manualshive.com logo in svg

Huawei S5700 Series, Configuration Manual - Network Management

The Huawei S5700 Series is a versatile networking product designed for enhanced performance and reliability. Our hardware description manual provides detailed information on its features and capabilities. Download this user manual for free from manualshive.com, and gain a comprehensive understanding of this exceptional product.

Share
Download
background image

 eth-trunk 1
#
interface GigabitEthernet0/0/3
 eth-trunk 1
#
 lldp management-address  10.10.10.2
#
return

Quidway S5700 Series Ethernet Switches
Configuration Guide - Network Management

2 LLDP Configuration

Issue 01 (2011-10-26)

Huawei Proprietary and Confidential

Copyright © Huawei Technologies Co., Ltd.

78

Summary of Contents for S5700 Series

Page 1: ...Quidway S5700 Series Ethernet Switches V100R006C01 Configuration Guide Network Management Issue 01 Date 2011 10 26 HUAWEI TECHNOLOGIES CO LTD ...

Page 2: ...be within the purchase scope or the usage scope Unless otherwise specified in the contract all statements information and recommendations in this document are provided AS IS without warranties guarantees or representations of any kind either express or implied The information in this document is subject to change without notice Every effort has been made in the preparation of this document to ensu...

Page 3: ...ANGER Indicates a hazard with a high level of risk which if not avoided will result in death or serious injury WARNING Indicates a hazard with a medium or low level of risk which if not avoided could result in minor or moderate injury CAUTION Indicates a potentially hazardous situation which if not avoided could result in equipment damage data loss performance degradation or unexpected results TIP...

Page 4: ...n braces and separated by vertical bars A minimum of one item or a maximum of all items can be selected x y Optional items are grouped in brackets and separated by vertical bars Several items or no item can be selected 1 n The parameter before the sign can be repeated 1 to n times A line starting with the sign is comments Change History Updates between document issues are cumulative Therefore the ...

Page 5: ...21 1 3 5 Optional Configuring the Trap Function 21 1 3 6 Optional Configuring the Constant Interface Index Feature 24 1 3 7 Checking the Configuration 25 1 4 Configuring a Device to Communicate with an NM Station by Running SNMPv3 25 1 4 1 Establishing the Configuration Task 26 1 4 2 Configuring Basic SNMPv3 Functions 27 1 4 3 Optional Controlling the NM Station s Access to the Device 30 1 4 4 Opt...

Page 6: ...ation 79 3 1 Introduction to HGMP 80 3 2 HGMP Features Supported by the S5700 82 3 3 Configuring Basic HGMP Functions 86 3 3 1 Establishing the Configuration Task 86 3 3 2 Configuring NDP 86 3 3 3 Configuring NTDP 88 3 3 4 Creating a Cluster 89 3 3 5 Adding a Member Switch 92 3 3 6 Optional Deleting or Quitting a Cluster 93 3 3 7 Optional Deleting a Member Switch 94 3 3 8 Checking the Configuratio...

Page 7: ...guring the Unicast Server Client Mode 215 4 3 4 Configuring the Peer Mode 216 4 3 5 Configuring the Broadcast Mode 217 4 3 6 Configuring the Multicast Mode 218 4 3 7 Disabling the Interface From Receiving NTP Packets 219 4 3 8 Optional Setting the Maximum Number of Dynamic NTP Sessions 220 4 3 9 Checking the Configuration 220 4 4 Configuring NTP Security Mechanisms 221 4 4 1 Establishing the Confi...

Page 8: ... 6 7 Configuring the FTP Upload Test 265 6 7 1 Establishing the Configuration Task 265 6 7 2 Configuring the FTP Upload Test Parameters 266 6 7 3 Checking the Configuration 268 6 8 Configuring the HTTP Test 269 6 8 1 Establishing the Configuration Task 269 6 8 2 Configuring HTTP Test Parameters 270 6 8 3 Checking the Configuration 271 6 9 Configuring the DNS Test 272 6 9 1 Establishing the Configu...

Page 9: ... 6 17 1 Establishing the Configuration Task 299 6 17 2 Configuring the LSP Trace Parameters for the LDP Tunnel 300 6 17 3 Checking the Configuration 301 6 18 Configuring an ICMP Jitter Test 302 6 18 1 Establishing the Configuration Task 302 6 18 2 Configuring Parameters for the ICMP Jitter Test 303 6 18 3 Checking the Configuration 305 6 19 Configuring the PWE3 Ping Test to Check the One Hop PW 30...

Page 10: ... Configuration Examples 334 6 27 1 Example for Configuring the ICMP Test 334 6 27 2 Example for Configuring the FTP Download Test 336 6 27 3 Example for Configuring the FTP Upload Test 338 6 27 4 Example for Configuring the HTTP Test 341 6 27 5 Example for Configuring the DNS Test 343 6 27 6 Example for Configuring the Traceroute Test 344 6 27 7 Example for Configuring the SNMP Query Test 347 6 27...

Page 11: ... 3 4 Configuring the HistoryControlTable 395 7 3 5 Configuring the EventTable 396 7 3 6 Configuring the AlarmTable 397 7 3 7 Configuring the PrialarmTable 397 7 3 8 Checking the Configuration 398 7 4 Maintaining RMON 400 7 5 Configuration Examples 400 7 5 1 Examples for Configuring RMON 400 Quidway S5700 Series Ethernet Switches Configuration Guide Network Management Contents Issue 01 2011 10 26 H...

Page 12: ... Station by Running SNMPv2c After SNMPv2c is configured a managed device and an NM station can run SNMPv2c to communicate with each other To ensure normal communication you need to configure both sides This section describes only the configurations on a managed device the agent side For details about configurations on an NM station see the pertaining NM station operation guide 1 4 Configuring a De...

Page 13: ...nagement operations that can be performed by the NM station and allows devices to notify the NM station of device faults by sending alarms An SNMP managed network consists of three components NM station agent and managed device The NM station uses the MIB to identify and manage device objects The operations used for device management include GetRequest GetNextRequest GetResponse GetBulk SetRequest...

Page 14: ...f numbers 1 2 1 1 Such a number string is called an Object Identifier OID A MIB tree is used to describe the hierarchy of data in a MIB that collects the definitions of variables on the managed devices A user can use a standard MIB or define a MIB based on certain standards Using a standard MIB can reduce the costs on proxy deployment and therefore reduce the costs on the entire network management...

Page 15: ...ions SetRequest Sets the value of a variable The NM station sends the request to a managed device to adjust the status of an object on the device Trap Reports an event to the NM station 1 1 2 SNMP Features Supported by the S5700 This section compares SNMP versions in terms of their support for features and usage scenarios to provide a reference for your SNMP version selection during network deploy...

Page 16: ...tly they help an administrator in device management Trap Traps are sent from managed devices to the NM station These traps allow an administrator to discover device faults immediately The managed devices do not require the acknowledgement from the NM station after sending traps Inform Informs are sent from managed devices to the NM station The managed devices require the acknowledgement from the N...

Page 17: ...n modes are as follows Authentication mode l MD5 l SHA Encryption mode DES56 Error code 6 error codes supported 16 error codes supported 16 error codes supported Trap Supported Supported Supported Inform Not supported Supported Not supported GetBulk Not supported Supported Supported Table 1 4 Usage scenarios of different SNMP versions Version Usage Scenario SNMPv1 This version is applicable to sma...

Page 18: ...Pv1 to communicate with each other To ensure normal communication you need to configure both sides This section describes only the configurations on a managed device the agent side For details about configurations on an NM station see the pertaining NM station operation guide The NM station manages a device in the following manners l Sends requests to the managed device to perform the GetRequest G...

Page 19: ... destination address of alarm messages administrator s contact information and location and SNMP packet size 2 Optional ACL number IP address of the NM station and MIB object 3 Optional Name of the alarm sending module source address of trap messages queue length for trap messages and lifetime of trap messages 4 Optional Number of interfaces indexed by fixed numbers 1 2 2 Configuring Basic SNMPv1 ...

Page 20: ...wing commands as needed to configure a destination IP address for the alarms and error codes sent from the device l To configure a destination IPv4 address for the alarms and error codes sent from the device run snmp agent target host trap address udp domain ip address udp port port number public net vpn instance vpn instance name params securityname security string v1 private netmanager ext vb Th...

Page 21: ... packet that is larger than the set size The allowable maximum size of an SNMP packet for a device depends on the size of a packet that the NM station can process otherwise the NM station cannot process the SNMP packets sent from the device End Follow up Procedure After the configurations are complete basic communication can be conducted between the NM station and managed device l Access control a...

Page 22: ...o manage specified objects on the device skip Steps 2 3 and 4 l If some of the NM stations that use the community name need to manage specified objects on the device perform all the following steps Procedure Step 1 Run system view The system view is displayed Step 2 Run acl acl number A basic ACL is created to filter the NM station users that can manage the device Step 3 Run rule rule id deny perm...

Page 23: ...not need to be configured in the command l If all the NM stations that use the community name need to manage specified objects on the device acl acl number does not need to be configured in the command l If some of the NM stations that use the community name need to manage specified objects on the device both mib view and acl need to be configured in the command End Follow up Procedure After the a...

Page 24: ... l To disable one trap function of a module you need to run the undo snmp agent trap enable feature name command Step 3 Run snmp agent trap enable feature name feature name trap name trap name A trap function of a feature module is enabled This means that an alarm of a specified feature can be sent to the NM station The undo snmp agent trap enable feature name command can be used to disable a trap...

Page 25: ...ll the existing interfaces and newly created interfaces are fixed If the system needs to restart the save command must be run to save interface configurations otherwise the interface indexes will change after the system is restarted Step 3 Run set constant ifindex max number number The maximum number of interfaces indexed by fixed numbers is set If interfaces are frequently added or deleted during...

Page 26: ...mp agent mib view command to check the MIB view l Run the display snmp agent sys info contact command to check the equipment administrator s contact information l Run the display snmp agent sys info location command to check the location of the device l Run the display snmp agent target host command to check the information about the target host l Run the display snmp agent extend error code statu...

Page 27: ...for example a VPN network but services on the network are so busy that traffic congestion may occur SNMPv2c can be deployed to ensure communication between the NM station and managed devices Pre configuration Tasks Before configuring a device to communicate with an NM station by running SNMPv2c complete the following task l Configuring a routing protocol to ensure that the switch and NM station ar...

Page 28: ...M stations running SNMPv2c and SNMPv3 Step 4 Run snmp agent community read write community name The community name is set After the community name is set if no MIB view is configured the NM station that uses the community name has rights to access objects in the Viewdefault view 1 3 6 1 l read needs to be configured in the command if the NM station administrator needs the read permission in a spec...

Page 29: ...e default destination UDP port number is 162 In some special cases for example port mirroring is configured to prevent a well known port from being attacked the parameter udp port can be used to specify a non well known UDP port number This ensures normal communication between the NM station and managed device l If the alarms sent from the managed device to the NM station need to be transmitted ov...

Page 30: ...rections below to configure the managed device l To allow a specified NM station that uses the community name to manage specified objects of the device follow the procedure described in Controlling the NM Station s Access to the Device l To allow a specified module on the managed device to report alarms to the NM station follow the procedure described in Configuring the Trap FunctionConfiguring th...

Page 31: ...5 Run snmp agent mib view excluded included view name oid tree A MIB view is created and manageable MIB objects are specified By default an NM station has rights to access the objects in the Viewdefault view 1 3 6 1 l If a few MIB objects on a device or some objects in the current MIB view do not or no longer need to be managed by the NM station excluded needs to be specified in the related comman...

Page 32: ...tation is specified if the IP address changes for example the NM station changes its location or IP addresses are reallocated due to network adjustment you need to change the IP address of the NM station in the ACL Otherwise the NM station cannot access the device 1 3 4 Optional Enabling the SNMP Extended Error Code Function This section describes how to enable the extended SNMP error code functio...

Page 33: ...e a trap function of a module Step 4 Configure trap function parameters based on the trap usage or inform usage selected during the configuration of basic SNMPv2c functions If traps are used follow the procedure described in Configuring trap parameters if informs are used follow the procedure described in Configuring inform parameters Configuring trap parameters 1 Run snmp agent trap source interf...

Page 34: ...be affected 2 Run snmp agent inform timeout seconds resend times times address udp domain ip address vpn instance vpn instance name params securityname security string The timeout period for waiting for Inform ACK messages from a specified NM station and the number of inform retransmissions are set If the network is unstable you need to specify the number of inform retransmissions and allowable ma...

Page 35: ...be run to save interface configurations otherwise the interface indexes will change after the system is restarted Step 3 Run set constant ifindex max number number The maximum number of interfaces indexed by fixed numbers is set If interfaces are frequently added or deleted during system operation the interface index file stored in the device may have a great size and consume too many system resou...

Page 36: ... s contact information l Run the display snmp agent sys info location command to check the location of the device l Run the display snmp agent target host command to check information about the target host l Run the display snmp agent inform address udp domain ip address vpn instance vpn instance name params securityname security string command to check inform parameters and device statistics with...

Page 37: ...anage network devices Assume your network has a strict requirement on security only authorized administrators can manage network devices and the security and accuracy of transmitted network data need to be ensured For example the data between the NM station and managed devices is transmitted over a public network In this case SNMPv3 can be deployed The authentication and encryption functions provi...

Page 38: ...o this step is optional Step 4 Run snmp agent group v3 group name authentication privacy An SNMPv3 user group is configured If the network or network devices are in an environment lacking security for example the network is vulnerable to attacks authentication or privacy can be configured in the command to enable data authentication or encryption The available authentication and encryption modes a...

Page 39: ... alarms and error codes sent from the device run snmp agent target host trap address udp domain ip address udp port port number public net vpn instance vpn instance name params securityname security string v3 authentication privacy private netmanager ext vb The descriptions of the command parameters are as follows l The default destination UDP port number is 162 In some special cases for example p...

Page 40: ...the configurations are complete basic communication can be conducted between the NM station and managed device l Access control allows any NM station in the configured SNMPv3 user group to monitor and manage all the objects on the managed device l The managed device sends alarms generated by the modules that are open by default to the NM station If finer device management is required follow direct...

Page 41: ...d Step 2 Run acl acl number A basic ACL is created to filter the NM station users that can manage the device Step 3 Run rule rule id deny permit source source ip address source wildcard any A rule is added to the ACL Step 4 Run quit Return to the system view Step 5 Run snmp agent mib view excluded included view name oid tree A MIB view is created and manageable MIB objects are specified By default...

Page 42: ...objects in the Viewdefault view 1 3 6 1 read view read view write view write view notify view notify view does not need to be configured in the command l If all the NM stations that are in the same SNMPv3 user group need to manage specified objects on the device acl acl number does not need to be configured in the command l If some of the NM stations that are in the same SNMPv3 user group need to ...

Page 43: ... l To disable one trap function of a module you need to run the undo snmp agent trap enable feature name command Step 3 Run snmp agent trap enable feature name feature name trap name trap name A trap function of a feature module is enabled This means that an alarm of a specified feature can be sent to the NM station The undo snmp agent trap enable feature name command can be used to disable a trap...

Page 44: ...ll the existing interfaces and newly created interfaces are fixed If the system needs to restart the save command must be run to save interface configurations otherwise the interface indexes will change after the system is restarted Step 3 Run set constant ifindex max number number The maximum number of interfaces indexed by fixed numbers is set If interfaces are frequently added or deleted during...

Page 45: ...mand to check the rules in the specified ACL l Run the display snmp agent mib view command to check the MIB view l Run the display snmp agent sys info contact command to check the equipment administrator s contact information l Run the display snmp agent sys info location command to check the location of the device l Run the display snmp agent target host command to check the information about the...

Page 46: ...ontact information needs to be configured on the switch This allows the NMS administrator to contact the equipment administrator quickly if a fault occurs Figure 1 4 Networking diagram for configuring a device to communicate with an NM station by using SNMPv1 Switch 1 1 1 1 24 1 1 1 2 24 NMS2 IP Network NMS1 1 1 2 1 24 GE0 0 1 VLANIF100 Configuration Roadmap The configuration roadmap is as follows...

Page 47: ...age every MIB object except HGMP on the switch Quidway snmp agent mib view excluded allexthgmp 1 3 6 1 4 1 2011 6 7 Configure a community name to allow NMS2 to manage the objects in the MIB view Quidway snmp agent community write adminnms2 mib view allexthgmp acl 2001 Step 5 Configure the trap function Quidway snmp agent target host trap address udp domain 1 1 1 2 params securityname 1 1 3 1 Quidw...

Page 48: ...arm is generated run the display trapbuffer command to view the details Quidway display trapbuffer Trapping buffer configuration and contents enabled Allowed max buffer size 1024 Actual buffer size 256 Channel number 3 Channel name trapbuffer Dropped messages 0 Overwritten messages 0 Current messages 98 Oct 11 2010 18 57 59 RouterA DS 4 DATASYNC_CFGCHANGE OID 1 3 6 1 4 1 2011 5 25 191 3 1 configur...

Page 49: ... configure a device to communicate with an NM station by using SNMPv2c and how to specify the MIB objects that can be managed by the NM station Networking Requirements As shown in Figure 1 5 two NM stations NMS1 and NMS2 and the switch are connected across a public network According to the network planning NMS2 can manage every MIB object except HGMP on the switch and NMS1 does not manage the swit...

Page 50: ... switch 6 Configure NMS2 Data Preparation To complete the configuration you need the following data l SNMP version l Community name l ACL number l IP address of the NM station l Equipment administrator s contact information Procedure Step 1 Configure available routes between the switch and the NM stations Details for the configuration procedure are not provided here Step 2 Enable the SNMP agent Qu...

Page 51: ...geout 12 Step 6 Configure the equipment administrator s contact information Quidway snmp agent sys info contact call Operator at 010 12345678 Step 7 Configure NMS2 For details on how to configure NMS2 see the relevant NMS configuration guide Step 8 Verify the configuration After the configurations are complete run the following commands to verify that the configurations have taken effect Check inf...

Page 52: ...he contact person for this managed node call Operator at 010 12345678 End Configuration Files Configuration file of the switch vlan batch 100 acl number 2001 rule 5 permit source 1 1 1 2 0 rule 6 deny source 1 1 1 1 0 interface Vlanif100 ip address 1 1 2 1 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 ospf 1 area 0 0 0 0 network 1 1 2 0 0 0 0 ...

Page 53: ...etween NMS2 and the switch needs to be encrypted and the NMS administrator needs to be authenticated because the data has to travel across the public network Equipment administrator s contact information needs to be configured on the switch This allows the NMS administrator to contact the equipment administrator quickly if a fault occurs Figure 1 6 Networking diagram for configuring a device to co...

Page 54: ...low NMS2 to manage and disallow NMS1 from managing the switch Quidway acl 2001 Quidway acl basic 2001 rule 5 permit source 1 1 1 2 0 0 0 0 Quidway acl basic 2001 rule 6 deny source 1 1 1 1 0 0 0 0 Quidway acl basic 2001 quit Configure a MIB view Quidway snmp agent mib view included testview iso Configure an SNMPv3 user group and add a user to the group and configure authentication for the NMS admi...

Page 55: ...ation about the user Quidway display snmp agent usm user User name testuser Engine ID 000007DB7F00000100004C3F active Group name testgroup Check the configured ACL Quidway display acl 2001 Basic ACL 2001 2 rules Acl s step is 5 rule 5 permit source 1 1 1 2 0 rule 6 deny source 1 1 1 1 0 Check the MIB view Quidway display snmp agent mib view viewname testview View name testview MIB Subtree iso Subt...

Page 56: ... 1 1 0 interface Vlanif100 ip address 1 1 2 1 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 interface LoopBack0 ip address 1 1 3 1 255 255 255 255 ospf 1 area 0 0 0 0 network 1 1 2 0 0 0 0 255 network 1 1 3 1 0 0 0 0 snmp agent snmp agent local engineid 000007DB7FFFFFFF000004A7 snmp agent sys info contact call Operator at 010 12345678 snmp age...

Page 57: ...escribes the usage scenarios of the LLDP feature and TLV types supported by the S5700 2 3 Configuring LLDP This section describes how to configure LLDP 2 4 Maintaining LLDP This section describes how to clear LLDP statistics and monitor LLDP status 2 5 Configuration Examples This section provides LLDP configuration examples Quidway S5700 Series Ethernet Switches Configuration Guide Network Managem...

Page 58: ...guration conflicts The Layer 2 discovery protocol precisely discovers the interfaces on each device and obtains connection information between devices In addition it displays the paths between clients switches routers application servers and network servers The Layer 2 information helps you quickly know the device topology detect configuration conflicts between devices and locate network faults Th...

Page 59: ...ion port description system capability and management address LLDP Agent An LLDP agent manages LLDP operations for an interface The LLDP agent performs the following operations l Maintains information in the LLDP local system MIB l Obtains and sends LLDP local system MIB information to neighbor devices when the status of the local device status changes If the local device status keeps unchanged th...

Page 60: ...he bridge MAC address of the neighbor device l LLDP Ethertype indicates the LLDP packet type If a packet contains this field it is an LLDP packet and it is sent to the LLDP module The value of this field is 0x88CC l LLDPDU indicates the LLDP data unit It is the major content of an LLDP packet l FCS indicates the Frame Check Sequence LLDPDU in the LLDP packet contains the Layer 2 information discov...

Page 61: ...ly connected so each interface has only one neighbor As shown in Figure 2 4 SwitchA is directly connected to SwitchB and ME Each interface on SwitchA and SwitchB has only one neighbor Figure 2 4 Each interface has only one neighbor Internet Switch A Switch B ME NMS The network where an interface has multiple neighbors The interfaces between two switches are connected through an unknown network so ...

Page 62: ...tion is configured As shown in Figure 2 6 a link aggregation group is configured between the switches Each interface in the link aggregation group has only one neighbor Figure 2 6 Link aggregation is configured on the network SwitchA SwitchB Enterprise User Enterprise User Network NMS Eth Trunk Quidway S5700 Series Ethernet Switches Configuration Guide Network Management 2 LLDP Configuration Issue...

Page 63: ...ystem Name TLV Device name l Organizationally Specific TLV defined in 802 1 Type Description Port VLAN TLV VLAN ID of an interface Port protocol VLAN TLV Protocol VLAN ID of an interface VLAN Name TLV VLAN name Protocol identity TLV Protocol types supported by an interface l Organizationally Specific TLV defined in 802 3 Type Description Link Aggregation TLV Whether a port supports link aggregatio...

Page 64: ...ower via MDI TLV Power capability of the device By default LLDP advertises all types of TLVs except the Location Identification TLV 2 3 Configuring LLDP This section describes how to configure LLDP 2 3 1 Establishing the Configuration Task Applicable Environment The LLDP function on network devices allows the NMS to obtain device capabilities device topology management addresses device identificat...

Page 65: ...stored on neighbors 5 Optional Delay to re enable the LLDP function on an interface 6 Optional Delay to send neighbor change traps to the NMS 2 3 2 Enabling Global LLDP After LLDP is enabled on the switch and its neighbors the switch and its neighbors obtain status information of each other by exchanging LLDP packets The NMS obtains Layer 2 connection status from the switch for network topology an...

Page 66: ...es enable LLDP globally first and then run the undo lldp enable command on these interfaces To re enable LLDP on these interfaces run the lldp enable command in the views of these interfaces NOTE l On an Eth Trunk LLDP can only be enabled on member interfaces The interfaces enabled with LLDP and not enabled with LLDP can exist in the same Eth Trunk l LLDP can be enabled and disabled only on the ph...

Page 67: ...LDPDUs contain different types of TLVs The devices send and receive device information by using these TLVs The TLVs that can be encapsulated in an LLDP packet include basic TLVs organizationally specific TLVs and TLVs related to media endpoint discovery MED Prerequisite l LLDP has been enabled globally l LLDP has been enabled on the interfaces Context To enable an interface to send the 802 3 Power...

Page 68: ...If the all parameter is not specified only one type of TLV can be sent To send multiple types of TLVs run the command multiple times l You can specify the other types of LLDP MED TLVs only after specifying the LLDP MED Capabilities TLV To disable the LLDP MED Capabilities TLV you must disable the other types of LLDP MED TLVs first To disable the MAC PHY Configuration Status TLVs you must disable t...

Page 69: ...quently After the LLDP transmission delay is set on the device the LLDP enabled interfaces send LLDP packets to neighbors after a delay the delay is the same as or longer than the delay you specified The interfaces may send LLDP packets at different time points If the device status changes frequently extend the delay to prevent the device from frequently sending traps to the NMS A delay suppresses...

Page 70: ...e l A small value of the hold time multiplier enables the NMS to discover topology change in time However if the value is too small the neighbors update device information too frequently This increases the load on the system and wastes resources l The default value is recommended Delay to re enable LLDP on an interface There is a delay before LLDP is re enabled on an interface The delay suppresses...

Page 71: ...You can extend the storage time of device information on the neighbors by increasing the value of hold l The value of hold ranges from 2 to 10 however when the value of hold x interval is greater than 65535 the hold value is invalid Step 5 Run lldp restart delay delay The delay to re enable LLDP on an interface is set The default value is 2 in seconds If LLDP is disabled on an interface the system...

Page 72: ...re Step 1 Run system view The system view is displayed Step 2 Run snmp agent trap enable feature name lldptrap The LLDP trap function is enabled By default the LLDP trap function is disabled on the S5700 End 2 3 8 Checking the Configuration Prerequisite All configurations are complete Procedure l Run the display lldp local interface interface type interface number command to view local LLDP status...

Page 73: ...k devices the NMS can obtain the network topology The following example describes how to configure LLDP on the devices that have a single neighbor Networking Requirements As shown in Figure 2 7 SwitchA is directly connected to SwitchB and media endpoint ME The NMS needs to obtain Layer 2 information about SwitchA SwitchB and ME By using the Layer 2 information a network administrator can know the ...

Page 74: ...o complete the configuration you need the following data l Management address 10 10 10 1 for SwitchA and management address 10 10 10 2 for SwitchB Procedure Step 1 Enable global LLDP on SwitchA and SwitchB Configure SwitchA Quidway system view Quidway sysname SwitchA SwitchA lldp enable Configure SwitchB Quidway system view Quidway sysname SwitchB SwitchB lldp enable Step 2 Enable SwitchA and Swit...

Page 75: ...iew the configurations on SwitchA SwitchA display lldp local System information Chassis type macAddress Chassis ID 00e0 fc33 0011 System name SwitchA System description Quidway Huawei Versatile Routing Platform Software VRP R Software Version 5 70 S5700 V200R006C00 Copyright c 2003 2010 Huawei Technologies Co Ltd System capabilities supported bridge System capabilities enabled bridge LLDP Up time ...

Page 76: ...Protocol vlan ID PPVID don t supported Port VLAN ID PVID 1 VLAN name of VLAN 1 VLAN1 Protocol identity STP RSTP MSTP LACP EthOAM CFM Auto negotiation supported Yes Auto negotiation enabled Yes OperMau speed 1000 duplex Full Power port class PD PSE power supported No PSE power enabled No PSE pairs control ability No Power pairs Unknown Port power classification Unknown Link aggregation supported Ye...

Page 77: ...Yes OperMau speed 1000 duplex Full Power port class PD PSE power supported No PSE power enabled No PSE pairs control ability No Power pairs Unknown Port power classification Unknown Link aggregation supported Yes Link aggregation enabled No Aggregation port ID 0 Maximum frame Size 1600 MED Device information Device class Network Connectivity HardwareRev LE01MCUA VER A FirmwareRev NC SoftwareRev Ve...

Page 78: ...ces that have multiple neighbors Networking Requirements As shown in Figure 2 8 SwitchA SwitchB and SwitchC are connected through an unknown network The unknown network is not managed by the NMS but can transparently transmit LLDP packets The NMS needs to obtain Layer 2 information about SwitchA SwitchB and SwitchC By using the Layer 2 information a network administrator can know the detailed netw...

Page 79: ...witchA SwitchB and SwitchC to process LLDP BPDUs 3 Configure management addresses for SwitchA SwitchB and SwitchC Data Preparation To complete the configuration you need the following data l Management addresses for SwitchA SwitchB and SwitchC Procedure Step 1 Enable global LLDP on SwitchA SwitchB and SwitchC Configure SwitchA Quidway system view Quidway sysname SwitchA SwitchA lldp enable Configu...

Page 80: ...rations on SwitchA View the neighbor information of SwitchA SwitchA display lldp neighbor interface gigabitethernet 0 0 1 GigabitEthernet0 0 1 has 2 neighbors Neighbor index 1 Chassis type macAddress Chassis ID 00e0 fc33 0012 Port ID type interfaceName Port ID GigabitEthernet0 0 1 Port description HUAWEI Quidway Series GigabitEthernet0 0 1 Interface System name SwitchB System description Quidway H...

Page 81: ...own Port Available power value 0 Neighbor index 2 Chassis type macAddress Chassis ID 00e0 fc33 0013 Port ID type interfaceName Port ID GigabitEthernet0 0 1 Port description HUAWEI Quidway Series GigabitEthernet0 0 1 Interface System name SwitchC System description Quidway Huawei Versatile Routing Platform Software VRP R Software Version 5 70 S5700 Copyright c 2003 2010 Huawei Technologies Co Ltd S...

Page 82: ...edia policy Dscp 0 Power Type Unknown PoE PSE power source Unknown Port PSE Priority Unknown Port Available power value 0 l View the configurations on SwitchB Same as information about SwitchA l View the configurations on SwitchC Same as information about SwitchA End Configuration Files l Configuration file of SwitchA sysname SwitchA lldp enable lldp management address 10 10 10 1 interface Gigabit...

Page 83: ...n the Switches By using the Layer 2 information a network administrator can know the detailed topology information and configuration errors on the devices outside the unknown network These requirements can be met by configuring LLDP on SwitchA and SwitchB The NMS has reachable routes to SwitchA and SwitchB and SNMP parameters are set on all devices Figure 2 9 Configuring LLDP on the network where ...

Page 84: ...kport gigabitethernet 0 0 3 SwitchA Eth Trunk1 port link type trunk SwitchA Eth Trunk1 port trunk allow pass vlan 100 SwitchA Eth Trunk1 quit Configure SwitchB Same as the configurations on SwitchA Step 2 Enable global LLDP on SwitchA and SwitchB Configure SwitchA SwitchA lldp enable Configure SwitchB Same as the configurations on SwitchA Step 3 Enable SwitchA and SwitchB to process LLDP BPDUs Con...

Page 85: ...ies Co Ltd System capabilities supported bridge System capabilities enabled bridge LLDP Up time 2010 2 13 18 31 37 MED system information Device class Network Connectivity MED inventory information of master board HardwareRev VER B FirmwareRev NA SoftwareRev Version 5 70 V200R006C00 SerialNum NA Manufacturer name HUAWEI TECH CO LTD Model name NA Asset tracking identifier NA System configuration LL...

Page 86: ...tion Unknown Link aggregation supported Yes Link aggregation enabled No Aggregation port ID 1 Maximum frame Size 1600 MED port information Media policy type Unknown Unknown Policy Yes VLAN tagged No Media policy VlanID 0 Media policy L2 priority 0 Media policy Dscp 0 Power Type Unknown PoE PSE power source Unknown Port PSE Priority Unknown Port Available power value 0 Interface GigabitEthernet0 0 ...

Page 87: ...bitEthernet0 0 3 Port description HUAWEI Quidway Series GigabitEthernet0 0 3 Interface Port And Protocol vlan ID PPVID don t supported Port VLAN ID PVID 1 VLAN Name of VLAN 1 VLAN1 Protocol identity STP RSTP MSTP LACP EthOAM CFM Auto negotiation supported Yes Auto negotiation enabled Yes OperMau speed 1000 duplex Full Power port class PD PSE power supported No PSE power enabled No PSE pairs contro...

Page 88: ... interface Eth Trunk1 port link type trunk port trunk allow pass vlan 100 interface GigabitEthernet0 0 1 eth trunk 1 interface GigabitEthernet0 0 2 eth trunk 1 interface GigabitEthernet0 0 3 eth trunk 1 lldp management address 10 10 10 1 return l Configuration file of SwitchB sysname SwitchB interface MEth0 0 1 ip address 10 10 10 2 255 255 255 0 vlan batch 100 lldp enable interface Eth Trunk1 por...

Page 89: ...h trunk 1 lldp management address 10 10 10 2 return Quidway S5700 Series Ethernet Switches Configuration Guide Network Management 2 LLDP Configuration Issue 01 2011 10 26 Huawei Proprietary and Confidential Copyright Huawei Technologies Co Ltd 78 ...

Page 90: ... features supported by the S5700 3 3 Configuring Basic HGMP Functions This section describes how to configure basic HGMP functions to create or manage a cluster 3 4 Configuring Advanced HGMP Functions This section describes how to configure advanced HGMP functions to simplify the management and maintenance of a basic cluster 3 5 Maintaining HGMP This section describes how to clear the statistics o...

Page 91: ...es The Huawei Group Management Protocol HGMP is developed to manage a group of Ethernet switches By running HGMP you can appoint a switch as the administrator in a cluster to perform integrated management and configurations over other switches added to the cluster This simplifies maintenance and engineering In addition all the switches in a cluster share one public IP address to communicate with o...

Page 92: ...outer Administrator Member1 Member2 Member3 Member4 Host DSLAM Cluster1 Administrator administrator switch Member member switch Quidway S5700 Series Ethernet Switches Configuration Guide Network Management 3 HGMP Configuration Issue 01 2011 10 26 Huawei Proprietary and Confidential Copyright Huawei Technologies Co Ltd 81 ...

Page 93: ...tocol NDP packets are used to collect information about the directly connected neighbors including the device model software version hardware version connection interface member number private IP address used for communication within a cluster and hardware platform NOTE Any device that supports HGMP does not forward NDP packets An NDP table is created to store information about neighbors Quidway S...

Page 94: ...a public IP address to the administrator switch l A member switches is the member device in a cluster The member switch is managed by the administrator switch that acts as an agent Therefore the public IP address is not required for a member switch l A candidate switch is a device that has the cluster function but does not join any cluster l A standby switch is the backup administrator switch in a...

Page 95: ...inds of IP address user name and password are configured the command cannot be performed l Member switches download specified files from the FTP server and then set them as the default files for the next startup l To avoid congestion you can set the maximum number of member switches that concurrently download files from the FTP server Batch Restart HGMP can perform batch restart over a specified g...

Page 96: ...you need to disable NDP or NTDP on unrelated interfaces As a result less packets are transmitted and the topology of the cluster is stable l On the administrator switch disable NDP or NDTP on unrelated interfaces in the cluster l After you disable NDP on unrelated interfaces in the cluster NDP packets of the interfaces are not sent to the administrator switch l After you disable NTDP on unrelated ...

Page 97: ...Preparation To configure basic HGMP functions you need the following data No Data 1 Range of private IP addresses used in the cluster 2 Cluster name 3 Medium access control MAC address of the member switch 4 Optional Aging time of NDP packets and interval for sending NDP packets 5 Optional Range of topology collection hop delay and interface delay in forwarding NTDP topology request packets interv...

Page 98: ... The interface view is displayed Run ndp enable NDP is enabled on the interface l Optional Setting the aging time of NDP packets Do as follows on the administrator switch and member switches 1 Run system view The system view is displayed 2 Run ndp timer aging aging time The aging time of NDP packets is set By default the aging time of NDP packets is set to 180 seconds The aging time of NDP packets...

Page 99: ...y default NTDP is enabled in the system view l Enabling NTDP on an interface 1 Run system view The system view is displayed 2 Run interface interface type interface number The interface view is displayed 3 Run ntdp enable NTDP is enabled on the interface l Optional Configuring the range of topology collection 1 Run system view The system view is displayed 2 Run ntdp hop max hop value The range of ...

Page 100: ...nformation is not collected regularly l Optional Enabling topology collection 1 Run the following command in the user view ntdp explore Topology collection is enabled You can run this command to collect topology information at any time End 3 3 4 Creating a Cluster To perform unified management over switches you must first create a cluster and add switches to be managed to the cluster Procedure l C...

Page 101: ... cluster is automatically deleted If you change the ID of the management VLAN or delete the management VLAN and its corresponding VLANIF interface on a member switch the member switch automatically quits the cluster l Enabling the cluster function Do as follows on the administrator switch and member switches 1 Run system view The system view is displayed 2 Run cluster enable The cluster function i...

Page 102: ...igured and the cluster is created This command can only be run on the administrator switch and the switch that does not join any cluster Creating a cluster automatically These steps need to be configured only on the administrator switch or on the switch which will be the administrator in a created HGMP cluster In this mode the administrator switch prompts you whether to add all the existing candid...

Page 103: ...address of the member switch Do as follows only on the administrator switch 1 Run system view The system view is displayed 2 Run cluster The cluster view is displayed 3 Run add member member number mac address mac address password password A member switch is added l Adding a member switch automatically In this mode the administrator switch prompts you whether to add all the existing candidate swit...

Page 104: ...eed to use a cluster to manage a switch you can delete the switch or configure the switch to quit the cluster Procedure l Deleting a cluster Do as follows on the administrator switch 1 Run system view The system view is displayed 2 Run cluster The cluster view is displayed 3 Run undo build A cluster is deleted After the command is run on an administrator switch except the mngvlanid and ip pool com...

Page 105: ...ified cluster NOTE When you run the undo administrator address command on member switches the member switch temporarily exits from the cluster whereas the administrator switch does not delete the member switch To delete a member switch from the HGMP cluster run the delete member command End 3 3 7 Optional Deleting a Member Switch If you do not need to use a cluster to manage a switch in a manageme...

Page 106: ...didate switches l Run the display cluster members member number verbose to check information about member switches End Example If the NDP neighbor can be normally established you can run the display ndp command to check information about the MAC addresses of all the neighboring stations and the number of the interface on the neighboring station that is connected to the local interface Quidway disp...

Page 107: ...list The device list of NTDP MAC HOP IP PLATFORM 0004 0004 0004 2 S5700 0003 0003 0003 1 S5700 0002 0002 0002 1 S5700 0001 0001 0001 0 S5700 If the cluster is established successfully you can run the display cluster command to view information about the HGMP cluster to which the device belongs such as the cluster name and ID of the management VLAN HUAWEI_0 Quidway display cluster Cluster name HUAW...

Page 108: ... with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Applicable Environment To optimize the performance parameters of the established cluster you can configure advanced HGMP functions to facilitate the management and maintenance of the HGMP cluster and better manage member switche...

Page 109: ... of the cluster Procedure l Configure the interval for sending handshake packets Do as follows on the administrator switch 1 Run system view The system view is displayed 2 Run cluster The cluster view is displayed 3 Run timer interval The interval for sending handshake packets is set By default the interval for sending handshake packets is 10 seconds This interval must be equal to or less than one...

Page 110: ...ster discagingtime disconnect aging time The aging time of member switches is set By default no aging time is set It indicates that the Disconnecting state of member switches is not aged l Configure a multicast MAC address for the cluster Do as follows on the administrator switch 1 Run system view The system view is displayed 2 Run cluster The cluster view is displayed 3 Run cluster multimac mac a...

Page 111: ... The system view is displayed 2 Run cluster The cluster view is displayed 3 Run ftp server ip address A public FTP server is configured for the cluster NOTE The member switches in a cluster can communicate with the FTP server in either of the following modes l Non NAT There must be reachable routes between member switches and FTP server l NAT The cluster ftp nat enable command must be run in the c...

Page 112: ...that are configured through Steps 3 to 6 by accessing the administrator switch Steps 3 to 6 are optional and are not listed in sequence By default no public server and host is configured for a cluster End 3 4 3 Managing Switches in a Cluster Through HGMP You can use commands to configure the following features for member switches of an HGMP cluster in batches batch distribution batch restart incre...

Page 113: ...nd If Step 3 is performed the IP address user name and password configured in Step 3 are used by default IP addresses used in batch distribution are private IP addresses used in the cluster l Configuring the batch restart function Do as follows on the administrator switch 1 Run system view The system view is displayed 2 Run cluster The cluster view is displayed 3 Optional Run cluster member reboot...

Page 114: ...ogies and types of the new device and old device are the same l Configuring Communication Between Huawei Devices and Non Huawei Devices Do as follows on the administrator switch 1 Run system view The system view is displayed 2 Run cluster The cluster view is displayed 3 Run cluster packet extend enable Communication Between Huawei Devices and Non Huawei Devices is enabled To configure the manageme...

Page 115: ...all command To check the list of incremental configuration commands that is currently edited run the display increment command command l Synchronizing configuration files Do as follows on the administrator switch 1 Run system view The system view is displayed 2 Run cluster The cluster view is displayed 3 Run increment config synchronization group by device type device type ip ip address to ip addr...

Page 116: ...k the cluster topology l Run the display increment command to check the incremental configuration command l Run the display increment synchronization result to check whether configuration files of member switches are synchronized to the FTP server l Run the display member getfile state to check whether member switches successfully obtain configuration files version files or patch files l Run the d...

Page 117: ..._3 Member 3 00e0 da1c 4c00 GigabitEthernet0 0 2 GigabitEthernet0 0 1 HUAWEI_2 Member 2 00e0 875b 8f00 GigabitEthernet0 0 2 GigabitEthernet0 0 1 HUAWEI_1 Member 1 00e0 0f68 6f00 GigabitEthernet0 0 2 GigabitEthernet0 0 1 HUAWEI_4 Member 4 00e0 9f7e 0b00 Run the display increment command command and you can check the incremental configuration of the cluster including the number and contents of the in...

Page 118: ...isplay member reboot state command and you can view that success is displayed Quidway display member reboot state The result of member switches rebooting SN Device MacAddress IPAddress Result 1 S5700 0002 0002 0002 10 0 0 2 success 2 S5700 0003 0003 0003 10 0 0 3 success If the current configurations are successfully saved on member switches run the display member save state command and you can vi...

Page 119: ...tatus of the HGMP cluster Context In routine maintenance you can run the following commands in any view to display the operation stauts of HGMP Procedure l Run the display ndp to check the NDP configuration in the system view l Run the display ntdp to check the global NTDP configuration l Run the display cluster to check information about the HGMP cluster to which the device belongs l Run the disp...

Page 120: ...NTDP debugging l Run the debugging cluster all event handshake member mrc nat packet state command or debugging cluster packet handshake mrc verbose command to enable cluster debugging End 3 6 HGMP Configuration Examples This section provides several configuration examples of HGMP 3 6 1 Example for Configuring Basic HGMP Functions for a Cluster Networking Requirements As shown in Figure 3 3 a carr...

Page 121: ...eate a cluster named HUAWEI on the administrator switch 3 Add all the devices that support HGMP in the Layer 2 network to the cluster 4 Assign an IP address to VLANIF 10 to facilitate the communication between member switches in the cluster and devices out of the cluster 5 Configure public servers and hosts for the cluster Data Preparation To complete the configuration you need the following data ...

Page 122: ...n10 quit Member 1 interface gigabitethernet 0 0 1 Member 1 GigabitEthernet0 0 1 port link type trunk Member 1 GigabitEthernet0 0 1 port trunk allow pass vlan 10 Member 1 GigabitEthernet0 0 1 quit Member 1 interface gigabitethernet 0 0 2 Member 1 GigabitEthernet0 0 2 port link type trunk Member 1 GigabitEthernet0 0 2 port trunk allow pass vlan 10 Member 1 GigabitEthernet0 0 2 quit Member 1 interfac...

Page 123: ...evious configuration you can find that NDP on the administrator is in the Enable state the host name of the neighboring node is Device Name and the name of the interface connecting the neighboring node and the local interface is Port Name Administrator 1 display ndp interface gigabitethernet 0 0 1 gigabitethernet 0 0 2 Interface GigabitEthernet0 0 1 Status Enabled Packets Sent 0 Packets Received 1...

Page 124: ...0 1 quit Configure member switch 3 Member 3 ntdp enable Member 3 ntdp timer 10 Member 3 ntdp hop 3 Member 3 interface gigabitethernet 0 0 1 Member 3 GigabitEthernet0 0 1 ntdp enable Member 3 GigabitEthernet0 0 1 quit After the previous configuration globally check the NTDP configuration on the administrator switch You can find that the interval and range for NTDP to collect topologies is 10 minute...

Page 125: ...0 0 0 1 8 Administrator 1 cluster Administrator 1 cluster ip pool 10 0 0 1 8 Create a cluster named HUAWEI on the administrator switch Administrator 1 cluster build HUAWEI HUAWEI_0 Administrator 1 cluster After the previous configuration check information about the cluster to which the device belongs You can find that the device name is changed the cluster name is HUAWEI and the management VLAN ID...

Page 126: ...dministrator 1 cluster display cluster members The list of cluster member SN Device Type MAC Address Status Device Name 0 S5700 0001 0001 0001 Admin HUAWEI_0 Administrator 1 1 S5700 0002 0002 0002 Up HUAWEI_1 Member 1 2 S5700 0003 0003 0003 Up HUAWEI_2 Member 2 3 S5700 0004 0004 0004 Up HUAWEI_3 Member 3 Step 7 Assign an IP address to VLANIF 10 To ensure the normal communication between member swi...

Page 127: ...figuration check information about the cluster to which the administrator switch belongs You can find that the public log host SNMP host FTP server and SFTP server are configured successfully HUAWEI_0 Administrator 1 cluster display cluster Cluster name HUAWEI Role Administrator switch management vlan id 10 Cluster multicast MAC address 0180 c200 000a default Cluster auto join disabled Handshake t...

Page 128: ...mp host 3 0 0 1 ip route static 0 0 0 0 0 0 0 0 1 0 0 2 return l Configuration file of Member 1 sysname Member 1 vlan batch 10 cluster enable ntdp enable ntdp hop 3 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable interface GigabitEthernet0 0 2 port link type trunk port trunk allow pass vlan 10 ntdp...

Page 129: ...AWEI return 3 6 2 Example for Configuring the Interconnection of FTP Servers and Devices in and out of the HGMP Cluster in NAT Mode Networking Requirements As shown in Figure 3 4 all the Layer 2 switches belong to the same cluster Administrator 1 is the administrator switch of the cluster and other switches are member switches The member ID of Member 1 is 1 the member ID of Member 2 is 2 and the m...

Page 130: ...0 1 GE0 0 2 GE0 0 1 GE0 0 1 Cluster GE0 0 3 GE0 0 1 1 0 0 2 8 Device MAC Address Device MAC Address Administrator 1 0001 0001 0001 Member 1 0002 0002 0002 Member 2 0003 0003 0003 Member 3 0004 0004 0004 Configuration Roadmap The configuration roadmap is as follows 1 Create a cluster and configure basic HGMP functions for the cluster according to the steps described in the section Example for Confi...

Page 131: ...nistrator 1 interface gigabitethernet 0 0 1 Administrator 1 GigabitEthernet0 0 1 port link type trunk Administrator 1 GigabitEthernet0 0 1 port trunk allow pass vlan 10 Administrator 1 GigabitEthernet0 0 1 quit Administrator 1 interface gigabitethernet 0 0 2 Administrator 1 GigabitEthernet0 0 2 port link type trunk Administrator 1 GigabitEthernet0 0 2 port trunk allow pass vlan 10 Administrator 1 ...

Page 132: ...Administrator 1 ndp enable Administrator 1 interface gigabitethernet 0 0 1 Administrator 1 GigabitEthernet0 0 1 ndp enable Administrator 1 GigabitEthernet0 0 1 quit Administrator 1 interface gigabitethernet 0 0 2 Administrator 1 GigabitEthernet0 0 2 ndp enable Administrator 1 GigabitEthernet0 0 2 quit Configure member switch 1 Member 1 ndp enable Member 1 interface gigabitethernet 0 0 1 Member 1 G...

Page 133: ...e the administrator switch Administrator 1 ntdp enable Administrator 1 ntdp timer 10 Administrator 1 ntdp hop 3 Administrator 1 interface gigabitethernet 0 0 1 Administrator 1 GigabitEthernet0 0 1 ntdp enable Administrator 1 GigabitEthernet0 0 1 quit Administrator 1 interface gigabitethernet 0 0 2 Administrator 1 GigabitEthernet0 0 2 ntdp enable Administrator 1 GigabitEthernet0 0 2 quit Configure ...

Page 134: ...ember 2 cluster quit Configure member switch 3 Member 3 cluster enable Member 3 cluster Member 3 cluster mngvlanid 10 Member 3 cluster quit After the topology collection function is enabled manually on the administrator switch check the device information collected through NTDP and you can find the MAC address and types of related devices Administrator 1 ntdp explore Administrator 1 system view Ad...

Page 135: ...cluster display cluster candidates MAC HOP IP PLATFORM 0004 0004 0004 2 S5700 0003 0003 0003 1 S5700 0002 0002 0002 1 S5700 Step 6 Add member switches NOTE l Following steps can be performed only on the administrator switch l Take the mode of automatically adding member switches as an example To add member switches manually see Adding a Member Switch Add all candidate switches to the cluster HUAWE...

Page 136: ...bandwidth utilization Step 8 Configure a static route on the administrator switch This operation is to ensure that a reachable route exists between switches in the cluster and servers or hosts HUAWEI_0 Administrator 1 ip route static 0 0 0 0 0 1 0 0 2 NOTE You can also run a routing protocol Step 9 Configure public servers and hosts of the cluster Configure an FTP server HUAWEI_0 Administrator 1 c...

Page 137: ...ed for the FTP protocol of a member switch in the cluster The member ID of Member 2 is 2 Using the formula for computing port numbers reserved for a cluster Interface number reserved for a cluster Base interface number Member number 2 you can obtain that the reserved port number which is used by Member 2 to enable the FTP server is 53248 2 2 53252 Run the FTP client program on the PC and set up an...

Page 138: ...er 2 0 0 2 logging host 4 0 0 1 snmp host 3 0 0 1 ip route static 0 0 0 0 0 0 0 0 1 0 0 2 return l Configuration file of Member 1 sysname Member 1 vlan batch 10 cluster enable ntdp enable ntdp hop 5 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable interface GigabitEthernet0 0 2 port link type trunk ...

Page 139: ...ort link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI return 3 6 3 Example for Configuring the Interconnection of FTP Servers and Devices in and out of the HGMP Cluster in Non NAT Mode Networking Requirements As shown in Figure 3 5 all the Layer 2 switches belong to the same cluster Administrator 1 is the admi...

Page 140: ...in and out of the HGMP cluster in non NAT mode IP MPLS core FTP Server 2 0 0 1 8 SFTP Server 2 0 0 2 8 NM station 3 0 0 1 8 Log station 4 0 0 1 8 Administrator 1 10 0 0 1 8 Member 1 Member 2 Member 3 10 0 0 4 8 GE0 0 1 GE0 0 2 GE0 0 1 GE0 0 2 GE0 0 1 GE0 0 1 Cluster GE0 0 3 GE0 0 1 1 0 0 2 8 Device MAC Address Device MAC Address Administrator 1 0001 0001 0001 Member 1 0002 0002 0002 Member 2 0003 ...

Page 141: ...inistrator switch used in the cluster that is 10 0 0 1 8 l Member ID serving as the FTP server in the cluster with the member ID being 2 Procedure Step 1 Configure a management VLAN Create VLAN 10 on the device and add interfaces of the administrator switch and member switches to VLAN 10 Configure the administrator switch Quidway system view Quidway sysname Administrator 1 Administrator 1 vlan 10 ...

Page 142: ... 3 GigabitEthernet0 0 1 port link type trunk Member 3 GigabitEthernet0 0 1 port trunk allow pass vlan 10 Member 3 GigabitEthernet0 0 1 quit Member 3 interface vlanif 10 Member 3 Vlanif10 quit Step 2 Configure NDP On switches enable NDP in the system view and on an interface Configure the administrator switch Administrator 1 ndp enable Administrator 1 interface gigabitethernet 0 0 1 Administrator 1...

Page 143: ...700 Step 3 Configure NTDP On devices enable NTDP in the system view and on the interface and configure the interval and range for NTDP to collect topologies to 10 minutes and 3 hops respectively Configure the administrator switch Administrator 1 ntdp enable Administrator 1 ntdp timer 10 Administrator 1 ntdp hop 3 Administrator 1 interface gigabitethernet 0 0 1 Administrator 1 GigabitEthernet0 0 1 ...

Page 144: ...luster mngvlanid 10 Administrator 1 cluster quit Configure member switch 1 Member 1 cluster enable Member 1 cluster Member 1 cluster mngvlanid 10 Member 1 cluster quit Configure member switch 2 Member 2 cluster enable Member 2 cluster Member 2 cluster mngvlanid 10 Member 2 cluster quit Configure member switch 3 Member 3 cluster enable Member 3 cluster Member 3 cluster mngvlanid 10 Member 3 cluster...

Page 145: ...igured No FTP server configured No SFTP server configured cluster member ftp timeout 300 sec default Cluster SNMP NAT capability enabled Cluster FTP NAT capability disabled There are 1 member s in the cluster and 0 of them are down On the administrator switch check information about candidate switches you can find all the candidate switches and their types HUAWEI_0 Administrator 1 cluster display ...

Page 146: ...e on the administrator switch is in the Up state HUAWEI_0 Administrator 1 display interface Vlanif 10 Vlanif10 current state UP Line protocol current state UP Description HUAWEI Quidway Series Vlanif10 Interface Route Port The MTU is 1500 Internet Address is 1 0 0 1 8 Internet Address is 10 0 0 1 8 Cluster IP Sending Frames Format is PKTFMT_ETHNT_2 Hardware address is 0001 0001 0001 Input bandwidt...

Page 147: ...with Member 2 in non NAT mode NOTE Devices out of the cluster access the FTP server in the cluster in non NAT mode The IP address of the FTP server is that of the management VLANIF interface on the member switch The FTP server uses a port number reserved in the cluster instead of the commonly used 21 ftp open 10 0 0 2 Connected to 10 0 0 2 220 FTP service ready User 10 0 0 2 none hgmp 331 Password...

Page 148: ...low pass vlan 10 ntdp enable ndp enable interface GigabitEthernet0 0 2 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI ip route static 2 0 0 0 255 0 0 0 10 0 0 1 return l Configuration file of Member 2 sysname Member 2 FTP server enable vlan batch 10 cluster enable ntdp enable ntdp hop 5 ntdp timer 10 n...

Page 149: ...Access the Outside SNMP Host in NAT Mode Networking Requirements As shown in Figure 3 6 all the Layer 2 switches belong to the same cluster Administrator 1 is the administrator switch of the cluster and other switches are member switches The member ID of Member 2 is 2 and the member ID of Member 3 is 3 When Member 1 Member 2 and Member 3 are required to send packets to the SNMP host a connection c...

Page 150: ...onfiguration Roadmap The configuration roadmap is as follows 1 Create a cluster and configure basic HGMP functions for the cluster according to the steps described in Example for Configuring Basic HGMP Functions for a Cluster 2 Enable SNMP NAT on the administrator switch The function is enabled by default NOTE Related configurations of cluster NAT must be performed on the administrator switch 3 As...

Page 151: ...trator 1 GigabitEthernet0 0 3 port link type trunk Administrator 1 GigabitEthernet0 0 3 port trunk allow pass vlan 10 Administrator 1 GigabitEthernet0 0 3 quit Administrator 1 interface vlanif 10 Administrator 1 Vlanif10 quit Configure member switch 1 Quidway system view Quidway sysname Member 1 Member 1 vlan 10 Member 1 vlan10 quit Member 1 interface gigabitethernet 0 0 1 Member 1 GigabitEthernet...

Page 152: ... switch 2 Member 2 ndp enable Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthernet0 0 1 ndp enable Member 2 GigabitEthernet0 0 1 quit Configure member switch 3 Member 3 ndp enable Member 3 interface gigabitethernet 0 0 1 Member 3 GigabitEthernet0 0 1 ndp enable Member 3 GigabitEthernet0 0 1 quit After the previous configuration you can find that NDP on the administrator is in the Enab...

Page 153: ...0 2 Member 1 GigabitEthernet0 0 2 ntdp enable Member 1 GigabitEthernet0 0 2 quit Configure member switch 2 Member 2 ntdp enable Member 2 ntdp timer 10 Member 2 ntdp hop 3 Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthernet0 0 1 ntdp enable Member 2 GigabitEthernet0 0 1 quit Configure member switch 3 Member 3 ntdp enable Member 3 ntdp timer 10 Member 3 ntdp hop 3 Member 3 interface gi...

Page 154: ...2 0002 1 S5700 0001 0001 0001 0 S5700 Step 5 Create a cluster NOTE Following steps can be performed only on the administrator switch On the administrator switch set the range of IP addresses that can be assigned to the cluster to 10 0 0 0 8 in which the IP address assigned to the administrator switch is 10 0 0 1 8 Administrator 1 cluster Administrator 1 cluster ip pool 10 0 0 1 8 Create a cluster ...

Page 155: ...0003 0003 0003 S5700 Member 3 2 0004 0004 0004 S5700 Warning Add all to cluster Y N y Info Cluster auto build is complete Added 3 member s into the cluster successfully After the previous configuration check information about the administrator switch and member switches in the cluster on the administrator switch You can find that all the member switches are added to the cluster and in the Up state...

Page 156: ... 0 1 Configure a SFTP server HUAWEI_0 Administrator 1 cluster sftp server 2 0 0 2 Configure a Simple Network Management Protocol SNMP host HUAWEI_0 Administrator 1 cluster snmp host 3 0 0 1 Configure a log host HUAWEI_0 Administrator 1 cluster logging host 4 0 0 1 After the previous configuration check information about the cluster to which the administrator switch belongs You can find that the pu...

Page 157: ...uster mngvlanid 10 ip pool 10 0 0 1 255 0 0 0 build HUAWEI cluster ftp nat enable ftp server 2 0 0 1 sftp server 2 0 0 2 logging host 4 0 0 1 snmp host 3 0 0 1 ip route static 0 0 0 0 0 0 0 0 1 0 0 2 return l Configuration file of Member 1 sysname Member 1 vlan batch 10 cluster enable ntdp enable ntdp hop 5 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type t...

Page 158: ...0001 name HUAWEI return l Configuration file of Member 3 sysname Member 3 vlan batch 10 cluster enable ntdp enable ntdp hop 5 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI return 3 6 5 Example for Configuring Devices in the HGM...

Page 159: ...accesses the SNMP host 3 0 0 1 8 Figure 3 7 Networking diagram of configuring devices in the HGMP cluster to access the outside SNMP host in non NAT mode IP MPLS core FTP Server 2 0 0 1 8 SFTP Server 2 0 0 2 8 NM station 3 0 0 1 8 Log station 4 0 0 1 8 Administrator 1 10 0 0 1 8 Member 1 Member 2 Member 3 10 0 0 4 8 GE0 0 1 GE0 0 2 GE0 0 1 GE0 0 2 GE0 0 1 GE0 0 1 Cluster GE0 0 3 GE0 0 1 1 0 0 2 8 ...

Page 160: ...N 10 on the device and add interfaces of the administrator switch and member switches to VLAN 10 Configure the administrator switch Quidway system view Quidway sysname Administrator 1 Administrator 1 vlan 10 Administrator 1 vlan10 quit Administrator 1 interface gigabitethernet 0 0 1 Administrator 1 GigabitEthernet0 0 1 port link type trunk Administrator 1 GigabitEthernet0 0 1 port trunk allow pass...

Page 161: ... 1 port trunk allow pass vlan 10 Member 3 GigabitEthernet0 0 1 quit Member 3 interface vlanif 10 Member 3 Vlanif10 quit Step 2 Configure NDP On switches enable NDP in the system view and on an interface Configure the administrator switch Administrator 1 ndp enable Administrator 1 interface gigabitethernet 0 0 1 Administrator 1 GigabitEthernet0 0 1 ndp enable Administrator 1 GigabitEthernet0 0 1 qu...

Page 162: ...m view and on the interface and configure the interval and range for NTDP to collect topologies to 10 minutes and 3 hops respectively Configure the administrator switch Administrator 1 ntdp enable Administrator 1 ntdp timer 10 Administrator 1 ntdp hop 3 Administrator 1 interface gigabitethernet 0 0 1 Administrator 1 GigabitEthernet0 0 1 ntdp enable Administrator 1 GigabitEthernet0 0 1 quit Adminis...

Page 163: ... switch 1 Member 1 cluster enable Member 1 cluster Member 1 cluster mngvlanid 10 Member 1 cluster quit Configure member switch 2 Member 2 cluster enable Member 2 cluster Member 2 cluster mngvlanid 10 Member 2 cluster quit Configure member switch 3 Member 3 cluster enable Member 3 cluster Member 3 cluster mngvlanid 10 Member 3 cluster quit After the topology collection function is enabled manually ...

Page 164: ... timeout 300 sec default Cluster SNMP NAT capability enabled Cluster FTP NAT capability disabled There are 1 member s in the cluster and 0 of them are down On the administrator switch check information about candidate switches you can find all the candidate switches and their types HUAWEI_0 Administrator 1 cluster display cluster candidates MAC HOP IP PLATFORM 0004 0004 0004 2 S5700 0003 0003 0003...

Page 165: ...10 Vlanif10 current state UP Line protocol current state UP Description HUAWEI Quidway Series Vlanif10 Interface Route Port The MTU is 1500 Internet Address is 1 0 0 1 8 Internet Address is 10 0 0 1 8 Cluster IP Sending Frames Format is PKTFMT_ETHNT_2 Hardware address is 0001 0001 0001 Input bandwidth utilization Output bandwidth utilization Step 8 Configure a static route on the administrator swi...

Page 166: ...chable routes exist between member switches and the SNMP host Configure member switch 1 HUAWEI_1 Member 1 ip route static 3 0 0 0 8 10 0 0 1 Configure member switch 2 HUAWEI_2 Member 2 ip route static 3 0 0 0 8 10 0 0 1 Configure member switch 3 HUAWEI_3 Member 3 ip route static 3 0 0 0 8 10 0 0 1 NOTE Multiple member switches can be configured simultaneously through incremental configuration For ...

Page 167: ... GigabitEthernet0 0 2 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable interface GigabitEthernet0 0 3 port link type trunk port trunk allow pass vlan 10 cluster mngvlanid 10 ip pool 10 0 0 1 255 0 0 0 build HUAWEI undo cluster snmp nat enable cluster ftp nat enable ftp server 2 0 0 1 sftp server 2 0 0 2 logging host 4 0 0 1 snmp host 3 0 0 1 ip route static 0 0 0 0 0 0 0 0...

Page 168: ...tch 10 cluster enable ntdp enable ntdp hop 5 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI ip route static 3 0 0 0 255 0 0 0 10 0 0 1 snmp agent snmp agent target host trap address udp domain 3 0 0 1 params securityname cluster...

Page 169: ...ribution Function for an HGMP Cluster Networking Requirements As shown in Figure 3 8 all the Layer 2 switches belong to the same cluster Administrator 1 is the administrator switch of the cluster and other switches are member switches The member ID of Member 2 is 2 and the member ID of Member 3 is 3 Member 2 and Member 3 are required to download configuration files in batches from the FTP server Q...

Page 170: ...o the steps described in 3 6 1 Example for Configuring Basic HGMP Functions for a Cluster 2 3 6 1 Example for Configuring Basic HGMP Functions for a Cluster NOTE l Configure the interconnection of FTP servers and devices in and out of the HGMP cluster in NAT or non NAT mode The following takes the configuration in NAT mode as an example l If the system software patch files or configuration files b...

Page 171: ...unk allow pass vlan 10 Administrator 1 GigabitEthernet0 0 2 quit Administrator 1 interface gigabitethernet 0 0 3 Administrator 1 GigabitEthernet0 0 3 port link type trunk Administrator 1 GigabitEthernet0 0 3 port trunk allow pass vlan 10 Administrator 1 GigabitEthernet0 0 3 quit Administrator 1 interface vlanif 10 Administrator 1 Vlanif10 quit Configure member switch 1 Quidway system view Quidway ...

Page 172: ...igabitEthernet0 0 1 quit Member 1 interface gigabitethernet 0 0 2 Member 1 GigabitEthernet0 0 2 ndp enable Member 1 GigabitEthernet0 0 2 quit Configure member switch 2 Member 2 ndp enable Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthernet0 0 1 ndp enable Member 2 GigabitEthernet0 0 1 quit Configure member switch 3 Member 3 ndp enable Member 3 interface gigabitethernet 0 0 1 Member 3...

Page 173: ...p 3 Member 1 interface gigabitethernet 0 0 1 Member 1 GigabitEthernet0 0 1 ntdp enable Member 1 GigabitEthernet0 0 1 quit Member 1 interface gigabitethernet 0 0 2 Member 1 GigabitEthernet0 0 2 ntdp enable Member 1 GigabitEthernet0 0 2 quit Configure member switch 2 Member 2 ntdp enable Member 2 ntdp timer 10 Member 2 ntdp hop 3 Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthernet0 0 1...

Page 174: ...DP and you can find the MAC address and types of related devices Administrator 1 ntdp explore Administrator 1 system view Administrator 1 display ntdp device list The device list of NTDP MAC HOP IP PLATFORM 0004 0004 0004 2 S5700 0003 0003 0003 1 S5700 0002 0002 0002 1 S5700 0001 0001 0001 0 S5700 Step 5 Create a cluster NOTE Following steps can be performed only on the administrator switch On the...

Page 175: ...rator switch l Take the mode of automatically adding member switches as an example To add member switches manually see Adding a Member Switch Add all candidate switches to the cluster HUAWEI_0 Administrator 1 cluster auto build Collecting candidate list please wait Candidate list Name Hop MAC Address DeviceType Member 1 1 0002 0002 0002 S5700 Member 2 1 0003 0003 0003 S5700 Member 3 2 0004 0004 00...

Page 176: ...oute static 0 0 0 0 0 1 0 0 2 NOTE You can also run a routing protocol Step 9 Configure public servers and hosts of the cluster Configure an FTP server HUAWEI_0 Administrator 1 cluster HUAWEI_0 Administrator 1 cluster cluster ftp nat enable HUAWEI_0 Administrator 1 cluster ftp server 2 0 0 1 Configure a SFTP server HUAWEI_0 Administrator 1 cluster sftp server 2 0 0 2 Configure a Simple Network Man...

Page 177: ...e MacAddress IPAddress Result 2 S5700 0003 0003 0003 10 0 0 3 success 3 S5700 0004 0004 0004 10 0 0 4 success Run the dir command on member switches and you can find that member switches successfully download the specified configuration files Take Member 2 as an example HUAWEI_2 Member 2 dir zip Directory of flash Idx Attr Size Byte Date Time FileName 0 rw 1 491 Sep 03 2008 17 43 52 vrpcfg zip 1 r...

Page 178: ...uster mngvlanid 10 ip pool 10 0 0 1 255 0 0 0 build HUAWEI cluster ftp nat enable ftp server 2 0 0 1 sftp server 2 0 0 2 logging host 4 0 0 1 snmp host 3 0 0 1 ip route static 0 0 0 0 0 0 0 0 1 0 0 2 return l Configuration file of Member 1 sysname Member 1 vlan batch 10 cluster enable ntdp enable ntdp hop 5 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type t...

Page 179: ...ress 0001 0001 0001 name HUAWEI return l Configuration file of Member 3 sysname Member 3 vlan batch 10 cluster enable ntdp enable ntdp hop 5 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI return 3 6 7 Example for Configuring the...

Page 180: ...8 Administrator 1 10 0 0 1 8 Member 1 Member 2 Member 3 10 0 0 4 8 GE0 0 1 GE0 0 2 GE0 0 1 GE0 0 2 GE0 0 1 GE0 0 1 Cluster GE0 0 3 GE0 0 1 1 0 0 2 8 Device MAC Address Device MAC Address Administrator 1 0001 0001 0001 Member 1 0002 0002 0002 Member 2 0003 0003 0003 Member 3 0004 0004 0004 Configuration Roadmap The configuration roadmap is as follows 1 Create a cluster according to the steps descri...

Page 181: ... 2 quit Administrator 1 interface gigabitethernet 0 0 3 Administrator 1 GigabitEthernet0 0 3 port link type trunk Administrator 1 GigabitEthernet0 0 3 port trunk allow pass vlan 10 Administrator 1 GigabitEthernet0 0 3 quit Administrator 1 interface vlanif 10 Administrator 1 Vlanif10 quit Configure member switch 1 Quidway system view Quidway sysname Member 1 Member 1 vlan 10 Member 1 vlan10 quit Me...

Page 182: ...face gigabitethernet 0 0 2 Member 1 GigabitEthernet0 0 2 ndp enable Member 1 GigabitEthernet0 0 2 quit Configure member switch 2 Member 2 ndp enable Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthernet0 0 1 ndp enable Member 2 GigabitEthernet0 0 1 quit Configure member switch 3 Member 3 ndp enable Member 3 interface gigabitethernet 0 0 1 Member 3 GigabitEthernet0 0 1 ndp enable Member...

Page 183: ...net 0 0 1 Member 1 GigabitEthernet0 0 1 ntdp enable Member 1 GigabitEthernet0 0 1 quit Member 1 interface gigabitethernet 0 0 2 Member 1 GigabitEthernet0 0 2 ntdp enable Member 1 GigabitEthernet0 0 2 quit Configure member switch 2 Member 2 ntdp enable Member 2 ntdp timer 10 Member 2 ntdp hop 3 Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthernet0 0 1 ntdp enable Member 2 GigabitEthern...

Page 184: ...evice list The device list of NTDP MAC HOP IP PLATFORM 0004 0004 0004 2 S5700 0003 0003 0003 1 S5700 0002 0002 0002 1 S5700 0001 0001 0001 0 S5700 Step 5 Create a cluster NOTE Following steps can be performed only on the administrator switch On the administrator switch set the range of IP addresses that can be assigned to the cluster to 10 0 0 0 8 in which the IP address assigned to the administra...

Page 185: ...list please wait Candidate list Name Hop MAC Address DeviceType Member 1 1 0002 0002 0002 S5700 Member 2 1 0003 0003 0003 S5700 Member 3 2 0004 0004 0004 S5700 Warning Add all to cluster Y N y Info Cluster auto build is complete Added 3 member s into the cluster successfully After the previous configuration check information about the administrator switch and member switches in the cluster on the ...

Page 186: ...le HUAWEI_0 Administrator 1 cluster ftp server 2 0 0 1 Configure a SFTP server HUAWEI_0 Administrator 1 cluster sftp server 2 0 0 2 Configure a Simple Network Management Protocol SNMP host HUAWEI_0 Administrator 1 cluster snmp host 3 0 0 1 Configure a log host HUAWEI_0 Administrator 1 cluster logging host 4 0 0 1 After the previous configuration check information about the cluster to which the adm...

Page 187: ...ress IPAddress Result 1 S5700 0003 0003 0003 10 0 0 3 success 2 S5700 0004 0004 0004 10 0 0 4 success End Configuration Files l Configuration file of Administrator 1 sysname Administrator 1 vlan batch 10 cluster enable ntdp enable ntdp hop 3 ntdp timer 10 ndp enable interface Vlanif10 ip address 1 0 0 1 255 0 0 0 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntd...

Page 188: ...gvlanid 10 administrator address 0001 0001 0001 name HUAWEI return l Configuration file of Member 2 sysname Member 2 vlan batch 10 cluster enable ntdp enable ntdp hop 3 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI return l Con...

Page 189: ... Layer 2 switches belong to the same cluster Administrator 1 is the administrator switch of the cluster and other switches are member switches The member ID of Member 2 is 2 and the member ID of Member 3 is 3 To configure VLAN 100 to VLAN 200 on Member 2 and Member 3 and a static route with its next hop address being the administrator switch you can use the incremental configuration function of th...

Page 190: ...4 0004 0004 Configuration Roadmap The configuration roadmap is as follows 1 Create a cluster according to the steps described in 3 6 1 Example for Configuring Basic HGMP Functions for a Cluster 2 Edit the list of incremental configurations command on the administrator switch 3 Deliver the list of incremental configuration commands to the specified member switch Data Preparation To complete the con...

Page 191: ...1 GigabitEthernet0 0 3 port trunk allow pass vlan 10 Administrator 1 GigabitEthernet0 0 3 quit Administrator 1 interface vlanif 10 Administrator 1 Vlanif10 quit Configure member switch 1 Quidway system view Quidway sysname Member 1 Member 1 vlan 10 Member 1 vlan10 quit Member 1 interface gigabitethernet 0 0 1 Member 1 GigabitEthernet0 0 1 port link type trunk Member 1 GigabitEthernet0 0 1 port tru...

Page 192: ... Member 2 GigabitEthernet0 0 1 ndp enable Member 2 GigabitEthernet0 0 1 quit Configure member switch 3 Member 3 ndp enable Member 3 interface gigabitethernet 0 0 1 Member 3 GigabitEthernet0 0 1 ndp enable Member 3 GigabitEthernet0 0 1 quit After the previous configuration you can find that NDP on the administrator is in the Enable state the host name of the neighboring node is Device Name and the ...

Page 193: ...mber switch 2 Member 2 ntdp enable Member 2 ntdp timer 10 Member 2 ntdp hop 3 Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthernet0 0 1 ntdp enable Member 2 GigabitEthernet0 0 1 quit Configure member switch 3 Member 3 ntdp enable Member 3 ntdp timer 10 Member 3 ntdp hop 3 Member 3 interface gigabitethernet 0 0 1 Member 3 GigabitEthernet0 0 1 ntdp enable Member 3 GigabitEthernet0 0 1 q...

Page 194: ...n be performed only on the administrator switch On the administrator switch set the range of IP addresses that can be assigned to the cluster to 10 0 0 0 8 in which the IP address assigned to the administrator switch is 10 0 0 1 8 Administrator 1 cluster Administrator 1 cluster ip pool 10 0 0 1 8 Create a cluster named HUAWEI on the administrator switch Administrator 1 cluster build HUAWEI HUAWEI_...

Page 195: ...ter auto build is complete Added 3 member s into the cluster successfully After the previous configuration check information about the administrator switch and member switches in the cluster on the administrator switch You can find that all the member switches are added to the cluster and in the Up state HUAWEI_0 Administrator 1 cluster display cluster members The list of cluster member SN Device ...

Page 196: ...nfigure a log host HUAWEI_0 Administrator 1 cluster logging host 4 0 0 1 After the previous configuration check information about the cluster to which the administrator switch belongs You can find that the public log host SNMP host FTP server and SFTP server are configured successfully HUAWEI_0 Administrator 1 cluster display cluster Cluster name HUAWEI Role Administrator switch management vlan id...

Page 197: ...the specified member switch and you can view that success is displayed HUAWEI_0 Administrator 1 display cluster increment result The result of member switch executing increment commands SN Device MacAddress IpAddress Result CommandId 2 S5700 0003 0003 0003 10 0 0 3 success 3 S5700 0004 0004 0004 10 0 0 4 success End Configuration Files l Configuration file of Administrator 1 sysname Administrator ...

Page 198: ...thernet0 0 2 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI return l Configuration file of Member 2 sysname Member 2 vlan batch 10 cluster enable ntdp enable ntdp hop 3 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntdp ena...

Page 199: ...etworking Requirements As shown in Figure 3 11 all the Layer 2 switches belong to the same cluster Administrator 1 is the administrator switch of the cluster and other switches are member switches The member ID of Member 2 is 2 and the member ID of Member 3 is 3 To synchronize the configuration files of all member switches to the FTP server as required you can configure the configuration synchroni...

Page 200: ...te a cluster according to the steps described in 3 6 1 Example for Configuring Basic HGMP Functions for a Cluster 2 3 6 2 Example for Configuring the Interconnection of FTP Servers and Devices in and out of the HGMP Cluster in NAT Mode NOTE l Configure the interconnection of FTP servers and devices in and out of the HGMP cluster in NAT or non NAT mode The following takes the configuration in NAT m...

Page 201: ... 1 GigabitEthernet0 0 2 port trunk allow pass vlan 10 Administrator 1 GigabitEthernet0 0 2 quit Administrator 1 interface gigabitethernet 0 0 3 Administrator 1 GigabitEthernet0 0 3 port link type trunk Administrator 1 GigabitEthernet0 0 3 port trunk allow pass vlan 10 Administrator 1 GigabitEthernet0 0 3 quit Administrator 1 interface vlanif 10 Administrator 1 Vlanif10 quit Configure member switch...

Page 202: ...thernet0 0 1 ndp enable Member 1 GigabitEthernet0 0 1 quit Member 1 interface gigabitethernet 0 0 2 Member 1 GigabitEthernet0 0 2 ndp enable Member 1 GigabitEthernet0 0 2 quit Configure member switch 2 Member 2 ndp enable Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthernet0 0 1 ndp enable Member 2 GigabitEthernet0 0 1 quit Configure member switch 3 Member 3 ndp enable Member 3 interf...

Page 203: ...1 ntdp hop 3 Member 1 interface gigabitethernet 0 0 1 Member 1 GigabitEthernet0 0 1 ntdp enable Member 1 GigabitEthernet0 0 1 quit Member 1 interface gigabitethernet 0 0 2 Member 1 GigabitEthernet0 0 2 ntdp enable Member 1 GigabitEthernet0 0 2 quit Configure member switch 2 Member 2 ntdp enable Member 2 ntdp timer 10 Member 2 ntdp hop 3 Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthe...

Page 204: ...DP and you can find the MAC address and types of related devices Administrator 1 ntdp explore Administrator 1 system view Administrator 1 display ntdp device list The device list of NTDP MAC HOP IP PLATFORM 0004 0004 0004 2 S5700 0003 0003 0003 1 S5700 0002 0002 0002 1 S5700 0001 0001 0001 0 S5700 Step 5 Create a cluster NOTE Following steps can be performed only on the administrator switch On the...

Page 205: ...rator switch l Take the mode of automatically adding member switches as an example To add member switches manually see Adding a Member Switch Add all candidate switches to the cluster HUAWEI_0 Administrator 1 cluster auto build Collecting candidate list please wait Candidate list Name Hop MAC Address DeviceType Member 1 1 0002 0002 0002 S5700 Member 2 1 0003 0003 0003 S5700 Member 3 2 0004 0004 00...

Page 206: ...oute static 0 0 0 0 0 1 0 0 2 NOTE You can also run a routing protocol Step 9 Configure public servers and hosts of the cluster Configure an FTP server HUAWEI_0 Administrator 1 cluster HUAWEI_0 Administrator 1 cluster cluster ftp nat enable HUAWEI_0 Administrator 1 cluster ftp server 2 0 0 1 Configure a SFTP server HUAWEI_0 Administrator 1 cluster sftp server 2 0 0 2 Configure a Simple Network Man...

Page 207: ...ss is displayed HUAWEi_0 Administrator 1 display increment synchronization result The result of member switchs synchronization SN Device MacAddress IpAddress result 1 S5700 0002 0002 0002 10 0 0 2 success 2 S5700 0003 0003 0003 10 0 0 3 success 3 S5700 0004 0004 0004 10 0 0 4 success On the FTP server you can view that the names of configuration files are the MAC address of member switches which i...

Page 208: ... port trunk allow pass vlan 10 ntdp enable ndp enable interface GigabitEthernet0 0 2 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI return l Configuration file of Member 2 sysname Member 2 FTP server enable vlan batch 10 cluster enable ntdp enable ntdp hop 5 ntdp timer 10 ndp enable interface Vlanif10 ...

Page 209: ...r Administrator 1 is the administrator switch of the cluster and other switches are member switches The member ID of Member 2 is 2 and the member ID of Member 3 is 3 Disable NDP and NTDP on the interfaces of all the member switches that do not need NDP or NTDP To perform the action and improve the security of the cluster you can configure security features for the HGMP cluster NOTE After NDP or NT...

Page 210: ... 0003 0003 0003 Member 3 0004 0004 0004 Configuration Roadmap The configuration roadmap is as follows 1 Create a cluster according to the steps described in 3 6 1 Example for Configuring Basic HGMP Functions for a Cluster 2 On the administrator switch disable NDP and NTDP on unrelated interfaces of member switches Data Preparation To complete the configuration you need the following data l Managem...

Page 211: ...abitEthernet0 0 3 port trunk allow pass vlan 10 Administrator 1 GigabitEthernet0 0 3 quit Administrator 1 interface vlanif 10 Administrator 1 Vlanif10 quit Configure member switch 1 Quidway system view Quidway sysname Member 1 Member 1 vlan 10 Member 1 vlan10 quit Member 1 interface gigabitethernet 0 0 1 Member 1 GigabitEthernet0 0 1 port link type trunk Member 1 GigabitEthernet0 0 1 port trunk al...

Page 212: ... Member 2 GigabitEthernet0 0 1 ndp enable Member 2 GigabitEthernet0 0 1 quit Configure member switch 3 Member 3 ndp enable Member 3 interface gigabitethernet 0 0 1 Member 3 GigabitEthernet0 0 1 ndp enable Member 3 GigabitEthernet0 0 1 quit After the previous configuration you can find that NDP on the administrator is in the Enable state the host name of the neighboring node is Device Name and the ...

Page 213: ...mber switch 2 Member 2 ntdp enable Member 2 ntdp timer 10 Member 2 ntdp hop 3 Member 2 interface gigabitethernet 0 0 1 Member 2 GigabitEthernet0 0 1 ntdp enable Member 2 GigabitEthernet0 0 1 quit Configure member switch 3 Member 3 ntdp enable Member 3 ntdp timer 10 Member 3 ntdp hop 3 Member 3 interface gigabitethernet 0 0 1 Member 3 GigabitEthernet0 0 1 ntdp enable Member 3 GigabitEthernet0 0 1 q...

Page 214: ...n be performed only on the administrator switch On the administrator switch set the range of IP addresses that can be assigned to the cluster to 10 0 0 0 8 in which the IP address assigned to the administrator switch is 10 0 0 1 8 Administrator 1 cluster Administrator 1 cluster ip pool 10 0 0 1 8 Create a cluster named HUAWEI on the administrator switch Administrator 1 cluster build HUAWEI HUAWEI_...

Page 215: ...ter auto build is complete Added 3 member s into the cluster successfully After the previous configuration check information about the administrator switch and member switches in the cluster on the administrator switch You can find that all the member switches are added to the cluster and in the Up state HUAWEI_0 Administrator 1 cluster display cluster members The list of cluster member SN Device ...

Page 216: ...ement Protocol SNMP host HUAWEI_0 Administrator 1 cluster snmp host 3 0 0 1 Configure a log host HUAWEI_0 Administrator 1 cluster logging host 4 0 0 1 After the previous configuration check information about the cluster to which the administrator switch belongs You can find that the public log host SNMP host FTP server and SFTP server are configured successfully HUAWEI_0 Administrator 1 cluster di...

Page 217: ...002 0002 10 0 0 2 success HUAWEI_0 Administrator 1 display member interface state ntdp The result of member switches executed disable member interface command SN Device MacAddress IpAddress result 3 S5700 0004 0004 0004 10 0 0 4 success 2 S5700 0003 0003 0003 10 0 0 3 success 1 S5700 0002 0002 0002 10 0 0 2 success End Configuration Files l Configuration file of Administrator 1 sysname Administrat...

Page 218: ...trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI return l Configuration file of Member 2 sysname Member 2 vlan batch 10 cluster enable ntdp enable ntdp hop 3 ntdp timer 10 ndp enable interface Vlanif10 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvl...

Page 219: ...itEthernet0 0 1 port link type trunk port trunk allow pass vlan 10 ntdp enable ndp enable cluster mngvlanid 10 administrator address 0001 0001 0001 name HUAWEI return Quidway S5700 Series Ethernet Switches Configuration Guide Network Management 3 HGMP Configuration Issue 01 2011 10 26 Huawei Proprietary and Confidential Copyright Huawei Technologies Co Ltd 208 ...

Page 220: ...unctions including the NTP operating modes 4 4 Configuring NTP Security Mechanisms This section describes how to configure NTP security mechanisms to guarantee reliable clock synchronization on networks demanding high security 4 5 Maintaining NTP This section describes how to debug NTP through the debugging command in case of an NTP operation fault 4 6 Configuration Examples This section provides ...

Page 221: ... event Systems have to take the same clock for reference to ensure a proper sequence of implementation l Incremental backup between the backup server and clients Clocks on the backup server and clients should be synchronized When all the devices on a network need to be synchronized it is almost impossible for an administrator to manually change the system clock by executing command lines This is b...

Page 222: ...d at 10 00 03 The process of synchronizing system clocks is as follows 1 Switch A sends an NTP packet to Switch B The packet carries the originating timestamp when it leaves Switch A which is 10 00 00 am T1 2 When the NTP packet reaches Switch B Switch B adds its receiving timestamp to the NTP packet which is 11 00 01 am T2 3 When the NTP packet leaves Switch B Switch B adds its transmitting times...

Page 223: ...onfigure only the client The server needs to be configured with only one NTP primary clock Note that the client can be synchronized to the server but the server cannot be synchronized to the client After the configuration 1 The client sends a synchronization request packet to the server with the mode field being set to 3 The value 3 indicates the client mode 2 Upon receiving the request packet the...

Page 224: ...ed to configure both the server and the client After the configurations l The server periodically sends clock synchronization packets to the multicast address 224 0 1 1 l The client senses multicast packets from the server l After receiving the first multicast packet to estimate the network delay the client enables a temporary server client model for exchanging messages with the remote server l Th...

Page 225: ...o the operation mode l Server client mode IP address of the server and the VPN instance that the server belongs to l Peer mode IP address of the symmetric passive end and the VPN instance that it belongs to l Broadcast mode interfaces to send and receive broadcast NTP packets and the maximum sessions set up dynamically on the client l Multicast mode IP address of the multicast group the TTL value ...

Page 226: ...r Context Commonly specify the IP address of the NTP server on the client The client and server can then exchange NTP packets using this IP address If the source interface to send NTP packets is specified on the server the IP address of the server configured on the client should be the same otherwise the client cannot process NTP packets sent from the server and clock synchronization fails Procedu...

Page 227: ...interface to send NTP packets is specified on the server the IP address of the server configured on the client should be the same otherwise the client cannot process NTP packets sent from the server and clock synchronization fails End 4 3 4 Configuring the Peer Mode This part describes how to configure the NTP peer mode In this mode clocks on the two peers synchronize with each other Each side can...

Page 228: ...ss If the source interface to send NTP packets is specified on the symmetric active end the IP address of the NTP peer configured on the symmetric passive end should be the same otherwise the passive end cannot process NTP packets sent from the active end and clock synchronization fails End 4 3 5 Configuring the Broadcast Mode This part describes how to configure the NTP broadcast mode on the LAN ...

Page 229: ...is configured as an NTP broadcast client Step 2 is optional By default a maximum of 100 NTP sessions can be set up dynamically After the configurations the local switch senses the broadcast NTP packets sent from the server and synchronizes the local clock Running the ntp service max dynamic sessions command does not affect the existence of NTP sessions When the number of the sessions reaches or ex...

Page 230: ...Run interface vlanif vlan id The interface that receives NTP multicast packets is specified 5 Run ntp service multicast client ip address The local switch is set to be an NTP multicast client Step 2 is optional By default up to 100 NTP sessions can be set up dynamically After the configurations the local switch senses the multicast NTP packets sent from the server and synchronizes the local clock ...

Page 231: ...ting the Maximum Number of Dynamic NTP Sessions Context Do as follows on the S5700 that functions as a client Procedure Step 1 Run system view The system view is displayed Step 2 Run ntp service max dynamic sessions number The maximum number of dynamic NTP sessions is set End 4 3 9 Checking the Configuration After basic NTP functions are configured you can view the configuration Prerequisite The c...

Page 232: ...ource master 2 source peer 3 selected 4 candidate 5 configured 6 vpn instance Run the display ntp service trace command to view the summary information on each passing NTP server when tracing from the local device to the reference clock source Quidway display ntp service trace server 127 0 0 1 stratum 5 offset 0 024099 synch distance 0 06337 server 171 1 1 2 stratum 4 offset 0 028786 synch distanc...

Page 233: ... l NTP authentication NTP authentication is required in some networks with high security demands The configuration of NTP authentication involves configuring NTP authentication on both the client and the server During the configuration of NTP authentication pay attention to the following rules Configure NTP authentication on both the client and the server otherwise the authentication does not take...

Page 234: ...multicast packets 4 4 2 Setting NTP Access Authorities When receiving an access request packet the NTP server matches the request packet with the access authority in descending order from peer server synchronization to query The first matched authority takes effect Context Do as follows on the switch Procedure Step 1 Run system view The system view is displayed Step 2 Run ntp service access peer q...

Page 235: ...e device Context NTP client synchronizes to authenticated NTP servers to ensure that time service is reliable across the network Authentication prevents the modification of NTP message data from malicious network attacks Do as follows on the switch Procedure l Configuring NTP MD5 autentication NOTE l Configure the same authentication key on the server and client and affirm that the key is reliable...

Page 236: ...face type interface number preference The ID of the authentication key used for the synchronization of the server and client clocks is configured End 4 4 5 Configuring NTP Authentication in Peer Mode By configuring the authentication key ID used in the synchronization with the peer on the local end you can apply NTP authentication in peer mode Context Do as follows on the switch that functions as ...

Page 237: ...ackets is specified Step 4 Run ntp service broadcast server authentication keyid key id version number The ID of the authentication key used by the NTP broadcast server is configured For configuring the broadcast client see Configuring the Broadcast Mode End 4 4 7 Configuring NTP Authentication in Multicast Mode By configuring the authentication key ID used in the synchronization with the NTP mult...

Page 238: ...f NTP sessions End Example Run the display ntp service status command to view the status of the NTP service Quidway display ntp service status clock status synchronized clock stratum 2 reference clock ID LOCAL 0 nominal frequency 60 0002 Hz actual frequency 60 0002 Hz clock precision 2 18 clock offset 0 0000 ms root delay 0 00 ms root dispersion 0 00 ms peer dispersion 10 00 ms reference time 15 5...

Page 239: ...lection synchronization validity to enable NTP debugging End 4 6 Configuration Examples This section provides several configuration examples of NTP 4 6 1 Example for Configuring NTP Authentication in Unicast Client Server Mode Networking Requirements Figure 4 2 shows the diagram of NTP l Switch A functions as a unicast NTP server The clock of Switch A is the master clock with the stratum being 2 l...

Page 240: ... You must enable NTP authentication on the client before specifying the IP address of the NTP server and authentication key to be sent to the server otherwise NTP authentication is not performed before clock synchronization l To implement authentication successfully configure both the server and the client Data Preparation To complete the configuration you need the following data l IP address of t...

Page 241: ...view SwitchC ntp service authentication enable SwitchC ntp service authentication keyid 42 authentication mode md5 Hello SwitchC ntp service reliable authentication keyid 42 SwitchC ntp service unicast server 10 0 0 1 authentication keyid 42 Step 5 Specify the NTP server for Switch D Configure Switch B as the NTP server of Switch D SwitchD system view SwitchD ntp service authentication enable Swit...

Page 242: ...ck of Switch C is 4 one stratum lower than the clock stratum of Switch B SwitchD display ntp service status clock status synchronized clock stratum 4 reference clock ID 10 0 0 1 nominal frequency 60 0002 Hz actual frequency 60 0002 Hz clock precision 2 18 clock offset 3 8128 ms root delay 31 26 ms root dispersion 74 20 ms peer dispersion 34 30 ms reference time 11 55 56 833 UTC Mar 2 2006 C7B15BCC...

Page 243: ...etwork 1 0 1 0 0 0 0 255 network 10 0 0 0 0 0 0 255 ntp service authentication enable ntp service authentication keyid 42 authentication mode md5 ENC 8HX Q Q MAF4 1 ntp service reliable authentication keyid 42 ntp service unicast server 2 2 2 2 authentication keyid 42 return l Configuration file of Switch C sysname SwitchC vlan batch 111 interface Vlanif111 ip address 10 0 0 2 255 255 255 0 interf...

Page 244: ...lock stratum is 2 l Switch C is the NTP server of Switch D That is Switch D is the client l Switch D is the passive peer of Switch E That is Switch E is the active end Figure 4 3 Networking diagram for configuring the NTP peer mode SwitchC SwitchE SwitchD GE0 0 1 3 0 1 33 24 GE0 0 1 3 0 1 31 24 GE0 0 1 3 0 1 32 24 Configuration Roadmap The configuration roadmap is as follows 1 Configure the clock ...

Page 245: ...D and you can see that the status of the clock is synchronized This means that the synchronization is complete The stratum of the clock of Switch D is 3 one stratum lower than the clock stratum of Switch C SwitchD display ntp service status clock status synchronized clock stratum 3 reference clock ID 3 0 1 31 nominal frequency 64 0029 Hz actual frequency 64 0029 Hz clock precision 2 7 clock offset...

Page 246: ... C sysname SwitchC vlan batch 100 interface Vlanif100 ip address 3 0 1 31 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 ntp service refclock master 2 return l Configuration file of Switch D sysname SwitchD vlan batch 100 interface Vlanif100 ip address 3 0 1 32 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid u...

Page 247: ...thernet0 0 1 to listen to the broadcast packets l NTP authentication needs to be enabled Figure 4 4 Networking diagram for configuring the NTP broadcast mode GE0 0 1 VLANIF20 1 0 1 11 24 SwitchA SwitchF SwitchC SwitchD VLANIF20 1 0 1 2 24 VLANIF10 3 0 1 2 24 GE0 0 1 VLANIF10 3 0 1 31 24 3 0 1 32 24 GE0 0 2 GE0 0 1 VLANIF10 GE0 0 1 Configuration Roadmap The configuration roadmap is as follows 1 Con...

Page 248: ...rface vlanif 10 SwitchD Vlanif10 ip address 3 0 1 32 24 SwitchD Vlanif10 quit Configure the IP address of the VLANIF interface on Switch F SwitchF system view SwitchF vlan 10 SwitchF Vlan10 quit SwitchF interface gigabitethernet 0 0 2 SwitchF GigabitEthernet0 0 2 port hybrid pvid vlan 10 SwitchF GigabitEthernet0 0 2 port hybrid untagged vlan 10 SwitchF GigabitEthernet0 0 2 quit SwitchF interface v...

Page 249: ...cation mode md5 Hello SwitchD ntp service reliable authentication keyid 16 Configure Switch D as the NTP broadcast client and configure Switch D to listen to NTP broadcast packets through VLANIF10 SwitchD interface vlanif 10 SwitchD vlanif10 ntp service broadcast client SwitchD vlanif10 quit After the configurations the clock of Switch D is synchronized with the clock of Switch C Step 5 Configure ...

Page 250: ...t interface GigabitEthernet0 0 1 port hybrid pvid vlan 20 port hybrid untagged vlan 20 ospf 1 area 0 0 0 0 network 1 0 1 0 0 0 0 255 ntp service authentication enable ntp service authentication keyid 16 authentication mode md5 ENC 8HX Q Q MAF4 1 ntp service reliable authentication keyid 16 return Configuration file of Switch C sysname SwitchC vlan batch 10 interface Vlanif10 ip address 3 0 1 31 25...

Page 251: ... hybrid untagged vlan 10 ospf 1 area 0 0 0 0 network 1 0 1 0 0 0 0 255 network 3 0 1 0 0 0 0 255 return 4 6 4 Example for Configuring the Common NTP Multicast Mode Networking Requirements As shown in Figure 4 5 l Switch C and Switch D are on the same network segment Switch A is on another network segment Switch F connects the two network segments l As the NTP multicast server Switch C uses the loc...

Page 252: ...ing to Figure 4 5 Configure the IP address of the VLANIF interface on Switch C SwitchC system view SwitchC vlan 10 SwitchC Vlan10 quit SwitchC interface gigabitethernet 0 0 1 SwitchC GigabitEthernet0 0 1 port hybrid pvid vlan 10 SwitchC GigabitEthernet0 0 1 port hybrid untagged vlan 10 SwitchC GigabitEthernet0 0 1 quit SwitchC interface vlanif 10 SwitchC Vlanif10 ip address 3 0 1 31 24 SwitchC Vla...

Page 253: ...hernet0 0 1 port hybrid untagged vlan 20 SwitchA GigabitEthernet0 0 1 quit SwitchA interface vlanif 20 SwitchA vlanif20 ip address 1 0 1 11 24 SwitchA vlanif20 quit Step 2 Configure the routes between them are reachable The configuration procedure is not mentioned Step 3 Configure the NTP multicast server Configure the clock of Switch C as the NTP master clock with the stratum being 2 SwitchC syst...

Page 254: ...itchD display ntp service status clock status synchronized clock stratum 3 reference clock ID 3 0 1 31 nominal frequency 60 0002 Hz actual frequency 60 0002 Hz clock precision 2 18 clock offset 0 66 ms root delay 24 47 ms root dispersion 208 39 ms peer dispersion 9 63 ms reference time 17 03 32 022 UTC Apr 25 2005 C61734FD 800303C0 End Configuration Files l Configuration file of Switch A sysname S...

Page 255: ...ch F sysname SwitchF vlan batch 10 20 interface Vlanif10 ip address 3 0 1 2 255 255 255 0 interface Vlanif20 ip address 1 0 1 2 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 20 port hybrid untagged vlan 20 interface GigabitEthernet0 0 2 port hybrid pvid vlan 10 port hybrid untagged vlan 10 ospf 1 area 0 0 0 0 network 1 0 1 0 0 0 0 255 network 3 0 1 0 0 0 0 255 return Quidway S...

Page 256: ...nd the destination Tracert is helpful in testing network reachability and locating the fault on the network 5 3 Performing Ping and Tracert Operations This section describes the execution of the ping and tracert commands 5 4 Debugging Ping and Tracert This section describes how to locate faults through ICMP messages 5 5 Configuration Examples This section provides a configuration example of ping a...

Page 257: ...ck an ICMP Echo Reply message and measuring the interval between sending the ICMP Echo Request message and receiving the ICMP Echo Reply message Figure 5 2 Format of ICMP Echo Request and Echo Reply messages Data Checksum Code Type Identifier Sequence number 15 7 23 31 0 Figure 5 2 shows the format of ICMP Echo Request and Echo Reply messages The length of the Data field is a variable You can spec...

Page 258: ... port number in the UDP datagram by 1 respectively and then sends out the UDP datagram again 4 Perform Step 2 and Step 3 the log host receives the UDP datagram from the S5700 5 After receiving the UDP datagram from the S5700 the log host finds that the destination is itself It begins to process the datagram The log host tries to find the upper layer protocol corresponding to the destination UDP po...

Page 259: ...Step 1 Run ping ip a source ip address c count d f h ttl value i interface type interface number m time n p pattern q r s packetsize t timeout tos tos value v host Network connectivity is tested Only some of the parameters are specified in the preceding ping command For details on more parameters refer to the Quidway S5700 Series Ethernet Switches Command Reference The output of the ping command i...

Page 260: ... specified in the preceding tracert command For details on more parameters refer to the Quidway S5700 Series Ethernet Switches Command Reference The output of the tracert command displays a list of gateways traversed between the source and the destination hosts Quidway tracert 18 26 0 115 traceroute to 18 26 0 115 18 26 0 115 max hops 30 packet length 40 1 128 3 112 1 128 3 112 1 0 ms 0 ms 0 ms 2 ...

Page 261: ...te which device fails End 5 5 Configuration Examples This section provides a configuration example of ping and tracert operations 5 5 1 Example for Performing Ping and Tracert Operations Networking Requirements As shown in Figure 5 4 after configuring Switch A you check the link between Switch A and the log host If Switch A and the log host are disconnected you cannot know which device fails becau...

Page 262: ...ping 3 1 1 2 PING 3 1 1 2 56 data bytes press CTRL_C to break Request time out Request time out Request time out Request time out Request time out 3 1 1 2 ping statistics 5 packet s transmitted 0 packet s received 100 00 packet loss The display on Switch A shows that the log host is unreachable which indicates that a fault occurs on some link segment between Switch A and the log host Step 2 Run th...

Page 263: ...ure that Switch A and the log host can communicate properly End Configuration Files None Quidway S5700 Series Ethernet Switches Configuration Guide Network Management 5 Ping and Tracert Issue 01 2011 10 26 Huawei Proprietary and Confidential Copyright Huawei Technologies Co Ltd 252 ...

Page 264: ...igure an Internet Control Message Protocol ICMP test to check the IP network connectivity 6 6 Configuring the FTP Download Test This section describes how to configure a File Transfer Protocol FTP download test to check the FTP download performance 6 7 Configuring the FTP Upload Test This section describes how to configure an FTP upload test to check the FTP upload performance 6 8 Configuring the ...

Page 265: ...ace test to check the connectivity between Label Switching Routers LSRs along the LSP 6 18 Configuring an ICMP Jitter Test This section describes how to configure an ICMP jitter test to measure jitter on IP networks 6 19 Configuring the PWE3 Ping Test to Check the One Hop PW This section describes how to configure a PWE3 ping test to check the connectivity of a single hop pseudo wire PW 6 20 Confi...

Page 266: ...ection describes how to maintain an NQA test instance You can restart the test instance clear the statistics on the test result to maintain a test instance 6 27 Configuration Examples This section provides several configuration examples of NQA Quidway S5700 Series Ethernet Switches Configuration Guide Network Management 6 NQA Configuration Issue 01 2011 10 26 Huawei Proprietary and Confidential Co...

Page 267: ...ibes the differences between NQA and Ping tests NQA is the extension and enhancement of Ping By sending an Internet Control Message Protocol ICMP Echo Request packet from the local and expecting an ICMP Echo Reply packet from the specified destination the Ping program can test the round trip time RTT of an ICMP packet In addition to testing the RRT of an ICMP packet between the local and the desin...

Page 268: ...hrough the monitoring function Figure 6 2 Relationship between the NQA client and the NQA server NQA Client NQA Server IP MPLS Network You can create multiple TCP or UDP monitoring services on an NQA server Each monitoring service corresponds to a specific destination address and a port number The destination address and port number can be repeatedly specified Performing NQA Tests After being conf...

Page 269: ...rt time and end time for a single test Supports three modes of starting tests immediate timely and delayed Supports several modes of ending tests automatic immediate timely delayed and ending the test when the lifetime of the test expires Supports auto distributing the start time and the test interval when several tests are performed at a time l Supports the auto delay function with which the syst...

Page 270: ...work connectivity 6 5 1 Establishing the Configuration Task Before configuring an ICMP test familiarize yourself with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Applicable Environment An ICMP test has a similar function with the ping command but its output is more detailed Pre...

Page 271: ...onfigure the source interface that sends test packets run the source interface interface type interface number command l To configure the source IP address run the source address ipv4 ip address command source address ipv4 ip address equals the a option in the ping command l To configure the size packet header excluded of the Echo Request packet run the datasize size command datasize size equals t...

Page 272: ...h mm ss command The test instance is started at a specified time l To perform the NQA test after a certain delay period run the start delay seconds second hh mm ss end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started after a certain delay End 6 5 3 Checking the Configuration After configuring the ICMP test you can view the t...

Page 273: ...ile Transfer Protocol FTP download test to check the FTP download performance 6 6 1 Establishing the Configuration Task Before configuring an FTP download test familiarize yourself with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Applicable Environment In an FTP download test t...

Page 274: ...ated and the test instance view is displayed Step 3 Run test type ftp The test type is set to FTP Step 4 Run destination address ipv4 ip address The destination IP address is configured Step 5 Optional Perform the following as required to configure other parameters of the FTP Download test For detailed parameter configurations see the chapter Configuring Universal NQA Test Parameters l To configur...

Page 275: ...de as required because the start command has several forms l To perform the NQA test immediately run the start now end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started immediately l To perform the NQA test at the specified time run the start at yyyy mm dd hh mm ss end at yyyy mm dd hh mm ss delay seconds second hh mm ss life...

Page 276: ...ration number 0 Disconnect operation number 0 CtrlConnTime Min Max Average 438 438 438 DataConnTime Min Max Average 218 218 218 SumTime Min Max Average 656 656 656 Average RTT 380 Lost packet ratio 0 6 7 Configuring the FTP Upload Test This section describes how to configure an FTP upload test to check the FTP upload performance 6 7 1 Establishing the Configuration Task Before configuring an FTP u...

Page 277: ...Optional Source IP address of the FTP operation and VPN instance name and source and destination port numbers of the FTP operation 5 Name or size of the uploaded file 6 Start mode and end mode of the test 6 7 2 Configuring the FTP Upload Test Parameters This part describes how to set parameters for the FTP upload test Context Do as follows on the NQA client FTP client Procedure Step 1 Run system v...

Page 278: ...configured Step 8 Run ftp password password The FTP password used during the login is configured Step 9 Perform the following as required to upload the file l To upload the file with a specified name run the ftp filename file name command NOTE l If no file path is specified the system searches for the file in the current path If the specified file name does not exist a file is created according to...

Page 279: ...uisite The configurations of the FTP Upload Test function are complete Context NOTE NQA test results cannot be displayed automatically on a terminal You must run the display nqa results command to view test results By the default the command output contains the records about only the last five tests Procedure Step 1 Run the display nqa results command to view the test results on the NQA client End...

Page 280: ... DNS resolution packets containing the IP address is returned l Time to set up a TCP connection It is the time taken by the client to set up a TCP connection with an HTTP server through three way handshake l Transaction time It is a period from the time the client sends the Get or Post packets to an HTTP server to the time the Echo packet sent by the client reaches the HTTP server Pre configuratio...

Page 281: ...versal NQA Test Parameters l To configure the VPN instance to be tested run the vpn instance vpn instance name command NOTE Only S5700EI and S5700HI support the vpn instance command l To configure the source IP address run the source address ipv4 ip address command l To configure the source port run the source port port numbercommand l To configure the destination port run the destination port por...

Page 282: ... The test instance is started at a specified time l To perform the NQA test after a certain delay period run the start delay seconds second hh mm ss end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started after a certain delay End 6 8 3 Checking the Configuration After configuring the HTTP test you can view the test result Prer...

Page 283: ...Name System DNS test to check the DNS resolution speed 6 9 1 Establishing the Configuration Task Before configuring a DNS test familiarize yourself with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Applicable Environment The DNS test is performed to obtain the speed at which the...

Page 284: ...ance view is displayed Step 4 Run test type dns The test type is set to DNS Step 5 Run dns server ipv4 ip address The IPv4 address of the DNS server is configured Step 6 Run destination address url urlstring The name of the destination host is configured NOTE For detailed parameter configurations see the chapter Configuring Universal NQA Test Parameters Step 7 Run start The NQA test is started Sel...

Page 285: ... results command to view test results By the default the command output contains the records about only the last five tests Procedure Step 1 Run the display nqa results test instance admin name test name command to view the test results on the NQA client End Example Run the display nqa results command If the test is successful the following is displayed Quidway display nqa results NQA entry t t te...

Page 286: ...nfiguring a traceroute test configure reachable routes between the NQA client and the device to be tested Data Preparation To configure a traceroute test you need the following data No Data 1 Administrator and name of an NQA test instance 2 Destination IP address 3 Optional VPN instance name maximum hops initial TTL and maximum TTL value of the packet and source IP address and destination port of ...

Page 287: ...e destination port number run destination port port number l To configure a NQA test packets to be sent without searching the routing table run sendpacket passroute Step 6 Run start An NQA test is started Select the start mode as required because the start command has several forms l To start the NQA test immediately run the start now end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifeti...

Page 288: ...is inactive testtype is trace 1 Test 1 result The test is finished Completion success Attempts number 1 Disconnect operation number 0 Operation timeout number 0 System busy operation number 0 Connection fail number 0 Operation sequence errors number 0 RTT Stats errors number 0 Drop operation number 0 Last good path Time 2010 06 21 15 41 01 7 1 Hop 1 Send operation times 3 Receive response times 3 ...

Page 289: ...NMP query test you need the following data No Data 1 Administrator name and test name 2 IP address of the SNMP agent 3 Optional Source IP addresses and source port numbers of test packets interval for sending test packets and percentage of the failed NQA tests 4 Start mode and end mode of the test 6 11 2 Configuring the SNMP Query Test Parameters This part describes how to set SNMP query test para...

Page 290: ...ed NQA tests run the fail percent percent command l To configure the NQA test packets to be sent without searching the routing table run the sendpacket passroute command Step 6 Run start The NQA test is started Select the start mode as required because the start command has several forms l To perform the NQA test immediately run the start now end at yyyy mm dd hh mm ss delay seconds second hh mm s...

Page 291: ...connect operation number 0 Operation timeout number 0 System busy operation number 0 Connection fail number 0 Operation sequence errors number 0 RTT Stats errors number 0 Destination ip address 10 2 1 2 Min Max Average Completion Time 63 172 109 Sum Square Sum Completion Time 329 42389 Last Good Probe Time 2006 8 5 15 33 49 1 Lost packet ratio 0 6 12 Configuring the TCP Test This section describes...

Page 292: ...r of the port monitored by the server must be identical with those configured on the client Context Do as follows on the NQA server TCP server Procedure Step 1 Run system view The system view is displayed Step 2 Run nqa server tcpconnect vpn instance vpn instance name ip address port number The TCP monitoring service is configured NOTE Note that the IP address and port number monitored by the serv...

Page 293: ... vpn instance command l To configure the source IP address run the source address ipv4 ip address command l To configure the source port number run the source port port numbercommand l To configure the interval for sending test packets run the interval seconds interval command l To configure the percentage of the failed NQA tests run the fail percent percentcommand l To configure the NQA test pack...

Page 294: ...nction are complete Context NOTE NQA test results cannot be displayed automatically on a terminal You must run the display nqa results command to view test results By the default the command output contains the records about only the last five tests Procedure l Run the display nqa results test instance admin name test name command to view the test results on the NQA client l Run the display nqa se...

Page 295: ...e time for the specified port to respond to a UDP connection request you can create a UDP test instance Pre configuration Tasks Before configuring the UDP test configure reachable routes between the NQA client and the UDP server Data Preparation To configure the UDP test you need the following data No Data 1 Administrator name and test name 2 IP address and port of the UDP server 3 Destination IP ...

Page 296: ...ibes how to set UDP test parameters Context Do as follows on the NQA client UDP client Procedure Step 1 Run system view The system view is displayed Step 2 Run nqa test instance admin name test name An NQA test instance is created and the test instance view is displayed Step 3 Run test type udp The test type is set to UDP Step 4 Run destination address ipv4 ip address The destination IP address is...

Page 297: ...y mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started immediately l To perform the NQA test at the specified time run the start at yyyy mm dd hh mm ss end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started at a specified time l To perform the NQA test after a certa...

Page 298: ...nfiguration succeeds Quidway display nqa server NQA Server Max 100 NQA Server Num 1 NQA Concurrent TCP Server 0 NQA Concurrent UDP Server 1 nqa server udpecho 10 112 58 3 3000 ACTIVE 6 14 Configuring the Jitter Test This section describes how to configure a jitter test to check jitter on the network You can perform a jitter test only when both the client and the server are Huawei devices 6 14 1 Es...

Page 299: ...lient and the NQA server Data Preparation To configure the Jitter test you need the following data No Data 1 Administrator name and test name 2 IP address and the port number monitored by the UDP server 3 Destination IP addresses and port numbers of the probe packets sent by the UDP client 4 Optional VPN instance name source IP address and port number of the probe packet sent by the UDP client num...

Page 300: ...tter packets run the nqa jitter tag version version number command in the system view If Version 2 is adopted after collecting the packet loss across a uni directional link is enabled you can find the packet loss across the link from the source to the destination or from the destination to the source or from an unknown direction According to these statistics the network administrator can easily de...

Page 301: ...e number of the test packets must be less than 3000 l To configure the interval for sending test packets run the interval milliseconds interval seconds interval command The shorter the interval for sending the Jitter test packets is the faster the test is completed If the interval however is set to a very small value the jitter statistics result may have a greater error l To configure the percenta...

Page 302: ...60 ResponseProbe 60 Completion success RTD OverThresholds number 0 Min Max Avg Sum RTT 1 1 1 60 RTT Square Sum 60 NumOfRTT 60 Drop operation number 60 Operation sequence errors number 0 RTT Stats errors number 0 System busy operation number 0 Operation timeout number 0 Min Positive SD 1 Min Positive DS 1 Max Positive SD 1 Max Positive DS 1 Positive SD Number 15 Positive DS Number 1 Positive SD Sum...

Page 303: ...estination IP address The packet is forwarded along the specified LSP in the MPLS network 2 The egress monitors port 3503 that sends Echo packets 3 The ingress collects the test results based on the received Echo packets Pre configuration Tasks Before configuring the LSP Ping test you need the following configuration l LSP tunnel Data Preparation To configure the LSP Ping test you need the followi...

Page 304: ... udp udp via vpls udp router alert level control channel command NOTE In a uni directional LSP Ping test if the lsp replymode no reply command is configured the test result displays that the test fails regardless of whether the test actually is successful or fails If the test is successful the test result also displays the number of the timeout packets If the test fails the test result displays th...

Page 305: ... delay period run the start delay seconds second hh mm ss end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started after a certain delay End 6 15 3 Checking the Configuration After configuring the LSP ping test you can view the test result Prerequisite The configurations of the LSP Ping Test function are complete Context NOTE NQ...

Page 306: ...ats errors number 0 Destination ip address 100 1 1 200 Min Max Average Completion Time 4 5 4 Sum Square Sum Completion Time 13 57 Last Good Probe Time 2007 11 19 19 46 28 8 Lost packet ratio 0 6 16 Configuring the LSP Jitter Test This section describes how to configure an LSP jitter test to measure jitter in the LSP during the packet transmission 6 16 1 Establishing the Configuration Task Before c...

Page 307: ...rameters for the LDP Tunnel This part describes how to set parameters for an LDP LSP jitter test Context Do as follows on the ingress of an LSP tunnel Procedure Step 1 Run system view The system view is displayed Step 2 Run nqa test instance admin name test name An NQA test instance is created and the test instance view is displayed Step 3 Run test type lspjitter The test type is set to LSP Jitter...

Page 308: ...NOTE The minimum interval for sending test packets is one second and the maximum interval is 60 seconds l To configure the percentage of the failed NQA tests run thefail percent percent command Step 7 Run start The NQA test is started Select the start mode as required because the startcommand has several forms l To perform the NQA test immediately run the start now end at yyyy mm dd hh mm ss delay...

Page 309: ...RTT of the packet Destination IP address and the type of the destination IP address Number of the Echo packets and the sent packets Time when the last packet is received Quidway display nqa results NQA entry admin lspjitter testflag is inactive testtype is lspjitter 1 Test 1 result The test is finished SendProbe 60 ResponseProbe 60 Completion success RTD OverThresholds number 0 Min Max Avg Sum RTT...

Page 310: ...he next hop and the outgoing label For the MPLS TE tunnel you can specify a tunnel interface for sending the MPLS Echo Request packet so that the related Constraint based Routed Label Switched Path CR LSP can be obtained l The TTL value of the first Traceroute Echo Request packet is 1 The packet is forwarded along with the specified LSP in the MPLS network An MPLS Echo Reply packet is returned if ...

Page 311: ...on address ipv4 ip address lsp masklen masklen lsp loopback loopback address The destination IP address to be tested is configured Step 6 Optional Perform the following as required to configure other parameters for the LSP Trace test l To configure the response mode of the Echo packet run the lsp replymode no reply udp udp via vpls udp router alert level control channel command NOTE In a uni direc...

Page 312: ... instance is started at a specified time l To perform the NQA test after a certain delay period run the start delay seconds second hh mm ss end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started after a certain delay End 6 17 3 Checking the Configuration After configuring the LSP traceroute test you can view the test result Pr...

Page 313: ...path Time 2009 4 24 11 22 21 2 1 Hop 1 Send operation times 3 Receive response times 3 Min Max Average Completion Time 50 60 56 Sum Square Sum Completion Time 170 9700 RTD OverThresholds number 0 Last Good Probe Time 2009 4 24 11 22 20 8 Destination ip address 30 1 1 2 Lost packet ratio 0 2 Hop 2 Send operation times 3 Receive response times 3 Min Max Average Completion Time 80 110 93 Sum Square S...

Page 314: ...nce Through this setting the actual traffic of a kind of packet during a time period can be simulated If the server is a non Huawei device you can test the jitter of the network by configuring an ICMP jitter test instance Pre configuration Tasks Before configuring an ICMP jitter test configure a reachable route between the NQA client and the server Data Preparation To configure a jitter test you n...

Page 315: ...er The number of test packets to be sent during each test is set NOTE The probe count command is used to configure the number of times for the jitter test and the jitter packetnum command is used to configure the number of test packets to be sent during each test In actual configuration the product of the number of times for the jitter test multiplied by the number of test packets must be less tha...

Page 316: ...est result Prerequisite The configurations of the ICMP Jitter Test function are complete NOTE NQA test results cannot be displayed automatically on the terminal You should run the display nqa results command to check the test results Procedure Step 1 Run the display nqa results test instance admin name test name command to check results on the NQA client End Example If the ICMP jitter test succeed...

Page 317: ...est to Check the One Hop PW This section describes how to configure a PWE3 ping test to check the connectivity of a single hop pseudo wire PW 6 19 1 Establishing the Configuration Task Before configuring a PWE3 ping test for a single hop PW familiarize yourself with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete the configura...

Page 318: ...n NQA test instance is created and the test instance view is displayed Step 3 Run test type pwe3ping The test type is set to PWE3 Ping Step 4 Optional Run vc type ldp The method of setting up a PW is configured Step 5 Optional Run local pw type local pw type ip interworking The type of the local PW is configured By default the type is Ethernet Step 6 Optional Run label type control word label aler...

Page 319: ...est after a certain delay period run the start delay seconds second hh mm ss end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started after a certain delay End 6 19 3 Checking the Configuration After performing the PWE3 ping test for a single hop PW you can view the test result Prerequisite The configurations of the PWE3 Ping Te...

Page 320: ...out number 0 System busy operation number 0 Connection fail number 0 Operation sequence errors number 0 RTT Stats errors number 0 Destination ip address 3 14 2 14 Min Max Average Completion Time 6 6 6 Sum Square Sum Completion Time 18 108 Last Good Probe Time 2009 2 27 9 0 42 3 Lost packet ratio 0 6 20 Configuring the PWE3 Ping Test to Check the Multi Hop PW This section describes how to configure...

Page 321: ... 6 Start mode and end mode of the test 6 20 2 Configuring Parameters for the PWE3 Ping Test on a Multi Hop PW This part describes how to set PWE3 ping test parameters for a multi hop PW Context Do as follows on the NQA client Procedure Step 1 Run system view The system view is displayed Step 2 Run nqa test instance admin name test name An NQA test instance is created and the test instance view is ...

Page 322: ...t The NQA test is started Select the start mode as required because the startcommand has several forms l To perform the NQA test immediately run the start now end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started immediately l To perform the NQA test at the specified time run the start at yyyy mm dd hh mm ss end at yyyy mm dd...

Page 323: ...f all tests RTT square sum Minimum RTT and maximum RTT of the packet Destination IP address and the type of the destination IP address Number of the Echo packets and the sent packets Time when the last packet is received Quidway display nqa results NQA entry admin pwe3ping testflag is inactive testtype is pwe3ping 1 Test 1 result The test is finished Send operation times 3 Receive response times 3...

Page 324: ...ce test on a one hop PW you must correctly configure the dynamic one hop PW Data Preparation To configure the PWE3 Trace test on a one hop PW you need the following data No Data 1 ID of the PW 2 Type of the PW 3 Type and number of the interface connected with the CE 4 Destination IP address and ID of the L2VC 5 Optional Response mode of the Echo packets LSP EXP maximum hops number of probes TTL va...

Page 325: ...o configure the response mode of the Echo packet run the lsp replymode no reply udp udp via vpls udp router alert level control channel command l To configure the LSP EXP value run the lsp exp exp command l To configure maximum hops of the PWE3 Trace test run the tracert hopfailtimes timescommand l To configure the initial TTL value and maximum TTL value of the packet run the tracert livetime firs...

Page 326: ...y nqa results command to view test results By the default the command output contains the records about only the last five tests Procedure Step 1 Run the display nqa results command to view the test results on the NQA client End Example Run the display nqa results command If the PWE3 Trace test on the one hop PW is successful the following information is displayed l Statistics about errors Number ...

Page 327: ...eck the Multi Hop PW This section describes how to configure a PWE3 trace test to check the communications between devices on a PW 6 22 1 Establishing the Configuration Task Before configuring a PWE3 trace test for a multi hop PW familiarize yourself with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete the configuration task q...

Page 328: ...ed Step 2 Run nqa test instance admin name test name An NQA test instance is created and the test instance view is displayed Step 3 Run test type pwe3trace The test type is set to PWE3 Trace Step 4 Optional Run vc type ldp The method of setting up a PW is configured Step 5 Optional Run local pw type local pw type ip interworking The type of the local PW is configured By default the type is Etherne...

Page 329: ...TTL value of the packet run the tracert livetime first ttl first ttl max ttl max ttl command Step 9 Run start The NQA test is started Select the start mode as required because the start command has several forms l To perform the NQA test immediately run the start now end at yyyy mm dd hh mm ss delay seconds second hh mm ss lifetime seconds second hh mm ss command The test instance is started immed...

Page 330: ...quare sum Minimum RTT and maximum RTT of the packet Destination IP address and the type of the destination IP address Number of the Echo packets and the sent packets Time when the last packet is received Quidway display nqa results NQA entry admin pwe3trace testflag is inactive testtype is pwe3trace 1 Test 1 result The test is finished Completion success Attempts number 1 Disconnect operation numb...

Page 331: ...but also the configuration of universal options of a test group Commonly the default configurations of the universal parameters are adopted Pre configuration Tasks Before configuring universal NQA parameters create NQA tests correctly 6 23 2 Configuring Universal Parameters for the NQA Test Instance This part describes the application of each parameter in the NQA test instance Context Do as follow...

Page 332: ...st instances l Run destination port port number The destination port number is set for the NQA test instance NOTE The destination port number can be configured only for UDP Jitter TCP Trace FTP and HTTP test instances l Run dns server ipv4 ip address The DNS server address is configured for the NQA test instance NOTE The DNS server address can be configured only for DNS and HTTP test instances l R...

Page 333: ...ost The test type is set for the HTTP test instance NOTE The operation type can be configured only for the HTTP test instance l Run http url deststring verstring The relative file path and version are configured for the HTTP test instance NOTE The relative file path and version can be configured only for the HTTP test instance l Run interval milliseconds interval seconds interval The interval for ...

Page 334: ...instances l Run send trap all owd ds owd sd probefailure rtd testcomplete testfailure The condition for triggering the trap message is configured l Run source address ipv4 ip address The source IP address is set for the NQA test instance l Run source interface interface type interface number The source interface is configured for the NQA test instance NOTE The source interface can be configured fo...

Page 335: ...arameter can be configured only for Trace test instance l Run vpn instance vpn instance name The VPN instance name is configured for the NQA test instance NOTE This parameter cannot be configured for DNS test instance l Run vpn instance vpn instance name The VPN instance name is configured for the NQA test instance NOTE This parameter cannot be configured for DNS and DHCP test instance End 6 23 3 ...

Page 336: ... pre configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Applicable Environment If the round trip transmission delay threshold is configured for a NQA test instance the NQA test result will contain the statistics on the test packets that exceed the set threshold This provides the basis for the network manager to analyze the oper...

Page 337: ...min name test name An NQA test instance is created and the NQA instance view is displayed Step 3 Run test type test type The test type is configured Step 4 Run destination address ipv4 ip address The destination IP address is configured Step 5 Optional Run destination port port number The destination port number is configured Step 6 Run threshold rtd rtd value The round trip transmission delay thr...

Page 338: ...he NMS in case of transmission success or transmission failure 6 25 1 Establishing the Configuration Task Before configuring the trap function familiarize yourself with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Applicable Environment Trap messages are generated regardless of ...

Page 339: ...s Trap messages carry information such as destination IP address operation status destination IP address of the test packet minimum RTT maximum RTT and total RTT number of sent probe packets number of received packets RTT square sum and time of the last successful probe Pre configuration Tasks Before configuring the trap function complete the following tasks l Configuring routes between the NQA cl...

Page 340: ...ap function is disabled Step 7 Run test failtimes times The number of test failures that trigger sending a trap message is configured By default a trap message is sent for each test failure End 6 25 3 Sending Trap Messages When Probes Failed A trap message is sent to the NMS when the NQA test fails Procedure Step 1 Run system view The system view is displayed Step 2 Run nqa test instance admin nam...

Page 341: ... failure End 6 25 4 Sending Trap Messages When Probes Are Complete A trap message is sent to the NMS when the NQA test is complete Context Do as follows on the NQA client Procedure Step 1 Run system view The system view is displayed Step 2 Run nqa test instance admin name test name An NQA test instance is created and the test instance view is displayed Step 3 Run test type jitter icmpjitter The te...

Page 342: ...yed Step 2 Run nqa test instance admin name test name An NQA test instance is created and the test instance view is displayed Step 3 Run test type jitter icmpjitter The test type is configured NOTE Only S5700HI and S5706 support ICMP Jitter Step 4 Run destination address ipv4 ip address The destination IP address is configured Step 5 Optional Run destination port port number The destination port n...

Page 343: ...EXMAP OID 1 3 6 1 4 1 2011 5 25 110 2 0 1 ShortIFIndexMapTable changed May 6 2009 11 02 37 CBB6 PE3 SRM_BASE 4 ENTITYREGSUCCESS OID 1 3 6 1 4 1 2011 5 25 129 2 1 18 Physical entity register succeeded EntityPhysicalIndex 17367040 BaseTrapSeverity 2 BaseTrapProbableCause 70144 BaseTrapEventType 5 EntPhysicalContainedIn 1677721 6 EntPhysicalName SRU slot 9 RelativeResource ReasonDescription MPU9 6 26...

Page 344: ...action before you use the command Context NOTE Statistics about the test being performed cannot be cleared Procedure Step 1 Run the system view command enter the system view Step 2 Run the nqa test instance admin name test name command enter the NQA test instance view Step 3 Run the clear records command in the NQA view to clear history statistics on NQA tests and test results End 6 26 3 Debugging...

Page 345: ...QA client to check whether Switch B is reachable Figure 6 3 Networking diagram for configuring the ICMP test GE0 0 1 VLANIF10 10 1 1 1 24 VLANIF10 10 1 1 2 24 GE0 0 1 SwitchA SwitchB NQA agent Configuration Roadmap The configuration roadmap is as follows 1 Perform the NQA ICMP test to check whether the route between the local end Switch A and the specified destination end Switch B is reachable and...

Page 346: ...A client and create an NQA ICMP test SwitchA nqa test instance admin icmp SwitchA nqa admin icmp test type icmp SwitchA nqa admin icmp destination address ipv4 10 1 1 2 Step 4 Perform the test immediately SwitchA nqa admin icmp start now Step 5 Verify the test result SwitchA nqa admin icmp display nqa results test instance admin icmp NQA entry admin icmp testflag is inactive testtype is icmp 1 Tes...

Page 347: ... untagged vlan 10 return 6 27 2 Example for Configuring the FTP Download Test Networking Requirements As shown in Figure 6 4 l Switch B functions as the FTP server l A user with the name user1 and the password hello intends to log in to the FTP server to download the test txt file Figure 6 4 Networking diagram for configuring the FTP download test SwitchA SwitchB GE0 0 1 VLANIF10 10 1 1 1 24 GE0 0...

Page 348: ...admin ftp test type ftp SwitchA nqa admin ftp destination address ipv4 10 1 1 2 SwitchA nqa admin ftp source address ipv4 10 1 1 1 SwitchA nqa admin ftp ftp operation get SwitchA nqa admin ftp ftp username user1 SwitchA nqa admin ftp ftp password hello SwitchA nqa admin ftp ftp filename test txt Step 4 Perform the test SwitchA nqa admin ftp start now Step 5 Verify the test result SwitchA nqa admin...

Page 349: ...t hybrid untagged vlan 10 FTP server enable aaa local user user1 password cipher 3MQ TZ O3KCQ Q MAF4 1 local user user1 service type ftp local user user1 ftp directory flash return 6 27 3 Example for Configuring the FTP Upload Test Networking Requirements As shown in Figure 6 5 You are required to test the speed of uploading a file from Switch C to the FTP server Figure 6 5 Networking diagram for ...

Page 350: ...ervice type ftp SwitchC aaa local user user1 ftp directory flash SwitchC aaa quit Step 3 Configure an NQA FTP test on Switch A and create a file of 10K bytes for uploading SwitchA system view SwitchA nqa test instance admin ftp SwitchA nqa admin ftp test type ftp SwitchA nqa admin ftp destination address ipv4 10 2 1 2 SwitchA nqa admin ftp source address ipv4 10 1 1 1 SwitchA nqa admin ftp ftp ope...

Page 351: ... 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 10 port hybrid untagged vlan 10 nqa test instance admin ftp test type ftp destination address ipv4 10 2 1 2 source address ipv4 10 1 1 1 ftp filesize 10 ftp username user1 ftp password hello ftp filename nqa ftp test txt ftp operation put ip route static 10 2 1 0 255 255 255 0 10 1 1 2 return l Configuration file of Switch B sysname S...

Page 352: ...As shown in Figure 6 6 Switch is connected to the HTTP server through a WAN Figure 6 6 Networking diagram for configuring the HTTP test Switch GE0 0 1 VLANIF10 10 1 1 1 24 10 2 1 1 24 HTTP Server IP Network 10 1 1 2 24 Configuration Roadmap The configuration roadmap is as follows 1 Configure the Switch as the NQA client 2 Create and perform the HTTP test on the Switch to check whether the a connec...

Page 353: ...ed SendProbe 3 ResponseProbe 3 Completions success RTD OverThresholdsnumber 0 MessageBodyOctetsSum 0 TargetAddress 10 2 1 1 DNSQueryError number 0 HTTPError number 0 TcpConnError number 3 System busy operation number 0 DNSRTT Sum Min Max 0 0 0 TCPConnectRTT Sum Min Max 0 0 0 TransactionRTT Sum Min Max 11 3 4 RTT Sum Min Max Avg 18 5 7 6 DNSServerTimeout 0 TCPConnectTimeout 0 TransactionTimeout 0 L...

Page 354: ...ch and the DNS server can be set up and to check the speed of responding to an address resolution request Data Preparation To complete the configuration you need the following data l IP address of the DNS server l Name of the host to be accessed Procedure Step 1 Configure reachable routes between Switch A and the DNS server between Switch A and the host to be accessed and between the DNS server an...

Page 355: ... Average Completion Time 1 1 1 Sum Square Sum Completion Time 1 1 Last Good Probe Time 2009 2 3 10 52 5 7 Lost packet ratio 0 End Configuration Files Configuration file of Switch sysname Quidway dns server 10 3 1 1 vlan batch 100 interface Vlanif100 ip address 10 1 1 1 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 nqa test instance admin dns t...

Page 356: ...tchA nqa admin trace destination address ipv4 10 2 1 2 Step 3 Perform the test SwitchA nqa admin trace start now Step 4 Verify the test result Verify the NQA test result on Switch A SwitchA nqa admin trace display nqa results test instance admin trace NQA entry admin trace testflag is inactive testtype is trace 1 Test 1 result The test is finished Completion success Attempts number 1 Disconnect op...

Page 357: ...le of Switch B sysname SwitchB vlan batch 100 110 interface Vlanif100 ip address 10 1 1 2 255 255 255 0 interface Vlanif110 ip address 10 2 1 1 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 interface GigabitEthernet0 0 2 port hybrid pvid vlan 110 port hybrid untagged vlan 110 return l Configuration file of Switch C sysname SwitchC vlan batch 1...

Page 358: ...he following data l Host address of the SNMP agent Procedure Step 1 Configure reachable routes between Switch A and Switch B between Switch A and Switch C and between Switch B and Switch C The configuration details are not mentioned here Step 2 Enable SNMP agent on Switch C SwitchC system view SwitchC snmp agent Step 3 Create an SNMP query test on Switch A SwitchA system view SwitchA nqa test inst...

Page 359: ...GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 nqa test instance admin snmp test type snmp destination address ipv4 10 2 1 2 ip route static 10 2 1 0 255 255 255 0 10 1 1 2 return l Configuration file of Switch B sysname SwitchB vlan batch 100 110 interface Vlanif100 ip address 10 1 1 2 255 255 255 0 interface Vlanif110 ip address 10 2 1 1 255 255 255 0 interface Giga...

Page 360: ...onfigure Switch A as the NQA client and configure Switch C as the NQA server 2 Configure the monitoring port number on the NQA server and create an NQA TCP test on the NQA client Data Preparation To complete the configuration you need the following data l Host address of the server l Port number used to monitor the TCP service on the server Procedure Step 1 Configure reachable routes between Switc...

Page 361: ...sequence errors number 0 RTT Stats errors number 0 Destination ip address 10 2 1 2 Min Max Average Completion Time 46 63 52 Sum Square Sum Completion Time 156 8294 Last Good Probe Time 2006 8 5 15 53 17 8 Lost packet ratio 0 End Configuration Files l Configuration file of Switch A sysname SwitchA vlan batch 100 interface Vlanif100 ip address 10 1 1 1 255 255 255 0 interface GigabitEthernet0 0 1 po...

Page 362: ...et transmitted between Switch A and Switch C Figure 6 11 Networking diagram for configuring the UDP test NQA Server SwitchA GE0 0 1 VLANIF100 10 1 1 1 24 VLANIF100 10 1 1 2 24 VLANIF110 10 2 1 2 24 VLANIF110 10 2 1 1 24 GE0 0 1 GE0 0 1 GE0 0 2 SwitchB SwitchC Configuration Roadmap 1 Configure Switch A as the NQA client and configure Switch C as the NQA server 2 Configure the monitoring port number...

Page 363: ... finished Send operation times 3 Receive response times 3 Completion success RTD OverThresholds number 0 Attempts number 1 Drop operation number 0 Disconnect operation number 0 Operation timeout number 0 System busy operation number 0 Connection fail number 0 Operation sequence errors number 0 RTT Stats errors number 0 Destination ip address 10 2 1 2 Min Max Average Completion Time 32 109 67 Sum S...

Page 364: ...10 Example for Configuring the Jitter Test Networking Requirements As shown in Figure 6 12 the NQA Jitter test needs to be used to obtain the jitter time of transmitting a packet from Switch A to Switch C Switch A and Switch C synchronize the clock from Switch B so that the test precision is improved NOTE For information about clock synchronization see NTP in the Quidway S5700 Series Ethernet Swit...

Page 365: ...witchA nqa admin jitter destination address ipv4 10 2 1 2 SwitchA nqa admin jitter destination port 9000 Step 4 Perform the test SwitchA nqa admin jitter start now Step 5 Verify the test result SwitchA nqa admin jitter display nqa results test instance admin jitter NQA entry admin jitter testflag is inactive testtype is jitter 1 Test 1 result The test is finished SendProbe 60 ResponseProbe 60 Comp...

Page 366: ...ort 9000 ip route static 10 2 1 0 255 255 255 0 10 1 1 2 return l Configuration file of Switch B sysname SwitchB vlan batch 100 110 interface Vlanif100 ip address 10 1 1 2 255 255 255 0 interface Vlanif110 ip address 10 2 1 1 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 interface GigabitEthernet0 0 2 port hybrid pvid vlan 110 port hybrid unta...

Page 367: ... LDP LSP The NQA LSP Ping test needs to be performed to check the connectivity of the LSP between Switch A and Switch C Figure 6 13 Networking diagram for configuring the LSP Ping test VLANIF110 10 2 1 1 24 GE0 0 2 SwitchA GE0 0 1 VLANIF100 10 1 1 1 24 GE0 0 1 VLANIF100 10 1 1 2 24 area 0 Loopback1 1 1 1 9 32 Loopback1 2 2 2 9 32 Loopback1 3 3 3 9 32 GE0 0 2 VLANIF110 10 2 1 2 24 SwitchB SwitchC C...

Page 368: ...test instance admin lspping NQA entry admin lspping testFlag is inactive testtype is lspping 1 Test 1 result The test is finished Send operation times 3 Receive response times 3 Completion success RTD OverThresholds number 0 Attempts number 1 Drop operation number 0 Disconnect operation number 0 Operation timeout number 0 System busy operation number 0 Connection fail number 0 Operation sequence e...

Page 369: ...f100 ip address 10 1 1 2 255 255 255 0 mpls mpls ldp interface Vlanif110 ip address 10 2 1 1 255 255 255 0 mpls mpls ldp interface GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 interface GigabitEthernet0 0 2 port hybrid pvid vlan 110 port hybrid untagged vlan 110 interface LoopBack1 ip address 2 2 2 9 255 255 255 255 ospf 1 area 0 0 0 0 network 2 2 2 9 0 0 0 0 networ...

Page 370: ... l MPLS and MPLS LDP are enabled on Switch A Switch B and Switch C l MPLS and MPLS LDP are enabled on VLANIF interfaces connected to Switch A Switch B and Switch C to trigger the establishment of an LDP LSP The NQA LSP Ping test is used to check the connectivity of the LSP between Switch A and Switch C Figure 6 14 Networking diagram for configuring the LSP Jitter test VLANIF110 10 2 1 1 24 GE0 0 2...

Page 371: ... test type lspjitter SwitchA nqa admin lspjitter lsp type ipv4 SwitchA nqa admin lspjitter destination address ipv4 3 3 3 9 lsp masklen 32 lsp loopback 127 0 0 1 Step 4 Perform the test SwitchA nqa admin lspjitter start now Step 5 Verify the test result SwitchA nqa admin lspjitter display nqa results test instance admin lspjitter SendProbe 60 ResponseProbe 60 Completion success RTD OverThresholds ...

Page 372: ... 32 lsp loopback 127 0 0 1 return l Configuration file of Switch B sysname SwitchB vlan batch 100 mpls lsr id 1 1 1 9 mpls mpls ldp interface Vlanif100 ip address 10 1 1 2 255 255 255 0 mpls mpls ldp interface Vlanif110 ip address 10 2 1 1 255 255 255 0 mpls mpls ldp interface GigabitEthernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 interface GigabitEthernet0 0 2 port hybrid pv...

Page 373: ...is part provides examples for configuring an ICMP jitter test to measure jitter on the network A server is not required in an ICMP jitter test and the peer device in the test instance can be non Huawei devices Networking Requirements As shown in Figure 6 15 Switch A serves as the NQA client to test the jitter of the network between Switch A and Switch B Figure 6 15 Networking diagram of an ICMP ji...

Page 374: ... OWD OverThresholds DS number 0 Min Max Avg Sum RTT 1 3 1 65 RTT Square Sum 77 NumOfRTT 60 Drop operation number 0 Operation sequence errors number 0 RTT Stats errors number 0 System busy operation number 0 Operation timeout number 0 Min Positive SD 1 Min Positive DS 1 Max Positive SD 3 Max Positive DS 1 Positive SD Number 18 Positive DS Number 15 Positive SD Sum 22 Positive DS Sum 15 Positive SD ...

Page 375: ...ybrid untagged vlan 10 return 6 27 14 Example for Configuring the PWE3 Ping Test on a Single Hop PW Networking Requirements As shown in Figure 6 16 CE A and CE B are connected to PE A and PE B respectively PE A and PE B are connected through the MPLS backbone network A dynamic PW needs to be set up between PE A and PE B through the LSP tunnel The PWE3 Ping function of the single hop PW needs to be...

Page 376: ... PE devices on the two ends of the PW 3 Create an MPLS L2VC connection between the two PE devices 4 Configure a PWE3 Ping test on the single hop PW on PE A Data Preparation To complete the configuration you need the following data l L2VC IDs of the two ends of the PW which must be the same l MPLS LSR IDs of the PE and P devices l IP address of the remote peer Procedure Step 1 Configure a dynamic s...

Page 377: ...sitive Jitter 0 Min Negative Jitter 0 Max Positive Jitter 0 Max Negative Jitter 0 Positive Jitter Num 0 Negative Jitter Num 0 Positive Jitter Sum 0 Negative Jitter Sum 0 Positive Jitter Square Sum 0 Negative Jitter Square Sum 0 Packet Loss 0 Packet Loss Ratio 0 Destination ip address 10 2 2 2 Min Max Average Completion Time 60 110 86 Sum Square Sum Completion Time 260 23800 Average Single Way Comp...

Page 378: ...Configuration file of P sysname P mpls lsr id 192 4 4 4 mpls mpls ldp vlan batch 120 130 interface Vlanif120 ip address 10 1 1 2 255 255 255 0 mpls mpls ldp interface Vlanif130 ip address 10 2 2 1 255 255 255 0 mpls mpls ldp interface GigabitEthernet0 0 1 port hybrid pvid vlan 120 port hybrid untagged vlan 120 interface GigabitEthernet0 0 2 port hybrid pvid vlan 130 port hybrid untagged vlan 130 i...

Page 379: ...e GigabitEthernet0 0 2 port hybrid pvid vlan 130 port hybrid untagged vlan 130 interface LoopBack0 ip address 192 3 3 3 255 255 255 255 ospf 1 area 0 0 0 0 network 192 3 3 3 0 0 0 0 network 10 2 2 0 0 0 0 255 return l Configuration file of CE B sysname CE B vlan batch 140 interface Vlanif140 ip address 100 1 1 2 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 140 port hybrid unt...

Page 380: ...VLANIF120 10 1 1 1 24 Loopback0 3 3 3 9 32 Loopback0 2 2 2 9 32 4 4 4 9 32 Loopback0 1 1 1 9 32 Loopback0 5 5 5 9 32 VLANIF140 30 1 1 1 24 GE0 0 2 VLANIF140 30 1 1 2 24 GE0 0 2 VLANIF150 40 1 1 1 24 GE0 0 2 40 1 1 2 24 P1 P2 Loopback0 GE0 0 1 VLANIF110 GE0 0 2 VLANIF160 PW100 PW200 Configuration Roadmap The configuration roadmap is as follows 1 Run the IGP protocol on the backbone network to make ...

Page 381: ...ay nqa results command on the PE device you can see that the test is successful U PE1 nqa test pwe3ping display nqa results NQA entry test pwe3ping testFlag is inactive testtype is pwe3ping 1 Test 1 result The test is finished Send operation times 3 Receive response times 3 Completion success OverThresholds number 0 Attempts number 1 Drop operation number 0 Disconnect operation number 0 Operation ...

Page 382: ...5 255 255 0 mpls mpls ldp interface GigabitEthernet0 0 1 port hybrid pvid vlan 110 port hybrid untagged vlan 110 interface GigabitEthernet0 0 2 port hybrid pvid vlan 120 port hybrid untagged vlan 120 interface LoopBack0 ip address 1 1 1 9 255 255 255 255 nqa test instance test pwe3ping test type pwe3ping local pw id 100 local pw type ppp remote pw id 200 ospf 1 area 0 0 0 0 network 10 1 1 0 0 0 0 ...

Page 383: ...rk 20 1 1 0 0 0 0 255 return l Configuration file of S PE sysname S PE mpls lsr id 3 3 3 9 mpls mpls l2vpn mpls switch l2vc 5 5 5 9 200 between 1 1 1 9 100 mpls ldp mpls ldp remote peer 1 1 1 9 remote ip 1 1 1 9 mpls ldp remote peer 5 5 5 9 remote ip 5 5 5 9 vlan batch 130 140 interface Vlanif130 ip address 20 1 1 2 255 255 255 0 mpls mpls ldp interface Vlanif140 ip address 30 1 1 1 255 255 255 0 ...

Page 384: ...interface GigabitEthernet0 0 1 port hybrid pvid vlan 140 port hybrid untagged vlan 140 interface GigabitEthernet0 0 2 port hybrid pvid vlan 150 port hybrid untagged vlan 140 interface LoopBack0 ip address 4 4 4 9 255 255 255 255 ospf 1 area 0 0 0 0 network 4 4 2 9 0 0 0 0 network 30 1 1 0 0 0 0 255 network 40 1 1 0 0 0 0 255 l Configuration file of U PE2 sysname U PE2 mpls lsr id 5 5 5 9 mpls mpls...

Page 385: ...face GigabitEthernet0 0 1 port hybrid pvid vlan 160 port hybrid untagged vlan 160 return 6 27 16 Example for Configuring the PWE3 Trace Test on a Single Hop PW Networking Requirements As shown in Figure 6 18 CE A and CE B are respectively connected to PE A and PE B through VLAN PE A and PE B are connected through the MPLS backbone network A dynamic PW needs to be set up between PE A and PE B throu...

Page 386: ...PE devices on the two ends of the PW 3 Create an MPLS L2VC connection between the two PE devices 4 Configure a PWE3 Trace test on a single hop PW on PE A Data Preparation To complete the configuration you need the following data l L2VC IDs of the two ends of the PW which must be the same l MPLS LSR IDs of the PE and P devices l IP address of the remote peer Procedure Step 1 Configure a dynamic sin...

Page 387: ... success Attempts number 1 Disconnect operation number 0 Operation timeout number 0 System busy operation number 0 Connection fail number 0 Operation sequence errors number 0 RTT Stats errors number 0 Drop operation number 0 Last good path Time 2006 9 24 11 22 21 2 1 Hop 1 Send operation times 3 Receive response times 3 Min Max Average Completion Time 1050 1090 1053 Sum Square Sum Completion Time ...

Page 388: ...lan 120 interface LoopBack0 ip address 192 2 2 2 0 0 0 0 nqa test instance test pwe3trace test type pwe3trace local pw type vlan local pw id 100 ospf 1 area 0 0 0 0 network 192 2 2 2 0 0 0 0 network 10 1 1 0 0 0 0 255 return l Configuration file of P sysname P mpls lsr id 192 4 4 4 mpls mpls ldp vlan batch 120 130 interface Vlanif120 ip address 10 1 1 2 255 255 255 0 mpls mpls ldp interface Vlanif...

Page 389: ...f130 ip address 10 2 2 2 255 255 255 0 mpls mpls ldp interface Vlanif140 mpls l2vc 192 2 2 2 100 interface GigabitEthernet0 0 1 port hybrid pvid vlan 140 port hybrid untagged vlan 140 interface GigabitEthernet0 0 2 port hybrid pvid vlan 130 port hybrid untagged vlan 130 interface LoopBack0 ip address 192 3 3 3 255 255 255 255 ospf 1 area 0 0 0 0 network 192 3 3 3 0 0 0 0 network 10 2 2 0 0 0 0 255...

Page 390: ...i hop PW CE A CE B U PE1 GE0 0 1 VLANIF110 100 1 1 1 24 GE0 0 1 GE0 0 1 VLANIF160 100 1 1 2 24 U PE2 S PE GE0 0 2 VLANIF130 20 1 1 1 24 GE0 0 1 VLANIF130 20 1 1 2 24 GE0 0 1 VLANIF150 VLANIF120 10 1 1 2 24 GE0 0 1 VLANIF120 10 1 1 1 24 Loopback0 3 3 3 9 32 Loopback0 2 2 2 9 32 4 4 4 9 32 Loopback0 1 1 1 9 32 Loopback0 5 5 5 9 32 VLANIF14 0 30 1 1 1 24 GE0 0 2 VLANIF140 30 1 1 2 24 GE0 0 2 VLANIF15...

Page 391: ...nstance test pwe3trace U PE1 nqa test pwe3trace test type pwe3trace U PE1 nqa test pwe3trace local pw id 100 U PE1 nqa test pwe3trace local pw type ppp U PE1 nqa test pwe3trace label type control word U PE1 nqa test pwe3trace remote pw id 200 Step 3 Perform the test U PE1 nqa test pwe3trace start now Step 4 Verify the test result After running the display nqa history command on the PE device you c...

Page 392: ...times 3 Min Max Average Completion Time 1050 1490 1323 Sum Square Sum Completion Time 3970 5367500 RTD OverThresholds number 0 Last Good Probe Time 2006 8 24 11 22 21 2 Destination ip address 20 1 1 2 3 Hop 3 Send operation times 3 Receive response times 3 Min Max Average Completion Time 1050 1490 1323 Sum Square Sum Completion Time 3970 5367500 RTD OverThresholds number 0 Last Good Probe Time 200...

Page 393: ...e test type pwe3trace local pw id 100 local pw type ppp label type control word remote pw id 200 ospf 1 area 0 0 0 0 network 10 1 1 0 0 0 0 255 network 1 1 1 9 0 0 0 0 return l Configuration file of P1 sysname P1 mpls lsr id 2 2 2 9 mpls mpls ldp vlan batch 120 130 interface Vlanif120 ip address 10 1 1 2 255 255 255 0 mpls mpls ldp interface Vlanif130 ip address 20 1 1 1 255 255 255 0 mpls mpls ld...

Page 394: ...erface Vlanif130 ip address 20 1 1 2 255 255 255 0 mpls mpls ldp interface Vlanif140 ip address 30 1 1 1 255 255 255 0 mpls mpls ldp interface GigabitEthernet0 0 1 port hybrid pvid vlan 130 port hybrid untagged vlan 130 interface GigabitEthernet0 0 2 port hybrid pvid vlan 140 port hybrid untagged vlan 140 interface LoopBack0 ip address 3 3 3 9 255 255 255 255 ospf 1 area 0 0 0 0 network 3 3 3 9 0 ...

Page 395: ... l Configuration file of U PE2 sysname U PE2 mpls lsr id 5 5 5 9 mpls mpls l2vpn mpls ldp mpls ldp remote peer 3 3 3 9 remote ip 3 3 3 9 vlan batch 150 160 interface Vlanif150 ip address 40 1 1 2 255 255 255 0 mpls mpls ldp interface Vlanif160 mpls l2vc 3 3 3 9 200 interface GigabitEthernet0 0 1 port hybrid pvid vlan 150 port hybrid untagged vlan 150 interface GigabitEthernet0 0 2 port hybrid pvid...

Page 396: ...ds the configured unidirectional transmission threshold or when the RTT of the test packet exceeds the configured bidirectional transmission threshold Network administrators can view the cause of a trap in the trap message received by the NMS Figure 6 20 Network diagram for configuring the NQA threshold NQA Server NM Station GE0 0 1 VLANIF120 10 1 1 1 24 GE0 0 1 VLANIF120 10 1 1 2 24 GE0 0 1 VLANI...

Page 397: ...witchA nqa test instance admin jitter SwitchA nqa admin jitter test type jitter SwitchA nqa admin jitter destination address ipv4 30 1 1 2 SwitchA nqa admin jitter destination port 9000 Step 3 Configure the NQA thresholds Configure the RTD threshold on Switch A SwitchA nqa admin jitter threshold rtd 20 Step 4 Enable the function of sending trap messages SwitchA nqa admin jitter send trap rtd Switc...

Page 398: ...e 0 6627117 NumberOfOWD 0 OWD SD Sum 81 OWD DS Sum 62 TimeStamp unit ms Verify that a trap message is generated in the trap buffer Quidway display trapbuffer Trapping buffer configuration and contents enabled Allowed max buffer size 1024 Actual buffer size 256 Channel number 3 Channel name trapbuffer Dropped messages 0 Overwritten messages 0 Current messages 3 Jul 9 00 28 34 2009 Quidway NQA 4 RTD...

Page 399: ...B vlan batch 120 130 interface Vlanif120 ip address 10 1 1 2 255 255 255 0 interface Vlanif130 ip address 30 1 1 1 255 255 255 0 interface GigabitEthernet0 0 1 port hybrid pvid vlan 120 port hybrid untagged vlan 120 interface GigabitEthernet0 0 2 port hybrid pvid vlan 130 port hybrid untagged vlan 130 ospf 1 area 0 0 0 1 network 10 1 1 0 0 0 0 255 network 30 1 1 0 0 0 0 255 return l Configuration ...

Page 400: ...work 30 1 1 0 0 0 0 255 return Quidway S5700 Series Ethernet Switches Configuration Guide Network Management 6 NQA Configuration Issue 01 2011 10 26 Huawei Proprietary and Confidential Copyright Huawei Technologies Co Ltd 389 ...

Page 401: ...s section describes how to monitor the network status and traffic through RMON 7 4 Maintaining RMON When an RMON operation fault occurs you can run the debuggingcommand in the user view to locate the fault and analyze its cause 7 5 Configuration Examples This section provides several configuration examples of RMON and RMON2 Quidway S5700 Series Ethernet Switches Configuration Guide Network Managem...

Page 402: ...ity The NM Station uses the basic SNMP commands for exchanging data with the RMON agent and collecting the network management information This process is restricted by device resources and hence the NM Station collects only information on four groups alarm event history and statistics and not the complete information on the RMON MIB Currently the S5700 implements the monitoring and statistics coll...

Page 403: ...threshold No more events will be generated until the sampled data in the opposite direction crosses the threshold The S5700 does not apply this mechanism because it will not generate the alarms for a long period For the S5700 the alarms are re generated if the smapling value turns to the noraml threshold The alarm group contains one table alarmTable l Event group An event group stores all the even...

Page 404: ...mplete the pre configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Applicable Environment To monitor network status and collect traffic statistics on a network segment you can configure RMON Enabling the RMON function does not need any special requirement You can enable it in advance or configure it when you suspect that the tra...

Page 405: ...face where traffic statistics are collected If the traffic statistics function is not enabled on the interface statistics values of in both ethernetStatsTable and HistoryControlTable are 0 Context Do as follows on the switch on which traffic statistics should be collected Procedure Step 1 Run system view The system view is displayed Step 2 Run interface gigabitethernet xgigabitethernet interface n...

Page 406: ...ically and save the statistics to etherHistoryTable for future use Context The history data management supports the setting of sampling sampling interval and saving quantity for the traffic passing through a specified port RMON periodically collects statistics of the port and saves them to etherHistoryTable for future reference As recommended by the RMON specifications each monitored interface sho...

Page 407: ...xt Do as follows on the switch that is monitored The RMON event management module is responsible for adding events to the corresponding rows in the eventTable and defining the methods of processing events l log sending only logs l log trap sending both logs and trap messages to the NM Station l none marking that no event occurs l trap sending trap messages to the NM Station Procedure Step 1 Run sy...

Page 408: ...lower limit is configured an alarm is triggered once the alarm condition is satisfied At this time the status of alarm recording is VALID If an incorrect alarm variable is configured for example an inexistent OID is specified the status of alarm recording is undercreation and no alarm is generated Do as follows on the switch that is monitored Procedure Step 1 Run system view The system view is dis...

Page 409: ...arm does not occur even if the alarm conditions are satisfied The alarm record is in the undercreation state rather than in the VALID state If either the alarm upper limit event or the alarm lower limit event is configured the alarm is triggered once the conditions for an alarm are satisfied The alarm record is in the VALID state End 7 3 8 Checking the Configuration After configuring RMON you can ...

Page 410: ...mmand to display the RMON history Quidway display rmon history History control entry 1 owned by Test300 is VALID Samples interface GigabitEthernet0 0 1 ifEntry 402653698 Sampling interval 30 sec with 10 buckets max Last Sampling time 0days 00h 09m 43s Latest sampled values octets 645 packets 7 broadcast packets 7 multicast packets 0 undersize packets 6 oversize packets 0 fragments packets 0 jabber...

Page 411: ...eriesEthernet Switches Debugging Reference Perform the configuration in the user view Procedure l Run the debugging rmon to enable RMON debugging End 7 5 Configuration Examples This section provides several configuration examples of RMON and RMON2 7 5 1 Examples for Configuring RMON Networking Requirements GigabitEthernet0 0 1 on the Switch belongs to a VLAN As shown in Figure 7 1 it is required t...

Page 412: ...ommunity name for communicating with the NMS Configuration Procedure 1 Configure reachable routes between the Switch and the NMSs The configuration procedure is not mentioned 2 Enable the statistics function Enable the RMON statistics function on the interface Switch system view Switch interface gigabitethernet 0 0 1 Switch GigabitEthernet0 0 1 rmon statistics enable Configure the etherStatsTable ...

Page 413: ...ith 10 buckets max Last Sampling time 0days 01h 56m 21s Latest sampled values octets 11385 packets 0 broadcast packets 0 multicast packets 9 undersize packets 0 oversize packets 0 fragments packets 0 jabbers packets 0 CRC alignment errors 0 collisions 0 Dropped packet 0 utilization 0 History record Record No 1 Sample time 1days 07h 37m 29s octets 11182 packets 0 broadcast packets 0 multicast packe...

Page 414: ...1 30 absolute rising threshold 50000 2 falling threshold 100 1 owner User01 Display the alarms Switch display rmon alarm 2 Alarm table 2 owned by User01 is VALID Samples absolute value 1 3 6 1 2 1 16 1 1 1 7 1 etherStatsMulticastPkts 1 Sampling interval 30 sec Rising threshold 50000 linked with event 2 Falling threshold 100 linked with event 1 When startup enables risingOrFallingAlarm Latest value...

Page 415: ...bsolute rising threshold 10000 2 falling threshold 100 1 owner User01 rmon alarm 2 1 3 6 1 2 1 16 1 1 1 7 1 30 absolute rising threshold 50000 2 falling threshold 100 1 owner User01 rmon alarm 3 1 3 6 1 2 1 2 2 1 12 898 30 absolute rising threshold 1000 2 falling threshold 10 1 owner User01 return Quidway S5700 Series Ethernet Switches Configuration Guide Network Management 7 RMON Configuration Is...

Reviews:

No comments

Related manuals for S5700 Series

D-Link DSL-2750U Setup preview
DSL-2750U
Brand: D-Link Pages: 14
D-Link DVG-7022S Quick Installation Manual preview
DVG-7022S
Brand: D-Link Pages: 7
D-Link DIR-878 Quick Installation Manual preview
DIR-878
Brand: D-Link Pages: 41
LaCie Network Space MAX Datasheet preview
Network Space MAX
Brand: LaCie Pages: 2
NETGEAR RH328 Reference Manual preview
RH328
Brand: NETGEAR Pages: 142
G&D DL-DVI-Vision-IP Series Installation And Operation Manual preview
DL-DVI-Vision-IP Series
Brand: G&D Pages: 228
Westermo Ibex-RT-330-HV User Manual preview
Ibex-RT-330-HV
Brand: Westermo Pages: 34
VCS VIP 1000 User Manual preview
VIP 1000
Brand: VCS Pages: 118
Observint NVR16 Firmware User Manual preview
NVR16
Brand: Observint Pages: 117
TP-Link TL-SL2226P+ User Manual preview
TL-SL2226P+
Brand: TP-Link Pages: 37
ADTRAN EXPRESS 6503 User Manual preview
EXPRESS 6503
Brand: ADTRAN Pages: 20
F.F. Group RO 1600 PLU Original Instructions Manual preview
RO 1600 PLU
Brand: F.F. Group Pages: 56
GSA Bolide BN-NVR/NX User Manual preview
Bolide BN-NVR/NX
Brand: GSA Pages: 101
Idis DR-8364F Quick Manual preview
DR-8364F
Brand: Idis Pages: 16
MiLAN MIL-SME801GLX User Manual preview
MIL-SME801GLX
Brand: MiLAN Pages: 155
Moxa Technologies IKS-6728 Series Hardware Installation Manual preview
IKS-6728 Series
Brand: Moxa Technologies Pages: 8
Foxconn RAID Foldout Introduction preview
RAID Foldout
Brand: Foxconn Pages: 1
TRENDnet TEG-PCITX User Manual preview
TEG-PCITX
Brand: TRENDnet Pages: 15

Brands by name

Popular brands

Load more brands