs including the origin...

Page 234: ...N A 3 Set the link type of the port Configure the port as a trunk port port link type trunk Configure the port as a hybrid port port link type hybrid By default the link type of a port is access 4 Ass...

Page 235: ...port is an untagged member of the VLAN to which the port belongs when its link type is access 5 Assign the port to the SVLANs as an untagged member port hybrid vlan vlan id list untagged By default a...

Page 236: ...rt trunk permit vlan vlan id list port hybrid vlan vlan id list tagged By default A trunk port allows only packets from VLAN 1 to pass through A hybrid port is an untagged member of the VLAN to which...

Page 237: ...each type of traffic from each household To save VLAN resources configure many to one VLAN mappings on the campus switch Switch C to transmit the same type of traffic from different households in one...

Page 238: ...3 Create the translated VLANs SwitchA vlan 101 to 102 SwitchA vlan 201 to 202 SwitchA vlan 301 to 302 Configure the customer side port Ten GigabitEthernet 1 0 1 as a trunk port and assign the port to...

Page 239: ...02 SwitchA Ten GigabitEthernet1 0 2 vlan mapping 3 translated vlan 302 SwitchA Ten GigabitEthernet1 0 2 quit Configure the network side port Ten GigabitEthernet 1 0 3 as a trunk port and assign the po...

Page 240: ...rnet1 0 1 vlan mapping uni range 201 to 202 translated vlan 502 SwitchC Ten GigabitEthernet1 0 1 vlan mapping uni range 301 to 302 translated vlan 503 Enable DHCP snooping entry recording on Ten Gigab...

Page 241: ...a trunk port and assign the port to the translated VLANs 501 through 503 SwitchD interface ten gigabitethernet 1 0 1 SwitchD Ten GigabitEthernet1 0 1 port link type trunk SwitchD Ten GigabitEthernet1...

Page 242: ...ffic from VLAN 5 PE1 system view PE1 interface ten gigabitethernet 1 0 1 PE1 Ten GigabitEthernet1 0 1 vlan mapping nest single 5 nested vlan 100 Configure Ten GigabitEthernet 1 0 1 as a hybrid port As...

Page 243: ...5 to SVLAN 200 and CVLAN PE3 Ten GigabitEthernet1 0 1 vlan mapping tunnel 100 5 translated vlan 200 6 PE3 Ten GigabitEthernet1 0 1 quit Configure Ten GigabitEthernet 1 0 2 as a trunk port and assign t...

Page 244: ...1 0 1 Outer VLAN Inner VLAN Translated Outer VLAN Translated Inner VLAN 5 N A 100 5 Verify the VLAN mappings on PE 3 PE3 display vlan mapping Interface Ten GigabitEthernet1 0 1 Outer VLAN Inner VLAN T...

Page 245: ...es backbone edge bridges and backbone core bridges Backbone edge bridges connect customer sites or provider bridge networks to the PBB network They encapsulate the customer MAC in the service provider...

Page 246: ...ss BEB encapsulates them in MAC in MAC format In the outer frame header the source MAC address is a B MAC of the ingress BEB and the destination MAC is a B MAC of the egress BEB All devices in the PBB...

Page 247: ...y information of the frame within the PBBN The TPID in a B Tag is 0x8100 I Tag Backbone service instance tag Service identifier of a PBB frame The I Tag contains the following fields TPID The TPID in...

Page 248: ...rt to the customer network Protocols and standards IEEE 802 1ah Virtual Bridged Local Area Networks Amendment 7 Provider Backbone Bridges Feature and hardware compatibility PBB is not available on S58...

Page 249: ...an configure one PBB I SID and one SPB I SID for a VSI but the two I SIDs cannot be the same For more information about SPB see SPB Configuration Guide To create a PBB VSI Step Command Remarks 1 Enter...

Page 250: ...VSI specify a PBB I SID for the PBB VSI and enter PBB VSI view pbb i sid i sid N A 4 Specify a B VLAN for the PBB VSI bvlan vlan id By default no B VLAN is specified for a PBB VSI Configuring an uplin...

Page 251: ...d By default no service instances exist on a port For the service instance to operate correctly do not execute this command on an EVB enabled interface For information about EVB see EVB Configuration...

Page 252: ...Ns 100 through 120 Device A and Device B send tagged frames to the BEBs Configure PBB on the BEBs to extend the VLANs across the two customer networks Figure 67 Network diagram Configuration procedure...

Page 253: ...nce 1 on Ten GigabitEthernet 1 0 2 BEB1 Ten GigabitEthernet1 0 2 service instance 1 Configure the service instance to match all 802 1q tagged frames Associate the service instance with the PBB VSI and...

Page 254: ...the undo shutdown command to bring the VSI up For more information about the display l2vpn vsi verbose command see MPLS Command Reference 2 Use the display l2vpn vsi verbose command to verify that th...

Page 255: ...ore information about MIBs see Network Management and Monitoring Configuration Guide LLDP enables a network management system to quickly detect and identify Layer 2 network topology changes Basic conc...

Page 256: ...The destination MAC address is fixed to one of the following multicast MAC addresses 0x0180 C200 000E for LLDP frames destined for nearest bridge agents 0x0180 C200 0000 for LLDP frames destined for...

Page 257: ...sed to determine the validity of the received Ethernet frame LLDPDUs LLDP uses LLDPDUs to exchange information An LLDPDU includes multiple TLVs Each TLV carries a type of device information as shown i...

Page 258: ...ending device System Capabilities Identifies the primary functions of the sending device and the enabled primary functions Management Address Specifies the following elements The management address of...

Page 259: ...nabled Whether pair selection can be controlled Maximum Frame Size Indicates the supported maximum frame size It is now the MTU of the port Power Stateful Control Indicates the power state control con...

Page 260: ...n the context of location based applications NOTE If the MAC PHY configuration status TLV is not advertisable none of the LLDP MED TLVs will be advertised even if they are advertisable If the LLDP MED...

Page 261: ...f TLVs carried in every received LLDP frame If the TLVs are valid the LLDP agent saves the information and starts an aging timer When the TTL value in the Time To Live TLV carried in the LLDP frame be...

Page 262: ...le LLDP Step Command Remarks 1 Enter system view system view N A 2 Enable LLDP globally lldp global enable By default If the switch starts up with empty configuration LLDP is disabled globally initial...

Page 263: ...ting the LLDP operating mode Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Layer 3 Ethernet interface view management Ethernet interface view or Layer 2 Layer 3 aggregate in...

Page 264: ...ges When the device detects a configuration change it sends LLDP frames to inform neighboring devices of the change To enable LLDP polling Step Command Remarks 1 Enter system view system view N A 2 En...

Page 265: ...ridge agents can advertise all types of LLDP TLVs except the DCBX TLV location identification TLV port and protocol VLAN ID TLVs VLAN name TLVs and management VLAN ID TLVs Nearest non TPMR bridge agen...

Page 266: ...tisable TLVs in Layer 3 aggregate interface view lldp agent nearest nontpmr nearest customer tlv enable basic tlv all management address tlv ip address port description system capability system descri...

Page 267: ...t address format string In Layer 2 Layer 3 aggregate interface view lldp agent nearest customer nearest nontpmr management address format string By default the encoding format of the management addres...

Page 268: ...to process LLDP frames To communicate stably with a neighboring device running LLDP of earlier versions the local device must be configured with the same encapsulation format To set the encapsulation...

Page 269: ...ence Configuration prerequisites Before you configure CDP compatibility complete the following tasks Globally enable LLDP Enable LLDP on the port connecting to a device supporting CDP Configure LLDP t...

Page 270: ...sion Selection for Bandwidth Sharing Between Traffic Classes DCBX offers the following functions Discovers the peer devices capabilities and determines whether devices at both ends support these capab...

Page 271: ...Configuring the DCBX version Enabling LLDP and DCBX TLV advertising To enable the device to advertise APP ETS and PFC data through an interface perform the following tasks Enable LLDP globally Enable...

Page 272: ...the 802 1p priority 3 Configuration restrictions and guidelines When you configure APP parameters follow these restrictions and guidelines An Ethernet frame header ACL identifies application protocol...

Page 273: ...reate rules according to the type of the ACL previously created 4 Return to system view quit N A 5 Create a class specify the operator of the class as OR and enter class view traffic classifier classi...

Page 274: ...performs the following tasks Uses ETS parameters to negotiate with the server adapter Controls the server adapter s transmission speed of a type of traffic Guarantees that the transmission speed is w...

Page 275: ...st one command For more information about the qos wrr qos wrr byte count and qos wrr group sp commands see ACL and QoS Command Reference Configuring PFC parameters To prevent packets with an 802 1p pr...

Page 276: ...the peer device supports autonegotiation and also uses the standard version as the initial version for negotiation the standard version will be the negotiated result If the peer device supports auton...

Page 277: ...em view system view N A 2 Enter Layer 2 Layer 3 Ethernet interface view management Ethernet interface view or Layer 2 Layer 3 aggregate interface view interface interface type interface number N A 3 E...

Page 278: ...lldp status interface interface type interface number agent nearest bridge nearest customer nearest nontpmr Display types of advertisable optional LLDP TLVs display lldp tlv config interface interface...

Page 279: ...e ten gigabitethernet 1 0 1 SwitchB Ten GigabitEthernet1 0 1 lldp enable Set the LLDP operating mode to Tx on Ten GigabitEthernet 1 0 1 SwitchB Ten GigabitEthernet1 0 1 lldp admin status tx SwitchB Te...

Page 280: ...wn TLV 0 LLDP status information of port 2 Ten GigabitEthernet1 0 2 LLDP agent nearest bridge Port status of LLDP Enable Admin status RX_Only Trap flag No MED trap flag No Polling interval 0s Number o...

Page 281: ...0 hours 5 minutes 20 seconds Transmit interval 30s Fast transmit interval 1s Transmit credit max 5 Hold multiplier 4 Reinit delay 2s Trap interval 30s Fast start times 4 LLDP status information of por...

Page 282: ...r of CDP neighbors 0 Number of sent optional TLV 1 Number of received unknown TLV 0 LLDP agent nearest customer Port status of LLDP Enable Admin status Disable Trap flag No MED trap flag No Polling in...

Page 283: ...thernetframe 4000 rule permit type 8906 ffff SwitchA acl ethernetframe 4000 rule permit type 8914 ffff SwitchA acl ethernetframe 4000 quit Create a class named app_c specify the operator of the class...

Page 284: ...P queuing SwitchA Ten GigabitEthernet1 0 1 qos wrr byte count SwitchA Ten GigabitEthernet1 0 1 qos wrr 3 group sp 5 Configure PFC Enable PFC in auto mode on interface Ten GigabitEthernet 1 0 1 SwitchA...

Page 285: ...fic Classes Supported 8 DCBX Parameter Information Parameter Type Remote Pad Byte Present Yes DCBX Parameter Valid Yes Reserved 0 DCBX Parameter Data Priority Group ID of Priority 1 0 Priority Group I...

Page 286: ...p 1 Percentage 50 Priority Group 2 Percentage 0 Priority Group 3 Percentage 0 Priority Group 4 Percentage 0 Priority Group 5 Percentage 0 Priority Group 6 Percentage 0 Priority Group 7 Percentage 0 Nu...

Page 287: ...4 No PFC Enabled on Priority 5 No PFC Enabled on Priority 6 No PFC Enabled on Priority 7 No Number of Traffic Classes Supported 6 DCBX Parameter Information Parameter Type Local Pad Byte Present No DC...

Page 288: ...t is removed when it is assigned to a service loopback group The ports support the service type of the service loopback group and are not members of any other service loopback group You cannot change...

Page 289: ...nel DeviceA system view DeviceA service loopback group 1 type tunnel Assign Ten GigabitEthernet 1 0 1 through Ten GigabitEthernet 1 0 3 to service loopback group 1 DeviceA interface ten gigabitetherne...

Page 290: ...ion time of a frame within the device and enhances forwarding performance To configure cut through forwarding Step Command Remarks 1 Enter system view system view N A 2 Enable cut through forwarding c...

Page 291: ...dvertising LLDP advertisable TLV 247 LLDP DCBX TLV advertisement 254 aggregating link See Ethernet link aggregation aging MAC address table timer 28 spanning tree max age timer 101 algorithm STP calcu...

Page 292: ...oot bridge 90 MST regional root 89 spanning tree loop guard 1 19 spanning tree root guard 1 18 STP designated bridge 79 STP root bridge 79 bridging PBB network model 228 spanning tree root bridge 98 s...

Page 293: ...regate interface MTU 55 Layer 3 edge aggregate interface 73 Layer 3 Ethernet interface 15 Layer 3 Ethernet link aggregation dynamic 71 Layer 3 Ethernet link aggregation static 70 Layer 3 Ethernet link...

Page 294: ...ping 206 219 VLAN mapping many to one 213 219 VLAN mapping many to one dynamic IP address assignment 213 VLAN mapping many to one static IP address assignment 215 VLAN mapping one to one 212 219 VLAN...

Page 295: ...dynamic IP address assignment 213 Digest Snooping spanning tree 1 12 1 13 disabling MAC address learning 27 discarding MST discarding port state 91 displaying bulk interface configuration 21 Ethernet...

Page 296: ...ulation format 251 VLAN frame encapsulation 138 Energy Efficient Ethernet See see EEE energy saving functions 8 entry ARP fast update enabling for MAC address move 34 Ethernet interface See Ethernet i...

Page 297: ...on 57 group configuration 50 group configuration dynamic 52 group configuration static 51 group load sharing mode 59 interface configuration expected bandwidth 56 LACP 46 Layer 2 aggregate interface i...

Page 298: ...encapsulation 138 full duplex mode Ethernet interface 3 G GARP VLAN Registration Protocol Use GVRP generic flow control Ethernet interface 6 Generic VLAN Registration Protocol Use GVRP group Ethernet...

Page 299: ...basic concepts 42 Ethernet link aggregation configuration 42 49 63 Ethernet link aggregation dynamic mode 45 Ethernet link aggregation group dynamic 52 Ethernet link aggregation group configuration 50...

Page 300: ...nfiguration 147 147 152 QinQ configuration 195 201 QinQ VLAN transparent transmission configuration 204 super VLAN configuration 156 156 158 super VLAN sub VLAN configuration 156 VLAN basic configurat...

Page 301: ...configuration 78 92 spanning tree hello time 101 spanning tree port link type configuration 108 LLDP 802 1p to local priority mapping 257 advertisable TLV configuration 247 agent 238 APP parameter co...

Page 302: ...configuration 126 spanning tree configuration 78 92 spanning tree loop guard 1 19 loop detection configuration 130 132 134 displaying 134 enable 132 enable global 132 enable port specific 132 interval...

Page 303: ...ess assignment 217 mapping many to one VLAN mapping 206 MSTP VLAN to instance mapping table 89 one to one VLAN mapping 206 one to two VLAN mapping 208 two to two VLAN mapping 208 master port MST 90 ma...

Page 304: ...ree port mode configuration 109 VLAN to instance mapping table 89 MTU Layer 3 Ethernet aggregate interface 55 Layer 3 Ethernet interface MTU setting 15 multiple registration protocol Use MRP VLAN regi...

Page 305: ...nfiguration 18 port isolation group assignment multiple 75 port based VLAN access port assignment 142 port based VLAN access port assignment in interface view 142 port based VLAN access port assignmen...

Page 306: ...ce configuration 15 Layer 3 Ethernet link aggregation dynamic 71 Layer 3 Ethernet link aggregation static 70 LLDP basic concepts 238 LLDP basic configuration 261 LLDP basics configuration 245 LLDP con...

Page 307: ...VLAN mapping configuration two to two 218 225 parameter LLDP APP configuration 255 LLDP ETS configuration 257 LLDP PFC configuration 258 parameter timeout factor 102 PBB B VLAN configuration 233 conf...

Page 308: ...gregation group static 51 Layer 2 Ethernet link aggregation load sharing 66 Layer 3 aggregate interface configuration MTU 55 Layer 3 edge aggregate interface 73 Layer 3 Ethernet link aggregation dynam...

Page 309: ...face energy saving functions 8 priority 802 1p to local priority mapping 257 Ethernet link aggregation LACP 46 LLDP PFC 802 1p priority 258 MAC address table learning priority 30 QinQ SVLAN tag 802 1p...

Page 310: ...sion 1 1 configuring Layer 2 Ethernet link aggregation dynamic 64 configuring Layer 2 Ethernet link aggregation static 63 configuring Layer 2 Ethernet link aggregation group dynamic 52 configuring Lay...

Page 311: ...anning tree Digest Snooping 1 12 1 13 configuring spanning tree edge port 103 configuring spanning tree No Agreement Check 1 14 1 16 configuring spanning tree port link type 108 configuring spanning t...

Page 312: ...lobal 132 enabling loop detection port specific 132 enabling MAC address move notification 32 33 enabling MAC address synchronization globally 31 enabling MAC Information 38 enabling MVRP 182 enabling...

Page 313: ...ards Ethernet link aggregation protocol configuration 43 LAN switching PBB 231 LLDP 244 MSTP 92 MVRP 181 QinQ 196 STP protocol packets 78 VLAN 139 provider backbone bridge Use PBB backbone bridge netw...

Page 314: ...bridge device 99 STP algorithm calculation 80 STP root bridge 79 STP root port 79 routing IP subnet based VLAN configuration 145 146 150 protocol based VLAN configuration 147 147 152 RSTP 78 See also...

Page 315: ...transmission restriction 120 timeout factor configuration 102 timer configuration 101 specifying Layer 2 aggregate interface ignored VLAN 55 spanning tree port path cost calculation standard 104 spli...

Page 316: ...ree switched network diameter 100 super VLAN configuration 156 156 158 super VLAN sub VLAN configuration 156 VLAN basic configuration 139 VLAN configuration 138 VLAN interface basic configuration 140...

Page 317: ...ed VLAN assignment 143 two to two VLAN mapping application scenario 208 configuration 218 225 implementation 208 210 U unicast MAC address table configuration 22 23 36 MAC address table multiport unic...

Page 318: ...nt 214 many to one customer side port configuration static IP address assignment 216 many to one implementation 208 209 many to one network side port configuration dynamic IP address assignment 214 ma...

Reviews:

No comments

Related manuals for S5830V2 series

Brand: i3 International Pages: 2

LINK 14201-20 - DATASHEET FOR TOSHIBA PHONES

Brand: Jabra Pages: 4

Brand: Belkin Pages: 12

Brand: LIVOLO Pages: 14

Brand: netvox Pages: 14

Brand: Kramer Pages: 2

StorageWorks SAN Switch Integrated/32

Brand: Compaq Pages: 104

Crocodile Tail Loop

Brand: One Control Pages: 9

Brand: Minicom Pages: 16

Brand: Pilz Pages: 20

Brand: Larson Electronics Pages: 2

ControlZAPP CZ CESR 10VDC

Brand: DANLERS Pages: 2

Brand: rako Pages: 5

Brand: Airlinkplus Pages: 2

Brand: Alloy Pages: 64

Brand: EnGenius Pages: 72

Stackable MiniHub Le2801a

Brand: Black Box Pages: 2

Brand: Presentation Switchers Pages: 18

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands