Escolar Documentos
Profissional Documentos
Cultura Documentos
314725-E Rev 00
May 2006
Trademarks
Nortel, the Nortel logo, and the Globemark are trademarks of Nortel Networks.
Adobe and Acrobat Reader are trademarks of Adobe Systems, Incorporated.
Microsoft, Windows, and Windows NT are trademarks of Microsoft Corporation.
The asterisk after a name denotes a trademarked item.
Statement of conditions
In the interest of improving internal design, operational function, and/or reliability, Nortel reserves the right to
make changes to the products described in this document without notice.
Nortel does not assume any liability that may occur due to the use or application of the product(s) or circuit
layout(s) described herein.
Portions of the code in this software product may be Copyright © 1988, Regents of the University of California. All
rights reserved. Redistribution and use in source and binary forms of such portions are permitted, provided that the
above copyright notice and this paragraph are duplicated in all such forms and that any documentation, advertising
materials, and other materials related to such distribution and use acknowledge that such portions of the software
were developed by the University of California, Berkeley. The name of the University may not be used to endorse or
promote products derived from such portions of the software without specific prior written permission.
SUCH PORTIONS OF THE SOFTWARE ARE PROVIDED “AS IS” AND WITHOUT ANY EXPRESS OR
IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
In addition, the program and information contained herein are licensed only pursuant to a license agreement that
contains restrictions on use and disclosure (that may incorporate by reference certain limitations and notices
imposed by third parties).
314725-E Rev 00
3
AGREEMENT. If you do not accept these terms and conditions, return the Software, unused and in the original
shipping container, within 30 days of purchase to obtain a credit for the full purchase price.
“Software” is owned or licensed by Nortel, its parent or one of its subsidiaries or affiliates, and is copyrighted and
licensed, not sold. Software consists of machine-readable instructions, its components, data, audio-visual content
(such as images, text, recordings or pictures) and related licensed materials including all whole or partial copies.
Nortel grants you a license to use the Software only in the country where you acquired the Software. You obtain no
rights other than those granted to you under this License Agreement. You are responsible for the selection of the
Software and for the installation of, use of, and results obtained from the Software.
1.Licensed Use of Software. Nortel grants Customer a nonexclusive license to use a copy of the Software on only
one machine at any one time or to the extent of the activation or authorized usage level, whichever is applicable. To
the extent Software is furnished for use with designated hardware or Customer furnished equipment (“CFE”),
Customer is granted a nonexclusive license to use Software only on such hardware or CFE, as applicable. Software
contains trade secrets and Customer agrees to treat Software as confidential information using the same care and
discretion Customer uses with its own similar information that it does not wish to disclose, publish or disseminate.
Customer will ensure that anyone who uses the Software does so only in compliance with the terms of this
Agreement. Customer shall not a) use, copy, modify, transfer or distribute the Software except as expressly
authorized; b) reverse assemble, reverse compile, reverse engineer or otherwise translate the Software; c) create
derivative works or modifications unless expressly authorized; or d) sublicense, rent or lease the Software.
Licensors of intellectual property to Nortel are beneficiaries of this provision. Upon termination or breach of the
license by Customer or in the event designated hardware or CFE is no longer in use, Customer will promptly return
the Software to Nortel or certify its destruction. Nortel may audit by remote polling or other reasonable means to
determine Customer’s Software activation or usage levels. If suppliers of third party software included in Software
require Nortel to include additional or different terms, Customer agrees to abide by such terms provided by Nortel
with respect to such third party software.
2.Warranty. Except as may be otherwise expressly agreed to in writing between Nortel and Customer, Software is
provided “AS IS” without any warranties (conditions) of any kind. Nortel DISCLAIMS ALL WARRANTIES
(CONDITIONS) FOR THE SOFTWARE, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT
LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE AND ANY WARRANTY OF NON-INFRINGEMENT. Nortel is not obligated to provide support of
any kind for the Software. Some jurisdictions do not allow exclusion of implied warranties, and, in such event, the
above exclusions may not apply.
3.Limitation of Remedies. IN NO EVENT SHALL Nortel OR ITS AGENTS OR SUPPLIERS BE LIABLE FOR
ANY OF THE FOLLOWING: a) DAMAGES BASED ON ANY THIRD PARTY CLAIM; b) LOSS OF, OR
DAMAGE TO, CUSTOMER’S RECORDS, FILES OR DATA; OR c) DIRECT, INDIRECT, SPECIAL,
INCIDENTAL, PUNITIVE, OR CONSEQUENTIAL DAMAGES (INCLUDING LOST PROFITS OR
SAVINGS), WHETHER IN CONTRACT, TORT OR OTHERWISE (INCLUDING NEGLIGENCE) ARISING
OUT OF YOUR USE OF THE SOFTWARE, EVEN IF Nortel, ITS AGENTS OR SUPPLIERS HAVE BEEN
ADVISED OF THEIR POSSIBILITY. The forgoing limitations of remedies also apply to any developer and/or
supplier of the Software. Such developer and/or supplier is an intended beneficiary of this Section. Some
jurisdictions do not allow these limitations or exclusions and, in such event, they may not apply.
4.General
a. If Customer is the United States Government, the following paragraph shall apply: All Nortel Software
available under this License Agreement is commercial computer software and commercial computer
software documentation and, in the event Software is licensed for or on behalf of the United States
Government, the respective rights to the software and software documentation are governed by Nortel
standard commercial license in accordance with U.S. Federal Regulations at 48 C.F.R. Sections 12.212 (for
non-DoD entities) and 48 C.F.R. 227.7202 (for DoD entities).
b. Customer may terminate the license at any time. Nortel may terminate the license if Customer fails to
comply with the terms and conditions of this license. In either event, upon termination, Customer must
either return the Software to Nortel or certify its destruction.
c. Customer is responsible for payment of any taxes, including personal property taxes, resulting from
Customer’s use of the Software. Customer agrees to comply with all applicable laws including all
applicable export and import laws and regulations.
d. Neither party may bring an action, regardless of form, more than two years after the cause of the action
arose.
e. The terms and conditions of this License Agreement form the complete and exclusive agreement between
Customer and Nortel.
f. This License Agreement is governed by the laws of the country in which Customer acquires the Software. If
the Software is acquired in the United States, then this License Agreement is governed by the laws of the
state of New York.
314725-E Rev 00
5
Contents
Preface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
Chapter 1
Layer 2 operational concepts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Port-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
Policy-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Port membership types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Protocol-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
User-defined protocol-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
MAC address-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45
IP subnet-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
Multihoming support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47
VLAN tagging and port types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48
802.1Q tagged ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48
Treatment of tagged and untagged frames . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Untagging Default VLAN on a Tagged Port feature . . . . . . . . . . . . . . . . . . . . . 50
314725-E Rev 00
Contents 7
Chapter 2
Configuring VLANs using Device Manager . . . . . . . . . . . . . . . . . . . . . . . . 135
314725-E Rev 00
Contents 9
Chapter 3
Configuring sVLAN using Device Manager . . . . . . . . . . . . . . . . . . . . . . . . 195
Chapter 4
Configuring spanning tree using Device Manager . . . . . . . . . . . . . . . . . . 211
Chapter 5
Configuring link aggregation using Device Manager . . . . . . . . . . . . . . . . 249
Chapter 6
Configuring multiple DSAP and SSAP using Device Manager . . . . . . . . 297
314725-E Rev 00
Contents 11
Chapter 7
Configuring and managing VLANs using the CLI. . . . . . . . . . . . . . . . . . . 303
Chapter 8
Configuring sVLANs using the CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 365
Chapter 9
Configuring STGs using the CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 379
314725-E Rev 00
Contents 13
Chapter 10
Configuring link aggregation using the CLI . . . . . . . . . . . . . . . . . . . . . . . 427
Chapter 11
Configuring multiple DSAP and SSAP using the CLI . . . . . . . . . . . . . . . . 483
314725-E Rev 00
Contents 15
Chapter 12
Device Manager configuration examples . . . . . . . . . . . . . . . . . . . . . . . . . 491
Chapter 13
CLI configuration examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 503
Appendix A
Glossary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 573
Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 577
314725-E Rev 00
17
Figures
314725-E Rev 00
Figures 19
314725-E Rev 00
Figures 21
Figure 135 Config and show sys link-flap-detect command output . . . . . . . . . . . . . 329
Figure 136 Sample configuration using the loop-detect commands. . . . . . . . . . . . . 331
Figure 137 Show vlan info all command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . 334
Figure 138 Show vlan info fdb-entry command output . . . . . . . . . . . . . . . . . . . . . . . 347
Figure 139 Show vlan info fdb-filter command output . . . . . . . . . . . . . . . . . . . . . . . . 348
Figure 140 Show vlan info fdb-static command output . . . . . . . . . . . . . . . . . . . . . . . 349
Figure 141 Show vlan info advance command output . . . . . . . . . . . . . . . . . . . . . . . 351
Figure 142 Show vlan info arp command output . . . . . . . . . . . . . . . . . . . . . . . . . . . 352
Figure 143 Show vlan info basic command output . . . . . . . . . . . . . . . . . . . . . . . . . 353
Figure 144 Show vlan info brouter-port command output . . . . . . . . . . . . . . . . . . . . . 354
Figure 145 Show vlan info igmp command output . . . . . . . . . . . . . . . . . . . . . . . . . . 355
Figure 146 Show vlan info ip command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 356
Figure 147 Show vlan info ports command output . . . . . . . . . . . . . . . . . . . . . . . . . . 357
Figure 148 Show vlan info srcmac command output . . . . . . . . . . . . . . . . . . . . . . . . 358
Figure 149 Show ports info vlan command output . . . . . . . . . . . . . . . . . . . . . . . . . . 359
Figure 150 Show ports info port all command output . . . . . . . . . . . . . . . . . . . . . . . . 361
Figure 151 Config vlan ip info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . 363
Figure 152 Config vlan info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 369
Figure 153 Sample command output for creating an sVLAN . . . . . . . . . . . . . . . . . . 370
Figure 154 Config svlan info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 371
Figure 155 Show svlan info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 372
Figure 156 sVLAN-porttype warning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 373
Figure 157 Config ethernet <ports> info command output . . . . . . . . . . . . . . . . . . . . 375
Figure 158 Config stg info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 378
Figure 159 Spanning tree mode commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 384
Figure 160 Config stg info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 387
Figure 161 Config ethernet <slot/port> stg <sid> info command output . . . . . . . . . . 389
Figure 162 Show ports info stg main command output . . . . . . . . . . . . . . . . . . . . . . . 391
Figure 163 Show stg show-all sample output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 394
Figure 164 Show stg info config command output . . . . . . . . . . . . . . . . . . . . . . . . . . 397
Figure 165 Show stg info status command output . . . . . . . . . . . . . . . . . . . . . . . . . . 398
Figure 166 Show ports info stg main command output . . . . . . . . . . . . . . . . . . . . . . . 399
Figure 167 Show ports info stg extended command output . . . . . . . . . . . . . . . . . . . 400
Figure 168 Show ports stats stg command (partial output) . . . . . . . . . . . . . . . . . . . 402
Figure 169 Show rstp config command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 405
314725-E Rev 00
Figures 23
314725-E Rev 00
25
Tables
314725-E Rev 00
Tables 27
314725-E Rev 00
29
Preface
This guide describes how to configure VLANs, spanning tree, and link
aggregation on the Ethernet Routing Switch 8600.
This guide is intended for network administrators with the following background:
Before using this guide, you must complete the following procedures. For a new
switch:
• Install the switch (see the Installation Guide that came with your switch).
• Connect the switch to the network (see Getting Started with the Management
Software for more information).
Make sure that you are running the latest version of the Ethernet Routing Switch
8600 and Device Manager software. For information about upgrading the Ethernet
Routing Switch 8600 and Device Manager, see the upgrading guide for your
version of the Ethernet Routing Switch.
Text conventions
angle brackets (< >) Indicate that you choose the text to enter based on the
description inside the brackets. Do not type the
brackets when entering the command.
Example: If the command syntax is
ping <ip_address>, you enter
ping 192.32.10.12
bold Courier text Indicates command names and options and text that
you need to enter.
Example: Use the dinfo command.
Example: Enter show ip {alerts|routes}.
braces ({}) Indicate required elements in syntax descriptions where
there is more than one option. You must choose only
one of the options. Do not type the braces when
entering the command.
Example: If the command syntax is
show ip {alerts|routes}, you must enter either
show ip alerts or show ip routes, but not both.
brackets ([ ]) Indicate optional elements in syntax descriptions. Do
not type the brackets when entering the command.
Example: If the command syntax is
show ip interfaces [-alerts], you can enter
either show ip interfaces or
show ip interfaces -alerts.
ellipsis points (. . . ) Indicate that you repeat the last element of the
command as needed.
Example: If the command syntax is
ethernet/2/1 [<parameter> <value>]... ,
you enter ethernet/2/1 and as many
parameter-value pairs as needed.
314725-E Rev 00
Preface 31
Acronyms
314725-E Rev 00
Preface 33
You can print selected technical manuals and release notes free, directly from the
Internet. Go to the www.nortel.com/documentation URL. Find the product for
which you need documentation. Then locate the specific category and model or
version for your hardware or software product. Use Adobe* Reader* to open the
manuals and release notes, search for the sections you need, and print them on
most standard printers. Go to Adobe Systems at the www.adobe.com URL to
download a free copy of the Adobe Reader.
Note: The list of related publications for this manual can be found in the
release notes that came with your software.
314725-E Rev 00
35
This section explains how to get help for Nortel products and services.
The content of this documentation was current at the time the product was
released. To check for updates to the latest documentation and software for
Ethernet Routing Switch, click one of the following links:
The best way to get technical support for Nortel products is from the Nortel
Technical Support web site:
www.nortel.com/support
This site provides quick access to software, documentation, bulletins, and tools to
address issues with Nortel products. From this site, you can:
If you do not find the information you require on the Nortel Technical Support
web site, and you have a Nortel support contract, you can also get help over the
phone from a Nortel Solutions Center.
Outside North America, go to the following web site to obtain the phone number
for your region:
www.nortel.com/callus
To access some Nortel Technical Solutions Centers, you can use an Express
Routing Code (ERC) to quickly route your call to a specialist in your Nortel
product or service. To locate the ERC for your product or service, go to:
www.nortel.com/erc
If you purchased a service contract for your Nortel product from a distributor or
authorized reseller, contact the technical support staff for that distributor or
reseller.
314725-E Rev 00
37
Chapter 1
Layer 2 operational concepts
Topic Page
VLANs 37
Spanning tree protocols 66
Link aggregation (MLT, SMLT, LACP, VLACP) 78
Simple Loop Prevention Protocol 130
VLANs
Using a virtual LAN (VLAN), you can divide your LAN into smaller groups
without interfering with the physical network. VLAN practical applications
include the following:
By dividing the network into separate VLANs, you can create separate broadcast
domains. This arrangement conserves bandwidth, especially in networks
supporting broadcast and multicast applications that flood the network with
traffic. A VLAN workgroup can include members from a number of dispersed
physical segments on the network, improving traffic flow between them.
The Ethernet Routing Switch 8600 Software Release 4.1 performs the Layer 2
switching functions necessary to transmit information within VLANs, as well as
the Layer 3 routing functions necessary for VLANs to communicate with one
another. A VLAN can be defined for a single switch or it can span multiple
switches. A port can be a member of multiple VLANs.
• “Port-based VLANs”
• “Policy-based VLANs” on page 40
• “Multihoming support” on page 47
• “VLAN tagging and port types” on page 48
• “VLAN virtual router interfaces” on page 52
• “IP routing and VLANs” on page 52
• “IPX routing and VLANs” on page 52
• “VLAN implementation on the Ethernet Routing Switch 8600” on page 53
• “VLAN rules” on page 54
• “VLAN features supported on the Ethernet Routing Switch 8600 modules” on
page 55
• “MultiLink trunking and VLAN scalability” on page 56
• “Stacked VLANs” on page 59
• “Flooding for Microsoft NLB clustering systems in unicast mode” on page 63
• “VLAN MAC filtering” on page 64
• “Prevention of IP spoofing within a VLAN” on page 64
• “VLAN Loop Detection” on page 65
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 39
Port-based VLANs
The example in Figure 1 shows two port-based VLANs: one for the marketing
department, and one for the sales department. Ports are assigned to each
port-based VLAN. A change in the sales area can move the sales representative at
port 3/1 (the first port in the input/output (I/O) module in chassis slot 3) to the
marketing department without moving cables. With a port-based VLAN, you only
need to indicate in Device Manager or the CLI that port 3/1 in the sales VLAN
now is a member of the marketing VLAN.
Policy-based VLANs
A policy-based VLAN consists of ports that are dynamically added to the VLAN
on the basis of the traffic coming into the port.
In addition, you can designate a port as a potential member of the VLAN on the
Ethernet Routing Switch 8600. When a port is designated as a potential member
of the VLAN, and the incoming traffic matches the policy, the port is dynamically
added to the VLAN. Potential member ports that join the VLAN are removed,
timed out from the VLAN when the timeout (aging time) period of that VLAN
expires.
Port membership in a VLAN is determined by the traffic coming into the port.
Nortel recommends that you designate at least some ports as always a member of
the VLAN. If a server or router connects to a port, then designate that port as
always a member of a VLAN. If a server connects to a port that is only a potential
member and the server sends very little traffic, a client fails to reach the server if
the server port has timed out of the VLAN.
Note: A port can belong to one port-based VLAN and many policy-based
VLANs.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 41
Protocol-based supported
User-defined protocol-based supported
MAC address-based supported
IP subnet-based supported
Stacked VLANs supported (not on R modules)
Protocol-based VLANs
All ports within a protocol-based VLAN must be in the same port-based VLAN.
However, the same port within a port-based VLAN can belong to multiple
protocol-based VLANs. Port tagging is not required for a port to be a member of
multiple protocol-based VLANs.
• IP version 4 (ip)
• Novell IPX on Ethernet 802.3 frames (ipx802dot3)
• Novell IPX on IEEE 802.2 frames (ipx802dot2)
• Novell IPX on Ethernet SNAP frames (ipxSnap)
• Novell IPX on Ethernet Type 2 frames (ipxEthernet2)
• AppleTalk on Ethernet Type 2 and Ethernet SNAP frames (AppleTalk)
• DEC LAT Protocol (decLat)
• Other DEC protocols (decOther)
• IBM SNA on IEEE 802.2 frames (sna802dot2)
• IBM SNA on Ethernet Type 2 frames (snaEthernet2)
• NetBIOS Protocol (netBIOS)
• Xerox XNS (xns)
• Banyan VINES (vines)
• IP version 6 (ipv6)
• Reverse Address Resolution Protocol (RARP)
• Point-to-Point Protocol over Ethernet (PPPoE)
• User-defined protocols
You can create a VLAN for the IPX protocol and place ports carrying substantial
IPX traffic into this new VLAN. In Figure 2 on page 43, the network manager has
placed ports 7/1, 3/1, and 3/2 in an IPX VLAN. These ports still belong to their
respective marketing and sales VLANs, but they are also new members of the IPX
VLAN. This arrangement localizes traffic and ensures that only three ports are
flooded with IPX broadcast packets.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 43
With PPPoE, you can connect multiple computers on Ethernet to a remote site
through a device, such as a modem, so that multiple users can share a common
line connection to the Internet. PPPoE combines the Point-to-Point Protocol
(PPP), commonly used in dial-up connections, with the Ethernet protocol, which
supports multiple users in a local area network (LAN) by encapsulating the PPP
frame within an Ethernet frame.
PPPoE occurs in two stages—a discovery stage and a PPP session stage. The
Ether_Type field in the Ethernet frame identifies the stage:
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 45
As with all policy-based VLANs, using source media access control (MAC)
address VLANs allows Ethernet Routing Switch 8600 modules to associate
frames with a VLAN based on the frame content. With source MAC-based
VLANs, a frame is associated with a VLAN if the source MAC address is one of
the MAC addresses explicitly associated with the VLAN. To create a source
MAC-based VLAN, you add the MAC address to a list of MAC addresses that
constitutes the VLAN. However, because it is necessary to explicitly associate
MAC addresses with a source MAC-based VLAN, the administrative overhead
can be quite high.
Use source MAC-based VLANs when you want to enforce a MAC level security
scheme to differentiate groups of users. For example, in a university environment,
the students are part of a student VLAN with certain services and access
privileges, and the faculty are part of a source MAC-based VLAN with faculty
services and access privileges. Therefore, a student and a faculty member can plug
into the same port, but have access to a different range of services. To provide the
correct services throughout the campus, the source MAC-based VLAN must be
defined on Ethernet Routing Switch 8600 devices throughout the campus, which
entails administrative overhead.
When a source MAC VLAN is created, not all of the port members of the
spanning tree group (STG) are automatically made potential members of
the VLAN by default.
The source MAC VLAN must have static port members on either the
access or trunk switch for source MAC VLANS to explicitly associate the
MAC address with the source MAC VLAN. If the static port members are
not set, then any source MAC address gains access to the network.
IP subnet-based VLANs
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 47
subnet-based VLAN 2 because the IP address of the traffic source does not match
the IP subnet assigned to VLAN 2. If the access link in VLAN 2 which connects
switches 1 and 2 is a tagged link, the traffic is associated with the VLAN tag, not
the IP address, and is forwarded correctly to switch 1.
In the IP multicast routing example, the multicast stream is on an access link that
is part of IP subnet-based VLAN 2. If the source IP address in the multicast data
packets received on the access port is not within the subnet of VLAN 2 (a likely
scenario), the multicast stream will not reach the multicast router (MR).
Multihoming support
Using the multihoming feature, the Ethernet Routing Switch 8600 can support
clients or servers that have multiple IPs addresses associated with a single MAC
address. Multihomed hosts can be connected to port-based, policy-based, and IP
subnet-based VLANs.
The IP addresses associated with a single MAC address on a host must be in the
same IP subnet. Multihomed hosts with up to 16 IP addresses per MAC address
are supported on the Ethernet Routing Switch 8600.
The Ethernet Routing Switch 8600 supports the IEEE 802.1Q specification for
tagging frames and coordinating VLANs across multiple switches.
Figure 5 shows how an additional four octet (tag) header is inserted in a frame
after the source address and before the frame type. The tag contains the VLAN ID
associated with the frame.
Tagging a frame adds four octets to a frame, making it bigger than the traditional
maximum frame size. These frames are sometimes referred to as baby giant
frames. If a device does not support IEEE 802.1Q tagging, it can have problems
interpreting tagged frames and receiving baby giant frames.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 49
On the Ethernet Routing Switch 8600, whether or not tagged frames are sent or
received depends on what you configure at the port level. Tagging is set as true or
false for the port and is applied to all VLANs on that port.
Note: When you enable tagging on an untagged port, the previous port
configuration of VLANs, STGs, and multilink trunking (MLT) is lost. In
addition, the port resets and runs Spanning Tree Protocol. This process
breaks connectivity while the protocol proceeds through the normal
blocking and learning stages before the port enters the forwarding state.
A port with tagging enabled sends frames explicitly tagged with a VLAN ID.
Tagged ports are typically used to multiplex traffic belonging to multiple VLANs
to other IEEE 802.1Q-compliant devices.
If you disable tagging on a port, it does not send tagged frames. A non-tagged port
connects an Ethernet Routing Switch to devices that do not support IEEE 802.1Q
tagging. If a tagged frame is forwarded to a port with tagging set to false, the
Ethernet Routing Switch removes the tag from the frame before sending it to the
port.
An Ethernet Routing Switch 8600 associates a frame with a VLAN based on the
data content of the frame and the configuration of the destination port. The
treatment of the frame depends on whether it is tagged or untagged.
For untagged frames, VLAN membership is implied from the content of the frame
itself. For untagged frames received on a tagged port, you can configure the port
to either discard or accept the frame. If you configure a tagged port to accept
untagged frames, the port must be assigned to a port-based VLAN in spanning
tree group 1 (STG1).
The frame is forwarded based on the VLAN on which the frame is received, and
on the forwarding options available for that VLAN. The Ethernet Routing Switch
8600 tries to associate untagged frames with a VLAN in the following order:
This feature provides the ability to connect both an IP phone and a PC to a single
port of an Ethernet Routing Switch 8600. Most IP phones ship with an embedded
three port switch, and traffic coming from the phone is generally tagged (VLAN
ID configured statically or remotely). However, the traffic originating from a PC is
usually untagged traffic and must be separated from the IP phone traffic. This
separation ensures that broadcast traffic from the PC does not impact voice
quality.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 51
Ethernet Routing
Switch 8600
In Figure 6, IP phones and PCs coexist on the same port due to the use of an
embedded IP Phone Layer 2 switch. In this scenario, the port is configured to be
untagged and is a member of two IP subnet-based VLANs. In this network
configuration, under certain conditions, packets from the IP phone are not routed
and therefore are unable to reach their designated Call Server to register.
You can configure the switch to send untagged packets for the default VLAN on a
tagged port. After you configure this option, all the packets sent on a tagged port
for the default VLAN are untagged packets.
When a port belongs to multiple VLANs, and the port is removed from the current
default VLAN, the lowest VLAN by index (among the VLANs of which the port
is a member) is made the default VLAN. In this case, packets for new default
VLAN are sent untagged.
To configure this feature using the CLI, see “Configuring VLAN Loop Detection”
on page 327. To configure this feature using Device Manager, see “Configuring
Untagging Default VLAN on a Tagged Port” on page 169.
Ethernet Routing Switch 8600 modules support IP routing on the following types
of VLANs only:
• Port-based VLANs
• Source IP subnet-based VLANs
• IP protocol-based VLANs
• Source MAC-based VLANs
The Ethernet Routing Switch does not support IPX routing on R modules. IPX
routing is supported on non-R modules. All modules support IPX protocol-based
VLANs and port-based VLANs.
The IPX network number is associated with a VLAN, and the VLAN can
comprise one or more ports with one of four supported frame formats: Ethernet II,
802.3-SNAP, 802.2-RAW, and 802.3-LLC.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 53
You can configure up to four IPX protocol-based VLANs on one port as long as
each of these VLANs uses a different IPX encapsulation. With port-based
VLANs, you can associate the same VID with any or all of the four IPX
encapsulation formats.
You can configure IPX protocol-based VLANs and port-based VLANs on the
same port, but traffic routes to the protocol-based VLAN and not to the port-based
VLAN (protocol-based VLANs have precedence over port-based VLANs).
This section describes how to implement VLANs on the Ethernet Routing Switch
8600 and describes default VLANs, unassigned VLANs, and brouter ports. It also
summarizes the defaults and rules regarding VLAN creation on the Ethernet
Routing Switch 8600.
• “Default VLAN”
• “Unassigned VLAN”
• “Brouter ports” on page 54
Default VLAN
Ethernet Routing Switch 8600 devices are factory configured so that all ports are
in a port-based VLAN called the default VLAN. Because all ports are in the
default VLAN, the switch behaves like a Layer 2 switch. The VLAN ID of this
default VLAN is always 1, and it is always a port-based VLAN. The default
VLAN cannot be deleted.
Unassigned VLAN
Internally, an Ethernet Routing Switch 8600 supports a placeholder for ports that
is called an unassigned port-based VLAN. This concept is used for ports that are
removed from all port-based VLANs. Ports can belong to policy-based VLANs as
well as to the unassigned VLAN. If a frame does not meet any policy criteria and
there is no underlying port-based VLAN, the port belongs to the unassigned
VLAN and the frame is dropped. Only ports in the unassigned VLAN have no
spanning tree group association, so these ports do not participate in Spanning Tree
Protocol negotiation; that is, no Bridge Protocol Data Units (BPDU) are sent out
of ports in the unassigned VLAN.
The concept of the unassigned VLAN is useful for security purposes or when
using a port for monitoring a mirrored port.
Brouter ports
A brouter port is actually a one-port VLAN. The difference between a brouter port
and a standard IP protocol-based VLAN configured to do routing is that the
routing interface of the brouter port is not subject to the spanning tree state of the
port.
VLAN rules
The following are VLAN rules for the Ethernet Routing Switch 8600.
• In addition to the default VLAN, the Ethernet Routing Switch 8600 can
support up to 1980 VLANs (1972 if R modules are present in the chassis).
VLAN IDs value range is from 1 to 4093.
• If you enable tagging on a port that is in a VLAN, the spanning tree group
configuration for that port is lost. To preserve VLAN assignment of ports,
enable tagging on the ports before you assign the ports to VLANs.
• A tagged port can belong to multiple VLANs and multiple spanning tree
groups. When a tagged port belongs to multiple spanning tree groups, the
BPDUs are tagged for all spanning tree groups except for spanning tree
group 1. Under the default configuration, the default spanning tree group is
number 1.
• An untagged port can belong to only one port-based VLAN. A port in a
port-based VLAN can belong to other policy-based VLANs.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 55
• An untagged port can belong to only one policy-based VLAN for a given
protocol. For example, a port can belong to only one policy-based VLAN
when the policy is the IPX802.2 protocol.
• For every VLAN with MultiLink Trunking that you create, you reduce the
number of available VLANs by eight.
• When Enhanced Operation mode is disabled, a VLAN cannot span multiple
spanning tree groups; that is, the ports in the VLAN must all be within one
spanning tree group.
Table 4 summarizes the features supported on the Ethernet Routing Switch 8600
modules.
Note: Table 4 is subject to change. Refer to the release notes that came
with your switch to obtain the latest scalability information.
Table 4 VLAN, STG, and MLT support in the Ethernet Routing Switch 8600
Feature
Table 4 VLAN, STG, and MLT support in the Ethernet Routing Switch 8600
Feature
Policy-based VLANs
• Protocol-based Supported
• Source MAC-based Supported
• Source IP subnet-based Supported
IEEE 802.1Q tagging Supported
IP routing and VLANs Supported
IPX routing and VLANs Supported on non-R modules
Special VLANs
• Default VLAN Supported
• Unassigned VLAN Supported
• Brouter ports Supported
Stacked VLAN Not supported on R modules
Number of spanning tree groups 64
Spanning Tree FastStart Supported
Aggregation groups 32 (128 with R module in R mode)
• 802.3ad aggregation groups
• multilink trunk groups
Number of links (ports) per MLT 8
group
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 57
Table 5 shows the maximum number of VLANs available with and without
Enhanced Operation mode.
Table 6 compares the behavior of Ethernet Routing Switch 8600 modules with
and without Enhanced Operation mode:
Enhanced Operation
Module type Behavior
mode setting
Module types
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 59
Module types
Stacked VLANs
Figure 8 shows a basic sVLAN model that uses two Ethernet Routing Switch
8600s to interconnect two 802.1Q domains.
Note: You can enable sVLANs on all ports. If the port belongs to a
multilink trunk, perform all sVLAN configurations at the multilink trunk
level.
sVLAN specifications
sVLAN rules
sVLAN levels
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 61
You must configure the UNI ports on both ends of the tunnel at the same level.
Because sVLAN switching is MAC address-based, the usual issues of VLAN
switching apply.
• If you build sVLAN networks with multiple levels, the network MAC
addresses you specify must all be unique.
• Independent VLAN learning is only applicable within the outer level of
sVLAN and does not take inner tags into account.
Ethernet Ethernet
Routing Routing
Switch 8600 Switch 8600
UNI Port NNI Port UNI Port NNI Ports UNI Port NNI Port UNI Port
(Level 1) (Level 1) (Level 2) (Level 2) (Level 2) (Level 1) (Level 1)
Note: You must change the switch level to 1 or above before you
configure sVLAN, UNI, or NNI ports.
You must configure the ports to which you want to provide VLAN transparency as
UNI ports. UNI ports can only belong to one sVLAN. When you configure a UNI
port in the CLI, the tagged-frames-discard parameter is automatically enabled.
NNI ports interconnect the switches in the core network, drop untagged frames on
ingress, and insert the sVLAN tag at the egress. NNI ports can belong to multiple
sVLANs. An NNI port sends sVLAN tagged frames. When you configure an NNI
port in the CLI, the untagged-frames-discard parameter is automatically enabled.
• If a spanning tree group (STG) contains both UNI and NNI ports, change the
standardized MAC addresses used for BPDUs to a non-standardized BPDU
MAC address to avoid interference with regular customer BPDUs.
• The UNI and NNI ports are kept in sVLAN type STG.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 63
• All the ports in the multilink trunk should have the same port type (normal/
UNI/NNI).
• Large frame support is automatically enabled on UNI or NNI ports.
When you change the sVLAN port type from normal to UNI or NNI, all the
affected ports are removed from the configured STGs and VLANs. Similarly,
when you change the sVLAN port type from UNI or NNI to normal, all the
affected ports are removed from the configured STGs and VLANs and added to
the default STG and default VLAN.
Note: The affected ports are all the ports in the OctaPID. See
Appendix A, “Tap and OctaPID assignment (Release 3.x feature set)” on
page 567.
The Ethernet Routing Switch 8600 Software Release 4.1 includes a configurable
option for NLB cluster support. The NLB cluster is identified by MAC addresses
starting with 02-bf. When you enable the NLB option, the Ethernet Routing
Switch 8600 floods routed traffic destined to this MAC address to the VLAN.
ARP reply packets sent by the switch are flooded throughout the VLAN to allow
all servers to learn the ARP entry corresponding to the switch. The ARP reply
packet sent by the switch contains the virtual MAC address in the destination field
(rather than the hardware MAC address of the NLB node).
For MAC address filtering, the Ethernet Routing Switch 8600 supports Bridge
MIB filtering (RFC 1493). The number of MAC filters is limited to 100. You can
create a filter entry in much the same way as you create a static MAC entry, by
entering a MAC address and the port on which it resides. In the MAC filter record,
you can also specify ports to discard source or destination packets for the MAC
address on a port.
Global MAC filtering eliminates the need for configuring multiple per-VLAN
filter records for the same MAC. It provides the ability to discard a list of MAC
addresses, globally, on the switch. By using a global list you do not have to
configure a MAC per VLAN.
For information about configuring bridge MAC filtering with Device Manager,
see “Configuring a MAC-layer bridge filter” on page 186. For information about
configuring global MAC filtering with Device Manager, see “Configuring the
Global MAC filter” on page 189.
You can prevent VLAN logical IP spoofing by blocking the external use of the
switch IP address. A configurable option is provided, on a per-port basis, which
detects a duplicate IP address (that is, an address that is the same as the switch
VLAN IP address) and blocks all packets with a source or destination address
equal to that address.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 65
If an ARP packet is received that has the same source IP address as the logical
VLAN IP address, all traffic coming to any port of the switch in that VLAN (with
this MAC address as source/destination address) is silently discarded by the
hardware. After detecting a duplicate IP address, the switch sends a gratuitous
ARP packet to inform devices on the VLAN about the correct MAC address for
that IP address. You can specify a time on a configurable global timer after which
the MAC discard record is deleted and the switch resumes accepting packets from
that MAC address.
For information about configuring this option using the CLI, see “Configuring
spoof detection for a VLAN” on page 332.
On a per-port basis, the Loop Detection feature detects MAC addresses that are
looping from one port to other ports. After a loop is detected, the port on which
the MAC addresses were learned is disabled. Additionally, if a MAC address is
found to loop, the MAC address is disabled for that VLAN.
The Loop Detection feature is used at the edge of a network to prevent loops. It
detects whether the same MAC address appears on different ports. This feature
can disable a VLAN or a port. The Loop Detection feature can also disable a
group of ports if it detects the same MAC address on two different ports five times
in a configurable amount of time.
Note: The Loop Detection feature must only be enabled on SMLT ports,
and never used on IST ports or core SMLT square or full mesh ports.
You can also use Simple Loop Prevention Protocol to detect VLAN loops (see
“Simple Loop Prevention Protocol” on page 130).
• If a source MAC address is found to loop, and the specified loop detect action
is mac-discard, the MAC address is disabled. Any incoming packets with this
source or destination MAC address will be discarded for that VLAN.
• Ports, VLANs, and MAC addresses that have been disabled by the Loop
Detection feature are reenabled for automatic recovery.
• The link flap feature sets ports to operational down rather than admin down.
• Loop detection cannot be enabled on interswitch trunk ports.
For information about configuring Loop Detection with Device Manager, see
“Configuring VLAN Loop Detection” on page 173. For information about
configuring Loop Detection with the CLI, see “Configuring VLAN Loop
Detection” on page 327. For a CLI loop detection configuration example, see
“SMLT triangle with loop detection configuration example” on page 508.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 67
The operation of the Spanning Tree Protocol (STP) is defined in the IEEE 802.1d
standard. The STP detects and eliminates logical loops in a bridged or switched
network. When multiple paths exist, the spanning tree algorithm configures the
network so that a bridge or switch uses only the most efficient path. If that path
fails, the protocol automatically reconfigures the network and makes another path
active, which sustains network operations. You can control path redundancy for
VLANs by implementing the STP.
A network can include multiple instances of STP. The collection of ports in one
spanning tree instance is called a spanning tree group (STG). Ethernet Routing
Switch 8600 modules support STP and up to 64 spanning tree groups.
Each STG consists of a collection of ports that belong to the same instance of the
STP protocol. These STP instances are completely independent from each other.
For example, they send their own BPDUs, and they have their own timers.
For Ethernet Routing Switch 8600s, multiple STGs are possible within the same
switch; that is, the routing switch can participate in the negotiation for multiple
spanning trees.
The ports associated with a VLAN must be contained within a single spanning
tree group. If you do not allow a VLAN to span multiple STGs, you avoid
problems with spanning tree blocking ports (which causes a loss of connectivity
within the VLAN).
Each untagged port can belong to only one STG, while tagged ports can belong to
more than one STG. When a tagged port belongs to more than one STG, the
spanning tree BPDUs are tagged to distinguish the BPDUs of one STG from those
of another STG. BPDUs from STG 1 are not tagged. The tagged BPDUs are
transmitted using a multicast MAC address as tagged frames with a VLAN ID,
and you specify the multicast MAC address and the VLAN ID. Because tagged
BPDUs are not part of the IEEE 802.1d standard, not all devices can interpret
tagged BPDUs.
You can enable or disable the Spanning Tree Protocol at the port or at the
spanning tree group level. If you disable the protocol at the group level, received
BPDUs are handled like a MAC-level multicast and flooded out of the other ports
of the STG. Note that an STG can contain one or more VLANs. Remember that
MAC broadcasts are flooded out on all ports of a VLAN; a BPDU is a MAC-level
message, but the BPDU is flooded out of all ports on the STG, which can
encompass many VLANs.
When STP is globally enabled on the STG, BPDU handling depends on the STP
setting of the port:
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 69
FastStart is intended for access ports in which only one device is connected to the
switch (as in workstations with no other spanning tree devices). It may not be
desirable to wait the usual 30 to 35 seconds for spanning tree initialization and
bridge learning.
For the purposes of Spanning Tree Protocol negotiation, the ports on an Ethernet
Routing Switch 8600 can be divided into groups of ports where each group of
ports performs its own spanning tree negotiation with neighboring devices. In an
Ethernet Routing Switch 8600, these groups of ports are called spanning tree
groups (STG). The Ethernet Routing Switch 8600 supports up to 64 STGs.
The ports in a VLAN are always a subset of the ports in an STG. A VLAN can
include all the ports in a given STG, and there can be multiple VLANs in an STG,
but a VLAN cannot have more ports than exist in the STG. Because VLANs are
always subsets of STGs, the recommended practice is to plan STGs and then
create VLANs.
If a VLAN spans multiple switches, it must be within the same STG across all
switches; that is, the ID of the STG in which it is defined must be the same across
all devices.
Change detection enables the detection of topology changes and sends a topology
change notification (TCN) to the root on a per-port basis. Change detection is
enabled by default. When change detection is enabled and a topology change
occurs, a trap is sent with the following information so that you can identify the
device:
You can disable change detection on ports on which a single end station is
connected, and where powering that end station on and off will trigger the TCN.
Change detection is referenced in IEEE 802.1d.
• You can configure change detection only on access ports. This also applies to
link aggregation ports.
• If you disable change detection and then change the port from access to
tagging-enabled, the switch automatically sets change detection to enabled
for the port. This also applies to link aggregation ports.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 71
To configure change detection using the CLI, see “Configuring topology change
detection” on page 389.
Unfortunately, the IEEE 802.1d spanning tree provides only one instance of the
STP that can lead to incomplete connectivity for certain VLANs, depending on
the network topology.
For example, Figure 12 shows a network in which one or more VLANs span only
some switches. In this example, the STP can block a VLAN path if that VLAN
does not span across all switches.
You can avoid this issue by configuring multiple spanning tree instances, as shown
in Figure 13 on page 72.
The Ethernet Routing Switch 8600 uses a tagged BPDU address that is associated
with a VLAN tag ID. The VLAN tag ID is applied to one or more VLANs, and is
used among switches to prevent loops. The same tagged BPDU address must be
configured on all switches in the network.
With software release 3.7 or greater, you can configure your Ethernet Routing
Switch using either of two methods: Ethernet Routing Switch 8600 tagged BPDU
or PVST+.
You can use IEEE 802.1Q VLAN tagging to tunnel the multicast PVST+ BPDUs
within a IEEE 802.1Q region. The standard BPDUs for VLAN 1 are all addressed
to the well-known STP multicast address 01-80-C2-00-00-00, while PVST+
BPDUs in other VLANs are addressed to the multicast address of
01-00-0C-CC-CC-CD.
You can use PVST+ to load balance the VLANs by changing the VLAN bridge
priority.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 73
With Multiple Spanning Tree Protocol (MSTP or IEEE 802.1s), you can configure
multiple instances of RSTP on the same switch. Each RSTP instance can include
one or more VLANs. The operation of the MSTP is similar to the current Nortel
proprietary MSTP.
For RSTP and MSTP configuration examples, see “Rapid Spanning Tree Protocol
configuration example” on page 554 and “Multiple Spanning Tree Protocol
configuration example” on page 559.
• An STP-compatible port transmits and receives only STP BPDUs. Any RSTP
BPDU that the port receives in this mode is discarded.
RSTP is an enhanced version of STP. These two protocols have almost the same
set of parameters.
Table 8 lists the differences in port roles for STP and RSTP. STP supports two port
roles while RSTP supports four port roles.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 75
• The port that receives the best path BPDU on a switch is the root port, and is
referred to as a Root Forwarding (RF) port. This is the port that is the closest
to the root bridge in terms of path cost.
• The spanning tree algorithm elects a single root bridge in a bridged network
per spanning tree instance.
• The root bridge is the only bridge in a network that does not have root ports;
all ports on a root bridge are Designated Forwarding (DF).
• There can only be one path towards a root bridge on a given segment,
otherwise there will be loops.
• All bridges connected on a given segment monitor each other’s BPDUs. The
bridge that sends the best BPDU is, by mutual agreement, the root bridge for
the segment.
• The corresponding port on the bridge is referred to as a Designated
Forwarding Port.
Edge port
RSTP uses a new parameter called the edge port. When a port connects to a
non-switch device, such as a PC or a workstation, it must be configured as an edge
port. An active edge port enters forwarding state without delay. An edge port
becomes a non-edge port if it receives a BPDU.
RSTP and MSTP recommend new path cost values that support a wide range of
link speeds. Table 9 lists the recommended path cost values.
Negotiation process
The following section describes the negotiation process between switches that
takes place before PCs can exchange data (see Figure 14 on page 77).
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 77
After power-up, all ports assume the role of designated ports. All ports are in the
discarding state except edge ports. Edge ports go directly into forwarding state
without delay.
Switch A port 1 and switch B port 1 exchange BPDUs. Switch A knows that it is
the root and that switch A port 1 is the designated port. Switch B learns that
switch A has higher priority. Switch B port 1 becomes the root port. Both switch
A port 1 and switch B port 1 are still in discarding state.
Switch A starts the negotiation process by sending a BPDU with the proposal bit
set.
Switch B receives the proposal BPDU and sets its non-edge ports to discarding
state. This operation occurs during the synchronization process.
Switch A sets port 1 to forwarding state and switch B sets port 1 to forwarding
state. PC 1 and PC 2 can now communicate. The negotiation process now moves
on to switch B port 3 and its partner port. PC 3 cannot exchange data with either
PC 1 or PC 2 until the negotiation process between switch B and switch C
finishes.
The RSTP convergence time depends on how quickly the switch can exchange
BPDUs during the negotiation process, and on the number of switches in the
network.
Your Ethernet Routing Switch 8600 supports multiple types of link aggregation:
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 79
A multilink trunk can be used to aggregate bandwidth between two switches. The
Ethernet Routing Switch 8600 uses one of two algorithms to determine which
active port in the multilink trunk is used for each packet. The MLT algorithms
provide load sharing while ensuring that each packet in a flow does not arrive out
of sequence.
Note: The algorithms are the same traffic distribution algorithms used for
the IEEE 802.3ad-based link aggregation.
For non-R modules (that is, legacy, E, or M modules), the distribution algorithm
for any bridged packet (except IP distribution) is based on:
Release 4.1 uses an enhanced traffic distribution algorithm for R modules. This
ensures proper traffic distribution in all customer networks. The entire MAC or IP
source and destination fields, and a hardware-assisted hash mechanism, are used
to obtain better load distribution.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 81
The result is used as an index to a table that is populated with active MLT ports
repeated over 63 entries.
The distribution algorithm enhancement for any IPv4 traffic (bridged or routed) is
to form a 64 bit hash key using the 32 bit DestIp and 32 bit SrcIp fields.
The distribution algorithm enhancement for any IPv6 traffic (bridged or routed) is:
where hash is an RSP instruction and hashFcn is chosen to produce a 6 bit result.
The hash function is 0x000c00003f000000, which contains a 25 bit seed, a 24 bit
hash polynomial coefficient, and a 5 bit polynomial width.
The result is used as an index to a table that is populated with active multilink
trunk ports repeated over 63 entries.
To view the MLT port calculated by the new distribution algorithm for R modules,
use the following command:
where
The source and destination addresses cannot have the same value. Figure 15
shows sample output for the config sys set hash-calc command.
mltHashIndex: 0x37
mltId: 1, mltPortIndex 55 mltPort cpp
ERS-8610:5#
All Ethernet Routing Switch 8600 multilink trunks operate under the following set
of rules:
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 83
Ethernet Routing Switch 8600 multilink trunks have the following general
features and requirements:
• Up to 128 MLT groups (using R modules and R mode) are supported with as
many as 8 same-type ports belonging to a single multilink trunk.
• The ports in a multilink trunk can span modules, providing module
redundancy.
• All ports in a multilink trunk must be in the same STG, unless the port is
tagged; tagging allows ports to belong to multiple STGs.
• Apply filters individually to each port in a multilink trunk.
As a result, you can distribute the load on different ports of the multilink trunk and
achieve an even distribution of the streams. In applications such as TV
distribution, multicast traffic distribution is particularly important, because
bandwidth requirements can be substantial when a large number of TV streams
are employed.
To determine the port for a particular source, group (S, G) pair, use the number of
active MLT ports to MOD the number generated by the XOR (exclusive OR
operation) for each byte of the masked group address, with the masked source
address.
By default, the group mask and source mask is 255.255.255.255. A byte with a
value of 255 in the mask means that the corresponding byte in the group or source
address is taken into account when the algorithm is applied.
( ( ( (( G[0] AND GM[0] ) XOR ( S[0] AND SM[0] ) ) XOR ( (G[1] AND
GM[0] ) XOR ( S[1] AND SM[1] )) ) XOR ( (G[2] AND GM[2] ) XOR ( S[2]
AND SM[2] )) ) XOR ( ( G[3] AND GM[3] ) XOR ( S[3] AND SM[3] )) )
MOD (active ports of the MLT)
Algorithm example
The algorithm used for traffic distribution causes the distribution to be sequential
if the streams are similar to those in this example.
For this example, assume that the MLT ports are 1/1 to 1/4, that the mask
configuration is 0.0.0.0 for the source mask and 0.0.0.255 for the group mask, and
that source A.B.C.D sends to groups:
X.Y.Z.1
X.Y.Z.2
X.Y.Z.3 to X.Y.Z.10
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 85
The algorithm chooses link 1/1 for group X.Y.Z.1, and then X.Y.Z.2 goes on port
1/2, X.Y.Z.3 goes on port 1/3, X.Y.Z.4 goes on port 1/4, X.Y.Z.5 goes on port 1/1,
and so on.
Configuration example
In this configuration example, only the first byte of the group mask, and the first
two bytes of the source subnet mask are considered when distributing the streams.
By default, redistribution is disabled. When you add or remove a link from the
multilink trunk, the active streams continue flowing on their original links if
redistribution is disabled. If redistribution is enabled, however, the active streams
are redistributed according to the distribution algorithm on the links of the
multilink trunk.
If redistribution is enabled, all the streams are redistributed on the MLT ports
based on the assignment provided by the distribution algorithm. For more
information, see “Multicast distribution algorithm” on page 84.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 87
MLT examples
This section provides three MLT examples and includes the following topics:
Figure 16 shows two multilink trunks (T1 and T2) connecting switch S1 to
switches S2 and S3.
S1
T1
T2
S2 S3
Legend
9050EB
Each of the trunks shown in Figure 16 can be configured with multiple switch
ports to increase bandwidth and redundancy. When traffic between
switch-to-switch connections approaches single port bandwidth limitations, you
can create a multilink trunk to supply the additional bandwidth required to
improve performance.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 89
As shown in this example, one port on FS1 is blocked, thus is unused, whereas
FS2 benefits from having aggregated bandwidth on multilink trunk T1.
T1
S1
Legend
bandwidth through T1, T2, T3, and T4. On the Ethernet Routing Switch 8600,
trunk members (the ports that comprise each multilink trunk) do not have to be
consecutive switch ports; they can be selected across different modules for
module redundancy.
T1
S1
T2 T3 T4
S2 S3 S4
Legend
With spanning tree enabled, ports that belong to the same MultiLink Trunk
operate as follows:
• All ports in the multilink trunk must belong to the same spanning tree group if
spanning tree is enabled.
• Identical bridge protocol data units (BPDU) are sent from each port.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 91
Note: You can disable the Nortel Spanning Tree Protocol (ntstg
<enable|disable>) if you do not want to receive BPDUs on all ports.
IEEE 802.3ad-based (IEEE 802.3 2002 clause 43) link aggregation allows you to
aggregate one or more links together to form a link aggregation group (LAG),
such that a MAC client can treat the LAG as if it were a single link.
IEEE 802.3ad was designed for point-to-point link aggregation only. However, the
Ethernet Routing Switch 8600 provides extensions to support IEEE 802.3ad in
SMLT configurations, thereby allowing any IEEE 802.3ad-capable device to be
connected to an SMLT aggregation pair.
• “Overview” on page 93
• “LACP” on page 94
• “Link aggregation operations” on page 94
• “Principles of link aggregation” on page 95
• “LACP and MLT” on page 97
• “LACP and SMLT” on page 98
• “LACP and routing” on page 98
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 93
Overview
The IEEE 802.3ad standard comprises of service interfaces, the Link Aggregation
Control Protocol, the Marker Protocol, link aggregation selection logic, parser/
multiplexer, frame distribution, and frame collection functions.
Figure 19 shows the major functions of IEEE 802.3ad defined as multiple link
aggregation.
LACP
The main purpose of LACP is to manage switch ports and their port memberships
to form link aggregation groups (LAG). LACP can dynamically add or remove
LAG ports, depending on their availability and states.
Aside from automatic link aggregation, a side benefit of LACP is its ability to
detect link layer failure within a service provider network. LACP packets are
exchanged end to end, thus if a link in the middle fails, but the local ports do not
register the failure, LACP times out and disables the port for traffic. VLACP—
Virtual LACP—can be used to speed up the link layer failure detection process if
necessary.
The interfaces between the LACP module and the other modules is shown in
Figure 19 on page 93.
As shown in Figure 19 on page 93, the link aggregation sublayer comprises the
following functions:
• Frame distribution:
This block takes frames submitted by the MAC client and submits them for
transmission on the appropriate port, based on a frame distribution algorithm
employed by the Frame Distributor.
Frame distribution also includes an optional Marker Generator/Receiver used
for the Marker Protocol. For the Ethernet Routing Switch 8600, only the
Marker Receiver function is implemented. Refer to “MultiLink Trunking
(MLT)” on page 79 for details about the frame distribution function.
• Frame collection:
This block passes frames received from the various ports to the MAC client.
Frame collection also includes a Marker Responder, used for the Marker
Protocol.
• Aggregator Parser/Multiplexers:
— During transmission operations, these blocks pass frame transmission
requests from the Distributor, Marker Generator, and Marker Responder
to the appropriate port.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 95
Link aggregation allows you to group switch ports together to form a link group to
another switch or server, thus increasing aggregate throughput of the
interconnection between the devices while providing link redundancy.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 97
When you configure standards-based link aggregation, you must enable the
aggregatable field. After you enable the aggregatable field, the LACP aggregator
is one-to-one mapped to the specified multilink trunk.
For example, when you configure a link aggregation group (LAG), use the
following steps:
1 Assign a numeric key to the ports you want to include in the LAG.
2 Configure the LAG to be aggregatable.
3 Enable LACP on the port.
4 Create a multilink trunk and assign the same key to that multilink trunk.
The multilink trunk/LAG only aggregates those ports whose key matches its
own.
The newly created multilink trunk/LAG adopts the VLAN membership of its
member ports when the first port is attached to the aggregator associated with this
LAG. When a port is detached from an aggregator, the port is deleted from the
associated LAG port member list. When the last port member is deleted from the
LAG, the LAG is deleted from all VLANs and STGs.
After the multilink trunk is configured as aggregatable, you cannot add or delete
ports or VLANs manually.
To enable tagging on ports belonging to LAG, first disable LACP on the port, and
then enable tagging on the port and enable LACP.
The following are some guidelines to follow when using LACP and SMLT:
• If you use LACP in an SMLT square configuration, the LACP ports must have
the same keys for that SMLT LAG; otherwise, the aggregation can fail if a
switch failure occurs.
• If an SMLT aggregation switch has LACP enabled on some of its multilink
trunks, do not change LACP system priority after LACP is enabled on ports. If
some ports do not enter the desired multilink trunk after a dynamic
configuration change, use the CLI command (assume MLT 10): conf mlt
10 lacp clear-link-aggrgate
• Nortel recommends that LACP not be enabled on interswitch trunks to avoid
unnecessary processing and to maintain simplicity. If a failure detection
mechanism is required when there is an optical network between the SMLT
core switches, use VLACP.
LACP is supported on single port split multilink trunks and split multilink trunks.
Note: The Ethernet Routing Switch 8600 Software Release 4.1 does not
support the use of Simple Loop Prevention Protocol (SLPP) in an
LACP-SMLT environment.
If Open Shortest Path First (OSPF) routing is enabled on the port, do not set the
LACP periodic transmission timer to less than 1 second.
LACP priority
LACP priority is configured at the system level and at the port level.
• Port priority—determines which ports are aggregated into LAG if more than
eight ports are configured for the LAG, as in a standby-port configuration.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 99
LACP keys
LACP keys are used to determine which ports are eligible to be aggregated into a
LAG. The LACP keys are defined under the ports when the multilink trunk is
configured. The ports whose keys match the multilink trunk’s key can be
aggregated into that multilink trunk.
LACP timers
You can customize failover times by changing the LACP timer attributes (fast
periodic time; slow periodic time; aggregate wait time). These values are set by
default to match the IEEE 802.3ad values. If they are changed, these values must
match on the ports participating in aggregation between two devices.
Any changes to these values at the global level are reflected on all ports. However,
these values can be changed on a per-port level. When you change a LACP timer
globally, this value is set on all ports. The global timer value overwrites the local
port value irrespective of the LACP state. You must reconfigure any port values
that differ from the global values.
The user can use either the fast or slow timer, and this is set on the port level. By
default, the Ethernet Routing Switch 8600 uses the long timer. LACP uses the
following timers, which have the parameters indicated:
Timer changes must be made to all ports participating in link aggregation, as well
as to the ports on the partnering node.
When you enable LACP on a port, the timer values used are those set at the port
level. Toggling of the LACP status is required when timer values change. Existing
ports are not impacted by this change unless you toggle the LACP status on the
port.
LACP modes
LACP module operation is only affected by the physical link state or its LACP
peer status. When a link is enabled or disabled, the LACP module is notified. The
STP forwarding state does not affect the operation of LACP module. LACPDUs
can be sent even if the port is in the STP blocking state.
Unlike legacy multilink trunks, configuration changes (such as speed and duplex
mode) to a LAG member port are not applied to all the member ports in the
multilink trunk. Instead, the changed port is removed from the LAG and the
corresponding aggregator, and the user is alerted when the configuration is
created.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 101
In contrast to MLT, IEEE 802.3ad-based link aggregation does not expect BPDUs
to be replicated over all ports in the trunk group. Therefore, you must enter the
ntstg disable command to disable the parameter on the spanning tree group
for LACP-based link aggregation. See “Configuring Spanning Tree Protocol” on
page 385 for more information about this command.
Be aware that this parameter is applicable to all trunk groups that are members of
the spanning tree group. This is necessary when internetworking with devices that
only send BPDUs out of one port of the LAG.
Ethernet Routing Switch 8600 link aggregation groups operate under the
following rules:
Virtual LACP is an LACP extension that is used for end to end failure
detection.VLACP uses the Hello mechanism of LACP to periodically send Hello
packets to ensure there is end to end reachability. When Hello packets are not
received, VLACP transitions to a failure state, which indicates a service provider
failure, and the port is disabled. An advantage of VLACP is that VLACP timers
can be reduced to 200 milliseconds, which allows approximately one second
failure detection and switchover time.
For the Ethernet Routing Switch 8600 Software Release 4.1, the VLACP fast
periodic timer is reduced to 10 ms, which allows sub-100 ms failover time. To
attain sub-100 ms core convergence, each switch must use the Enterprise
enhanced CPU daughter card 8692SF (also called SuperMezz). This feature is
only supported between core Ethernet Routing Switches. For more information
about this feature, see “VLACP timers and sub-100 ms core convergence” on
page 104.
Ethernet cannot detect end to end failures. Ethernet was extended to detect remote
link failures through functions such as remote fault indication or far-end fault
indication mechanisms, but a major limitation of these functions is that they
terminate at the next Ethernet hop; failures cannot be determined on an end to end
basis.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 103
As shown in Figure 21, if the L2 link on S1 (S1/L2) fails, the link-down failure is
not propagated over the SP network to S2. Thus S2 continues to send traffic over
the failed S2/L2 link.
Note that LACP, as defined by IEEE, is a protocol that exists between two bridge
endpoints; therefore the LACP PDUs are terminated at the next SP interface.
Using VLACP, far-end failures can be detected, which allows MLT to properly
failover when end to end connectivity is not guaranteed for certain links in an
aggregation group. VLACP prevents the failure scenario shown in Figure 21 on
page 103.
When used in conjunction with SMLT, VLACP allows you to switch traffic
around entire network devices before Layer 3 protocols detect a network failure,
thus minimizing network outages.
The Ethernet Routing Switch 8600 Software Release 4.1 uses the following
VLACP timers, which have the parameters indicated:
Ethernet Routing Switch 8600 Software Release 4.1 can attain sub-100
millisecond (ms) failover time. The VLACP fast periodic timer is reduced to a
minimum value of 10 ms to enable sub-100 ms convergence. Sub-100 ms
convergence guarantees ultra fast convergence for critical business and
multimedia applications.
To attain sub-100 ms core convergence, each switch must use the Enterprise
enhanced CPU daughter card 8692SF (also called SuperMezz). This feature is
only supported between core Ethernet Routing Switch 8600s. For more
information about SuperMezz, see the document Installing Ethernet Routing
Switch 8600 Modules.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 105
Figure 22 on page 106 depicts four core Ethernet Routing Switch 8600s equipped
with SuperMezz modules exchanging fast periodic timer messages to acheive
sub-100 ms convergence. Table 10 compares the timer ranges (in milliseconds)
used in VLACP and LACP for Release 3.7 and 4.1.
Table 10 Ethernet Routing Switch 8600 LACP and VLACP timer comparison
LACP
Fast periodic timer range (ms) 200 to 20 000 200 to 20 000 200 to 20 000
Default 1000 Default 1000 Default 1000
Slow periodic timer range (ms) 10 000 to 30 000 10 000 to 30 000 10 000 to 30 000
Default 30 000 Default 30 000 Default 30 000
Aggregation wait timer range (ms) 200 to 2000 200 to 2000 200 to 2000
Default 2000 Default 2000 Default 2000
VLACP
Fast periodic timer range (ms) 200 to 20 000 200 to 20 000 10 to 20 000 (NEW)
Default 1000 Default 1000 Default 2000
Slow periodic timer range (ms) 10 000 to 30 000 10 000 to 30 000 10 000 to 30 000
Default 30 000 Default 30 000 Default 30 000
This section describes the Split MultiLink Trunking (SMLT) feature and includes
the following topics. For help with common terms and acronyms used with SMLT,
refer to the “Glossary” on page 573.
• “Overview”
• “Advantages of SMLT” on page 107
• “How does SMLT work?” on page 111
• “SMLT-on-Single-CPU feature” on page 118
• “Single Port SMLT” on page 119
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 107
Overview
Because SMLT inherently avoids loops due to its superior enhanced link
aggregation protocol, SMLT networks do not need to use the IEEE 802.1d
Spanning Tree Protocol to enable loop-free triangle topologies. This is
accomplished by implementing a method that allows two aggregation switches to
appear as a single device to edge switches, which are dual-homed to the
aggregation switches. The aggregation switches are interconnected using an
interswitch trunk, which allows them to exchange addressing and state
information (permitting rapid fault detection and forwarding path modification).
Although SMLT is primarily designed for Layer 2, it also provides benefits for
Layer 3 networks as well.
Note: Layer 2 edge switches must support some form of link aggregation
(such as MLT) to allow communications with an SMLT aggregation
switch.
Advantages of SMLT
SMLT improves the reliability of Layer 2 networks that operate between user
access switches and the network center aggregation switch by providing:
These advantages are described in more detail in the sections that follow.
SMLT helps eliminate all single points of failure and creates multiple paths from
all user access switches to the core of the network. In case of failure, SMLT
recovers as quickly as possible so that no capacity is unused. SMLT provides a
transparent and interoperable solution that requires no modification on the part of
the majority of existing user access devices.
Networks that are designed to have user access switches dual-homed to two
aggregation switches, and have VLANs spanning two or more user access
switches, experience the following design constraints:
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 109
SMLT solves the spanning tree problem by combining two aggregation switches
into one logical MLT entity, thus making it transparent to any type of edge switch.
In the process, it provides quick convergence, while load sharing across all
available trunks.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 111
• “Interswitch trunking”
• “CP Limit and SMLT interswitch trunking” on page 112
• “Other SMLT aggregation switch connections” on page 114
Interswitch trunking
• Confirm that they are alive and exchange MAC address forwarding tables.
• Send traffic between single switches attached to the aggregation switches.
• Serve as a backup if one SMLT link fails.
Because the interswitch trunk is required for SMLT, for proper operation Nortel
recommends that you use multiple links on the interswitch trunk to ensure
reliability and high availability. Nortel recommends using Gigabit Ethernet links
for interswitch trunk connectivity to provide enough bandwidth for potential cross
traffic.
Control packet rate limit (CP Limit) is a feature that controls the amount of
multicast and broadcast traffic that can be sent to the CPU from a physical port. It
protects the CPU from being flooded by traffic from a single, unstable port. The
CP-Limit default settings are:
Note: When you configure SMLT links, Nortel recommends setting the
multicast packets-per-second value to 6000 pps.
Note that for SMLT ports, CP Limit is enabled by default. Packets that are
destined for the control plane (that is, packets that have a QoS level of 7 such as
BPDU, OSPF hello) trigger this feature. When the threshold is reached, CP Limit
disables the port from which the offending traffic is received.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 113
You can enable CP Limit for all ports so that the Ethernet Routing Switch 8600
can disable any port that receives excess control traffic. SMLT is an exception
because of the importance of the interswitch trunk. Nortel recommends that you
disable the CP Limit feature on all interswitch trunk ports so that these ports are
not disabled, which can compromise the stability of SMLT.
Do not confuse CP Limit with port rate limiting. Port rate limiting and CP Limit
serve different purposes. Port level rate limiting, if enabled, limits all packets with
broadcast and multicast addresses to control the amount of user traffic. CP Limit
is a protection mechanism for the control plane that only counts packets that are
destined for the control plane, or packets that are processed by the CPU with a
QoS=7.
The CPU can count packets which are not counted by the CP Limit feature. Such
packet types can include auto-topology or NetBIOS. The QoS level ensures that
control plane traffic (with QoS=7) is processed first in the case of congestion in
the CPU buffer.
If the actual packets-per-second rate sent from a port exceeds the defined rate,
then the port is administratively shut down to protect the CPU from continued
bombardment. Disabling interswitch trunk ports in this way can impair network
traffic flow, as this is a critical port for SMLT configurations.
The Ethernet Routing Switch 8600 also supports the Extended CP Limit feature.
For more information about Extended CP Limit, see Configuring Network
Management.
User access switches B and C can use any method to determine which link of their
multilink trunk connections to use to forward a packet, as long as the same link is
used for a given source/destination address (SA/DA) pair. This is true regardless
of whether the DA is known by B or C. SMLT aggregation switches always send
traffic directly to a user access switch, and only use the interswitch trunk for
traffic that they cannot forward in another, more direct way.
Assuming a and b1/b2 are communicating through Layer 2, traffic flows from A
to switch E and is forwarded over its direct link to B. Traffic coming from b1 or b2
to a is sent by B on one of its multilink trunk ports.
B can send traffic from b1 to a on the link to switch E, and traffic from b2 to a on
the link to F. In the case of traffic from b1, switch E forwards the traffic directly to
switch A, while traffic from b2, which arrived at F, is forwarded across the
interswitch trunk to E and then on to A.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 115
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 117
Response from B:
Response from C:
=========================================================================
Vlan Fdb
=========================================================================
VLAN MAC QOS SMLT
ID STATUS ADDRESS INTERFACE MONITOR LEVEL REMOTE
-------------------------------------------------------------------------
10 self 00:00:5e:00:01:01 - false 1 false
10 self 00:80:2d:ba:d6:01 - false 1 false
10 learned 00:80:2d:be:22:01 MLT-5 false 1 true
10 learned 00:e0:7b:b3:04:00 MLT-1 false 1 true
10 learned 00:e0:7b:b3:04:10 MLT-1 false 1 false
SMLT-on-Single-CPU feature
Beginning with Ethernet Routing Switch 8600 Software Release 3.5 and
continuing through the latest hardware revisions, an enhancement was added to
improve SMLT failover behaviors for single CPU/SF configurations.
Prior to this release, Nortel required that two switch fabric modules be installed in
a chassis running SMLT. This was a requirement because SMLT clients did not
reroute traffic around SMLT aggregation switches with a single failed CPU. Thus,
packet loss can occur in this rare failure case.
You can configure this feature using the CLI. For instructions, see “Configuring
SMLT-on-Single-CPU” on page 462.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 119
This feature is applicable to all I/O modules capable of supporting the new Single
CPU/Switch Fabric reliability enhancement. By default, the
SMLT-on-Single-CPU feature is disabled.
Note that not all versions of classic (legacy) modules can support this feature. If
non-supported modules are in a chassis which has this feature enabled, those
modules will not be initialized and an error message will be logged to the log file.
For information on module version support consult your Nortel representative.
For example, the 8608SX/8608SXE modules are one example of non-supported
module types.
Single Port SMLT lets you configure a split multilink trunk using a single port.
The Single Port SMLT behaves like an MLT-based SMLT, and can coexist with
SMLTs in the same system. Single Port SMLT lets you scale the number of split
multilink trunks on a switch to the maximum number of available ports.
Split multilink trunk links can exist in the following combinations on the
SMLT-aggregation switch pair:
Note: Single Port SMLT is not supported on the 8681 module 10 Gigabit
Ethernet ports with Software Release 3.5.
There are four generic topologies in which SMLT can be deployed. The user can
choose either a Single Port SMLT configuration, a triangle configuration, a square
configuration, or a full mesh configuration, depending on the resiliency and
redundancy required.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 121
Sometimes you need to exceed the Ethernet Routing Switch 8600 multilink trunk
Group ID limit for server farm applications. In this case, you can use Single Port
SMLT (see Figure 28). This topology allows scaling up to the maximum number
of ports on a switch. Any Layer 2 switch capable of link aggregation can be used
as the client in this case.
The most often used configuration, the triangle configuration, connects multiple
access switches to a pair of Ethernet Routing Switch 8600 devices. In many cases,
dual-NIC servers capable of link aggregation are connected directly to the
Ethernet Routing Switch 8600 devices in a similar fashion. Figure 29 depicts
Extranet Switches (ES) as the SMLT Clients. In real-world applications, any
Layer 2 device capable of link aggregation can become the SMLT client.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 123
Often used in an enterprise core, the square SMLT configuration provides network
resiliency. Figure 30 shows this topology.
For maximum reliability and resiliency, all SMLT nodes can be fully meshed. This
may not be an economical solution for many cases, but if traffic loss cannot be
tolerated, this design can route traffic around any failure. Figure 31 shows the full
mesh topology.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 125
You can configure a split multilink trunk with a single port split multilink trunk on
one side and an MLT-based split multilink trunk on the other. Both must have the
same SMLT ID. In addition to general use, Figure 32 shows how this
configuration can be used for upgrading an MLT-based split multilink trunk to a
single port split multilink trunk without taking down the split trunk.
Figure 32 Changing a split trunk from MLT-based SMLT to Single Port SMLT
Switch A Switch B Switch A Switch B
IST IST
1 Switches A and B are configured with 2 Delete MLT-based SMLT 10 on switch B. All
MLT-based SMLT. traffic switches over SMLT 10 on switch A.
IST IST
3 Configure single port SMLT ID 10 on switch B. 4 Delete MLT-based SMLT 10 on switch A. All
Traffic switches over both sides of split trunk. traffic switches over single port SMLT 10 on
switch B.
Switch A Switch B
IST
To configure Single Port SMLT using Device Manager, see “Configuring a single
port split multilink trunk” on page 286.
To configure Single Port SMLT using the CLI, see “Creating a single port split
multilink trunk” on page 460.
The Ethernet Routing Switch 8600 fully supports the IEEE 802.3ad Link
Aggregation Control Protocol (LACP); this is supported not only on multilink
trunks, but also on a pair of SMLT switches.
With this protocol, the Ethernet Routing Switch 8600 provides a standardized
external link aggregation interface to third-party vendor IEEE 802.3ad
implementations. This protocol extension provides dynamic link aggregation
mechanisms. Advantages of this protocol extension include:
• MLT peers and SMLT client devices can be network switches, and can also be
any type of server/workstation that supports link bundling through IEEE
802.3ad.
• Single-link and multilink trunk solutions support dual-homed connectivity for
more than 350 attached devices, so that you can build dual-homed server farm
solutions.
• Nortel tightly coupled the IEEE link aggregation standard with the SMLT
solution to provide seamless configuration integration, while also detecting
failure scenarios during network setup or operations.
Supported scenarios
Non-supported scenarios
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 127
• Mismatched SMLT IDs assigned to SMLT client: SMLT switches can detect
if SMLT IDs are not consistent. The SMLT aggregation switch, which has the
lower IP address, does not allow the SMLT port to become a member of the
aggregation, thus avoiding misconfigurations.
• SMLT client switch does not have automatic aggregation enabled (LACP
disabled): SMLT aggregation switches can detect that aggregation is not
enabled on the SMLT client, thus no automatic link aggregation is established
until the configuration is resolved.
• Single CPU failures: In the case of a CPU failure in a system with only one
switch fabric, the LACP on the other switch (or switches) detects the remote
failure and triggers all links connected to the failed system to be removed
from the link aggregation group. This process allows failure recovery for the
network along a different network path.
If you use LACP in a square SMLT topology, LACP must have the same keys for
that SMLT LAG; otherwise, the aggregation can fail if a switch failure occurs.
Use the following procedure when designing and configuring a SMLT network
(for more information, see Network Design Guidelines).
Do not enable Simple Loop Prevention Protocol (SLPP) on all the ports of a
square, partial, or full mesh split multilink trunk core. SLPP can be enabled on
other non-SMLT ports of the core. For more information about SLPP, see “Simple
Loop Prevention Protocol” on page 130.
Using VRRP, you can have one active primary router per IP subnet, with all other
network VRRP interfaces operating in backup mode.
VRRP, when used with SMLT, becomes less efficient. Users that access switches
aggregated into two Split-MLT switches send their shared traffic load (based on
source and destination MAC or IP addresses) on all uplinks towards the SMLT
aggregation switches.
VRRP, however, has only one active routing interface enabled. All other interfaces
are in backup (standby) mode. In this case, all traffic is forwarded over the IST
link towards the primary VRRP switch. Potentially, all traffic that arrives at the
VRRP backup interface is forwarded, so there is not enough bandwidth on the IST
link to carry all the aggregated riser traffic. However, an enhancement to VRRP
overcomes this issue by ensuring that the IST trunk is not used in such a case for
primary data forwarding.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 129
VRRP BackupMaster
If enabled, the VRRP BackupMaster acts as an IP router for packets destined for
the logical VRRP IP address. Thus, all traffic is directly routed to the subnetwork
it is destined for, and not Layer 2 switched to the VRRP master. This eliminates a
potential limitation in the available interswitch trunk bandwidth.
The following sections describe a few guidelines to follow when using VRRP
BackupMaster with SMLT:
• The VRRP virtual IP address and the VLAN IP address cannot be the same.
• Configure the hold-down timer for VRRP to a value that is approximately 150
percent of the IGP (Interior Gateway Protocol, such as RIP or OSPF)
convergence time to allow the IGP enough time to reconverge following a
failure. That is, if OSPF takes 40 seconds to reconverge, set the holddown
timer to 60 seconds.
• Stagger the hold-down timers with ARP requests. This means that the
Ethernet Routing Switch 8600 will not have to run ARP at the same time,
causing excess CPU load. For example, if one node has the hold-down timer
set for 60 seconds, you can set the other to 65 seconds.
• Enable hold-down times on both VRRP sides (Master and BackupMaster).
SMLT subsecond failover benefits are only supported in Layer 2 networks. When
routing is involved, depending on the specific routing protocol, this convergence
time can cause network interruptions ranging from seconds to minutes.
The Nortel RSMLT feature extends the subsecond failover benefit to core
topologies by providing an active-active router concept to core SMLT networks.
Supported scenarios are split multilink trunk triangle, square, and full mesh
topologies, with routing enabled on the core VLANs.
Routing protocols can be any of the following protocol types: IP Unicast Static
Routes, RIP1, RIP2, OSPF, BGP and IPX RIP.
In the case of core router failures, RSMLT provides packet forwarding, thus
eliminating dropped packets during the routing protocol convergence.
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 131
• problems with the edge switch (for example, when MLT or some other form
of link aggregation is not working)
You can detect loops with SLPP. You can also use the Ethernet Routing Switch
8600 Loop Detection feature (see “Configuring VLAN Loop Detection” on
page 173).
When you configure and enable SLPP, the switch control processor (CP) sends a
SLPP-PDU to the VLAN. If there is a loop on the VLAN, the SLPP-PDU
eventually returns to the originating port and is received by the CP. The CP
disables that port, and a message appears on the console to describe the reason.
After a port is disabled, it remains disabled, and manual intervention is required to
reenable the port. The port auto-enable feature can be used to reenable the port
after a predefined interval.
Figure 33 on page 131 shows the fields of an SLPP-PDU. The destination address
(DA) is the switch MAC address with the multicast bit set; the source address
(SA) is the switch MAC address; the protocol ID (PID) default is 0x8104 and is
user configurable; and the payload contains three fields: (1) SLPP protocol
version (one byte), (2) reserved (one byte), (3) VLAN ID (two bytes).
There are several factors to keep in mind when you use SLPP:
• The SLPP-PDU destination MAC address is the switch MAC address (with
the multicast bit set) while the source MAC address is the switch MAC
address.
• The SLPP-PDU is sent out as a multicast packet and is constrained to the
VLAN on which it is sent.
• The SLPP-PDU payload contains the VLAN ID; a separate SLPP-PDU is sent
for each VLAN.
• The SLPP-PDU packet transmission interval default is 500 milliseconds and
is configurable from 500 to 5000 milliseconds.
• When a SLPP-PDU is received on a port that is a member of a multilink trunk,
all port members in that multilink trunk are disabled if SLPP-Rx is enabled on
all port members. If all port members do not have SLPP-Rx enabled, only
those that have SLPP-Rx enabled are disabled.
• The SLPP-PDU can be received by the originating CP or the peer SMLT CP.
All other switches treat the SLPP-PDU as a normal multicast packet, ignore it,
and forward it to the VLAN.
• SLPP-PDU transmission and reception only operates on ports for which STP
is in forwarding state (if STP is enabled on one switch in the path).
• You must enable SLPP packet receive on a per-port basis to detect a loop:
— SLPP packet reception should only be enabled on SMLT access ports. It
should never be enabled on SMLT IST ports, nor should it be enabled on
any SMLT square or full mesh core ports.
— By default, the SLPP packet receive threshold is set to 1 second. It is
configurable from 1 to 20 seconds.
— Vary the SLPP packet receive threshold between the two core SMLT
switches so that if a loop is detected, the access ports on both switches
does not go down, which avoids SMLT client isolation.
Note: SLPP does not support jumbo frames on the Ethernet Routing
Switch 8600 v4.1
314725-E Rev 00
Chapter 1 Layer 2 operational concepts 133
SLPP does not replace the functionality of Spanning Tree Protocol, but is a
supplement to help detect and prevent loops in the SMLT environment. Nortel
recommends that you use this feature in a SMLT environment only.
Note: The Ethernet Routing Switch 8600 Software Release 4.1 does not
support the use of SLPP in an LACP-SMLT environment.
For information about configuring SLPP with the CLI, see “Configuring Simple
Loop Prevention Protocol” on page 478. For information about configuring SLPP
with Device Manager, see “Configuring Simple Loop Prevention Protocol” on
page 290.
314725-E Rev 00
135
Chapter 2
Configuring VLANs using Device Manager
Topic Page
➨ From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed, which shows all defined
VLANs (Figure 34).
Field Description
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 137
Field Description
StgId The ID of the spanning tree group to which the VLAN belongs.
PortMembers The slot/port of each possible VLAN member.
ActiveMembers The slot/port of each active VLAN member, including all static
members and potential members meeting the policy.
StaticMembers Slot/port of each static (always) member of a protocol-based
VLAN.
NotAllowToJoin The slot/ports that are never allowed to become a member of the
protocol-based VLAN.
OspfPassiveMembers The slot/ports of each OSPF passive member.
ProtocolId Specify the network protocol for protocol-based VLANs. This
value is taken from the Assigned Numbers RFC.
• ip (IP version 4)
• ipx802dot3 (Novell IPX on Ethernet 802.3 frames)
• ipx802dot2 (Novell IPX on IEEE 802.2 frames)
• ipxSnap (Novell IPX on Ethernet SNAP frames)
• ipxEthernet2 (Novell IPX on Ethernet Type 2 frames)
• appleTalk (AppleTalk on Ethernet Type 2 and Ethernet SNAP
frames)
• decLat (DEC LAT protocol)
• decOther (Other DEC protocols)
• sna802dot2 (IBM SNA on IEEE 802.2 frames)
• snaEthernet2 (IBM SNA on Ethernet Type 2 frames)
• netBIOS (NetBIOS protocol)
• xns (Xerox XNS)
• vines (Banyan VINES)
• ipv6 (IP version 6)
• usrDefined (user-defined protocol)
• RARP (Reverse Address Resolution Protocol)
• PPPoE (Point-to-Point Protocol over Ethernet)
Note: if the VLAN type is port-based, None is displayed in the
Basic tab ProtocolId field.
SubnetAddr The source IP subnet address (IP subnet-based VLANs only).
SubnetMask The source IP subnet mask (IP subnet-based VLANs only).
This section describes how you can create and configure port-based VLANs using
the following procedures.
When creating a VLAN, keep in mind the rules described in “VLAN rules” on
page 54.
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed, which shows all defined
VLANs (Figure 34 on page 136).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 139
— (Optional) In Color Identifier, click the down arrow and choose a color
from the list, or use the color provided.
4 In the StgId box, type or select the spanning tree group ID of the VLAN.
5 In the Type box, select byPort.
6 In the PortMembers box, click the ellipsis (...).
The VlanPortMembers box appears (Figure 36).
Figure 36 VlanPortMembers
7 Click the ports that are always members. The ports that are selected are
recessed, while the non selected ports are not recessed. Port numbers that are
dimmed cannot be selected as VLAN port members. (For example, you
cannot select ports that do not have the same spanning tree group ID as that of
the new VLAN.)
8 Click OK.
The Port Membership box closes and the port members appear in the Insert
Basic box.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 141
Field Description
Field Description
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (Figure 34 on page 136).
2 In the Basic tab, select the VLAN for which you are configuring an IP
address.
The VLAN is highlighted.
3 Click IP.
The IP, VLAN box for the selected VLAN appears with the IP Address tab
displayed (Figure 37).
4 Click Insert.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 143
7 In the IP, VLAN box and the VLAN box, click Close.
The IP subnet-based VLAN is configured.
Field Description
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (Figure 34 on page 136).
2 In the Basic tab, select the VLAN for which you are configuring a network
address and encapsulation.
The VLAN is highlighted.
3 Click IPX.
The IPX, VLAN box for the selected VLAN appears with the Addresses tab
displayed (Figure 39).
4 Click Insert.
The IPX, VLAN, Insert Addresses box appears (Figure 40 on page 145).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 145
8 In both the IP, VLAN box and the VLAN box, click Close.
The network address and encapsulation method are configured for the VLAN.
• Protocol-based
• User-defined protocol-based
• MAC address-based
• IP subnet-based
• sVLAN-based
This section describes how you can create and configure policy-based VLANs
using the following procedures.
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
6 (Optional) In the Color Identifier box, select the color or use the color
provided.
This color is used by VLAN Manager to visually distinguish the VLANs in a
network.
7 In the StgId box, select the spanning tree group ID of the VLAN.
8 Specify port membership by clicking the ellipsis (...) for one of the following:
• PortMembers (use this for VLAN by IpSubnet, Protocolid, or SrcMac)
• StaticMembers
• NotAllowedToJoin
The VlanPortMembers box appears (Figure 41 on page 147).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 147
Figure 41 VlanPortMembers
10 Click OK.
The Port Membership box closes, and the port members appears in the
VLAN, Insert Basic box.
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
7 In the StgID box, select the spanning tree group ID of the VLAN.
8 To specify the VLAN port membership, click the ellipsis (...) for one of the
following fields.
• Port Members
• StaticMembers
• NotAllowedToJoin
The VlanPortMembers box appears (see Figure 45 on page 156).
9 In the VlanPortMembers box, click each port button to choose the desired
membership color.
• Yellow: Potential members—dynamic (potential members are treated as
always members).
• Green: Always members—static
• Red: Never members—not allowed to join
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 149
When you have two VLANs with potential members and you want to move ports
from one VLAN to the other, you must first change their port membership to
Never. Then you can assign the ports to the other VLAN.
10 Click OK.
The VlanPortMembers box closes and the port members are added to the
Insert Basic box.
12 In the AgingTime box, specify the timeout period, in seconds, for aging out
the dynamic member ports of the VLAN, or use the default of 600 seconds.
13 In the QosLevel box, select a level.
14 Click Insert.
The VLAN, Insert Basic box closes, and the protocol-based VLAN is added
to the Basic tab of the VLAN box.
15 Click Close.
The VLAN is configured and the VLAN box closes.
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
5 In the VlanPortMembers box, click each port button to achieve the desired
membership color.
• Yellow: Potential members—dynamic.
• Green: Always members—static
• Red: Never members—not allowed to join
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 151
7 In the UserDefinedPID box, enter the protocol ID for the protocol in the
format 0x (protocol type in hexadecimal).
In the Ethernet Routing Switch 8600 modules, the 16-bit PID assigned to a
protocol-based VLAN specifies either an Ethertype, a DSAP/SSAP, or a
SNAP PID, depending on whether the frame encapsulation is Ethernet 2,
802.2, or LLC-SNAP, respectively.
11 Click Close.
The non-standard protocol-based VLAN is configured.
Before creating a source MAC-based VLAN, you must first enable source MAC
address-based VLANs in the system.
1 From the Device Manager menu bar, choose Edit > Chassis.
The Chassis box appears with the System tab displayed.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 153
Before configuring a source MAC address-based VLAN, you must first enable
source MAC address-based VLANs on the system (see “Enabling source MAC
address-based VLANs on the system” on page 152).
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
2 Click Insert.
The VLAN, Insert Basic box appears (see Figure 35 on page 139).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 155
5 (Optional) In the Name box, type the VLAN name, or use the one provided.
6 (Optional) In the Color Identifier box, select a color, or use the one provided.
This color is used by VLAN Manager to visually distinguish the VLANs in a
network.
7 In the StgId box, click the down arrow, and select a spanning tree group ID
for the VLAN.
8 To specify the VLAN port membership, click the ellipsis (...) for one of the
following fields:
• Port Members
• StaticMembers
• NotAllowedToJoin
The VlanPortMembers box appears (see Figure 45).
Figure 45 VlanPortMembers
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 157
11 In the Aging Time box, specify the timeout period in seconds for aging out
the dynamic member ports of the VLAN, or use the default of 600 seconds.
12 (Optional) In the QosLevel box, select a Quality of Service level, or use the
default, level 1.
13 Click Insert.
The VLAN, Insert Basic box closes, and the VLAN appears on the Basic tab.
15 Click Mac.
The MAC, VLAN box appears.
16 Click Insert.
The Insert MAC VLAN box appears.
17 In the MacAddr box, specify a source MAC address for the VLAN.
18 Click Insert.
The Insert MAC VLAN box closes and the MAC address appears in the
MAC, VLAN box.
19 Click Close.
The MAC, VLAN and VLAN boxes close, and the Source MAC
address-based VLAN is configured.
Before configuring a source MAC address-based VLAN, you must first enable
source MAC address-based VLANs on the system (see “Enabling source MAC
address-based VLANs on the system” on page 152).
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
3 Click Mac.
The MAC, VLAN box appears.
4 Click File.
The Edit MAC VLAN box appears.
Managing a VLAN
After you have configured a VLAN, you may wish to enable features to improve
VLAN performance. This section describes how to configure advanced VLAN
operations, such as forwarding, MAC address auto-learning, and Loop Detection.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 159
Note: After you create a VLAN, you cannot change the VLAN type.
You must first delete the VLAN, and then create a new VLAN of a
different type.
2 Double-click the PortMember number for the VLAN whose ports you want
to change.
The PortMembers box appears (Figure 46 on page 160).
5 Click Apply.
The VLAN’s port membership is changed and the VLAN box closes.
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
2 Click the Advanced tab.
The Advanced tab appears (Figure 47 on page 161).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 161
Field Description
Field Description
ProtocolId Specify the network protocol for protocol-based VLANs. This value
is taken from the Assigned Numbers RFC.
• ip (IP version 4)
• ipx802dot3 (Novell IPX on Ethernet 802.3 frames)
• ipx802dot2 (Novell IPX on IEEE 802.2 frames)
• ipxSnap (Novell IPX on Ethernet SNAP frames)
• ipxEthernet2 (Novell IPX on Ethernet Type 2 frames)
• appleTalk (AppleTalk on Ethernet Type 2 and Ethernet SNAP
frames)
• decLat (DEC LAT protocol)
• decOther (Other DEC protocols)
• sna802dot2 (IBM SNA on IEEE 802.2 frames)
• snaEthernet2 (IBM SNA on Ethernet Type 2 frames)
• netBIOS (NetBIOS protocol)
• xns (Xerox XNS)
• vines (Banyan VINES)
• ipv6 (IP version 6)
• usrDefined (user-defined protocol)
• RARP (Reverse Address Resolution protocol)
• PPPoE (Point-to-point protocol over Ethernet)
Note: if the VLAN type is port-based, None is displayed in the
Basic tab ProtocolId field.
Encap Specifies the encapsulation method. Values are:
• Ethernet II
• SNAP
• LLC
• RAW
AgingTime The timeout period in seconds for aging out the dynamic member
ports of policy-based VLANs.
MacAddress The MAC address assigned to the virtual router interface for this
VLAN. This field is relevant only when the VLAN is configured for
routing. This MAC address is used as the Source MAC in routed
frames, ARP replies, or RIP and OSPF frames.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 163
Field Description
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
2 Click the Forwarding tab.
The Forwarding tab appears (Figure 48 on page 164).
Table 15 describes the fields in the Forwarding tab, as well as those displayed by
clicking the Filter button.
Field Description
3 Click Filter.
The VLAN, Forwarding—Filter tab appears (Figure 49 on page 165).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 165
2 From the Device Manager menu bar, choose Edit > Port > General.
The Port box appears with the Interface tab displayed (see Figure 50 on
page 166).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 167
4 To configure tagging on the port, select the PerformTagging check box. This
setting is applied to all VLANs associated with the port.
If the check box is selected, tagging is enabled. All frames sent from this port
are tagged. You can either discard the tagged frames (go to step 5) or forward
them to a VLAN (go to step 6).
• If the check box is cleared, tagging is disabled. The port does not send
tagged frames. The switch removes the tag before sending the frame out
of the port. You can either discard the untagged frames (go to step 5) or
forward them to a VLAN (go to step 6).
Field Description
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 169
Field Description
DiscardUntaggedFrames Determines how to process untagged frames received on this tagged port.
When the flag is set, these frames are discarded by the forwarding process.
When the flag is reset, these frames are assigned to the VLAN specified by
the DefaultVlanId.
UntagDefaultVLAN Enables or disables egress tagging on the default VLAN of the port.
DefaultVlanId The VLAN ID assigned to untagged frames received on this trunk port.
This field is meaningless when the port is not a trunk port.
LoopDetect Enables loop detection.
ArpDetect Enables or disables the ARP loop detection feature on this port. If a loop is
detected, the port is disabled. For more information about this feature, see
Configuring IP Routing Operations.
LoopDetectAction This value is used to specify the action which needs to be taken once a MAC
loop is detected on a specific port. They include portDown, vlanBlock, and
macDiscard.
For more information about this feature, see “Untagging Default VLAN on a
Tagged Port feature” on page 50.
Figure 52 VLAN—UntagDefaultVlan
You can use MAC address auto-learning to define VLAN ports that you want to
automatically learn MAC addresses.
1 From the Device Manager menu bar, choose VLAN > MAC Learning.
The VLanMacLearning box appears with the Manual Edit tab displayed
(Figure 53).
2 Click Insert.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 171
The VLAN MAC Learning, Insert Manual Edit box appears (Figure 54).
5 Click the ports you want to configure to use VLAN MAC learning, and then
click Ok.
The BridgeManualEditPorts box closes and the port numbers are added to the
Insert Manual Edit box.
6 Click Insert.
The Insert Manual Edit box closes and the MAC address and ports are added
to the VLAN MAC Learning Manual Edit box.
7 Click Close.
VLAN MAC learning is configured and the box closes.
Field Description
Use the Auto Learn tab to change a MAC address that was automatically learned
to one that can be manually edited.
1 On the Device Manager menu bar, choose VLAN > MAC Learning.
The VlanMacLearning box appears with the Manual Edit tab displayed (see
Figure 53 on page 170).
3 Double-click in the Auto Learn Action field on the address you want to
change, and select ConvertToManualEdit from the list.
4 Click Apply.
The Auto Learn Action is changed.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 173
Field Description
On a per-port basis, the Loop Detection feature detects MAC addresses that are
looping from one port to other ports. After a loop is detected, the port on which
the MAC addresses were learned is disabled. Additionally, if a MAC address is
found to loop, the MAC address is disabled for that VLAN.
Note: The Loop Detection feature must only be enabled on SMLT ports,
and never used on IST ports or core SMLT square or full mesh ports.
You can also use Simple Loop Prevention Protocol to detect VLAN loops (see
“Simple Loop Prevention Protocol” on page 130).
For information about the Loop Detection feature, see “VLAN Loop Detection”
on page 65.
The VLAN tab appears (Figure 57). Table 16 on page 168 describes the fields
in the VLAN tab.
5 Click Apply.
6 To view loop detection information, click Loop Detect.
The Loop Detected tab appears (Figure 58 on page 175), showing loop
detection information.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 175
Field Description
You can enable or disable directed broadcast traffic forwarding for an IP interface
on the Direct Broadcast tab.
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
2 Select a VLAN.
The VLAN is highlighted.
3 Click IP.
The IP, VLAN box appears with the IP Address tab displayed (Figure 37 on
page 142).
4 Click the Direct Broadcast tab.
The Direct Broadcast tab appears (Figure 59).
5 Select DirectBroadcastEnable.
• If selected, IP-directed broadcasts are enabled.
• If cleared, IP-directed broadcasts are suppressed.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 177
Field Description
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
3 In the FdbAging box, enter an interval, in seconds, for aging out dynamically
learned forwarding information, or keep the default (300 seconds).
4 Click Apply and then click Close.
Your changes are applied and the Bridge, VLAN box closes.
Field Description
FdbAging The timeout period (in seconds) used for aging out FDB entries
of this VLAN.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 179
The Forwarding tab shows the forwarding database for the VLAN and contains
unicast information about bridge forwarding or filtering. This information is used
by transparent bridging to determine how to forward a received frame.
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (Figure 34 on page 136).
Field Description
Address A unicast MAC address for which the bridge has forwarding or filtering
information.
VlanId The ID of the VLAN.
Field Description
Port Either a value of zero (0) or the port number of the port on which a
frame having the specified MAC address was seen. A value of 0
indicates a self-assigned MAC address.
Monitor Select true or false to copy packets with a MAC address in the source
or destination field. Used with port mirroring.
QosLevel Quality of Service level.
SmltRemote Specifies whether you want to use SMLT.
Status Values include:
• self—one of the bridge addresses
• learned—a learned entry that is being used
• mgmt—a static entry
You can perform this procedure for all MAC addresses as described in the
following sections:
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 181
Figure 62 VLAN—Advanced
To clear learned MAC addresses from the forwarding database for all VLANs by
port:
2 From the menu bar, choose Edit > Port > General.
The Port box appears with the Interface tab displayed (see Figure 63 on
page 182).
5 Click Close.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 183
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
Figure 66 BridgeStaticPort
9 To copy packets with a MAC address in the source or destination field, select
Monitor.
10 In the QoS box, select a Quality of Service level, or keep the default, level 1.
Note that Level 7 is reserved for network control traffic.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 185
11 Click Insert.
The Insert Static box closes and the static information appears in the Bridge,
VLAN Static tab.
12 Click Close.
The static forwarding information is configured, and the Bridge VLAN box
closes.
Field Description
For MAC address filtering, the Ethernet Routing Switch 8600 supports Bridge
Management Information Base (MIB) filtering (RFC 1493). The number of MAC
filters is limited to 100. You can create a filter entry in much the same way as you
create a static MAC entry, by entering a MAC address and the port on which it
resides. In the MAC filter record, you can also specify ports to discard source or
destination packets for the MAC address on a port.
Global MAC filtering eliminates the need for configuring multiple per-VLAN
filter records for the same MAC. It provides the ability to discard a list of MAC
addresses, globally, on the switch. By using a global list you do not have to
configure a MAC per VLAN.
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN box appears with the Basic tab displayed (see Figure 34 on
page 136).
4 Click Insert.
The Bridge, VLAN Insert Filter box appears (Figure 68 on page 187).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 187
5 In the MacAddress box, enter the MAC address used to match the destination
address of incoming packets.
6 In the Port box, click the ellipsis (...).
The BridgeFilterPort box appears (Figure 69).
Figure 69 BridgeFilterPort
7 Click the port on which this MAC address is found, and then click OK.
The BridgeFilterPort box closes and the port is added to the Port box on the
Bridge, VLAN, Insert Filter box.
9 Click the ports from which you do not want packet traffic received by this
MAC address, and then click Ok.
The box closes and the ports are added to the SrcDiscard field in the Bridge,
VLAN, Insert Filter box.
11 Click the ports to which you do not want packet traffic sent from this MAC
address, and then click Ok.
The box closes and the ports are added to the DestDiscard box in the Bridge,
VLAN, Insert Filter box.
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 189
14 In the Bridge VLAN box and the VLAN box, click Close.
The MAC layer bridge filter is configured.
Field Description
MacAddress The MAC address of this entry. This address is used to match the
destination address of incoming packets.
Port Port on which this MAC address is found.
VlanId The ID of the VLAN.
SrcDiscard Specify a set of ports. Traffic arriving on any of the specified ports is
not forwarded to this MAC address.
DestDiscard Specify a set of ports. Traffic arriving on any of the specified ports
from this MAC address is discarded.
Status Specifies the status of the VLAN. Values include:
• self—one of the bridge addresses
• learned—a learned entry that is being used
• mgmt—a static entry
Pcap Enable or disable the Packet Capture Tool (PCAP) for the MAC
address (FDB filter). For more information about PCAP, see Using
the Packet Capture Tool.
Global MAC filtering eliminates the need for configuring multiple per-VLAN
filter records for the same MAC. It provides the ability to discard a list of MAC
addresses, globally, on the switch. By using a global list you do not have to
configure a MAC per VLAN.
1 From the Device Manager window, select VLAN > Global Mac Filtering.
The GlobalMacFiltering tab appears (Figure 72 on page 190).
3 In the GlobalMacFilterAddress box, enter the address, and then click Insert.
The address you entered appears in the GlobalMacFiltering tab.
Field Description
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 191
For more information about Enhanced Operation mode, see “MultiLink trunking
and VLAN scalability” on page 56.
1 From the Device Manager menu bar, choose Edit > Chassis.
The Chassis box appears with the System tab displayed (Figure 43 on
page 153).
314725-E Rev 00
Chapter 2 Configuring VLANs using Device Manager 193
314725-E Rev 00
195
Chapter 3
Configuring sVLAN using Device Manager
Topic Page
4 Create a VLAN of type sVLAN within the STG created in Step 3 and add
ports to it.
For more information, see “Creating an sVLAN” on page 196.
Creating an sVLAN
To create an sVLAN:
1 From the Device Manager menu bar, choose VLAN > VLANs.
The VLAN—Basic box appears (Figure 76 on page 197).
314725-E Rev 00
Chapter 3 Configuring sVLAN using Device Manager 197
2 Click Insert.
The VLAN, Insert Basic box appears (Figure 77 on page 198).
314725-E Rev 00
Chapter 3 Configuring sVLAN using Device Manager 199
3 In the Id box, enter an unused VLAN ID or use the ID provided. The default
VLAN is VLAN ID 1.
4 (Optional) In the Name box, type the VLAN name, or use the name provided.
5 (Optional) In the Color Identifier box, click the down arrow and choose a
color from the list, or use the color provided.
Device Manager suggests a color, but you can change it. This color is used by
VLAN Manager to display the different VLANs in a network.
6 In the StgId box, type or select the spanning tree group ID for the VLAN.
7 In the Type box, select bySvlan.
8 In the PortMembers box, click the ellipsis (...).
The VlanPortMembers box appears (Figure 78).
Figure 78 VlanPortMembers
1 From the Device Manager menu bar choose VLAN > SVLAN.
The Svlan—Ether Type tab (Figure 79) appears, displaying the Ether types
used for sVLAN tagging.
314725-E Rev 00
Chapter 3 Configuring sVLAN using Device Manager 201
5 Click Apply.
The Ethertype and active switch level are configured.
Field Description
Field Description
Active Level Specifies the active level for the switch. The default is level
0.
Note: You must configure the switch level to 1 or above
before configuring UNI or NNI ports.
Note: You must change the switch level to 1 or above before you
configure UNI or NNI ports. See “Setting the sVLAN Ethertype and
switch level” on page 200.”
314725-E Rev 00
Chapter 3 Configuring sVLAN using Device Manager 203
314725-E Rev 00
Chapter 3 Configuring sVLAN using Device Manager 205
NNI ports interconnect the switches in the core network, drop untagged
frames on ingress, and insert the sVLAN tag at the egress. When you
configure an NNI port, the DiscardUnTaggedFrames parameter is
automatically enabled.
Note: All ports within the same OctaPID have the same designation that
is, all eight ports are either Normal, or all eight ports are UNI/NNI.
When you change a port from normal to UNI/NNI, the other seven ports
are changed automatically, and in reverse. For more details, see “Tap and
OctaPID assignment (Release 3.x feature set)” on page 567”.
5 Click Apply.
The system warns you that by changing the port type, all ports in the OctaPID
can be removed from all VLANs and STGs (Figure 83). This message shows
the port range for the OctaPID. If you changed a port from Normal to UNI/
NNI, the other seven ports in the OctaPID are changed automatically.
7 Click Close.
The Port box closes.
Field Description
314725-E Rev 00
Chapter 3 Configuring sVLAN using Device Manager 207
1 From the Device Manager menu bar, choose VLAN > Spanning Tree > STG.
The STG box appears (Figure 84).
Figure 84 STG
2 Click Insert.
The STG, Insert Configuration box appears (Figure 85 on page 208).
Note: The MAC address you enter must be different from the
standardized BPDU MAC address.
7 Click the ports you want to include in the sVLAN STG, and then click Ok.
The StgPortMembers box closes, and the ports appear in the STG, Insert
Configuration box.
8 Click Insert.
314725-E Rev 00
Chapter 3 Configuring sVLAN using Device Manager 209
314725-E Rev 00
211
Chapter 4
Configuring spanning tree using Device Manager
This chapter discusses using Device Manager to create, manage, and monitor
spanning tree groups (STG), and discusses using Device Manager to configure
Spanning Tree Protocol (STP), Rapid Spanning Tree Protocol (RSTP) and
Multiple Spanning Tree Protocol (MSTP).
Topic Page
1 From the Device Manager menu bar, choose VLAN > Spanning Tree >
Globals.
The Spanning Tree Globals box appears (Figure 86 on page 212).
Warning: After you change the mode, you must reboot the switch for
changes to take effect. You can reboot the switch using the command line
interface (CLI) by first saving the boot file with the command save
bootconfig, and then entering the command boot <filename>,
where filename is the saved boot config file. You can also reboot the
switch using Device Manager. Go to Edit > Chassis. In the
ActionGroup1 box, select saveBootConfig. Click Apply. Next, in
ActionGroup4, select softReset. Click Apply.
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 213
Creating a STG
A network can include multiple instances of STP. The collection of ports in one
spanning tree instance is called a spanning tree group (STG). The Ethernet
Routing Switch 8600 supports STP and up to 64 spanning tree groups.
To create a STG:
1 From the Device Manager menu bar, choose VLAN > Spanning Tree > STG.
The STG—Configuration tab appears (Figure 87).
3 Use the fields in the STG, Insert Configuration box to configure the STG.
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 215
Figure 89 StgPortMembers
5 Click the ports you want to add to the STG, and then click Ok.
The StgPortMembers box closes, and the ports are added to the Port Members
field in the Insert Configuration box.
6 Click Insert.
The Insert Configuration box closes, and the STG appears in the
Configuration tab.
7 Click Close.
The STG is configured.
Field Description
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 217
Field Description
TaggedBpduVlanId Represents the VLAN tag associated with the STG. This ID is
used to tag BPDUs through a non-IEEE tagging bridge to
another Ethernet Routing Switch 8600.
Note: By default, the TaggedBpduVlanId is an address
calculated based on the STG ID by Device Manager. Accepting
the default value calculated by Device Manager makes it much
simpler to coordinate STGs across multiple switches. If you
enter a custom value for this field, you must manually
coordinate it across all switches.
Note: The STG ID and TaggedBpduVlanId must be unique in
the STG table. If you change the STG ID without updating
TaggedBpduVlanId, the insertion can fail because of a duplicate
TaggedBpduVlanId.
Port Members The ports you want to become members of the new STG.
You cannot select a port if it is:
• configured as Single Port SMLT, MLT-based SMLT, or IST
• configured as members of any other STG
NtStgEnable Indicates whether this STG is operating in Nortel mode or in
Cisco mode:
• true—Nortel mode
• false—Cisco mode
Editing an STG
To edit an STG:
1 From the Device Manager menu bar, choose VLAN > Spanning Tree > STG.
The STG—Configuration box appears (Figure 87 on page 213).
1 From the Device Manager menu bar, choose VLAN > Spanning Tree > STG.
The STG—Configuration tab appears (Figure 87 on page 213).
3 Click the ports you want to add to the STG, and click OK.
The StgPortMembers box closes, and the ports are added to the Port Members
field in the Configuration tab.
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 219
4 Click Apply.
The ports are added to the STG.
You can use the STG Status tab to view the status of the spanning tree for each
STG that is associated with the network.
1 From the Device Manager menu bar, choose VLAN > Spanning Tree > STG.
The STG—Configuration tab appears (Figure 87 on page 213).
2 Click the Status tab.
The Status tab appears (Figure 91 on page 220), displaying the STG status.
Field Description
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 221
Field Description
RootCost The cost of the path to the root as seen from this bridge.
RootPort The port number of the port that offers the lowest cost path
from this bridge to the root bridge.
MaxAge The maximum age of Spanning Tree Protocol information
learned from the network on any port before it is discarded,
in units of hundredths of a second. This is the actual value
that this bridge is currently using.
HelloTime The amount of time in hundredths of a second between
transmission of config BPDUs by this node on any port
when it is the root of the spanning tree. The default value is
200 (2 seconds).
HoldTime The time interval in hundredths of a second during which
no more than two configuration bridge PDUs shall be
transmitted by this node. The default value is 100
(1 second).
ForwardDelay The time interval in hundredths of a second that controls
how fast a port changes its spanning state when moving
toward the Forwarding state. The value determines how
long the port stays in each of the Listening and Learning
states, which precede the Forwarding state. This value is
also used when a topology change is detected and is under
way, to age all dynamic entries in the Forwarding Database.
Note that this value is the one this bridge is currently using,
in contrast to StgBridgeForwardDelay, which is the value
that this bridge and all others would use if this bridge
becomes the root. The default value is 1500 (15 seconds).
Use the Ports tab to view the status of ports for each STG that is associated with
the network.
1 From the Device Manager menu bar, choose VLAN > Spanning Tree > STG.
The STG—Configuration tab appears (Figure 87 on page 213).
2 Click the Ports tab.
The Ports tab appears(Figure 92). For parameter descriptions, see “STG Ports
tab fields” on page 222.
Field Description
Port The port number of the port for which this entry contains Spanning
Tree Protocol management information.
StgId The STG identifier assigned to this port.
Priority The value of the priority field which is contained in the first octet of
the Port ID. The other octet of the Port ID is given by the value of
rcStgPort.
Note: Although port priority values can range from 0 to 255, on the
Ethernet Routing Switch 8600, only the following values are used: 0,
16, 32, 48, 64, 80, 96, 112, 128, 144, 160, 176, 192, 208, 224, 240.
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 223
Field Description
State The current state of the port as defined by the application of the
Spanning Tree Protocol:
disabled
blocking
listening
learning
forwarding
broken
This state controls what action a port takes on reception of the
frame. If the bridge has detected a port that is malfunctioning, it
places that port into the broken state. For ports that are disabled,
this object has a value of disable.
EnableStp The STP state of the port.
Enabled—BPDUs are processed in accordance with STP.
Disabled—The port stays in a forwarding state, received BPDUs are
dropped and not processed, and no BPDU is generated.
FastStart When this flag is set, the port is moved straight to the forwarding
state upon being enabled.
true (enables FastStart for the port)
false (default, disables FastStart for the port)
Note: This setting is contrary to that specified in the IEEE 802.1d
standard for Spanning Tree Protocol (STP), in which a port enters
the blocking state following the initialization of the bridging device or
from the disabled state when the port is enabled through
configuration.
PathCost The contribution of this port to the path cost of paths toward the
spanning tree root that includes this port. The 802.1d-1990 protocol
recommends that the default value of this parameter be inversely
proportion to the speed of the attached LAN.
DesignatedRoot The unique bridge identifier of the bridge recorded as the root in the
configuration BPDUs transmitted by the designated bridge for the
segment to which the port is attached.
DesignatedCost The path cost of the designated port of the segment connected to
this port. This value is compared to the Root Path Cost field in
received bridge PDUs.
DesignatedBridge The bridge identifier of the bridge that this port considers to be the
designated bridge for this port’s segment.
DesignatedPort The port identifier of the port on the designated bridge for this port
segment.
Field Description
ForwardTransitions The number of times this port has transitioned from the learning
state to the forwarding state.
ChangeDetection The change detection setting (true or false) for this port. Can only
be configured on access ports. If you enable change detection on
an MLT with access ports, the setting is automatically applied to all
ports in the MLT.
1 From the Device Manager menu bar, choose VLAN > Spanning Tree > STG.
The STG—Configuration tab appears (Figure 87 on page 213).
2 Click the Ports tab.
The Ports tab appears (Figure 92 on page 222).
3 Click in the EnableStp field for the port you want to enable.
A menu appears.
5 Click Apply.
STP is enabled for the port.
Deleting an STG
To delete an STG:
1 From the Device Manager menu bar, choose VLAN > Spanning Tree > STG.
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 225
Note: All VLANs must be deleted from an STG before you can remove
the STG.
1 From the Device Manager menu bar, choose VLAN > Spanning Tree > STG.
The STG—Configuration tab appears (Figure 87 on page 213).
2 Click the Ports tab.
The Ports tab appears (Figure 92 on page 222).
3 Double-click the ChangeDetection field for a port.
The menu of change detection settings appears.
For more information about change detection, see “Spanning Tree Protocol
topology change detection” on page 70.
For more information about enabling MSTP, see “Choosing the spanning tree
mode” on page 211.
1 From the Device Manager menu bar, choose VLAN > Spanning Tree >
MSTP.
The MSTP—Globals tab appears (Figure 93 on page 227).
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 227
Figure 93 MSTP—Globals
Field Description
PathCostDefaultType The version of the spanning tree default path costs to be used
by this bridge. A value of 8021d1998 denotes the use of the 16
bit default path costs from IEEE 802.1d-1998. A value of
stp8021t2001 denotes the use of the 32 bit default path costs
from IEEE 802.1t.
TxHoldCount The value used by the port transmit state machine to limit the
maximum transmission rate.
MaxHopCount Indicates the maximum hop count. The granularity of this timer
is specified to be 1 second. An agent can return a bad value
error if you attempt to set a value which is not a whole number
of seconds.
NoOfInstancesSupport Indicates the maximum number of spanning tree instances
ed supported.
MstpUpCount The number of times the MSTP module was enabled. A trap is
generated on the occurrence of this event.
MstpDownCount The number of times the MSTP module was disabled. A trap is
generated on the occurrence of this event.
ForceProtocolVersion The version of Spanning Tree Protocol the bridge currently
runs. stpCompatible indicates that the Spanning Tree Protocol
as specified in IEEE 802.1d is in use; rstp indicates that the
Rapid Spanning Tree Protocol as specified in IEEE 802.1w is in
use; and mstp indicates that the Multiple Spanning Tree
Protocol as specified in IEEE 802.1s is in use.
BrgAddress The MAC address used by this bridge when it must be referred
to in a unique fashion. Nortel recommends that this be the
numerically smallest MAC address of all ports that belong to
this bridge. When concatenated with MstCistBridgePriority or
MstBridgePriority, a unique bridge identifier is formed which is
used in the Spanning Tree Protocol.
Root The bridge identifier of the root of the common spanning tree as
determined by the Spanning Tree Protocol by this node. This
value is used as the CIST root identifier parameter in all
configuration bridge PDUs originated by this node.
RegionalRoot The bridge identifier of the root of the multiple spanning tree
region as determined by the Spanning Tree Protocol as
executed by this node. This value is used as the CIST regional
root identifier parameter in all configuration bridge PDUs
originated by this node.
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 229
Field Description
RootCost The cost of the path to the CIST root from this bridge.
RegionalRootCost The cost of the path to the CIST regional root from this bridge.
RootPort The port number of the port which offers the lowest path cost
from this bridge to the CIST root bridge.
BridgePriority The value of the writable portion of the bridge identifier
comprising of the first two octets. The values you enter for
bridge priority must be in steps of 4096.
BridgeMaxAge The value that all bridges use for MaxAge when this bridge acts
as the root. The granularity of this timer is specified to be
1 second. An agent can return a bad value error if you attempt
to set a value which is not a whole number of seconds. The
default is 2000.
BridgeForwardDelay The value that all bridges use for forward delay when this bridge
acts as the root. Note that 802.1d specifies that the range for
this parameter is related to the value of BridgeMaxAge. The
granularity of this timer is specified to be 1 second. An agent
can return a bad value error if you attempt to set a value which
is not a whole number of seconds. The default is 1500.
HoldTime This time value determines the interval length during which no
more than two configuration bridge PDUs can be transmitted by
this node, in units of hundredths of a second.
MaxAge The maximum age of Spanning Tree Protocol information
learned from the network on any port before it is discarded, in
units of hundredths of a second. This is the value that this
bridge currently uses.
ForwardDelay This time value, measured in units of hundredths of a second,
controls how fast a port changes its spanning state when
moving towards the forwarding state. The value determines how
long the port stays in a particular state before moving to the
next state.
TimeSinceTopology The time (in hundredths of a second) since the TcWhile Timer
Change for any port in this bridge was non-zero for Common Spanning
Tree.
TopChanges The number of times that there was at least one non-zero
TcWhile Timer on this bridge for Common Spanning Tree.
NewRootBridgeCount The number of times this bridge has detected a root bridge
change for Common Spanning Tree. A trap is generated on the
occurrence of this event.
RegionName The name for the region configuration. By default the region
name is equal to the bridge MAC Address.
RegionVersion Version of the MST region.
Field Description
To configure Common and Internal Spanning Tree (CIST) ports for MSTP:
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 231
3 Use the fields in the CIST Port box to configure the MSTP.
4 Click Apply.
The MSTP—CIST Port tab contains per-port information that is common to all
bridge and spanning tree instances. Table 33 describes the CIST Port fields.
Field Description
Port The port number of the port for which this entry contains spanning
tree information
PathCost The contribution of this port to the path cost of paths towards the
CIST root which includes this port.
Priority The four most significant bits of the port identifier of the spanning
tree instance can be modified by setting the CistPortPriority value.
The values that are set for port priority must be in steps of 16.
Note: Although port priority values can range from 0 to 255, on the
Ethernet Routing Switch 8600, only the following values are used: 0,
16, 32, 48, 64, 80, 96, 112, 128, 144, 160, 176, 192, 208, 224, 240.
DesignatedRoot The unique bridge identifier of the bridge recorded as the CIST root
in the configuration BPDUs transmitted.
DesignatedCost The path cost of the designated port of the segment which connects
to this port.
DesignatedBridge The unique bridge identifier of the bridge which this port considers
to be the designated bridge for the port’s segment.
DesignatedPort The port identifier of the port on the designated bridge for this port
segment.
RegionalRoot The unique bridge identifier of the bridge recorded as the CIST
regional root identifier in the configuration BPDUs transmitted.
RegionalPathCost The contribution of this port to the path cost of paths towards the
CIST regional root which include this port.
ProtocolMigration Indicates the protocol migration state of this port. When operating in
RSTP or MSTP mode, writing true to this object forces this port to
transmit MSTP BPDUs without instance information. Any other
operation on this object has no effect and it returns false when read.
AdminEdgeStatus The administrative value of the Edge Port parameter. A value of true
indicates that this port is an edge-port, and a value of false indicates
that this port is a non-edge-port.
OperEdgeStatus The operational value of the Edge Port parameter. The object is
initialized to the value of AdminEdgeStatus and is set false on
reception of a BPDU.
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 233
Field Description
You can view statistics for the CIST ports. To view statistics:
Field Description
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 235
Field Description
3 Use the fields in the MSTI Bridges box to configure the MSTP.
4 Click Apply.
Field Description
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 237
3 Use the fields in the MSTI Port box to configure the MSTP.
4 Click Apply.
Field Description
Port The port number of the port for which this entry contains spanning
tree information.
BridgeInstance Spanning tree instance to which the information belongs.
PathCost The contribution of this port to the path cost of paths towards the
MSTI root which includes this port.
Priority The four most significant bits of the port identifier for a given
spanning tree instance can be modified independently for each
spanning tree instance supported by the bridge. The values set for
port priority must be in steps of 16.
DesignatedRoot The unique bridge identifier of the bridge recorded as the MSTI
regional root in the configuration BPDUs transmitted.
DesignatedBridge The unique bridge identifier of the bridge which this port considers
to be the designated bridge for the port segment.
DesignatedPort The port identifier of the port on the designated bridge for this port
segment.
State Current state of the port as defined by the MSTP. A port which is in
forwarding state in one instance can be in discarding (blocking)
state in another instance.
ForcePortState Current state of the port which can be changed to either disabled or
enabled for the specific spanning tree instance.
DesignatedCost The path cost of the designated port of the segment connected to
this port.
Field Description
CurrentPortRole Current port role of the port for this spanning tree instance.
EffectivePortState The effective operational state of the port for specific instance. This
is true when the port is operationally up at the interface and protocol
levels for the specific instance. This is set to false at all other times.
You can view statistics for the MSTI Ports. To view statistics:
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 239
Field Description
ForwardTransitions Number of times this port has transitioned to the forwarding state for
this specific instance.
ReceivedBPDUs Number of BPDUs received by this port for this spanning tree
instance.
TransmittedBPDUs Number of BPDUs transmitted on this port for this spanning tree
instance.
InvalidBPDUsRcvd Number of invalid BPDUs received on this port for this spanning tree
instance.
For more information about enabling RSTP, see “Choosing the spanning tree
mode” on page 211.
1 From the Device Manager menu bar, choose VLAN > Spanning Tree >
RSTP.
The RSTP—Globals tab appears (Figure 99 on page 241).
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 241
Figure 99 RSTP—Globals
Field Description
PathCostDefault The version of the spanning tree default path costs that are
used by this bridge. A value of 8021d1998 indicates the use of
the 16 bit default path costs from IEEE Std. 802.1d-1998. A
value of stp8021t2001 indicates the use of the 32 bit default
path costs from IEEE Std. 802.1t.
TxHoldCount The value used by the port transmit state machine to limit the
maximum transmission rate.
Version The version of Spanning Tree Protocol the bridge currently
runs. The value stpCompatible indicates that the Spanning Tree
Protocol as specified in IEEE 802.1d is in use; rstp indicates
that the Rapid Spanning Tree Protocol as specified in IEEE
802.1w is in use.
EnableStp Indicates whether the spanning tree protocol is active in this
STG.
Priority The value of the priority field.
BridgeMaxAge The value that all bridges use for MaxAge when this bridge acts
as the root.
BridgeHelloTime The value that all bridges use for HelloTime when this bridge
acts as the root.
BridgeForwardDelay The value that all bridges use for forward delay when this bridge
acts as the root.
DesignatedRoot The unique bridge identifier of the bridge recorded as the root in
the configuration BPDUs transmitted by the designated bridge
for the segment to which the port is attached.
RootCost The cost of the path to the root from this bridge.
RootPort The port number of the port which offers the lowest cost path
from this bridge to the root bridge.
MaxAge The maximum age of Spanning Tree Protocol information
learned from the network on any port before it is discarded, in
units of hundredths of a second.
HelloTime The amount of time between the transmission of configuration
bridge PDUs by this node on any port when it is the root of the
spanning tree (or trying to become the root), in units of
hundredths of a second.
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 243
Field Description
1 From the Device Manager menu bar, choose VLAN > Spanning Tree >
RSTP.
The RSTP—Globals tab appears.
2 In the RSTP box, click the RSTP Ports tab.
The RSTP Ports tab appears (Figure 100 on page 244).
3 Use the fields in the RSTP Ports box to configure the RSTP ports.
4 Click Apply.
Field Description
Port A unique value, greater than zero, indicating the port number.
Priority The value of the priority field.
PathCost The contribution of this port to the path cost of paths towards the
root which includes this port.
ProtocolMigration When operating in RSTP mode, writing true to this object forces this
port to transmit RSTP BPDUs. Any other operation on this object
has no effect and it returns false when read.
AdminEdgePort The administrative value of the Edge Port parameter. A value of true
indicates that this port is an edge-port and a value of false indicates
that this port is a non-edge-port.
OperEdgePort The operational value of the Edge Port parameter. The object is
initialized to the value of AdminEdgePort and is set false on
reception of a BPDU.
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 245
Field Description
1 From the Device Manager menu bar, choose VLAN > Spanning Tree >
RSTP.
The RSTP—Globals tab appears.
2 Click the RSTP Status tab.
The RSTP Status box appears (Figure 101 on page 246).
Field Description
Port A unique value, greater than zero, indicating the port number.
State The current state of the port as defined by application of the
Spanning Tree Protocol. This state controls what action a port
takes on reception of a frame.
Role This indicates the current port role assumed by this port.
OperVersion This indicates whether the port is operationally in the RSTP or
STP-compatible mode, that is, whether the port transmits RSTP
BPDUs or Config/TCN BPDUs.
EffectivePortState The effective operational state of the port. This object is set to
true when the port is operationally up in the Interface Manager,
and Force Port State for this port and the specified port state is
enabled. Otherwise, this object is set to false.
1 From the Device Manager menu bar, choose VLAN > Spanning Tree >
RSTP > RSTP Status.
2 In the RSTP Status tab, select a port, and then click Graph.
The RSTP Port—RSTP Stats window appears (Figure 102 on page 247).
314725-E Rev 00
Chapter 4 Configuring spanning tree using Device Manager 247
Field Description
RxRstBpduCount The number of RSTP BPDUs that were received on this port.
RxConfigBpduCount The number of configuration BPDUs that were received on
this port.
RxTcnBpduCount The number of TCN BPDUs that were received on this port.
TxRstBpduCount The number of RSTP BPDUs that were transmitted by this
port.
TxConfigBpduCount The number of Config BPDUs that were transmitted by this
port.
TxTcnBpduCount The number of TCN BPDUs that were transmitted by this port.
InvalidRstBpduRxCount The number of invalid RSTP BPDUs that were received on
this port. A trap is generated on the occurrence of this event.
InvalidConfigBpduRx The number of invalid configuration BPDUs that were received
Count on this port. A trap is generated on the occurrence of this
event.
Field Description
InvalidTcnBpduRxCount The number of invalid TCN BPDUs that were received on this
port. A trap is generated on the occurrence of this event.
ProtocolMigrationCount The number of times this port has migrated from one STP
protocol version to another. The relevant protocols are
STP-Compatible and RSTP. A trap is generated on the
occurrence of this event.
314725-E Rev 00
249
Chapter 5
Configuring link aggregation using Device
Manager
This chapter describes how to configure link aggregation in your network. For
conceptual information about link aggregation, see “Link aggregation (MLT,
SMLT, LACP, VLACP)” on page 78.
Topic Page
Note: Standby mode for aggregation groups of larger than eight ports is
not supported in the current release.
The main purpose of LACP is to manage switch ports and their port memberships
to form link aggregation groups (LAG). LACP can dynamically add or remove
LAG ports, depending on their availability and states.
Note: LACP does not support jumbo frames on the Ethernet Routing
Switch 8600 v4.1
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The MLT_LACP—LACP Global tab appears (Figure 103 on page 251).
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 251
4 Click Apply.
Field Description
Field Description
Virtual LACP is an LACP extension that is used for end to end failure
detection.VLACP uses the Hello mechanism of LACP to periodically send Hello
packets to ensure there is end to end reachability. When Hello packets are not
received, VLACP transitions to a failure state, which indicates a service provider
failure, and the port is disabled.
Note: VLACP does not support jumbo frames on the Ethernet Routing
Switch 8600 v4.1
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The MLT_LACP box appears (Figure 103 on page 251).
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 253
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The MLT_LACP, LACP Global tab appears (Figure 103 on page 251).
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 255
4 In the Id text box, type the ID number for the multilink trunk.
5 In the SvlanPortType text box, select normal, uni, or nni.
6 In the PortType section, select access or trunk.
7 In the Name text box, type a name for the multilink trunk, or accept the
default name.
8 Select member ports and VLANs for this MLT/LACP trunk:
a In the PortMembers box, click the ellipsis (...), select the desired ports in
the MltPortMembers box that appears, and then click Ok.
b In the VlanIds box, click the ellipsis (...), select the desired VLANs in the
VlanIds box that appears, and then click Ok.
9 In the MltType section, select normalMLT, istMLT, or splitMLT.
For information about configuring SMLT, see “Adding a MLT-based SMLT”
on page 276.
Field Description
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 257
Field Description
Field Description
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The MLT_LACP, LACP Global tab appears.
2 Click the MultiLink/LACP Trunks tab.
The MultiLink/LACP Trunks tab appears (Figure 105 on page 254).
3 Click Insert.
The MLT_LACP, Insert MultiLink/LACP Trunks box (Figure 106 on
page 255) appears.
4 Double-click in the PortMembers box for the multilink trunk to which you
are adding ports.
The MltPortMembers box (Figure 107 on page 259) appears, showing the
ports currently assigned for the selected multilink trunk. Available ports are
editable.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 259
5 In the MltPortMembers box, click the port numbers to be added, or click All
to add all ports to the multilink trunk.
• For Ethernet Routing Switch 8600 modules, up to eight ports can belong
to a single multilink trunk.
6 Click Ok.
The MltPortMembers box closes. The port numbers are added to the selected
multilink trunk on the MultiLink/LACP Trunks tab in the MLT_LACP box.
7 Click Apply.
The ports are added to the multilink trunk.
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The MLT_LACP—LACP Global tab appears (Figure 103 on page 251).
2 Click the MultiLink/LACP Trunks tab.
The MultiLink/LACP Trunks tab appears (Figure 105 on page 254).
Field Description
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 261
Field Description
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The MLT_LACP box appears (Figure 103 on page 251).
2 Click the MultiLink/LACP Trunks tab.
The MultiLink/LACP Trunks tab appears (Figure 105 on page 254).
Table 45 on page 263 lists and defines the fields on the Ethernet Errors tab.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 263
Field Description
Field Description
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 265
Note: Standby mode for aggregation groups of larger than eight ports is
not supported in the current release.
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The MLT_LACP, LACP Global tab appears (Figure 103 on page 251).
3 Click on the fields to edit them. Some fields cannot be edited, as noted in
Table 46.
4 Click Apply.
Field Description
Field Description
ActorSystemPriority The two octet read-write value indicating the priority value
associated with the actor's system ID.
ActorSystemID The six octet read-write MAC address value used as a
unique identifier for the system that contains this
aggregator.
Note: From the perspective of the link aggregation
mechanisms, only a single combination of actor system ID
and system priority are considered, and no distinction is
made between the values of these parameters for an
aggregator and the ports that are associated with it; that is,
the protocol is described in terms of the operation of
aggregation within a single system. However, the managed
objects provided for the aggregator and the port both allow
management of these parameters. The result of this is to
permit a single piece of equipment to be configured by
management to contain more than one system from the
point of view of the operation of link aggregation. This can
be of particular use in the configuration of equipment that
has limited aggregation capability.
AggregateOrIndividual A read-only value indicating whether the aggregator
represents an aggregate (true) or an individual link (false)
ActorAdminKey The current administrative value of the key for the
aggregator. The administrative key value can differ from
the operational key value. This is a 16 bit read-write value.
The meaning of particular key values is of local
significance.
ActorOperKey The current operational value of the key for the aggregator.
The administrative key value can differ from the
operational key value. This is a 16 bit read-only value. The
meaning of particular key values is of local significance.
PartnerSystemID The six octet read-only MAC address value consisting of
the unique identifier for the current protocol partner of this
aggregator. A value of zero indicates that there is no
known partner. If the aggregation is manually configured,
this system ID value is a value assigned by the local
system.
PartnerSystemPriority The two octet read-only value that indicates the priority
value associated with the partner system ID. If the
aggregation is manually configured, this system priority
value is a value assigned by the local System.
PartnerOperKey The current operational value of the key for the aggregator
current protocol partner. This is a 16 bit read-only value. If
the aggregation is manually configured, this key value is a
value assigned by the local system.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 267
1 Select a port.
2 From the Device Manager menu bar, choose Edit > Port > General.
The Port—Interface tab appears.
4 Select AdminEnable.
5 Edit the remaining boxes as desired.
6 Click Apply.
Field Description
AdminEnable Sets the enabled status for LACP for the port.
OperEnable Indicates the operational status of LACP for the port.
FastPeriodicTime Specifies the number of milliseconds between periodic
transmissions using short timeouts. Set this value to all
LACP enabled ports.
FastPeriodicTimeOper The operating value of the fast periodic timer on the port.
SlowPeriodicTime Specifies the number of milliseconds between periodic
transmissions using long timeouts. Set this value to all
LACP enabled ports.
SlowPeriodicTimeOper The operating value of the slow periodic timer on the port.
AggrWaitTime Specifies the number of milliseconds to delay aggregation
to allow multiple links to aggregate simultaneously.
AggrWaitTimeOper The operating value of the aggregate wait timer on the
port.
TimeoutScale Sets the value used to calculate timeout time from the
periodic time. Set this value to all LACP enabled ports.
TimeoutScaleOper The operating value of the timeout scale on the port.
ActorSystemPriority The two octet read-write value indicating the priority value
associated with the actor system ID.
ActorSystemID The six octet read-write MAC address value used as a
unique identifier for the system that contains this
aggregator.
Note: From the perspective of the link aggregation
mechanisms, only a single combination of actor system ID
and system priority are considered, and no distinction is
made between the values of these parameters for an
aggregator and the ports that are associated with it; that is,
the protocol is described in terms of the operation of
aggregation within a single system. However, the managed
objects provided for the aggregator and the port both allow
management of these parameters. The result of this is to
permit a single piece of equipment to be configured by
management to contain more than one system from the
point of view of the operation of link aggregation. This can
be of particular use in the configuration of equipment that
has limited aggregation capability.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 269
Field Description
Field Description
PartnerAdminSystemPriority The current administrative value of the port number for the
protocol Partner. This is a 16 bit read-write value. The
assigned value is used, along with the value of
PartnerAdminSystemPriority, PartnerAdminSystemID,
PartnerAdminKey, and PartnerAdminPortPriority, to
achieve manually configured aggregation.
PartnerOperSystemPriority A two octet read-only value indicating the operational value
of priority associated with the partner system ID. The value
of this attribute can contain the manually configured value
carried in PartnerAdminSystemPriority if there is no
protocol partner.
PartnerAdminSystemID A six octet read-write MAC address value representing the
administrative value of the aggregation port protocol
partner's system ID. The assigned value is used, along
with the value of PartnerAdminSystemPriority,
PartnerAdminKey, PartnerAdminPort, and
PartnerAdminPortPriority, to achieve manually configured
aggregation.
PartnerOperSystemID A six octet read-only MAC address value representing the
current value of the aggregation port's protocol partner
system ID. A value of zero indicates that there is no known
protocol partner. The value of this attribute can contain the
manually configured value carried in
PartnerAdminSystemID if there is no protocol partner.
PartnerAdminKey The current administrative value of the key for the protocol
partner. This is a 16 bit read-write value. The assigned
value is used, along with the value of
PartnerAdminSystemPriority, PartnerAdminSystemID,
PartnerAdminPort, and PartnerAdminPortPriority, to
achieve manually configured aggregation.
PartnerOperKey The current operational value of the key for the aggregator
current protocol partner. This is a 16-bit read-only value. If
the aggregation is manually configured, this key value is a
value assigned by the local system.
PartnerAdminPort The current administrative value of the port number for the
protocol partner. This is a 16 bit read-write value. The
assigned value is used, along with the value of
PartnerAdminSystemPriority, PartnerAdminSystemID,
PartnerAdminKey, and PartnerAdminPortPriority, to
achieve manually configured aggregation.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 271
Field Description
VLACP is an extension to LACP which you can use to detect end-to-end failure.
To configure a port for VLACP:
1 Select a port.
2 From the Device Manager menu bar, choose Edit > Port > General.
The Port—Interface tab appears.
4 Select AdminEnable.
5 Edit the remaining fields as desired.
6 Click Apply.
Field Description
AdminEnable Sets the enabled status for VLACP for the port.
OperEnable Indicates the operational status of VLACP for the port.
FastPeriodicTimer Specifies the number of milliseconds between periodic
transmissions using short timeouts. Sets this value to all
VLACP enabled ports.
SlowPeriodicTimer Specifies the number of milliseconds between periodic
transmissions using long timeouts. Set this value to all
VLACP enabled ports.
Timeout The timeout control value. It is long or short timeout.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 273
Field Description
TimeoutScale Sets the value used to calculate timeout time from the
periodic time. Sets this value to all VLACP enabled ports.
Timeout = PeriodicTime * TimeoutScale. The range is from
2 to 10.
EtherType The VLACP protocol identification. The ID is in
hexadecimal.
EtherMacAddress The multicast MAC address exclusively used for
VLACPDUs.
PortState Specifies the VLACP port state.
1 Select a port.
2 From the Device Manager menu bar, choose Graph > Port.
The Graph Port—Interface tab appears (Figure 113 on page 274).
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 275
Field Description
This section describes how to use Device Manager to configure Split MultiLink
Trunking (SMLT) and includes the following topics:
If you are configuring SMLT, you do not need to create a multilink trunk before
creating an SMLT. You can create an SMLT by selecting the multilink trunk type
as split multilink trunk and then specifying an SMLT ID.
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The MLT_LACP box appears (Figure 103 on page 251).
2 Click the MultiLink/LACP Trunks tab.
The MultiLink/LACP Trunks tab appears (Figure 105 on page 254).
3 Click Insert.
The MultiLink/LACP, Insert MultiLink/LACP Trunks box (Figure 106 on
page 255) appears.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 277
4 In the Id box, the next available MLT ID is displayed. You can use this ID or
type an available MLT ID number.
5 In the SvlanPortType box, select normal.
6 In the PortType box, select Access or Trunk.
7 In the Name box, type a name to identify the MLT-based split multilink trunk
port.
8 In the PortMembers box, click the ellipsis (...).
The MltPortMembers box appears, displaying the available ports.
9 Click the ports you want to include in the MLT-based split multilink trunk.
• For Ethernet Routing Switch 8600 modules, up to eight same-type ports
can belong to a multilink trunk.
10 Click Ok.
The MltPortMembers box closes and the ports are added to the PortMembers
box on the Insert MultiLink Trunks tab.
12 Select the VLAN IDs for the MLT-based split multilink trunk port, and then
click Ok.
The VlanIds box closes and the VLANs are added to the VlanIds box in the
MLT, Insert Trunks box.
To view the SMLT IDs currently in use on the switch, see “Viewing Single
Port SMLTs” on page 288.
15 Click Insert.
The Insert MultiLink/LACP Trunks box closes, and the new MLT-based split
multilink trunk appears in the MultiLink/LACP Trunks tab.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 279
Field Description
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The LACP Global tab appears (Figure 103 on page 251).
4 Select the port numbers to be added, or click All to select all ports.
• For Ethernet Routing Switch 8600 modules, up to eight same-type ports
can belong to a single multilink trunk.
5 Click Ok.
The MltPortMembers box closes and the ports are added to the Port Members
box on the MultiLink Trunks tab.
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The LACP Global tab appears (Figure 103 on page 251).
5 Click the ports you want to include in the IST multilink trunk.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 281
6 Click Ok.
The MltPortMembers box closes and the ports are added to the PortMembers
box for the IST multilink trunk in the Insert MultiLink Trunks tab.
The IST multilink trunk is configured. For more information, see ““CP Limit
and SMLT interswitch trunking” on page 112 and “Configuring CP-Limit for
an IST” on page 459.
Field Description
Editing an IST
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 283
1 From the Device Manager menu bar, choose VLAN > MLT/LACP.
The LACP Global tab appears (Figure 103 on page 251).
Field Description
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 285
Field Description
Ports that are already configured as MLT or MLT-based split multilink trunks
cannot be configured as a single port split multilink trunk. You must first remove
the split trunk and then reconfigure the ports as a single port split multilink trunk.
2 From the menu bar, choose Edit > Port > General.
The Port box appears.
Note: The SMLT tab indicates if this port is already configured as MLT
or MLT-based SMLT. If so, you cannot configure Single Port SMLT.
4 Click Insert.
The Insert SMLT box appears (Figure 120 on page 287).
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 287
6 Click Insert.
A warning message appears, informing you that the spanning tree protocol
has been disabled while configuring the port with SMLT.
7 Click Ok.
The Insert SMLT box closes and the ID is entered.
Field Description
To view the single port split multilink trunks configured on your switch:
The SMLT box appears, and shows the single port split multilink trunks
currently configured on your switch (Figure 121).
Field Description
Port Read-only field that shows the port interface index number.
SmltId The ID number of the single port split multilink trunk.
RunningType Read-only field that shows the port operational type:
• normalMLT
• istMLT
• splitMLT
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 289
2 From the menu bar, choose Edit > Port > General.
The Port box appears.
This section describes how to configure Simple Loop Prevention Protocol (SLPP),
and includes the following topics:
Note: SLPP does not support jumbo frames on the Ethernet Routing
Switch 8600 v4.1
1 From the Device Manager menu bar, select VLAN > SLPP.
The Slpp box appears with the Global tag open (Figure 123).
Table 55 on page 291 describes the fields on the SLPP Global tab fields.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 291
2 Select GlobalEnable.
3 In the TransmissionInterval box, enter a value for the time interval for loop
detection.
4 In the EtherType box, enter the SLPP protocol value as a hexadecimal
number.
5 Click Apply.
Field Description
3 Click Insert.
The Slpp, Insert VLANS box appears (Figure 125 on page 292).
Table 56 on page 293 describes the Slpp, Insert VLANS tab fields.
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 293
The ID and status of the selected VLAN appears in the Slpp—VLANS box
(Figure 124 on page 291).
Field Description
1 From the Device Manager menu bar, select VLAN > SLPP.
The Slpp box appears with the Global tag open (Figure 123 on page 290).
3 Click the SlppEnable box for the desired port and select true to enable SLPP.
4 Click Apply.
The ID and status of selected VLAN appears in the Slpp—VLANS dialog box
(Figure 124 on page 291).
Field Description
314725-E Rev 00
Chapter 5 Configuring link aggregation using Device Manager 295
314725-E Rev 00
297
Chapter 6
Configuring multiple DSAP and SSAP using
Device Manager
With the Ethernet Routing Switch 8600, you can configure multiple DSAPs or
SSAPs for SNA or user-defined VLAN types. The base implementation of the
SNA VLAN allows SNA 802.2 traffic to be classified into a SNA VLAN based on
a 0x04 destination SAP or 0x04 source SAP. Some applications require changing
these classifications to DSAP or SSAP.
You can support any user-defined VLANs with multiple SSAPs and DSAPs. For
example, you can add 31 additional protocol IDs or DSAP/SSAP values, for a
total of 32, when you create a SNA 802.2 VLAN or a user-defined VLAN, or
when you reconfigure a SNA 802.2 VLAN or a user-defined VLAN.
This chapter describes how to configure multiple DSAPs and SSAPs per VLAN
and includes the following topics:
Topic Page
Design aspects
You can configure multiple DSAPs or SSAPs for SNA or user-defined VLAN
types using the CLI or Device Manager. Regardless of your configuration tool,
you must first create the SNA or user-defined VLAN, and then add the DSAPs or
SSAPs for this VLAN.
In this case the default 0x04 records is always created on the switch.
For each user-defined VLAN created with encapsulation set to LLC, 264
hardware records are created, including:
314725-E Rev 00
Chapter 6 Configuring multiple DSAP and SSAP using Device Manager 299
Nortel does not recommend using more than 10 of the user-defined VLANs,
including 32 DSAP/SSAP values, due to the extensive hardware record usage
which can affect overall system scalability.
You can check for hardware record availability by executing the CLI command
show/sys/record-reservation.
There is only one SNA VLAN allowed on an individual port. DSAP/SSAP values
can be configured provided they are not the same as the reserved values listed (see
Table 58).
IP_ii 0x0800
ARP_ii 0x0806
RARP_ii 0x8035
IPX(old)_ii 0x8137
IPX_ii 0x8138
IPX(old)_SNAP 0x00000 0x813
IPX_SNAP 0 7
0x00000 0x813
0
8
IPX_802.3 0xE0 0xE0
IPX_802.3 0xFF 0xFF
APPLE_ii 0x809B
0X80F 0x809
APPLE_SNAP 3 0x08000 B
7 0x80F
3
DEC_LAT 0x6004
DEC_ELSE 0x6000
-
0x6003
0x6005
-
0x6009
DEC_BPDU 0x8038
SNA_ii 0x80D5
SNA_LLC 0x04 XX
XX 0x04
NetBIOS 0xF0 XX
XX 0xF0
XNS 0x0600
XNS_comp 0x0807
314725-E Rev 00
Chapter 6 Configuring multiple DSAP and SSAP using Device Manager 301
3 Select the VLAN to which you wish to add a DSAP, and click DSAP/SSAP.
The VLAN—DSAP/SSAP VLAN box appears (Figure 129).
4 Click Insert.
The DSAP/SSAP, VLAN, Insert DSAP/SSAP box appears (Figure 130).
314725-E Rev 00
303
Chapter 7
Configuring and managing VLANs using the CLI
This chapter describes how to configure and manage VLANs using the command
line interface (CLI), and includes the following topics:
Topic Page
Command Parameter
config vlan <vid> create info
byIDS <sid> [name <value>] [color
<value>]
byipsubnet <sid> <ipaddr/mask> [
name <value>] [color <value>]
Command Parameter
byipsubnet-mstprstp <instance-id>
<ipaddr|mask> [name <value>] [color
<value>]
byport <sid> [name <value>] [color
<value>]
byport-mstprstp <instance-id> [name
<value>] [color <value>]
[naap-vlan] [firewall-vlan]
[firewall-peering-vlan]
byprotocol <sid>
<ip|ipx802dot3|ipx802dot2|ipxSnap|i
pxEthernet2|appleTalk|declat|decOth
er|sna802dot2|snaEthernet2|netBios|
xns|vines|ipV6|usrDefined|rarp|PPPo
E> [<pid>] [name <value>] [color
<value>] [encap <value>]
byprotocol-mstprstp <instance-id>
<ip|ipx802dot3|ipx802dot2|ipxSnap|i
pxEthernet2|appleTalk|decLat|decOth
er|sna802dot2|snaEthernet2|netBios|
xns|vines|ipV6|usrDefined|rarp|PPPo
E> [<pid>] [name <value>] [color
<value>] [encap <value>]
bysrcmac <sid> [name <value>]
[color <value>]
bysrcmac-mstprstp <instance-id>
[name <value>] [color <value>]
bysvlan <sid> [name <value>]
[color <value>]
bysvlan-mstprstp <instance-id>
[name <value>] [color <value>]
forIDS <sid> [name <value>]
[color <value>]
forIDS-mstprstp <instance-id> [name
<value>] [color <value>]
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 305
Command Parameter
addDsapSsap <DSAP/SSAP values>
removeDsapSsap <DSAP/SSAP values>
agetime <integer>
delete
qos-level <integer>
name <vname>
Command Parameter
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 307
Command Parameter
config ethernet <port number> info
config mac-flap-time-limit
<10..5000 milliseconds>
show ports info loop-detected port
<port number>
show sys link-flap-detect
general-info
show ports info loop-detected port
<port number>
Command Parameter
show ports info all [vlan <value>]
[port <value>] [by <value>]
show ports info vlans [vlan
<value>] [port <value>]
• “Creating a VLAN”
• “Performing general VLAN operations” on page 313
• “Configuring VLAN parameters in the forwarding database” on page 316
• “Limiting MAC learning” on page 321
• “Adding or removing VLAN ports” on page 323
• “Adding or removing VLAN source MAC addresses” on page 324
• “Configuring NLB unicast support on an IP interface” on page 325
• “Configuring Untagging Default VLAN on a Tagged Port” on page 325
• “Configuring Enhanced Operation mode” on page 326
• “Configuring VLAN Loop Detection” on page 327
• “Configuring spoof detection for a VLAN” on page 332
Creating a VLAN
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 309
You can specify the type of VLAN and assign an IP address to the VLAN using
this command. The required parameter vid is the VLAN ID. VLAN 1 is the
default VLAN.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 311
Figure 131 on page 313 shows sample output for the config vlan create
info command.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 313
Sub-Context: clear config dump monitor show test trace wsm asfm sam
Current Context:
byport :
sid - 1
name - Default
color - 0 (white)
Figure 132 shows sample output for the config vlan info command.
Sub-Context: clear config dump monitor show test trace wsm asfm sam
Current Context:
action : N/A
add-mlt :
addDsapSsap :
removeDsapSsap : N/A
agetime : N/A
delete : N/A
qoslevel : 1
name : Default
Security-vlan-type : none
Cluster : 0
ERS-8606:5#
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 315
Configuration example
The following configuration example uses the config vlan commands to:
After configuring the parameters, use the info command to show a summary of
the results.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 317
Configuration example
After configuring the parameters, use the info command to show a summary of
the results.
To set or modify VLAN not allowed filter member parameters, enter the following
command:
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 319
Configuration example
After configuring the parameters, use the info command to show a summary of
the results.
ERS-8606:5/config/vlan/10/fdb-filter# notallowfrom
ERS-8606:5/config/vlan/10/fdb-filter/notallowfrom# add 2:2:2:2:2:2 port 1/2 Both
ERS-8606:5/config/vlan/1000/fdb-filter/notallowfrom# info
Sub-Context:
Current Context:
add :
mac - 02:02:02:02:02:02
Dest Discard set - 1/2
Src Discard set - 1/2
remove : N/A
add :
mac - 02:02:02:02:02:02
Dest Discard set - 1/2
Src Discard set -
remove : N/A
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 321
This feature allows you to limit the number of forwarding database entries learned
on a particular port to a user-specified value. After the number of learned
forwarding database entries reaches the maximum limit, packets with unknown
source MAC addresses are dropped by the hardware. If the count drops below a
configured minimum value due to forwarding database aging, learning is
reenabled on the port. Users can configure various actions—logging, sending
traps, and disabling the port—when the number of forwarding database entries
reaches the configured maximum limit.
This command enables or disables the feature on the specified ports. The default
value is disable.
This command sets the minimum limit of fdb-entries at which fdb-learning will be
reenabled on the specified ports. The default value is 512.
This command enables or disables logging to syslog file and trap generation when
a maximum limit is reached. The default value is disable.
This command enables or disables the action taken on the ports in the event of a
violation. The default value is disable.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 323
Figure 133 on page 324 shows sample output for the config vlan ports
info command.
Sub-Context: clear config dump monitor show test trace wsm asfm sam
Current Context:
add :
portmember - 2/1-2/8,4/1-4/30
activemember - 2/1-2/8,4/1-4/30
staticmember -
notallowtojoin -
remove : N/A
ospf-passive-port -
ERS-8606:5#
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 325
You can use Microsoft Network Load Balancer (NLB) to share workload among
multiple clustering servers. To enable or disable Network Load Balancer (NLB)
unicast support, use the following command:
The default value is disable. For more information about NLB unicast support, see
“Flooding for Microsoft NLB clustering systems in unicast mode” on page 63.
The following command enables the Untagging Default VLAN on a Tagged Port
feature:
Enhanced Operation mode enables the Ethernet Routing Switch 8600 to support
more VLANs. With MLT, you can create a maximum of 1 980 VLANs (1 972
with R modules in the chassis). With SMLT, the limit is 989 VLANs. For more
information about enhanced operation concepts, see “MultiLink trunking and
VLAN scalability” on page 56.
Note: You must save the configuration and reset the switch before the
change takes effect.
This configuration example uses the preceding commands to configure support for
up to 1980 VLANs. Figure 134 on page 327 shows sample output for these
configuration commands.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 327
Figure 134 Configuration example for supporting 1980 VLANs command output
ERS-8610:5# config sys set flag enhanced-operational-mode true
Sub-Context: clear config dump monitor show test trace wsm asfm sam
Current Context:
On a per-port basis, the Loop Detection feature detects MAC addresses that are
looping from one port to other ports. After a loop is detected, the port on which
the MAC addresses were learned is disabled. Additionally, if a MAC address is
found to loop, the MAC address is disabled for that VLAN.
Note: The Loop Detection feature must only be enabled on SMLT ports,
and never used on IST ports or core SMLT square or full mesh ports.
You can also use Simple Loop Prevention Protocol to detect VLAN loops (see
“Simple Loop Prevention Protocol” on page 130).
For information about the Loop Detection feature, see “VLAN Loop Detection”
on page 65. See “SMLT triangle with loop detection configuration example” on
page 508 for a CLI loop detection configuration example.
To view the current flap time settings, enter the following command:
config info
Figure 135 on page 329 shows sample output for these commands.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 329
Sub-Context: clear config dump monitor show test trace wsm asfm sam
Current Context:
setdate : N/A
mac-flap-time-limit : 1600
auto-recover-delay : 15
ERS-8610:6#
To display the results of loop detection in any VLAN, enter the CLI command:
To verify whether the loop detection feature is enabled or disabled on the port,
enter the CLI command:
Figure 136 on page 331 shows sample CLI output using the loop detect
commands.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 331
Sub-Context: clear config dump monitor show test trace wsm asfm sam
Current Context:
Port 1/15 :
lock : false
block-traffic : false
name :
auto-negotiate : true
enable-diffserv : false
access-diffserv : false
qos-level : 1
routing : enable
unknown-mac-discard : disable
high-secure : false
default-vlan-id : 1
untag-port-default-vlan : disable
tagged-frames-discard : disable
perform-tagging : disable
svlan-porttype : normal
untagged-frames-discard : disable
loop-detect : enable action port-down arp-detect disable
state : up
linktrap : enable
alias :
multicast-bandwidth-limit : disabled
broadcast-bandwidth-limit : disabled
tx-flow-control : disabled
sffd : disabled
cp-limit : enabled multicast-limit 10000 broadcast-limit 10000
shape : disabled
802.1p-override : disable
slpp-rx : disabled
auto-recover-port : enable
ext-cp-limit : None threshold-util-rate 50
ERS-8610:6#
The following log message and trap is generated when MAC address discarding is
set due to loop-detect:
The following log message and trap is generated when a port, which has been
disabled due to CP-Limit or link-flap, is auto-recovered:
The following log message and trap is generated when a port which has been
disabled due to the loop detection feature is auto-recovered:
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 333
Warning: Enabling the spoof detection feature requires you to reboot the
switch.
where:
=============================================================================
Vlan Basic
=============================================================================
VLAN STG
ID NAME TYPE ID PROTOCOLID SUBNETADDR SUBNETMASK
-----------------------------------------------------------------------------
1 Default byPort 1 none N/A N/A
=============================================================================
Vlan Port
=============================================================================
VLAN PORT ACTIVE STATIC NOT_ALLOW
ID MEMBER MEMBER MEMBER MEMBER
-----------------------------------------------------------------------------
1 1/1,1/5-1/8,2/1- 1/1,1/5-1/8,2/1-
2/8,4/1-4/16,4/18- 2/8,4/1-4/16,4/18-
4/30 4/30
13 4/17 4/17
=============================================================================
Vlan ATM VPort
=============================================================================
VLAN ID PORT NUM PVC LIST
-----------------------------------------------------------------------------
--More-- (q = quit)
Field Description
Vlan Basic
VLAN ID Indicates the VLAN ID.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 335
Field Description
Field Description
Vlan Port
VLAN ID Indicates the VLAN ID.
PORT MEMBER Indicates the set of ports that are members (static or dynamic) of
this VLAN.
ACTIVE MEMBER Indicates the The set of ports that are currently active in this
VLAN. Active ports include all static ports and any dynamic ports
where the VLAN policy was met.
STATIC MEMBER Indicates the The set of ports that are static members of this
VLAN. A static member of a VLAN is always active and is never
aged out.
NOT_ALLOW Indicates the The set of ports that are not allowed to become
MEMBER members of this VLAN.
Vlan ATM Port
VLAN ID Indicates the VLAN ID.
PORT NUM Indicates the port number.
PVC LIST Indicates the PVC list.
Ospf Passive Port Members
VLAN Indicates the VLAN ID.
PORT NUM Indicates the VLAN port number for the passive OSPF interface.
Vlan Advance
VLAN ID Indicates the VLAN ID.
NAME Indicates the name assigned to the VLAN.
IF INDEX Indicates the interface index.
QOS LVL Indicates the QoS level packets carried in this VLAN for
processing.
AGING TIME Indicates the timeout period (in seconds) used for aging out
dynamic members of this VLAN. This field is only relevant for
policy-based VLANs.
MAC ADDRESS Indicates the MAC address assigned to the virtual router interface
of this VLAN. This field is meaningful only if VlanRoutingEnable is
equal to true.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 337
Field Description
Field Description
QOS LVL Indicates the QoS level packets carried in this VLAN for
processing.
SMLT REMOTE Indicates the MAC address for remote learnt, either local or
remote.
Vlan Filter
VLAN ID Indicates the VLAN ID.
STATUS Indicates the status of the VLAN filter.
MAC ADDRESS Indicates the MAC address assigned to the virtual router interface
of this VLAN. This field is meaningful only if VlanRoutingEnable is
equal to true.
PORT Indicates the port number.
QOS LVL Indicates the QoS level packets carried in this VLAN for
processing.
PCAP Indicates the status of PCAP on the filter.
DEST_DISCARD Indicates a set of ports. Traffic arriving on any of the specified
SET ports from this MAC address.
SRC_DISCARD SET Indicates a set of ports. Traffic arriving on any of the specified
ports is not forwarded to this MAC address.
Vlan Static
VLAN ID Indicates the VLAN ID.
STATUS Indicates the status of the static VLAN.
MAC ADDRESS Indicates the MAC address assigned to the virtual router interface
of this VLAN. This field is meaningful only if VlanRoutingEnable is
equal to true.
PORT Indicates the port number.
MONITOR Indicates whether monitoring is performed on this unicast MAC
address. If monitoring is enabled, any packet received with a
matching destination MAC address is forwarded to the port
configured to receive monitor traffic.
QOS LVL Indicates the QoS level packets carried in this VLAN for
processing.
IDS Vlan Info
VLAN ID Indicates the VLAN ID.
MAC LEARNING Indicates the type of MAC learning.
DISABLED PORTS Indicates the disabled port numbers.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 339
Field Description
Vlan Ip
VLAN ID Indicates the VLAN ID.
IP ADDRESS Indicates the IP subnet address of this VLAN. This value is
meaningful only if the VLAN type is set to IP subnet. For other
VLAN types, it has the value of 0.0.0.0.
NET MASK Indicates the IP subnet mask of this VLAN. This value is
meaningful only if the VLAN type is set to IP subnet. For other
VLAN types it has the value of 0.0.0.0.
BCASTADDR Indicates the IP broadcast address format used on this interface.
FORMAT
REASM MAXSIZE Indicates the size of the largest IP datagram that this entity can
reassemble from incoming IP fragmented datagrams received on
this interface.
ADVERTISE Indicates whether the VLAN state change is notified to Layer 3 or
WHEN_DOWN not, provided the VLAN is configured as a routable interface. A
VLAN is considered to be up if at least one member of the
port-based VLAN has link up, or at least one port member of the
policy-based has an entry in the MGID or at least one static
member of the policy-based VLAN has link up. Otherwise, a VLAN
is considered to be down. If the value is true then the interface
state change does not notify to Layer 3. (that is, it always stays
up). If the value is false then the VLAN state change is notified to
Layer 3 so that IP related status reflects the routable interface
state.
DIRECTED Indicates the status of directed broadcast.
BROADCAST
RPC Indicates the status of RPC.
RPC MODE Indicates the RPC mode type.
Vlan Dhcp
VLAN ID Indicates the VLAN ID number
IF INDEX Indicates the interface index number. Numbers 1 to 256 are ports;
numbers above 257 are VLANs.
ENABLE Indicates if DHCP is enabled on the port.
MAX HOP Indicates the maximum number of hops a DHCP packet can take
from the source device to the destination device (that is, DHCP
client to DHCP server)
Field Description
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 341
Field Description
Field Description
VIRTUAL MAC ADDR Indicates the virtual MAC address of the virtual router. This is
derived as follows: 00-00-5E-00-01-<VRID> where the first three
octets consist of the Internet Assigned Numbers Authority’s
(IANA) Organizationally Unique Identifier (OUI), the next two
octets indicate the address block of the VRRP protocol, and the
remaining octets consist of the VRID.
Vlan Vrrp Extended
VID Indicates the VLAN ID.
STATE Indicates the current state of the virtual router. Options include:
initialize—waiting for a startup event
backup—monitoring the state/availability of the master router
master—forwarding IP addresses associated with this virtual
router.
CONTROL Indicates the virtual router function. Setting the value to enabled
transitions the state of the router from initialize to backup. Setting
the value to disabled, transitions the router from master or backup
to initialize.
PRIORITY Indicates the priority for the virtual router (for example, master
election) with respect to other virtual routers that are backing up a
one or more associated IP addresses. Higher values imply higher
priority.
A priority of 0, although not possible to set, indicates that this
router has ceased to participate in VRRP and a backup virtual
router should transition to become a new master.
A priority of 255 is used for the router that owns the associated IP
addresses.
MASTER IPDDR Indicates the master router real (primary) IP address. This is the
IP address listed as the source in VRRP advertisement last
received by this virtual router.
ADVERTISE Indicates the time interval, in seconds, between sending
INTERVAL advertisement messages. Only the master router sends VRRP
advertisements.
CRITICAL IPADDR Indicates the IP address of the interface that causes a shutdown
event.
HOLDDOWN_TIME Indicates the amount of time (in seconds) to wait before
preempting the current VRRP master.
ACTION Indicates the trigger for an action on this VRRP interface. Options
include none and preemptHoldDownTimer.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 343
Field Description
Field Description
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 345
Field Description
Field Description
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 347
To display forwarding database information for the specified VLAN, enter the
following command:
where:
<vid> is the VLAN ID from 1 to 4 092.
port <port-list> is the port or range of ports in slot/port format.
mac <value> is the MAC address.
Figure 138 shows sample output for the show vlan info fdb-entry
command.
=============================================================================
Vlan Fdb
=============================================================================
VLAN MAC QOS SMLT
ID STATUS ADDRESS INTERFACE MONITOR LEVEL REMOTE
-----------------------------------------------------------------------------
1 learned 00:00:50:0d:6b:82 Port-2/7 false 1 false
ERS-8606:5#
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
To display the forwarding database filters for the specified VLAN, enter the
following command:
where:
<vid> is the VLAN ID from 1 to 4 092.
port <port-list> is the port or range of ports in slot/port format.
mac <value> is the MAC address.
The display includes the VLAN ID, the status, the VLAN MAC address, and the
ports from which the VLAN is not allowed to receive frames.
Figure 139 shows sample output for the show vlan info fdb-filter
command.
ERS-8610:5#
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 349
To display the static forwarding database status, the VLAN MAC address, and the
QoS level for the specified VLAN, enter the following command:
where:
<vid> is the VLAN ID from 1 to 4 092.
port <port-list> is the port or range of ports in slot/port format.
mac <value> is the MAC address.
Figure 140 shows sample output for the show vlan info fdb-static
command.
============================================================================
Vlan Static
============================================================================
VLAN MAC QOS
ID STATUS ADDRESS PORT MONITOR LEVEL
----------------------------------------------------------------------------
1 learned 08:12:20:38:4e:76 1/1 1/2 7
ERS-8606:5
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
To display additional parameters for the specified VLAN or all VLANs, enter the
following command:
where:
vid is the VLAN ID from 1 to 4 092,
port <value> is the port or range of ports.
Entering a vid or port <value> is optional. When you enter a vid or port
<value>, the command shows information for the specified VLAN or port.
Without the vid or port <value>, the command shows information for all the
configured VLANs.
All zeros in the MAC ADDRESS column indicate that there is no IP address
associated with that VLAN.
Figure 141 on page 351 shows sample output for the show vlan info
advance command.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 351
=============================================================================
Vlan Advance
=============================================================================
VLAN IF QOS AGING MAC USER
ID NAME INDEX LVL TIME ADDRESS ACTION RESULT DEFINEPID E
NCAP
------------------------------------------------------------------------------
1 Default 2049 1 0 00:00:00:00:00:00 none none 0x0000
VLAN
ID DSAP/SSAP
------------------------------------------------------------------------------
1
2
3
100
3999
ERS-8610:5#
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
To display the Address Resolution Protocol (ARP) configuration for all VLANs or
the specified VLAN, enter the following command:
where:
vid is the VLAN ID from 1 to 4 092,
port <value> is the port or range of ports.
Entering a vid or port <value> is optional. When you enter a vid or port
<value>, the command shows information for the specified VLAN or port.
Without the vid or port <value>, the command shows information for all the
configured VLANs.
Figure 142 shows sample output for the show vlan info arp command.
==============================================================
Vlan Arp
==============================================================
VLAN ID DOPROXY DORESP NLB-UNIAST-MODE
--------------------------------------------------------------
1 false true false
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
To display the basic configuration for all VLANs or a specified VLAN, enter the
following command:
where:
vid is the VLAN ID from 1 to 4 092,
port <value> is the port or range of ports.
Entering a vid or port <value> is optional. When you enter a vid or port
<value>, the command shows information for the specified VLAN or port.
Without the vid or port <value>, the command shows information for all the
configured VLANs.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 353
Figure 143 shows sample output for the show vlan info basic command.
==============================================================================
Vlan Basic
==============================================================================
VLAN STG
ID NAME TYPE ID PROTOCOLID SUBNETADDR SUBNETMASK
------------------------------------------------------------------------------
1 Default byPort 1 none N/A N/A
4093 VLAN-4093 byPort 64 none N/A N/A
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
To display the brouter port VLAN information for all VLANs on the switch or for
the specified VLAN, enter the following command:
where:
port <value> is the portlist {slot/port[-slot/port][,...]}. Entering a value is
optional. When you enter a value, the command shows information for the
specified port. Without the value, the command shows information for all the
configured VLANs.
This command is available only for the Ethernet Routing Switch 8600.
Figure 144 on page 354 shows sample output for the show vlan info
brouter-port command.
Vlan Id Port
======= ====
2090 1/1
ERS-8606:5#
To display information about IGMP operation in the switch, enter the following
command:
where:
vid is the VLAN ID from 1 to 4 092,
port <value> is the port or range of ports.
Entering a vid or port <value> is optional. When you enter a vid or port
<value>, the command shows information for the specified VLAN or port.
Without the vid or port <value>, the command shows information for all the
configured VLANs.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 355
Figure 145 shows sample output for the show vlan info igmp command.
=============================================================================
Vlan Ip Igmp
=============================================================================
VLAN QUERY QUERY ROBUST VERSION LAST PROXY SNOOP SSM FAST FAST
ID INTVL MAX MEMB SNOOP ENABLE SNOOP LEAVE LEAVE
RESP QUERY ENABLE ENABLE ENABLE PORTS
-----------------------------------------------------------------------------
1 125 100 2 2 10 false false false false
ERS-8606:5#
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
To display the routing (IP) configuration for all VLANs on the switch or for the
specified VLAN, enter the following command:
where:
vid is the VLAN ID from 1 to 4 092,
port <value> is the port or range of ports.
Entering a vid or port <value> is optional. When you enter a vid or port
<value>, the command shows information for the specified VLAN or port.
Without the vid or port <value>, the command shows information for all the
configured VLANs.
Figure 146 shows sample output for the show vlan info ip command.
=============================================================================
Vlan Ip
=============================================================================
VLAN IP NET BCASTADDR REASM ADVERTISE DIRECTED
ID ADDRESS MASK FORMAT MAXSIZE WHEN_DOWN BROADCAST
-----------------------------------------------------------------------------
1 192.32.253.1 255.255.255.0 ones 1500 disable enable
ERS-8606:5#
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
To display the port member status for all VLANs on the switch or for the specified
VLAN, enter the following command:
where:
vid is the VLAN ID from 1 to 4 092,
port <value> is the port or range of ports.
Entering a vid or port <value> is optional. When you enter a vid or port
<value>, the command shows information for the specified VLAN or port.
Without the vid or port <value>, the command shows information for all the
configured VLANs.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 357
Figure 147 shows sample output for the show vlan info ports command.
=============================================================================
Vlan Port
=============================================================================
VLAN PORT ACTIVE STATIC NOT_ALLOW
ID MEMBER MEMBER MEMBER MEMBER
-----------------------------------------------------------------------------
1 2/1-2/8,4/1-4/30 2/1-2/8,4/1-4/30
=============================================================================
Vlan ATM VPort
=============================================================================
VLAN ID PORT NUM PVC LIST
-----------------------------------------------------------------------------
=============================================================================
Ospf Passive Port Members
=============================================================================
VLAN PORT NUM
-----------------------------------------------------------------------------
1
ERS-8606:5#
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
To display the source MAC address for any source MAC-based VLANs on the
switch, or for the specified VLAN, if it is source MAC-based, enter the following
command:
where:
vid is the VLAN ID from 1 to 4 092,
port <value> is the port or range of ports.
Entering a vid or port <value> is optional. When you enter a vid or port
<value>, the command shows information for the specified VLAN or port.
Without the vid or port <value>, the command shows information for all the
configured VLANs.
Figure 148 shows sample output for the show vlan info srcmac command.
============================================================================
Vlan Srcmac
============================================================================
VLAN_ID MAC_ADDRESS
1 00:13:83:89:22:03
2 00:00:00:00:00:00
ERS-8606:5#
See the appropriate section in Table 59 on page 334 for an explanation of each
heading in the previous figure.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 359
where:
ERS-8603:3/show/ports/info# vlans
===============================================================
Port Vlans
===============================================================
PORT DISCARD DISCARD DEFAULT VLAN PORT UNTAG
NUM TAGGING TAGFRAM UNTAGFRAM VLANID IDS TYPE DEFVLAN
---------------------------------------------------------------
1/1 disable false false 1 1 normal disable
1/2 disable false false 1 1 normal disable
1/3 disable false false 1 1 normal disable
Field Description
Field Description
DISCARD TAGFRAM Indicates the state of how to process tagged frames received
on this access port. When the flag is set, these frames are
discarded by the forwarding process. When the flag is reset,
these frames are processed normally. This only applies when
the port is a trunk port.
DISCARD UNTAGFRAM Indicates the state of how to process untagged frames
received on this trunk port. When the flag is set, these frames
are discarded by the forwarding process. When the flag is
reset, these frames are assigned to the default VLAN ID
specified by Default VlanId. This only applies when the port is
a trunk port.
DEFAULT VLANID Indicates the VLAN ID assigned to untagged frames received
on this trunk port. This only applies when the port is a trunk
port.
VLAN IDS Indicates the VLANs assigned to this port.
PORT TYPE Indicates the type of port: normal, UNI, or NNI.
UNTAG DEFVLAN Indicates the status of egress tagging on the default VLAN
port.
where:
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 361
=============================================================================
Port Interface
=============================================================================
PORT LINK PORT PHYSICAL STATUS
NUM INDEX DESCRIPTION TRAP LOCK MTU ADDRESS ADMIN OPERATE
-----------------------------------------------------------------------------
1/1 64 1000BaseTX true false 1950 00:12:83:89:20:00 up down
=============================================================================
Port Name
=============================================================================
PORT OPERATE OPERATE OPERATE
NUM NAME DESCRIPTION STATUS DUPLX SPEED VLAN
-----------------------------------------------------------------------------
1/1 1000BaseTX down half 0 Access
=============================================================================
Port Config
=============================================================================
NUM TYPE NEG. DUPLX SPD DUPLX SPD EN TYPE LVL TFR ID
NAME CONN ID ROUTING ROUTING RECOVER
-----------------------------------------------------------------------------
1/1 1000BaseTX true false half 10 0 fals core 1 false 0
N/A 0 Enable Disable Disable
=============================================================================
Port State
=============================================================================
PORT NUM ADMINSTATUS PORTSTATE REASON DATE
-----------------------------------------------------------------------------
1/1 up down -- 03/13/06 22:31:41
=============================================================================
Port Arp
=============================================================================
Table 59 on page 334 shows the field descriptions for this command.
where:
vid is the VLAN ID from 1 to 4 092. Entering a vid is optional. When you
enter a vid, the command shows information for the specified VLAN. Without
the vid, the command shows information for all the configured VLANs.
314725-E Rev 00
Chapter 7 Configuring and managing VLANs using the CLI 363
Figure 151 shows sample output for the config vlan ip info command.
ERS-8603:3/config/vlan/1/ip# info
Sub-Context: arp-response dhcp-relay directed-broadcast dvmrp igmp ospf pim
pgm proxy rip route-discovery rsmlt vrrp
Current Context:
create : 10.1.1.1/255.255.255.0 mac_offset 1
delete : N/A
314725-E Rev 00
365
Chapter 8
Configuring sVLANs using the CLI
This section describes how to configure sVLANs using the command line
interface (CLI) and includes the following topics:
Topic Page
For conceptual information about sVLANs, see “Stacked VLANs” on page 59.
Command Parameter
config svlan info
ether-type level <value>
<ethertype>
level <level>
314725-E Rev 00
Chapter 8 Configuring sVLANs using the CLI 367
Command Parameter
config vlan <vid> create bysvlan <sid> [name <value>] [color
<value>]
bysvlan-mstprstp <instance-id>
[name <value>] [color <value>]
3 Create a spanning tree group (STG) of type sVLAN and set the tagged BPDU
address as different from the standardized BPDU address.
For more information, see “Creating an sVLAN STG” on page 376.
5 Create a VLAN of type sVLAN within the STG created in Step 3 and add
ports to it.
For more information, see “Creating an sVLAN” on page 368.
Creating an sVLAN
To create a VLAN of type sVLAN, use the following command:
This command allows you to specify the type of VLAN. The required parameter
vid is the VLAN ID. VLAN 1 is the default VLAN.
Figure 152 on page 369 shows sample output for the config vlan info
command.
314725-E Rev 00
Chapter 8 Configuring sVLANs using the CLI 369
Sub-Context: clear config dump monitor show test trace wsm asfm
sam
Current Context:
action : N/A
add-mlt :
addDsapSsap :
removeDsapSsap : N/A
agetime : N/A
delete : N/A
qoslevel : 1
name : SVLAN2
Security-vlan-type : none
Cluster : 0
Figure 153 on page 370 uses all the commands required to create an sVLAN.
config svlan
For sVLAN configurations, you must set the switch level to 1 or higher.
config svlan
followed by:
info Shows current configuration information for an sVLAN
(Figure 154).
ether-type level Sets an sVLAN tag for a switch level.
<value> <ethertype> • <value> is an integer value in the range of 1 to
7.
• <ethertype> is a hex value in the range of
0x5dd to 0xffff.
level <level> Specifies the switch level associated with this sVLAN.
• <level> is an integer value in the range of 0 to
7. Level 0 (normal port) 802.1Q frames are
classified into port-based VLANs.
Level 1 to 7: any frame type is transparently switched
and an additional Ethertype 4 bytes is added.
The default level is 0.
314725-E Rev 00
Chapter 8 Configuring sVLANs using the CLI 371
Sub-Context: clear config dump monitor show test trace wsm asfm sam
Current Context:
LEVEL ETHER-TYPE
0 0x8100
1 0x8020
2 0x8030
3 0x8040
4 0x8050
5 0x8060
6 0x8070
7 0x8080
Active-Level = 0
ERS-8606:5
Figure 155 shows sample output for the show svlan info ether-type and
active-level commands.
===========================================================================
Stacked Vlan Ether Type
===========================================================================
LEVEL ETHER-TYPE
---------------------------------------------------------------------------
0 0x8100
1 0x8020
2 0x8030
3 0x8040
4 0x8050
5 0x8060
6 0x8070
7 0x8080
Field Description
LEVEL Indicates the value that identifies the switch level associated with this
entry.
ETHER-TYPE Indicates the ether type value used for sVLAN tagging.
314725-E Rev 00
Chapter 8 Configuring sVLANs using the CLI 373
Note: Because each OctaPID can support up to eight ports, you must
designate all ports within an OctaPID as either normal or sVLAN (that
is, the ports can be all Normal or a combination of UNI/NNI within the
Octapid, which can be up to eight ports). See Appendix A, “Tap and
OctaPID assignment (Release 3.x feature set) and “Configuring sVLANs
using the CLI” on page 365.
When you configure a UNI port in the CLI, the tagged-frames-discard parameter
is automatically enabled. Similarly, when you configure an NNI port in the CLI,
the untagged-frames-discard parameter is automatically enabled.
The
Figure 157 shows sample output for the config ethernet <ports> info
command.
314725-E Rev 00
Chapter 8 Configuring sVLANs using the CLI 375
Port 4/1 :
lock : false
block-traffic : false
name :
auto-negotiate : true
enable-diffserv : false
access-diffserv : false
qos-level : 1
routing : enable
unknown-mac-discard : disable
high-secure : false
default-vlan-id : 1
untag-port-default-vlan : disable
tagged-frames-discard : disable
perform-tagging : disable
svlan-porttype : normal
untagged-frames-discard : disable
loop-detect : disable action port-down
arp-detect disable
state : up
linktrap : enable
multicast-bandwidth-limit : disabled
broadcast-bandwidth-limit : disabled
tx-flow-control : disabled
sffd : disabled
cp-limit : enabled multicast-limit 10000
broadcast-limit 10000
shape : disabled
802.1p-override : disable
auto-recover-port : disable
ext-cp-limit : None threshold-util-rate 50
ERS-8606:5#
314725-E Rev 00
Chapter 8 Configuring sVLANs using the CLI 377
Figure 158 on page 378 shows sample output for the config stg info
command.
Sub-Context: clear config dump monitor show test trace wsm asfm sam
Current Context:
ERS-8606:5#
To add UNI or NNI ports to the STG, use the following command:
314725-E Rev 00
379
Chapter 9
Configuring STGs using the CLI
You can set up spanning tree groups (STG) by using the spanning tree group
commands. You can set parameters for a group and for ports in that group. You
can also enable or disable the Spanning Tree Protocol in an STG.
This section includes information about configuring STG and its parameters by
using the appropriate commands and includes the following topics:
Topic Page
For conceptual information about spanning tree protocols, see “Spanning tree
protocols” on page 66.
Command Parameter
config bootconfig flags
spanning-tree-mode
<rstp|mstp|default>
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 381
Command Parameter
config eth <portlist> rstp info
edge-port <true|false>
p2p <forcetrue|forcefalse|auto>
pathcost <value>
priority <value>
protocol-migration <true|false>
stp <enable|disable>
Command Parameter
show ports info mstp cistinfo [vlan <value>] [port
<value>]
mstiinfo [vlan <value>] [port
<value>]
ciststat [vlan <value>] [port
<value>]
mstistat [vlan <value>] [port
<value>]
cistrole [vlan <value>] [port
<value>]
mstirole [vlan <value>] [port
<value>]
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 383
Command Parameter
delete
forward-delay <timeval>
group-stp <enable|disable>
hello-interval <timeval>
max-age <timeval>
priority <number>
remove ports <value>
trap-stp <enable|disable>
where:
rstp|mstp|default are the Spanning Tree modes RSTP, MSTP, and Legacy.
The default is Legacy.
Note: To change the spanning tree mode, you must use the commands
save bootconfig to save the boot configuration and boot to reboot
the switch. You must start a new session on the switch.
Figure 159 shows sample command line output for changing the spanning tree
mode to RSTP.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 385
Spanning Tree Protocol is the default spanning tree protocol used by the Ethernet
Routing Switch 8600. This section includes the following topics:
To configure parameters for a specified spanning tree group, enter the following
command:
where:
sid is the spanning tree group ID.
Note: Disabling the Spanning Tree Protocol can reduce CPU overhead
slightly. However, unless you are using the switch in a simple network
with little possibility of looping, Nortel recommends that you leave the
Spanning Tree Protocol enabled.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 387
Figure 160 shows sample output for the config stg info command.
Sub-Context: clear config dump monitor show test trace wsm asfm sam
Current Context:
ERS-8606:5#
Ports must have tagging enabled to belong to multiple spanning tree groups.
To configure spanning tree group port parameters, enter the following command:
where:
<ports> is the slot/port you want to add to the STG.
<sid> is the spanning tree group ID.
To display the current settings for the spanning tree group, use the following
command:
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 389
where:
<ports> is the slot/port you want to add to the STG.
<sid> is the spanning tree group ID.
Figure 161 Config ethernet <slot/port> stg <sid> info command output
ERS-8606:5# config ethernet 4/1 stg 1 info
Sub-Context: clear config dump monitor show test trace wsm asfm
sam
Current Context:
Port 4/1 :
change-detection : enable
faststart : disable
pathcost : 100
priority : 128
stp : enable
ERS-8606:5#
where:
<ports> is the slot/port you want to add to the STG.
<sid> is the spanning tree group ID.
If you enable change detection on an MLT with access ports, the setting is
automatically applied to all ports in the MLT.
where:
<ports> is the slot/port you want to add to the STG.
<sid> is the spanning tree group ID.
Figure 161 on page 389 shows sample output for this command.
The show ports info stg main command (Figure 162 on page 391) also
shows the change detection setting.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 391
==========================================================================
Port Stg
==========================================================================
ENABLE FORWARD CHANGE
SID PORT_NUM PRIO STATE STP FASTSTART PATHCOST TRANSITION DETECTION
--------------------------------------------------------------------------
1 2/1 128 forwarding false false 1 0 false
1 2/2 128 forwarding false false 1 0 false
1 2/3 128 forwarding false false 1 0 false
1 2/4 128 forwarding false false 1 0 false
1 2/5 128 forwarding false false 1 0 false
1 2/6 128 forwarding false false 1 0 false
1 2/7 128 forwarding false false 1 0 false
1 2/8 128 forwarding false false 1 0 false
1 4/1 128 disabled true false 100 0 true
1 4/2 128 disabled true false 100 0 true
1 4/3 128 disabled true false 100 0 true
1 4/4 128 disabled true false 100 0 true
1 4/5 128 disabled true false 100 0 true
1 4/6 128 disabled true false 100 0 true
1 4/7 128 disabled true false 100 0 true
1 4/8 128 disabled true false 100 0 true
ERS-8606:5#
Field Description
Field Description
To display the status of spanning tree on the switch or on a port, use the show
stg commands.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 393
To display all spanning tree group information, enter the following command:
where:
<value> is the filename to which the output will be redirected.
Figure 163 on page 394 shows sample output for this command.
==================================================================
Stg Config
==================================================================
STG BRIDGE BRIDGE FORWARD ENABLE STPTRAP
ID PRIORITY MAX_AGE HELLO_TIME DELAY STP TRAP NT-STG
------------------------------------------------------------------
1 32768 2000 200 1500 true true enable
==================================================================
Stg Status
==================================================================
STG BRIDGE NUM PROTOCOL TOP
ID ADDRESS PORTS SPECIFICATION CHANGES
------------------------------------------------------------------
1 00:12:83:89:20:01 59 ieee8021d 0
Field Description
Stg Config
STG ID Indicates the STG identifier.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 395
Field Description
PRIORITY Indicates the value of the priority field that is contained in the
first (in network byte order) octet of the two octet long port ID.
BRIDGE MAX_AGE Indicates the value that all bridges use for the bridge
maximum age when this bridge acts as the root.
BRIDGE HELLO_TIME Indicates the value that all bridges use for the bridge hello
timer when this bridge acts as the root.
FORWARD DELAY Indicates the value that all bridges use for forward delay when
this bridge acts as the root. This time value, measured in
units of hundredths of a second, controls how fast a port
changes its spanning state when moving towards the
forwarding state. The value determines how long the port
stays in each of the listening and learning states, which
precede the forwarding state. This value is also used, when a
topology change is detected and is underway, to age all
dynamic entries in the forwarding database.
ENABLE STP Indicates that the Spanning Tree Protocol is active in this
STG.
STPTRAP TRAP Indicates the traps relating to the Spanning Tree Protocol
which are sent for this STG.
NT-STG Indicates the whether this STG is operating in Nortel mode or
in Cisco mode.
• enable—Nortel mode
• disable—Cisco mode
Stg Status
STG ID Indicates the STG identifier.
BRIDGE ADDRESS Indicates the MAC address used by this bridge when it must
be referred to in a unique fashion. Nortel recommends that
this be the numerically smallest MAC address of all the ports
that belong to this bridge.
NUM PORTS Indicates the number of ports controlled by this bridging
entity.
PROTOCOL Indicates the version of the Spanning Tree Protocol that is
SPECIFICATION used. The value decLb100 indicates the DEC LAN bridge 100
Spanning Tree protocol. IEEE 802.1d implementations will
return ieee8021d.
TOP CHANGES Indicates the total number of topology changes detected by
this bridge since the management entity was last reset or
initialized.
Field Description
DESIGNATED ROOT Indicates the bridge identifier of the root of the spanning tree
as determined by the Spanning Tree Protocol as executed by
this node. This value is used as the root identifier parameter
in all configuration Bridge PDUs originated by this node.
ROOT COST Indicates the cost of the path to the root as seen from this
bridge.
ROOT PORT Indicates the port number of the port that offers the lowest
cost path from this bridge to the root bridge.
MAX AGE Indicates the maximum age of Spanning Tree Protocol
information learned from the network on any port before it is
discarded, in units of hundredths of a second. This is the
actual value that this bridge is currently using.
HELLO TIME Indicates the amount of time between the transmission of
configuration bridge PDUs by this node on any port when it is
the root of the spanning tree or trying to become so, in units
of hundredths of a second. This is the actual value that this
bridge is currently using.
HOLD TIME Indicates the interval length during which no more than two
configuration bridge PDUs are transmitted by this node, in
units of hundredths of a second.
FORWARD DELAY Indicates the how fast (in hundredths of a second) a port
changes its spanning state when moving towards the
Forwarding state. The value determines how long the port
stays in each of the listening and learning states, which
precede the forwarding state. This value is also used, when a
topology change is detected and is underway, to age all
dynamic entries in the forwarding database.
Note: This value is the one that this bridge is currently using,
in contrast to the bridge forward delay which is the value that
this bridge and all others would start using if this bridge were
to become the root.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 397
To display the spanning tree group configuration for the switch or for the specified
spanning tree group, enter the following command:
where:
<sid> is the spanning tree group ID.
Figure 164 shows sample output for the show stg info config command.
==============================================================================
Stg Config
==============================================================================
STG BRIDGE BRIDGE FORWARD ENABLE STPTRAP
ID PRIORITY MAX_AGE HELLO_TIME DELAY STP TRAP NT-STG
------------------------------------------------------------------------------
1 32768 2000 200 1500 true true enable
ERS-8606#
See Table 63 on page 394 for descriptions of the parameters for this command.
To display the spanning tree group status for the specified spanning tree group or
all STGs, enter the following command:
where:
<sid> is the spanning tree group ID.
Figure 165 shows sample output for the show stg info status command.
=============================================================================
Stg Status
=============================================================================
STG BRIDGE NUM PROTOCOL TOP
ID ADDRESS PORTS SPECIFICATION CHANGES
-----------------------------------------------------------------------------
1 00:80:2d:c0:90:01 38 ieee8021d 75
See Table 63 on page 394 for descriptions of the parameters for this command.
To display basic spanning tree group information about one or more specified
ports or about all ports, enter the following command:
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 399
where:
vlan <value> is the VLAN ID from 1 to 4 092,
port <value> is the port or range of ports.
(For more information about the show ports info stg extended command,
see “Displaying basic STG information” on page 398.)
Figure 166 shows sample output for the show ports info stg main
command.
==============================================================================
Port Stg
==============================================================================
ENABLE FORWARD CHANGE
SID PORT_NUM PRIO STATE STP FASTSTART PATHCOST TRANSITION DETECTION
------------------------------------------------------------------------------
1 4/1 128 disabled true false 100 0 true
ERS-8606:5#
See Table 62 on page 391 for descriptions of the parameters for this command.
To display additional spanning tree group information about the specified port or
about all ports, enter the following command:
where:
vlan <value> is the VLAN ID from 1 to 4 092,
port <value> is the port or range of ports.
This information is less often used in switch monitoring than the information
obtained with the show ports info stg main command (page 398).
Figure 167 shows sample output for the show ports info stg extended
command.
=============================================================================
Port Stg Extended
=============================================================================
----------------------DESIGNATED----------------
SID PORT_NUM ROOT COST BRIDGE PORT
-----------------------------------------------------------------------------
1 2/1 80:00:00:80:2d:c0:90:01 0 80:00:00:80:2d:c0:90:01 80:80
1 2/2 80:00:00:80:2d:c0:90:01 0 80:00:00:80:2d:c0:90:01 80:81
1 2/3 80:00:00:80:2d:c0:90:01 0 80:00:00:80:2d:c0:90:01 80:82
Field Description
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 401
Field Description
DESIGNATED ROOT Indicates the bridge identifier of the root of the spanning tree
as determined by the Spanning Tree Protocol as executed by
this node. This value is used as the root identifier parameter
in all configuration bridge PDUs originated by this node.
DESIGNATED ROOT Indicates the cost of the path to the root as seen from this
COST bridge.
DESIGNATED BRIDGE Indicates the MAC address used by this bridge when it must
ADDRESS be referred to in a unique fashion. Nortel recommends that
this be the numerically smallest MAC address of all the ports
that belong to this bridge.
DESIGNATED ROOT Indicates the port number of the port that offers the lowest
PORT cost path from this bridge to the root bridge.
To display statistics counters for spanning tree groups on all ports or the specified
port, enter the following command:
where:
<ports> is the port or list of ports.
Figure 168 on page 402 shows sample output for the show ports stats stg
command.
==============================================================================
Port Stats Stg
==============================================================================
PORT IN_CONFIG IN_TCN IN_BAD OUT_CONFIG OUT_TCN
NUM BPDU BPDU BPDU BPDU BPDU
------------------------------------------------------------------------------
2/1 0 0 0 0 0
2/2 0 0 0 0 0
2/3 0 0 0 0 0
Field Description
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 403
To set the Rapid Spanning Tree Protocol (RSTP) parameters for the bridge, use
the following command:
config rstp
Note: If you use the force version command to change the STP
version to MSTP or RSTP, you must reconfigure the Root Path Cost
parameter. It does not return to the default value when the version is
changed; instead, its value is changed to 65535.
config rstp
followed by:
info Shows current level parameter settings and next level
directories.
force version Sets the RSTP bridge version; default is rstp.
<stp-compatible|rstp>
forward-delay <number> Sets the RSTP forward delay for the bridge from 400
to 3000 hundredths of a second.
group-stp Enables or disables RSTP for a specific STG.
<enable|disable>
hello-time <number> Sets the RSTP hello time delay for the bridge from
100 to 1000 hundredths of a second.
max-age <number> Sets the RSTP maximum age time for the bridge from
600 to 4000 hundredths of a second.
pathcost-type Sets the RSTP default pathcost version; default is 32
<16-bit|32-bit> bits.
priority <number> Sets the RSTP bridge priority from 0 to 61440 in steps
of 4096.
tx-holdcount <number> Sets the RSTP Transmit Hold Count from 1 to 10;
default is 3.
To display the Rapid Spanning Tree Protocol (RSTP) configuration details, use
the following command:
The show rstp config command is in the CLI Global configuration mode.
Figure 169 on page 405 shows sample output for the show rstp config
command.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 405
============================================================
RSTP Configuration
============================================================
Rstp Module Status : Enabled
Prority : 32768 (0x8000)
Stp Version : rstp Mode
Bridge Max Age : 20 seconds
Bridge Hello Time : 2 seconds
Bridge Forward Delay Time : 15 seconds
Tx Hold Count : 3
PathCost Default Type : 32-bit
ERS-8606:5#
The show rstp stats command is in the CLI Global configuration mode.
Figure 170 on page 406 shows sample output for the show rstp stats
command.
============================================================
RSTP Statistics
============================================================
Rstp UP Count : 1
Rstp Down Count : 0
Count of Root Bridge Changes : 0
Stp Time since Topology change: 487 seconds
Total No. of topology changes : 2
ERS-8606:5#
To display the Rapid Spanning Tree Protocol (RSTP) related status information
for the selected bridge, use the following command:
Figure 171 on page 407 shows sample output for the show rstp status
command.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 407
============================================================
RSTP Status Information
============================================================
Designated Root : 80:00:00:80:2d:c0:90:01
Stp Root Cost : 0
Stp Root Port : cpp
Stp Max Age : 20 seconds
Stp Hello Time : 2 seconds
Stp Forward Delay Time : 15 seconds
ERS-8606:5#
To display the Rapid Spanning Tree Protocol (RSTP) related port level
configuration details, use the following command:
where:
vlan <value> is the VLAN ID, and
port <value> is a port or list of ports.
Figure 172 on page 408 shows sample output for the show ports info rstp
config command.
============================================================
RSTP Port Configurations
============================================================
Port Number : 2/1
Port Priority : 128 (0x80)
Port PathCost : 20000
Port Protocol Migration : False
Port Admin Edge Status : False
Port Oper Edge Status : False
Port Admin P2P Status : Auto
Port Oper P2P Status : False
Port Oper Protocol Version : Rstp
To display the Rapid Spanning Tree Protocol (RSTP) related port level statistics
use the following command:
where:
vlan <value> is the VLAN ID, and
port <value> is a port or list of ports.
The show ports info rstp stats command is in the CLI Global
configuration mode.
Figure 173 on page 409 shows sample output for the show ports info rstp
stats command.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 409
=============================================================
RSTP Port Statistics
=============================================================
Port Number : 2/1
Number of Fwd Transitions : 1
Rx RST BPDUs Count : 0
Rx Config BPDU Count : 0
Rx TCN BPDU Count : 0
Tx RST BPDUs Count : 737
Tx Config BPDU Count : 0
Tx TCN BPDU Count : 0
Invalid RST BPDUs Rx Count : 0
Invalid Config BPDU Rx Count : 0
Invalid TCN BPDU Rx Count : 0
Protocol Migration Count : 0
To display the Rapid Spanning Tree Protocol (RSTP) related status information
for a selected port use the following command:
where:
vlan <value> is the VLAN ID, and
port <value> is a port or list of ports.
The show ports info rstp status command is in the CLI Global
configuration mode.
Figure 175 on page 411 shows sample output for the show ports info rstp
status command.
==============================================================
RSTP Port Status
(Port Priority Vector)
==============================================================
Port Number : 2/1
Port Designated Root : 80:00:00:80:2d:c0:90:01
Port Designated Cost : 0
Port Designated Bridge : 80:00:00:80:2d:c0:90:01
Port Designated Port : 80:80
where:
vlan <value> is the VLAN ID, and
port <value> is a port or list of ports.
The show ports info rstp config command is in the CLI Global
configuration mode.
Figure 175 on page 411 shows sample output for the show ports info rstp
config command.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 411
==============================================================
RSTP Port Configurations
==============================================================
Port Number : 1/1
Port Priority : 128 (0x80)
Port PathCost : 200000000
Port Protocol Migration : False
Port Admin Edge Status : False
Port Oper Edge Status : False
Port Admin P2P Status : Auto
Port Oper P2P Status : False
Port Oper Protocol Version : Rstp
ERS-8610:5#
where:
<portlist> is the port list.
The show ports info rstp role command is in the CLI Interface
configuration mode.
Figure 176 on page 412 shows the output for the show ports info rstp
command.
=============================================================
RSTP Port Roles and States
=============================================================
To set RSTP parameters for the port, use the following command:
The config eth rstp info command is in the CLI Global configuration
mode.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 413
To set the Multiple Spanning Tree Protocol (MSTP) configuration version, use the
following command.
config mstp
config mstp
followed by:
info Shows current level parameter settings and next level
directories.
pathcost-type Sets the MSTP default path cost version; default is 32
<16-bit|32-bit> bits.
hop count <number> Sets the MSTP hop count. The range is
400 to 4000 hundredths of a second; default is 2000.
tx-holdcount <number> Sets the MSTP Transmit Hold Count. The range is
1 to 10; the default is 3.
Figure 177 shows sample output for the config mstp info command.
ERS-8606:5#
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 415
The config mstp region command is in the CLI Global configuration mode.
Figure 178 shows sample output for the config mstp region commands.
ERS-8610:6#
To configure the MSTP Common and Internal Spanning Tree (CIST) parameters,
use the following command:
ERS-8610:5#
To set the Multiple Spanning Tree Instance (MSTI) configuration version, use the
following command:
The config mstp msti command is in the CLI Instance configuration mode.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 417
Sub-Context:
Current Context:
info
priority <number>
ERS-8606:5#
The show mstp config command is in the CLI Global configuration mode.
Figure 181 on page 418 shows sample output for this command.
==============================================================
MSTP Configurations
==============================================================
Mstp Module Status : Enabled
Number of Msti Supported : 64
Cist Bridge priority : 32768 (0x8000)
Stp Version : Mstp Mode
Cist Bridge Max Age : 20 seconds
Cist Bridge Forward Delay : 15 seconds
Tx Hold Count : 3
PathCost Default Type : 32-bit
Max Hop Count : 2000
Msti Config Id Selector : 0
Msti Region Name : 00:80:2d:c0:90:01
Msti Region Version : 0
Msti Config Digest :
ac:36:17:7f:50:28:3c:d4:b8:38:21:d8:ab:26:de:62
ERS-8606:5#
To show the MSTP instance-specific bridge and VLAN information, use the
following command:
where:
<instid> is the instance ID.
Figure 182 on page 419 shows sample output for this command.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 419
==============================================================
MSTP Instance Status
==============================================================
Instance Id : 5
Msti Bridge Regional Root : 80:00:00:03:4b:4f:d0:01
Msti Bridge Priority : 32768 (0x8000)
Msti Root Cost : 0
Msti Root Port : cpp
Msti Instance Vlan Mapped : 5
Msti Instance Vlan Mapped2k :
Msti Instance Vlan Mapped3k :
Msti Instance Vlan Mapped4k :
ERS-8606:5#
To display the MSTP related bridge-level statistics, use the following command:
The show mstp stats command is in the CLI Global configuration mode.
Figure 183 on page 420 shows sample output for this command.
=============================================================
MSTP Bridge Statistics
=============================================================
Mstp UP Count : 1
Mstp Down Count : 0
Region Config Change Count : 3
Time since topology change : 0 seconds
Topology change count : 0
New Root Bridge Count : 1
ERS-8606:5#
To display the MSTP related status information known by the selected bridge, use
the following command:
The show mstp status command is in the CLI Global configuration mode.
Figure 184 on page 421 shows sample output for this command.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 421
===============================================================
MSTP Status
===============================================================
---------------------------------------------------------------
Bridge Address : 00:80:2d:c0:90:01
Cist Root : 80:00:00:80:2d:c0:90:01
Cist Regional Root : 80:00:00:80:2d:c0:90:01
Cist Root Port : cpp
Cist Root Cost : 0
Cist Regional Root Cost : 0
Cist Instance Vlan Mapped : 1-1024
Cist Instance Vlan Mapped2k : 1025-2048
Cist Instance Vlan Mapped3k : 2049-3072
Cist Instance Vlan Mapped4k : 3073-4094
Cist Max Age : 20 seconds
Cist Forward Delay : 15 seconds
ERS-8606:5#
To display the MSTP, CIST port, and MSTI port information maintained by every
port of the Common Spanning Tree, use the following command:
Note: External and internal path costs are displayed incorrectly in the
show ports info CLI output for the CIST and MST.
Figure 185 on page 423 shows sample output for this command.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 423
==============================================================
MSTP Cist Port Information
(Port Priority Vector)
==============================================================
Port Number : 2/1
Cist Port Priority : 128 (0x80)
Cist Port Designated Root : 80:00:00:80:2d:c0:90:01
Cist Port Designated Cost : 0
Cist Port Designated Bridge : 80:00:00:80:2d:c0:90:01
Cist Port Designated Port : 80:80
Cist Port Regional Root : 80:00:00:80:2d:c0:90:01
Cist Port Regional PathCost : 0
Cist Port Protocol Migration : False
Cist Port Admin Edge Status : False
Cist Port Oper Edge Status : False
Cist Port Admin P2P Status : Auto
Cist Port Oper P2P Status : True
Cist Port Hello Time : 2
Cist Port Oper Proto-Version : Mstp
Port Number : 2/2
Cist Port Priority : 128 (0x80)
Cist Port Designated Root : 80:00:00:80:2d:c0:90:01
Cist Port Designated Cost : 0
Cist Port Designated Bridge : 80:00:00:80:2d:c0:90:01
Cist Port Designated Port : 80:81
Cist Port Regional Root : 80:00:00:80:2d:c0:90:01
Cist Port Regional PathCost : 0
Cist Port Protocol Migration : False
Cist Port Admin Edge Status : False
Cist Port Oper Edge Status : False
Cist Port Admin P2P Status : Auto
Cist Port Oper P2P Status : True
Cist Port Hello Time : 2
Cist Port Oper Proto-Version : Mstp
To configure the Ethernet MSTP CIST parameters for a port, use the following
command:
where:
<portlist> is the port list.
The config eth mstp cist command is in the CLI Global configuration
mode.
314725-E Rev 00
Chapter 9 Configuring STGs using the CLI 425
To configure the Ethernet MSTP MSTI parameters on a port, use the following
command:
where:
<portlist> is the port list, and
<instid> is the instance ID.
The config eth mstp msti command is in the CLI Global configuration
mode.
314725-E Rev 00
427
Chapter 10
Configuring link aggregation using the CLI
Link aggregation allows you to bundle a set of ports into a port group, which is
represented as one logical interface to upper layer protocols.
Topic Page
Command Parameter
config mlt <mid> info
create
cp-limit <enable|disable>
[multicast-limit <value>]
[broadcast-limit <value>]
delete
mcast-distribution <enable|disable>
name <string>
perform-tagging <enable|disable>
svlan-porttype <uni|nni|normal>
ntstg <enable|disable>
config mlt <mid> add info
ports <ports>
vlan <vid>
config mlt <mid> remove info
ports <ports>
vlan <vid>
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 429
Command Parameter
Command Parameter
timeout-scale <integer>
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 431
Command Parameter
config vlacp info
enable
disable
Command Parameter
show mlt stats [<mid>]
show ports info smlt [vlan <value>]
[port <value>]
show ports info config [vlan
<value>] [port <value>]
show smlt info [<mid>]
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 433
where:
<mid> is the multilink trunk ID.
Figure 186 on page 435 shows sample output for the config mlt info
command.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 435
Sub-Context: atm atmcard bootconfig cli cluster diag r-module ethernet fdb
filter ip ipv6 ipx lacp log mlt naap ntp pos poscard qos radius rmon slot
snmp-server snmp-v3 stg svlan sys vlacp vlan web-server
Current Context:
create : 3
delete : N/A
mcast-distribution : disable
name : MLT-3
nt-stg : enable
perform-tagging : disable
svlan-porttype : normal
portmember :
cp-limit : port status MC-limit BC-limit
ERS-8606:5/config#
To add ports to a link aggregation group, and add an existing VLAN to a link
aggregation configuration, enter the following command:
where:
<mid> is the multilink trunk ID.
Configuration example
The following configuration example uses the config mlt commands to:
After configuring the parameters, use the info command to show a summary of
the results.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 437
To remove ports from a multilink trunk and remove a VLAN from a multilink
trunk configuration, enter the following command:
where:
<mid> is the multilink trunk ID.
The following configuration example uses the config mlt <mid> remove
command to:
ERS-8600:5#/config/mlt/1# info
Sub-Context:
Current Context:
ports: 1/1-1/7,1/9
vlan: 1-8,10
ERS-8600:5#/config/mlt/1/add# remove
ERS-8600:5#/config/mlt/1/remove# ports 1/1-1/7,1/9
ERR-8600:5#/config/mlt/1/remove# vlan 1-8,10
ERS-8600:5#/config/mlt/1/remove# info
Sub-Context:
Current Context:
ports :
vlan :
LACP can be enabled or disabled globally. When the LACP system priority is set
globally, it applies to all LACP-enabled aggregators and ports. When LACP is
enabled on an aggregator or a port, it will use the global system priority value.
Caution: Changes to LACP made at the global level override and reset
all port level settings.
Note: Standby mode for LACP aggregation groups of larger than eight
ports is not supported in the current release.
Note: LACP does not support jumbo frames on the Ethernet Routing
Switch 8600 v4.1
config lacp
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 439
config lacp
followed by:
info Shows current level parameter settings and next level
directories.
enable Enables LACP globally.
disable Disables LACP globally.
aggr-wait-time Sets the aggregator wait time in milliseconds.
<milliseconds>
system-priority Sets LACP system priority globally.
<integer> • <integer> is the system priority value within
the range of 0 to 65535.
smlt-sys-id <BaseMac> Sets the LACP SMLT system ID globally.
• <BaseMac> is the MAC address in the format
{0x00:0x00:0x00:0x00:0x00:0x00}.
fast-periodic-time Sets the fast periodic time globally.
<milliseconds> • <milliseconds> is the fast periodic time
value.
slow-periodic-time Sets the slow periodic time globally.
<milliseconds> • <milliseconds> is the slow periodic time
value.
timeout-scale Sets a timeout scale globally.
<integer> • <integer> is the timeout scale value from 2 to
10.
You can attach ports to an aggregator only if their system priorities are the same;
otherwise, they are considered to be operating in two different switches. You can
attach ports to an aggregator only if their keys are the same.
where:
<mlt id> is the multilink trunk ID.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 441
Caution: Changes made at the global level override and reset all port
level settings.
You can enable or disable LACP on selected ports. A port can operate in active or
passive mode. You can configure LACP to use long timeout or short timeout. A
port can be configured to be an individual link or an aggregateable link. All the
timers are configurable, however, when you change a timer, ensure that you restart
LACP either globally, or on the port, for the changes to be consistent across the
link. The basic command syntax is:
where:
<port-type> is Ethernet (eth) or Packet over SONET (pos); and
<slot|port> is the slot and port number.
key <integer> Sets LACP aggregation key for a specific port type.
You can use a default key only for individual ports
aggregation Sets individual port or aggregatable for a specific
<true|false> port type.
• true sets port as aggregatable.
• false sets port as individual.
mode <active|passive> Sets the mode as active or passive for a specific
port type.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 443
This section describes show commands you can use to display LACP information.
Figure 187 on page 444 shows the output for the show lacp info command.
ERS-8610:5#
The show ports info lacp command also includes the following options:
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 445
Figure 188 on page 446 shows some of the output for this command. When the
all parameter is used, LACP information is given for each field described in the
show ports info lacp table.
=========================================================================
Actor Admin
=========================================================================
INDEX SYS SYS KEY PORT PORT STATE
PRIO ID PRIO
-------------------------------------------------------------------------
1/1 32768 00:12:83:89:20:00 1088 0x40 32768 act long indi
1/2 32768 00:12:83:89:20:00 1089 0x41 32768 act long indi
1/3 32768 00:12:83:89:20:00 1090 0x42 32768 act long indi
1/4 32768 00:12:83:89:20:00 1091 0x43 32768 act long indi
1/5 32768 00:12:83:89:20:00 1092 0x44 32768 act long indi
1/6 32768 00:12:83:89:20:00 1093 0x45 32768 act long indi
1/7 32768 00:12:83:89:20:00 1094 0x46 32768 act long indi
1/8 32768 00:12:83:89:20:00 1095 0x47 32768 act long indi
1/9 32768 00:12:83:89:20:00 1096 0x48 32768 act long indi
1/10 32768 00:12:83:89:20:00 1097 0x49 32768 act long indi
1/11 32768 00:12:83:89:20:00 1098 0x4a 32768 act long indi
1/12 32768 00:12:83:89:20:00 1099 0x4b 32768 act long indi
1/13 32768 00:12:83:89:20:00 1100 0x4c 32768 act long indi
1/14 32768 00:12:83:89:20:00 1101 0x4d 32768 act long indi
1/15 32768 00:12:83:89:20:00 1102 0x4e 32768 act long indi
1/16 32768 00:12:83:89:20:00 1103 0x4f 32768 act long indi
--More-- (q = quit)
To display LACP statistics information per port, enter the following command:
where:
port <value> is the port list.
Figure 189 on page 447 shows the output for the show ports stats lacp
command, and Table 66 on page 447 describes the information given in the CLI
output.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 447
Field Description
where:
<ifindex> is the interface index from 64 to 4351.
Figure 190 on page 449 shows the output for the show mlt lacp command.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 449
=========================================================================
LACP Aggrgator Information
=========================================================================
MAC COLLECTOR AGGR PORT
MLTID IFINDEX ADDR MAXDELAY ORINDI MEMBERS
-------------------------------------------------------------------------
0 64 00:00:00:00:00:00 32768 indi
-------------------------------------------------------------------------
OPER OPERLAST
MLTID IFINDEX STATE CHANGE
-------------------------------------------------------------------------
-------------------------------------------------------------------------
ACTOR ACTOR ACTOR ACTOR
MLTID IFINDEX SYSPRIO SYSID ADMINKEY OPERKEY
-------------------------------------------------------------------------
0 64 32768 00:80:2d:c1:34:00 1 1
-------------------------------------------------------------------------
PARTNER PARTNER PARTNER
MLTID IFINDEX SYSPRIO SYSID OPERKEY
-------------------------------------------------------------------------
0 64 0 00:00:00:00:00:00 0
ERS-8606:6#
Figure 191 on page 450 shows the output for the show mlt lacp info command.
========================================================================
LACP Aggrgator Information
========================================================================
MAC COLLECTOR AGGR PORT
MLTID IFINDEX ADDR MAXDELAY ORINDI MEMBERS
------------------------------------------------------------------------
1 4096 00:00:00:00:00:00 32768 aggr
0 64 00:00:00:00:00:00 32768 indi
0 65 00:00:00:00:00:00 32768 indi
0 66 00:00:00:00:00:00 32768 indi
0 67 00:00:00:00:00:00 32768 indi
0 73 00:00:00:00:00:00 32768 indi
------------------------------------------------------------------------
OPER OPERLAST
MLTID IFINDEX STATE CHANGE
------------------------------------------------------------------------
1 4096 down 0 day(s), 00:00:00
------------------------------------------------------------------------
ACTOR ACTOR ACTOR ACTOR
MLTID IFINDEX SYSPRIO SYSID ADMINKEY OPERKEY
------------------------------------------------------------------------
1 4096 32768 00:80:2d:c1:34:00 1 1
0 64 32768 00:80:2d:c1:34:00 1 1
0 65 32768 00:80:2d:c1:34:00 1 1
0 66 32768 00:80:2d:c1:34:00 1 1
0 67 32768 00:80:2d:c1:34:00 1 1
0 73 32768 00:80:2d:c1:34:00 1 1
------------------------------------------------------------------------
PARTNER PARTNER PARTNER
MLTID IFINDEX SYSPRIO SYSID OPERKEY
------------------------------------------------------------------------
1 4096 0 00:00:00:00:00:00 0
0 64 0 00:00:00:00:00:00 0
0 65 0 00:00:00:00:00:00 0
0 66 0 00:00:00:00:00:00 0
0 67 0 00:00:00:00:00:00 0
0 73 0 00:00:00:00:00:00 0
ERS-8606:6#
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 451
Virtual LACP is an LACP extension that is used for end to end failure
detection.VLACP uses the Hello mechanism of LACP to periodically send Hello
packets to ensure there is end to end reachability. When Hello packets are not
received, VLACP transitions to a failure state, which indicates a service provider
failure, and the port is disabled.
Caution: Changes made at the global level override and reset all port
level settings.
Note: VLACP does not support jumbo frames on the Ethernet Routing
Switch 8600 v4.1
where:
<port-type> is Ethernet or Packet over SONET (PoS); and
<slot|port> is the slot and port number.
where:
vlan <value> specifies the VLAN ID, and
port <value> specifies the port or port list.
Figure 192 on page 453 shows the output for the show ports info vlacp
command.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 453
=========================================================================
VLACP Information
=========================================================================
INDEX ADMIN OPER PORT FAST SLOW TIMEOUT TIMEOUT ETHER MAC
-------------------------------------------------------------------------
1/1 false false DOWN 200 30000 long 3 8103
01:80:c2:0
0:11:00
ERS-8606:6#
to show information for all ports. Figure 193 on page 454 shows the output for the
show ports info vlacp command.
=============================================================================
VLACP Information
=============================================================================
INDEX ADMIN OPER PORT FAST SLOW TIMEOUT TIMEOUT ETHER MAC
-----------------------------------------------------------------------------
1/1 false false DOWN 200 30000 long 3 8103 01:80:c2:0
0:11:00
1/2 false false DOWN 200 30000 long 3 8103 01:80:c2:0
0:11:00
1/3 false false DOWN 200 30000 long 3 8103 01:80:c2:0
0:11:00
1/4 false false DOWN 200 30000 long 3 8103 01:80:c2:0
0:11:00
1/5 false false DOWN 200 30000 long 3 8103 01:80:c2:0
0:11:00
Caution: Changes you make at the global level override and reset all port
level settings.
To globally enable or disable VLACP on the chassis, use the following command:
config vlacp
config vlacp
followed by:
info Shows current level parameter settings and next level
directories.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 455
config vlacp
followed by:
enable Enables VLACP globally.
disable Disables VLACP globally.
To create a split multilink trunk from an existing multilink trunk, enter the
following command:
where:
<mid> is the MLT ID.
Note: Before you can create a split multilink trunk, you must first create
a multilink trunk (see “Link aggregation commands” on page 433).
where:
<mid> is the MLT ID.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 457
where:
<mlt-id> is the MLT ID;
ip <value> is the IP address of the peer switch; and
vlan-id <value> is the VLAN ID.
The peer IP address is the IP address of the InterSwitch Trunking (IST) VLAN on
the peer aggregation switch. A VLAN created on the redundant aggregation
switch must also be created on the second aggregation switch. The interswitch
trunk treats the two switches as a single switch. To allow the two switches to
communicate, you must assign an IP address to both VLANs.
For example:
switch A switch B
VLAN 20 VLAN 20
10.1.1.1. / <--------IST-- 10.1.1.2 /24 *
24 ------>
* Same subnet, same VLAN.
Figure 194 shows sample output for the config mlt ist create ip
vlan-id command, followed by the info command.
Sub-Context:
Current Context:
Enable: false
vlan-id: 1
ip: 10.1.1.1
To enable and disable the interswitch trunk, enter the following command:
where:
<mlt-id> is the MLT ID.
Figure 195 on page 459 shows sample output for the config mlt ist enable
and config mlt ist disable commands. It includes the system warning
that appears when you disable the IST.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 459
ERS-8606:5/config/mlt/1/ist# enable
ERS-8606:5/config/mlt/1/ist# disable
The CP-Limit feature is disabled by default on all IST ports. It can be enabled on
the port under any of the following conditions:
Nortel recommends that you disable CP-Limit on IST links. For more
information, see “About CP-Limit and SMLT IST” on page 64.
To configure CP-Limit for the interswitch trunk, enter the following command:
where:
<slot/port> specifies the slot or port.
For information about viewing current CP-Limit status for an IST multilink trunk,
see Figure 186 on page 435.
where:
<mlt-id> is the MLT ID.
You must disable the interswitch trunk before deleting it (see “Enabling and
disabling an interswitch trunk” on page 458).
To create a single port split multilink trunk, enter the following command:
where:
<port> is the port number, and
<smltid> is the MLT ID.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 461
You cannot use SMLT on brouter ports. LACP is supported on single port split
multilink trunks. For more information about single port split multilink trunking,
see “Single Port SMLT” on page 119.
The configuration example shown in Figure 196 on page 462 uses the commands
described previously to create a single port split multilink trunk on port 4/5. The
switch automatically disables spanning tree protocol on the port after it is
configured for SMLT.
After configuring the parameters, use the info command to show a summary of
the results.
INFO : The spanning tree protocol has been disabled on this port
while configuring the port with SMLT
ERS-8606:5/config/ethernet/4/5/smlt/1# info
Sub-Context:
Current Context:
Port 4/5 :
create : 1
delete : N/A
Oper Status : normal
ERS-8606:5
Configuring SMLT-on-Single-CPU
To support SMLT on an aggregation switch with a single CPU, enter the following
command:
where:
enable enables the SMLT-on-Single-CPU feature;
disable disables the SMLT-on-Single-CPU feature;
timer <value> sets the SMLT-on-Single-CPU feature timeout value.
The timeout value determines when the Input/Output (I/O) modules port link
status goes down after the single CPU becomes non-operational. The parameter is
a numerical value in the range 1 to 3. If not set, the default value (3) is used. A
timer value of 1 relates to approximately 3 seconds of detection time and a timer
value of 3 relates to approximately 9 seconds of detection time.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 463
The show mlt show-all command shows all multilink trunk information.
Figure 197 on page 464, Figure 198 on page 465, and Figure 199 on page 466
show sample output for this command.
==========================================================================
Mlt IST Info
==========================================================================
MLT IP VLAN ENABLE IST
ID ADDRESS ID IST STATUS
--------------------------------------------------------------------------
2 131.202.7.2 4095 false down
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 465
================================================================================
================================================================================
PROTOCOL MESSAGE COUNT
--------------------------------------------------------------------------------
Ist Down : 0
Hello Sent : 0
Hello Recv : 0
Learn MAC Address Sent : 0
Learn MAC Address Recv : 0
MAC Address AgeOut Sent : 0
MAC Address AgeOut Recv : 0
MAC Address Expired Sent : 0
MAC Address Expired Sent : 0
Delete Mac Address Sent : 0
Delete Mac Address Recv : 0
Smlt Down Sent : 0
Smlt Down Recv : 0
Smlt Up Sent : 0
Smlt Up Recv : 0
Send MAC Address Sent : 0
Send MAC Address Recv : 0
IGMP Sent : 0
IGMP Recv : 0
Port Down Sent : 0
Port Down Recv : 0
Request MAC Table Sent : 0
Request MAC Table Recv : 0
Unknown Msg Type Recv : 0
============================================================================
Mlt SMLT Info
============================================================================
MLT SMLT ADMIN CURRENT
ID ID TYPE TYPE
----------------------------------------------------------------------------
2 27 smlt norm
============================================================================
Mlt Interface
============================================================================
ID IN-OCTETS OUT-OCTETS IN-UNICST OUT-UNICST
----------------------------------------------------------------------------
1 0 0 0 0
2 0 0 0 0
3 0 0 0 0
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 467
where:
<mid> is the MLT ID.
Figure 200 shows sample output for the show mlt error collision
command.
===============================================================
Mlt Collision Error
===============================================================
MLT -----------------COLLISIONS------------
ID SINGLE MULTIPLE LATE EXCESSIVE
---------------------------------------------------------------
3 0 0 0 0
ERS-8606:5#
To display information about the types of Ethernet errors sent and received by the
specified multilink trunk or all multilink trunks, enter the following command:
where:
<mid> is the MLT ID.
Figure 201 on page 468 shows sample output for the show mlt error main
command. The IMAC columns refer to internal MAC address errors.
To display the status of MultiLink Trunking for the switch or for the specified
multilink trunk ID, enter the following command:
where:
<mid> is the MLT ID.
Figure 202 on page 469 shows sample output for the show mlt info command.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 469
================================================================================
Mlt Info
================================================================================
PORT SVLAN MLT MLT PORT VLAN
MLTID IFINDEX NAME TYPE TYPE ADMIN CURRENT MEMBERS IDS
--------------------------------------------------------------------------------
3 4098 MLT-3 access normal norm norm
ERS-8606:5#
To display the status of interswitch trunking for the switch or for the specified
multilink trunk ID, enter the following command:
Figure 203 shows sample output for the show mlt ist info command.
=========================================================================
Mlt IST Info
=========================================================================
MLT IP VLAN ENABLE IST
ID ADDRESS ID IST STATUS
-------------------------------------------------------------------------
2 131.202.7.2 4095 false down
ERS-8610:6#
To display split multilink trunk status for the switch or for a specific SMLT ID,
enter the following command:
where:
<mid> is the MLT ID.
The switch shows both MLT-based split multilink trunk information and single
port split multilink trunk information.
Figure 204 shows output from a sample show smlt info command.
===========================================================================
Mlt SMLT Info
===========================================================================
MLT SMLT ADMIN CURRENT
ID ID TYPE TYPE
---------------------------------------------------------------------------
===========================================================================
Port SMLT Info
===========================================================================
PORT SMLT ADMIN CURRENT
NUM ID TYPE TYPE
---------------------------------------------------------------------------
4/5 1 smlt normal
ERS-8606:5#
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 471
where:
vlan <value> is the VLAN ID, and
port <value> is a port or list of ports.
Figure 205 shows the output from a sample show ports info smlt command.
=============================================================================
SMLT Info
=============================================================================
PORT SMLT ADMIN CURRENT
NUM ID TYPE TYPE
-----------------------------------------------------------------------------
4/5 1 smlt normal
ERS-8606:5#
where:
vlan <value> is the VLAN ID, and
port <value> is a port or list of ports.
Figure 206 shows output from a sample show ports info config command.
============================================================================
Port Config
============================================================================
PORT AUTO SFFD ADMIN OPERATE DIFF-SERV QOS MLT VENDOR DUAL SMLT ADMIN OPERATE
NUM TYPE NEG. DUPLX SPD DUPLX SPD EN TYPE LVL ID NAME CONN ID ROUTING
ROUTING
-----------------------------------------------------------------------------
4/1 100BaseTX true false half 10 0 fals core 1 0 0 Enable Disable
To display MultiLink Trunking statistics for the switch or for the specified
multilink trunk ID, enter the following command:
where:
<mid> is the MLT ID.
Figure 207 on page 473 shows sample output for the show mlt stats
command.
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 473
================================================================================
Mlt Interface
================================================================================
ID IN-OCTETS OUT-OCTETS IN-UNICST OUT-UNICST
--------------------------------------------------------------------------------
3 4411520 1782784 0 0
ERS-8606:5#
1 Enter the show mlt ist stat command to display the IST message count.
(Figure 208).
Ist Down : 0
Hello Sent : 5
Hello Recv : 3
Learn MAC Address Sent : 0
Learn MAC Address Recv : 0
MAC Address AgeOut Sent : 0
MAC Address AgeOut Recv : 0
MAC Address Expired Sent : 0
MAC Address Expired Sent : 0
Delete Mac Address Sent : 0
Delete Mac Address Recv : 0
Smlt Down Sent : 6
Smlt Down Recv : 0
Smlt Up Sent : 0
Smlt Up Recv : 0
Send MAC Address Sent : 0
Send MAC Address Recv : 0
IGMP Sent : 0
IGMP Recv : 0
Port Down Sent : 0
Port Down Recv : 0
Request MAC Table Sent : 0
Request MAC Table Recv : 0
Unknown Msg Type Recv : 0
ERS-8606:5#
2 Enter the show mlt info command to display all the multilink trunks in the
switch, their admin-type, running type, ports, and VLANs (Figure 202 on
page 469).
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 475
3 Check to ensure that IST is operational by using the show mlt ist info
command (Figure 209).
===============================================================
Mlt IST Info
===============================================================
MLT IP VLAN ENABLE IST
ID ADDRESS ID IST STATUS
---------------------------------------------------------------
2 131.202.7.2 4095 false down
ERS-8610:6#
===============================================================
Mlt SMLT Info
===============================================================
MLT SMLT ADMIN CURRENT
ID ID TYPE TYPE
---------------------------------------------------------------
3 12 smlt norm
ERS-8610:6#
• The MAC address is learned on the local SMLT port (that is, SMLT REMOTE
flag is false). See Figure 211 on page 476.
or
• The MAC address is learned through IST from a remote SMLT port (that is,
the SMLT REMOTE flag is true).
The FDB table entry for the client connected to the user access switch must
specify the learned split multilink trunk port as INTERFACE in both IST
switches.
===============================================================
Vlan Fdb
===============================================================
VLAN MAC QOS SMLT
ID STATUS ADDRESS INTERFACE MONITOR LEVEL REMOTE
---------------------------------------------------------------
1 learned 00:00:50:0d:6b:82 Port-2/7 false 1 false
ERS-8606:5#
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 477
Figure 212 on page 477 show an example of the config fdb fdb-filter
info command output.
add :
mac - 00:11:22:23:43:21
remove : N/A
Figure 213 on page 478 shows an example of the show fdb fdb-filter
command output:
00:11:11:11:11:11
00:e0:16:70:93:0f
00:e0:7b:bf:cc:00
Note: SLPP does not support jumbo frames on the Ethernet Routing
Switch 8600 v4.1
config slpp
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 479
config slpp
followed by:
Figure 214 on page 480 shows how to display the SLPP transmission list and
operation state.
add : 1
etherType (hex) : 0x8104
operation : disabled
tx-interval : 500
ERS-8606:5#
where:
portlist is the slot/port.
The packet reception threshold specifies how many SLPP packets are received by
the port before it is administratively disabled. Figure 215 on page 481 shows how
to display the SLPP state on a port:
314725-E Rev 00
Chapter 10 Configuring link aggregation using the CLI 481
Sub-Context: clear config dump monitor show test trace wsm asfm
sam
Current Context:
Port 4/1 :
packet-rx : disable
packet-rx-threshold : 1
Port 4/2 :
packet-rx : disable
packet-rx-threshold : 1
ERS-8606:5#
For an SLPP configuration example, see “Single Port SMLT with SLPP
configuration example” on page 505.
Figure 217 shows SLPP information, and Table 67 describes the fields.
=============================================================
Port Interface
=============================================================
ERS-8603:3#
Field Description
314725-E Rev 00
483
Chapter 11
Configuring multiple DSAP and SSAP using the
CLI
Release 3.5 introduced a feature used for the configuration of multiple DSAPs or
SSAPs for SNA or user-defined VLAN types.
The base implementation of the SNA VLAN allows SNA 802.2 traffic to be
classified into a SNA VLAN based on a 0x04 destination SAP or 0x04 source
SAP. Some applications require changing these classifications to DSAP and to
SSAP. The newly introduced feature allows this configuration and extends to
support any user-defined VLANs with multiple SSAPs and DSAPs.
Using this feature, you can add 31 additional protocol IDs or DSAP/SSAP values
(for a total of 32) when you create or reconfigure a SNA 802.2 VLAN or a
user-defined VLAN.
Topic Page
Design aspects
You can configure this feature using the CLI or Device Manager. You must first
create the SNA or user-defined VLAN, then add the DSAPs or SSAPs for this
VLAN.
For each SNA 802.2 VLAN (which includes the 31 additional DSAP/SSAP
values), 256 records are created, including:
In this case, the default 0x04 record is always created on the switch.
For each user-defined VLAN created with encapsulation set to LLC, 264
hardware records are created, including:
Nortel does not recommend using more than 10 of the user-defined VLANs,
including 32 DSAP/SSAP values, due to the extensive hardware record usage
which can affect overall system scalability.
314725-E Rev 00
Chapter 11 Configuring multiple DSAP and SSAP using the CLI 485
You can check for hardware record availability by executing the CLI command
show/sys/record-reservation.
IP_ii 0x0800
ARP_ii 0x0806
RARP_ii 0x8035
IPX(old)_ii 0x8137
IPX_ii 0x8138
IPX(old)_SNAP 0x00000 0x813
IPX_SNAP 0 7
0x00000 0x813
0
8
IPX_802.3 0xE0 0xE0
IPX_802.3 0xFF 0xFF
APPLE_ii 0x809B
0X80F 0x809
APPLE_SNAP 3 0x08000 B
7 0x80F
3
DEC_LAT 0x6004
DEC_ELSE 0x6000
-
0x6003
0x6005
-
0x6009
DEC_BPDU 0x8038
SNA_ii 0x80D5
SNA_LLC 0x04 XX
XX 0x04
NetBIOS 0xF0 XX
XX 0xF0
XNS 0x0600
XNS_comp 0x0807
314725-E Rev 00
Chapter 11 Configuring multiple DSAP and SSAP using the CLI 487
You can add or remove DSAP or SSAP to or from the VLAN if byprotocol is
sna802dot2 or usrDefined. Use the commands addDsapSsap and
removeDsapSsap. For more information about these commands, see
“Performing general VLAN operations” on page 313.
Example
This adds DsapSsap 000fff to the SNA VLAN 2. This example assumes that
VLAN 2 has already been created.
Figure 218 on page 489 shows the CLI commands which create VLAN 17, and
add DDAP/SSAP 000fff to the VLAN.
314725-E Rev 00
Chapter 11 Configuring multiple DSAP and SSAP using the CLI 489
===========================================================================
Vlan Basic
===========================================================================
VLAN STG
ID NAME TYPE ID PROTOCOLID SUBNETADDR SUBNETMASK
---------------------------------------------------------------------------
17 kevvlan byProtocolId 1 sna802dot2 N/A N/A
===========================================================================
Vlan Port
===========================================================================
VLAN PORT ACTIVE STATIC NOT_ALLOW
ID MEMBER MEMBER MEMBER MEMBER
---------------------------------------------------------------------------
17
===========================================================================
Vlan ATM VPort
===========================================================================
VLAN ID PORT NUM PVC LIST
314725-E Rev 00
491
Chapter 12
Device Manager configuration examples
Topic Page
314725-E Rev 00
Chapter 12 Device Manager configuration examples 493
3 Click Apply.
4 Click the Multilink/LACP Trunks tab.
The Multilink/LACP Trunks box appears.
5 Click Insert.
The MLT_LACP, Insert Multilink/LACP Trunks box appears (Figure 221).
9 Change the ActorAdminKey for the multilink trunk; this key must match the
key on ports 1/1 to 1/4. Set ActorAdminKey to 1.
10 On each of ports 1/1 to 1/4, three fields must be changed in the order given:
a Click on the LAG port, and right-click.
b Select Edit General > LACP (see Figure 223 on page 495).
c Set ActorAdminKey equal to 1 and then click Apply.
d Set ActorAdminState to aggregation and then click Apply.
e Select AdminEnable and then click Apply.
314725-E Rev 00
Chapter 12 Device Manager configuration examples 495
With this extension, the Ethernet Routing Switch 8600 provides a standardized
external link aggregation interface to third party vendor IEEE 802.3ad
implementations. With previous software versions, interoperability was provided
through a static configuration; now a dynamic link aggregation mechanism is
provided.
In this example, ERS 8600C is used as the SMLT client; any switch that supports
LACP can be used as an LACP-enabled SMLT client.
Note: Do not use 802.3ad on the interswitch trunk. The LACP keys on
the SMLT core switches must match (ERS 8600 A, ERS 8600 B).
314725-E Rev 00
Chapter 12 Device Manager configuration examples 497
• The LACP key on both ERS 8600 A and ERS 8600 B must match.
314725-E Rev 00
Chapter 12 Device Manager configuration examples 499
10 On each LAG port, three fields must be changed in the order given:
a Click on the LAG port, and right-click.
b Select Edit General > LACP.
c Set ActorAdminKey equal to 1 and then click Apply.
d Set ActorAdminState to aggregation and then click Apply.
e Select AdminEnable and then click Apply.
This example highlights the steps used to configure Single Port SMLT using
LACP to create the LAG. Any LACP-enabled device can be used as the LACP
client. Figure 228 shows the network topology.
• The interswitch trunk has already been created as shown in Figure 228.
• User VLAN 10 has already been created on all three switches with the port
membership described in Figure 228.
314725-E Rev 00
Chapter 12 Device Manager configuration examples 501
3 Click Insert.
The Insert SMLT box appears (Figure 230 on page 502).
4 Insert a new SMLT group ID. The ID must match on all ports on both SMLT
core switches.
5 Click Insert.
6 Click the LACP tab and enable LACP by selecting the AdminEnable check
box (Figure 231).
7 Click Apply.
314725-E Rev 00
503
Chapter 13
CLI configuration examples
Topic Page
Configuring S1
1 Create VLAN 100:
ERS-8606:5# config vlan 100 create byport 1
2 Create multilink trunk10:
ERS-8606:5# config mlt 10 create
ERS-8606:5# config mlt 10 add ports 1/1,1/2,2/1,2/2
ERS-8606:5# config mlt 10 add vlan 100
314725-E Rev 00
Chapter 13 CLI configuration examples 505
Configuring S2
1 Create VLAN 100:
ERS-8606:5# config vlan 100 create byport 1
2 Create multilink trunk 10:
ERS-8606:5# config mlt 10 create
ERS-8606:5# config mlt 10 add ports 1/1,1/2,2/1,2/2
ERS-8606:5# config mlt 10 add vlan 100
Configuring ERS8600B
1 Configure VLANs:
ERS8600-B:5# config vlan 1900 create byport 1
ERS8600-B:5# config vlan 10 create byport 1
2 Enable SLPP and add VLAN 10:
ERS8600-B:5# config slpp add 10
ERS8600-B:5# config slpp operation enable
3 Configure MLT 5 used for the IST link and add the IST VLAN:
ERS8600-B:5# config mlt 5 create
ERS8600-B:5# config mlt 5 add ports 2/1,3/1
ERS8600-B:5# config vlan 1900 add-mlt 5
4 Configure the IP address and interswitch trunk. The IP address points to the
partner interswitch trunk node:
ERS8600-B:5# config vlan 1900 ip create 1.1.1.1/30
ERS8600-B:5# config mlt 5 ist create ip 1.1.1.2 vlan-id 1900
314725-E Rev 00
Chapter 13 CLI configuration examples 507
Configuring ERS8600C
1 Configure VLANs:
ERS8600-C:5# config vlan 1900 create byport 1
ERS8600-C:5# config vlan 10 create byport 1
2 Enable SLPP:
ERS8600-C:5# config slpp add 10
ERS8600-C:5# config slpp operation enable
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
4 Configure IP address and IST. The IP address points to the partner IST node:
ERS-8606:5# config vlan 1900 ip create 1.1.1.2/30
ERS-8606:5# config mlt 5 ist create ip 1.1.1.1 vlan-id 1900
5 Configure Single Port SMLT:
ERS-8606:5# config ether 1/1 smlt 1 create
6 Enable SLPP packet reception on port 1/1, and set the threshold to 1:
ERS8600-C:5# config ethernet 1/1 slpp packet-rx enable
ERS8610-C:5# config ethernet 1/1 slpp packet-rx-threshold 1
To view the status of all SMLT ports, and show SLPP configuration information,
use the following commands:
314725-E Rev 00
Chapter 13 CLI configuration examples 509
Configuring ERS8600B
1 Configure VLANs:
ERS-8606-B:5# config vlan 1900 create byport 1
ERS-8606-B:5# config vlan 10 create byport 1
2 Configure MLT 5 used for the IST link and add the IST VLAN. Disable the
CP-Limit for ports 2/1 and 3/1:
ERS-8606-B:5# config mlt 5 create
ERS-8606-B:5# config mlt 5 add ports 2/1,3/1
ERS-8606-B:5# config ether 2/1,3/1 cp-limit disable
ERS-8606-B:5# config vlan 1900 add-mlt 5
3 Configure the IST IP address and create the interswitch trunk using MLT 5.
The IP address is the IP address of the remote partner IST node.
ERS-8606-B:5# config vlan 1900 ip create 1.1.1.1/30
ERS-8606-B:5# config mlt 5 ist create ip 1.1.1.2 vlan-id 1900
4 Configure the SMLT link:
ERS-8606-B:5# config mlt 1 create
ERS-8606-B:5# config mlt 1 perform-tagging enable
ERS-8606-B:5# config mlt 1 add ports 1/1
ERS-8606-B:5# config mlt 1 smlt create smlt-id 1
5 Add VLAN 10 to the interswitch trunk and SMLT VLANs:
ERS-8606-B:5# config vlan 10 add-mlt 1
ERS-8606-B:5# config vlan 10 add-mlt 5
6 Enable loop detection on port 1/1. By default, the action will be set to
portdown. This can be verified by using the show config module port or
config ethernet 1/1 info command. The loop detect timers should be
staggered between the ERS8600B and ERS8600C: change the default
mac-flap-time-limit from the default setting of 500 ms to 700 ms.
ERS-8606-B:5# config ethernet 1/1 loop-detect enable
ERS-8606-B:5# config mac-flap-time-limit 700
Configuring ERS8600C
1 Configure VLANs:
ERS-8606-C:5# config vlan 1900 create byport 1
ERS-8606-C:5# config vlan 10 create byport 1
2 Configure MLT 5 used for the IST link and add the IST VLAN. Disable
CP-Limit for ports 2/1 and 3/1.
ERS-8606-C:5# config mlt 5 create
ERS-8606-C:5# config mlt 5 add ports 2/1,3/1
ERS-8606-C:5# config ether 2/1,3/1 cp-limit disable
ERS-8606-C:5# config vlan 1900 add-mlt 5
3 Configure the IST IP address and create the interswitch trunk using MLT 5.
The IP address used is the IP address of the remote partner IST node.
ERS-8606-C:5# config vlan 1900 ip create 1.1.1.2/30
ERS-8606-C:5# config mlt 5 create ip 1.1.1.1 vlan-id 1900
4 Configure the SMLT link:
ERS-8606-C:5# config mlt 1 create
ERS-8606-C:5# config mlt 1 perform-tagging enable
ERS-8606-C:5# config mlt 1 add ports 1/1
ERS-8606-C:5# config mlt 1 smlt create smlt-id 1
5 Add VLAN 10 to the IST and SMLT VLANs:
ERS-8606-C:5# config vlan 10 add-mlt 1
ERS-8606-C:5# config vlan 10 add-mlt 5
6 Enable loop detection on port 1/1:
ERS-8606-C:5# config ethernet 1/1 loop-detect enable
Configuring ERS8600A
1 Configure VLAN 10:
ERS-8606-A:5# config vlan 10 create byport 1
ERS-8606-A:5# config vlan 10 ports add 2/1-2/5
2 Configure the MLT link:
ERS-8606-A:5# config mlt 1 create
ERS-8606-A:5# config mlt 1 perform-tagging enable
ERS-8606-A:5# config mlt 1 add ports 1/1,1/2
ERS-8606-A:5# config vlan 10 add-mlt 1
314725-E Rev 00
Chapter 13 CLI configuration examples 511
Figure 235 to Figure 238 on page 514 show commands you can use to verify that
the network is operating correctly.
=============================================================================
Mlt Info
=============================================================================
PORT SVLAN MLT MLT PORT VLAN
MLTID IFINDEX NAME TYPE TYPE ADMIN CURRENT MEMBERS IDS
-----------------------------------------------------------------------------
1 4096 MLT-1 trunk normal smlt smlt 1/1 10
5 4100 MLT-5 trunk normal ist ist 2/1-2/2 10 1900
The MLT CURRENT status for MLT-5 is ist. If this status is norm then the IST is
not active; there may be a misconfiguration or the links are not active. The current
MLT mode is smlt. If there is a misconfiguration or a link down in the network,
the value of MLT CURRENT would be norm.
314725-E Rev 00
Chapter 13 CLI configuration examples 513
Loop Detection
314725-E Rev 00
Chapter 13 CLI configuration examples 515
Configuring ERS8600B
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
4 Configure the IP address and IST. The IP address points to the partner IST
node:
ERS-8606:5# config vlan 1900 ip create 1.1.1.1/30
ERS-8606:5# config mlt 5 ist create ip 1.1.1.2 vlan-id 1900
5 Configure SMLT. The SMLT ID must be identical for each IST pair:
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 smlt create smlt-id 1
ERS-8606:5# config mlt 1 add vlan 10
ERS-8606:5# config mlt 1 add ports 1/1
Configuring ERS8600C
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
314725-E Rev 00
Chapter 13 CLI configuration examples 517
4 Configure IP address and IST. The IP address points to the partner IST node:
ERS-8606:5# config vlan 1900 ip create 1.1.1.2/30
ERS-8606:5# config mlt 5 ist create ip 1.1.1.1 vlan-id 1900
5 Configure SMLT. The SMLT ID must be identical for each IST pair:
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 smlt create smlt-id 1
ERS-8606:5# config mlt 1 add vlan 10
ERS-8606:5# config mlt 1 add ports 1/1
Configuring ERS8600A
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
4 Configure IP address and IST. The IP address points to the partner IST node:
ERS-8606:5# config vlan 1900 ip create 2.2.2.1/30
ERS-8606:5# config mlt 5 ist create ip 2.2.2.2 vlan-id 1900
5 Configure SMLT. The SMLT ID must be identical for each IST pair:
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 smlt create smlt-id 1
ERS-8606:5# config mlt 1 add vlan 10
ERS-8606:5# config mlt 1 add ports 1/1
Configuring ERS8600D
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
4 Configure IP address and IST. The IP address points to the partner IST node:
ERS-8606:5# config vlan 1900 ip create 2.2.2.2/30
ERS-8606:5# config mlt 5 ist create ip 2.2.2.1 vlan-id 1900
5 Configure SMLT. The SMLT ID must be identical for each IST pair:
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 smlt create smlt-id 1
ERS-8606:5# config mlt 1 add vlan 10
ERS-8606:5# config mlt 1 add ports 1/1
Use the show mlt info and the show smlt info commands to verify the
status of the multilink trunks.
314725-E Rev 00
Chapter 13 CLI configuration examples 519
Configuring ERS8600B
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
4 Configure IP address and IST. The IP address points to the partner IST node:
ERS-8606:5# config vlan 1900 ip create 1.1.1.1/30
ERS-8606:5# config mlt 5 ist create ip 1.1.1.2 vlan-id 1900
5 Configure SMLT. The SMLT ID must be identical for each IST pair:
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 smlt create smlt-id 1
ERS-8606:5# config mlt 1 add vlan 10
ERS-8606:5# config mlt 1 add ports 1/1,1/17
Configuring ERS8600C
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
314725-E Rev 00
Chapter 13 CLI configuration examples 521
4 Configure IP address and IST. The IP address points to the partner IST node:
ERS-8606:5# config vlan 1900 ip create 1.1.1.2/30
ERS-8606:5# config mlt 5 ist create ip 1.1.1.1 vlan-id 1900
5 Configure SMLT. The SMLT ID must be identical for each IST pair:
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 smlt create smlt-id 1
ERS-8606:5# config mlt 1 add vlan 10
ERS-8606:5# config mlt 1 add ports 1/1,1/17
Configuring ERS8600A
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
4 Configure the IP address and IST. The IP address points to the partner
interswitch trunk node:
ERS-8606:5# config vlan 1900 ip create 2.2.2.1/30
ERS-8606:5# config mlt 5 ist create ip 2.2.2.2 vlan-id 1900
5 Configure SMLT. The SMLT ID must be identical for each IST pair:
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 smlt create smlt-id 1
ERS-8606:5# config mlt 1 add vlan 10
ERS-8606:5# config mlt 1 add ports 1/1,1/17
Configuring ERS8600D
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the IST (MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
4 Configure IP address and IST. The IP address points to the partner IST node:
ERS-8606:5# config vlan 1900 ip create 2.2.2.2/30
ERS-8606:5# config mlt 5 ist create ip 2.2.2.1 vlan-id 1900
5 Configure SMLT. The SMLT ID must be identical for each interswitch trunk
pair:
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 smlt create smlt-id 1
ERS-8606:5# config mlt 1 add vlan 10
ERS-8606:5# config mlt 1 add ports 1/1,1/17
Use the show mlt info and the show smlt info commands to verify the
status of the multilink trunks.
314725-E Rev 00
Chapter 13 CLI configuration examples 523
Configuring ERS8600B
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
4 Configure IP address and IST. The IP address points to the partner IST node.
ERS-8606:5# config vlan 1900 ip create 1.1.1.1/30
ERS-8606:5# config mlt 5 ist create ip 1.1.1.2 vlan-id 1900
Configuring ERS8600C
1 Disable CP-Limit on IST ports:
ERS-8606:5# config ether 2/1,3/1 cp-limit disable
2 Configure VLANs:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config vlan 10 create byport 1
3 Configure MLT. VLAN 10 must be spanned across the interswitch trunk
(MLT-5):
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 2/1,3/1
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config mlt 5 add vlan 10
4 Configure IP address and IST. The IP address points to the partner IST node.
ERS-8606:5# config vlan 1900 ip create 1.1.1.2/30
ERS-8606:5# config mlt 5 ist create ip 1.1.1.1 vlan-id 1900
5 Configure SMLT. The SMLT ID must be identical on both nodes:
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 smlt create smlt-id 1
ERS-8606:5# config mlt 1 add vlan 10
ERS-8606:5# config mlt 1 add ports 1/1
314725-E Rev 00
Chapter 13 CLI configuration examples 525
Configuring ERS8600A
1 Configure MLT on A:
ERS-8606:5# config vlan 10 create byport 1
ERS-8606:5# config mlt 1 create
ERS-8606:5# config mlt 1 add ports 1/1,1/17
ERS-8606:5# config mlt 1 add vlan 10
The status of VRRP can be seen using the command show ip vrrp info.
The default settings allow all sources and groups to be distributed over MLT
(when enabled). Distribution can be controlled by controlling the source/group
masks:
Configuring S1
1 Create IST VLAN 1900:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 1/1,2/1
ERS-8606:5# config mlt 5 perform-tagging enable
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config vlan 1900 ip create 1.1.1.1/30
ERS-8606:5# config mlt 5 ist create ip 1.1.1.2 vlan-id 1900
314725-E Rev 00
Chapter 13 CLI configuration examples 527
Configuring S2
1 Create IST VLAN 1900:
ERS-8606:5# config vlan 1900 create byport 1
ERS-8606:5# config mlt 5 create
ERS-8606:5# config mlt 5 add ports 1/1,2/1
ERS-8606:5# config mlt 5 perform-tagging enable
ERS-8606:5# config mlt 5 add vlan 1900
ERS-8606:5# config vlan 1900 ip create 1.1.1.2/30
ERS-8606:5# config mlt 5 ist create ip 1.1.1.1 vlan-id 1900
2 Create the SMLT VLAN and add ports:
ERS-8606:5# config vlan 100 create byport 1
ERS-8606:5# config vlan 100 ports add 3/1,3/2
ERS-8606:5# config vlan 100 add-mlt 5
3 Configure LACP on ports:
ERS-8606:5# config ether 3/1,3/2 lacp key 10
ERS-8606:5# config ether 3/1,3/2 lacp aggregation true
ERS-8606:5# config ether 3/1,3/2 lacp enable
4 Create SMLT and configure LACP. Ensure keys match: port and keys must be
the same for both SMLT aggregation switches:
ERS-8606:5# config mlt 10 create
ERS-8606:5# config mlt 10 smlt create smlt-id 10
ERS-8606:5# config mlt 10 perform-tagging enable
ERS-8606:5# config mlt 10 lacp key 10
ERS-8606:5# config mlt 10 lacp enable
ERS-8606:5# config ether 3/1,3/2 discard-untagged-frames
enable
Configuring S3
1 Create VLAN 100 and add ports:
ERS-8606:5# config vlan 100 create byport 1
ERS-8606:5# config vlan 100 ports add 3/1-3/4
2 Configure LACP on ports:
ERS-8606:5# config ether 3/1-3/4 lacp key 20
ERS-8606:5# config ether 3/1-3/4 lacp aggregation true
ERS-8606:5# config ether 3/1-3/4 lacp enable
3 Create MLT 10 and configure LACP. Ensure keys match: port and keys must
be the same for both SMLT aggregation switches:
ERS-8606:5# config mlt 10 create
ERS-8606:5# config mlt 10 perform-tagging enable
ERS-8606:5# config mlt 10 lacp key 10
ERS-8606:5# config mlt 10 lacp enable
ERS-8606:5# config ether 3/1-3/4 discard-untagged-frames
enable
314725-E Rev 00
Chapter 13 CLI configuration examples 529
When SMLT is enabled on a port, its key becomes default and aggregation
becomes true. The selection logic selects the default aggregator for the SMLT
port. When SMLT is disabled on a port, aggregation becomes false. This example
highlights the steps in configuring Single Port SMLT using LACP to create the
LAG. Although an Ethernet Routing Switch 8600 is used for the SMLT client, any
LACP enabled device can be used.
Figure 243 on page 530 shows the network topology for this configuration
example.
Configuring ERS8600A
1 To create the interswitch trunk, enter the following commands:
ERS-8606:5# conf vlan 1900 create byport 1
ERS-8606:5# conf mlt 5 create
ERS-8606:5# conf mlt 5 add ports 1/1,2/1
ERS-8606:5# conf mlt 5 perform-tagging enable
ERS-8606:5# conf mlt 5 add vlan 1900
ERS-8606:5# conf vlan 1900 ip create 1.1.1.1/30
ERS-8606:5# conf mlt 5 ist create ip 1.1.1.2 vlan-id 1900
2 To create the user VLAN, enter the following commands:
ERS-8606:5# conf vlan 10 create byport 1
ERS-8606:5# conf vlan 10 ports add 1/10
3 To create the single port split multilink trunk, enter the following command:
ERS-8606:5# conf ether 1/10 smlt 1 create
314725-E Rev 00
Chapter 13 CLI configuration examples 531
Configuring ERS8600B
1 To create the interswitch trunk, enter the following commands:
ERS-8606:5# conf vlan 1900 create byport 1
ERS-8606:5# conf mlt 5 create
ERS-8606:5# conf mlt 5 add ports 1/1,2/1
ERS-8606:5# conf mlt 5 perform-tagging enable
ERS-8606:5# conf mlt 5 add vlan 1900
ERS-8606:5# conf vlan 1900 ip create 1.1.1.2/30
ERS-8606:5# conf mlt 5 ist create ip 1.1.1.1 vlan-id 1900
2 To create the user VLAN, enter the following commands:
ERS-8606:5# conf vlan 10 create byport 1
ERS-8606:5# conf vlan 10 ports add 1/10
3 To create the single port split multilink trunk, enter the following command:
ERS-8606:5# conf ether 1/10 smlt 1 create
4 To enable LACP on each port, enter the following command. No key is
required. The default key is used:
ERS-8606:5# conf ether 1/10 lacp enable
Configuring ERS8600C
1 To create the multilink trunk, enter the following commands:
ERS-8606:5# conf mlt 10 create
ERS-8606:5# conf mlt 10 lacp key 10
ERS-8606:5# conf mlt 10 lacp enable
2 To create the user VLAN and add ports, enter the following commands:
ERS-8606:5# conf vlan 10 create byport 1
ERS-8606:5# conf vlan 10 ports add 1/1-1/2
3 To configure LACP on the ports, enter the following commands:
ERS-8606:5# conf ether 1/1-1/2 lacp key 10
ERS-8606:5# conf ether 1/1-1/2 lacp aggregation true
The edge switch, ERS3510, is configured for IP routing with a trunk VLAN 260
(which has an IP address of 10.1.4.5/20). Port members 21 to 24 on ERS3510 are
added to an access MLT. Under normal operations, traffic can flow over any trunk
ports from 21 to 24 on the ERS3510.
314725-E Rev 00
Chapter 13 CLI configuration examples 533
Because the trunk VLAN is not tagged, if the ERS3510 switch is replaced with a
factory default switch or if the MLT configuration is not enabled or defective, this
causes a loop in the SMLT core. To detect this loop, configure SLPP on
ERS8600B to shut down all SMLT ports. This occurs if ERS8600B receives
SLPP-PDUs on port 7/15 or 7/16.
The following procedure configures SLPP on the network shown in Figure 244.
To configure the ERS8600A, ERS8600B, and the ERS3510, see Figure 250 on
page 537 to Figure 252 on page 539 at the end of this section.
1 Enable SLPP and add VLAN 260. To do this, enter the following commands:
ERS8600-B:6# config slpp add 260
ERS8600-B:6# config slpp operation enable
2 Enable SLPP on port 7/15 and 7/16:
ERS8600-B:6# config ethernet 7/15,7/16 slpp packet-rx enable
314725-E Rev 00
Chapter 13 CLI configuration examples 535
ERS-8600-B:6#
If logging to the local interface is enabled, you should see messages indicating
that SLPP caused the SMLT 2 port to go down. Use the following command:
ERS8600-B:6# show log file tail
Figure 248 Show log file tail for ERS8600B after port disabled
ERS8600-B:6# show log file tail
CPU5 [01/25/06 12:54:42] SNMP INFO Smlt Link Down Trap(SmltId=2)
CPU5 [01/25/06 12:54:42] SNMP INFO Slpp port down(SlppRxPort = 463,
SlppRxVlan =260, SlppIncomingVlanId = 260, SlppSrcMacAddress =
00:e0:7b:bc:20:00)
CPU5 [01/25/06 12:54:42] MLT INFO SMLT 2 DOWN
CPU5 [01/25/06 12:54:42] SNMP INFO Port 7/16 is an access port
CPU5 [01/25/06 12:54:42] SNMP INFO Link Down(7/16)
CPU5 [01/25/06 12:54:42] SNMP INFO Port 7/15 is an access port
CPU5 [01/25/06 12:54:42] SNMP INFO Link Down(7/15)
CPU5 [01/25/06 12:54:42] SW WARNING slppRx: SLERS packet received Rx-Vlan
260, Rx
-Port 7/16, PDU-Vlan 260, SRC-Mac 00:e0:7b:bc:20:00
5 If the MLT problem is corrected on the ERS3510 switch, you must re-enable
all SMLT ports on ERS8600A and ERS8600B. Use the commands shown in
Figure 249 on page 536.
Figure 249 Enabling SMLT and show log file tail after port enabled
ERS8600-B:6# config ethernet 7/15,7/16 state enable
ERS8600-A:6# config ethernet 4/15,4/16 state enable
ERS8600-B:6# show log file tail
The following figures contain the CLI commands used to configure the network of
Figure 244 on page 533.
314725-E Rev 00
Chapter 13 CLI configuration examples 537
# VLAN CONFIGURATION
# OSPF CONFIGURATION
#
ip ospf admin-state enable
ip ospf enable
# OSPF CONFIGURATION
314725-E Rev 00
Chapter 13 CLI configuration examples 539
For more information about configuring Ping Snoop, including instructions for
Device Manager and CLI for both legacy and R modules, see Using Diagnostic
Tools.
314725-E Rev 00
Chapter 13 CLI configuration examples 541
By adding all the MLT/SMLT ports to this filter on a per-switch basis, the user can
determine the exact path that traffic takes.
Note: You must configure all aggregatable ports in MLT 10 to use the
same key used for MLT 10.
Configuring S1
1 Create VLAN 100 and add ports to the VLAN:
ERS-8606:5# config vlan 100 create byport 1
ERS-8606:5# config vlan 100 ports add 1/1-1/2,2/1-2/2
2 Configure LACP on S1 switch ports:
ERS-8606:5# config ether 1/1-1/2,2/1-2/2 lacp key 10
ERS-8606:5# config ether 1/1-1/2,2/1-2/2 lacp aggregation
true
ERS-8606:5# config ether 1/1-1/2,2/1-2/2 lacp enable
3 Create MLT 10 and configure LACP. Ensure the LACP key is the same as that
configured in step 2:
ERS-8606:5# config mlt 10 create
ERS-8606:5# config mlt 10 lacp key 10
ERS-8606:5# config mlt 10 lacp enable
Configuring S2
1 Create VLAN 100 and add ports to the VLAN:
ERS-8606:5# config vlan 100 create byport 1
ERS-8606:5# config vlan 100 ports add 1/1-1/2,2/1-2/2
2 Configure LACP on S2 switch ports:
ERS-8606:5# config ether 1/1-1/2,2/1-2/2 lacp key 10
ERS-8606:5# config ether 1/1-1/2,2/1-2/2 lacp aggregation
true
ERS-8606:5# config ether 1/1-1/2,2/1-2/2 lacp enable
3 Create MLT 10 and configure LACP. Ensure the LACP key is the same as that
configured in step 2:
ERS-8606:5# config mlt 10 create
ERS-8606:5# config mlt 10 lacp key 10
ERS-8606:5# config mlt 10 lacp enable
314725-E Rev 00
Chapter 13 CLI configuration examples 543
Configuring S1
1 Configure MLT 10 and add VLAN 100:
ERS-8606:5# config vlan 100 create byport 1
ERS-8606:5# config mlt 10 create
ERS-8606:5# config mlt 10 add ports 3/1,3/2
ERS-8606:5# config mlt 10 add vlan 100
2 Enable VLACP on both Ethernet ports:
ERS-8606:5# config ethernet 3/1-3/2 vlacp enable
Configuring S2
1 Configure MLT 10 and add VLAN 100:
ERS-8606:5# config vlan 100 create byport 1
ERS-8606:5# config mlt 10 create
ERS-8606:5# config mlt 10 add ports 3/1,3/2
When you configure PVST+, it uses, by default, IEEE 802.1Q single STP BPDUs
on VLAN 1 and PVST+ BPDUs for other VLANs. This allows a PVST+ switch
to connect to a switch using IEEE 802.1Q spanning tree as a tunnel for PVST+.
PVST+ BPDUs are tunneled across the 802.1Q VLAN region as multicast data.
PVST+ can be used to load balance the VLANs by changing the VLAN bridge
priority.
You can configure a PVST+ instance under the Ethernet Routing Switch 8600
spanning tree group (STG) level for each VLAN that connects to a Cisco System
switch running PVST+.
314725-E Rev 00
Chapter 13 CLI configuration examples 545
Use the following commands to configure PVST+ on the Ethernet Routing Switch
8600:
The ntstg parameter is enabled by default, which provides the default group STP
operation. When you set the ntstg parameter to disable, PVST+ is enabled for this
particular VLAN.
Figure 255 on page 546 shows a basic configuration example in which a single
Ethernet Routing Switch 8600 is using PVST+ to connect to two Cisco Systems
switches.
314725-E Rev 00
Chapter 13 CLI configuration examples 547
version 12.1
!
interface FastEthernet0/17
switchport access vlan 100
switchport mode access
no ip address
!
interface FastEthernet0/18
switchport access vlan 101
switchport mode access
no ip address
!
interface FastEthernet0/19
switchport access vlan 102
switchport mode access
no ip address
!
interface FastEthernet0/20
switchport trunk allowed vlan 100-102
switchport mode trunk
no ip address
!
interface FastEthernet0/21
switchport trunk allowed vlan 100-102
switchport mode trunk
no ip address
!
This configuration example shows how to perform load balancing with the
Ethernet Routing Switch 8600 (S1 and S2) acting as a distribution switch, and the
Cisco C2950 switch (S3) acting as an access switch (Figure 256 on page 548).
The following sections provide step-by-step procedures that show how to perform
load balancing with the Ethernet Routing Switch 8600 (S1 and S2) as distribution
switches, and the Cisco C2950 switch (S3) as an access switch for this example.
314725-E Rev 00
Chapter 13 CLI configuration examples 549
3 Configure bridge priority for each odd number VLAN STG group:
ERS-8606:5# config stg 21 priority 4096
4 Create VLAN 100:
ERS-8606:5# config vlan 100 create byport 20
ERS-8606:5# config vlan 100 ports add 1/5,1/20,2/1
5 Create VLAN 101:
ERS-8606:5# config vlan 101 create byport 21
ERS-8606:5# config vlan 101 ports add 1/6,1/20, 2/1
6 Create VLAN 102:
ERS-8606:5# config vlan 102 create byport 22
ERS-8606:5# config vlan 102 ports add 1/7,1/20, 2/1
The following sections provide the configuration files used for Ethernet Routing
Switch 8600 S1 and S2 in the configuration example shown Figure 256 on
page 548.
S1 configuration file
#
# PORT CONFIGURATION - PHASE I
#
ethernet 1/20 perform-tagging enable
ethernet 2/1 perform-tagging enable
#
# STG CONFIGURATION
#
stg 20 create vlan 100 mac 01:00:0c:cc:cc:cd ntstg disable
stg 20 add ports 1/5,1/20,2/1
stg 20 priority 4096
stg 21 create vlan 101 mac 01:00:0c:cc:cc:cd ntstg disable
stg 21 add ports 1/6,1/20,2/1
stg 22 create vlan 102 mac 01:00:0c:cc:cc:cd ntstg disable
stg 22 add ports 1/7,1/20,2/1
stg 22 priority 4096
#
# VLAN CONFIGURATION
#
vlan 100 create byport 20
314725-E Rev 00
Chapter 13 CLI configuration examples 551
S2 configuration file
#
# PORT CONFIGURATION - PHASE I
ethernet 1/20 perform-tagging enable
ethernet 2/1 perform-tagging enable
#
# STG CONFIGURATION
#
stg 20 create vlan 100 mac 01:00:0c:cc:cc:cd ntstg disable
stg 20 add ports 1/5,1/20,2/1
stg 21 create vlan 101 mac 01:00:0c:cc:cc:cd ntstg disable
stg 21 add ports 1/6,1/20,2/1
stg 21 priority 4096
stg 22 create vlan 102 mac 01:00:0c:cc:cc:cd ntstg disable
stg 22 add ports 1/7,1/20,2/1
#
# VLAN CONFIGURATION
#
vlan 100 create byport 20
vlan 100 ports remove 1/1-1/4,1/6-1/19,1/21-1/48,2/2-2/8,3/1-3/8
member portmember
vlan 100 ports add 1/5,1/20,2/1 member portmember
vlan 101 create byport 21
vlan 101 ports remove 1/1-1/5,1/7-1/19,1/21-1/48,2/2-2/8,3/1-3/8
member portmember
vlan 101 ports add 1/6,1/20,2/1 member portmember
vlan 102 create byport 22
vlan 102 ports remove 1/1-1/6,1/8-1/19,1/21-1/48,2/2-2/8,3/1-3/8
member portmember
vlan 102 ports add 1/7,1/20,2/1 member portmember
To load balance traffic in this manner, you can configure the Cisco C2950 switch
S2 as the root for all even number VLANs and the Cisco C2950 switch S3 as the
root for all odd number VLANs.
(The Cisco System root command changes the bridge priority to 24576.)
314725-E Rev 00
Chapter 13 CLI configuration examples 553
The section shows the default PVST+ settings used with Cisco Systems switches.
• Configure the bridge priority as shown in Figure 257 on page 555. This
configuration results in traffic flow as shown with the dashed lines because B1
becomes the RSTP root bridge. If B1 fails, then B2 becomes the root bridge
based on priority settings.
• Set the bridge port priory on B1 such that the Gigabit Ethernet (GbE) interface
2/1 is used.
314725-E Rev 00
Chapter 13 CLI configuration examples 555
Configuring ERS8600 B1
1 Set the switch to use RSTP mode. This requires you to save the configuration
and boot the switch. Enter the following commands:
ERS8600-B1:6# config bootconfig flags spanning-tree-mode
rstp
ERS8600-B1:6# save bootconfig
ERS8600-B1:6# boot -y
2 Add VLAN 3. Enter the following commands:
ERS8600-B1:6# config vlan 3 create byport-mstprstp 0
ERS8600-B1:6# config vlan 3 ports add 2/1,2/2,2/4,2/5,1/15
3 Change the RSTP bridge priority. Enter the following command:
ERS8600-B1:6# config rstp priority 4096
4 Configure port 1/15 as an RSTP edge port:
ERS8600-B1:6# config ethernet 1/15 rstp edge-port true
5 Configure port 2/1 with a RSTP port priority of 16 so that it is used as the
RSTP root path:
ERS8600-B1:6# config ethernet 2/1 rstp priority 16
Configuring ERS8600 B2
1 Set the switch to use RSTP mode. This requires you to save the configuration
and boot the switch. Enter the following commands:
ERS8600-B2:6# config bootconfig flags spanning-tree-mode
rstp
ERS8600-B2:6# save bootconfig
ERS8600-B2:6# boot -y
2 Add VLAN 3. Enter the following commands:
ERS8600-B2:6# config vlan 3 create byport-mstprstp 0
ERS8600-B2:6# config vlan 3 ports add 4/1,4/2,4/4,4/5,3/15
3 Change the RSTP bridge priority. Enter the following command:
ERS8600-B2:6# config rstp priority 8192
4 Configure port 3/15 as an RSTP edge port:
ERS8600-B2:6## config ethernet 3/15 rstp edge-port true
314725-E Rev 00
Chapter 13 CLI configuration examples 557
Configuring ERS1600 B3
1 Set the switch to use RSTP mode. Enter the following command:
ERS1624G-B3:4# config stp version rstp
2 Change the RSTP bridge priority:
ERS1624G-B3:4# config stp priority 12288
3 Add VLAN 3:
ERS1624G-B3:4# create vlan 3 vid 3 type port
ERS1624G-B3:4# config vlan 3 add untagged 1,3,5,7,10
4 Configure ports 1 and 3 for 1 Gbps full duplex to be compatible with the ES
GbE interfaces:
ERS1624G-B3:4# config ports 1,3 speed 1000_full
Configuring ERS1600 B4
1 Set the switch to use RSTP mode. Enter the following command:
ERS1612G-B4:4# config stp version rstp
2 Change RSTP bridge priority:
ERS1612G-B4:4# config stp priority 16384
3 Add VLAN 3
ERS1612G-B4:4# create vlan 3 vid 3 type port
ERS1612G-B4:4# config vlan 3 add untagged 1,3,5,7,10
4 Configure ports 1 and 3 for 1 Gbps full duplex to be compatible with the ES
GbE interfaces:
ERS1612G-B4:4# config ports 1,3 speed 1000_full
Configuring ES 470 B5
Note: If you disable Auto-PVID, you will have to assign the PVID to
each VLAN port member by using the command vlan ports <port
list> pvid <1-4094>
1 Change spanning tree operating mode to RSTP and reboot the switch:
ES470_48(config)# spanning-tree op-mode rstp
ES470_48(config)# boot
Reboot the unit(s) (y/n) ? y
2 Add VLAN 3:
ES470_48(config)# vlan create 3 type port
ES470_48(config)# vlan members add 3 15,47,48
3 Remove VLAN port members from the default VLAN:
ES470_48(config)# vlan members remove 1 15,47,48
Note: When you use RSTP, if you remove a port from the default
VLAN prior to configuring VLAN 3, the STP participation is disabled
for that port. In this case, you must enable STP participation for each
removed port. This can be avoided if you remove ports from the default
VLAN (VLAN 1) after VLAN 3 is created.
If you first remove the port(s) from VLAN 1, RSTP can be enabled again
by using the following commands: interface fastEthernet
<port> spanning-tree rstp learning enable and
spanning-tree rstp learning enable
Configuring ES470 B6
1 Change spanning tree operating mode to RSTP and reboot the switch:
ES470_48(config)# spanning-tree op-mode rstp
ES470_48(config)# boot
Reboot the unit(s) (y/n) ? y
314725-E Rev 00
Chapter 13 CLI configuration examples 559
2 Add VLAN 3:
ES470_48(config)# vlan create 3 type port
ES470_48(config)# vlan members add 3 15,47,48
3 Remove VLAN port members from the default VLAN:
ES470_48(config)# vlan members remove 1 15,47,48
4 Change the RSTP bridge priority:
ES470_48(config)# spanning-tree rstp priority 6000
5 Configure port 15 as a RSTP edge port:
ES470_48(config)# interface fastEthernet 15
ES470_48(config-if)# spanning-tree rstp edge-port true
314725-E Rev 00
Chapter 13 CLI configuration examples 561
Configuring ERS8600 B1
1 Set the switch to use MSTP mode. This requires you to save the configuration
and boot the switch. Enter the following commands:
ERS8600-B1:6# config bootconfig flags spanning-tree-mode
mstp
ERS8600-B1:6# save bootconfig
ERS8600-B1:6# boot -y
2 Configure the MSTP region:
ERS8600-B1:6# config mstp region config-id-sel 2
ERS8600-B1:6# config mstp region name region2
ERS8600-B1:6# config mstp region revision 1
3 Configure GbE ports 2/1, 2/2, 2/4, and 2/4 as tagged ports:
ERS8600-B1:6# config ethernet 2/1,2/2,2/4,2/5
perform-tagging enable
4 Add VLAN 3:
ERS8600-B1:6# config vlan 3 create byport-mstprstp 1
ERS8600-B1:6# config vlan 3 ports add 2/1,2/2,2/4,2/5,1/15
5 Add VLAN 4:
ERS8600-B1:6# config vlan 4 create byport-mstprstp 2
ERS8600-B1:6# config vlan 4 ports add 2/1,2/2,2/4,2/5,1/16
6 Change the MSTP CIST bridge priority:
ERS8600-B1:6# config mstp cist priority 4096
Configuring ERS8600 B2
1 Set the switch to use MSTP mode. This requires you to save the configuration
and boot the switch. Enter the following commands:
ERS8600-B2:6# config bootconfig flags spanning-tree-mode
mstp
ERS8600-B2:6# save bootconfig
ERS8600-B2:6# boot -y
2 Configure MSTP region:
ERS8600-B2:6# config mstp region config-id-sel 2
ERS8600-B2:6# config mstp region name region2
ERS8600-B2:6# config mstp region revision 1
3 Configure GbE ports 4/1, 4/2, 4/4, and 4/5 as tagged ports:
ERS8600-B2:6# config ethernet 4/1,4/2,4/4,4/5 perform-tagging
enable
4 Add VLAN 3:
ERS8600-B2:6# config vlan 3 create byport-mstprstp 1
ERS8600-B2:6# config vlan 3 ports add 4/1,4/2,4/4,4/5,3/15
5 Add VLAN 4:
ERS8600-B2:6# config vlan 4 create byport-mstprstp 2
ERS8600-B2:6# config vlan 4 ports add 4/1,4/2,4/4,4/5,3/16
6 Change the MSTP CIST bridge priority:
ERS8600-B2:6# config mstp cist priority 8192
7 Configure the MSTP 1 priority:
ERS8600-B2:6# config ethernet 4/1 mstp msti 1 priority 16
8 Configure ports as MSTP edge ports:
ERS8600-B2:6# config ethernet 3/15,3/16 mstp cist edge-port
true
314725-E Rev 00
Chapter 13 CLI configuration examples 563
Configuring ERS1600 B3
1 Enable the MSTP mode:
ERS1624G-B3:4# config stp version mstp
2 Change MSTP bridge priority:
ERS1624G-B3:4# config stp instance_id 0 priority 12288
3 Add VLAN 3:
ERS1624G-B3:4# create vlan 3 vid 3 type port
ERS1624G-B3:4# config vlan 3 add untagged 10
ERS1624G-B3:4# config vlan 3 add tagged 1,3,5,7
4 Add VLAN 4:
ERS1624G-B3:4# create vlan 4 vid 4 type port
ERS1624G-B3:4# config vlan 4 add untagged 11
ERS1624G-B3:4# config vlan 4 add tagged 1,3,5,7
5 Configure ports 1 and 3 for 1 Gbps full duplex to be compatible with the ES
GbE interfaces:
ERS1624G-B3:4# config ports 1,3 speed 1000_full
6 Configure the MSTP region and revision:
ERS1624G-B3:4# config stp region name region1
ERS1624G-B3:4# config stp region mstconfigidsel 1
ERS1624G-B3:4# config stp region revision 1
7 Add MSTI 1, change the MSTI priority, and add VLAN 3:
ERS1624G-B3:4# create stp instance_id 1
ERS1624G-B3:4# config stp instance_id 2 priority 8192
ERS1624G-B3:4# config stp_vlan instance_id 1 add 3
8 Add MSTI 2, change the MSTI priority, and add VLAN 4:
ERS1624G-B3:4# create stp instance_id 2
ERS1624G-B3:4# config stp instance_id 2 priority 4096
ERS1624G-B3:4# config stp_vlan instance_id 2 add 4
Configuring ERS1600 B4
1 Enable MSTP mode:
ERS1624G-B4:4# config stp version mstp
2 Change MSTP bridge priority:
ERS1624G-B4:4# config stp instance_id 0 priority 12288
3 Add VLAN 3:
ERS1624G-B4:4# create vlan 3 vid 3 type port
ERS1624G-B4:4# config vlan 3 add untagged 10
ERS1624G-B4:4# config vlan 3 add tagged 1,3,5,7
4 Add VLAN 4:
ERS1624G-B4:4# create vlan 4 vid 4 type port
ERS1624G-B4:4# config vlan 4 add untagged 11
ERS1624G-B4:4# config vlan 4 add tagged 1,3,5,7
5 Configure ports 1 and 3 for 1 Gbps full duplex to be compatible with the ES
GbE interfaces:
ERS1624G-B4:4# config ports 1,3 speed 1000_full
6 Configure the MSTP region and version:
ERS1624G-B4:4# config stp region name region1
ERS1624G-B4:4# config stp region mstconfigidsel 1
ERS1624G-B4:4# config stp region revision 1
7 Add MSTI 1, change the MSTI priority, and add VLAN 3:
ERS1624G-B4:4# create stp instance_id 1
ERS1612G-B4:4# config stp instance_id 1 priority 4096
ERS1624G-B4:4# config stp_vlan instance_id 1 add 3
8 Add MSTI 2, change the MSTI priority, and add VLAN 4:
ERS1624G-B4:4# create stp instance_id 2
ERS1624G-B4:4# config stp instance_id 2 priority 8192
ERS1624G-B4:4# config stp_vlan instance_id 2 add 4
Configuring ES 470 B5
1 Change spanning tree operation mode to MSTP and reboot the switch:
ES470_48(config)# spanning-tree op-mode mstp
ES470_48(config)# boot
Reboot the unit(s) (y/n) ? y
2 Add tagging:
ES470_48(config)# vlan ports 47,48 tagging tagall
3 Add VLAN 3 and members:
ES470_48(config)# vlan create 3 type port
ES470_48(config)# vlan members add 3 15,47,48
314725-E Rev 00
Chapter 13 CLI configuration examples 565
Configuring ES 470 B6
1 Change spanning tree operation mode to MSTP and reboot the switch:
ES470_48(config)# spanning-tree op-mode mstp
ES470_48(config)# boot
Reboot the unit(s) (y/n) ? y
2 Add tagging:
ES470_48(config)# vlan ports 47,48 tagging tagall
314725-E Rev 00
567
Appendix A
Tap and OctaPID assignment (Release 3.x feature
set)
The switch fabric in the Ethernet Routing Switch 8600 module has nine switching
taps, one for each of the eight I/O slots (1 to 4 and 7 to 10), and one for the CPU
slots (5 and 6). Taps 0 to 7 map to the eight I/O slots and can support up to eight
OctaPIDs. Each OctaPID can support up to eight ports.
In the Ethernet Routing Switch 8600, a physical port number is 10 bits long and
has the following format:
9 6 5 3 2 0
+-----+----+----+
| | | |
+-----+----+----+
The tap number bits and the OctaPID number bits combined (bits 9–3) are usually
referred to as the OctaPID ID.
Table 69 lists the module types that are currently available, along with the
associated OctaPID ID assignments for each module.
OctaPID ID
Module type Port type
assignment
314725-E Rev 00
Appendix A Tap and OctaPID assignment (Release 3.x feature set) 569
Table 70 describes the OctaPID ID and port assignments for the 8608GBE,
8608GBM, 8608GTE, 8608GTM, and 8608SXE modules.
Table 71 describes the OctaPID ID and port assignments for the 8616SXE
Module.
Table 72 describes the OctaPID ID and port assignments for the 8624FXE
Module.
Table 73 describes the OctaPID ID and port assignments for the 8632TXE and
8632TXM modules.
Table 74 describes the OctaPID ID and port assignments for the 8648TXE and
8648TXM Modules.
314725-E Rev 00
Appendix A Tap and OctaPID assignment (Release 3.x feature set) 571
Table 75 describes the OctaPID ID and port assignments for the 8672ATME and
8672ATMM Modules.
Table 76 describes the OctaPID ID and port assignments for the 8681XLR
Module.
Table 77 describes the OctaPID ID and port assignments for the 8681XLW
Module.
Table 78 describes the OctaPID ID and port assignments for the 8683POSM
Module.
314725-E Rev 00
573
Glossary
aggregation switch
A switch that aggregates multiple user access switches and provides core
connections.
boundary port
A bridge port that attaches a multiple spanning tree bridge to a LAN that is
not in the same region.
Common and Internal Spanning Tree (CIST)
The single spanning tree calculated by STP and RSTP together with the
logical continuation of that connectivity through MST bridges and regions,
calculated by MSTP to ensure that all LANs in the bridged LAN are simply
and fully connected.
Common Spanning Tree (CST)
The single spanning tree calculated by STP, RSTP, and MSTP to connect
multiple spanning tree regions.
Internal spanning tree (IST)
A parallel point to point link that connects two aggregation switches together.
The two aggregation switches use this channel to share information so that
they can operate as a single logical switch. There can be only one interswitch
trunk per SMLT aggregation switch.
A bridge capable of supporting the CST, and one or more MSTIs, and of
selectively mapping frames classified in any given VLAN to the CST or a
given MSTI.
MST region
A set of LANs and MST bridges, physically connected via ports on those
MST bridges, where each LAN CIST designated bridge is an MST bridge.
Each port is either the designated port on one of the LANs, or else a
non-designated port of an MST bridge that is connected to one of the LANs.
The port MCID matches the MCID of the designated bridge of that LAN.
peer IP address
The IP address of the neighbor IST switch VLAN that is chosen for
configuring the interswitch trunk. Note that the peer IP address is the IP
address of the IST VLAN on the other aggregation switch. You need only
configure one VLAN with an IP address for the IST protocol to work. All
other VLANs on the interswitch trunk do not require an IP address if you
choose not to have VLAN routing enabled.
314725-E Rev 00
Glossary 575
A multilink trunk where one or both ends are split between two aggregation
switches; however only one port can be configured on each aggregation
switch per SMLT ID.
Single Spanning Tree (SST) bridge
A bridge capable of supporting only a single spanning tree: the CST. The SST
may be supported by the Spanning Tree Protocol (STP) defined in IEEE
802.1d-1998, or by the Rapid Spanning Tree Protocol (RSTP), defined in
IEEE 802.1w-2001.
SMLT aggregation switches
A switch located at the edge of the network, such as in a wiring closet or CPE.
An SMLT client switch must be able to perform link aggregation (such as
with MLT or some other compatible method) but does not require any SMLT
intelligence.
SMLT ID
Two SMLT aggregation switches and their directly connected SMLT clients.
SMLT square
A configuration where an SMLT client and the two aggregation switches form
a triangle.
Spanning tree
A simply and fully connected active topology formed from the arbitrary
physical topology of connected bridged LAN components by relaying frames
through selected bridge ports. The STP parameters and states are used and
exchanged to facilitate the calculation of that active topology and to control
the bridge relay function.
Spanning tree group
A multilink trunk where one or both ends are split between two aggregation
switches, thus forming what is typically referred to as an SMLT triangle or
SMLT square.
user access switch
A switch located at the edge of the network. End stations typically connect
directly to a user access switch.
314725-E Rev 00
577
Index
314725-E Rev 00
Index 579
314725-E Rev 00
Index 581
314725-E Rev 00
Index 583
rules 60 V
specifications 60
UNI and NNI ports 62 viewing static forwarding information 183
SvlanPortType field, MLT 256 VLACP 101, 252
VLAN
coordinated across multiple switches 48
T default 53
table, flushing 313 enabling tagging 54
tagged port 49 ID 48, 54
IP routing 52
TaggedBpduAddress field 216
IPX protocol 42
TaggedBpduVlanID field 217 IPX routing 52
tagging, on MLT ports 434 multiplex traffic 49
Tap and OctaPID assignment 567 overview 37
policy-based 40
technical publications 34
port-based 39, 138
TimeSinceTopologyChange field 220 potential member 40
TopChanges field 220 protocol-based 41
topology change detection rules 54, 56
about 70 source IP subnet-based 46
configure (CLI) 389 source MAC-based 45
configure (DM) 225 spanning multiple switches 38
rules 70 tagged port 54
tagging 48
traffic distribution algorithm, MLT 80
timing out 40
transit network 55 untagged port 54
VLAN commands
U configure 308
UNI ports 62 configure IP 362
add to STG (CLI) 378 show 333, 358
configure (CLI) 373 show IP 355
configure (DM) 202 VLAN Operation Action field 163
Untagging Default VLAN on a Tagged Port 169, VlanId field 136
325 VlanIds field 257
user-defined protocol-based VLAN VLANs
about 44 bridging 177
create (CLI) 310, 487 configuring advanced VLAN features 160
UserDefinedPid field 163 direct broadcast 175
UserPriority field 163 displaying 135
in spanning tree groups 70
managing 158
protocol-based 147
source IP-subnet-based 146
314725-E Rev 00