Brocade BigIron RX Series Configuration Guide Bedienungsanleitung Seite 153
- Seite / 155
- Inhaltsverzeichnis
- FEHLERBEHEBUNG
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
BigIron RX Series Configuration Guide 75
53-1002484-04
Configuring TACACS and TACACS+ security
3
Generating an SSL certificate
If you did not already import a digital certificate from a client, the device can create a default
certificate. To do this, enter the following command.
BigIron RX(config)# crypto-ssl certificate generate
Syntax: [no] crypto-ssl certificate generate
Deleting the SSL certificate
To delete the SSL certificate, enter the following command.
BigIron RX(config)# crypto-ssl certificate zeroize
Syntax: [no] crypto-ssl certificate zeroize
Configuring TACACS and TACACS+ security
You can use the security protocol Terminal Access Controller Access Control System (TACACS) or
TACACS+ to authenticate the following kinds of access to the device:
• Telnet access
• SSH access
• Web Management access
• Access to the Privileged EXEC level and CONFIG levels of the CLI
NOTE
You cannot authenticate Brocade Network Advisor access to a device using TACACS and TACACS+.
The TACACS and TACACS+ protocols define how authentication, authorization, and accounting
information is sent between a device and an authentication database on a TACACS and TACACS+
server. TACACS and TACACS+ services are maintained in a database, typically on a UNIX
workstation or PC with a TACACS and TACACS+ server running.
How TACACS+ differs from TACACS
TACACS is a simple UDP-based access control protocol originally developed by BBN for MILNET.
TACACS+ is an enhancement to TACACS and uses TCP to ensure reliable delivery.
TACACS+ is an enhancement to the TACACS security protocol. TACACS+ improves on TACACS by
separating the functions of authentication, authorization, and accounting (AAA) and by encrypting
all traffic between the device and the TACACS+ server. TACACS+ allows for arbitrary length and
content authentication exchanges, which allow any authentication mechanism to be utilized with
the device. TACACS+ is extensible to provide for site customization and future development
features. The protocol allows the device to request very precise access control and allows the
TACACS+ server to respond to each component of that request.
NOTE
TACACS+ provides for authentication, authorization, and accounting, but an implementation or
configuration is not required to employ all three.
- BigIron RX Series 1
- Document History 2
- Contents 3
- Applications 6
- Chapter 7 Configuring IP 8
- Chapter 8 Link Aggregation 9
- Chapter 9 Configuring LLDP 10
- Chapter 11 VLANs 11
- Chapter 16 Topology Groups 15
- Chapter 21 Layer 2 ACLs 18
- Chapter 25 Configuring RIP 22
- Chapter 28 Configuring MBGP 26
- Chapter 40 Configuring sFlow 33
- Chapter 43 IPv6 Addressing 34
- Chapter 45 Configuring RIPng 36
- Chapter 46 Configuring BGP4+ 36
- Appendix A Using Syslog 39
- About This Document 43
- Category Feature description 44
- • Brocade MRP 45
- • 802.1W 45
- Unsupported features 46
- What’s new in this document 47
- • Textual Conventions 54
- Book: BigIron RX Series 60
- • snAgGblCpuUtil1SecAvg 64
- • snAgGblCpuUtil5SecAvg 64
- • snAgGblCpuUtil1MinAvg 64
- System enhancements 65
- Layer 2 enhancements 66
- Layer 3 enhancements 67
- IP multicast enhancements 69
- Network management 71
- Hardware enhancements 71
- Multicast enhancement 73
- Security enhancements 74
- Document conventions 77
- Trademark references 78
- Related publications 78
- Getting technical help 78
- Document feedback 78
- EXEC commands 81
- CONFIG commands 82
- Accessing the CLI 85
- CLI command structure 86
- Optional fields 87
- List of available options 87
- Syntax shortcuts 92
- Management module switchover 96
- Switchover implications 97
- Management sessions 98
- Syslog and SNMP traps 98
- MAC address changes 98
- Layer 2 Hitless Failover 98
- 53-1002484-04 100
- BigIron RX# sync-standby 102
- BigIron RX# switchover 102
- BigIron RX# reset 102
- Status LED 103
- Software 104
- File system Root directory 106
- Management focus 107
- Flash memory file system 108
- PCMCIA flash card file system 109
- Wildcards 110
- Formatting a flash card 110
- Creating a subdirectory 115
- BigIron RX# mkdir slot2 TEST 116
- Removing a subdirectory 117
- Renaming a file 118
- Deleting a file 119
- TFTP server 123
- Loading the software 127
- Saving configuration changes 128
- File management messages 129
- <file-name> 130
- Securing access methods 131
- • Telnet access 134
- • SSH access 134
- • Web management access 134
- • SNMP access 134
- IP addresses 137
- Telnet access 138
- • TFTP access 139
- Disabling Telnet access 140
- Setting passwords 141
- Disabling password encryption 145
- Changing local user passwords 147
- BigIron RX# show run 148
- Retaining password history 150
- Setting passwords to expire 150
- • Generating a certificate 151
- Generating an SSL certificate 153
- TACACS authentication 154
- TACACS+ authentication 154
- TACACS+ authorization 155
- TACACS+ accounting 155
- Setting the TACACS+ key 160
- Setting the timeout parameter 161
- Configuring RADIUS security 169
- RADIUS authorization 170
- RADIUS accounting 170
- AAA operations for RADIUS 171
- Configuring RADIUS accounting 179
- Method parameter Description 185
- Management Applications 187
- On-line help 188
- Command completion 188
- Scroll control 188
- Line editing commands 189
- Character Operation 192
- Logging on through the CLI 193
- Web Management Interface 195
- Configuring Basic Parameters 197
- Disabling SNMP traps 200
- Setting the system clock 206
- Configuring CLI banners 208
- Telnet session is detected 209
- Configuring terminal display 210
- BigIron RX# write memory 211
- BigIron RX# reload 211
- Syntax: show default values 212
- • ACL – 416 215
- • IPv6 Multicast – 192 215
- Nexthop table 216
- Changing the MAC age time 217
- Pinging an IPv4 address 218
- Assigning a port name 221
- Speed/Duplex negotiation 222
- Changing the negotiation mode 224
- Wait for all cards feature 225
- Port transition hold timer 226
- Modifying port priority (QoS) 228
- About hardware-based PBR 230
- Enabling WAN PHY mode support 231
- Configuring IP 233
- ARP cache table 235
- Static ARP table 235
- IP Route table 236
- IP forwarding cache 236
- IP global parameters 237
- IP global parameters 238
- IP interface parameters 240
- Configuring IP parameters 241
- Configuring IP addresses 242
- Deleting an IP address 244
- GRE IP tunnel 245
- Configuring a GRE IP tunnel 246
- BigIron RX A 248
- BigIron RX B 248
- • Ethernet II 249
- Defining a domain list 254
- Dynamic cache entries 256
- Static cache entries 256
- Clearing the DNS cache table 256
- Defining the polling interval 257
- Displaying the server list 258
- Debugging the DNS feature 258
- Configuring packet parameters 259
- Changing the MTU 261
- Globally changing the IP MTU 262
- Changing the router ID 263
- TACACS+, or RADIUS packets 264
- TACACS and TACACS+ packets 265
- IP fragmentation protection 266
- IP option attack protection 266
- IP receive access list 266
- Configuring ARP parameters 267
- Rate limiting ARP packets 268
- Configuration notes 269
- Changing the ARP aging period 270
- Enabling proxy ARP 271
- Creating static ARP entries 271
- • Default maximum: 8192 272
- • Configurable maximum: 65536 272
- Displaying ARP 274
- Changing the TTL threshold 275
- Disabling ICMP messages 277
- Configuring static routes 279
- Configuring a static IP route 281
- Configuring a “null” route 282
- Static route tagging 284
- Configuring IP load sharing 289
- How IP load sharing works 291
- Default route ECMP 292
- Configuring IRDP 294
- BigIron RX(config)# ip irdp 295
- Displaying IP information 300
- Global settings 301
- Static routes 301
- Displaying ARP entries 304
- Displaying the IP route table 307
- Clearing IP routes 310
- Syntax: show ip traffic 311
- Syntax: show ip tcp traffic 313
- Link Aggregation 315
- LAG load sharing 318
- Configuration of a LAG 319
- Adding ports to a LAG 320
- Configuring an LACP timeout 321
- Deploying a LAG 322
- Disabling ports within a LAG 323
- Enabling ports within a LAG 324
- Displaying LAG information 325
- TABLE 61 Show LAG information 327
- Displaying LAG statistics 329
- Configuring LLDP 331
- LLDP overview 332
- General operating principles 333
- LLDP packets 334
- TLV support 334
- Mandatory TLVs 335
- TABLE 63 Port ID subtypes 336
- MIB support 337
- Web Management 338
- Enabling and disabling LLDP 339
- Per device 341
- Per port 341
- • Chassis ID 344
- General system information 345
- • Loopback interface 346
- • Other physical interface 346
- 802.1 capabilities 349
- 802.3 capabilities 350
- LLDP configuration summary 352
- LLDP statistics 353
- Syntax: show lldp statistics 354
- LLDP neighbors 355
- LLDP neighbors detail 356
- LLDP configuration details 357
- Resetting LLDP statistics 358
- Configuring UDLD 360
- Displaying UDLD information 361
- Clearing UDLD statistics 364
- Untagged Packet Format 366
- 802.1q Tagged Packet Format 366
- VLAN ID (12 bits) 366
- Protocol-based VLANs 367
- VLAN configuration rules 368
- Configuring port-based VLANs 369
- VLAN byte accounting 370
- Clearing counters 372
- BigIron RX(config)# vlan 2 373
- VLAN groups 377
- Configuring aggregated VLANs 381
- Complete CLI examples 383
- Commands for device B 384
- Commands for device C 384
- Commands for device D 385
- Commands for device E 385
- Commands for device F 385
- Configuration rules 387
- Enabling 802.1Q-in-Q tagging 387
- Example configuration 388
- Private VLANs 392
- Implementation notes 393
- Configuring a private VLAN 394
- Configuring the primary VLAN 395
- Other VLAN features 397
- Flow based MAC learning 398
- Other configuration options 399
- Displaying VLAN information 400
- Transparent firewall mode 403
- BigIron RX(config)# vlan 10 406
- Changing STP port parameters 408
- Root guard 408
- Enabling STP root guard 409
- Displaying the STP root guard 409
- Displaying STP information 411
- Global STP parameters 413
- Bridge parameters 413
- Root bridge parameters 413
- Port STP parameters 413
- <vlan-id> is 416
- STP port parameters 417
- <slot/port> 419
- <slot/port>” 419
- • Blocking 420
- • Forwarding 420
- • Listening 420
- • Learning 420
- SSTP defaults 421
- Enabling SSTP 421
- Displaying SSTP information 422
- PVST/PVST+ compatibility 423
- Enabling PVST+ support 424
- Configuration examples 425
- SuperSpan™ 427
- Customer ID 428
- BPDU forwarding 428
- Preforwarding state 429
- Configuring SuperSpan 433
- Assignment of port roles 438
- Ports on Switch 1 439
- Ports on Switch 2 439
- Ports on Switch 3 439
- Ports Switch 4 440
- Point-to-point ports 441
- Bridge port states 441
- State machines 442
- Handshake mechanisms 443
- FIGURE 44 Sync stage 445
- FIGURE 45 Synced stage 446
- FIGURE 46 Agree stage 447
- Switch 100 448
- Switch 60 448
- Switch 200 448
- Switch 300 448
- Switch 400 448
- FIGURE 49 Sync and reroot 450
- FIGURE 50 Sync and rerooted 451
- Convergence at start up 454
- FIGURE 55 Active Layer 2 path 456
- Indicates direction of TCN 462
- Configuring RSTP parameters 465
- Changing port parameters 467
- Fast port span 468
- Fast uplink span 470
- Displaying RSTP information 472
- Bridge IEEE RSTP parameters 473
- Root bridge parameters: 473
- Ring initialization 485
- Configuring MRP 492
- Adding an MRP ring to a VLAN 493
- MRP phase 2 494
- Example 1 Example 2 495
- Selection of master node 497
- Normal flow 498
- Flow when a link breaks 499
- Using MRP diagnostics 500
- Displaying MRP information 501
- Displaying ring information 502
- MRP CLI example 503
- Commands on switch B 504
- Commands on switch C 505
- Commands on switch D 505
- Master election and failover 509
- Configured priority = 100 510
- Configured priority = 150 511
- FIGURE 79 Track port priority 512
- BigIron RX(config)# vlan 200 513
- Enabling Layer 3 VSRP 514
- Configuring a VRID IP address 515
- VSRP fast start 516
- Changing the backup priority 517
- VSRP slow start 518
- Changing the dead interval 519
- Specifying a track port 521
- Clearing VSRP information 522
- VSRP and MRP signaling 522
- Displaying VSRP information 524
- Syntax: show vsrp brief 527
- Topology Groups 529
- Control ports and free ports 530
- Configuring a topology group 531
- Configuring VRRP and VRRPE 533
- Master router election 535
- Brocade enhancements of VRRP 536
- Authentication 537
- Overview of VRRPE 538
- VRRP and VRRPE parameters 540
- Configuring the owner 542
- Configuring a backup 543
- Configuration rules for VRRP 543
- Configuration rules for VRRPE 544
- Authentication type 545
- Hello interval 546
- Dead interval 547
- Track port 547
- Track priority 548
- Backup preempt 548
- • VRRP and VRRPE Statistics 550
- Interface parameters 552
- Virtual router parameters 552
- Displaying statistics 554
- Configuring Router1 556
- Configuring Router2 556
- VRRPE example 557
- Classification 559
- FIGURE 87 Priority resolution 560
- Changing a port’s priority 563
- Configuring ToS-based QoS 564
- Configuring the QoS mappings 565
- Syntax: show qos-maps 570
- QoS mapping information 570
- • Weight-based scheduler 571
- • Rate-based scheduler 571
- How WRED Operates 572
- Calculating avg-q-size 573
- Using WRED with rate limiting 574
- Enabling WRED 574
- Averaging weight 575
- Wq value as a percentage 575
- Qos profiles 585
- Egress port shaping 586
- Mirroring ports 587
- Supported ACLs 587
- Configuring Traffic Reduction 589
- Requested rate 590
- Maximum burst 590
- Actual rate 590
- 650000000 650000000 593
- 500000000 750000000 595
- Displaying traffic reduction 598
- Benefits of MCT 602
- How MCT works 602
- MCT components 603
- Dynamic LAGs 605
- MCT peers 605
- ICL traffic handling 606
- STP and RSTP 607
- MCT feature interaction 608
- Configuring MCT 609
- MCT logical 611
- switch 611
- CT logical 611
- Optional MCT cluster commands 623
- MCT configuration examples 627
- Client #1 629
- Client #2 629
- Single-level MCT extension 630
- Client #3 633
- Two-level MCT example 634
- Router C 636
- Router D 637
- MRP integration with MCT 639
- Switch A 639
- Switch B 640
- Disabling port shutdown 642
- Setting the syslog interval 642
- Setting the disable duration 643
- Cluster MAC entry types 645
- MAC entry aging 645
- Flushing MAC entries 645
- MAC entry movement 646
- Flooding support on VLANs 646
- Displaying MAC entries 646
- • CCL: Cluster Client Local 647
- • CCR: Cluster Client Remote 647
- • CL: Local 647
- • CR: Remote 647
- Syntax: show mac mdup-stats 650
- Clearing MAC entries 651
- MCT failover scenarios 652
- Syslogs and debugging 653
- Sample configuration 654
- MCT debug commands 655
- MCT for VRRP or VRRP-E 660
- ARP broadcast resolution 661
- Advanced MCT scenario 662
- Layer 2 ACLs 665
- Configuration rules and notes 666
- Configuring Layer 2 ACLs 666
- Example Layer 2 ACL clauses 667
- Layer 2 ACL table 668
- Viewing Layer 2 ACLs 669
- Access Control List 671
- Access Control List overview 671
- Default ACL action 673
- Types of IP ACLs 673
- ACL IDs and entries 673
- ACL-based inbound mirroring 674
- Standard ACL syntax 679
- Extended ACL syntax 682
- <number>] 683
- Configuring super ACLs 691
- Super ACL syntax 692
- Displaying ACL definitions 693
- Port service 694
- Port name Description 694
- ACL logging 704
- Modifying ACLs 705
- Adding or deleting a comment 707
- Deleting ACL entries 709
- From named ACLs 710
- Applying ACLs to interfaces 711
- QoS options for IP ACLs 713
- ACL accounting 714
- Clearing the ACL statistics 716
- Numbered ACLs 717
- Named ACLs 717
- ICMP message type Type Code 720
- Troubleshooting ACLs 721
- Policy-Based Routing 723
- Configuring a PBR policy 724
- Configure the route map 726
- Setting the next hop 728
- Trunk formation 730
- Overview of IP multicasting 731
- Multicast terms 732
- IP multicast boundaries 733
- • The route has no OIF and 734
- Configuring PMRI 735
- Displaying hardware-drop 735
- • show ip igmp group 737
- • show ip pim group 737
- Default IGMP version 739
- Displaying IGMPv3 information 742
- This field Displays 743
- • The multicast group address 744
- • The mode of the group 744
- • The ID of the interface 745
- Clearing IGMP statistics 746
- PIM dense 748
- Pruning a multicast tree 749
- Grafts to a multicast tree 751
- PIM DM versions 751
- Configuring PIM DM 752
- PIM Sparse 756
- PIM Sparse router types 757
- Configuring PIM Sparse 758
- Current limitations 759
- • Default route from the mRTM 764
- • Default route from the uRTM 764
- MLL optimization 766
- PIM-SSMv4 776
- Enabling SSM 777
- • Group address: 232.1.0.95 778
- • RP address: 206.251.17.41 778
- Source active caching 779
- Configuring MSDP 779
- Enabling MSDP 780
- Configuring MSDP peers 780
- IP address 781
- Configuring MSDP mesh groups 786
- Source for Group 787
- 232.1.0.95 787
- Displaying MSDP information 793
- Displaying peer information 794
- Clearing MSDP information 797
- DVMRP overview 798
- Configuring DVMRP 802
- Modifying neighbor timeout 803
- Modifying route expires time 803
- Modifying route discard time 803
- Modifying prune age 803
- Modifying probe interval 804
- Modifying report interval 804
- Modifying trigger interval 804
- Modifying default route 804
- Modifying the TTL 805
- Modifying the metric 805
- Enabling advertising 805
- (config)# vlan 2 809
- Layer 2 multicast filters 812
- Configuration requirements 815
- Configuring RIP 821
- Enabling RIP 822
- Configuring metric parameters 822
- Configuring redistribution 823
- Displaying RIP filters 828
- Configuring OSPF 837
- OSPF parameters 838
- Enable OSPF on the router 839
- Assign OSPF areas 839
- Assign a totally stubby area 840
- Modify interface defaults 843
- OSPF interface parameters 844
- Assign virtual links 847
- OSPF Area 0 848
- OSPF Area 1 848
- “transit area” 848
- OSPF Area 2 848
- OSPF point-to-point links 852
- Define redistribution filters 855
- RIP Domain 856
- OSPF Domain 856
- Enable route redistribution 857
- • set tag <tag-value> 859
- • BigIron RX ->R3 859
- • BigIron RX ->R4 859
- • BigIron RX ->R5 859
- • BigIron RX ->R6 860
- Modify SPF timers 863
- Usage guidelines 865
- Trap name default 869
- Modify exit overflow interval 871
- Displaying OSPF information 872
- Syntax: show tasks 874
- • normal 875
- • 1 = point-to-point link 876
- Displaying OSPF trap status 884
- OSPF graceful restart 886
- Restarting Router 888
- Overview of BGP4 892
- FIGURE 121 Example BGP4 ASs 893
- • IGP is lowest 894
- • INCOMPLETE is highest 894
- BGP4 message types 895
- OPEN message 896
- UPDATE message 896
- KEEPALIVE message 897
- NOTIFICATION message 897
- REFRESH message 897
- Memory considerations 898
- Configuring BGP4 898
- Immediately 902
- Activating and disabling BGP4 903
- Note regarding disabling BGP4 904
- Defining an AS-path filter 906
- Defining a community filter 907
- BGP Null0 routing 908
- Configuration steps 909
- BigIron RX(config) router bgp 913
- Redistributing IBGP routes 914
- Configuring a route reflector 915
- Configuring confederations 915
- Originating the default route 919
- Neighbor local-AS 922
- Setting the local AS number 923
- Customizing BGP4 load sharing 924
- Configuring BGP4 neighbors 924
- Encryption example 930
- Configuring a BGP4 peer group 932
- Configuring a peer group 933
- BGP4 route 936
- Enabling next-hop recursion 936
- Redistributing RIP routes 940
- Redistributing ISIS 941
- Redistributing static routes 942
- Adding a loopback interface 944
- BGP4 load sharing 945
- Support for RFC 2796 946
- Configuration procedures 947
- Filtering 948
- Using regular expressions 949
- Special characters 949
- Filtering communities 951
- Defining a community ACL 952
- Defining route maps 954
- Matching based on AS-path ACL 957
- • Configure the filter 962
- Sending and receiving ORFs 963
- Generating traps for BGP 970
- Using soft reconfiguration 971
- Clearing traffic counters 976
- BGP4 network information 999
- Displaying route details 1000
- Displaying BGP4 information 1001
- BGP4 route information 1001
- This field... Displays 1002
- Graceful restart in BGP 1006
- BGP graceful restart example 1007
- Router 1 1008
- Router 2 1008
- Router 3 1008
- Configuring MBGP 1011
- Configuration considerations 1012
- Enabling MBGP 1013
- Adding MBGP neighbors 1013
- Optional configuration tasks 1014
- Displaying MBGP information 1018
- Displaying MBGP neighbors 1019
- Displaying MBGP routes 1020
- Configuring IS-IS (IPv4) 1023
- IS-IS Routing Domain 1025
- Neighbors and adjacencies 1026
- Designated IS 1026
- Broadcast pseudonode 1027
- IS-IS CLI levels 1028
- Configuring IPv4 IS-IS 1029
- Setting the overload bit 1030
- Configuring authentication 1031
- Configuring a domain password 1032
- Configuring an area password 1032
- • show isis database 1033
- • show isis interface 1033
- • show isis neighbor 1033
- Changing the SPF timer 1035
- Logging adjacency changes 1036
- Changing the metric style 1036
- Configuring summary addresses 1039
- Changing the hello interval 1045
- Changing the hello multiplier 1045
- Displaying the name mappings 1047
- • LEVEL-1 1050
- • LEVEL-2 1050
- • LEVEL-1-2 1050
- Displaying route information 1052
- Displaying traffic statistics 1056
- Displaying error statistics 1057
- Clearing IS-IS information 1058
- In this chapter 1061
- BFD overview 1061
- Configuring BFD parameters 1062
- Configuring BFD for OSPFv2 1067
- Configuring BFD for OSPFv3 1068
- Configuring BFD for IS-IS 1068
- Configuring Secure Shell 1071
- Configuring SSH 1072
- Generating a host key pair 1073
- Setting the SSH port number 1077
- Disabling 3-DES 1079
- Using secure copy 1080
- Supported RADIUS attributes 1084
- Attribute name Type Value 1085
- Setting RADIUS parameters 1086
- RADIUS server 1087
- Defining MAC address filters 1088
- Example configurations 1099
- Tunnel-Private-Group-ID: 1100
- Example 1 1102
- dot1x port-control auto 1103
- mac-authentication enable 1103
- Example 2 1104
- Local and global resources 1108
- Shutdown the interface 1112
- Restricting interface access 1112
- Logging denied packets 1113
- Denying a MAC address 1114
- Re-enabling an interface 1116
- Transparent port flooding 1121
- Client/Supplicant 1124
- RADIUS Server 1124
- (Authentication Server) 1124
- BigIron Device 1124
- (Authenticator) 1124
- Value Description 1135
- Setting the port control 1137
- Setting the quiet period 1139
- Initializing 802.1x on a port 1141
- Displaying 802.1x information 1142
- Syntax: show dot1x 1143
- Displaying 802.1x statistics 1145
- Clearing 802.1x statistics 1146
- Sample 802.1x configurations 1150
- Hub configuration 1152
- 14.14.14.1(), 1 event(s) 1157
- TCP security enhancement 1158
- Clear DoS attack statistics 1160
- Tracking of DHCP assignments 1161
- Dynamic ARP inspection 1161
- ARP attacks 1162
- How DAI works 1162
- Brocade Device 1163
- Untrusted 1163
- Configuring DAI 1164
- Displaying the ARP table 1165
- DHCP snooping 1166
- Enabling trust on a port 1168
- Snooping 1169
- IP source guard 1171
- Securing SNMP Access 1173
- Configuring your NMS 1175
- Defining the engine ID 1176
- Defining an SNMP group 1177
- Defining an SNMP user account 1178
- Displaying the engine ID 1179
- Displaying SNMP groups 1179
- Displaying user information 1180
- Defining SNMP views 1181
- Simple SNMP v3 configuration 1182
- FDP overview 1183
- Using FDP 1183
- Enabling FDP globally 1184
- Changing the FDP update timer 1184
- Changing the FDP hold time 1184
- Displaying FDP information 1185
- Displaying FDP entries 1186
- • FDP and CDP statistics 1187
- Reading CDP packets 1188
- Displaying neighbors 1189
- Clearing CDP information 1190
- Syntax: clear fdp table 1191
- Syntax: clear fdp counters 1191
- Remote Network Monitoring 1193
- Basic management 1195
- RMON support 1197
- Statistics (RMON group 1) 1198
- History (RMON group 2) 1200
- Alarm (RMON group 3) 1201
- Event (RMON group 9) 1201
- Configuring sFlow 1203
- Sampling rate 1204
- Inbound port monitoring 1204
- Specifying the collector 1205
- Changing the polling interval 1205
- Changing the sampling rate 1206
- Enabling sFlow forwarding 1207
- ACL-based inbound sFlow 1208
- Displaying sFlow information 1211
- Displaying sFlow counters 1212
- Clearing sFlow statistics 1213
- Setting the MSTP name 1217
- Configuring an MSTP instance 1217
- Setting point-to-point link 1219
- Disabling MSTP on a port 1219
- Region 1 1220
- Region 2 1220
- Core 1 configuration 1221
- Core2 configuration 1221
- Displaying MSTP statistics 1222
- Output from Show MSTP 1223
- Changing the IGMP mode 1231
- Modifying the query interval 1232
- Modifying the age interval 1232
- Filtering multicast groups 1233
- Static IGMP membership 1233
- per VLAN 1234
- PIM SM traffic snooping 1235
- Syntax: show ip multicast 1240
- Clearing IGMP group flows 1241
- IPv6 Addressing 1243
- IPv6 address types 1244
- TABLE 187 IPv6 address types 1245
- IPv6 connectivity overview 1247
- Enabling IPv6 routing 1248
- EUI-64 interface ID 1249
- IPv6 host support 1251
- Defining a DNS entry 1255
- ECMP load sharing for IPv6 1256
- DHCP relay agent for IPv6 1258
- Configuring IPv6 ICMP 1260
- Neighbor redirect messages 1263
- Changing the IPv6 MTU 1267
- QoS for IPv6 traffic 1268
- Clearing the IPv6 cache 1269
- • IPv6 prefix 1270
- • IPv6 address 1270
- • Interface type 1270
- Displaying local IPv6 routers 1276
- Syntax: show ipv6 traffic 1282
- Configuring RIPng 1287
- Enabling RIPng 1288
- Configuring RIPng timers 1288
- Timer Description Default 1289
- • IPv6 static routes 1291
- • IPv6 IS-IS 1291
- • OSPFv3 1291
- Displaying RIPng information 1293
- Configuring BGP4+ 1297
- Enabling BGP4+ 1299
- IPv6 addresses 1300
- Configuring a route map 1301
- Creating a BGP4+ peer group 1302
- Importing routes into BGP4+ 1304
- • RIPng 1305
- Clearing BGP4+ information 1306
- Removing route flap dampening 1307
- Displaying BGP4+ information 1311
- Summary of BGP4+ routes 1312
- Message Header Error 1331
- Displaying BGP4+ summary 1352
- Configuring IPv6 MBGP 1355
- Enabling IPv6 MBGP 1356
- Adding IPv6 MBGP neighbors 1357
- Command Description 1361
- IPv6 ACLs 1365
- Configuring an IPv6 ACL 1366
- ACL syntax 1369
- For ICMP 1370
- • AHP – Authentication Header 1371
- Arguments... Description 1372
- • router-solicitation 1375
- • sequence 1375
- • time-exceeded 1375
- • unreachable 1375
- Displaying ACLs 1377
- Configuring OSPF Version 3 1379
- Configuring OSPFv3 1380
- Assigning OSPFv3 areas 1381
- Configuring virtual links 1383
- Filtering OSPFv3 routes 1390
- • 1 – Type 1 external route 1393
- • 2 – Type 2 external route 1394
- • Intra-area routes 1395
- • Inter-area routes 1395
- • External routes 1395
- Displaying OSPFv3 information 1398
- Syntax: show ipv6 ospf memory 1407
- Field Description 1408
- This Field... Displays 1411
- TABLE 236 OSPFv3 SPF Table 1415
- • DOWN – The link is down 1416
- IPv6 PIM sparse 1419
- PIM sparse router types 1420
- RP paths and SPT paths 1420
- Configuring PIM sparse 1420
- IPv6 PIM-sparse mode 1421
- Configuring BSRs 1422
- Configuring RPs 1422
- Statically specifying the RP 1423
- ACL based RP assignment 1424
- Displaying the static RP 1424
- Setting the inactivity timer 1427
- Changing the hello timer 1427
- • Ethernet 1429
- • Disabled 1429
- • Enabled 1429
- Displaying BSR information 1430
- Displaying the RP set list 1433
- Syntax: show ipv6 pim mcache 1435
- MLD version distinctions 1437
- Enabling MLDv2 1438
- Setting the query interval 1439
- Setting the robustness 1440
- Setting the version 1440
- Specifying a port version 1440
- Specifying a static group 1440
- Displaying MLD information 1441
- Displaying MLD traffic 1442
- Clearing IPv6 MLD traffic 1443
- Enabling the embedded RP 1444
- Configuring IPv6 Routes 1445
- Continuous System Monitor 1449
- Event Type 1450
- TM_Q_SCANNER 1451
- TCAM_SCAN 1451
- PKT_PATH_SCAN 1451
- DRAM_CRC 1452
- TX_BUFFER 1452
- Display Commands 1453
- Using Syslog 1457
- Static and dynamic buffers 1460
- Clearing log entries 1461
- Time stamps 1461
- Specifying a Syslog server 1463
- Changing the log facility 1465
- Syslog messages 1467
- • 1 – Router 1468
- • 2 – Network 1468
- • 3 – Summary 1468
- • 4 – Summary 1468
- • 5 – External 1468
- • master 1481
- • backup 1481
- • unknown 1481
- TABLE 243 BFD Syslog messages 1486
- Software Specifications 1487
- RFC compliance - OSPF 1488
- RFC compliance - IS-IS 1488
- RFC compliance - RIP 1488
- RFC compliance - IP Multicast 1488
- RFC compliance - management 1490
- RFC compliance - IPv6 core 1490
- Internet drafts 1491
- • Draft-ietf-idr-route-filter 1492
- NIAP-CCEVS Certification 1493
- Local user password changes 1494
- Appendix 1495
- Index to the CLI Commands 1497
- Named ACL 1498
- Other ACL commands 1498
- ACLs (L2) 1499
- Commands See 1500
- IPv6 BGP4+ 1508
- IPv6 ACL 1511
- IPv6 basic connectivity 1512
- IPv6 multicast 1514
- IPv6 RIPng 1514
- IPv6 OSPFv3 1515
- Metro Ring 1519
- Metro Ring protocol 1519
- Multi-Chassis Trunking 1521
- Multicast (IP) 1523
- Multicast (L2) 1525
- OSPF version 4 1525
- Port parameters 1527
- Port-based routing 1528
- Quality of Service (QoS) 1528
- Rate limiting 1529
- Security/Management 1532
- Authentication method list 1534
- Passwords 1534
- Privilege level 1534
- SNMP access 1535
- SSH access 1535
- TACACS and TACACS+ 1536
- TFTP access 1537
- User account 1537
- Web management access 1537
- DoS Protection 1537
- MAC authentication 1538
- MAC port security 1539
- Redundant management module 1540
- SysLog messages 1544
- System parameters 1545
- Topology 1546
- VRRP/VRRPE 1549
Verwandte Produkte und Handbücher für Computerzubehör Brocade BigIron RX Series Configuration Guide
Computerzubehör Brocade Mobility RFS7000 Controller Installation Guide Bedienungsanleitung
(40 Seiten)
(40 Seiten)
Computerzubehör Brocade Mobility RFS Controller CLI Reference Guide (Suppo Bedienungsanleitung
(135 Seiten)
(135 Seiten)
Computerzubehör Brocade Mobility RFS4000 Controller Installation Guide (Su Bedienungsanleitung
(42 Seiten)
(42 Seiten)
Computerzubehör Brocade Mobility 7131 Installation Guide - Dependent Mode Bedienungsanleitung
(52 Seiten)
(52 Seiten)
Computerzubehör Brocade Mobility RFS Controller System Reference Guide (Su Bedienungsanleitung
(101 Seiten)
(101 Seiten)
Computerzubehör Brocade Mobility 7131N-FGR Access Point Installation Guide Bedienungsanleitung
(65 Seiten)
(65 Seiten)
Computerzubehör Brocade Mobility RFS7000-GR Controller CLI Reference Guide Bedienungsanleitung
(607 Seiten)
(607 Seiten)
Computerzubehör Brocade Mobility 5181 Access Point Product Reference Guide Bedienungsanleitung
(428 Seiten)
(428 Seiten)
Computerzubehör Brocade Mobility 1240 Access Point Installation Guide Bedienungsanleitung
(68 Seiten)
(68 Seiten)
Computerzubehör Brocade Mobility 7131N-FGR Access Point Product Reference Bedienungsanleitung
(593 Seiten)
(593 Seiten)
Computerzubehör Brocade Mobility 7131 Access Point Product Reference Guide Bedienungsanleitung
(520 Seiten)
(520 Seiten)
Computerzubehör Brocade Mobility 1220 Access Point Installation Guide Bedienungsanleitung
(63 Seiten)
(63 Seiten)
Computerzubehör Brocade Mobility Access Point System Reference Guide (Supp Bedienungsanleitung
(854 Seiten)
(854 Seiten)
Computerzubehör Brocade Enterprise Wireless LAN Antenna Specification Guid Bedienungsanleitung
(158 Seiten)
(158 Seiten)
Computerzubehör Brocade Virtual ADX Switch and Router Guide (Supporting AD Bedienungsanleitung
(374 Seiten)
(374 Seiten)
Computerzubehör Brocade Virtual ADX Security Guide (Supporting ADX v03.1.0 Bedienungsanleitung
(180 Seiten)
(180 Seiten)
Computerzubehör Brocade Virtual ADX OpenScript Programmer’s Guide (Support Bedienungsanleitung
(30 Seiten)
(30 Seiten)
Computerzubehör Brocade Virtual ADX OpenScript API Guide (Supporting ADX v Bedienungsanleitung
(132 Seiten)
(132 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.086 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern