Nortel business policy switch 2000 Page 78 User Manual Download | Manualshive

Page: 78 / 412

background image

78

Using the Business Policy Switch 2000 Version 2.0

RADIUS-based network security

The RADIUS-based security feature allows you to set up network access control,
using the Remote Authentication Dial-In User Services (RADIUS) security
protocol. The RADIUS-based security feature uses the RADIUS protocol to
authenticate local console and Telnet logins.

You will need to set up specific user accounts (user names and passwords, and
Service-Type attributes) on your RADIUS server before the authentication
process can be initiated. To provide each user with appropriate levels of access to
the switch, set the following username attributes on your RADIUS server:

•

Read-write access—Set the Service-Type field value to Administrative.

•

Read-only access—Set the Service-Type field value to NAS-Prompt.

For detailed instructions to set up your RADIUS server, refer to your RADIUS
server documentation.

MAC address-based security

The MAC address-based security feature allows you to set up network access
control, based on source MAC addresses of authorized stations.

You can:

•

Create a list of up to 10 MAC destination addresses (DAs) that you want to
filter. All packets with the specified DAs are dropped. The packet with the
specified MAC DA will be dropped regardless of the ingress port, source
address (SA) intrusion, or VLAN membership.

This feature is available only with BPS2000 software version 2.0 and higher.
Also, this feature is unavailable on the BayStack 450 or 410 switches. In a
Hybrid stack, only the BPS 2000 will filter the specified MAC DAs.

«
...
76
77
78
79
80
...
»

Summary of Contents for business policy switch 2000

Page 1: ...Part No 208700 C November 2001 4401 Great America Parkway Santa Clara CA 95054 Using the Business Policy Switch 2000 Version 2 0 ...

Page 2: ...of the United States Government regarding its use reproduction and disclosure are as set forth in the Commercial Computer Software Restricted Rights clause at FAR 52 227 19 Statement of conditions In the interest of improving internal design operational function and or reliability Nortel Networks Inc reserves the right to make changes to the products described in this document without notice Norte...

Page 3: ...pean requirements only EN 55 022 statement This is to certify that the Nortel Networks Business Policy Switch 2000 is shielded against the generation of radio interference in accordance with the application of Council Directive 89 336 EEC Article 4a Conformity is declared by the application of EN 55 022 Class A CISPR 22 Warning This is a Class A product In a domestic environment this product may c...

Page 4: ...oftware license agreement This Software License Agreement License Agreement is between you the end user Customer and Nortel Networks Corporation and its subsidiaries and affiliates Nortel Networks PLEASE READ THE FOLLOWING CAREFULLY YOU MUST ACCEPT THESE LICENSE TERMS IN ORDER TO DOWNLOAD AND OR USE THE SOFTWARE USE OF THE SOFTWARE CONSTITUTES YOUR ACCEPTANCE OF THIS LICENSE AGREEMENT If you do no...

Page 5: ...ARRANTIES CONDITIONS FOR THE SOFTWARE EITHER EXPRESS OR IMPLIED INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABLITITY AND FITNESS FOR A PARTICULAR PURPOSE AND ANY WARRANTY OF NON INFRINGEMENT Nortel Networks is not obligated to provide support of any kind for the Software Some jurisdictions do not allow exclusion of implied warranties and in such event the above exclusions may no...

Page 6: ... exclusive agreement between Customer and Nortel Networks f This License Agreement is governed by the laws of the country in which Customer acquires the Software If the Software is acquired in the United States then this License Agreement is governed by the laws of the state of New York ...

Page 7: ...oftware in a Hybrid stack 36 Upgrading software when ISVN is 2 37 Upgrading software when ISVN is 1 37 Software version 2 0 compatibility with BayStack 450 switches 38 Physical description 39 Front panel 40 Console port 41 Uplink Expansion slot 41 Port connectors 41 LED display panel 43 Back panel 46 Cascade Module slot 46 Cooling fans 48 AC power receptacle 48 Redundant power supply unit RPSU and...

Page 8: ...1 ASCII configuration file 61 Sample ASCII configuration file 62 IP manager list 64 Policy enabled networks with QoS metering 65 Support for the BayStack 450 1GBIC MDA GBIC MDA 65 EAPOL based security 66 Automatic PVID 67 Tabular port statistics 69 Ability to ping 69 Improved STP Fast Learning Mode 69 BootP menu item for a stack of only BPS 2000 switches 70 Policy enabled networking 70 Virtual Loc...

Page 9: ... 93 Network configuration examples 94 Desktop switch application 95 Segment switch application 95 High density switched workgroup application 97 Fail safe stack application 98 Business Policy Switch stack operation 99 BayStack 400 ST1 Cascade Module 100 Cascade A Out connector 100 Unit Select switch 101 Cascade A In connector 101 Base unit 102 Initial installation 102 Stack MAC address 103 Tempora...

Page 10: ...bers 140 Spanning tree considerations for MultiLink Trunks 141 Additional tips about the MultiLink Trunking feature 144 Port mirroring 145 Port based mirroring configuration 146 Address based mirroring configuration 149 Port mirroring configuration rules 151 Chapter 3 Using the console interface 153 Compatibility with BayStack 450 switches 153 Accessing the CI menus and screens 154 Using the CI me...

Page 11: ...AN Display by Port screen 208 Port Configuration screen 209 High Speed Flow Control Configuration screen 212 Choosing a high speed flow control mode 214 Symmetric mode 214 Asymmetric mode 215 MultiLink Trunk Configuration Menu screen 215 MultiLink Trunk Configuration screen 216 MultiLink Trunk Utilization screen 219 Port Mirroring Configuration screen 221 Rate Limiting Configuration screen 224 IGM...

Page 12: ...screen 274 Configuration File Download Upload screen 275 Requirements 278 ASCII Configuration File Download screen 279 System Log screen 282 Chapter 4 Policy enabled networks 285 Summary 286 Summary of packet classifiers 286 Summary of actions 287 Differentiated Services DiffServ overview 288 QoS classes 290 Packet classifiers or filters 291 Layer 2 filters 292 IP filters 293 Changing IEEE 802 1p ...

Page 13: ...ons 328 Configuring meters 331 Configuring shapers 334 Configuring policies 336 Assigning mapping values 341 Assigning 802 1p priority queue assignment 341 Verifying DSCP mapping 342 Assigning 802 1p user priority mapping 345 Verifying DSCP queue assignments 346 Chapter 6 Troubleshooting 349 Interpreting the LEDs 349 Diagnosing and correcting problems 353 Normal power up sequence 354 Port connecti...

Page 14: ... with BayStack 450 switches 365 Setting up your mixed stack configuration 366 Configuration requirements 366 Base unit 367 Merging the Business Policy Switch into a mixed stack 367 Automatic failover 368 Temporary base unit 369 Compatible software versions 369 Using cascade modules 370 Using the console interface 371 Upgrading software in a mixed stack 371 Upgrading software when ISVN is 2 372 Upg...

Page 15: ...ss for EAPOL based security 384 Appendix D Connectors and pin assignments 387 RJ 45 10BASE T 100BASE TX port connectors 387 MDI and MDI X devices 388 MDI X to MDI cable connections 389 MDI X to MDI X cable connections 389 DB 9 RS 232 D Console Comm Port connector 390 Appendix E Default Settings 393 Appendix F Sample BootP Configuration File 401 Index 403 ...

Page 16: ...16 Contents 208700 C ...

Page 17: ...e Module front panel components 100 Figure 13 Connecting cascade cables 101 Figure 14 Stack up configuration example 105 Figure 15 Stack down configuration example 106 Figure 16 Redundant cascade stacking feature 109 Figure 17 Port based VLAN example 111 Figure 18 Default VLAN settings 113 Figure 19 Port based VLAN assignment 114 Figure 20 802 1Q tagging after port based VLAN assignment 114 Figure...

Page 18: ... Figure 45 Example 2 detecting a misconfigured port 144 Figure 46 Port based mirroring configuration example 147 Figure 47 Port Mirroring Configuration port based screen example 148 Figure 48 Address based mirroring configuration example 149 Figure 49 Port Mirroring Configuration address based screen example 151 Figure 50 Terminal preference settings 155 Figure 51 Map of console interface screens ...

Page 19: ...screen 222 Figure 80 Rate Limiting Configuration screen 1 of 2 225 Figure 81 Rate Limiting Configuration screen 2 of 2 226 Figure 82 IGMP Configuration Menu screen 228 Figure 83 IGMP Configuration screen 230 Figure 84 Multicast Group Membership screen 233 Figure 85 Port Statistics screen 235 Figure 86 Stack Operational Mode screen 238 Figure 87 Console Comm Port Configuration screen 240 Figure 88 ...

Page 20: ...n page with new entry 1 of 2 325 Figure 115 Layer 2 Classification page with new entry 2 of 2 325 Figure 116 Layer2 Group page 326 Figure 117 Layer 2 Group Modification page 327 Figure 118 Layer 2 Classification page 328 Figure 119 Actions page 329 Figure 120 Action page with entry in Action Table 330 Figure 121 Meters page 332 Figure 122 Meter page with new entry in Meter Table 333 Figure 123 Sha...

Page 21: ...iLink Trunks 379 Figure 142 Configuring Port Mirroring 1 of 2 380 Figure 143 Configuring Port Mirroring 2 of 2 381 Figure 144 Configuring IGMP Snooping 1 of 3 382 Figure 145 Configuring IGMP Snooping 2 of 3 383 Figure 146 Configuring IGMP Snooping 3 of 3 384 Figure 147 Authenticaton process flowchart 1 of 2 385 Figure 148 Authenticaton process flowchart 2 of 2 386 Figure 149 RJ 45 8 Pin Modular po...

Page 22: ...22 Figures 208700 C ...

Page 23: ...racteristics screen fields 170 Table 14 Switch Configuration Menu screen options 172 Table 15 MAC Address Table screen fields 175 Table 16 MAC Address Security Configuration Menu Options 177 Table 17 MAC Address Security Configuration fields 180 Table 18 MAC Security Port Configuration screen fields 184 Table 19 MAC Address Security Port Lists screen fields 186 Table 20 MAC Address Security Table ...

Page 24: ...ee Group Configuration parameters 251 Table 46 Spanning Tree Port Configuration screen fields 255 Table 47 Spanning Tree Switch Settings parameters 258 Table 48 Spanning Tree VLAN Membership parameters 261 Table 49 TELNET SNMP Web Access Configuration screen fields 263 Table 50 Software Download screen fields 268 Table 51 Configuration File Menu screen options 275 Table 52 Configuration File Downl...

Page 25: ... 2 0 Table 64 Electrical parameters 361 Table 65 Physical dimensions 362 Table 66 Performance specifications 362 Table 67 RJ 45 port connector pin assignments 388 Table 68 DB 9 Console port connector pin assignments 391 Table 69 Factory default settings 393 ...

Page 26: ...26 Tables 208700 C ...

Page 27: ...ss Policy Switch includes a dedicated Uplink Module slot for attaching optional media dependent adapters MDAs that support a range of media types including Gigabit Ethernet Installation instructions are included with each MDA see your Nortel Networks sales representative for ordering information For more information about the MDAs refer to Installing Media Dependent Adapters MDAs and Installing Gi...

Page 28: ...Policy Switch 2000 refer to the following publications Release Notes for the Business Policy Switch 2000 Version 2 0 part number 210676 F Documents important changes about the software and hardware that are not covered in other related publications Installing the Business Policy Switch 2000 part number 209319 A Describes how to install the Business Policy Switch 2000 Getting Started with the Busin...

Page 29: ...stall optional MDAs in your Business Policy Switch 2000 Installing Gigabit Interface Converters and Small Form Factor Pluggable Interface Converters part number 312865 B Describes how to install optional GBICs and SFF GBICs into the optional MDA in your Business Policy Switch 2000 Installing the BayStack 400 ST1 Cascade Module part number 304433 B Describes how to connect up to eight switches into...

Page 30: ...es with Optivity Quick2Config 2 2 part number 311208A Describes how to configure the BPS 2000 using Quick2Config Installing and Administering Optivity Quick2Config 2 2 part number 207809 B Describes how to install Quick2Config Installing Optivity Policy Services part number 306972 E Rev 00 Describes how to install Optivity Policy Services Managing Policy Information in Optivity Policy Services par...

Page 31: ... get help If you purchased a service contract for your Nortel Networks product from a distributor or authorized reseller contact the technical support staff for that distributor or reseller for assistance If you purchased a Nortel Networks service program contact one of the following Nortel Networks Technical Solutions Centers Additional information about the Nortel Networks Technical Solutions Ce...

Page 32: ...32 Preface 208700 C ...

Page 33: ...Features on page 50 Configuration and switch management on page 88 Supported standards and RFCs on page 91 General description The Business Policy Switch introduces policy enabled networking features to optimize consistent performance and behavior for your network traffic The Differentiated Services DiffServ network architecture offers varied levels of service for different types of data traffic D...

Page 34: ...dentical version of software When you are working with a mixed stack you must ensure that the Interoperability Software Version Numbers ISVN are identical That is the ISVN number for the BayStack 450 switch and BayStack 410 switch must have the same ISVN as the BPS 2000 If the ISVNs are not the same the stack does not operate In sum the stacking software compatibility requirements are as follows P...

Page 35: ...ng the same software version All BayStack 410 units must be running the same software version All BayStack 450 units must be running the same software version All software versions must have the identical ISVN This section discusses the following topics Upgrading software in a Pure BPS 2000 stack next Upgrading software in a Hybrid stack on page 36 Note Use the Command Line Interface CLI console i...

Page 36: ...der regarding upstream downstream neighbors does not affect the process Before you attempt to download new software or upgrade software to a Hybrid mixed stack you must ensure that the Interoperability Software Version Numbers ISVN are identical That is the ISVN number for the BayStack 450 switch and BayStack 410 switch must have the same ISVN as the BPS 2000 If the ISVNs are not the same the stac...

Page 37: ...rsion 2 0 when the ISVN numbers of the units are 2 1 Download the BPS 2000 image file The system resets 2 Download the BPS 2000 diags file The system resets Upgrading software when ISVN is 1 To upgrade a Hybrid stack to BPS 2000 software version 2 0 when the ISVN numbers of the units are 1 1 Download the BPS 2000 image file and the BayStack 450 410 file simultaneously Note Once you begin the upgra...

Page 38: ...s compatible with BayStack 450 software version 4 1 When you are using a local console to access the BPS 2000 software version 2 0 features with a Hybrid or mixed stack BPS 2000 and BayStack 450 and 410 switches in the same stack you must plug your local console into a BPS 2000 unit Note If you do not download both the BPS 2000 and BayStack 410 450 images simultaneously the stack may not form Note...

Page 39: ... with a Pure BPS 2000 stack running software version 2 0 The maximum number of MAC SA based VLANs available is 48 If you are working with a mixed or hybrid stack you can use 64 VLANs for the entire stack When you change from a Pure BPS 2000 Stack mode to a Hybrid Stack mode If you have up to 64 VLANs on the Pure BPS 2000 Stack they will be retained when you change to a Hybrid Stack If you have mor...

Page 40: ... components see Back panel on page 46 Figure 2 Business Policy Switch 2000 front panel Table 1 Business Policy Switch 2000 front panel description 1 Console port 2 Uplink expansion slot 9713FA Business Policy Switch 2000 1 3 5 7 9 11 2 4 6 8 10 12 13 15 17 19 21 23 14 16 18 20 22 24 3 Uplink Expansion Module 28 26 27 25 Console Port 1 Business Policy Switch 2000 1 3 5 7 9 11 13 15 17 19 21 23 2 4 ...

Page 41: ...ness Policy Switch 2000 for more information The console port default settings are 9600 baud with 8 data bits 1 stop bit and no parity as the communications format with flow control set to enabled Uplink Expansion slot The Uplink Expansion slot allows you to attach optional media dependent adapters MDAs that support a range of media types see Appendixes for more information about MDA types availab...

Page 42: ...operate at 10 Mb s megabits per second or at 100 Mb s depending on the connecting device These ports support the IEEE 802 3u autonegotiation standard which means that when a port is connected to another device that also supports the IEEE 802 3u standard the two devices negotiate the best speed and duplex mode The 10BASE T 100BASE TX switch ports also support half and full duplex mode operation ref...

Page 43: ...itry Off No AC power to switch or power supply failed Status System status Green On Self test passed successfully and switch is operational Blinking A nonfatal error occurred during the self test This includes nonworking fans Off The switch failed the self test RPSU RPSU status Green On The switch is connected to the RPSU and can receive power if needed Off The switch is not connected to the RPSU ...

Page 44: ...ll The unit is on the ring but cannot participate in the stack configuration Cas Dwn Stack mode Off The switch is in standalone mode Green On The switch is connected to the downstream unit s Cascade A Out connector Amber On This unit has detected a problem with the switch connected to the cascade down connector In order to maintain the integrity of the stack this unit has bypassed its downstream n...

Page 45: ... fails the next unit directly downstream from this unit becomes the new temporary base unit This process can continue until there are only two units left in the stack configuration This automatic failover is a temporary safeguard only If the stack configuration loses power the temporary base unit will not power up as the base unit when power is restored For this reason you should always assign the...

Page 46: ...s link established Off The communications link connection is bad or there is no connection to this port Blinking The corresponding port is management disabled Activity Port activity Green Blinking Indicates network activity for the corresponding port A high level of network activity can cause the LEDs to appear to be on continuously Table 3 Business Policy Switch 2000 back panel descriptions 1 AC ...

Page 47: ...cade Module see Installing the BayStack 400 ST1 Cascade Module Use a flathead screwdriver to remove the filler panel that covers the Cascade Module slot Figure 5 For more information about cascade modules see Installing the Cascade 400 ST1 Cascade Module See your Nortel Networks sales representative for cascade module ordering information Figure 5 Removing the cascade module filler panel 9744FA ...

Page 48: ...ica make sure that you have the proper power cord for your region Any cord used must have a CEE 22 standard V female connector on one end and must meet the IEC 320 030 specifications Table 4 lists specifications for international power cords Table 4 International power cord specifications Country Plug description Specifications Typical plug Continental Europe CEE7 standard VII male plug Harmonized...

Page 49: ...the event that any of the switch power supplies fail The BayStack 10 Power Supply Unit has a powerful modular redundant and uninterruptible power supply UPS functionality in a single chassis It provides scalable power redundancy and protection to your networking equipment The modules fit into the right hand side of the rear of the chassis The UPS and associated battery pack module fit into the fro...

Page 50: ...out the Nortel Networks products that use the 100 Watt DC DC Converter For further information about the 100 Watt DC DC Converter refer to Installation and Reference for the 100 Watt DC DC Converter Module part number 209132 B Features The Business Policy Switch 2000 provides wire speed switching that allows high performance low cost connections to full duplex and half duplex 10 100 1000 Mb s Ethe...

Page 51: ... the BayStack 450 1GBIC MDA GBIC MDA on page 65 EAPOL based security on page 66 Automatic PVID on page 67 Tabular port statistics on page 69 Ability to ping on page 69 Improved STP Fast Learning Mode on page 69 BootP menu item for a stack of only BPS 2000 switches on page 70 Introduced with software version 1 0 Policy enabled networking on page 70 Virtual Local Area Networks VLANs on page 71 Secur...

Page 52: ...uses shortwave 850 nm fiber optic connectors to connect devices over multimode 550 m or 1 805 ft fiber optic cable 1000BASE LX This SFP GBIC uses longwave 1 300 nm fiber optic connectors to connect devices over single mode 5 km or 3 1 mi or multimode 550 m or 1 805 ft fiber optic cable Refer to Installing Media Dependent Adapters MDA s and Installing Gigabit Interface Converters and Small Form Fac...

Page 53: ...ltiple VLANs Beginning with BPS 2000 software version 2 0 you can filter multiple VLANs with a single layer 2 filter You can filter up to 32 VLANs with a single layer 2 filter Enhancements for QoS configuration using the Web With software version 2 0 the Web based management system has an additional feature for configuring QoS The QoS Quick Config pages provide a two step process for configuring Q...

Page 54: ... based Management for the Business Policy Switch 2000 Software Version 2 0 and Reference for the Business Policy Switch 2000 Command Line Interface Software Version 2 0 DA filtering using MAC address based security With software version 2 0 you can use the MAC address based security feature BaySecure to configure the BPS 2000 to drop all packets with specified MAC destination addresses DAs You can...

Page 55: ...r the Business Policy Switch 2000 Command Line Interface Software Version 2 0 for information on configuring IP addresses for each unit in the stack from a single connection View CPU memory utilization You can view the amount of CPU and memory utilization with BPS 2000 software version 2 0 You can view this information using either the Web based management system or SNMP Refer to Using Web based M...

Page 56: ...local area networks VLANs These 256 VLANs can be spread among port based protocol based and MAC source address based VLANs maximum of 48 MAC source address based VLANs Finally the 256 VLANs can be on a standalone BPS 2000 with software version 1 2 or across a Pure BPS 2000 Stack with software version 1 2 If you are working with more than 64 VLANs in a Pure BPS 2000 Stack and you change to a Hybrid...

Page 57: ...and redundancy You enable load balancing between two BPS 2000 switches using multiple STGs by configuring each path with a different VLAN and then assigning each VLAN to a separate STG Each STG is independent Each STG sends its own Bridge Protocol Data Units BPDUs and each STG must be independently configured To use more that one STG ensure that the Stack Operational Mode is set to Pure BPS 2000 S...

Page 58: ... STGs except the Default STG must be created by the user To become active each STG must be enabled by the user after creation Each STG will be assigned an ID number from 2 to 8 the Default STG is assigned the ID number 1 You assign ports or VLANs to an active STG However a port that is not a member of a VLAN will not be allowed to join an STG When you not longer need a particular STG disable and d...

Page 59: ...itches the VLAN must be within the same spanning tree group have the same STG ID across all the switches All VLANs in the same shared database SVL must be assigned to the same STG All members of a particular MultiLink Trunking MLT group must be assigned to the same STG that is they can belong to one and only one STG A port that is not a member of any VLAN cannot be added to any STG The port must b...

Page 60: ...ill become part of STG1 However if in the example explained above the untagged port 1 already belongs to STG2 then port will not become a member of STG1 When you remove a port from VLAN that belongs to an STG that port will also be removed from the STG However if that port belongs to another VLAN in the same STG the port remains in the STG As an example assume that port 1 belongs to VLAN1 and VLAN...

Page 61: ...es It may not be desirable to wait the usual 30 to 35 seconds for spanning tree initialization and bridge learning ASCII configuration file Beginning with software version 1 2 the BPS 2000 can download a user editable ASCII configuration file from a TFTP server You can load the ASCII configuration file automatically at boot time or on demand using the management systems console menus or CLI Once d...

Page 62: ...ant that you review the commands in the file to ensure accuracy and completeness For information on setting the parameters for the ASCII configuration file feature refer to Chapter 3 Sample ASCII configuration file This section shows a sample ASCII configuration file This file is an example only and shows a basic configuration for a standalone BPS 2000 that includes Multi Link Trunking VLANs port ...

Page 63: ...dd ports to this VLAN in this case all ports vlan members add 150 ALL vlan ports ALL priority 3 create vlan MACSA based vlan create 90 name MAC90 type macsa add ports to this VLAN in this case all ports vlan members add 90 ALL igmp you could disable proxy on vlan 100 vlan igmp 100 proxy disable Examples of changing interface parameters change speed of port 3 interface Fastethernet 3 speed 10 duple...

Page 64: ...ion on using the CLI commands IP manager list With software version 1 2 you can limit access to the management features of the BPS 2000 by defining the IP addresses allowed access to the switch The features provided by the IP manager list are Definitions of up to 10 allowed IP addresses and masks Options to enable or disable access for Telnet SNMP and the Web based management system Note To add co...

Page 65: ...ality of Service QoS architecture Refer to Policy enabled networking on page 70 for a more complete description of policy enabled networks and refer to Chapter 4 for a complete discussion of policy enabled networks Differentiated Services DiffServ and Quality of Service QoS For information on configuring policy enabled networks DiffServ and QoS refer to Using Web based Management for the Business ...

Page 66: ... Form Factor Interface Converters for more information on installation technical specifications connectors and cabling for the BayStack 450 1GBIC MDA EAPOL based security BPS 2000 software version 1 1 provides support for security based on the Extensible Authentication Protocol over LAN EAPOL which uses the EAP as described in the IEEE Draft P802 1X to allow you to set up network access control on...

Page 67: ...for the Business Policy Switch 2000 Software Version 2 0 for information on configuring this feature using the Web based management system And refer to Reference for the Business Policy Switch 2000 Command Line Interface Software Version 2 0 for information on configuring Automatic PVID with CLI commands Finally refer to Reference for the Business Policy Switch 2000 Management Software Version 2 0...

Page 68: ...PVID VLAN association for ports 6 and 11 is PVID 1 Ports 2 4 10 and 8 are untagged members of VLAN 2 The PVID VLAN association for ports 2 4 and 10 is PVID 2 Ports 2 4 10 8 6 and 11 are untagged members of VLAN 3 The PVID VLAN association for port 8 is PVID 3 Port 2 BS45019A Port 4 Port 10 Port 8 VLAN 3 V2 V2 V2 V1 V2 VLAN 2 VLAN 1 S1 Key VLAN 1 PVID 1 VLAN 2 PVID 2 VLAN 3 PVID 3 PVID 2 PVID 3 V3 ...

Page 69: ...00 software version 1 1 you can view all ports in an entire stack that have an error If a particular port has no errors it will not be displayed Refer to Using Web based Management for the Business Policy Switch 2000 Software Version 2 0 to display tabular port statistics Ability to ping With software version 1 1 you can ping from a BPS 2000 This ability greatly enhances the ease of network manage...

Page 70: ... when certain user defined characteristics are matched Differentiated Services DiffServ is a network architecture that lets service providers and enterprise network environments offer varied levels of service for different types of data traffic Instead of using the best effort service model to ensure data delivery DiffServ s Quality of Service QoS lets you designate a specific level of performance...

Page 71: ...e Version 2 0 To use Device Manager DM to configure QoS refer to Reference for the Business Policy Switch 2000 Management Software Version 2 0 And to configure this feature using CLI commands refer to Reference for the Business Policy Switch 2000 Command Line Interface Software Version 2 0 For information on using COPS with the BPS 2000 go to the www nortelnetworks com documentation URL Then choos...

Page 72: ...anually change the PVID value The default setting for AutoPVID is Off you must enable this feature Protocol based VLANs A protocol based VLAN is a VLAN in which you assign your switch ports as members of a broadcast domain based on the protocol information within the packet Protocol based VLANs can localize broadcast traffic and assure that only the protocol based VLAN ports are flooded with the s...

Page 73: ...e is only an option when using the Business Policy Switch 2000 you must use the SVL mode when operating a hybrid stack Business Policy Switches support up to 64 VLANs port protocol or MAC SA based including VLAN 1 which is always port based With software version 1 2 the switch supports up to 256 VLANs The maximum number of available MAC SA based VLANs is always 48 Note The maximum 256 VLANs is sup...

Page 74: ...he Pure BPS 2000 Stack and you change to a Hybrid Stack you will retain all the VLANs To have more than 64 VLANs available you must be operating in Pure BPS 200 Stack mode you cannot be in Hybrid mode The 256 VLANs are supported on either a standalone BPS 2000 with software version 1 2 or across a Pure BPS2000 Stack with software version 1 2 Before you begin configuring more than 64 VLANs you must...

Page 75: ...cess to the switch through user authentication MAC address based security limits access to the switch based on allowed source MAC addresses and allowed destination MAC addresses beginning with software version 2 0 EAPOL based security allows the exchange of authentication information between any end station or server connected to the switch and authentication server such as a RADIUS server Figure ...

Page 76: ...ng security measures are implemented The switch RADIUS based security is used to limit administrative access to the switch through user authentication see RADIUS based network security on page 78 Library Teachers offices and classrooms To Network Center Secure locked area Legend Student Dormitory Switch RADIUS server RADIUS based security BS45077A ...

Page 77: ...e assigned MAC address based security that is specific for each classroom and office location The security feature logically locks each wall jack to the specified station and prevents unauthorized access to the switch should someone attempt to connect a personal laptop PC into the wall jack The printer is assigned as a single station and is allowed full bandwidth on that switch port It is assumed ...

Page 78: ...access Set the Service Type field value to Administrative Read only access Set the Service Type field value to NAS Prompt For detailed instructions to set up your RADIUS server refer to your RADIUS server documentation MAC address based security The MAC address based security feature allows you to set up network access control based on source MAC addresses of authorized stations You can Create a l...

Page 79: ... disable the specific port or any combination of these three options The MAC address based security feature is based on Nortel Networks BaySecure LAN Access for Ethernet a real time security system that safeguards Ethernet networks from unauthorized surveillance and intrusion With software version 2 0 you can configure the BPS 2000 to drop all packets with specified MAC destination addresses DA Yo...

Page 80: ...on 2 0 book EAP allows the exchange of authentication information between any end station or server connected to the switch and an authentication server such as a RADIUS server The EAPOL based security feature operates in conjunction with a RADIUS based server to extend the benefits of remote authentication to internal LAN clients The following example illustrates how the BPS 2000 configured with ...

Page 81: ... operational state After the RADIUS server notifies the Authenticator PAE about the success or failure of the authentication it changes the controlled port s operational state accordingly The Authenticator PAE functionality is implemented for each controlled port on the switch At system initialization or when a supplicant is initially connected to the switch s controlled port the controlled port s...

Page 82: ...he switch s NVRAM You can override the dynamic VLAN configuration values assigned by EAPOL however be aware that the values you configure are not stored in NVRAM When EAPOL is enabled on a port and you configure values other than VLAN configuration values those values are applied and stored in NVRAM You set up your Authentication server RADIUS server for EAPOL dynamic VLAN assignments The Authenti...

Page 83: ...tware version V4 0 or later Business Policy Switch 2000 software version V1 1 or later RADIUS server Microsoft Windows XP Server Client software that supports EAPOL Microsoft Windows XP Client You must specify the Microsoft 2001 IAS server or any generic RADIUS server that supports EAP as the primary RADIUS server for these devices You must also configure your BayStack 350 410 24T 450 switches and...

Page 84: ... each port that is configured for EAPOL based security If you attempt to add additional ports to a port that port goes to Blocking mode EAPOL based security uses the RADIUS protocol to authenticate local console Telnet and EAPOL authorized logins Refer to RADIUS based network security on page 78 for more information on using the RADIUS protocol Flash memory storage Switch software image storage Th...

Page 85: ...ibuted trunking For more information about the MultiLink Trunking feature refer to Chapter 2 Network configuration For information on configuring MultiLink Trunks using the CI menus refer to Chapter 3 To configure this feature using the Web based management system refer to Using Web based Management for the Business Policy Switch 2000 Software Version 2 0 To use Device Manager DM to configure this...

Page 86: ... For information on configuring port mirroring using the CI menus refer to Chapter 3 To configure this feature using the Web based management system refer to Using Web based Management for the Business Policy Switch 2000 Software Version 2 0 And to configure this feature using CLI commands refer to Reference for the Business Policy Switch 2000 Command Line Interface Software Version 2 0 book Autos...

Page 87: ...e Business Policy Switch 2000 Software Version 2 0 To use Device Manager DM to configure this feature refer to Reference for the Business Policy Switch 2000 Management Software Version 2 0 And to configure this feature using CLI commands refer to Reference for the Business Policy Switch 2000 Command Line Interface Software Version 2 0 book BootP automatic IP configuration MAC address Beginning wit...

Page 88: ...h remotely through a dial up modem connection or in band through a Telnet session For information about the console interface refer to Chapter 3 Web based management You can manage the network from the World Wide Web Access the Web based graphical user interface GUI through the HTML based browser located on your network The GUI allows you to configure monitor and maintain your network through Web ...

Page 89: ...ication based on header fields of data link network and transport layer protocols as you configure your policy criteria Filters are populated with information needed to classify packets and determine the set of actions that need to be applied to classified packets See Chapter 4 Policy enabled networks for more information SNMP MIB support The Business Policy Switch supports an SNMP agent with indu...

Page 90: ...fc1213 mib IF MIB rfc2863 mib Etherlike MIB rfc2665 mib Interface Extension MIB s5ifx100 mib Switch Bay Secure s5sbs102 mib IP Multicast IGMP Snooping Proxy rcVlanIgmp System Log MIB bnlog mib S5 Autotopology MIB s5emt104 mib VLAN rcVlan Entity MIB RFC 2737 Spanning Tree RFC1493 Bridge MIB Table 6 Supported SNMP traps Trap name Configurable Sent when RFC 1215 industry standard linkUp Per port A po...

Page 91: ...owing IEEE Standards contain information germane to the Business Policy Switch 2000 IEEE 802 1D Standard for Spanning Tree Protocol IEEE 802 3 Ethernet IEEE 802 1Q VLAN Tagging IEEE 802 1p Prioritizing coldStart Always on The system is powered on warmStart Always on The system restarts due to a management reset s5CtrMIB Nortel proprietary traps s5CtrUnitUp Always on A unit is added to an operation...

Page 92: ... MIB II RFC 1493 Bridge MIB RFC 2863 Interfaces Group MIB RFC 2665 Ethernet MIB RFC 2737 Entity MIBv2 RFC 2819 RMON MIB RFC 1757 RMON RFC 1271 RMON RFC 1157 SNMP RFC 2748 COPS RFC 2940 COPS Clients RFC 3084 COPS Provisioning RFC 2570 SNMPv3 RFC 2571 SNMP Frameworks RFC 2573 SNMPv3 Applications RFC 2574 SNMPv3 USM RFC 2575 SNMPv3 VACM RFC 2572 SNMP Message Processing ...

Page 93: ...ks Compatibility with BayStack 450 switches next Network configuration examples on page 94 Business Policy Switch stack operation on page 99 IEEE 802 1Q VLAN workgroups on page 110 IGMP snooping on page 128 MultiLink Trunks on page 135 Port mirroring on page 145 Compatibility with BayStack 450 switches The BPS 2000 software version 2 0 is compatible with BayStack 450 software version 4 1 When you ...

Page 94: ...ANs for the entire stack When you change from a Pure BPS 2000 Stack mode to a Hybrid Stack mode If you have up to 64 VLANs on the Pure BPS 2000 Stack they will be retained when you change to a Hybrid Stack If you have more than 64 VLANs on the Pure BPS 2000 Stack you will lose them all The Hybrid Stack will return to the default VLAN configuration Also a mixed or hybrid stack does not support mult...

Page 95: ...tention for bandwidth and eliminate server and network bottlenecks Before segmentation 88 users had a total bandwidth of only 10 Mb s available After segmentation 92 users have 40 Mb s four times the previous bandwidth while adding 22 dedicated 100 Mb s connections This configuration can be extended to add more segments without degrading performance Server Up to 22 users To Network Center Key 10 M...

Page 96: ...rk Center 9796EA Up to 23 users Up to 23 users Up to 23 users 88 users share 10 Mb s 10 88 Mb s per user Server bottleneck 10 Mb s bandwidth Network center bottleneck 10 Mb s bandwidth Total of 88 users Four sets of 23 users each set shares 10 Mb s 10 23 Mb s per user Addition of 22 users each with dedicated 100 Mb s bandwidth Server with dedicated 100 Mb s bandwidth Network center with dedicated ...

Page 97: ... As shown in Figure 10 the Passport 1100 switch is used as a backbone switch connecting to the Business Policy Switch with an optional gigabit 1000BASE SX MDA for maximum bandwidth The BayStack 303 and BayStack 304 switches have 100 Mb s connections to the Business Policy Switch a 100BASE TX hub and a 100 Mb s server as well as 10 Mb s connections to DTE data terminal equipment See the Nortel Netw...

Page 98: ...t 1100 switch is used as a backbone switch connecting to the Business Policy Switch with an optional gigabit 1000BASE SX MDA for maximum bandwidth This configuration uses optional BayStack 400 ST1 Cascade Modules to connect the switches in the fail safe stack For an overview of the fail safe stacking feature that is available for the Business Policy Switches see Business Policy Switch stack operat...

Page 99: ...ovide uninterrupted connectivity for up to 224 ports see Fail safe stack application The entire stack is manageable as a single unit Installation instructions are provided with the BayStack 400 ST1 Cascade Module see your Nortel Networks sales representative for ordering information This section discusses the following stacking topics BayStack 400 ST1 Cascade Module on page 100 Base unit on page 1...

Page 100: ...attachment point for connecting this unit to another unit via the cascade cable A return cable from another unit s Cascade A Out connector to this unit s Cascade A In connector completes the stack connection see the example shown in Figure 13 Note If you are implementing a mixed stack with the Business Policy Switch and BayStack 450 and BayStack 410 switches refer to Appendixes for configuration a...

Page 101: ...on all other Unit Select switches in the stack configuration must be set to Off down Cascade A In connector Provides an attachment point for accepting a cascade cable connection from an adjacent unit in the stack A return cable from this unit s Cascade A Out connector to the adjacent unit s Cascade A In connector completes the stack connection see the example shown in Figure 13 Figure 13 Connectin...

Page 102: ...ion of the stack the software automatically determines the physical order of all units in the stack according to the position of the base unit within the stack Thereafter the individual units maintain their original unit numbering even if you change the position of one or more units in the stack Refer to Chapter 3 for information on renumbering the units using the console interface CI menus and to...

Page 103: ...se unit If an assigned base unit fails the next unit in the stack order automatically becomes the new temporary base unit This change is indicated by the base LED on the temporary base unit s LED display panel turning on amber For detailed information about the base LED see Chapter 1 This automatic failover is a temporary safeguard only If the stack configuration loses power the temporary base uni...

Page 104: ...es on the BayStack 400 ST1 Cascade Module front panel provide the ability to stack up to 8 switches With BPS 2000 MDAs installed in each switch the stack can accommodate a maximum of 224 switch ports Because stack parameters are associated with the base unit see Base unit the physical stack order depends on the base unit s position and whether the stack is configured stack up or stack down Stack u...

Page 105: ...onfiguration example Table 7 describes the stack up configuration illustration references Table 7 Stack up configuration description 1 Last unit 2 Base unit 3 Cascade Cable part number 303978 A 4 Cascade Cable part number 303979 A 9813EA 1 Unit 8 Unit 7 Unit 6 Unit 5 Unit 4 Unit 3 Unit 2 Unit 1 2 3 4 Out In ...

Page 106: ...it 1 to the next switch which is assigned as unit 2 and continues until the last switch in the stack is assigned as unit 8 The physical order of the switches is from top to bottom unit 1 to unit 8 Figure 15 Stack down configuration example 9814EA 1 Unit 1 Unit 2 Unit 3 Unit 4 Unit 5 Unit 6 Unit 7 Unit 8 2 3 4 In Out ...

Page 107: ...the entire stack from any switch in the stack from the console interface a Telnet session the Web based management interface or any generic SNMP based network management software You can access and manage the stack using a Telnet connection the Web based management interface or any generic SNMP management tool through any switch port that is part of the stack configuration When stacking three or m...

Page 108: ...ure 16 unit 3 becomes nonoperational This result can be due to a failed unit or simply because the unit was powered down 2 Unit 2 and unit 4 directly upstream and downstream from unit 3 sense the loss of link signals from unit 3 a Units 2 and 4 automatically loop their internal stack signals A and B b The Cas Up LED for unit 2 and the Cas Dwn LED for unit 4 turn on amber to indicate that the stack...

Page 109: ...ng feature Table 9 describes the redundant cascade stacking illustration references Table 9 Redundant cascade stacking descriptions 1 Base unit 2 Last unit 3 Cascade cable part number 303978 A 4 Cascade max return cable part number 303979 A 9815EA 1 Unit 1 Unit 2 Unit 3 Unit 4 Unit 5 2 3 4 B A Cascade A Out Cascade A In ...

Page 110: ...switch port connects to a segment that is a single broadcast domain When a switch port is configured to be a member of a VLAN it is added to a group of ports workgroup that belong to one broadcast domain The Business Policy Switch allows you to assign ports to VLANs using the console Telnet Web based management CLI or an appropriate SNMP based application such as the Device Manager You can assign ...

Page 111: ...are Version 2 0 Reference for the Business Policy Switch 2000 Command Line Interface Software Version 2 0 and Reference for the Business Policy Switch 2000 Management Software Version 2 0 for information on overriding the default values Port VLAN identifier PVID a classification mechanism that associates a port with a specific VLAN For example a port with a PVID of 3 PVID 3 assigns all untagged fr...

Page 112: ...he individual LAN segments may be unable to signal priority information Port priority the priority level assigned to untagged frames received on a port This value becomes the user priority for the frame Tagged packets get their user priority from the value contained in the 802 1Q frame header Unregistered packet a tagged frame that contains a VID where the receiving port is not a member of that VL...

Page 113: ... In Figure 18 untagged incoming packets are assigned directly to VLAN 2 PVID 2 Port 5 is configured as a tagged member of VLAN 2 and port 7 is configured as an untagged member of VLAN 2 Port 1 DA SA Data CRC Incoming untagged packet BS45010A Port 2 Port 3 Port 4 Port 5 VLAN 1 802 1Q Switch By default Key All ports are assigned PVID 1 All ports are untagged members of VLAN 1 PVID 1 Port 6 Port 7 Po...

Page 114: ... to VLAN 3 policy VLAN 3 PVID 2 Port 5 is configured as a tagged member of VLAN 3 and port 7 is configured as an untagged member of VLAN 3 Port 6 DA SA Data CRC BS45011A Port 7 Port 8 Port 1 Port 4 Port 5 Port 2 Port 3 802 1Q Switch PVID 2 Untagged packet Untagged member of VLAN 2 Tagged member of VLAN 2 Before BS45012A Port 6 Port 7 Port 8 Port 1 Port 4 Port 5 Port 2 Port 3 802 1Q Switch Key Prio...

Page 115: ...22 802 1Q tagging after policy based VLAN assignment Port 6 DA SA Data CRC BS45011B Port 7 Port 8 Port 1 Port 4 Port 5 Port 2 Port 3 802 1Q Switch PVID 2 Untagged packet Untagged member of VLAN 3 Tagged member of VLAN 3 Before Policy VLAN 3 BS45012B Port 6 Port 7 Port 8 Port 1 Port 4 Port 5 Port 2 Port 3 802 1Q Switch Key Priority CFI VID User_priority Canonical format indicator VLAN identifier PV...

Page 116: ...signment in the packet Port 5 is configured as a tagged member of VLAN 2 and port 7 is configured as an untagged member of VLAN 2 Figure 23 802 1Q tag assignment Port 6 DA SA Tag Data CRC Tagged packet BS45013A Port 7 Port 8 Port 1 Port 4 Port 5 Port 2 Port 3 802 1Q Switch PVID 2 Untagged member of VLAN 2 Tagged member of VLAN 2 Before ...

Page 117: ...ch However the configuration guidelines depend on whether both switches support 802 1Q tagging With 802 1Q tagging enabled on a port for a VLAN all frames leaving the port for that VLAN are marked as belonging to that specific VLAN You can assign specific switch ports as members of one or more VLANs that span multiple switches without interfering with the Spanning Tree Protocol Refer to Chapter 1 ...

Page 118: ...guration as any other switch to switch connection For this configuration to work properly both switches must support the 802 1Q tagging protocol VLANS spanning multiple untagged switches Figure 26 shows VLANs spanning multiple untagged switches In this configuration Switch S2 does not support 802 1Q tagging and you must use a single switch port on each switch for each VLAN For this configuration t...

Page 119: ...ach port belongs to only one VLAN at a time connectivity on the other VLAN is lost Exercise care when configuring the switches to ensure that the VLAN configuration does not conflict with spanning tree configuration To connect multiple VLANs across switches with redundant links you must disable the STP on all participating switch ports Figure 27 shows possible consequences of enabling the STP when...

Page 120: ... Blocking mode stations on VLAN 2 in Switch S1 cannot communicate with stations in VLAN 2 on Switch S2 With multiple links only one link will be forwarding Shared servers Business Policy Switches allow ports to exist in multiple VLANs for shared resources such as servers printers and switch to switch connections It is also possible to have resources exist in multiple VLANs on one switch as shown i...

Page 121: ... the switch ports are set to participate as VLAN port members This arrangement allows the switch to establish the appropriate broadcast domains within the switch Figure 29 Refer to Chapter 1 for additional guidelines on configuring VLANs and spanning tree groups Business Policy Switch 2000 9803EA S1 V2 V2 V1 V1 V2 V3 Key VLAN 1 PVID 1 VLAN 2 PVID 2 VLAN 3 PVID 3 ...

Page 122: ...sociation for ports 6 and 11 is PVID 1 Ports 2 4 10 and 8 are untagged members of VLAN 2 The PVID VLAN association for ports 2 4 and 10 is PVID 2 Ports 2 4 10 8 6 and 11 are untagged members of VLAN 3 The PVID VLAN association for port 8 is PVID 3 The following steps show how to use the VLAN configuration screens to configure the VLAN 3 broadcast domain shown in Figure 29 Port 2 BS45019A Port 4 Po...

Page 123: ...Figure 30 are default settings with all switch ports classified as untagged members of VLAN 1 Figure 31 shows the VLAN Configuration screen after it is configured to support the VLAN 3 broadcast domain shown in Figure 29 VLAN Name is optional VLAN Configuration Create VLAN 1 Vlan Type Port Based Delete VLAN Protocol Id PID None VLAN Name Default VLAN User Defined PID 0x0000 Management VLAN Yes Now...

Page 124: ... c The default VLAN Port Configuration screen opens Figure 32 The VLAN Port Configuration screen settings shown in Figure 32 are default settings VLAN Configuration Create VLAN 3 Vlan Type Port Based Delete VLAN Protocol Id PID None VLAN Name test VLAN User Defined PID 0x0000 Management VLAN Yes Now 1 VLAN State Active IVL SVL IVL Port Membership 1 6 7 12 13 18 19 24 Unit 1 U U U U UU KEY T Tagged...

Page 125: ...t 8 as shown in Figure 29 Port Name is optional The PVID VLAN association for VLAN 3 is now PVID 3 VLAN Port Configuration Unit 1 Port 1 Filter Tagged Frames No Filter Untagged Frames No Filter Unregistered Frames No Port Name Port 1 PVID 1 Port Priority 0 Tagging Untagged Access AutoPVID all ports Disabled Use space bar to display choices press Return or Enter to select choice Press Ctrl R to ret...

Page 126: ...ch port on each switch must be used for each VLAN see VLANS spanning multiple untagged switches The connection to S2 requires only one link between the switches because S1 and S2 are both Business Policy Switches that support 802 1Q tagging see VLANs spanning multiple 802 1Q tagged switches VLAN Port Configuration Unit 1 Port 8 Filter Tagged Frames No Filter Untagged Frames No Filter Unregistered ...

Page 127: ...iguration spanning multiple switches Business Policy Switch 2000 Business Policy Switch 2000 Untagged ports STP disabled Both ports are tagged members of VLAN 1 and VLAN 2 Non 802 1Q tagging switch 9802EA Key VLAN 1 PVID 1 VLAN 2 PVID 2 VLAN 3 PVID 3 S1 S2 S4 S3 V1 V2 V2 V1 V2 V3 Non 802 1Q tagging switch ...

Page 128: ...n If a port is on a trunk with a mirroring port the VLAN configuration cannot be changed VLANs are not dependent on Rate Limiting settings If a port is an IGMP member on any VLAN and is removed from a VLAN the port s IGMP membership is also removed If a port is added to a different VLAN and it is already configured as a static router port the port is configured as an IGMP member on that specific V...

Page 129: ...P host provides an IP Multicast stream to designated routers that forward the IP Multicast stream on their local network only if there is a recipient The client server path is set up as follows 1 The designated router sends out a host membership query to the subnet and receives host membership reports from end stations on the subnet 2 The designated routers then set up a path between the IP Multic...

Page 130: ...epresent a LAN connected to an IP Multicast router The router periodically sends Host Membership Queries to the LAN and listens for a response from end stations All of the clients connected to switches S1 to S4 are aware of the queries from the router Non IP Multicast filtering switch Non IP Multicast filtering switch Host membership report Multicast stream BS45021B Host membership query Designate...

Page 131: ...to its upstream neighbor S1 Figure 36 Business Policy Switch filtering IP multicast streams 1 of 2 Switch S1 treats the consolidated proxy reports from S2 and S4 as if they were reports from any client connected to its ports and generates a consolidated proxy report to the designated router In this way the router receives a single consolidated report from that entire subnet Consolidated report BS4...

Page 132: ...roxy report generated by the switch remains transparent to layer 3 of the International Organization for Standardization Open Systems Interconnection ISO OSI model The switch IP address and MAC address are not part of proxy report generation The last reporting IGMP group member in each VLAN represents all of the hosts in that VLAN and IGMP group BS45023C Designated router Host membership query Int...

Page 133: ...rt members of at least one VLAN If a port is configured as a static router port it is configured as a static router port for all VLANs on that port The IGMP configuration is propagated through all VLANs of that port If a static router port is removed the membership for that port is removed from all VLANs of that port The IGMP snooping feature is not STP dependent The IGMP snooping feature is not R...

Page 134: ...ived by the switch on that port are tagged according to the priority level you assign to the port see Figure 38 Figure 38 Prioritizing packets The newly tagged frame is read within the switch and sent to the port s high or low transmit queue for disposition BS45024A Port 6 Port 7 Port 8 Port 1 PVID 2 Priority 6 Port 4 Port 5 Port 2 Port 3 802 1Q Switch High Low Key Priority CFI VID User_priority C...

Page 135: ... on a single unit or on multiple units within the same stack configuration as a distributed trunk MultiLink Trunking software detects misconfigured or broken trunk links and redirects traffic on the misconfigured or broken trunk link to other trunk members within that trunk You can use the Trunk Configuration screen with the CI menus the Web based management system the CLI or DM to create switch t...

Page 136: ...single port bandwidth limitations creating a MultiLink Trunk can supply the additional bandwidth required to improve the performance Figure 40 shows a typical switch to server trunk configuration In this example file server FS1 uses dual MAC addresses using one MAC address for each network interface card NIC For this reason FS1 does not require a trunk assignment FS2 is a single MAC server with a ...

Page 137: ...s accessing data from the servers FS1 and FS2 are provided with maximized bandwidth through trunks T1 T2 T3 T4 and T5 Trunk members the ports making up each trunk do not have to be consecutive switch ports you can select ports randomly as shown by T5 With spanning tree enabled one of the trunks T2 or T3 acts as a redundant backup trunk to Switch S2 With spanning tree disabled you must configure tr...

Page 138: ...Before you configure your MultiLink Trunk you must consider these settings along with specific configuration rules as follows 1 Read the configuration rules provided in the next section MultiLink Trunking configuration rules 2 Determine which switch ports up to four are to become trunk members the specific ports making up the trunk A minimum of two ports are required for each trunk T2 S2 S3 T3 T4 ...

Page 139: ...y port that participates in MultiLink Trunking must be an active port set to Enabled via the Port Configuration screen or through network management All trunk members must have the same VLAN configuration before the Trunk Configuration screen s Trunk Status field can be set to Enabled using CI menus see Chapter 3 When an active port is configured in a trunk the port becomes a trunk member when you...

Page 140: ... member as a monitor port see Chapter 3 Trunks cannot be monitored by a monitor port however trunk members can be monitored see Port based mirroring configuration All trunk members must have identical IGMP configurations If you change the IGMP snooping configuration for any trunk member the IGMP snooping settings for all trunk members change Nortel Networks recommends that you do not enable MAC Ad...

Page 141: ...configuration Rate Limiting configuration Spanning tree considerations for MultiLink Trunks The spanning tree Path Cost parameter is recalculated based on the aggregate bandwidth of the trunk For example Figure 43 shows a four port trunk T1 with two port members operating at 100 Mb s and two at 10 Mb s Trunk T1 provides an aggregate bandwidth of 220 Mb s The Path Cost for T1 is 4 Path Cost 1000 Un...

Page 142: ...n example The switch can also detect trunk member ports that are physically misconfigured For example in Figure 44 trunk member ports 2 4 and 6 of Switch S1 are configured correctly to trunk member ports 7 9 and 11 of Switch S2 The Spanning Tree Port Configuration screen for each switch shows the port state field for each port in the Forwarding state 9807EA T1 T2 100 Mb s 100 Mb s 10 Mb s 100 Mb s...

Page 143: ...If Switch S2 s trunk member port 11 is physically disconnected and then reconnected to port 13 the Spanning Tree Port Configuration screen for Switch S1 changes to show port 6 in the Blocking state Figure 45 T1 S1 Port Configuration screen 9808EA S2 Port Configuration screen S1 S2 Business Policy Switch 2 Business Policy Switch 2000 ...

Page 144: ... the individual trunk members the specific ports that make up the trunk logically connect and react as a single entity For example if you change spanning tree parameters for any trunk member the spanning tree parameters for all trunk members change S1 Port Configuration screen 9809EA S2 Port Configuration screen Blocking T1 S1 S2 Business Policy Switch 2000 Business Policy Switch 2 ...

Page 145: ... ports 13 14 15 and 16 are trunk members of trunk T1 the management station views trunk T1 as spanning tree port 13 For more information on configuring MultiLink Trunking VLANs and spanning tree groups refer to Chapter 1 for guidelines on configuring spanning tree groups For more information about using the MultiLink Trunking feature see Chapter 3 See also Appendixes for configuration flowcharts t...

Page 146: ...Figure 46 shows an example of a port based mirroring configuration where port 23 is designated as the monitor port for ports 24 and 25 of Switch S1 Although this example shows ports 24 and 25 monitored by the monitor port port 23 any of the trunk members of T1 and T2 can also be monitored In this example Figure 46 shows port X and port Y as members of Trunk T1 and Trunk T2 Port X and port Y are no...

Page 147: ...ll traffic received by port X Monitor all traffic transmitted by port X Monitor all traffic received and transmitted by port X Monitor all traffic received by port X or transmitted by port Y Monitor all traffic received by port X destined to port Y and then transmitted by port Y Monitor all traffic received transmitted by port X and transmitted received by port Y conversations between port X and p...

Page 148: ...Port Mirroring Configuration port based screen example Note The Unit value in the Unit Port field is not configurable when the switch is operating standalone For detailed information about the Port Mirroring screen fields see Chapter 3 Port Mirroring Configuration Monitoring Mode Port X or Port Y Monitor Unit Port 23 Unit Port X 25 Unit Port Y 24 Address A 00 00 00 00 00 00 Address B 00 00 00 00 0...

Page 149: ...d address B Figure 48 Address based mirroring configuration example In this configuration the designated monitor port port 23 can be set to monitor traffic in any of the following modes Monitor all traffic transmitted from address A to any address Monitor all traffic received by address A from any address Monitor all traffic received by or transmitted by address A Monitor all traffic transmitted b...

Page 150: ...ou press Enter in response to the Yes screen prompt The Monitoring Mode field Address A Address B indicates that all traffic transmitted by address A to address B will be monitored by the StackProbe attached to Monitor Port 23 Note The screen data displayed at the bottom of the screen changes to show the new currently active port mirroring configuration after you press Enter Note When you enter MA...

Page 151: ...nitor port the port is enabled for spanning tree participation When you create a port based port mirroring configuration be sure that the monitor port and both of the mirrored ports port X and port Y have the same configuration Use the VLAN Configuration screen to configure the VLAN see Chapter 3 Port Mirroring Configuration Monitoring Mode Address A Address B Monitor Unit Port 23 Unit Port X Unit...

Page 152: ...hange the VLAN configuration settings For port based monitoring of traffic use one of the following modes for monitoring broadcast IP Multicast or unknown DA frames Monitor all traffic received by port X Monitor all traffic transmitted by port X Monitor all traffic received and transmitted by port X For more information about using the Port Mirroring feature see Chapter 3 See also appendixes for c...

Page 153: ...yStack 450 software version 4 1 When you are using a local console to access the BPS 2000 software version 2 0 features with a Hybrid or mixed stack BPS 2000 and BayStack 450 and 410 switches in the same stack you must plug your local console into a BPS 2000 unit To find out which version of the BPS 2000 software is running use the console interface CI menus or the Web based management system CI m...

Page 154: ...sing the CI menus and screens You can access the CI menus and screens locally through a console terminal attached to your Business Policy Switch remotely through a dial up modem connection or in band through a Telnet session see Chapter 1 You can connect your console cable into any unit in a Business Policy Switch only stack Pure BPS 2000 Stack mode for a unified stack interface For the mixed stac...

Page 155: ... bits one stop bit and no parity as the communications format with flow control set to disabled Some CI screen options allow you to toggle among several possible values other options allow you to set or modify a parameter Using Telnet to access the CI menus and screens When you use Telnet to access the CI menus and screens set the terminal Preferences to VT100 Arrows and VT 100 ANSI and as shown i...

Page 156: ...between values in a form Use the spacebar to highlight the value Press Enter To clear a string field Position the cursor in the string field Press Ctrl K To return to the previous menu press Ctrl R To go to the next screen in a series press Ctrl N To return to the main menu at any time press Ctrl C Press Backspace to delete entered text Options that appear in brackets for example Enabled are user ...

Page 157: ... MAC Address Security Config EAPOL Security Configuration VLAN Configuration Port Configuration High Speed Flow Control Config MultiLink Trunk Config Port Mirroring Configuration Rate Limiting Configuration IGMP Config Display Port Statistics Clear All Port Statistics Stack Operational Mode Spanning Tree Group Configuration Spanning Tree Port Configuration Display Spanning Tree Switch Settings Dis...

Page 158: ...e switch options installed However the full menu options are shown in the screen examples and described in the following sections Business Policy Switch 2000 Main Menu IP Configuration Setup SNMP Configuration System Characteristics Switch Configuration Console Comm Port Configuration Identify Unit Numbers Renumber Stack Units Display Hardware Units Spanning Tree Configuration TELNET SNMP Web Acce...

Page 159: ...Table MAC Address Based Security EAPOL Security Configuration VLAN Configuration Port Configuration High Speed Flow Control MultiLink Trunk Configuration Port Mirroring Configuration Rate Limiting Configuration IGMP Configuration Display Port Statistics Clear All Port Statistics and Stack Operational Mode Console Comm Port Configuration Displays the Console Comm Port Configuration screen see Conso...

Page 160: ...ngs This option is followed by a screen prompt that precedes the action Enter Yes to reset the switch to the factory default configuration settings enter No to abort the option If the switch is participating in a stack configuration additional prompts allow you to choose to reset a specific unit in the stack or the entire stack When you select this option the switch resets runs a self test then di...

Page 161: ...brica premendo il tasto Invio Command Line Interface Allows a properly authorized user to initiate a CLI management session Refer to Reference for the Business Policy Switch 2000 Command Line Interface Release 2 0 for information on using the CLI Logout Allows a user in a Telnet session or a user working at a password protected console terminal to terminate the session Table 10 Console interface M...

Page 162: ... screen fields Note The read only fields in this screen are updated based on the BootP mode specified in the BootP Request Mode field See Choosing a BootP request mode on page 164 for more information IP Configuration Setup Unit 1 BootP Request Mode BootP When Needed Configurable In Use Last BootP In Band Stack IP Address 10 30 31 108 10 30 31 108 0 0 0 0 In Band Switch IP Address 10 30 31 106 0 0...

Page 163: ...n represents IP configuration obtained from the last BootP reply received In Band Stack IP Address The in band stack IP address field This field is not required for the operation of the standalone switch Default Value 0 0 0 0 no IP address assigned Range Four octet dotted decimal notation where each octet is represented as a decimal value between 0 and 255 separated by a decimal point In Band Swit...

Page 164: ...signed Range Four octet dotted decimal notation where each octet is represented as a decimal value between 0 and 255 separated by a decimal point Default Gateway The IP address of the default gateway Default Value 0 0 0 0 no IP address assigned Range Four octet dotted decimal notation where each octet is represented as a decimal value between 0 and 255 separated by a decimal point IP Address to Pi...

Page 165: ...ely If an IP address is currently in use these actions take effect only after the switch is reset or power cycled BootP Always Allows the switch to be managed only when configured with the IP address obtained from the BootP server When selected this mode operates as follows The switch continues to broadcast BootP requests regardless of whether an in band IP address is set from the console terminal...

Page 166: ... not reachable When selected this mode operates as follows When the IP data is entered from the console terminal the data becomes the in band address of the switch and BootP requests are not broadcast The switch can be managed using this in band IP address When the in band IP address is not set from the console terminal the switch broadcasts BootP requests until it receives a BootP reply containin...

Page 167: ...ss m from the main menu Figure 54 SNMP Configuration screen SNMP Configuration Read Only Community String public Read Write Community String private Trap 1 IP Address 0 0 0 0 Community String Trap 2 IP Address 0 0 0 0 Community String Trap 3 IP Address 0 0 0 0 Community String Trap 4 IP Address 0 0 0 0 Community String Authentication Trap Enabled AutoTopology Enabled Enter text press Return or Ent...

Page 168: ...the console terminal however no traps will be sent to that address until the row status is set to Valid Number one of four trap IP addresses Successive trap IP address fields are numbered 2 3 and 4 Each trap address has an associated community string see Community String Default Value 0 0 0 0 no IP address assigned Range Four octet dotted decimal notation where each octet is represented as a decim...

Page 169: ...ess s from the main menu Figure 55 System Characteristics screen System Characteristics Operation Mode Stack Unit 1 Size Of Stack 2 Base Unit 1 MAC Address 00 80 2C 8D 23 DF Reset Count 16 Last Reset Type Management Reset Power Status Primary Power Local MDA Type None sysDescr Business Policy Switch 2000 HW AB3 FW V1 2 SW v1 2 0 0 ISVN 2 sysObjectID 1 3 6 1 4 1 45 3 40 1 sysUpTime 0 days 0 11 3 sy...

Page 170: ...er of the switch that is currently operating as the base unit MAC Address The MAC address of the switch or when the switch is participating in a stack configuration the MAC address of the stack configuration Reset Count A read only field that indicates the number of resets since the operational firmware was first loaded on the switch Default Value 1 Range 0 to 232 1 4 294 967 295 Last Reset Type A...

Page 171: ...ny ASCII string of up to 56 printable characters sysName A name that uniquely identifies the switch Default Value Zero length string Range Any ASCII string of up to 56 printable characters sysLocation The physical location of the switch Default Value Zero length string Range Any ASCII string of up to 56 printable characters Although this field can be set to up to 255 characters from a Network Mana...

Page 172: ...ge 176 This screen allows you to set up the MAC address security feature and provides the following options MAC Address Security Configuration MAC Address Security Port Configuration MAC Address Security Port Lists and MAC Address Security Table This menu allows you to enable and disable security features on the port and trunk levels Switch Configuration Menu MAC Address Table MAC Address Security...

Page 173: ...on page 212 MultiLink Trunk Configuration Displays the MultiLink Trunk Configuration Menu see MultiLink Trunk Configuration Menu screen on page 215 This menu provides the following options MultiLink Trunk Configuration and MultiLink Trunk Utilization This menu allows you to create and modify trunks and to monitor the bandwidth utilization of configured trunks Port Mirroring Configuration Displays ...

Page 174: ...port statistics for all switch ports No to abort the option If the switch is participating in a stack configuration choose one of the following Clear all port statistics for a specific unit in the stack Clear all port statistics for the entire stack No to abort the option Stack Operational Mode Displays the stack operational mode screen which provides information about the types of switches in you...

Page 175: ...onds MAC Address Table Aging Time 300 seconds Find an Address 00 00 00 00 00 00 Select VLAN ID 1 Number of addresses 51 00 00 81 65 20 02 Unit 2 Port 24 00 00 81 C1 9B 81 Unit 2 Port 24 00 00 81 C1 F6 81 Unit 2 Port 24 00 03 4B 40 2B F4 Unit 2 Port 24 00 08 C7 02 C4 C0 Unit 2 Port 24 00 08 C7 20 CC AE Unit 2 Port 24 00 08 C7 90 2E E5 Unit 2 Port 24 00 20 AF 9E 9E FD Unit 2 Port 24 00 60 08 95 A6 F...

Page 176: ...re version 2 0 you can configure the BPS 2000 to drop all packets with specified MAC destination addresses DA You can enter up to 10 specific MAC DAs you want filtered The packet with the specified MAC DA will be dropped regardless of the ingress port source address SA intrusion or VLAN membership Find an Address Allows the user to search for a specific MAC address Default Value 00 00 00 00 00 00 ...

Page 177: ...enu Options Option Description MAC Address Security Configuration Displays the MAC Address Security Configuration screen see MAC Address Security Configuration Menu screen on page 176 This screen allows you to Enable or Disable the MAC Address Security feature MAC Address Security Port Configuration Displays the MAC Address Security Port Configuration screen see MAC Address Security Port Configura...

Page 178: ...ate port lists that can be used as an allowed source port list for a MAC address in the MAC Address Security Table screen MAC Address Security Table Displays the MAC Address Security Table screen see MAC Address Security Table screens on page 189 This screen allows you to specify the MAC addresses that are allowed to access the switch Table 16 MAC Address Security Configuration Menu Options contin...

Page 179: ... Address Security Configuration Menu to open the MAC Address Security Configuration screen Figure 59 MAC Address Security Configuration screen MAC Address Security Configuration MAC Address Security Disabled MAC Address Security SNMP Locked Disabled Partition Port on Intrusion Detected Disabled DA Filtering on Intrusion Detected Disabled Generate SNMP Trap on Intrusion Disabled MAC Security Table ...

Page 180: ...trusion even is detected see MAC Address Security field description the specified switch port is set to Disabled partitioned from other switch ports When the field is set to Disabled the port remains enabled even if an intrusion event is detected Enabled the port becomes disabled then automatically resets to enabled depending on the value set in the Partition Time field Forever the port becomes di...

Page 181: ... to be cleared using this field the specific port or ports will be cleared for each of the entries listed in the MAC Address Security Table If you totally clear the allowed Source Port s field leaving a blank field for an entry the associated MAC address for that entry is also cleared Default NONE Range NONE ALL a port number list for example 1 1 2 6 etc Learn by Ports All source MAC addresses of ...

Page 182: ...2 Chapter 3 Using the console interface 208700 C To open the MAC Address Security Port Configuration screen Choose MAC Address Security Port Configuration from the MAC Address Security Configuration Menu ...

Page 183: ...Disabled More Press Ctrl N to display choices for additional ports Use space bar to display choices press Return or Enter to select choice Press Ctrl R to return to previous menu Press Ctrl C to return to Main Menu MAC Security Port Configuration Port Trunk Security 15 Disabled 16 Disabled 17 Disabled 18 Disabled 19 Disabled 20 Disabled 21 Disabled 22 Disabled 23 Disabled 24 Disabled Switch Enable...

Page 184: ...s in the MAC Address Security Table screen You can create as many as 32 port lists using up to five MAC Address Security Port Lists screens see Figure 62 Table 18 MAC Security Port Configuration screen fields Field Description Port Displays a numbered port list Trunk Displays the trunk number if the port is a member of that trunk Default blank field Security This field value determines whether or ...

Page 185: ...nter unit port 1 NONE 1 ALL 2 3 4 7 9 press Return or Enter when done Press Ctrl R to return to previous menu Press Ctrl C to return to Main Menu MAC Address Security Port Lists Entry Port List S15 S16 S17 S18 S19 S20 S21 More Press Ctrl N to display next screen Press Ctrl P to display previous screen Enter unit port 1 NONE 1 ALL 2 3 4 7 9 press Return or Enter when done Press Ctrl R to return to ...

Page 186: ...eld indicates the port list number S1 to S32 that corresponds to the values you set in the Port List field Port List This field allows you to create a port list that you can use as an Allowed Source in the MAC Address Security Table screen Note NONE and ALL must be entered in uppercase characters as shown in the screen prompt MAC Address Security Port Lists Entry Port List S1 1 1 7 2 1 7 2 9 3 1 4...

Page 187: ...repetitive tasks You can use certain keystrokes as accelerator keys to help speed up repetitive tasks For example suppose you want to modify the Port List field in the MAC Address Security Port List screen Figure 63 on page 186 You can modify the port list in any of the following ways Add a new port to an existing port number list Remove a port from an existing port number list Copy an existing fi...

Page 188: ...isting port number list To remove a port from the port number list use the minus sign character instead of the plus sign character as described above Copying an existing field into and adjacent field You can use the period character to copy a previously entered field value into the field directly next to it For example to copy the Allowed Source S3 shown in Figure 63 on page 186 into the next fiel...

Page 189: ...Return or Enter when complete Press Ctrl R to return to previous menu Press Ctrl C to return to Main Menu MAC Address Security Table Find an Address 00 00 00 00 00 00 MAC Address Allowed Source MAC Address Allowed Source Screen 1 More Press Ctrl N to display next screen Enter MAC Address xx xx xx xx xx xx press Return or Enter when complete Press Ctrl R to return to previous menu Press Ctrl C to r...

Page 190: ...ot take effect until the Allowed Source field is set to some value a single unit port number or a port list value that you previously configured in the MAC Address Security Port Lists screen You can clear an existing MAC address field by entering zero 0 in the field and pressing Enter Default no address assigned Range A range of 6 Hex Octets separated by dashes multicast and broadcast addresses ar...

Page 191: ...g your RADIUS server refer to your RADIUS server documentation Allowed Source Allows you to specify the ports that each MAC address is allowed to access The options for the Allowed Source field include a single unit port number or a port list value that you have previously configured in the MAC Address Security Port Lists screen Default Blank field Range A single unit port or a port list value for...

Page 192: ...ll of the switch stack ports is set to Authorized no security restriction Default Disabled Range Disabled Enabled EAPOL Security Configuration EAPOL Administrative State Disabled Unit 1 Port 1 Initialize No Administrative Status Force Authorized Operational Status Authorized Administrative Traffic Control Incoming and Outgoing Operational Traffic Control Incoming and Outgoing Re authenticate Now N...

Page 193: ... if you want to apply modified field values to 23 of your switch s 24 ports it may be easier to apply the All value in the Port field and then reconfigure the single port back to its original values Default 1 Range 1 to 28 ALL Initialize Allows you to activate EAPOL authentication for the specified unit port Default No Range No Yes Administrative Status Allows you to set the EAPOL authorization st...

Page 194: ...n Period to expire Default No Range No Yes Re authentication Allows you to repeat EAPOL authentication for the specified unit port according to the time interval value configured in the Re Authentication Period field see next field description Default Enabled Range Enabled Disabled Re authentication Period When the Re Authentication field value see preceding field is set to enabled this field allo...

Page 195: ...efer to Predefined Protocol Identifier PID description on page 202 A port may not be a member of more than one protocol based VLAN with the same PID Untagged ports cannot belong to different VLANs of the same protocol type however tagged ports can Default 30 seconds Range 1 to 65535 seconds Server Timeout Allows you to specify how long the switch waits for the RADIUS server to respond to all EAP p...

Page 196: ...lity by allowing you to reassign devices to accommodate network moves additions and changes eliminating the need to change physical cabling To open the VLAN Configuration Menu Choose VLAN Configuration or press v from the Switch Configuration Menu screen Figure 67 VLAN Configuration Menu screen Note Refer to Chapters 1 and 2 for detailed information about configuring VLANs VLAN Configuration Menu ...

Page 197: ...ed with the specified packets When you configure ports as VLAN port members they become part of a set of ports that form a broadcast domain for a specific VLAN You can assign switch ports whether standalone or stacked unit ports as VLAN port members of one or more VLANs Table 22 VLAN Configuration Menu Screen options Option Description VLAN Configuration Displays the VLAN Configuration screen see ...

Page 198: ...ing rules Refer to Chapter 2 for a description of important terms used with 802 1Q VLANs You can also use this screen to create and to delete specific VLANs to assign VLAN names and to assign any VLAN as the management VLAN To open the VLAN Configuration screen Choose VLAN Configuration or press v from the VLAN Configuration Menu screen ...

Page 199: ... different VLANs except VLAN 1 Default 1 Range 2 to 4094 Delete VLAN Allows you to delete specified VLANs except the assigned management VLAN See Management VLAN field Enter the number of the VLAN you want to delete then press Return or use the space bar to toggle through the selection until you reach the VLAN you want to delete then press Return VLAN Configuration Create VLAN 1 VLAN Type Port Bas...

Page 200: ...ent VLAN Learning IVL each VLAN using a unique forwarding database To set this field the VLAN State field value must be Inactive IVL is a Business Policy Switch only feature The IVL option is enabled only in Pure BPS 2000 Stack mode The SVL option is enabled in the Hybrid Stack mode See Stack Operational Mode screen on page 238 Default SVL in a mixed stack or in a pure Business Policy Switch stack...

Page 201: ... associated with that VLAN are also deleted Default Inactive Range Inactive Active Port Membership Allows you to assign VLAN port memberships to standalone or stacked unit ports The ports can be configured in one or more VLANs To set this field you must set the VLAN State field to Active Certain restrictions apply for the BayStack 450 1GBIC 450 SR 450 1SX 450 1LR 450 1LX MDA sand BayStack 410 port...

Page 202: ...t Type 2 and Ethernet Snap frames Declat Ether2 Ethernet type 2 6004 DEC LAT protocol DecOther Ether2 Ethernet type 2 6000 6003 6005 6009 8038 Other DEC protocols Sna 802 2 Ethernet 802 2 04 04 IBM SNA on IEEE 802 2 frames Sna Ether2 Ethernet type 2 80D5 IBM SNA on Ethernet Type 2 frames NetBios 802 2 Ethernet type 2 F0 F0 NetBIOS protocol Xns Ether2 Ethernet type 2 0600 0807 Xerox XNS Vines Ether...

Page 203: ... ethertype for Ethernet type 2 frames The PID in Ethernet SNAP frames The DSAP or SSAP value in Ethernet 802 2 frames The following PIDs Table 25 are reserved and are not available for user defined PIDs Table 25 Reserved PIDs PID Value hex Comments 04 04 Sna 802 2 F0 F0 NetBIOS 802 2 AAAA SNAP 0 05DC Overlaps with 802 3 frame length 0600 0807 Xns Ether2 0BAD Vines Ether2 4242 IEEE 802 1D BPDUs 600...

Page 204: ...o select a MAC SA based VLAN Default The least valued active MAC SA based VLAN will be displayed Range 2 to 4094 must be a currently active MAC SA based VLAN Display Create MAC Address Allows you to enter a MAC address If the address is already present in the selected MAC SA based VLAN its state is displayed Otherwise that address will be activated in the MAC SA based VLAN MAC Address State Displa...

Page 205: ... switch ports with the appropriate PVID VLAN association that enables the creation of VLAN broadcast domains see Chapters 1 and 2 for more information about setting up VLAN broadcast domains You can configure specified switch ports to filter discard all received tagged frames untagged frames or unregistered frames see Chapters 1 and 2 Refer to the guidelines for configuring spanning tree groups in...

Page 206: ...rt type its port number and press Enter or press the spacebar to toggle the port numbers Filter Tagged Frames Allows you to set this port to filter discard all received tagged packets Default No Range No Yes Filter Untagged Frames Sets this port to filter discard all received untagged frames Default No Range No Yes VLAN Port Configuration Unit 1 Port 1 Filter Tagged Frames No Filter Untagged Frame...

Page 207: ...llows you to assign VLAN Port Membership tagging options to this port as follows Untagged Access Any VLAN that this port is a member of will not be 802 1Q tagged Tagged Trunk Any VLAN that this port is a member of will be 802 1Q tagged Restriction If this port is a BayStack 450 1GBC 450 1SR 450 1SX 450 1LR 450 1LX MDA or a BayStack 410 24T switch port that is a protocol based VLAN member you canno...

Page 208: ...igure 71 VLAN Display by Port screen Table 28 describes the VLAN Display by Port screen fields AutoPVID Automatically associates this PVID specific VLAN Default Disabled Range Enabled Disabled Table 27 VLAN Port Configuration screen fields continued Field Description VLAN Display by Port Unit 1 Port 1 PVID 1 Port Name Unit 1 Port 1 VLANs VLAN Name VLANs VLAN Name 1 VLAN 1 Use space bar to display ...

Page 209: ... the Switch Configuration Menu screen Table 28 VLAN Display by Port screen fields Field Description Unit Allows you to select a switch in your stack To view another switch type its switch number and press Enter or press the spacebar to toggle the switch numbers Port Allows you to select the number of the port you want to view To view another port type its port number and press Enter or press the s...

Page 210: ...play choices for additional ports Use space bar to display choices press Return or Enter to select choice Press Ctrl R to return to previous menu Press Ctrl C to return to Main Menu Port Configuration Unit 1 Port Trunk Status Link LnkTrap Autonegotiation Speed Duplex 1 Enabled Down On Enabled 15 Enabled Down On Enabled 16 Enabled Down On Enabled 17 Enabled Down On Enabled 18 Enabled Down On Enable...

Page 211: ...hat correspond to the switch ports specified in the Trunk Members fields of the Trunk Configuration screen see MultiLink Trunk Configuration Menu screen on page 215 Status Allows you to disable any of the switch ports You can also use this field to control access to any switch port Default Value Enabled Range Enabled Disabled Link A read only field that indicates the current link state of the corr...

Page 212: ...llows you to manually configure any port to support an Ethernet speed of 10 Mb s or 100 Mb s in half or full duplex mode This field is set by default to 1000 Mb s full duplex for gigabit ports only NOTE Use the High Speed Flow Control Configuration screen next to set autonegotiation for all gigabit ports Default Value 100Mbs Half when Autonegotiation is Disabled Range 10Mbs Half 10Mbs Full 100Mbs ...

Page 213: ...r to toggle the unit numbers the system only displays a screen for units that are configured with a Gigabit MDA Autonegotiation When enabled the port only advertises support for 1000 Mb s operation in full duplex mode NOTE This field is disabled for all fiber optic ports Autonegotiation cannot be disabled with the ports on the BPS2000 1GT and BPS2000 2GT Default Value Enabled Range Enabled Disable...

Page 214: ...es for a number of slot times specified in the control frame or until a pause release control frame is received Both devices on the link must support this mode when it is selected Flow Control Allows you to control traffic and avoid congestion on the Gigabit MDA port Two modes are available see Choosing a high speed flow control mode for details about the two modes The Flow Control field cannot be...

Page 215: ...unk Configuration Menu screen Figure 75 allows you to select the appropriate screen to configure up to six MultiLink Trunks you can group up to four switch ports together to form each trunk You can configure up to six MultiLink Trunks in each stack with trunk members in either a single unit or distributed between units within the stack configuration distributed trunking You can monitor the bandwid...

Page 216: ...tiLink Trunk Configuration Displays the MultiLink Trunk Configuration screen Figure 76 This screen allows you to configure up to six MultiLink Trunks within a standalone switch or within a stack configuration You can group up to four switch ports together to form each trunk MultiLink Trunk Utilization Displays the MultiLink Trunk Utilization screen Figure 77 and Figure 78 This screen allows you to...

Page 217: ... trunk you may need to reconfigure the specific trunk members switch ports to return to the previous switch configuration See Chapter 1 for more information To open the MultiLink Trunk Configuration screen Choose Trunk Configuration or press t from the MultiLink Trunk Configuration Menu screen Figure 76 MultiLink Trunk Configuration screen MultiLink Trunk Configuration Trunk Trunk Members Unit Por...

Page 218: ...t when enabled allows the specified trunk to participate in the spanning tree This setting overrides those of the individual trunk members Fast is the same as Normal except that the state transition timer is shortened to two seconds Default Value Normal Range Normal Fast Disabled Trunk Mode The Trunk Mode column contains a single read only field for each row that indicates the default operating mo...

Page 219: ...six Choose MultiLink Trunk Utilization or press u from the MultiLink Trunk Configuration Menu screen to open the MultiLink Trunk Utilization screen Figure 77 MultiLink Trunk Utilization screen 1 of 2 MultiLink Trunk Utilization Trunk Traffic Type Unit Port Last 5 Minutes Last 30 Minutes Last Hour 1 Rx and Tx 3 6 90 0 70 0 90 0 3 7 20 0 55 0 80 0 3 9 35 0 45 0 45 0 3 17 85 0 35 0 20 0 2 Rx and Tx 4...

Page 220: ...Port column name only appears when the switch unit is part of a stack configuration It indicates that the ports in this row are associated with the specified unit number configured in the Unit field Last 5 Minutes This read only field indicates the percentage of packets of the type specified in the Traffic Type field utilized by the port in the last 5 minutes This field provides a running average ...

Page 221: ...ing port for ports 5 and 6 of stack unit 4 When installed as a standalone switch the screen does not display the Unit field designation To open the Port Mirroring Configuration screen Choose Port Mirroring Configuration or press i from the Switch Configuration Menu screen Last 30 Minutes This read only field indicates the percentage of packets of the type specified in the Traffic Type field utiliz...

Page 222: ...es the Address A and Address B screen fields where a user can specify MAC addresses to monitor Default Value Disabled Range See Table 35 Monitor Unit Port Indicates the port number of the specified unit that is designated as the monitor port Default Value Zero length string Range 1 to 8 1 to 28 depending on model type Port Mirroring Configuration Monitoring Mode Port X or Port Y Monitor Unit Port ...

Page 223: ...ignation This port will be monitored according to the value of Port Y in the Monitoring Mode field see Table 35 Default Value Zero length string Range 1 to 8 1 to 28 depending on model type Address A Indicates the MAC addresses that will be monitored by the designated port monitor when one of the address based monitoring modes is selected This port will be monitored according to the value of Addre...

Page 224: ...d by Port Y Note Do not use this mode for broadcast or multicast traffic Port X and Port Y Monitor all traffic received transmitted by Port X and received transmitted by Port Y Note Do not use this mode for broadcast or multicast traffic Address based Disabled Default value for this feature Address A any Address Monitor all traffic transmitted from Address A to any address any Address Address A Mo...

Page 225: ...one 56 0 22 0 23 0 2 Multicast 9 30 0 27 0 55 0 3 Both None 25 0 24 0 67 0 4 Both 10 72 0 33 0 55 0 5 Broadcast 10 35 0 54 0 78 0 6 Multicast 10 96 0 45 0 87 0 7 Both 10 86 0 67 0 60 0 8 Both 5 58 0 44 0 70 0 9 Multicast None 11 0 87 0 65 0 10 Both None 27 0 89 0 44 0 11 Both None 15 0 66 0 66 0 12 Both None 12 0 98 0 99 0 13 Both None 44 0 33 0 89 0 14 Both None 34 0 45 0 76 0 More Press Ctrl N t...

Page 226: ...bes the Rate Limiting Configuration screen fields Rate Limiting Configuration Unit 1 Port Packet Type Limit Last 5 Minutes Last Hour Last 24 Hours 15 Both None 44 0 56 0 0 0 16 Both None 67 0 34 0 0 0 17 Multicast 10 65 0 48 0 45 0 18 Both None 77 0 74 0 60 0 19 Both 10 80 0 89 0 90 0 20 Both None 78 0 83 0 98 0 21 Broadcast None 98 0 88 0 44 0 22 Both None 34 0 93 0 0 0 23 Both None 65 0 82 0 56 ...

Page 227: ...This read only field indicates the percentage of packets of the type specified in the Packet Type field received by the port in the last 5 minutes This field provides a running average of network activity and is updated every 15 seconds Note that this field indicates the receiving port s view of network activity regardless of the rate limiting setting Last Hour This read only field indicates the p...

Page 228: ...een Figure 82 IGMP Configuration Menu screen Table 37 describes the IGMP Configuration Menu screen options IGMP Configuration Menu IGMP Configuration Display Multicast Group Membership Return to Switch Configuration Menu Use arrow keys to highlight option press Return or Enter to select option Press Ctrl R to return to previous menu Press Ctrl C to return to Main Menu ...

Page 229: ...ocal multicast router The configured ports are VLAN port members of VLAN 5 To open the IGMP Configuration screen Choose IGMP Configuration or press g from the Switch Configuration Menu screen Table 37 IGMP Configuration Menu screen options Option Description IGMP Configuration Displays the IGMP Configuration screen see IGMP Configuration screen on page 229 This screen allows you to set up IGMP VLA...

Page 230: ... Snooping Allows you to enable or disable IGMP Snooping This field affects all VLANs for example if you disable snooping on the VLAN specified in the screen s VLAN field ALL VLANs are disabled for snooping Default Value Enabled Range Enabled Disabled IGMP Configuration VLAN 1 Snooping Enabled Proxy Enabled Robust Value 2 Query Time 125 seconds Set Router Ports Version 1 Static Router Ports 1 6 7 1...

Page 231: ... Allows a user to control the number of IGMP messages allowed on the subnet by varying the Query Interval the Query Interval is the interval between general queries sent by the multicast router This field affects only the VLAN specified in the screen s VLAN field for example if you change the Query Time value field on the VLAN specified in the screen s VLAN field other VLANs are not affected Defau...

Page 232: ...n switch ports to any port that has a path to a multicast router When the unit is part of a stack configuration the screen displays the unit numbers of the switches configured in the stack along with the corresponding ports The configured ports do not filter any IP Multicast traffic The Static Router Ports fields are displayed in six port groups for example 1 6 7 12 13 18 The number of ports displ...

Page 233: ...igurations the maximum number of VLANs that can be displayed is 256 Multicast Group Address Displays all of the IP Multicast group addresses that are currently active on the associated port Port Displays the port numbers that are associated with the IP Multicast group addresses displayed in the IP Multicast group address field Multicast Group Membership VLAN 1 Multicast Group Address Port 277 37 3...

Page 234: ...compare and evaluate throughput or other port parameters All screen data is updated approximately every 2 seconds You can use the Port Statistics screen to clear reset to zero port counters for a specific switch or port Alternatively you can use the Clear All Port Statistics option to clear port counters for all switches or ports see Switch Configuration Menu screen on page 171 To open the Port St...

Page 235: ...s 0 Broadcasts 0 Broadcasts 0 Total Octets 0 Total Octets 0 Lost Packets 0 Packets 64 bytes 0 Packets 64 bytes 0 65 127 bytes 0 65 127 bytes 0 128 255 bytes 0 128 255 bytes 0 256 511 bytes 0 256 511 bytes 0 512 1023 bytes 0 512 1023 bytes 0 1024 1518 bytes 0 1024 1518 bytes 0 FCS Errors 0 Collisions 0 Undersized Packets 0 Single Collisions 0 Oversized Packets 0 Multiple Collisions 0 Filtered Packe...

Page 236: ...lticast packets transmitted successfully on this port excluding broadcast packets Broadcasts Received column Indicates the total number of good broadcast packets received on this port Transmitted column Indicates the total number of broadcast packets transmitted successfully on this port Total Octets Received column Indicates the total number of octets of data including data in bad packets receive...

Page 237: ... bytes and with proper CRC and framing also known as short frames or runts Oversized Packets Indicates the total number of packets received on this port with more than 1518 bytes and with proper CRC and framing also known as oversized frames Filtered Packets Indicates the number of packets filtered not forwarded by this port Flooded Packets Indicates the total number of packets flooded forwarded t...

Page 238: ...e frames cause the transmitting port to temporarily suspend the transmission of packets when the receiving port s frame buffer is full Gigabit ports only Received column Indicates the total number of pause frames received on this port Pause frames cause the transmitting port to temporarily suspend the transmission of packets when the receiving port s frame buffer is full Gigabit ports only Table 4...

Page 239: ...rrent Stack Operational Mode A read only field that indicates the current mode of your stack This field identifies a stack that contains only Business Policy Switches or a stack that contains a variety of switches Default Pure BPS 2000 Stack Range Hybrid Stack Pure BPS 2000 Stack Next Stack Operational Mode Allows you to set the configuration modes of your stack Press the spacebar to toggle betwee...

Page 240: ... Baud Caution If you choose a baud rate that does not match your console terminal baud rate you will lose communication with the configuration interface when you press Enter If communication is lost set your console terminal to match the new service port setting Console Comm Port Configuration Comm Port Data Bits 8 Data Bits Comm Port Parity No Parity Comm Port Stop Bits 1 Stop Bit Console Port Sp...

Page 241: ... de la consola al pulsar Intro Si se pierde la comunicación ajuste el terminal de la consola para que coincida con el nuevo valor del puerto de servicio Attenzione Nel caso in cui si scelga una velocità di trasmissione non corrispondente a quella del terminale della console la comunicazione con l interfaccia della console cadrà premendo il tasto Invio Se la comunicazione cade impostare il terminal...

Page 242: ...ce CI of any participating switch in a stack configuration through a Telnet session If you set this field to Required you can use the Logout option to restrict access to the CI of any stack unit Thereafter you will need to specify the correct password at the console terminal prompt when accessing the stack See Console Read Only Stack Password and Console Read Write Stack Password for more informat...

Page 243: ...les mots de passe par défaut du système assurez vous de bien noter vos nouveaux mots de passe et de les conserver dans un endroit sûr Si vous perdez vos nouveaux mots de passe vous ne pourrez plus accéder à votre interface Le cas échéant veuillez contacter Nortel Networks Precaución Si modifica las contraseñas predeterminadas asignadas por el sistema asegúrese de anotar las nuevas contraseñas y gu...

Page 244: ...the system supplied default passwords be sure to write the new passwords down and keep them in a safe place If you forget the new passwords you cannot access the console interface In that case contact Nortel Networks for help Achtung Wenn Sie die für das System standardmäßig eingestellten Paßwörter ändern notieren Sie sich die neuen Paßwörter und bewahren Sie sie an einem sicheren Ort auf Falls Si...

Page 245: ...imary RADIUS server Default 0 0 0 0 no IP address assigned Range Four octet dotted decimal notation where each octet is represented as a decimal value separated by a decimal point Secondary RADIUS Server The IP address of the Secondary RADIUS server Default 0 0 0 0 no IP address assigned Range Four octet dotted decimal notation where each octet is represented as a decimal value separated by a deci...

Page 246: ... and screen appears only when the switch is participating in a stack configuration Renumber Stack Units Current Unit Number MAC Address New Unit Number 1 00 60 fd 77 a6 0c 1 2 00 60 fd 77 a5 f0 2 3 00 60 fd 77 a4 4c 3 4 00 60 fd 77 ab 84 4 Renumbering stack units will cause an automatic Reset to Current Settings to occur across the entire stack The current configuration will be adapted to the new ...

Page 247: ...s can also include unit numbers of units that are no longer participating in the stack not currently active MAC Address Read only field listing the MAC address of the corresponding unit listed in the Current Unit Number field New Unit Number User settable field showing the current unit number of each unit in the stack You can change any of the fields as required You can also delete entries by typi...

Page 248: ...ee Configuration or press p from the main menu Note Before configuring spanning tree groups refer to Chapters 1 and 2 for guidelines and interactions with VLANs and MLT Note You must use either the Command Line Interface CLI or Device Manager DM if you want to configure individual port values for path cost and priority Hardware Unit Information Switch Model MDA Model Cascade MDA Software Version U...

Page 249: ...en see Spanning Tree Port Configuration screen on page 253 Display Spanning Tree Switch Settings Allows you to display the Spanning Tree Switch Settings screen see Spanning Tree Switch Settings screen on page 256 Display Spanning Tree VLAN Membership Allows you to display the Spanning Tree VLAN Membership screen see Spanning Tree VLAN Membership screen on page 256 Spanning Tree Configuration Menu ...

Page 250: ...ning with software version 2 0 you can configure the VLAN for tagged BPDUs To open the Spanning Tree Group Configuration screen Choose Spanning Tree Group Configuration or press g from the Spanning Tree Configuration Menu screen Figure 91 shows the Spanning Tree Group Configuration screen Note Because multiple STGs are available only in Pure BPS 2000 Stack mode the first and fourth menu items do n...

Page 251: ...Group Allows you to delete a spanning tree group Default Value Blank Range 1 to 8 only created STP Groups are available Spanning Tree Group Configuration Create STP Group 1 Delete STP Group Bridge Priority 8000 Bridge Hello Time 2 seconds Bridge Max Age Time 20 seconds Bridge Forward Delay Time 15 seconds Add VLAN Membership 1 Delete VLAN Membership Tagged BPDU on tagged port No VID used for tagge...

Page 252: ...idges participating in the spanning tree network See also Hello Time Default Value 2 seconds Range 1 to 10 seconds Bridge Max Age Time For the STP Group specifies the maximum age in seconds that a Hello message can attain before it is discarded This parameter specified by management for this bridge takes effect only when the bridge becomes the root bridge Note that if this bridge becomes the root ...

Page 253: ...cannot remove VLAN 1 from STP Group 1 Tagged BPDU on tagged port Allows you to choose to send either tagged or untagged BPDUs from a tagged port Default Value STP Group 1 No Other STP Groups Yes Range No or Yes VID used for tagged BPDU Allows you to select the VLAN ID VID for tagged BPDU for the specified spanning tree group Default Value 4001 4008 for STGs 1 8 respectively Range 1 4094 STP Group ...

Page 254: ... members of that trunk is changed similarly Spanning Tree Port Configuration STP Group 1 Unit 1 Port Trunk Participation Priority Path Cost State 1 Normal Learning 128 10 Forwarding 2 Normal Learning 128 10 Forwarding 3 Normal Learning 128 10 Forwarding 4 Normal Learning 128 10 Forwarding 5 Normal Learning 128 10 Forwarding 6 Normal Learning 128 10 Forwarding 7 Normal Learning 128 10 Forwarding 8 ...

Page 255: ...w 2 apply to switch port 2 Note that the values in the Switch row affect all switch ports and when the switch is part of a stack the values in the Stack row affect all ports in the entire stack Trunk The read only data displayed in this column indicates the trunks that correspond to the switch ports specified in the Trunk Members fields of the Trunk Configuration screen see MultiLink Trunk Configu...

Page 256: ... Priority Range 1 to 65535 State This read only field indicates the current port state within the spanning tree network Each port can transition to various states as determined by the Participation field setting For example when the Participation field is set to disabled the port does not participate in spanning tree and transitions to the Forwarding state the default When the Participation field ...

Page 257: ...xed stack mode Spanning Tree Switch Settings STP Group 1 Bridge Priority 8000 Designated Root 8000000342F6DE21 Root Port Unit 2 Port 2 Root Path Cost 30 Hello Time 2 seconds Maximum Age Time 20 seconds Forward Delay 15 seconds Bridge Hello Time 2 seconds Bridge Maximum Age Time 20 seconds Bridge Forward Delay 15 seconds Use space bar to display choices press Return or Enter to select choice Press ...

Page 258: ...Spanning tree uses this parameter to determine the root bridge or designated bridge For example the bridge with the lowest bridge ID becomes the root bridge with Bridge Priority values compared first followed by the hardware addresses Designated Root For STP Group indicates the bridge ID of the root bridge as determined by spanning tree Root Port For STP Group indicates the switch port number that...

Page 259: ...t for this bridge This parameter takes effect only when this bridge becomes the root bridge Note that although you can set the Hello Interval for a bridge using bridge management software once the spanning tree computation process is complete all bridges participating in the spanning tree network use the root bridge s Hello Interval parameter value If any bridge becomes the root bridge its Hello I...

Page 260: ...nu screen The Forward Delay parameter value specifies the amount of time that the bridge ports remain in the Listening and Learning states before entering the Forwarding state Note that all bridges participating in the spanning tree network use the root bridge s Forward Delay parameter value See also Forward Delay Note Because multiple STGs are available only in Pure BPS 2000 Stack mode the Spanni...

Page 261: ...TG you want to view To view another STG type that STG ID number and press Enter or press the spacebar on your keyboard to to toggle the STP Group numbers Default Value 1 Range 1 to 8 only created STP Groups display VLAN Membership Displays the total number of VLANs in the specified STP Group as well as the VLAN IDs of the VLAN members Spanning Tree VLAN Membership STP Group 1 Total VLAN Membership...

Page 262: ...LNET SNMP Web Access Configuration screen TELNET SNMP WEB Access Configuration TELNET Access Use List Login Timeout 1 minute TELNET Enabled No Login Retries 3 SNMP Enabled No Inactivity Timeout 15 minutes WEB Enabled No Event Logging All Allowed Source IP Address Allowed Source Mask 1 0 0 0 0 0 0 0 0 2 255 255 255 255 255 255 255 255 3 255 255 255 255 255 255 255 255 4 255 255 255 255 255 255 255 ...

Page 263: ... be inactive before it is terminated Default Value 15 minutes Range 0 to 60 minutes 0 indicates no timeout Event Logging Specifies the types of events that will be displayed in the Event Log screen see System Log screen on page 282 Default Value All Range All None Accesses Failures Description All Logs the following Telnet events to the Event Log screen TELNET connect Indicates the IP address and ...

Page 264: ... addresses that are allowed Telnet access to the management systems Default Value 0 0 0 0 no IP address assigned Range Four octet dotted decimal notation where each octet is represented as a decimal value separated by a decimal point Allowed Source Mask Specifies up to 10 user assigned allowed source address masks The remote IP address is masked with the Allowed Source Mask and if the resulting va...

Page 265: ...ie die Stromzufuhr zum Gerät nicht während die Software heruntergeladen wird Bei Unterbrechung der Stromzufuhr kann das Firmware Image beschädigt werden Attention Ne pas couper l alimentation de l appareil pendant le chargement du logiciel En cas d interruption le programme résident peut être endommagé Precaución No interrumpa la alimentación del dispositivo durante el proceso de descarga del soft...

Page 266: ...on covers the following topics Using the Software Download screen next LED Indications during the download process on page 269 Upgrading software in a Pure BPS 2000 stack on page 269 Upgrading software in a Hybrid stack on page 270 Using the Software Download screen To open the Software Download screen Choose Software Download or press f from the main menu The Software Download screen appears Figu...

Page 267: ... Filename TFTP Server IP Address 0 0 0 0 Start TFTP Load of New Image No Enter text press Return or Enter when complete Press Ctrl R to return to previous menu Press Ctrl C to return to Main Menu Software Download BPS 2000 Image Filename BPS 2000 Diagnostics Filename 450 Image Filename TFTP Server IP Address 10 170 119 5 Start TFTP Load of New Image No Enter text press Return or Enter when complet...

Page 268: ...ng of up to 30 printable characters TFTP Server IP Address The IP address of your TFTP load host Default Value 0 0 0 0 no IP address assigned Range Four octet dotted decimal notation where each octet is represented as a decimal value separated by a decimal point Start TFTP Load of New Image Specifies whether to start the download of the switch software image default is No Use the spacebar to toggl...

Page 269: ...ndications Upgrading software in a Pure BPS 2000 stack To download or upgrade software in a Pure BPS 2000 stack 1 Choose Software Download or press f from the main menu The Software Download screen appears Figure 96 Note If your station cannot ping the TFTP server during the downloading process you may receive the following message Image is Invalid Actually the problem is that the TFTP server is n...

Page 270: ...s Filename field enter the name of the BPS 2000 diags file 9 In the TFTP Server IP Address enter the IP address of your TFTP load host 10 Use the space bar to toggle to BPS 2000 Diagnostics in the Start TFTP Load of New Image field 11 Press Enter The system resets and opens to the BPS2000 banner 12 Press Ctrl Y to access the main menu However if you are currently using software version 1 0 1 0 1 o...

Page 271: ...450 versions 4 0 and 4 1 BPS 2000 versions 1 1 1 1 1 1 2 and 2 0 This section describe the steps for the following software upgrades Upgrading software when ISVN is 2 next Upgrading software when ISVN is 1 on page 272 Upgrading software when ISVN is 2 To upgrade a Hybrid stack to BPS 2000 software version 2 0 when the ISVN numbers of the units are 2 1 Choose Software Download or press f from the m...

Page 272: ...0 1 or 1 1 you must upgrade to software version 1 1 1 before upgrading to version 2 0 Upgrading software when ISVN is 1 To upgrade a Hybrid stack to BPS 2000 software version 2 0 when the ISVN numbers of the units are 1 1 Choose Software Download or press f from the main menu The Software Download screen appears Figure 97 2 In the BPS 2000 Image Filename field enter the name of the BPS 2000 image ...

Page 273: ...Enter The system resets and opens to the BPS2000 banner 13 Press Ctrl Y to access the main menu 14 Choose Software Download or press f from the main menu The Software Download screen appears Figure 97 15 In the BPS 2000 Diagnostics Filename field enter the name of the BPS 2000 diags file 16 In the TFTP Server IP Address enter the IP address of your TFTP load host 17 Use the space bar to toggle to ...

Page 274: ...rs of a standalone switch or an entire stack and use the retrieved parameters to automatically configure a replacement switch or stack You must set up the file on your TFTP server and set the filename read write permission to enabled before you can save the configuration parameters To open the Configuration File Menu screen Choose Configuration File Menu from the main menu Figure 98 Configuration ...

Page 275: ...ments on page 278 Although most configuration parameters are saved to the configuration file certain parameters are not saved see Table 53 on page 279 Choose Configuration File Download Upload from the Configuration File Menu to open the Configuration File Download Upload screen Table 51 Configuration File Menu screen options Option Description Configuration File Download Upload Displays the Confi...

Page 276: ... File Download Upload screen fields Configuration File Download Upload Configuration Image Filename TFTP Server IP Address 132 245 164 4 Copy Configuration Image to Server No Retrieve Configuration Image from Server No Enter text press Return or Enter when complete Press Ctrl R to return to previous menu Press Ctrl C to return to Main Menu ...

Page 277: ...signed Range Four octet dotted decimal notation where each octet is represented as a decimal value separated by a decimal point Copy Configuration Image to Server Specifies whether to copy the presently configured switch stack parameters to the specified TFTP server default is No Use the spacebar to toggle the selection to Yes Press Enter to initiate the process Default Value No Range Yes No Retri...

Page 278: ...mware revision and model type as the donor standalone switch A configuration file obtained from a stack unit can only be used to configure other stacks that have the same number of switches firmware version model types and physical IDs as the stack the donor stack unit resides in Reconfigured stacks are configured according to the unit order number of the donor unit For example the configuration f...

Page 279: ...ation File Download from the Configuration File Menu to open the ASCII Configuration File Download screen Table 53 Parameters not saved to the Configuration File These parameters are not saved Used in this screen See page In Band Stack IP Address IP Configuration Setup 162 In Band Switch IP Address In Band Subnet Mask Default Gateway Console Read Only Switch Password Console Comm Port Configuratio...

Page 280: ...CII Configuration File Download ASCII Configuration Filename TFTP Server IP Address 132 245 164 4 Retrieve Configuration File from Server No Last Manual Configuration Status Passed Last Auto Configuration Status Passed Auto Configuration on Reset Disabled Enter text press Return or Enter when complete Press Ctrl R to return to previous menu Press Ctrl C to return to Main Menu ...

Page 281: ...f you choose Yes the download process begins immediately and when completed causes the switch stack to be configured according to the CLI commands in the file Use the spacebar to toggle the selection to Yes Press Enter to initiate the process Default Value No Range Yes No Last Manual Configuration Status The system displays if the last manual configuration passed or failed Default Value Passed Ran...

Page 282: ... you are connected to through the Console Comm port System Log messages operate as follows NVRAM messages are retrievable after a system reset DRAM messages can be viewed while the system is operational All NVRAM and DRAM messages are time stamped When you restart your system after a reset the DRAM messages are deleted After a reset all messages stored in NVRAM are copied to DRAM DRAM messages are...

Page 283: ...ration complete Yes Clear Messages From None Idx Time Stamp Type Message 1 0D 0H 1M 53S I Warm Start Trap 2 0D 0H 1M 58S I Link Up Trap 3 0D 0H 1M 58S I Link Up Trap 4 0D 0H 1M 58S I Link Up Trap 5 0D 0H 1M 58S I Link Up Trap Type I Info S Serious C Critical Time zero means messages from last reset Press Ctrl P to see previous display Press Ctrl N to see more messages Press Ctrl R to return to pre...

Page 284: ...NVRAM Volatile DRAM or Volatile Non Volatile Use the spacebar to toggle between the options Default Non Volatile Range Non Volatile Volatile Volatile Non Volatile Display configuration complete This field allows you to determine whether the configuration information received from NVRAM DRAM depending on what is selected in the Display Messages From field is complete Use the spacebar to toggle betw...

Page 285: ...e for the Business Policy Switch 2000 Management Software Version 2 0 for detailed information In addition to these management systems policies can be configured using SNMP and Common Open Policy Services COPS The complexities of QoS are discussed in the remainder of this chapter which includes information about the following topics Summary on page 286 Differentiated Services DiffServ overview on ...

Page 286: ...ue Nortel Networks uses Differentiated Services DiffServ to provide QoS functionality A DiffServ architecture enables service discrimination of traffic flows or microflows by offering network resources to higher classes at the expense of lower classes of service This architecture allows you to prioritize microflows or aggregate flows and provides Quality of Service QoS that is scalable Briefly wit...

Page 287: ...ues Ingress port number For EtherType IP DSCP value IP protocol type such as TCP UDP TCP UDP source port range TCP UDP destination port range Summary of actions The BPS 2000 filters collectively direct the system to initiate the following actions on a packet depending on your configuration Pass or Drop Re mark the packet when Pass is selected Re mark a new DiffServ Codepoint DSCP Re mark the 802 1...

Page 288: ...called the DS codepoint DSCP are used in the DiffServ architecture The DSCP marking dictates the forwarding treatment given to the packet at each hop This marking occurs at the edge of the DiffServ domain and is based on the policy or filter for the particular microflow or an aggregate flow Within the DiffServ network the marked packets are placed in a queue according to their marking which in tur...

Page 289: ... PHB based on that classification Within the IP packet the 6 bits in the DSCP are marked to identify how the packet should be treated at each subsequent network node This mapping of DS codepoints to per hop behavior PHB is configurable and the DSCP may be re marked as it passes through a DiffServ network Re marking the DSCP allows for the treatment of packets to be reset based on new network speci...

Page 290: ...is used at the network boundary to request a better effort treatment for packets that are in profile packets that do not break the service agreements between the user and the service provider Table 56 describes the service classes and the required treatment Table 56 Service classes Traffic category Service class Application type Required treatment Critical network control Critical Critical network...

Page 291: ...on with no interaction such as Web site streaming video High priority scheduling providing guaranteed minimum provisioned bandwidth Competes for additional bandwidth Non real time mission critical interactive Silver Transaction processing such as Telnet Web browsing Medium priority scheduling providing guaranteed minimum provisioned bandwidth Competes for additional bandwidth Non real time mission...

Page 292: ...group action metering and shaping criteria through a policy There are two levels of precedence that both work from the lowest order to the highest order of filters in a filter group order of policies Layer 2 filters There are 14 available layer 2 filters in the BPS 2000 The layer 2 filters are used to classify traffic based on the following criteria Layer 2 information including VLAN ID IEEE 802 1...

Page 293: ...trusted port then the associated action must change the DSCP if matching IP traffic IEEE 802 1p and drop precedence of all matching traffic If a layer 2 filter is installed on an unrestricted port you can specify an action to change or ignore either the DSCP if matching IP traffic IEEE 802 1p and drop precedence of the matching traffic Refer to Table 57 and Table 58 for more information on layer 2...

Page 294: ...02 1p priority and drop precedence of traffic belonging to VLAN 100 received on untrusted ports that are associated with a specific role combination or interface group you would need the following two filters A layer 2 filter that changes the DSCP IEEE 802 1p priority and drop precedence of IP traffic in VLAN 100 A layer 2 filter that changes IEEE 802 1p priority and drop precedence of all types o...

Page 295: ... only one interface group a port will be classified as trusted untrusted or unrestricted These types are also referred to as interface classes So you have three classes of interface groups Trusted untrusted and unrestricted By default all ports are untrusted Table 57 shows the configurations available to the user for each class of interface for IP traffic including layer 2 traffic matching IP and ...

Page 296: ...rking of QoS fields by class of interface IP only Type of filter Action Trusted Untrusted Unrestricted IP filter or Layer 2 filter matching IP DSCP Does not change Tagged Updates to 0 Standard Untagged Updates using mapping table and port s default value Does not change IEEE 802 1p Internally updates Tagged Updates to 0 Untagged Updates to port s default value Does not change Drop precedence Inter...

Page 297: ...rts For non IP traffic the filters must specify an action to update the IEEE 802 1p priority and drop precedence but not update the DSCP If an IP packet is received from an untrusted port and it does not match any one of the filters installed by the user on the port the BPS 2000 uses default layer 2 filters to change the packet DSCP IEEE 802 1p priority and drop precedence as follows If the packet...

Page 298: ...sing the Web based management interface See Using Web based Management for the Business Policy Switch 2000 Software Version 2 0 Table 59 Default mapping of DSCP to QoS class and IEEE 802 1p Incoming or re marked DSCP hex values QoS class Number of queues Outgoing IEEE 802 1p user priority 2 4 8 CS7 0x38 Critical 1 1 1 7 CS6 0x30 Network 1 EF 0x2E CS5 0x28 Premium 2 6 AF41 0x22 AF42 0x24 AF43 0x26 ...

Page 299: ...en queues are serviced in a WRR fashion There are 3 sets of external ports that correspond to the queue sets The first set of external ports contains 24 10 100 Mb s ports and the ports on the BPS2000 4TX MDA BSP2000 4FX MDA and BPS2000 2FX MDA these interfaces are associated with queue set 1 Each port in this set has a set of 4 queues The first queue holds the highest priority and is serviced in a...

Page 300: ...hen you move a port to another interface group role combination the filters associated with the previous interface group are removed and the filters associated with the new interface group are installed on the port When the power is turned on ports are assigned to the default interface group role combination which is named allBPSIfcs When you a filter you must create or specify an interface group ...

Page 301: ...tted Rate for a brief period After you set the Maximum Burst Rate the system helps you choose the Duration for this burst Combined these parameters define the In Profile traffic An example of traffic policing is limiting traffic entering a port to a specified bandwidth such as 25 Kb s Committed Rate Instead of dropping all traffic that exceeds this threshold you can configure a Maximum Burst Rate ...

Page 302: ...ckets may be dropped if buffers are completely used Traffic flows can be metered and shaped or only shaped or only metered Shaped packets will lose the loss sensitivity property Shaping is accomplished using QoS Policies refer to Policy overview next for more information on Policies Shaping is applied to a traffic flow by configuring a Policy to reference that particular Shaper When you delete a P...

Page 303: ...on rate such as 64 Kbps Shaping Rate Instead of dropping all traffic that exceeds this threshold you can configure a Shaping Burst Size that allows the switch to exceed the designated Shaping Rate for a brief period without delaying the traffic Traffic that exceeds the threshold Shaping Rate for longer periods is delayed This combination of actions shapes the traffic to conform to the designated m...

Page 304: ...rotocol and performs a controlling action on the traffic when certain user defined characteristics are matched A policy action is the effect a policy has on network traffic that matches the traffic profile of the policy The policies tie together Actions Meters Shapers Filter groups Interface groups Table 60 Shaping possibilities by class of interface Action Trusted Untrusted Unrestricted Shaping T...

Page 305: ...quires some thought to configure the prioritizations You can specify a number of policies and each policy can match one or many flows supporting complex classification scenarios This section contains a very simplified introduction to the many ways to prioritize packets using QoS In simple terms the methods of prioritizing packets depend on the DSCP and the 802 1 priority level and drop precedence ...

Page 306: ...so specify within a specified range the number of packets that can be held prior to transmission until the necessary bandwidth is available at egress Some packets may be dropped if buffers are completely used If you choose not to shape the flow you do not configure shapers Actions determine how the traffic is treated The overall total of all the interacting QoS factors on a group of packets is a p...

Page 307: ...border routers These edge devices police traffic flows by marking packets and applying forwarding behaviors to the packets at the network node Information is transferred using the Common Open Policy Services COPS protocol a query and response protocol that exchanges policy information messages using the Transmission Control Protocol TCP COPS ensures redundancy for devices to contact an alternate p...

Page 308: ...308 Chapter 4 Policy enabled networks 208700 C ...

Page 309: ...00 Command Line Interface Software Version 2 0 and Reference for the Business Policy Switch 2000 Command Line Interface Software Version 2 0 You can configure QoS using the embedded Web based QoS Wizard in the The QoS Wizard allows you to configure simplified policies and common filters to control the behavior of network traffic in your standalone or stack switch configuration In addition you can ...

Page 310: ...anagement interface directory and page navigation information and field descriptions This chapter provides a sample configuration using the Web based management interface QoS QoS Advanced Web pages You must define filters before you define filter groups and you must define actions before you define the meters The policy must be defined last after the other parameters are configured This chapter co...

Page 311: ...d menu option expands to display Devices Rules Actions Meters Shapers Policies Agent 2 Click Devices The Devices menu option expands Figure 103 to display Interface Config Priority Q Assign Priority Mapping DSCP Q Assign DSCP Mapping Note You cannot modify many configured items including interfaces interface groups filters filter groups actions meters and shapers You must first delete the current ...

Page 312: ...312 Chapter 5 Sample QoS configuration 208700 C Figure 103 Web based management menu page 3 Click Interface Config The Interface Configuration page opens Figure 104 ...

Page 313: ...ows you to define groups of interfaces You can view your interface configurations in the read only Interface Queue Table and the Interface Group Table 4 Use the Interface Group Creation section to create a new Role Combination In the Role Combination field enter Webbrowsing Remember this is an example You can enter any string in this field Note Do not use spaces in the naming field ...

Page 314: ...dify icon of the new role combination to assign interfaces The Interface Group Assignment page opens Figure 105 Figure 105 Interface Group Assignment page The Interface Group Assignment page displays the name of the interface group role combination the capabilities and the interface class or type of interface in the group Note Nortel Networks recommends that you use the default configurations By c...

Page 315: ...n these parameters refer to Chapter 4 Filters are combined into filter groups Filter groups are then associated with an interface group You configure filter specifications The QoS Advanced Rules IP Classification page or the QoS Advanced Rules Layer 2 Classification page allows you to enter matching conditions for an individual filter You set up special conditions for packet processing In order fo...

Page 316: ...P has a specific value that determines how the packet is treated as it travels through the network As each packet is examined it will be forwarded or dropped depending on whether or not the filter criteria is matched You use the IP Filter Creation section of the Rules IP Classification page when defining your IP filters To define an IP filter 1 Click the Application QoS QoS Advanced Rules IP Class...

Page 317: ...7 Using the Business Policy Switch 2000 Version 2 0 Figure 106 IP Classification page 1 of 2 Figure 107 IP Classification page 2 0f 2 2 In the Destination Address box click Network Address a In the Network Address field enter 134 177 69 0 ...

Page 318: ...you choose Ignore the DSCP value in the packet is ignored 5 In the Protocol field choose TCP from the list When you select TCP you specify that only TCP packets be matched If you select Ignore all IP protocols are matched 6 In the Destination Layer 4 Port field click Ignore 7 In the Source Layer 4 Port field click Ignore 8 Click Submit The new entry appears in the IP Filter Table Creating an IP Fi...

Page 319: ...ification label distinguishes this filter group from other filter groups 3 Click the Group check box in the Filter Group Table to include the entry in the filter group 4 Enter the Order number 1 This step establishes the evaluation order of filters in the group 5 Click Submit The new entry is displayed on the IP Group Modification page Figure 109 Note Do not leave spaces in your naming entry ...

Page 320: ...ation 208700 C Figure 109 IP Group Modification page The system returns you to IP Classification page The new filter appears in the IP Filter Table and the new filter group appears in the IP Filter Group Table Figure 110 and Figure 111 ...

Page 321: ...Chapter 5 Sample QoS configuration 321 Using the Business Policy Switch 2000 Version 2 0 Figure 110 IP Classification page 1 of 2 Figure 111 IP Classification page 2 0f 2 ...

Page 322: ...s Layer 2 filter groups are defined by specifying the layer 2 filter to be included in the given filter group To configure a layer 2 filter 1 Click the Application QoS QoS Advanced Rules Layer 2 Classification menu option The Layer2 Classification page opens Figure 112 and Figure 113 Note Beginning with software version 2 0 you can reference up to 32 VLANs with a single layer 2 filter ...

Page 323: ...tion page 1 of 2 Figure 113 Layer 2 Classification page 2 of 2 2 In the VLAN field click VLAN and choose VLAN 1 This filter matches packets in VLAN 1 3 In the VLAN Tag field choose Tagged Only packets that have an IEEE 802 1p tag match this layer 2 filter 4 In the EtherType field click Ignore All EtherTypes are ignored ...

Page 324: ... Any values that are in the DSCP field are ignored 7 In the Protocol field select Ignore All IP protocols are matched against the packet s IP protocol field 8 In the Destination IP Layer4 Port Range field click Ignore 9 In the Source IP Layer4 Port Range field click Ignore Any values for the packet s layer 4 source port are ignored 10 Click Submit The new entry is displayed in the Layer2 Filter Ta...

Page 325: ...r 2 Classification page with new entry 1 of 2 Figure 115 Layer 2 Classification page with new entry 2 of 2 Creating a Layer2 Filter Group Table entry Now you can create a layer 2 filter group in the Layer2 Filter Group Table section of the Layer2 Classification page To create a layer 2 filter group entry ...

Page 326: ...roup Name field enter layer2filter This entry is a unique identification label to distinguish this filter group from other filter groups 3 Click the Group check box in the Filter Group Table to include the entry in the filter group 4 Enter the Order number 1 This entry establishes the evaluation order of filters in the group 5 Click Submit The new entry is displayed on the Layer 2 Group Modificati...

Page 327: ...ration 327 Using the Business Policy Switch 2000 Version 2 0 Figure 117 Layer 2 Group Modification page The system returns you to Layer 2 Classification page The new filter group appears in the Layer2 Filter Group Table Figure 118 ...

Page 328: ...is to be processed You specify the actions associated with specific IP and layer 2 filter groups When filters match incoming packets the actions are performed on those packets Actions can be configured to re mark packets to change priorities and loss sensitivity drop precedence or to drop packets In order to use a particular action that action must be assigned to a meter refer to Configuring meter...

Page 329: ...nsmit 4 In the Update DSCP field choose 47 0x2F This entry changes the DSCP value to the decimal value 47 in the match packet 5 In the Set Drop Precedence field choose Not Loss Sensitive 6 In the Update 802 1p Priority field select Priority 1 Priority 1 specifies a low priority Note Beginning with software version 2 0 the Action page opens with configured actions for the classes of service as well...

Page 330: ...in the Action Table Figure 120 Figure 120 Action page with entry in Action Table In summary you have configured a new action named Generic This action specifies a high drop precedence a low user priority and a DSCP value of 0x2F for packets that match a filter associated with this action ...

Page 331: ...c entering a port to a specified bandwidth such as 25 Kb s Committed Rate Instead of dropping all traffic that exceeds this threshold traffic policing allows you to configure a Committed Burst Rate to exceed the threshold Committed Rate for a brief period of time without being dropped To configure a meter 1 Click the Application QoS QoS Advanced Meters menu option The Meters page opens Figure 119 ...

Page 332: ... Committed Burst Size section enter 3500 5 In the Duration field of the Committed Burst Size section select 33 milliseconds from the pull down menu The switch calculates from 1 to 7 durations and presents the results to you in a pull down menu Choose the one you want Note Beginning with software version 2 0 the Meter page opens with configured meters for the classes of service as well as a few oth...

Page 333: ... displayed in the Meter Table Figure 122 Figure 122 Meter page with new entry in Meter Table In summary you have configured a new meter named Practice This meter specifies committed data with a committed rate of 3000 Kbps and a committed burst size of 2047 bytes for packets that match a filter associated with this meter ...

Page 334: ...r 16 packets can be held in the shaping queue for each policy Some packets may be dropped if buffers are completely used You can shape either metered data or no metered data Also you do not have to shape the traffic Shapers are not modifiable If you want to change a shaper you must delete the entry in the Shaper Table and reenter the information To configure a shaper 1 Click the Application QoS Qo...

Page 335: ...must enter a multiple of 64 Kbps in this field 4 In the Maximum Burst Rate field enter 70 5 Choose 2729 milliseconds from the pull down menu for Maximum Burst Duration The switch calculates from 1 to 6 durations and presents the results to you in a pull down menu Choose the one you want 6 Choose 16 Packets from the pull down menu for Queue Size 7 Click Submit The new entry is displayed in the Shap...

Page 336: ...kets Configuring policies Now you are ready to configure a policy A policy is an interface group a group of filters filter set and the associated meter shaper or shaper group and action Policies are applied according to the precedence order that you assign in the QoS Advanced Policies page To configure a policy 1 Click the Application QoS QoS Advanced Policies menu option The Policies page opens F...

Page 337: ...Sample QoS configuration 337 Using the Business Policy Switch 2000 Version 2 0 Figure 125 Policies page 1 or 2 Figure 126 Policies page 2 of 2 2 In the Policy Name field of the Policy Creation area enter IPpolicy ...

Page 338: ...oose Practice 8 In the In Profile Action field choose Generic 9 In the Out of Profile Action field choose Drop Traffic 10 In the Shaper field choose Shape1 11 Leave the Shaper Group field as is Note You cannot have spaces in the naming field Note Nortel Networks recommends that you consider an order numbering strategy for the values in the Order field as you configure policies The policies in the ...

Page 339: ...as a group or aggregate with the traffic associated with other installed policies To do so choose the Shaping Group identified in the Policy Table with the policy or policies you want to group with this traffic rather than using the Shaper field 12 In the Track Statistics field choose Yes 13 Click Submit The new entry is displayed in the Policy Table Figure 127 and Figure 128 ...

Page 340: ...ing matching criteria and actions to individual interfaces ports in the hardware You specified that this policy will use the IPacket filter group with the elements that you specified IPpolicy will use the Role Combination Webbrowsing the Practice meter and the Shape1 shaper The system assigned the IPpolicy the Shaper Group number 2 and the policy will track statistics IPpolicy specifies the type o...

Page 341: ...ying DSCP queue assignments on page 346 Assigning 802 1p priority queue assignment You assign IEEE 802 1p priority values to a queue for specific queue set This information is used for assigning egress traffic to outbound queues To configure 802 1p priority 1 Click the Application QoS QoS Advanced Devices Priority Q Assign menu option The 802 1p Priority Queue Assignment page opens Figure 129 Note...

Page 342: ... is the queue set you want to modify 3 Click Submit The 802 1p Priority Assignment Table is updated with the queue set you requested 4 Change the value of Priority 5 from 2 to 1 Verifying DSCP mapping Next verify the mapping of the DSCP to an IEEE 802 1p priority drop precedence and service class Note Clicking Submit in the 802 1p Priority Assignment Table section results in a system reset ...

Page 343: ...s DSCP Mapping menu option The DSCP Mapping page opens Figure 130 Figure 130 DSCP Mapping page To change the DSCP to an 802 1p priority 1 Click the Application QoS QoS Advanced Devices DSCP Mapping menu option The DSCP Mapping page opens Figure 130 2 Click the Modify icon of DSCP 0x1 The DSCP Mapping page opens Figure 131 for DSCP 0x1 ...

Page 344: ...re 131 DSCP Mapping page 3 In the 802 1 User Priority field choose 1 4 In the Drop Precedence field choose Not Loss Sensitive 5 In the Service Class field choose Standard 6 Click Submit The DSCP Mapping page opens with the updated information Figure 132 ...

Page 345: ...2 DSCP Mapping page Assigning 802 1p user priority mapping Now you want to map the 802 1p priority to a specific DSCP To configure IEEE 802 1p user priority to DSCP mapping 1 Click the Application QoS QoS Advanced Devices Priority Mapping menu option The 802 1p Priority Mapping page opens Figure 133 ...

Page 346: ... 3 Click Submit Verifying DSCP queue assignments Next view the DSCP queue assignments To view DSCP queue assignments 1 Click the Application QoS QoS Advanced Devices DSCP Q Assign menu option The DSCP Queue Assignment page opens Figure 134 Note When you want to map DSCP to a queue you must map DSCP to 802 1p and then map 802 1p to a queue ...

Page 347: ...Chapter 5 Sample QoS configuration 347 Using the Business Policy Switch 2000 Version 2 0 Figure 134 DSCP Queue Assignment page 2 Choose Queue Set 1 3 Click Submit 4 View the queue assignment ...

Page 348: ...348 Chapter 5 Sample QoS configuration 208700 C ...

Page 349: ...iness Policy Switch For example because LEDs provide visual indications of certain problems see Chapter 1 to understand the various states Table 61 that your switch LEDs can exhibit during normal operation For more help in determining the problem Diagnosing and correcting problems describes symptoms and corrective actions Table 62 you can perform to resolve specific problems Subsequent sections gi...

Page 350: ...lly and switch is operational Blinking A nonfatal error occurred during the self test This includes nonworking fans Off The switch failed the self test RPSU RPSU status Green On The switch is connected to the RPSU and can receive power if needed Off The switch is not connected to the RPSU or RPSU is not supplying power Cas Up Stack mode Off The switch is in standalone mode 9714EA Business Policy S...

Page 351: ...is on the ring but cannot participate in the stack configuration Cas Dwn Stack mode Off The switch is in standalone mode Green On The switch is connected to the downstream unit s Cascade A Out connector Amber On This unit has detected a problem with the switch connected to the cascade down connector In order to maintain the integrity of the stack this unit has bypassed its downstream neighbor and ...

Page 352: ...lover is a temporary safeguard only If the stack configuration loses power the temporary base unit will not power up as the base unit when power is restored For this reason you should always assign the temporary base unit as the base unit set the Unit Select switch to Base until the failed unit is repaired or replaced 10 100 10 100 Mb s port speed indicator Green On The corresponding port is set t...

Page 353: ... the switch follows the normal power up sequence Warning To avoid bodily injury from hazardous electrical current never remove the top cover of the device There are no user serviceable components inside Vorsicht Um Verletzungsgefahr durch einen elektrischen Stromschlag auszuschließen nehmen Sie niemals die obere Abdeckung vom Gerät ab Im Geräteinnern befinden sich keine Komponenten die vom Benutze...

Page 354: ...e their operational status as described in Table 62 Port connection problems You can usually trace port connection problems to either a poor cable connection or an improper connection of the port cables at either end of the link To remedy these types of problems make sure that the cable connections are secure and that the cables connect to the correct ports at both ends of the link Port connection...

Page 355: ...or the switch must not exceed 40 C 104 F Do not place the switch in areas where it can be exposed to direct sunlight or near warm air exhausts or heaters The Activity LED for a connected port is off or does not blink and you have reason to believe that traffic is present The switch is experiencing a port connection problem See Port connection problems next The switch s link partner is not autonego...

Page 356: ...station and by default reverts to half duplex mode If the connected station is operating in full duplex mode it cannot communicate with the switch To correct this mode mismatch problem 1 Use the Port Configuration screen to disable autonegotiation for the suspect port see Chapter 3 2 Manually set the Speed Duplex field to match the speed duplex mode of the connected station see Chapter 3 You may h...

Page 357: ...ing the same software version Hybrid stack All BPS 2000 units must be running the same software version All BayStack 410 units must be running the same software version All BayStack 450 units must be running the same software version All software versions must have the identical ISVN This section discusses the following topics Upgrading software in a Pure BPS 2000 stack next Upgrading software in ...

Page 358: ...he process Before you attempt to download new software or upgrade software to a Hybrid mixed stack you must ensure that the Interoperability Software Version Numbers ISVN are identical That is the ISVN number for the BayStack 450 switch and BayStack 410 switch must have the same ISVN as the BPS 2000 If the ISVNs are not the same the stack does not operate The ISVNs and the accompanying software re...

Page 359: ...ts Upgrading software when ISVN is 1 To upgrade a Hybrid stack to BPS 2000 software version 2 0 when the ISVN numbers of the units are 1 1 Download the BPS 2000 image file and the BayStack 450 410 file simultaneously The system resets 2 Download the other BayStack 450 image file The system resets 3 Download the BPS 2000 diags file Note Once you begin the upgrading process do not interrupt the proc...

Page 360: ... the all units in the stack that will join the other stack by unplugging the power cords from each unit a On the unit that was the Base Unit of this stack use the Unit Select switch to deselect it as the Base Unit b Redo all the cabling so that all units will work as one stack 4 Power up the newly joined units by plugging in the power cords It may take a few minutes for the entire stack to display...

Page 361: ...usiness Policy Switch Table 63 Environmental specifications Parameter Operating specification Storage specification Temperature 0 to 40 C 32 to 104 F 25 to 70 C 13 to 158 F Humidity 85 maximum relative humidity noncondensing 95 maximum relative humidity noncondensing Altitude 3024 m 10 000 ft 3024 m 10 000 ft Table 64 Electrical parameters Parameter Electrical specification Input Voltage 100 to 24...

Page 362: ... cm 15 1 in Weight 4 8 kg 10 60 lb Table 66 Performance specifications Parameter Specifications Frame Forward Rate 64 byte packets Up to 3 2 million packets per second pps maximum learned unicast traffic Port Forwarding Filtering Performance 64 byte packets For 10 Mb s 14 880 pps maximum For 100 Mb s 148 810 pps maximum Address Database Size 16 000 entries at line rate 32 000 entries without flood...

Page 363: ...ace Converters and Small Form Factor Pluggable Interface Converters for information on the interface connectors on available uplink modules Safety agency certification The safety certifications follow Electromagnetic emissions The module meets the following standards UL Listed UL 1950 IEC 950 EN60950 C22 2 No 950 CUL with all national deviations UL 94 V1 flammability requirements for PC board NOM ...

Page 364: ... complies with ISO IEC Guide 22 and EN45014 The declaration identifies the product models the Nortel Networks name and address and the specifications recognized by the European community As stated in the Declaration of Conformity the Business Policy Switch 2000 complies with the provisions of Council Directives 89 336 EEC and 73 23 EEC EN55022 1995 Class A EN61000 3 2 1995 EN61000 3 3 1994 ...

Page 365: ...stack on page 371 Joining stacks on page 373 Troubleshooting problems on page 374 Compatibility with BayStack 450 switches The BPS 2000 software version 2 0 is compatible with BayStack 450 software version 4 1 When you are using a local console to access the BPS 2000 software version 2 0 features with a Hybrid or mixed stack BPS 2000 and BayStack 450 and 410 switches in the same stack you must plu...

Page 366: ...ou have more than 64 VLANs on the Pure BPS 2000 Stack you will lose them all The Hybrid Stack will return to the default VLAN configuration Also a mixed or hybrid stack does not support multiple Spanning Tree Groups STG You have a single instance of STG when working with a mixed stack Setting up your mixed stack configuration To set up a mixed stack configuration follow the basic instructions rega...

Page 367: ...ndalone mode and perform preliminary IP configuration tasks before you add it to an existing stack To add a Business Policy Switch to your stack 1 Change the new Business Policy Switch base unit setting on the BayStack 400 ST1 Cascade Module to Base 2 Ensure that no other unit in the existing stack is selected as the base unit 3 Power up the switch 4 Change the Stack Operational Mode field on the ...

Page 368: ...failure of the base unit is discovered the Unit Select switch on the temporary base unit should be set to Base For detailed information about temporary base units see Installing the BayStack 400 ST1 Cascade Module Note If you do not reassign the temporary base unit as the new base unit and the temporary base unit fails the next unit directly downstream from this unit becomes the new temporary base...

Page 369: ...he stack order automatically becomes the new temporary base unit All Business Policy Switch units in the stack will be exhausted as base units successively before assigning a BayStack 410 or BayStack 450 as base unit The base unit change is indicated by the base LED on the temporary base unit s LED display panel turning on amber If the stack s base unit reverts to a BayStack 410 or BayStack 450 sw...

Page 370: ...es that are configured with BayStack 450 software versions earlier than version V1 1 0 For information about using MDAs refer to Installing Media Dependent Adapters MDA s and Installing Gigabit Interface Converters and Small Form Factor Pluggable Interface Converters System Characteristics Operation Mode Stack Unit 1 Size Of Stack 2 Base Unit 1 MAC Address 00 80 2C 8D 23 DF Reset Count 16 Last Res...

Page 371: ...All BPS 2000 units must be running the same software version All BayStack 410 units must be running the same software version All BayStack 450 units must be running the same software version All software versions must have the identical ISVN The physical order of the units and the unit numbering in the Hybrid stack does not affect the upgrading process at all In addition the cabling order regardin...

Page 372: ... or Bay Stack 450 version 3 1 BPS 2000 versions 1 0 and 1 0 1 ISVN 2 BayStack 410 or BayStack 450 versions 4 0 and 4 1 BPS 2000 versions 1 1 1 1 1 1 2 and 2 0 Upgrading software when ISVN is 2 To upgrade a Hybrid stack to BPS 2000 software version 2 0 when the ISVN numbers of the units are 2 1 Download the BPS 2000 image file The system resets 2 Download the BPS 2000 diags file The system resets U...

Page 373: ...entirely BPS 2000 units or mixed units You do not have to renumber the units in either stack To join two existing stacks 1 Designate one stack as the one to join the other stack 2 Reset the stack that will join the other stack to factory defaults 3 Turn off the power to the all units in the stack that will join the other stack by unplugging the power cords from each unit Note If you do not downloa...

Page 374: ...t troubleshooting by verifying the following items A Business Policy Switch is designated as the base unit All other units in the stack have the base unit select switch set to Off The Business Policy Switch s operational mode is set to Hybrid Stack and the unit has been reset after changing the operational mode Figure 136 All units in the stack exhibit the same ISVN All units must be reset when yo...

Page 375: ...quick configuration guides The flowcharts refer you to the configuration rules appropriate for each feature The flowcharts cover the following features 802 1Q VLANs page 375 MultiLink Trunking page 379 Port Mirroring page 380 IGMP Snooping page 381 EAPOL Authentication page 384 Configuring 802 1Q VLANs To create or modify an 802 1Q VLAN follow the flowcharts in Figure 138 Figure 139 and Figure 140...

Page 376: ... appropriate value for the Create VLAN field Activate VLAN State Is VLAN Type Port Based 3 1 Select the appropriate value for the VLAN Type field No Yes Is VLAN Type Protocol Based Yes No Is the PID user defined Select the appropriate PID value for the PID field Enter the user defined PID value Off page reference On page reference Key Start ...

Page 377: ...et the Port field as appropriate for your configuration Set PVID Choose VLAN Port Configuration or press c to open the VLAN Port Configuration screen VLAN Port members Configured Is PVID correct Configure Port Members as Tagged Port Member Untagged Port Member or Not a Member of VLAN see VLAN Configuration Rules for more information 2 1 BS45047D Off page reference On page reference Key ...

Page 378: ...istered filters if necessary Set Port Priority See also the Traffic Class Configuration screen if necessary BS45048C Is filtering correct Is Port Priority correct Yes Are all VLANs configured Yes 2 No 3 Done Off page reference On page reference Key Yes No Set Tagging field on VLAN Port Configuration screen Is VLAN tag correct ...

Page 379: ...runk Configuration or press t from the MultiLink Trunk Configuration Menu screen Figure 141 Configuring MultiLink Trunks Yes No No Configure STP field Enable Trunk Status field see MultiLink Trunking Configuration Rules Configure trunk members see MultiLink Trunking Configuration Rules BS45050A Are all trunk members configured Is trunk STP Enabled Yes Is trunk Enabled Yes No Done MultiLink Trunk C...

Page 380: ...Configuration Menu screen Figure 142 Configuring Port Mirroring 1 of 2 Yes No No Set Monitoring Mode field Port Mirroring Configuration screen Set Monitor Port field see Port Mirroring Configuration Rules Configure Ports X and Y fields see Port Mirroring Configuration Rules BS45051A Is Monitoring Mode field set Is Monitor Port field set Yes Is Monitor Port set for port based mode Yes Yes No 1 Are ...

Page 381: ...g ports follow the flowcharts in Figures Figure 144 to Figure 146 To open the IGMP Configuration screen Choose IGMP Configuration or press g from the Switch Configuration Menu screen Yes No No Enable Port Mirroring see Port Mirroring Configuration Rules BS45052A Are Address A and B configured Is Port Mirroring Enabled Yes 1 Done 2 Configure Addresses Off page reference On page reference Key ...

Page 382: ...onfigured Is the Snooping field set correctly Yes Is Snooping field set Yes Yes No 2 Is the Proxy field set correctly No 2 IGMP Configuration screen Go to VLAN flowchart Create VLANs configure port members as required Set the correct value for the Snooping field Set the correct value for the Proxy field Off page reference On page reference Key ...

Page 383: ...y Is the Query Timer field set correctly Yes Is the Set Router Ports field set correctly Yes Yes No Is the Proxy field set correctly No 3 2 Set the correct value for the Query Timer field Set the correct value for the Robust Value field Set the correct value for the Proxy field Set the correct value for the IGMP version in the Set Router Ports field Off page reference On page reference Key ...

Page 384: ...ameters follow the flowcharts in Figure 147 and Figure 148 Yes No No All trunk members for that trunk are automatically configured as IGMP Static Router Ports Off page reference On page reference BS45055B Key Are all IGMP members configured Is the Port a trunk member Yes 3 Done Configure all IGMP members see IGMP Configuration Rules All VLANs on this port are now configured as IGMP router ports ...

Page 385: ...wchart 1 of 2 Yes No EAPOL_Authen_Process_new_1 Authentication successful Authentication server sent VLAN ID Yes Yes No Does VLAN exist No Login screen Access denied See System Administrator Off page reference On page reference Key Switch restores VLAN ID and PVID values from NVRAM Switch sets VLAN ID and PVID values to VLAN 1 Yes Port based VLAN No Switch sets VLAN ID and PVID values to preconfig...

Page 386: ...rocess_new_2 Authentication server sent Port Priority value Is Port Priority value range 0 to 7 Yes No Off page reference On page reference Key Switch sets Port Prioity value to 0 A Switch restores Port Priority value from NVRAM Switch sets Port Priority value to preconfigured values stored in the Authentication server ...

Page 387: ...0BASE T 100BASE TX port connectors The RJ 45 port connectors Figure 149 are wired as MDI X ports to connect end stations without using crossover cables See MDI and MDI X devices on page 388 for information about MDI X ports For 10BASE T connections use Category 3 or higher UTP cable For 100BASE TX connections use only Category 5 UTP cable Figure 149 RJ 45 8 Pin Modular port connector 1 8 616EA ...

Page 388: ... crossover function internally Ports that implement the crossover function internally are known as MDI X ports where X refers to the crossover function The following sections describe the use of straight through and crossover cables for connecting MDI and MDI X devices Table 67 RJ 45 port connector pin assignments Pin Signal Description 1 RX Receive Data 2 RX Receive Data 3 TX Transmit Data 4 Not ...

Page 389: ...ing crossover cables Figure 150 Figure 150 MDI X to MDI cable connections MDI X to MDI X cable connections If you are connecting the Business Policy Switch to a device that also implements MDI X ports use a crossover cable Figure 151 1 8 1 8 8 1 8 1 RX RX TX TX TX TX RX RX MDI X port Business Policy Switch 2000 End station Straight through cable MDI port T R T R 1 2 3 4 5 6 7 8 1 2 3 4 5 6 7 8 1 2...

Page 390: ...nal outputs are always asserted the CD DTR RTS and RI signal inputs are not used This configuration enables a management station a PC or console terminal to connect directly to the switch using a straight through cable Figure 152 DB 9 Console port connector 1 8 1 8 8 1 8 1 RX RX TX TX RX RX TX TX MDI X port Business Policy Switch 2000 Switch or hub Crossover cable MDI X port T R T R 1 2 3 4 5 6 7 ...

Page 391: ... pin assignments Table 68 DB 9 Console port connector pin assignments Pin Signal Description 1 CD Carrier detect not used 2 TXD Transmit data output 3 RXD Receive data input 4 DTR Data terminal ready not used 5 GND Signal ground 6 DSR Not used 7 RTS Request to send not used 8 CTS Not used 9 RI Ring indicator not used Shell Chassis ground ...

Page 392: ...392 Appendix D Connectors and pin assignments 208700 C ...

Page 393: ...isabled In Band Stack IP Address 0 0 0 0 no IP address assigned In Band Switch IP Address 0 0 0 0 no IP address assigned In Band Subnet Mask 0 0 0 0 no subnet mask assigned Default Gateway 0 0 0 0 no IP address assigned Read Only Community String public SNMP Configuration screen on page 167 Read Write Community String private Trap IP Address 0 0 0 0 no IP address assigned Community String Zero len...

Page 394: ...ltering on Intrusion Detected Disabled Generate SNMP Trap on Intrusion Disabled Clear by Ports NONE Learn by Ports NONE Current Learning Mode Not Learning Trunk blank field MAC Address Security Port Configuration screen on page 181 Security Disabled Port List blank field MAC Address Security Port Lists screens on page 184 Find an Address blank field MAC Address Security Table screens on page 189 M...

Page 395: ...e Subnet Addr 0 0 0 0 Subnet Mask 0 0 0 0 Port Membership U all ports assigned as untagged members of VLAN 1 Unit 1 VLAN Port Configuration screen on page 205 Port 1 Filter Tagged Frames No Filter Untagged Frames No Filter Unregistered Frames No Port Name Unit 1 Port 1 PVID 1 Port Priority 0 Tagging Untagged Access AutoPVID Disabled BootP Mac Address Type Stack Mac Address Stack Operational Mode s...

Page 396: ... ports Speed Duplex 100Mbs Half when Autonegotiation is Disabled Trunk 1 to 6 depending on configuration status MultiLink Trunk Configuration Menu screen on page 215 Trunk Members Unit Port Blank field STP Learning Normal Trunk Mode Basic Trunk Status Disabled Trunk Name Trunk 1 to Trunk 6 Traffic Type Rx and Tx MultiLink Trunk Utilization screen on page 219 Table 69 Factory default settings conti...

Page 397: ...ne VLAN 1 IGMP Configuration screen on page 229 Snooping Enabled Proxy Enabled Robust Value 2 Query Time 125 seconds Set Router Ports Version 1 Static Router Ports for all ports Unit 1 Port Statistics screen on page 234 Port 1 Console Port Speed 9600 Baud Console Comm Port Configuration screen on page 239 Console Switch Password Not Required Console Stack Password Not Required Console Read Only Sw...

Page 398: ...U on tagged port STP Group 1 No Other STP Groups Yes STP Group State STP Group 1 Active Other STP Groups InActive VID used for tagged BPDU 4001 4008 for STGs 1 8 respectively STP Group 1 Spanning Tree Port Configuration screen on page 253 Participation Normal Learning Priority 128 Path Cost 10 or 100 STP Group 1 Spanning Tree Switch Settings screen on page 256 STP Group 1 Spanning Tree VLAN Member...

Page 399: ...ion 2 0 Event Logging All Allowed Source IP Address 10 user configurable fields First field 0 0 0 0 no IP address assigned Remaining nine fields 255 255 255 255 any address is allowed Table 69 Factory default settings continued Field Default setting Appears in this CI screen ...

Page 400: ...ng Configuration File Download Upload screen on page 275 TFTP Server IP Address 0 0 0 0 no IP address assigned Copy Configuration Image to Server No Retrieve Configuration Image from Server No ASCII Configuration Filename Zero length string ASCII Configuration File Download screen on page 279 TFTP Server IP Address 0 0 0 0 no IP address assigned Retrieve Configuration file from Server No Last Manu...

Page 401: ...ration file that was extracted from a Nortel Networks EZ LAN network management application Note that other BootP daemons can use a configuration file with a different format Before using your switch BootP facility you must customize your BootP configuration file with the appropriate data Blank lines and lines beginning with are ignored Legend first field hostname ht hardware type ha host hardware...

Page 402: ...every device Note that hardware type ht is specified first in the global entry The following global entry is defined for an Ethernet device Note that this is where a client s subnet mask sm and default gateway gw are defined global1 ht ethernet hd c opt images sm 255 255 255 0 gw 192 0 1 0 The following sample entry describes a BootP client bay1 ht ethernet ha 0060fd000000 ip 192 0 0 1 hd c ezlan ...

Page 403: ...sk field 264 arrows 155 Ascii 275 ASCII configuration file 61 ASCII Configuration File Download screen 275 279 ASCII Configuration Filename field 281 assymmetric mode 214 authentication 80 191 Authentication Trap field 168 Auto Configuration on Reset field 281 automatic PVID 67 208 autonegotiation 211 description 86 gigabit ports 212 modes 354 troubleshooting 355 Autonegotiation field 211 213 Auto...

Page 404: ...ration 56 88 configuration file 278 Configuration File Download Upload option 275 Configuration File Download Upload screen 275 Configuration File Menu 274 Configuration File option 160 Configuration Image Filename field 277 configuration rules EAPOL 84 IGMP 133 151 MultiLink Trunking 58 133 139 151 port mirroring 139 151 spanning tree 58 139 151 spanning tree groups 58 59 stacking 367 VLANs 58 13...

Page 405: ...60 Display Create MAC Address field 204 downloading software 35 DRAM 282 drop precedence 294 328 DSCP 316 328 341 DiffServ codepoint 288 DSCP Mapping page 343 DSCP Queue Assignment page 346 E EAPOL Administrative State field 192 EAPOL Security Configuration screen 173 191 EAPOL based network security 66 80 configuration rules 84 Entry field 186 errors 69 event log 282 Event Logging field 263 Exces...

Page 406: ...emporary base unit 369 using the console interface 371 IP address 163 per unit 55 IP Address to Ping field 164 IP Classification Group page 318 IP Classification page 316 IP Configuration screen 159 162 IP Configuration Setup screen 159 IP Filter Creation section 316 IP Filter Group Table section 318 IP Group Modification page 319 IP manager list 64 262 ISVN numbers 35 271 369 IVL SVL field 200 L ...

Page 407: ... console interface 158 management 56 88 Management VLAN field 200 Maximum Age Time field 259 Maximum Requests field 195 media dependent adapters MDAs 52 65 memory utilization 55 Meter page 331 Meter Table 331 MIBs 89 92 mixed stack 38 93 153 265 365 multicast 128 Multicasts field 236 MultiLink Trunk Configuration Menu 215 MultiLink Trunk Configuration screen 173 215 216 MultiLink Trunking 138 conf...

Page 408: ...rds 48 power status 43 Power Status field 170 power up sequence 354 Predefined Protocol Identifier PID 202 Preferred Phy field 214 Primary RADIUS Server field 245 prioritization 309 prioritizing traffic 134 286 Priority field 255 product support 31 Protocol ID PID field 200 proxy 128 publications hard copy 31 related 28 92 PVID field 209 Q QoS 70 285 802 1p priority 294 295 303 action 304 328 331 ...

Page 409: ...riod field 194 R RADIUS Shared Secret field 245 RADIUS UPD Port field 245 RADIUS based network security 78 191 rate limiting broadcast and multicast storms 226 configuration 224 Rate Limiting Configuration screen 173 225 rate shaping 302 Read Only Community String field 168 Read Write Community String field 168 Re authenticate Now field 194 Re authentication field 194 Re authentication Period fiel...

Page 410: ...anning Tree Port Configuration screen 249 254 Spanning Tree Switch Settings screen 256 Spanning Tree VLAN Membership screen 260 Speed Duplex field 212 stack MAC address 103 stack operational mode 57 74 Stack Operational Mode screen 174 238 stack up down configurations 104 stacking 33 44 93 153 158 170 238 365 366 base unit 102 cascade module slot 46 compatibility 33 considerations 107 initial inst...

Page 411: ...tings 155 TFTP server 274 software download 266 TFTP Server IP Address field 268 277 281 Total Octets field 236 traffic prioritization 286 Transmit Period field 194 Trap IP Address fields 168 troubleshooting 43 141 151 autonegotiation 211 355 cabling 357 config file 61 configuration file 278 defaults 160 joining stacks 360 373 MAC address filtering 78 MDAs 355 mixed stack 38 153 MLT 144 port conne...

Page 412: ...embership field 261 VLAN Name field 200 VLAN Names field 209 VLAN State field 201 VLAN Type field 200 VLANs 56 110 Configuration Menu 173 196 configuration rules 59 128 139 151 default settings 112 EAPOL 82 examples 126 IVL 73 MAC SA based 72 network example 93 number of 73 74 195 number of protocols 195 port based 72 ports 197 protocol based 72 195 shared servers 120 spanning tree groups 93 153 3...

Reviews:

No comments

Related manuals for business policy switch 2000

Verizon DSL-2750B

Brand: D-Link Pages: 6

Brand: D-Link Pages: 10

Brand: D-Link Pages: 38

Brand: Paradyne Pages: 22

Storage Networking (Unified Fabric Pilot)

Brand: Qlogic Pages: 76

Brand: AMX Pages: 1

Brand: Digisol Pages: 81

Brand: Waver Pages: 36

Brand: Comtrend Corporation Pages: 4

Brand: Linksys Pages: 6

Brand: MaxComm Pages: 10

Brand: PairGain Pages: 48

32 bit 10/100 Fast Ethernet Card A02-S32-S

Brand: Atlantis Land Pages: 9

Prestige 642R Series

Brand: ZyXEL Communications Pages: 163

Brand: Radio Shack Pages: 40

QuantaGrid D51PH-1ULH

Brand: QCT Pages: 167

Brand: Thecus Pages: 90

Brand: Proxim Pages: 89

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands