H3C S5830V2 series Скачать руководство пользователя страница 92 | Manualshive

Страница: 92 / 318

background image

75

Configuring port isolation

The port isolation feature isolates Layer 2 traffic for data privacy and security without using VLANs.
Ports in an isolation group cannot communicate with each other, but they can communicate with ports

outside the isolation group.

Assigning a port to an isolation group

The device supports multiple isolation groups, which can be configured manually. The number of ports

assigned to an isolation group is not limited.
To assign a port to an isolation group:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Create an isolation
group.

port-isolate group

group-number

By default, no isolation group exists.

3.

Enter interface view.

•

Enter Layer 2 Ethernet

interface view:

interface

interface-type

interface-number

•

Enter Layer 2 aggregate

interface view:

interface bridge-aggregation

interface-number

•

The configuration in Layer 2 Ethernet

interface view applies only to the
interface.

•

The configuration in Layer 2 aggregate

interface view applies to the Layer 2
aggregate interface and its

aggregation member ports. If the

device fails to apply the configuration
to the aggregate interface, it does not

assign any aggregation member port

to the isolation group. If the failure
occurs on an aggregation member

port, the device skips the port and

continues to assign other aggregation
member ports to the isolation group.

4.

Assign the port to the
specified isolation

group.

port-isolate enable group

group-number

By default, the port is not in any isolation
group.
You can assign a port to at most one
isolation group. If you execute the

port-isolate enable group

command

multiple times, the most recent
configuration takes effect.

Displaying and maintaining port isolation

Execute

display

commands in any view.

«
...
90
91
92
93
94
...
»

Содержание S5830V2 series

Страница 1: ...H3C S5830V2 S5820V2 Switch Series Layer 2 LAN Switching Configuration Guide Hangzhou H3C Technologies Co Ltd http www h3c com Software version Release 23xx Document version 6W102 20150315...

Страница 2: ...gine SecPath SecCenter SecBlade Comware ITCMM and HUASAN are trademarks of Hangzhou H3C Technologies Co Ltd All other trademarks that may be mentioned in this manual are the property of their respecti...

Страница 3: ...service provider network VLAN tag manipulations This preface includes Audience Added and modified features Conventions About the H3C S5830V2 S5820V2 documentation set Obtaining documentation Technical...

Страница 4: ...he MTU for an Ethernet interface or subinterface Modified features Configuring the interface description Displaying summary information about the specified interface or all interfaces Configuring phys...

Страница 5: ...le was added in the factory defaults When the device starts up with the default configuration file or factory defaults the spanning tree feature is enabled globally by default Loop detection N A VLAN...

Страница 6: ...it delay Service loopback group N A Cut through N A Conventions This section describes the conventions used in this documentation set Command conventions Convention Description Boldface Bold text repr...

Страница 7: ...provides helpful information Network topology icons Represents a generic network device such as a router switch or firewall Represents a routing capable device such as a router or Layer 3 switch Repr...

Страница 8: ...he physical views specifications installation procedures and removal procedures for the LSVM1AC300 and LSVM1DC300 power modules Software configuration Configuration guides Describe software features a...

Страница 9: ...http www h3c com Documentation feedback You can e mail your comments about product documentation to info h3c com We appreciate your comments...

Страница 10: ...guring a Layer 3 Ethernet interface or subinterface 15 Setting the MTU for an Ethernet interface or subinterface 15 Displaying and maintaining an Ethernet interface 15 Configuring loopback null and in...

Страница 11: ...thernet link aggregation 42 Basic concepts 42 Aggregation group member port and aggregate interface 42 Aggregation states of member ports in an aggregation group 43 Operational key 43 Configuration ty...

Страница 12: ...ort isolation 75 Port isolation configuration example 76 Network requirements 76 Configuration procedure 76 Verifying the configuration 76 Configuring spanning tree protocols 78 STP 78 STP protocol pa...

Страница 13: ...guidelines 111 Configuration procedure 111 Configuring Digest Snooping 112 Configuration restrictions and guidelines 112 Configuration procedure 113 Digest Snooping configuration example 113 Configur...

Страница 14: ...ed VLANs 141 Introduction to port based VLAN 141 Assigning an access port to a VLAN 142 Assigning a trunk port to a VLAN 143 Assigning a hybrid port to a VLAN 144 Configuring IP subnet based VLANs 145...

Страница 15: ...ng QinQ 195 Overview 195 How QinQ works 195 QinQ implementations 196 Protocols and standards 196 Restrictions and guidelines 197 Enabling QinQ 197 Configuring transparent transmission for VLANs 197 Co...

Страница 16: ...ort 233 Configuring a downlink port 234 Displaying and maintaining PBB 234 PBB configuration example 235 Network requirements 235 Configuration procedures 235 Verifying the configuration 236 Troublesh...

Страница 17: ...intaining LLDP 261 LLDP configuration examples 261 Basic LLDP configuration example 261 DCBX configuration example 265 Configuring service loopback groups 271 Configuration procedure 271 Displaying an...

Страница 18: ...ng conventions The Ethernet interfaces are named in the format of interface type A B C The letters that follow the interface type represent the following elements A IRF member ID If the switch is not...

Страница 19: ...t from a 40 GE interface support the same configuration and attributes as common 10 GE interfaces except that they are numbered in a different way 4 Reboot the device N A After creating the four 10 GE...

Страница 20: ...mat of interface name Interface For example Ten GigabitEthernet1 0 1 Interface 4 Set the duplex mode of the Ethernet interface duplex auto full half The default setting is auto for Ethernet interfaces...

Страница 21: ...ults in the new link mode The interfaces on this switch series can operate either as Layer 2 or Layer 3 Ethernet interfaces you can set the link mode to bridge or route To change the link mode of an E...

Страница 22: ...The CPU then performs the following operations Notifies the upper layer protocol modules such as routing and forwarding modules of the change for guiding packet forwarding Automatically generates trap...

Страница 23: ...and guidelines On an administratively shut down Ethernet interface displayed as in ADM or Administratively DOWN state you cannot perform an internal or external loopback test The speed duplex mdix mo...

Страница 24: ...ith PFC enabled an interface requires its peer to suspend sending packets with certain 802 1p priorities when congestion occurs By decreasing the transmission rate PFC helps avoid packet loss You can...

Страница 25: ...low control by using the flow control command on a port where PFC is enabled and PFC is enabled for the specified 802 1p priority values Configured Configurable Unconfigurable On a port configured wit...

Страница 26: ...r the 10 GE copper ports of S5820V2 52Q switches this feature is available only when the ports operate at 10 Gbps To enable EEE energy saving Step Command Remarks 1 Enter system view system view N A 2...

Страница 27: ...nnected the fiber port does not work To enable a fiber port to forward traffic over a single link you can use the port up mode command This command brings up a fiber port by force even when no fiber l...

Страница 28: ...broadcast multicast or unknown unicast traffic on the interface exceeds this threshold the system discards packets until the traffic drops below this threshold Any of the storm constrain broadcast sup...

Страница 29: ...interface to output threshold event traps and log messages when either of the following conditions exists Monitored traffic exceeds the upper threshold Monitored traffic falls below the lower thresho...

Страница 30: ...control is disabled 5 Set the control action to take when monitored traffic exceeds the upper threshold storm constrain control block shutdown By default storm control is disabled 6 Optional Enable th...

Страница 31: ...Layer 2 Ethernet interface view interface interface type interface number N A 3 Set the MDIX mode of the Ethernet interface mdix mode automdix mdi mdix By default a copper Ethernet interface operates...

Страница 32: ...ampling interval display counters rate inbound outbound interface interface type interface number interface number subnumber Display the operational and status information of the specified interface o...

Страница 33: ...16 Task Command Clear the Ethernet statistics reset ethernet statistics...

Страница 34: ...te from the loopback interface to the peer is reachable by performing routing configuration All data packets sent to the loopback interface are considered packets sent to the device itself so the devi...

Страница 35: ...escription text The default setting is NULL0 Interface 4 Restore the default settings for the null interface default N A Configuring an inloopback interface An inloopback interface is a virtual interf...

Страница 36: ...19 Task Command Clear the statistics on the null interface reset counters interface null 0...

Страница 37: ...gate interface and its member interfaces can break up the aggregation No limit is set on the maximum number of interfaces in an interface range The more interfaces in an interface range the longer the...

Страница 38: ...e interface range to enter the interface range view 3 Optional Display commands available for the first interface in the interface range Enter a question mark at the interface range prompt N A 4 Use a...

Страница 39: ...if an entry is found The device adds an entry for MAC SOURCE and port A if no entry is found 3 When the device receives a frame destined for MAC SOURCE after learning this source MAC address the devic...

Страница 40: ...rts and it never ages out A multiport unicast entry has higher priority than a dynamically learned one A static blackhole or multiport unicast MAC address entry can overwrite a dynamic MAC address ent...

Страница 41: ...ou save the configuration A frame whose source MAC address matches different types of MAC address entries is differently processed Type Description Static MAC address entry Discards the frame received...

Страница 42: ...view interface bridge aggregation interface number Enter S channel interface view interface s channel interface number channel id Enter S channel aggregate interface view interface schannel aggregatio...

Страница 43: ...luster Figure 2 NLB cluster Do not configure an interface as the output interface of a multiport unicast MAC address entry if the interface receives frames destined for the multiport unicast MAC addre...

Страница 44: ...a large amount of frames with different source MAC addresses When MAC address learning is disabled the device immediately deletes the existing dynamic MAC address entries Disabling global MAC address...

Страница 45: ...asis To disable MAC address learning on a VLAN Step Command Remarks 1 Enter system view system view N A 2 Enable global MAC address learning mac address mac learning enable By default global MAC addre...

Страница 46: ...em view system view N A 2 Configure the aging timer for dynamic MAC address entries mac address timer aging seconds no aging By default the aging timer for dynamic MAC address entries is 300 seconds T...

Страница 47: ...rface with low priority is not allowed to learn MAC addresses already learned on a high priority interface The MAC learning priority mechanism can help defend your network against MAC address spoofing...

Страница 48: ...e 3 Device A and Device B form an IRF fabric enabled with MAC address synchronization Device A and Device B connect to AP C and AP D respectively When Client A associates with AP C Device A learns a M...

Страница 49: ...ace A to interface B and a MAC address move occurs If a MAC address is continuously moved between the two interfaces Layer 2 loops might occur To detect and locate loops you can view the MAC address m...

Страница 50: ...on interface A is changed to interface B when the following conditions exist Interface B receives a packet with the MAC address as the source MAC address Interface B belongs to the same VLAN as inter...

Страница 51: ...Enter Layer 2 Ethernet interface view interface interface type interface number Enter Layer 2 aggregate interface interface bridge aggregation interface number N A 6 Optional Enable MAC address move s...

Страница 52: ...mine the attributes of sending notifications After you disable SNMP notifications for the MAC address table the device will send log messages to the information center module You can set the output ru...

Страница 53: ...ics display mac address statistics Display the MAC address move records display mac address mac move slot slot number Figure 6 An example for the display mac address nickname command MAC address table...

Страница 54: ...seconds for dynamic MAC address entries Device mac address timer aging 500 Verifying the configuration Display the static MAC address entries for interface Ten GigabitEthernet 1 0 1 Device display mac...

Страница 55: ...ges for blackhole MAC addresses static MAC addresses multiport unicast MAC addresses multicast MAC addresses and local MAC addresses For more information about MAC authentication 802 1X and secure MAC...

Страница 56: ...can set the MAC change notification interval to a larger value To set the MAC change notification interval Step Command Remarks 1 Enter system view system view N A 2 Set the MAC change notification in...

Страница 57: ...m view Device info center enable Specify the log host 192 168 1 2 24 and specify local4 as the logging facility Device info center loghost 192 168 1 2 facility local4 Disable log output to the log hos...

Страница 58: ...g host which stores the logs to the specified file 3 Enable MAC Information on Device Enable MAC Information globally Device mac address information enable Configure the MAC Information mode as syslog...

Страница 59: ...c concepts Aggregation group member port and aggregate interface Link bundling is implemented through interface bundling An aggregation group is a group of Ethernet interfaces bundled together which a...

Страница 60: ...ports are assigned the same operational key Configuration types Every configuration setting on a port might affect its aggregation state Port configurations include the following types Attribute confi...

Страница 61: ...Dynamic aggregation mode The peering system automatically maintains the aggregation state of the member ports thus reducing the workload of administrators An aggregation group in static mode is called...

Страница 62: ...in Unselected state This prevents traffic interruption on the existing Selected ports Figure 9 Setting the aggregation state of a member port in a static aggregation group For more information about...

Страница 63: ...IRF Configuration Guide LACP operating modes LACP can operate in active mode or passive mode When LACP is operating in passive mode on a local member port and its peer port both ports cannot send LAC...

Страница 64: ...iate a reference port by using the following workflow 1 The systems compare their system IDs A system ID contains the system LACP priority and the system MAC address The lower the LACP priority the sm...

Страница 65: ...ink aggregation group preferably sets full duplex ports as the Selected ports The group will set only one half duplex port as a Selected port when either of the following conditions exist None of the...

Страница 66: ...device can receive LACPDUs from the server Then link aggregation between the device and the server operates correctly An edge aggregate interface takes effect only when it is configured on an aggrega...

Страница 67: ...gregation group Configuration guidelines When you configure an aggregation group follow these guidelines You cannot assign a port to a Layer 2 aggregation group if any of the following features are co...

Страница 68: ...ter Layer 2 aggregate interface view interface bridge aggregation interface number When you create a Layer 2 aggregate interface the system automatically creates a Layer 2 static aggregation group num...

Страница 69: ...he aggregation state of the ports in a dynamic aggregation group 3 Create a Layer 2 aggregate interface and enter Layer 2 aggregate interface view interface bridge aggregation interface number When yo...

Страница 70: ...ggregate interface and enter Layer 3 aggregate interface view interface route aggregation interface number When you create a Layer 3 aggregate interface the system automatically creates a Layer 3 stat...

Страница 71: ...formed on Layer 2 or Layer 3 Ethernet interfaces can also be performed on Layer 2 or Layer 3 aggregate interfaces Configuring the description of an aggregate interface You can configure the descriptio...

Страница 72: ...rface affects IP packets fragmentation and reassembly on the interface To change the MTU of a Layer 3 aggregate interface Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 3 aggre...

Страница 73: ...rs of Selected ports for an aggregation group Step Command Remarks 1 Enter system view system view N A 2 Enter aggregate interface view Enter Layer 2 aggregate interface view interface bridge aggregat...

Страница 74: ...terface Enabling BFD for an aggregation group This feature is available in Release 231 1P04 and later versions BFD for Ethernet link aggregation can monitor member link status in an aggregation group...

Страница 75: ...an aggregation group is configured with the loopback command when you shut down the aggregate interface Similarly a port configured with the loopback command cannot be assigned to an aggregate interfa...

Страница 76: ...ps and how to enable local first load sharing for link aggregation Setting load sharing modes for link aggregation groups You can set the global or group specific load sharing mode A link aggregation...

Страница 77: ...ally across member ports on the device rather than all member ports When you aggregate ports on different member devices in an IRF fabric you can use local first load sharing to reduce traffic on IRF...

Страница 78: ...Source MAC address Destination MAC address Source and destination IP addresses Source and destination MAC addresses To configure per flow load sharing algorithm settings for Ethernet link aggregation...

Страница 79: ...Command Display information for an aggregate interface or multiple aggregate interfaces display interface bridge aggregation route aggregation brief down display interface bridge aggregation route agg...

Страница 80: ...et 1 0 4 to VLAN 10 DeviceA system view DeviceA vlan 10 DeviceA vlan10 port ten gigabitethernet 1 0 4 DeviceA vlan10 quit Create VLAN 20 and assign port Ten GigabitEthernet 1 0 5 to VLAN 20 DeviceA vl...

Страница 81: ...aring Type Shar Loadsharing NonS Non Loadsharing Port Status S Selected U Unselected I Individual Flags A LACP_Activity B LACP_Timeout C Aggregation D Synchronization E Collecting F Distributing G Def...

Страница 82: ...dge Aggregation1 quit Assign ports Ten GigabitEthernet 1 0 1 through Ten GigabitEthernet 1 0 3 to link aggregation group 1 DeviceA interface ten gigabitethernet 1 0 1 DeviceA Ten GigabitEthernet1 0 1...

Страница 83: ...ID Flag XGE1 0 1 1 32768 1 0x8000 000f e267 57ad ACDEF XGE1 0 2 2 32768 1 0x8000 000f e267 57ad ACDEF XGE1 0 3 3 32768 1 0x8000 000f e267 57ad ACDEF The output shows that Link aggregation group 1 is a...

Страница 84: ...dge Aggregation1 link aggregation load sharing mode source mac DeviceA Bridge Aggregation1 quit Assign ports Ten GigabitEthernet 1 0 1 and Ten GigabitEthernet 1 0 2 to link aggregation group 1 DeviceA...

Страница 85: ...eviceA Bridge Aggregation2 port link type trunk DeviceA Bridge Aggregation2 port trunk permit vlan 20 DeviceA Bridge Aggregation2 quit 2 Configure Device B in the same way Device A is configured Detai...

Страница 86: ...ce so that both Ten GigabitEthernet 1 0 1 and Ten GigabitEthernet 1 0 2 can forward packets to improve link reliability Figure 15 Network diagram Configuration procedure Create Layer 2 aggregate inter...

Страница 87: ...Priority Oper Key SystemID Flag XGE1 0 1 0 32768 0 0x8000 0000 0000 0000 DEF XGE1 0 2 0 32768 0 0x8000 0000 0000 0000 DEF The output shows that Ten GigabitEthernet 1 0 1 and Ten GigabitEthernet 1 0 2...

Страница 88: ...hown Verifying the configuration Display detailed information about all aggregation groups on Device A DeviceA display link aggregation verbose Loadsharing Type Shar Loadsharing NonS Non Loadsharing P...

Страница 89: ...gigabitethernet 1 0 2 DeviceA Ten GigabitEthernet1 0 2 port link aggregation group 1 DeviceA Ten GigabitEthernet1 0 2 quit DeviceA interface ten gigabitethernet 1 0 3 DeviceA Ten GigabitEthernet1 0 3...

Страница 90: ...18 Network diagram Configuration procedure Create Layer 3 aggregate interface Route Aggregation 1 and set the link aggregation mode to dynamic Device system view Device interface route aggregation 1...

Страница 91: ...lted H Expired Aggregate Interface Route Aggregation1 Aggregation Mode Dynamic Loadsharing Type NonS System ID 0x8000 000f e267 6c6a Local Port Status Priority Oper Key Flag XGE1 0 1 I 32768 1 AG XGE1...

Страница 92: ...te interface view interface bridge aggregation interface number The configuration in Layer 2 Ethernet interface view applies only to the interface The configuration in Layer 2 aggregate interface view...

Страница 93: ...ew Device port isolate group 2 Assign Ten GigabitEthernet 1 0 1 Ten GigabitEthernet 1 0 2 and Ten GigabitEthernet 1 0 3 to isolation group 2 Device interface ten gigabitethernet 1 0 1 Device Ten Gigab...

Страница 94: ...Ten GigabitEthernet1 0 1 Ten GigabitEthernet1 0 2 Ten GigabitEthernet1 0 3 The output shows that interfaces Ten GigabitEthernet 1 0 1 Ten GigabitEthernet 1 0 2 and Ten GigabitEthernet 1 0 3 are assign...

Страница 95: ...ages as its protocol packets This chapter uses BPDUs to represent all types of spanning tree protocol packets STP enabled network devices exchange BPDUs to establish a spanning tree BPDUs contain suff...

Страница 96: ...s no root port Designated bridge and designated port Classification Designated bridge Designated port For a device Device directly connected with the local device and responsible for forwarding BPDUs...

Страница 97: ...5 describes how the optimum configuration BPDU is selected 2 Based on the configuration BPDU and the path cost of the root port the device calculates a designated port configuration BPDU for each of t...

Страница 98: ...their root path costs are compared For example the root path cost in a configuration BPDU plus the path cost of a receiving port is S The configuration BPDU with the smallest S value has the highest...

Страница 99: ...process Configuration BPDU on ports after comparison Device A Port A1 performs the following actions 1 Receives the configuration BPDU of Port B1 1 0 1 Port B1 2 Determines that its existing configur...

Страница 100: ...tion BPDU and path cost of the root port Device B calculates a designated port configuration BPDU for Port B2 0 5 1 Port B2 Device B compares it with the existing configuration BPDU of Port B2 1 0 1 P...

Страница 101: ...ves a periodic configuration BPDU 0 0 0 Port A2 from Port A2 2 Determines that it is the same as the existing configuration BPDU 3 Discards the received one Port C1 0 0 0 Port A2 Port C2 0 5 1 Port B2...

Страница 102: ...to timeout The device generates a configuration BPDU with itself as the root and sends the BPDUs and TCN BPDUs This triggers a new spanning tree calculation process to establish a new path to restore...

Страница 103: ...n an STP or RSTP enabled LAN all bridges share one spanning tree Traffic from all VLANs is forwarded along the spanning tree and ports cannot be blocked on a per VLAN basis to prune loops PVST allows...

Страница 104: ...better load sharing mechanism for redundant links MSTP provides the following features MSTP divides a switched network into multiple regions each of which contains multiple spanning trees that are in...

Страница 105: ...d the network segments among them All these devices have the following characteristics A spanning tree protocol enabled Same region name MST region 1 MST region 2 MST region 3 MST region 4 VLAN 1 MSTI...

Страница 106: ...to MSTI 2 Other VLANs to MSTI 0 MSTP achieves load balancing by means of the VLAN to instance mapping table CST The common spanning tree CST is a single spanning tree that connects all MST regions in...

Страница 107: ...ectly connects to a host Figure 25 Port roles MSTP calculation involves the following port roles Root port Forwards data for a non root bridge to the root bridge The root bridge does not have any root...

Страница 108: ...sively associated with a port role Table 8 lists the port states that each port role supports A check mark indicates that the port supports this state while a dash indicates that the port does not sup...

Страница 109: ...iction TC BPDU transmission restriction Protocols and standards MSTP is documented in the following protocols and standards IEEE 802 1d Media Access Control MAC Bridges IEEE 802 1w Part 3 Media Access...

Страница 110: ...member ports The spanning tree protocol enable state and forwarding state of each selected member port is consistent with those of the corresponding Layer 2 aggregate interface The member ports of an...

Страница 111: ...Optional Configuring the port link type Optional Enabling outputting port state transition information Required Enabling the spanning tree feature Configuring the leaf nodes Required Setting the span...

Страница 112: ...iguring the port link type Optional Enabling outputting port state transition information Required Enabling the spanning tree feature Configuring the leaf nodes Required Setting the spanning tree mode...

Страница 113: ...ning tree feature Configuring the leaf nodes Required Setting the spanning tree mode Required Configuring an MST region Optional Configuring the device priority Optional Setting the timeout factor Opt...

Страница 114: ...ype of a port On an access port the PVST mode is compatible with other spanning tree modes in all VLANs On a trunk port or hybrid port the PVST mode is compatible with other spanning tree modes only i...

Страница 115: ...fault all VLANs in an MST region are mapped to the CIST or MSTI 0 5 Configure the MSTP revision level of the MST region revision level level The default setting is 0 6 Optional Display the MST region...

Страница 116: ...function as the root bridge Configuring the current device as a secondary root bridge of a specific spanning tree Step Command Remarks 1 Enter system view system view N A 2 Configure the current devi...

Страница 117: ...the MST region is limited Make this configuration only on the root bridge All other devices in the MST region use the maximum hop value set for the root bridge You can configure the maximum hops of a...

Страница 118: ...no configuration BPDUs within the timeout period it recalculates the spanning tree The formula for calculating the timeout period is timeout period timeout factor 3 hello time Max age In the CIST of...

Страница 119: ...forward delay timer In STP RSTP MSTP mode stp timer forward delay time In PVST mode stp vlan vlan id list timer forward delay time The default setting is 15 seconds 3 Set the hello timer In STP RSTP...

Страница 120: ...w N A 2 Enter Layer 2 Ethernet or aggregate interface view interface interface type interface number N A 3 Configure the BPDU transmission rate of the ports stp transmit limit limit The default settin...

Страница 121: ...The device supports the following standards dot1d 1998 The device calculates the default path cost for ports based on IEEE 802 1d 1998 dot1t The device calculates the default path cost for ports based...

Страница 122: ...0 Mbps Single port 100 2000000 2000 Aggregate interface containing two Selected ports 1000000 1800 Aggregate interface containing three Selected ports 666666 1600 Aggregate interface containing four S...

Страница 123: ...ports 500 1 Aggregate interface containing three Selected ports 333 1 Aggregate interface containing four Selected ports 250 1 40 Gbps Single port 1 500 1 Aggregate interface containing two Selected...

Страница 124: ...Cost of every port will be reset and automatically re calculated after you change the current pathcost standard Continue Y N y Cost of every port has been re calculated Sysname interface ten gigabite...

Страница 125: ...ly connects two devices If two root ports or designated ports are connected over a point to point link they can rapidly transit to the forwarding state after a proposal agreement handshake process Con...

Страница 126: ...ort to send 802 1s MSTP packets shut down and then bring up the port When the number of existing MSTIs exceeds 48 the port can send only 802 1s MSTP packets To configure the MSTP packet format to be s...

Страница 127: ...e spanning tree feature is disabled globally by default If the device starts up with the factory defaults the spanning tree feature is enabled globally by default For more information about the startu...

Страница 128: ...A runs STP Device B does not run any spanning tree protocol and Device C runs RSTP PVST or MSTP In this case when Device C receives an STP BPDU transparently transmitted by Device B the receiving por...

Страница 129: ...delines When you configure Digest Snooping follow these guidelines Before you enable Digest Snooping make sure associated devices of different vendors are connected and run spanning tree protocols Wit...

Страница 130: ...g digest snooping By default Digest Snooping is disabled globally Digest Snooping configuration example Network requirements As shown in Figure 26 Device A and Device B connect to Device C which is a...

Страница 131: ...the following types of messages are used for rapid state transition on designated ports Proposal Sent by designated ports to request rapid transition Agreement Used to acknowledge rapid transition re...

Страница 132: ...ard delay To enable the designated port of the upstream device to transit its state rapidly enable No Agreement Check on the downstream device s port Configuration prerequisites Before you configure t...

Страница 133: ...abitethernet 1 0 1 DeviceA Ten GigabitEthernet1 0 1 stp no agreement check Configuring TC Snooping As shown in Figure 30 Device A and Device B form an IRF fabric The spanning tree feature is disabled...

Страница 134: ...g follow these restrictions and guidelines TC Snooping and the spanning tree feature are mutually exclusive You must globally disable the spanning tree feature before enabling TC Snooping TC Snooping...

Страница 135: ...on a device with BPDU guard enabled the device performs the following actions Shuts down these ports Notifies the NMS that these ports have been shut down by the spanning tree protocol The device reac...

Страница 136: ...ot protection By default root guard is disabled Enabling loop guard By continuing to receive BPDUs from the upstream device a device can maintain the state of the root port and blocked ports However l...

Страница 137: ...Enable port role restriction stp role restriction By default port role restriction is disabled Configuring TC BPDU transmission restriction CAUTION Enabling TC BPDU transmission restriction on a port...

Страница 138: ...DU guard is enabled H3C recommends not disabling this feature 3 Optional Configure the maximum number of forwarding address entry flushes that the device can perform every 10 seconds stp tc protection...

Страница 139: ...p instance instance list vlan vlan id list interface interface list slot slot number brief Display the MST region configuration information that has taken effect display stp region configuration Displ...

Страница 140: ...viceA mst region region name example Map VLAN 10 VLAN 30 and VLAN 40 to MSTI 1 MSTI 3 and MSTI 4 respectively DeviceA mst region instance 1 vlan 10 DeviceA mst region instance 3 vlan 30 DeviceA mst re...

Страница 141: ...me example map VLAN 10 VLAN 30 and VLAN 40 to MSTI 1 MSTI 3 and MSTI 4 respectively DeviceC mst region instance 1 vlan 10 DeviceC mst region instance 3 vlan 30 DeviceC mst region instance 4 vlan 40 Co...

Страница 142: ...NONE 3 Ten GigabitEthernet1 0 3 ROOT FORWARDING NONE Display brief spanning tree information on Device B DeviceB display stp brief MST ID Port Role STP State Protection 0 Ten GigabitEthernet1 0 1 DESI...

Страница 143: ...Device A and Device B work at the distribution layer Device C and Device D work at the access layer Configure PVST to meet the following requirements Packets of a VLAN are forwarded along the spannin...

Страница 144: ...the spanning tree feature globally and in VLAN 10 VLAN 20 and VLAN 30 DeviceA stp global enable DeviceA stp vlan 10 20 30 enable 3 Configure Device B Set the spanning tree mode to PVST DeviceB system...

Страница 145: ...NONE 20 Ten GigabitEthernet1 0 2 DESI FORWARDING NONE 20 Ten GigabitEthernet1 0 3 DESI FORWARDING NONE 30 Ten GigabitEthernet1 0 2 DESI FORWARDING NONE 30 Ten GigabitEthernet1 0 3 ROOT FORWARDING NON...

Страница 146: ...en GigabitEthernet1 0 2 ROOT FORWARDING NONE 20 Ten GigabitEthernet1 0 3 ALTE DISCARDING NONE 30 Ten GigabitEthernet1 0 1 ROOT FORWARDING NONE 30 Ten GigabitEthernet1 0 2 ALTE DISCARDING NONE 40 Ten G...

Страница 147: ...at the port is on a looped link Loop detection usually works within a VLAN If a detection frame is returned with a VLAN tag different from the one it was sent out with an inter VLAN loop has occurred...

Страница 148: ...nding port Optional Sub Slot ID Sub slot ID of the sending port Optional Loop detection uses the following important concepts Loop detection interval Loop detection is a continuous process as the netw...

Страница 149: ...p Loop detection configuration task list Tasks at a glance Required Enabling loop detection Optional Configuring the loop protection action Optional Setting the loop detection interval Enabling loop d...

Страница 150: ...w N A 2 Configure the global loop protection action loopback detection global action shutdown By default the switch generates a log but performs no action on the port on which a loop is detected Confi...

Страница 151: ...detection speed when you set the loop detection interval To set the loop detection interval Step Command Remarks 1 Enter system view system view N A 2 Set the loop detection interval loopback detectio...

Страница 152: ...e trunk DeviceA Ten GigabitEthernet1 0 1 port trunk permit vlan 100 DeviceA Ten GigabitEthernet1 0 1 quit DeviceA interface ten gigabitethernet 1 0 2 DeviceA Ten GigabitEthernet1 0 2 port link type tr...

Страница 153: ...DeviceC Ten GigabitEthernet1 0 2 port link type trunk DeviceC Ten GigabitEthernet1 0 2 port trunk permit vlan 100 DeviceC Ten GigabitEthernet1 0 2 quit Verifying the configuration After the configura...

Страница 154: ...Display the status of Ten GigabitEthernet 1 0 1 on Device A DeviceA display interface ten gigabitethernet 1 0 1 Ten GigabitEthernet1 0 1 current state DOWN Loop detection down Display the status of Te...

Страница 155: ...mains as shown in Figure 38 Figure 38 A VLAN diagram A VLAN is logically divided on an organizational basis rather than on a physical basis For example you can assign all workstations and servers used...

Страница 156: ...r configurable A network device handles an incoming frame depending on whether the frame is VLAN tagged and the value of the VLAN tag For more information see Introduction to port based VLAN Ethernet...

Страница 157: ...Before you create a VLAN interface for a VLAN create the VLAN first You cannot create a VLAN interface for a sub VLAN For more information about sub VLANs see Configuring super VLANs You cannot create...

Страница 158: ...vice that does not support VLAN packets or is used in scenarios that do not distinguish VLANs Trunk A trunk port can forward packets from multiple VLANs Except packets from the port VLAN ID PVID packe...

Страница 159: ...if its VLAN is permitted on the port Drops the frame if its VLAN is not permitted on the port In the outbound direction Removes the VLAN tag and sends the frame Removes the tag and sends the frame if...

Страница 160: ...stops applying the configuration to aggregation member ports The configuration made in S channel interface view or S channel aggregate interface view applies only to the interface For more information...

Страница 161: ...S channel interface view or S channel aggregate interface view applies only to the interface For more information about S channel interfaces see EVB Configuration Guide 3 Configure the link type of t...

Страница 162: ...nel aggregate interface view applies only to the interface For more information about S channel interfaces see EVB Configuration Guide 3 Configure the link type of the port as hybrid port link type hy...

Страница 163: ...apply only to the port The configurations made in Layer 2 aggregate interface view apply to the aggregate interface and its aggregation member ports If the system fails to apply the configurations to...

Страница 164: ...e protocol type and encapsulation format in the packet matches a protocol template the packet is tagged with the VLAN tag specific to the protocol template If no protocol template is matched the packe...

Страница 165: ...is access 8 Associate the hybrid port with the specified protocol based VLAN port hybrid protocol vlan vlan vlan id protocol index to protocol end all By default a port is not associated with any pro...

Страница 166: ...A vlan100 port ten gigabitethernet 1 0 1 DeviceA vlan100 quit Create VLAN 200 and assign port Ten GigabitEthernet 1 0 2 to VLAN 200 DeviceA vlan 200 DeviceA vlan200 port ten gigabitethernet 1 0 2 Devi...

Страница 167: ...d Description VLAN 0100 Name VLAN 0100 Tagged ports Ten GigabitEthernet1 0 3 Untagged ports Ten GigabitEthernet1 0 1 DeviceA Ten GigabitEthernet1 0 3 display vlan 200 VLAN ID 200 VLAN type Static Rout...

Страница 168: ...through DeviceC interface ten gigabitethernet 1 0 11 DeviceC Ten GigabitEthernet1 0 11 port link type hybrid DeviceC Ten GigabitEthernet1 0 11 port hybrid vlan 100 tagged DeviceC Ten GigabitEthernet1...

Страница 169: ...index IP address Subnet mask 0 192 168 5 0 255 255 255 0 VLAN ID 200 Subnet index IP address Subnet mask 0 192 168 50 0 255 255 255 0 Display IP subnet based VLANs on Ten GigabitEthernet 1 0 1 Device...

Страница 170: ...ol VLAN for IPv6 Assign Ten GigabitEthernet 1 0 12 to VLAN 200 Device vlan200 port ten gigabitethernet 1 0 12 Configure VLAN 200 as a protocol based VLAN and create an IPv6 protocol template with the...

Страница 171: ...tEthernet 1 0 2 with the IPv4 and ARP protocol templates of VLAN 100 and the IPv6 protocol template of VLAN 200 The protocol indexes for IPv4 ARP and IPv6 protocol templates are 1 2 and 1 respectively...

Страница 172: ...Interface Ten GigabitEthernet1 0 1 VLAN ID Protocol index Protocol type Status 100 1 IPv4 Active 100 2 Ethernet II Etype 0x0806 Active 200 1 IPv6 Active Interface Ten GigabitEthernet 1 0 2 VLAN ID Pro...

Страница 173: ...or ND on the super VLAN interface as follows In an IPv4 network enable local proxy ARP on the super VLAN interface The super VLAN can then forward and process ARP requests and replies In an IPv6 netwo...

Страница 174: ...em view N A 2 Create a VLAN interface and enter its view interface vlan interface vlan interface id The vlan interface id argument must be the super VLAN ID 3 Configure an IP address for the VLAN inte...

Страница 175: ...rnet 1 0 1 and Ten GigabitEthernet 1 0 2 to VLAN 2 Ten GigabitEthernet 1 0 3 and Ten GigabitEthernet 1 0 4 to VLAN 3 and Ten GigabitEthernet 1 0 5 and Ten GigabitEthernet 1 0 6 to VLAN 5 The sub VLANs...

Страница 176: ...t 1 0 6 Sysname vlan5 quit Configure VLAN 10 as a super VLAN and associate sub VLANs VLAN 2 VLAN 3 and VLAN 5 with the super VLAN Sysname vlan 10 Sysname vlan10 supervlan Sysname vlan10 subvlan 2 3 5...

Страница 177: ...255 255 255 0 Description VLAN 0003 Name VLAN 0003 Tagged ports none Untagged ports Ten GigabitEthernet1 0 3 Ten GigabitEthernet1 0 4 VLAN ID 5 VLAN type static It is a sub VLAN Route interface Confi...

Страница 178: ...in Figure 38 the private VLAN feature is enabled on Device B VLAN 10 is the primary VLAN VLAN 2 VLAN 5 and VLAN 8 are secondary VLANs associated with VLAN 10 and are invisible to Device A Figure 44 Pr...

Страница 179: ...ines After you complete the private VLAN configurations perform the following tasks For a port operating in promiscuous mode make sure the following requirements are met The primary VLAN is the PVID o...

Страница 180: ...in promiscuous mode in the specified VLAN port private vlan vlan id promiscuous Configure the uplink port to operate in trunk promiscuous mode in the specified VLANs port private vlan vlan id list tru...

Страница 181: ...uit N A 19 Optional Configure Layer 3 communication between the specified secondary VLANs a Enter VLAN interface view of the primary VLAN interface interface vlan interface vlan id b Enable Layer 3 co...

Страница 182: ...VLAN 2 contains member port Ten GigabitEthernet 1 0 2 and VLAN 3 contains member port Ten GigabitEthernet 1 0 1 On Device C VLAN 6 is a primary VLAN which contains uplink port Ten GigabitEthernet 1 0...

Страница 183: ...2 quit Associate the secondary VLANs 2 and 3 with the primary VLAN 5 DeviceB vlan 5 DeviceB vlan5 private vlan secondary 2 to 3 DeviceB vlan5 quit 2 Configure Device C Configure VLAN 6 as a primary VL...

Страница 184: ...e interface Not configured Description VLAN 0005 Name VLAN 0005 Tagged ports None Untagged ports Ten GigabitEthernet1 0 1 Ten GigabitEthernet1 0 2 Ten GigabitEthernet1 0 5 VLAN ID 2 VLAN type Static P...

Страница 185: ...ry VLAN 5 On Device B the downlink port Ten GigabitEthernet 1 0 6 permits secondary VLAN 6 and the downlink port Ten GigabitEthernet 1 0 8 permits secondary VLAN 8 Secondary VLANs 6 and 8 are associat...

Страница 186: ...et1 0 3 port private vlan host DeviceB Ten GigabitEthernet1 0 3 quit Associate the secondary VLANs 2 and 3 with the primary VLAN 5 DeviceB vlan 5 DeviceB vlan5 private vlan secondary 2 to 3 DeviceB vl...

Страница 187: ...lan 5 Primary VLAN ID 5 Secondary VLAN ID 2 3 VLAN ID 5 VLAN type Static Private VLAN type Primary Route interface Not configured Description VLAN 0005 Name VLAN 0005 Tagged ports Ten GigabitEthernet1...

Страница 188: ...and VLAN 21 to pass through tagged The downlink port Ten GigabitEthernet 1 0 1 permits VLAN 22 The downlink port Ten GigabitEthernet 1 0 3 permits VLAN 12 Secondary VLANs 1 1 and 12 are associated wit...

Страница 189: ...it Assign the downlink port Ten GigabitEthernet 1 0 3 to VLAN 12 and configure the port to operate in host mode DeviceA interface ten gigabitethernet 1 0 3 DeviceA Ten GigabitEthernet1 0 3 port access...

Страница 190: ...tagged DeviceC interface ten gigabitethernet 1 0 5 DeviceC Ten GigabitEthernet1 0 5 port link type hybrid DeviceC Ten GigabitEthernet1 0 5 port hybrid vlan 10 20 tagged DeviceC Ten GigabitEthernet1 0...

Страница 191: ...erface Not configured Description VLAN 0020 Name VLAN 0020 Tagged ports Ten GigabitEthernet1 0 2 Ten GigabitEthernet1 0 5 Untagged ports Ten GigabitEthernet1 0 1 VLAN ID 21 VLAN type Static Private vl...

Страница 192: ...VLANs to be isolated at Layer 2 but interoperable at Layer 3 Figure 48 Network diagram Configuration procedure Create VLAN 2 and VLAN 3 DeviceB system view DeviceB vlan 2 to 3 Configure VLAN 10 as a p...

Страница 193: ...terface10 private vlan secondary 2 3 Assign the IP address 192 168 1 1 24 to VLAN interface 10 DeviceB Vlan interface10 ip address 192 168 1 1 255 255 255 0 Enable local proxy ARP DeviceB Vlan interfa...

Страница 194: ...type Secondary Route interface Configured IPv4 address 192 168 1 1 IPv4 subnet mask 255 255 255 0 Description VLAN 0003 Name VLAN 0003 Tagged ports None Untagged ports Ten GigabitEthernet1 0 1 Ten Gi...

Страница 195: ...ant Similarly a port that participates in an MVRP application is called an MVRP participant As shown in Figure 49 an MRP participant registers and deregisters its attribute values on other MRP partici...

Страница 196: ...to the peer participant to declare the topology change Upon receiving a New message from the peer participant an MRP participant registers the attributes in the message and propagates the New message...

Страница 197: ...eregistration of attributes Upon receiving a Leave message MRP starts the Leave timer If it receives a Join message for the attributes in the Leave message before the Leave timer expires MRP does not...

Страница 198: ...restrictions and guidelines When you configure MVRP follow these restrictions and guidelines MVRP can work with STP RSTP or MSTP but not other link layer topology protocols that include service loopb...

Страница 199: ...ort and globally 3 Enter Layer 2 Ethernet interface view or Layer 2 aggregate interface view interface interface type interface number N A 4 Configure the port as a trunk port port link type trunk By...

Страница 200: ...view interface interface type interface number N A 3 Configure the LeaveAll timer mrp timer leaveall timer value Optional The default setting is 1000 centiseconds 4 Configure the Join timer mrp timer...

Страница 201: ...h GVRP compatibility enabled works with MSTP the network might operate incorrectly Disable the Period timer when you enable GVRP compatibility for MVRP Otherwise the VLAN status might frequently chang...

Страница 202: ...A Device B Device C and Device D can register and deregister dynamic VLANs and keep identical VLAN configuration for each MSTI When the network is stable set the MVRP registration mode to fixed on the...

Страница 203: ...eA Ten GigabitEthernet1 0 1 mvrp enable DeviceA Ten GigabitEthernet1 0 1 quit Configure port Ten GigabitEthernet 1 0 2 as a trunk port and configure it to permit VLAN 40 DeviceA interface ten gigabite...

Страница 204: ...able DeviceB Ten GigabitEthernet1 0 1 quit Configure port Ten GigabitEthernet 1 0 2 as a trunk port and configure it to permit all VLANs DeviceB interface ten gigabitethernet 1 0 2 DeviceB Ten Gigabit...

Страница 205: ...net1 0 1 mvrp enable DeviceC Ten GigabitEthernet1 0 1 quit Configure port Ten GigabitEthernet 1 0 2 as a trunk port and configure it to permit all VLANs DeviceC interface ten gigabitethernet 1 0 2 Dev...

Страница 206: ...net 1 0 2 DeviceD Ten GigabitEthernet1 0 2 mvrp enable DeviceD Ten GigabitEthernet1 0 2 quit Verifying the configuration 1 Verify the normal registration mode configuration Use the display mvrp runnin...

Страница 207: ...tEthernet 1 0 1 has registered VLAN 1 declared VLAN 1 VLAN 10 and VLAN 20 and propagated VLAN 1 through MVRP Port Ten GigabitEthernet 1 0 2 has declared VLAN 1 and registered and propagated no VLANs P...

Страница 208: ...mer 1000 centiseconds Registration Type Normal Registered VLANs 1 default 10 Declared VLANs 20 Propagated VLANs 10 The output shows that the following events have occurred Port Ten GigabitEthernet 1 0...

Страница 209: ...d VLANs 1 default 20 The output shows that the following events have occurred Port Ten GigabitEthernet 1 0 1 has registered VLAN 1 VLAN 10 and VLAN 20 declared VLAN 1 and propagated VLAN 1 and VLAN 10...

Страница 210: ...e and verify the configuration Set the MVRP registration mode to fixed on Ten GigabitEthernet 1 0 3 of Device B so that the dynamic VLANs that Device B has registered will not be deregistered Set the...

Страница 211: ...tus interface ten gigabitethernet 1 0 3 MVRP Global Info Global Status Enabled Compliance GVRP False Ten GigabitEthernet1 0 3 Config Status Enabled Running Status Enabled Join Timer 20 centiseconds Le...

Страница 212: ...rs to keep their VLAN assignment schemes unchanged when the service provider changes its VLAN assignment scheme Allows different customers to use overlapping CVLAN IDs Devices in the service provider...

Страница 213: ...he frame does not have any 802 1Q tag it becomes a frame tagged with the PVID QinQ provides the most basic VLAN manipulation method which tags all incoming frames tagged or untagged with the PVID tag...

Страница 214: ...de ports of PEs A QinQ enabled port tags an incoming frame with its PVID To enable QinQ Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Ethernet interface view or Layer 2 aggr...

Страница 215: ...ID setting is the same across all devices so 802 1Q tagged frames can be identified correctly TPID settings include CVLAN TPID and SVLAN TPID A QinQ enabled port uses the CLAN TPID to match incoming t...

Страница 216: ...not configure both features on a port To configure the SVLAN TPID on a service provider side port Step Command Remarks 1 Enter system view system view N A 2 Enter Ethernet interface view or aggregate...

Страница 217: ...t Match 802 1p priority if match customer dot1p dot1p value 1 8 Use either command 4 Return to system view quit N A 5 Create a traffic behavior and enter traffic behavior view traffic behavior behavio...

Страница 218: ...ning QinQ Execute the display command in any view Task Command Display QinQ enabled ports display qinq interface interface type interface number QinQ configuration example Network requirements As show...

Страница 219: ...igure the port as a trunk port and assign it to VLANs 100 and 200 PE1 interface ten gigabitethernet 1 0 2 PE1 Ten GigabitEthernet1 0 2 port link type trunk PE1 Ten GigabitEthernet1 0 2 port trunk perm...

Страница 220: ...ssign it to VLANs 100 and 200 PE2 interface ten gigabitethernet 1 0 2 PE2 Ten GigabitEthernet1 0 2 port link type trunk PE2 Ten GigabitEthernet1 0 2 port trunk permit vlan 100 200 Set the TPID value i...

Страница 221: ...edure Configuring PE 1 1 Configure Ten GigabitEthernet 1 0 1 Configure the port as a trunk port and assign it to VLANs 10 through 50 100 and 3000 PE1 system view PE1 interface ten gigabitethernet 1 0...

Страница 222: ...N 100 as the PVID of the port PE1 Ten GigabitEthernet1 0 1 port trunk pvid vlan 100 Enable QinQ on the port PE2 Ten GigabitEthernet1 0 1 qinq enable Configure the port to transparently transmit frames...

Страница 223: ...multiple VLAN tags with the same VLAN tag One to two VLAN mapping Tags single tagged packets with an outer VLAN tag Two to two VLAN mapping Replaces the SVLAN ID CVLAN ID or both IDs for an incoming...

Страница 224: ...stomer configure one to one VLAN mapping on the wiring closet switches This feature assigns a separate VLAN to each type of traffic from each customer The required total number of VLANs in the network...

Страница 225: ...es SVLAN tag 10 with SVLAN tag 20 Replaces CVLAN tag 2 with CVLAN tag 3 One to two VLAN mapping provides the following benefits Enables a VPN user to plan the VLAN IDs in the network without conflicti...

Страница 226: ...apping In Figure 59 many to one VLAN mapping is implemented on both the customer side and network side ports as follows For the uplink traffic the customer side many to one VLAN mapping replaces multi...

Страница 227: ...emove the SVLAN tag from the downlink traffic Configure the customer side port as a hybrid port and assign the port to the SVLAN as an untagged member Configure the customer side port as a trunk port...

Страница 228: ...one to one or many to one VLAN mapping the switch tags the packet with the PVID For more information about QinQ see Configuring QinQ To add or replace VLAN tags for packets you can configure both VLAN...

Страница 229: ...ifferent homes Before configuring one to one VLAN mapping create the original VLAN and the translated VLAN To configure one to one VLAN mapping Step Command Remarks 1 Enter system view system view N A...

Страница 230: ...ng from the service provider network to the customer network do not configure many to one VLAN mapping together with uRPF For more information about uRPF see Security Configuration Guide Customer side...

Страница 231: ...anslated VLANs port trunk permit vlan vlan id list port hybrid vlan vlan id list tagged By default A trunk port allows only packets from VLAN 1 to pass through A hybrid port is an untagged member of t...

Страница 232: ...any to one mapping to replace the VLAN tags of the packets destinated to the user network vlan mapping nni By default the port does not replace the VLAN tags of the packets destinated to the user netw...

Страница 233: ...Enabling ARP detection 2 Required Configuring the customer side port 3 Required Configuring the network side port Enabling ARP snooping Enable ARP snooping for all involved VLANs including the origin...

Страница 234: ...N A 3 Set the link type of the port Configure the port as a trunk port port link type trunk Configure the port as a hybrid port port link type hybrid By default the link type of a port is access 4 Ass...

Страница 235: ...port is an untagged member of the VLAN to which the port belongs when its link type is access 5 Assign the port to the SVLANs as an untagged member port hybrid vlan vlan id list untagged By default a...

Страница 236: ...rt trunk permit vlan vlan id list port hybrid vlan vlan id list tagged By default A trunk port allows only packets from VLAN 1 to pass through A hybrid port is an untagged member of the VLAN to which...

Страница 237: ...each type of traffic from each household To save VLAN resources configure many to one VLAN mappings on the campus switch Switch C to transmit the same type of traffic from different households in one...

Страница 238: ...3 Create the translated VLANs SwitchA vlan 101 to 102 SwitchA vlan 201 to 202 SwitchA vlan 301 to 302 Configure the customer side port Ten GigabitEthernet 1 0 1 as a trunk port and assign the port to...

Страница 239: ...02 SwitchA Ten GigabitEthernet1 0 2 vlan mapping 3 translated vlan 302 SwitchA Ten GigabitEthernet1 0 2 quit Configure the network side port Ten GigabitEthernet 1 0 3 as a trunk port and assign the po...

Страница 240: ...rnet1 0 1 vlan mapping uni range 201 to 202 translated vlan 502 SwitchC Ten GigabitEthernet1 0 1 vlan mapping uni range 301 to 302 translated vlan 503 Enable DHCP snooping entry recording on Ten Gigab...

Страница 241: ...a trunk port and assign the port to the translated VLANs 501 through 503 SwitchD interface ten gigabitethernet 1 0 1 SwitchD Ten GigabitEthernet1 0 1 port link type trunk SwitchD Ten GigabitEthernet1...

Страница 242: ...ffic from VLAN 5 PE1 system view PE1 interface ten gigabitethernet 1 0 1 PE1 Ten GigabitEthernet1 0 1 vlan mapping nest single 5 nested vlan 100 Configure Ten GigabitEthernet 1 0 1 as a hybrid port As...

Страница 243: ...5 to SVLAN 200 and CVLAN PE3 Ten GigabitEthernet1 0 1 vlan mapping tunnel 100 5 translated vlan 200 6 PE3 Ten GigabitEthernet1 0 1 quit Configure Ten GigabitEthernet 1 0 2 as a trunk port and assign t...

Страница 244: ...1 0 1 Outer VLAN Inner VLAN Translated Outer VLAN Translated Inner VLAN 5 N A 100 5 Verify the VLAN mappings on PE 3 PE3 display vlan mapping Interface Ten GigabitEthernet1 0 1 Outer VLAN Inner VLAN T...

Страница 245: ...es backbone edge bridges and backbone core bridges Backbone edge bridges connect customer sites or provider bridge networks to the PBB network They encapsulate the customer MAC in the service provider...

Страница 246: ...ss BEB encapsulates them in MAC in MAC format In the outer frame header the source MAC address is a B MAC of the ingress BEB and the destination MAC is a B MAC of the egress BEB All devices in the PBB...

Страница 247: ...y information of the frame within the PBBN The TPID in a B Tag is 0x8100 I Tag Backbone service instance tag Service identifier of a PBB frame The I Tag contains the following fields TPID The TPID in...

Страница 248: ...rt to the customer network Protocols and standards IEEE 802 1ah Virtual Bridged Local Area Networks Amendment 7 Provider Backbone Bridges Feature and hardware compatibility PBB is not available on S58...

Страница 249: ...an configure one PBB I SID and one SPB I SID for a VSI but the two I SIDs cannot be the same For more information about SPB see SPB Configuration Guide To create a PBB VSI Step Command Remarks 1 Enter...

Страница 250: ...VSI specify a PBB I SID for the PBB VSI and enter PBB VSI view pbb i sid i sid N A 4 Specify a B VLAN for the PBB VSI bvlan vlan id By default no B VLAN is specified for a PBB VSI Configuring an uplin...

Страница 251: ...d By default no service instances exist on a port For the service instance to operate correctly do not execute this command on an EVB enabled interface For information about EVB see EVB Configuration...

Страница 252: ...Ns 100 through 120 Device A and Device B send tagged frames to the BEBs Configure PBB on the BEBs to extend the VLANs across the two customer networks Figure 67 Network diagram Configuration procedure...

Страница 253: ...nce 1 on Ten GigabitEthernet 1 0 2 BEB1 Ten GigabitEthernet1 0 2 service instance 1 Configure the service instance to match all 802 1q tagged frames Associate the service instance with the PBB VSI and...

Страница 254: ...the undo shutdown command to bring the VSI up For more information about the display l2vpn vsi verbose command see MPLS Command Reference 2 Use the display l2vpn vsi verbose command to verify that th...

Страница 255: ...ore information about MIBs see Network Management and Monitoring Configuration Guide LLDP enables a network management system to quickly detect and identify Layer 2 network topology changes Basic conc...

Страница 256: ...The destination MAC address is fixed to one of the following multicast MAC addresses 0x0180 C200 000E for LLDP frames destined for nearest bridge agents 0x0180 C200 0000 for LLDP frames destined for...

Страница 257: ...sed to determine the validity of the received Ethernet frame LLDPDUs LLDP uses LLDPDUs to exchange information An LLDPDU includes multiple TLVs Each TLV carries a type of device information as shown i...

Страница 258: ...ending device System Capabilities Identifies the primary functions of the sending device and the enabled primary functions Management Address Specifies the following elements The management address of...

Страница 259: ...nabled Whether pair selection can be controlled Maximum Frame Size Indicates the supported maximum frame size It is now the MTU of the port Power Stateful Control Indicates the power state control con...

Страница 260: ...n the context of location based applications NOTE If the MAC PHY configuration status TLV is not advertisable none of the LLDP MED TLVs will be advertised even if they are advertisable If the LLDP MED...

Страница 261: ...f TLVs carried in every received LLDP frame If the TLVs are valid the LLDP agent saves the information and starts an aging timer When the TTL value in the Time To Live TLV carried in the LLDP frame be...

Страница 262: ...le LLDP Step Command Remarks 1 Enter system view system view N A 2 Enable LLDP globally lldp global enable By default If the switch starts up with empty configuration LLDP is disabled globally initial...

Страница 263: ...ting the LLDP operating mode Step Command Remarks 1 Enter system view system view N A 2 Enter Layer 2 Layer 3 Ethernet interface view management Ethernet interface view or Layer 2 Layer 3 aggregate in...

Страница 264: ...ges When the device detects a configuration change it sends LLDP frames to inform neighboring devices of the change To enable LLDP polling Step Command Remarks 1 Enter system view system view N A 2 En...

Страница 265: ...ridge agents can advertise all types of LLDP TLVs except the DCBX TLV location identification TLV port and protocol VLAN ID TLVs VLAN name TLVs and management VLAN ID TLVs Nearest non TPMR bridge agen...

Страница 266: ...tisable TLVs in Layer 3 aggregate interface view lldp agent nearest nontpmr nearest customer tlv enable basic tlv all management address tlv ip address port description system capability system descri...

Страница 267: ...t address format string In Layer 2 Layer 3 aggregate interface view lldp agent nearest customer nearest nontpmr management address format string By default the encoding format of the management addres...

Страница 268: ...to process LLDP frames To communicate stably with a neighboring device running LLDP of earlier versions the local device must be configured with the same encapsulation format To set the encapsulation...

Страница 269: ...ence Configuration prerequisites Before you configure CDP compatibility complete the following tasks Globally enable LLDP Enable LLDP on the port connecting to a device supporting CDP Configure LLDP t...

Страница 270: ...sion Selection for Bandwidth Sharing Between Traffic Classes DCBX offers the following functions Discovers the peer devices capabilities and determines whether devices at both ends support these capab...

Страница 271: ...Configuring the DCBX version Enabling LLDP and DCBX TLV advertising To enable the device to advertise APP ETS and PFC data through an interface perform the following tasks Enable LLDP globally Enable...

Страница 272: ...the 802 1p priority 3 Configuration restrictions and guidelines When you configure APP parameters follow these restrictions and guidelines An Ethernet frame header ACL identifies application protocol...

Страница 273: ...reate rules according to the type of the ACL previously created 4 Return to system view quit N A 5 Create a class specify the operator of the class as OR and enter class view traffic classifier classi...

Страница 274: ...performs the following tasks Uses ETS parameters to negotiate with the server adapter Controls the server adapter s transmission speed of a type of traffic Guarantees that the transmission speed is w...

Страница 275: ...st one command For more information about the qos wrr qos wrr byte count and qos wrr group sp commands see ACL and QoS Command Reference Configuring PFC parameters To prevent packets with an 802 1p pr...

Страница 276: ...the peer device supports autonegotiation and also uses the standard version as the initial version for negotiation the standard version will be the negotiated result If the peer device supports auton...

Страница 277: ...em view system view N A 2 Enter Layer 2 Layer 3 Ethernet interface view management Ethernet interface view or Layer 2 Layer 3 aggregate interface view interface interface type interface number N A 3 E...

Страница 278: ...lldp status interface interface type interface number agent nearest bridge nearest customer nearest nontpmr Display types of advertisable optional LLDP TLVs display lldp tlv config interface interface...

Страница 279: ...e ten gigabitethernet 1 0 1 SwitchB Ten GigabitEthernet1 0 1 lldp enable Set the LLDP operating mode to Tx on Ten GigabitEthernet 1 0 1 SwitchB Ten GigabitEthernet1 0 1 lldp admin status tx SwitchB Te...

Страница 280: ...wn TLV 0 LLDP status information of port 2 Ten GigabitEthernet1 0 2 LLDP agent nearest bridge Port status of LLDP Enable Admin status RX_Only Trap flag No MED trap flag No Polling interval 0s Number o...

Страница 281: ...0 hours 5 minutes 20 seconds Transmit interval 30s Fast transmit interval 1s Transmit credit max 5 Hold multiplier 4 Reinit delay 2s Trap interval 30s Fast start times 4 LLDP status information of por...

Страница 282: ...r of CDP neighbors 0 Number of sent optional TLV 1 Number of received unknown TLV 0 LLDP agent nearest customer Port status of LLDP Enable Admin status Disable Trap flag No MED trap flag No Polling in...

Страница 283: ...thernetframe 4000 rule permit type 8906 ffff SwitchA acl ethernetframe 4000 rule permit type 8914 ffff SwitchA acl ethernetframe 4000 quit Create a class named app_c specify the operator of the class...

Страница 284: ...P queuing SwitchA Ten GigabitEthernet1 0 1 qos wrr byte count SwitchA Ten GigabitEthernet1 0 1 qos wrr 3 group sp 5 Configure PFC Enable PFC in auto mode on interface Ten GigabitEthernet 1 0 1 SwitchA...

Страница 285: ...fic Classes Supported 8 DCBX Parameter Information Parameter Type Remote Pad Byte Present Yes DCBX Parameter Valid Yes Reserved 0 DCBX Parameter Data Priority Group ID of Priority 1 0 Priority Group I...

Страница 286: ...p 1 Percentage 50 Priority Group 2 Percentage 0 Priority Group 3 Percentage 0 Priority Group 4 Percentage 0 Priority Group 5 Percentage 0 Priority Group 6 Percentage 0 Priority Group 7 Percentage 0 Nu...

Страница 287: ...4 No PFC Enabled on Priority 5 No PFC Enabled on Priority 6 No PFC Enabled on Priority 7 No Number of Traffic Classes Supported 6 DCBX Parameter Information Parameter Type Local Pad Byte Present No DC...

Страница 288: ...t is removed when it is assigned to a service loopback group The ports support the service type of the service loopback group and are not members of any other service loopback group You cannot change...

Страница 289: ...nel DeviceA system view DeviceA service loopback group 1 type tunnel Assign Ten GigabitEthernet 1 0 1 through Ten GigabitEthernet 1 0 3 to service loopback group 1 DeviceA interface ten gigabitetherne...

Страница 290: ...ion time of a frame within the device and enhances forwarding performance To configure cut through forwarding Step Command Remarks 1 Enter system view system view N A 2 Enable cut through forwarding c...

Страница 291: ...dvertising LLDP advertisable TLV 247 LLDP DCBX TLV advertisement 254 aggregating link See Ethernet link aggregation aging MAC address table timer 28 spanning tree max age timer 101 algorithm STP calcu...

Страница 292: ...oot bridge 90 MST regional root 89 spanning tree loop guard 1 19 spanning tree root guard 1 18 STP designated bridge 79 STP root bridge 79 bridging PBB network model 228 spanning tree root bridge 98 s...

Страница 293: ...regate interface MTU 55 Layer 3 edge aggregate interface 73 Layer 3 Ethernet interface 15 Layer 3 Ethernet link aggregation dynamic 71 Layer 3 Ethernet link aggregation static 70 Layer 3 Ethernet link...

Страница 294: ...ping 206 219 VLAN mapping many to one 213 219 VLAN mapping many to one dynamic IP address assignment 213 VLAN mapping many to one static IP address assignment 215 VLAN mapping one to one 212 219 VLAN...

Страница 295: ...dynamic IP address assignment 213 Digest Snooping spanning tree 1 12 1 13 disabling MAC address learning 27 discarding MST discarding port state 91 displaying bulk interface configuration 21 Ethernet...

Страница 296: ...ulation format 251 VLAN frame encapsulation 138 Energy Efficient Ethernet See see EEE energy saving functions 8 entry ARP fast update enabling for MAC address move 34 Ethernet interface See Ethernet i...

Страница 297: ...on 57 group configuration 50 group configuration dynamic 52 group configuration static 51 group load sharing mode 59 interface configuration expected bandwidth 56 LACP 46 Layer 2 aggregate interface i...

Страница 298: ...encapsulation 138 full duplex mode Ethernet interface 3 G GARP VLAN Registration Protocol Use GVRP generic flow control Ethernet interface 6 Generic VLAN Registration Protocol Use GVRP group Ethernet...

Страница 299: ...basic concepts 42 Ethernet link aggregation configuration 42 49 63 Ethernet link aggregation dynamic mode 45 Ethernet link aggregation group dynamic 52 Ethernet link aggregation group configuration 50...

Страница 300: ...nfiguration 147 147 152 QinQ configuration 195 201 QinQ VLAN transparent transmission configuration 204 super VLAN configuration 156 156 158 super VLAN sub VLAN configuration 156 VLAN basic configurat...

Страница 301: ...configuration 78 92 spanning tree hello time 101 spanning tree port link type configuration 108 LLDP 802 1p to local priority mapping 257 advertisable TLV configuration 247 agent 238 APP parameter co...

Страница 302: ...configuration 126 spanning tree configuration 78 92 spanning tree loop guard 1 19 loop detection configuration 130 132 134 displaying 134 enable 132 enable global 132 enable port specific 132 interval...

Страница 303: ...ess assignment 217 mapping many to one VLAN mapping 206 MSTP VLAN to instance mapping table 89 one to one VLAN mapping 206 one to two VLAN mapping 208 two to two VLAN mapping 208 master port MST 90 ma...

Страница 304: ...ree port mode configuration 109 VLAN to instance mapping table 89 MTU Layer 3 Ethernet aggregate interface 55 Layer 3 Ethernet interface MTU setting 15 multiple registration protocol Use MRP VLAN regi...

Страница 305: ...nfiguration 18 port isolation group assignment multiple 75 port based VLAN access port assignment 142 port based VLAN access port assignment in interface view 142 port based VLAN access port assignmen...

Страница 306: ...ce configuration 15 Layer 3 Ethernet link aggregation dynamic 71 Layer 3 Ethernet link aggregation static 70 LLDP basic concepts 238 LLDP basic configuration 261 LLDP basics configuration 245 LLDP con...

Страница 307: ...VLAN mapping configuration two to two 218 225 parameter LLDP APP configuration 255 LLDP ETS configuration 257 LLDP PFC configuration 258 parameter timeout factor 102 PBB B VLAN configuration 233 conf...

Страница 308: ...gregation group static 51 Layer 2 Ethernet link aggregation load sharing 66 Layer 3 aggregate interface configuration MTU 55 Layer 3 edge aggregate interface 73 Layer 3 Ethernet link aggregation dynam...

Страница 309: ...face energy saving functions 8 priority 802 1p to local priority mapping 257 Ethernet link aggregation LACP 46 LLDP PFC 802 1p priority 258 MAC address table learning priority 30 QinQ SVLAN tag 802 1p...

Страница 310: ...sion 1 1 configuring Layer 2 Ethernet link aggregation dynamic 64 configuring Layer 2 Ethernet link aggregation static 63 configuring Layer 2 Ethernet link aggregation group dynamic 52 configuring Lay...

Страница 311: ...anning tree Digest Snooping 1 12 1 13 configuring spanning tree edge port 103 configuring spanning tree No Agreement Check 1 14 1 16 configuring spanning tree port link type 108 configuring spanning t...

Страница 312: ...lobal 132 enabling loop detection port specific 132 enabling MAC address move notification 32 33 enabling MAC address synchronization globally 31 enabling MAC Information 38 enabling MVRP 182 enabling...

Страница 313: ...ards Ethernet link aggregation protocol configuration 43 LAN switching PBB 231 LLDP 244 MSTP 92 MVRP 181 QinQ 196 STP protocol packets 78 VLAN 139 provider backbone bridge Use PBB backbone bridge netw...

Страница 314: ...bridge device 99 STP algorithm calculation 80 STP root bridge 79 STP root port 79 routing IP subnet based VLAN configuration 145 146 150 protocol based VLAN configuration 147 147 152 RSTP 78 See also...

Страница 315: ...transmission restriction 120 timeout factor configuration 102 timer configuration 101 specifying Layer 2 aggregate interface ignored VLAN 55 spanning tree port path cost calculation standard 104 spli...

Страница 316: ...ree switched network diameter 100 super VLAN configuration 156 156 158 super VLAN sub VLAN configuration 156 VLAN basic configuration 139 VLAN configuration 138 VLAN interface basic configuration 140...

Страница 317: ...ed VLAN assignment 143 two to two VLAN mapping application scenario 208 configuration 218 225 implementation 208 210 U unicast MAC address table configuration 22 23 36 MAC address table multiport unic...

Страница 318: ...nt 214 many to one customer side port configuration static IP address assignment 216 many to one implementation 208 209 many to one network side port configuration dynamic IP address assignment 214 ma...

Отзывы:

Нет отзывов

Похожие инструкции для S5830V2 series

SANbox 5600 Series

Бренд: Qlogic Страницы: 408

Бренд: WAGO Страницы: 39

CRSMEO-4 Series

Бренд: Festo Страницы: 16

Бренд: Shinybow USA Страницы: 16

Бренд: Cabletron Systems Страницы: 170

MultiView CE-H26311-S1

Бренд: SIIG Страницы: 24

Бренд: LEGRAND Страницы: 4

Бренд: NegoRack Страницы: 41

Бренд: Lindy Страницы: 54

Бренд: Opengear Страницы: 109

Бренд: Smartwares Страницы: 2

EG5-0702-SFP Series

Бренд: Leonton Страницы: 21

Бренд: UHPPOTE Страницы: 10

Emulation Pod M306V2T-RPD-E

Бренд: Renesas Страницы: 74

Бренд: SMART-AVI Страницы: 8

Бренд: PS Automation Страницы: 4

Бренд: Linkskey Страницы: 2

Бренд: Datavideo Страницы: 72

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды