- DL manuals
- Cabletron Systems
- Switch
- GIGAswitch GSR-16
- User's Reference Manual
Cabletron Systems GIGAswitch GSR-16 User's Reference Manual
Summary of GIGAswitch GSR-16
Page 1
Digital gigaswitch/router user reference manual december 1999 this manual describes how to use the digital gigaswitch/router (gsr). Revision/update information: this is a revised document. Part number: 9032684-03.
Page 2
Changes cabletron systems reserves the right to make changes in specifications and other information contained in this document without prior notice. The reader should in all cases consult cabletron systems to determine whether any such changes have been made. The hardware, firmware, or software des...
Page 3: Industry Canada Notice
Fcc notice — class a computing device iii fcc notice — class a computing device this equipment generates, uses, and may emit radio frequency energy. The equipment has been type tested and found to comply with the limits for a class a digital device pursuant to part 15 of fcc rules, which are designe...
Page 4
Vcci notice — class a computing device iv vcci notice — class a computing device this equipment is a class a product (information equipment to be used in commercial and/or industrial areas) and conforms to the standards set by the voluntary control council for interference by data processing equipme...
Page 5
Cabletron systems, inc. Program license agreement v cabletron systems, inc. Program license agreement important : before utilizing this product, carefully read this license agreement. This document is an agreement between you, the end user, and cabletron systems, inc. (“cabletron”) that sets forth y...
Page 6: Safety Information
Safety information vi united states government restricted rights the enclosed product (a) was developed solely at private expense; (b) contains “restricted computer software” submitted with restricted rights in accordance with section 52227-19 (a) through (d) of the commercial computer software - re...
Page 7: Declaration Of Conformity
Safety information vii declaration of conformity application of council directive(s): 89/336/eec 73/23/eec manufacturer’s name: cabletron systems, inc. Manufacturer’s address: 35 industrial way po box 5005 rochester, nh 03867 european representative name: mr. J. Solari european representative addres...
Page 9: Contents
Digital gigaswitch/router user reference manual ix contents preface .................................................................................................... Xxi about this manual ................................................................................................................
Page 10
Contents x digital gigaswitch/router user reference manual managing the gsr ................................................................................................................ 17 setting the gsr name ..........................................................................................
Page 11
Digital gigaswitch/router user reference manual xi contents configuring gsr bridging functions .................................................................................35 configuring address-based or flow-based bridging ...............................................35 configuring spanning t...
Page 12
Contents xii digital gigaswitch/router user reference manual chapter 6: ip routing configuration guide .......................................... 59 ip routing overview ............................................................................................................ 59 ip routing protocol...
Page 13
Digital gigaswitch/router user reference manual xiii contents chapter 8: rip configuration guide ...................................................... 83 rip overview..........................................................................................................................83 configur...
Page 14
Contents xiv digital gigaswitch/router user reference manual local_pref attribute example .................................................................................... 130 notes on using the local_pref attribute .......................................................... 132 multi-exit discrim...
Page 15
Digital gigaswitch/router user reference manual xv contents creating an aggregate source ....................................................................................159 examples of import policies........................................................................................159 exam...
Page 16
Contents xvi digital gigaswitch/router user reference manual applying an ip policy to an interface ....................................................................... 192 applying an ip policy to locally generated packets ...................................... 192 ip policy configuration example...
Page 17
Digital gigaswitch/router user reference manual xvii contents web caching.........................................................................................................................219 configuring web caching .................................................................................
Page 18
Contents xviii digital gigaswitch/router user reference manual applying acls to interfaces...................................................................................... 242 applying acls to services......................................................................................... 243 ...
Page 19
Digital gigaswitch/router user reference manual xix contents configuring ipx qos policies .....................................................................................267 setting an ipx qos policy.....................................................................................267 specify...
Page 20
Contents xx digital gigaswitch/router user reference manual packet compression..................................................................................................... 298 average packet size.............................................................................................. 29...
Page 21: Preface
Digital gigaswitch/router user reference manual xxi preface about this manual this manual provides detailed information and procedures for configuring the digital ® gigaswitch ™ /router software. If you have not yet installed the gsr, use the instructions in the digital gigaswitch/router getting sta...
Page 22
Preface xxii digital gigaswitch/router user reference manual configure ospf routing chapter 9, ”ospf configuration guide ” configure bgp routing chapter 10, ”bgp configuration guide ” configure routing policies chapter 11, ”routing policy configuration guide ” configure ip multicast routing chapter ...
Page 23: Related Documentation
Digital gigaswitch/router user reference manual xxiii preface related documentation the digital gigaswitch/router documentation set includes the following items. Refer to these other documents to learn more about your product. Correspondence documentation comments if you have comments or suggestions...
Page 24: Getting Help
Preface xxiv digital gigaswitch/router user reference manual getting help to expedite your inquiry when you contact your digital representative, please provide the following information: • your name • your company name • address • email address • phone number • fax number • detailed description of t...
Page 25: Chapter 1
Digital gigaswitch/router user reference manual 1 chapter 1 digital gigaswitch/router product overview the digital gigaswitch/router provides non-blocking, wire-speed layer-2 (switching), layer-3 (routing) and layer-4 (application) switching. The hardware provides wire-speed performance regardless o...
Page 26
Chapter 1: digital gigaswitch/router product overview 2 digital gigaswitch/router user reference manual capacity • 4,096 virtual lans (vlans) • 3 mb input/output buffering per gigabit port • 1 mb input/output buffering per 10/100 port gsr-8: • up to 250,000 routes • up to 2,000,000 layer-4 applicati...
Page 27: Supported Routing Protocols
Digital gigaswitch/router user reference manual 3 supported media (encapsulation type) supported media (encapsulation type) the gsr supports the following industry-standard networking media: • ip: ieee 802.3 snap and ethernet type ii • ipx: ieee 802.3 snap, ethernet type ii, ipx 802.3, 802.2 • 802.1...
Page 28
Chapter 1: digital gigaswitch/router product overview 4 digital gigaswitch/router user reference manual • novell ipx routing protocols: – routing information protocol (rip) – service advertising protocol (sap) chapter 16, ”ipx routing configuration guide,” describes these protocols in detail. Config...
Page 29
Digital gigaswitch/router user reference manual 5 configuring the digital gigaswitch/router access modes the gsr cli has four access modes. • user – allows you to display basic information and use basic utilities such as ping but does not allow you to display snmp, filter, and access control list in...
Page 30
Chapter 1: digital gigaswitch/router product overview 6 digital gigaswitch/router user reference manual when you are in configure or enable mode, enter the exit command or press ctrl+z to exit to the previous access mode. Note: when you exit configure mode, the cli will ask you whether you want to a...
Page 31
Digital gigaswitch/router user reference manual 7 configuring the digital gigaswitch/router to list the commands available in user mode, enter a question mark (?) as shown in the following example: enable mode enable mode provides more facilities than user mode. You can display critical features wit...
Page 32
Chapter 1: digital gigaswitch/router product overview 8 digital gigaswitch/router user reference manual to list the commands available in enable mode, enter a question mark (?) as shown in the following example: gs/r# ? Acl - show l3 access control list aging - show l2 and l3 aging information arp -...
Page 33
Digital gigaswitch/router user reference manual 9 configuring the digital gigaswitch/router to exit enable mode and return to user mode, use one of the following commands: configure mode configure mode provides the capabilities to configure all features and functions on the gsr. You can configure fe...
Page 34
Chapter 1: digital gigaswitch/router product overview 10 digital gigaswitch/router user reference manual filters - configure l2 security filters frame-relay - configure wan interface parameters help - describe online help facility igmp - configure igmp related parameters interface - configure interf...
Page 35
Digital gigaswitch/router user reference manual 11 loading system images and configuration files to exit configure mode and return to enable mode, use one of the following commands: boot prom mode if your gsr does not find a valid system image on the external pcmcia flash, the system might enter pro...
Page 36
Chapter 1: digital gigaswitch/router product overview 12 digital gigaswitch/router user reference manual configuration files the gsr uses three special configuration files: • active – the commands from the startup configuration file and any configuration commands that you have made active from the s...
Page 37
Digital gigaswitch/router user reference manual 13 loading system images and configuration files here is an example: 4. Enter the system image list command to list the images on the pcmcia flash card and verify that the new image is on the card: here is an example: 5. Use the system image choose com...
Page 38
Chapter 1: digital gigaswitch/router product overview 14 digital gigaswitch/router user reference manual loading boot prom software the gsr boots using the boot prom software installed on the control module’s internal memory. To upgrade the boot prom software and boot using the upgraded image, use t...
Page 39
Digital gigaswitch/router user reference manual 15 loading system images and configuration files 2. If you have not already done so, enter the configure command to enter configure mode in the cli. 3. Enter the following command: 4. The cli displays the following message: 5. Enter yes or y to activat...
Page 40
Chapter 1: digital gigaswitch/router product overview 16 digital gigaswitch/router user reference manual displaying configuration changes while in configure mode, you can display the configuration of the running system as well as non-activated changes that are in the scratchpad by entering the follo...
Page 41: Managing The Gsr
Digital gigaswitch/router user reference manual 17 managing the gsr managing the gsr the gsr contains numerous system facilities for system management. You can perform configuration management tasks on the gsr including: • setting the gsr name • setting the gsr date and time • configuring ntp • conf...
Page 42
Chapter 1: digital gigaswitch/router product overview 18 digital gigaswitch/router user reference manual configuring ntp you can use the ntp set server command to instruct the gsr’s ntp client to periodically synchronize its clock. By default, the gsr specifies an ntpv3 client that sends a synchroni...
Page 43
Digital gigaswitch/router user reference manual 19 managing the gsr configuring dns the gsr allows you to configure up to three domain name service (dns) servers. To configure the dns, enter the following command in configure mode: connecting between the gsr and other systems to test a connection be...
Page 44: Monitoring Configuration
Chapter 1: digital gigaswitch/router product overview 20 digital gigaswitch/router user reference manual configuring logging during operation, the gsr system software sends messages to the management console. These messages include informational, warning, error, and fatal messages. Console messages ...
Page 46
Chapter 1: digital gigaswitch/router product overview 22 digital gigaswitch/router user reference manual show gsr uptime. System show uptime show the current telnet connections to the gsr. System show users show the software version running on the gsr. System show version task command.
Page 47: Chapter 2
Digital gigaswitch/router user reference manual 23 chapter 2 hot swapping line cards and control modules hot swapping overview this chapter describes the hot swapping functionality of the gsr. Hot swapping is the ability to replace a line card or control module while the gsr is operating. Hot swappi...
Page 48: Hot Swapping Line Cards
Chapter 2: hot swapping line cards and control modules 24 digital gigaswitch/router user reference manual hot swapping line cards the procedure for hot swapping a line card consists of deactivating the line card, removing it from its slot in the gsr chassis, and installing a new line card in the slo...
Page 49
Digital gigaswitch/router user reference manual 25 hot swapping line cards removing the line card to remove a line card from the gsr: 1. Make sure the offline led on the line card is lit. Warning : do not remove the line card unless the offline led is lit. Doing so can cause the gsr to crash. 2. Loo...
Page 50
Chapter 2: hot swapping line cards and control modules 26 digital gigaswitch/router user reference manual hot swapping a secondary control module if you have a secondary control module installed on the gsr, you can hot swap it with another control module or line card. Warning : you can only hot swap...
Page 51: Only)
Digital gigaswitch/router user reference manual 27 hot swapping a switching fabric module (gsr-16 only) removing the control module to remove a control module from the gsr: 1. Make sure that none of the leds on the control module are lit. 2. Loosen the captive screws on each side of the control modu...
Page 52
Chapter 2: hot swapping line cards and control modules 28 digital gigaswitch/router user reference manual the procedure for hot swapping a switching fabric module is similar to the procedure for hot swapping a line card or control module. You deactivate the switching fabric module, remove it from th...
Page 53: Chapter 3
Digital gigaswitch/router user reference manual 29 chapter 3 bridging configuration guide bridging overview the digital gigaswitch/router provides the following bridging functions: • compliance with the ieee 802.1d standard • compliance with the igmp multicast bridging standard • wire-speed address-...
Page 54: Vlan Overview
Chapter 3: bridging configuration guide 30 digital gigaswitch/router user reference manual bridging modes (flow-based and address-based) the gsr provides the following types of wire-speed bridging: address-based bridging - the gsr performs this type of bridging by looking up the destination address ...
Page 55
Digital gigaswitch/router user reference manual 31 vlan overview the type of vlan depends upon one criterion: how a received frame is classified as belonging to a particular vlan. Vlans can be categorized into the following types: • port based • mac address based • protocol based • subnet based • mu...
Page 56
Chapter 3: bridging configuration guide 32 digital gigaswitch/router user reference manual subnet-based vlans subnet-based vlans are a subset of protocol based vlans and determine the vlan of a frame based on the subnet to which the frame belongs. To do this, the switch must look into the network la...
Page 57
Digital gigaswitch/router user reference manual 33 vlan overview the gsr can be used purely as an l2 switch. Frames arriving at any port are bridged and not routed. In this case, setting up vlans and associating ports with vlans is all that is required. You can set up the gsr switching router to use...
Page 58
Chapter 3: bridging configuration guide 34 digital gigaswitch/router user reference manual access ports and trunk ports (802.1q support) the ports of a gsr can be classified into two types, based on vlan functionality: access ports and trunk ports. By default, a port is an access port. An access por...
Page 59
Digital gigaswitch/router user reference manual 35 configuring gsr bridging functions configuring gsr bridging functions configuring address-based or flow-based bridging the gsr ports perform address-based bridging by default but can be configured to perform flow-based bridging instead of address-ba...
Page 60
Chapter 3: bridging configuration guide 36 digital gigaswitch/router user reference manual to change a port from flow-based bridging to address-based bridging, enter the following command in configure mode: configuring spanning tree note: some commands in this facility require updated gsr hardware. ...
Page 61
Digital gigaswitch/router user reference manual 37 configuring gsr bridging functions you can adjust spanning-tree parameters by performing any of the tasks in the following sections: • set the bridge priority • set an interface priority note: only network administrators with a good understanding of...
Page 62
Chapter 3: bridging configuration guide 38 digital gigaswitch/router user reference manual assigning port costs each interface has a port cost associated with it. By convention, the port cost is 1000/data rate of the attached lan, in mbps. You can set different port costs. To assign port costs, ente...
Page 63
Digital gigaswitch/router user reference manual 39 configuring gsr bridging functions to change the default interval setting, enter the following command in configure mode: defining the maximum age if a bridge does not hear bpdus from the root bridge within a specified interval, it assumes that the ...
Page 64
Chapter 3: bridging configuration guide 40 digital gigaswitch/router user reference manual configuring vlan trunk ports the gsr supports standards-based vlan trunking between multiple gsrs as defined by ieee 802.1q. 802.1q adds a header to a standard ethernet frame which includes a unique vlan id pe...
Page 65: Monitoring Bridging
Digital gigaswitch/router user reference manual 41 monitoring bridging • secure port filters a secure filter shuts down access to the gsr based on mac addresses. All packets received by a port are dropped. When combined with static entries, however, these filters can be used to drop all received tra...
Page 66: Configuration Examples
Chapter 3: bridging configuration guide 42 digital gigaswitch/router user reference manual configuration examples vlans are used to associate physical ports on the gsr with connected hosts that may be physically separated but need to participate in the same broadcast domain. To associate ports to a ...
Page 67: Chapter 4
Digital gigaswitch/router user reference manual 43 chapter 4 smarttrunk configuration guide overview this chapter explains how to configure and monitor smarttrunks on the gsr. A smarttrunk is digital equipment corporation’s technology for load balancing and load sharing. For a description of the sma...
Page 68: Configuring Smarttrunks
Chapter 4: smarttrunk configuration guide 44 digital gigaswitch/router user reference manual smarttrunks are compatible with all gsr features, including vlans, stp, vrrp, etc. Smarttrunk operation is supported over different media types and a variety of technologies including 10/100/1000 mbps ethern...
Page 69
Digital gigaswitch/router user reference manual 45 configuring smarttrunks add physical ports to the smarttrunk you can add any number of ports to a smarttrunk. The limit is the number of ports on the gsr. Any port on any module can be part of a smarttrunk. If one module should go down, the remainin...
Page 70: Monitoring Smarttrunks
Chapter 4: smarttrunk configuration guide 46 digital gigaswitch/router user reference manual monitoring smarttrunks statistics are gathered for data flowing through a smarttrunk and each port in the smarttrunk. To display smarttrunk statistics, enter one of the following commands in enable mode:. To...
Page 71: Example Configurations
Digital gigaswitch/router user reference manual 47 example configurations example configurations the following shows a network design based on smarttrunks. R1 is an gsr operating as a router, while s1 and s2 are gsrs operating as switches. The following is the configuration for the cisco 7500 router...
Page 72
Chapter 4: smarttrunk configuration guide 48 digital gigaswitch/router user reference manual the following is the smarttrunk configuration for the gsr labeled ‘r1’ in the diagram: the following is the smarttrunk configuration for the gsr labeled ‘s1’ in the diagram: the following is the smarttrunk c...
Page 73: Chapter 5
Digital gigaswitch/router user reference manual 49 chapter 5 dhcp configuration guide dhcp overview the dynamic host configuration protocol (dhcp) server on the gsr provides dynamic address assignment and configuration to dhcp capable end-user systems, such as microsoft ® windows ® 95/98, microsoft ...
Page 74: Configuring Dhcp
Chapter 5: dhcp configuration guide 50 digital gigaswitch/router user reference manual configuring dhcp by default, the dhcp server is not enabled on the gsr. You can selectively enable dhcp service on particular interfaces and not others. To enable dhcp service on an interface, you must first defin...
Page 75
Digital gigaswitch/router user reference manual 51 configuring dhcp to define the parameters that the dhcp server gives the clients, enter the following command in configure mode: configuring a static ip address to define a static ip address that the dhcp server can assign to a client with a specifi...
Page 76: Monitoring The Dhcp Server
Chapter 5: dhcp configuration guide 52 digital gigaswitch/router user reference manual configuring dhcp server parameters you can configure several “global” parameters that affect the behavior of the dhcp server itself. To configure global dhcp server parameters, enter the following commands in conf...
Page 77: Dhcp Configuration Examples
Digital gigaswitch/router user reference manual 53 dhcp configuration examples dhcp configuration examples the following configuration describes dhcp configuration for a simple network with just one interface on which dhcp service is enabled to provide both dynamic and static ip addresses. 1. Create...
Page 78
Chapter 5: dhcp configuration guide 54 digital gigaswitch/router user reference manual 9. Specify a remote lease database on the tftp server 10.1.89.88. 10. Specify a database update interval of every 15 minutes. Configuring secondary subnets in some network environments, multiple logical subnets ca...
Page 79
Digital gigaswitch/router user reference manual 55 dhcp configuration examples 6. Include ‘scope2’ in the superscope ‘super1’. Since there are multiple pools of ip addresses, the pool associated with ‘scope1’ is used first since ‘scope1’ is applied to the interface before ‘scope2’. Clients that are ...
Page 80
Chapter 5: dhcp configuration guide 56 digital gigaswitch/router user reference manual 6. Define the address pool for ‘scope2’. 7. Create a superscope ‘super1’ that includes ‘scope1’. 8. Include ‘scope2’ in the superscope ‘super1’. For clients on the secondary subnet, the default gateway is 10.2.1.1...
Page 81
Digital gigaswitch/router user reference manual 57 dhcp configuration examples 4. Define the address pool for ‘scope1’. Dhcp scope1 define pool 10.5.1.10-10.5.1.20
Page 83: Chapter 6
Digital gigaswitch/router user reference manual 59 chapter 6 ip routing configuration guide this chapter describes how to configure ip interfaces and general non-protocol-specific routing parameters. Ip routing overview internet protocol (ip) is a packet-based protocol used to exchange data over com...
Page 84
Chapter 6: ip routing configuration guide 60 digital gigaswitch/router user reference manual tcp and udp also specify “ports,” which identify the application which is using tcp/udp. For example, a web server would typically use tcp/udp port 80, which specifies http-type traffic. The gsr supports sta...
Page 85
Digital gigaswitch/router user reference manual 61 configuring ip interfaces and parameters the gsr supports the following multicast routing protocols: • distance vector multicast routing protocol (dvmrp) rfc 1075 • internet group management protocol (igmp) as described in rfc 2236 the gsr also supp...
Page 86
Chapter 6: ip routing configuration guide 62 digital gigaswitch/router user reference manual specifying ethernet encapsulation method the digital gigaswitch/router supports two encapsulation types for ip. You can configure encapsulation type on a per-interface basis. • ethernet ii: the standard arpa...
Page 87
Digital gigaswitch/router user reference manual 63 configuring ip interfaces and parameters to disable proxy arp, enter the following command in configure mode: configuring reverse address resolution protocol (rarp) reverse address resolution protocol (rarp) works exactly the opposite of arp. Taking...
Page 88
Chapter 6: ip routing configuration guide 64 digital gigaswitch/router user reference manual then place the text file on a tftp server that the gsr can access and enter the following command in enable mode: monitoring rarp you can use the following commands to obtain information about the gsr’s rarp...
Page 89
Digital gigaswitch/router user reference manual 65 configuring ip interfaces and parameters configuring ip services (icmp) the gsr provides icmp message capabilities including ping and traceroute. Ping allows you to determine the reachability of a certain ip host. Traceroute allows you to trace the ...
Page 90
Chapter 6: ip routing configuration guide 66 digital gigaswitch/router user reference manual configuring direct broadcast you can configure the gsr to forward all directed broadcast traffic from the local subnet to a specified ip address or all associated ip addresses. This is a more efficient metho...
Page 91: Configuring Router Discovery
Digital gigaswitch/router user reference manual 67 configuring router discovery to display ip information, enter the following command in enable mode: configuring router discovery the router discovery server on the gsr periodically sends out router advertisements to announce the existence of the gsr...
Page 92: Configuration Examples
Chapter 6: ip routing configuration guide 68 digital gigaswitch/router user reference manual to configure router advertisement, enter the following commands in configure mode: to show the state of router discovery on the gsr, enter the following command in enable mode: configuration examples assigni...
Page 93: Chapter 7
Digital gigaswitch/router user reference manual 69 chapter 7 vrrp configuration guide vrrp overview this chapter explains how to set up and monitor the virtual router redundancy protocol (vrrp) on the gsr. Vrrp is defined in rfc 2338. End host systems on a lan are often configured to send packets to...
Page 94: Configuring Vrrp
Chapter 7: vrrp configuration guide 70 digital gigaswitch/router user reference manual configuring vrrp this section presents three sample vrrp configurations: • a basic vrrp configuration with one virtual router • a symmetrical vrrp configuration with two virtual routers • a multi-backup vrrp confi...
Page 95
Digital gigaswitch/router user reference manual 71 configuring vrrp configuration of router r1 the following is the configuration file for router r1 in figure 4 . Line 1 adds ip address 10.0.0.1/16 to interface test, making router r1 the owner of this ip address. Line 2 creates virtual router vrid=1...
Page 96
Chapter 7: vrrp configuration guide 72 digital gigaswitch/router user reference manual this configuration allows you to load-balance traffic coming from the hosts on the 10.0.0.0/16 subnet and provides a redundant path to either virtual router. Note: this is the recommended configuration on a networ...
Page 97
Digital gigaswitch/router user reference manual 73 configuring vrrp configuration of router r1 the following is the configuration file for router r1 in figure 5 . Router r1 is the owner of ip address 10.0.0.1/16. Line 4 associates this ip address with virtual router vrid=1 , so router r1 is the mast...
Page 98
Chapter 7: vrrp configuration guide 74 digital gigaswitch/router user reference manual multi-backup configuration figure 6 shows a vrrp configuration with three routers and three virtual routers. Each router serves as a master for one virtual router and as a backup for each of the others. When a mas...
Page 99
Digital gigaswitch/router user reference manual 75 configuring vrrp router r3 is the secondary backup for virtual routers vrid=1 and vrid=2 . It would become a master router only if both routers r1 and r2 should fail. In such a case, router r3 would become the master for all three virtual routers. C...
Page 100
Chapter 7: vrrp configuration guide 76 digital gigaswitch/router user reference manual since router r1 is the owner of the ip address associated with virtual router vrid=1 , it has a priority of 255 (the highest) for virtual router vrid=1 . Lines 8 and 9 set router r1’s priority for virtual routers ...
Page 101
Digital gigaswitch/router user reference manual 77 configuring vrrp the following table shows the priorities for each virtual router configured on router r2. Note: since 100 is the default priority, line 9, which sets the priority to 100, is actually unnecessary. It is included for illustration purp...
Page 102
Chapter 7: vrrp configuration guide 78 digital gigaswitch/router user reference manual the following table shows the priorities for each virtual router configured on router r3. Note: since 100 is the default priority, lines 8 and 9, which set the priority to 100, are actually unnecessary. They are i...
Page 103
Digital gigaswitch/router user reference manual 79 configuring vrrp setting pre-empt mode when a master router goes down, the backup with the highest priority takes over the ip addresses associated with the master. By default, when the original master comes back up again, it takes over from the back...
Page 104: Monitoring Vrrp
Chapter 7: vrrp configuration guide 80 digital gigaswitch/router user reference manual monitoring vrrp the gsr provides two commands for monitoring a vrrp configuration: ip-redundancy trace , which displays messages when vrrp events occur, and ip-redundancy show, which reports statistics about virtu...
Page 105: Vrrp Configuration Notes
Digital gigaswitch/router user reference manual 81 vrrp configuration notes vrrp configuration notes • the master router sends keep-alive advertisements. The frequency of these keep-alive advertisements is determined by setting the advertisement interval parameter. The default value is 1 second. • i...
Page 106
Chapter 7: vrrp configuration guide 82 digital gigaswitch/router user reference manual • as specified in rfc 2338, a backup router that has transitioned to master will not respond to pings, accept telnet sessions, or field snmp requests directed at the virtual router's ip address. Not responding all...
Page 107: Chapter 8
Digital gigaswitch/router user reference manual 83 chapter 8 rip configuration guide rip overview this chapter describes how to configure the routing information protocol (rip) on the digital gigaswitch/router. Rip is a distance-vector routing protocol for use in small networks. Rip is described in ...
Page 108
Chapter 8: rip configuration guide 84 digital gigaswitch/router user reference manual enabling and disabling rip to enable or disable rip, enter one of the following commands in configure mode. Configuring rip interfaces to configure rip in the gsr, you must first add interfaces to inform rip about ...
Page 109
Digital gigaswitch/router user reference manual 85 configuring rip configuring rip parameters no further configuration is required, and the system default parameters will be used by rip to exchange routing information. These default parameters may be modified to suit your needs by using the rip set ...
Page 110
Chapter 8: rip configuration guide 86 digital gigaswitch/router user reference manual configuring rip route preference you can set the preference of routes learned from rip. To configure rip route preference, enter the following command in configure mode. Configuring rip route default-metric you can...
Page 111: Monitoring Rip
Digital gigaswitch/router user reference manual 87 monitoring rip monitoring rip the rip trace command can be used to trace all rip request and response packets. To monitor rip information, enter the following commands in enable mode. Show all rip information. Rip show all show rip export policies. ...
Page 112: Configuration Example
Chapter 8: rip configuration guide 88 digital gigaswitch/router user reference manual configuration example ! Example configuration ! ! Create interface gsr1-if1 with ip address 1.1.1.1/16 on port et.1.1 on gsr-1 interface create ip gsr1-if1 address-netmask 1.1.1.1/16 port et.1.1 ! ! Configure rip o...
Page 113: Chapter 9
Digital gigaswitch/router user reference manual 89 chapter 9 ospf configuration guide ospf overview open shortest path first (ospf) is a link-state routing protocol that supports ip subnetting and authentication. The gsr supports ospf version 2.0 as defined in rfc 1583. Each link-state message conta...
Page 114: Configuring Ospf
Chapter 9: ospf configuration guide 90 digital gigaswitch/router user reference manual ospf multipath the gsr also supports ospf and static multi-path. If multiple equal-cost ospf or static routes have been defined for any destination, then the gsr “discovers” and uses all of them. The gsr will auto...
Page 115
Digital gigaswitch/router user reference manual 91 configuring ospf configuring ospf interface parameters you can configure the ospf interface parameters shown in the table below. To configure ospf interface parameters, enter one of the following commands in configure mode: table 4. Ospf interface p...
Page 116
Chapter 9: ospf configuration guide 92 digital gigaswitch/router user reference manual configuring an ospf area ospf areas are a collection of subnets that are grouped in a logical fashion. These areas communicate with other areas via the backbone area. Once ospf areas are created, you can add inter...
Page 117
Digital gigaswitch/router user reference manual 93 configuring ospf to create areas and assign interfaces, enter the following commands in the configure mode. Configuring ospf area parameters the gsr allows configuration of various ospf area parameters, including stub areas, stub cost and authentica...
Page 118
Chapter 9: ospf configuration guide 94 digital gigaswitch/router user reference manual creating virtual links in ospf, virtual links can be established: • to connect an area via a transit area to the backbone • to create a redundant backbone connection via another area each area border router must b...
Page 119: Monitoring Ospf
Digital gigaswitch/router user reference manual 95 monitoring ospf configuring ospf over non-broadcast multiple access you can configure ospf over nbma circuits to limit the number of link state advertisements (lsas). Lsas are limited to initial advertisements and any subsequent changes. Periodic ls...
Page 120
Chapter 9: ospf configuration guide 96 digital gigaswitch/router user reference manual show all ospf areas. Ospf show areas show ospf errors. Ospf show errors show information about ospf export policies. Ospf show export-policies shows routes redistributed into ospf. Ospf show exported-routes show a...
Page 121: Ospf Configuration Examples
Digital gigaswitch/router user reference manual 97 ospf configuration examples ospf configuration examples for all examples in this section, refer to the configuration shown in figure 7 on page 101 . The following configuration commands for router r1: • determine the ip address for each interface • ...
Page 122
Chapter 9: ospf configuration guide 98 digital gigaswitch/router user reference manual 2. Create a ospf export destination for type-2 routes since we would like to redistribute certain routes into ospf as type 2 ospf-ase routes. 3. Create a static export source since we would like to export static r...
Page 123
Digital gigaswitch/router user reference manual 99 ospf configuration examples 3. Create a ospf export destination for type-2 routes. 4. Create a ospf export destination for type-2 routes with a tag of 100. 5. Create a rip export source. 6. Create a static export source. 7. Create a direct export so...
Page 124
Chapter 9: ospf configuration guide 100 digital gigaswitch/router user reference manual 12. Create the export-policy for redistributing all interface, rip, static, ospf and ospf- ase routes into rip. Ip-router policy export destination ripexpdst source statexpsrc network all ip-router policy export ...
Page 125
Digit a l g igas w itc h/ro uter user r e feren ce ma nual 1 0 1 o s pf config uration ex amp les figure 7. Exporting to ospf bgp r1 r2 r3 r41 r42 r6 r11 a r e a b a c k b o n e a r e a 140.1.0.0 (r ip v 2 ) 140.1.1.1/24 140.1.2.1/24 140.1.5/24 140.1.4/24 190.1.1.1/16 120.190.1.1/16 160.1.5.2/24 r10...
Page 127: Chapter 10
Digital gigaswitch/router user reference manual 103 chapter 10 bgp configuration guide bgp overview the border gateway protocol (bgp) is an exterior gateway protocol that allows ip routers to exchange network reachability information. Bgp became an internet standard in 1989 (rfc 1105) and the curren...
Page 128: Basic Bgp Tasks
Chapter 10: bgp configuration guide 104 digital gigaswitch/router user reference manual the gsr bgp implementation the gsr routing protocol implementation is based on gated 4.0.3 code ( http://www.Gated.Org ). Gated is a modular software program consisting of core services, a routing database, and p...
Page 129
Digital gigaswitch/router user reference manual 105 basic bgp tasks setting the autonomous system number an autonomous system number identifies your autonomous system to other routers. To set the gsr’s autonomous system number, enter the following command in configure mode. The autonomous-system par...
Page 130
Chapter 10: bgp configuration guide 106 digital gigaswitch/router user reference manual configuring a bgp peer group a bgp peer group is a group of neighbor routers that have the same update policies. To configure a bgp peer group, enter the following command in configure mode: where: peer-group is ...
Page 131
Digital gigaswitch/router user reference manual 107 basic bgp tasks proto specifies the interior protocol to be used to resolve bgp next hops. Specify one of the following: any use any igp to resolve bgp next hops. Rip use rip to resolve bgp next hops. Ospf use ospf to resolve bgp next hops. Static ...
Page 132
Chapter 10: bgp configuration guide 108 digital gigaswitch/router user reference manual using as-path regular expressions an as-path regular expression is a regular expression where the alphabet is the set of as numbers. An as-path regular expression is composed of one or more as-path expressions. A...
Page 134
Chapter 10: bgp configuration guide 110 digital gigaswitch/router user reference manual using the as path prepend feature when bgp compares two advertisements of the same prefix that have differing as paths, the default action is to prefer the path with the lowest number of transit as hops; in other...
Page 135: Bgp Configuration Examples
Digital gigaswitch/router user reference manual 111 bgp configuration examples e. Add the peer-host back to the peer-group. If the as-count option is part of the startup configuration, the above steps are unnecessary. Bgp configuration examples this section presents sample configurations illustratin...
Page 136
Chapter 10: bgp configuration guide 112 digital gigaswitch/router user reference manual figure 8 illustrates a sample bgp peering session. Figure 8. Sample bgp peering session the cli configuration for router gsr1 is as follows: interface create ip et.1.1 address-netmask 10.0.0.1/16 port et.1.1 # # ...
Page 137
Digital gigaswitch/router user reference manual 113 bgp configuration examples the gated.Conf file for router gsr1 is as follows: the cli configuration for router gsr2 is as follows: the gated.Conf file for router gsr2 is as follows: ibgp configuration example connections between bgp speakers within...
Page 138
Chapter 10: bgp configuration guide 114 digital gigaswitch/router user reference manual an igp, like ospf, could possibly be used instead of ibgp to exchange routing information between ebgp speakers within an as. However, injecting full internet routes (50,000+ routes) into an igp puts an expensive...
Page 139
Digital gigaswitch/router user reference manual 115 bgp configuration examples figure 9 shows a sample bgp configuration that uses the routing group type. Figure 9. Sample ibgp configuration (routing group type) gsr6 gsr1 cisco gsr4 lo0 172.23.1.25/30 10.12.1.6/30 10.12.1.5/30 172.23.1.10/30 172.23....
Page 140
Chapter 10: bgp configuration guide 116 digital gigaswitch/router user reference manual in this example, ospf is configured as the igp in the autonomous system. The following lines in the router gsr6 configuration file configure ospf: the following lines in the cisco router configure ospf: the follo...
Page 141
Digital gigaswitch/router user reference manual 117 bgp configuration examples the following lines on the cisco router set up ibgp peering with router gsr6. Ibgp internal group example the ibgp internal group expects all peers to be directly attached to a shared subnet so that, like external peers, ...
Page 142
Chapter 10: bgp configuration guide 118 digital gigaswitch/router user reference manual figure 10 illustrates a sample ibgp internal group configuration. Figure 10. Sample ibgp configuration (internal group type) the cli configuration for router gsr1 is as follows: as-1 gsr2 gsr1 17.122.128.2/24 17....
Page 143
Digital gigaswitch/router user reference manual 119 bgp configuration examples the gated.Conf file for router gsr1 is as follows: the cli configuration for router gsr2 is as follows: the gated.Conf file for router gsr2 is as follows: autonomoussystem 1 ; routerid 16.122.128.1 ; bgp yes { traceoption...
Page 144
Chapter 10: bgp configuration guide 120 digital gigaswitch/router user reference manual the configuration for router c1 (a cisco router) is as follows: the configuration for router c2 (a cisco router) is as follows: ebgp multihop configuration example ebgp multihop refers to a configuration where ex...
Page 145
Digital gigaswitch/router user reference manual 121 bgp configuration examples this sample configuration shows external bgp peers, gsr1 and gsr4, which are not connected to the same subnet. The cli configuration for router gsr1 is as follows: physical link legend: peering relationship gsr1 16.122.12...
Page 146
Chapter 10: bgp configuration guide 122 digital gigaswitch/router user reference manual the gated.Conf file for router gsr1 is as follows: the cli configuration for router gsr2 is as follows: the gated.Conf file for router gsr2 is as follows: the cli configuration for router gsr3 is as follows: auto...
Page 147
Digital gigaswitch/router user reference manual 123 bgp configuration examples the gated.Conf file for router gsr3 is as follows: the cli configuration for router gsr4 is as follows: the gated.Conf file for router gsr4 is as follows: community attribute example the following configuration illustrate...
Page 148
Chapter 10: bgp configuration guide 124 digital gigaswitch/router user reference manual figure 11. Sample bgp configuration (specific community) as-64902 r11 172.26.1.2/16 172.25.1.2/16 192.168.20.2/16 172.25.1.1/16 1.1 r13 1.6 r10 192.169.20.1/16 192.169.20.2/16 100.200.13.1/24 10.200.15.1/24 1.6 r...
Page 149
Digital gigaswitch/router user reference manual 125 bgp configuration examples figure 12. Sample bgp configuration (well-known community) the community attribute can be used in three ways: 1. In a bgp group statement: any packets sent to this group of bgp peers will have the communities attribute in...
Page 150
Chapter 10: bgp configuration guide 126 digital gigaswitch/router user reference manual in figure 12 , router gsr11 has the following configuration: # # create an optional attribute list with identifier color1 for a community # attribute (community-id 160 as 64901) # ip-router policy create optional...
Page 151
Digital gigaswitch/router user reference manual 127 bgp configuration examples in figure 12 , router gsr13 has the following configuration: 3. In an export statement: the optional-attributes-list option of the ip-router policy create bgp-export-destination command may be used to send the bgp communi...
Page 152
Chapter 10: bgp configuration guide 128 digital gigaswitch/router user reference manual in figure 12 , router gsr10 has the following configuration: in figure 12 , router gsr14 has the following configuration: any communities specified with the optional-attributes-list option are sent in addition to...
Page 153
Digital gigaswitch/router user reference manual 129 bgp configuration examples the community attribute may be a single community or a set of communities. A maximum of 10 communities may be specified. The community attribute can take any of the following forms: • specific community the specific commu...
Page 154
Chapter 10: bgp configuration guide 130 digital gigaswitch/router user reference manual notes on using communities when originating bgp communities, the set of communities that is actually sent is the union of the communities received with the route (if any), those specified in group policy (if any)...
Page 155
Digital gigaswitch/router user reference manual 131 bgp configuration examples in the sample network in figure 13 , all the traffic exits autonomous system 64901 through the link between router gsr13 and router gsr11. This is accomplished by setting the local_pref attribute. Figure 13. Sample bgp co...
Page 156
Chapter 10: bgp configuration guide 132 digital gigaswitch/router user reference manual in router gsr 12’s cli configuration file, the import preference is set to 160: using the formula for local preference [local_pref = 254 - (global protocol preference for this route) + metric], the local_pref val...
Page 157
Digital gigaswitch/router user reference manual 133 bgp configuration examples figure 14. Sample bgp configuration (med attribute) routers gsr4 and gsr6 inform router c1 about network 172.16.200.0/24 through external bgp (ebgp). Router gsr6 announced the route with a med of 10, whereas router gsr4 a...
Page 158
Chapter 10: bgp configuration guide 134 digital gigaswitch/router user reference manual ebgp aggregation example figure 15 shows a simple ebgp configuration in which one peer is exporting an aggregated route to its upstream peer and restricting the advertisement of contributing routes to the same pe...
Page 159
Digital gigaswitch/router user reference manual 135 bgp configuration examples router gsr9 has the following cli configuration: route reflection example in some isp networks, the internal bgp mesh becomes quite large, and the ibgp full mesh does not scale well. For such situations, route reflection ...
Page 160
Chapter 10: bgp configuration guide 136 digital gigaswitch/router user reference manual figure 16 shows a sample configuration that uses route reflection. Figure 16. Sample bgp configuration (route reflection) in this example, there are two clusters. Router gsr10 is the route reflector for the first...
Page 161
Digital gigaswitch/router user reference manual 137 bgp configuration examples router gsr 11 has router gsr 12 and router gsr 13 as client peers and router gsr 10 as non- client peer. The following line in router gsr 11’s configuration file specifies it to be a route reflector even though the ibgp p...
Page 162
Chapter 10: bgp configuration guide 138 digital gigaswitch/router user reference manual notes on using route reflection • two types of route reflection are supported: – by default, all routes received by the route reflector from a client are sent to all internal peers (including the client’s group, ...
Page 163: Chapter 11
Digital gigaswitch/router user reference manual 139 chapter 11 routing policy configuration guide route import and export policy overview the gsr family of routers supports extremely flexible routing policies. The gsr allows the network administrator to control import and export of routing informati...
Page 164
Chapter 11: routing policy configuration guide 140 digital gigaswitch/router user reference manual preference preference is the value the gsr routing process uses to order preference of routes from one protocol or peer over another. Preference can be set using several different configuration command...
Page 165
Digital gigaswitch/router user reference manual 141 route import and export policy overview import policies import policies control the importation of routes from routing protocols and their installation in the routing databases (routing information base and forwarding information base). Import poli...
Page 166
Chapter 11: routing policy configuration guide 142 digital gigaswitch/router user reference manual it is only possible to restrict the importation of ospf ase routes when functioning as an as border router. Like the other interior protocols, preference cannot be used to choose between ospf ase route...
Page 167
Digital gigaswitch/router user reference manual 143 route import and export policy overview export-source this component specifies the source of the exported routes. It can also specify the metric to be associated with the routes exported from this source. The routes to be exported can be identified...
Page 168
Chapter 11: routing policy configuration guide 144 digital gigaswitch/router user reference manual specifying a route filter routes are filtered by specifying a route-filter that will match a certain set of routes by destination, or by destination and mask. Among other places, route filters are used...
Page 169
Digital gigaswitch/router user reference manual 145 route import and export policy overview aggregates and generates route aggregation is a method of generating a more general route, given the presence of a specific route. It is used, for example, at an autonomous system border to generate a route t...
Page 170
Chapter 11: routing policy configuration guide 146 digital gigaswitch/router user reference manual the routes contributing to an aggregate can be identified by their associated attributes: • protocol type (rip, ospf, bgp, static, direct, aggregate). • autonomous system from which the route was learn...
Page 171
Digital gigaswitch/router user reference manual 147 route import and export policy overview authentication methods there are mainly two authentication methods: simple password: in this method, an authentication key of up to 8 characters is included in the packet. If this does not match what is expec...
Page 172
Chapter 11: routing policy configuration guide 148 digital gigaswitch/router user reference manual configuring simple routing policies simple routing policies provide an efficient way for routing information to be exchanged between routing protocols. The redistribute command can be used to redistrib...
Page 173
Digital gigaswitch/router user reference manual 149 configuring simple routing policies redistributing directly attached networks routes to directly attached networks are redistributed to another routing protocol such as rip or ospf by the following command. The network parameter specifies a set of ...
Page 174
Chapter 11: routing policy configuration guide 150 digital gigaswitch/router user reference manual redistributing ospf to rip for the purposes of route redistribution and import-export policies, ospf intra- and inter- area routes are referred to as ospf routes, and external routes redistributed into...
Page 175
Digital gigaswitch/router user reference manual 151 configuring simple routing policies • determine its rip configuration exporting a given static route to all rip interfaces router r1 has several static routes of which one is the default route. We would export this default route over all rip interf...
Page 176
Chapter 11: routing policy configuration guide 152 digital gigaswitch/router user reference manual exporting all static routes to all rip interfaces router r1 has several static routes. We would export these routes over all rip interfaces. Exporting all static routes except the default route to all ...
Page 177
Digital gigaswitch/router user reference manual 153 configuring simple routing policies • determine its ospf configuration exporting all interface & static routes to ospf router r1 has several static routes. We would like to export all these static routes and direct-routes (routes to connected netwo...
Page 178
Chapter 11: routing policy configuration guide 154 digital gigaswitch/router user reference manual router r1 would like to export all rip, interface, and static routes to ospf. Router r1 would also like to export interface, static, rip, ospf, and ospf-ase routes into rip. Configuring advanced routin...
Page 179
Digital gigaswitch/router user reference manual 155 configuring advanced routing policies • route filter - this component provides the means to define a filter for the routes to be distributed. Routes that match a filter are considered as eligible for redistribution. This can be done using one of tw...
Page 180
Chapter 11: routing policy configuration guide 156 digital gigaswitch/router user reference manual creating an export destination to create an export destination, enter one the following commands in configure mode: creating an export source to create an export source, enter one of the following comm...
Page 181
Digital gigaswitch/router user reference manual 157 configuring advanced routing policies to create route import policies, enter the following command in configure mode: the is the identifier of the import-source that determines the source of the imported routes. If no routes from a particular sourc...
Page 182
Chapter 11: routing policy configuration guide 158 digital gigaswitch/router user reference manual creating an aggregate route route aggregation is a method of generating a more general route, given the presence of a specific route. The routing process does not perform any aggregation unless explici...
Page 183
Digital gigaswitch/router user reference manual 159 configuring advanced routing policies the is the identifier of the route-filter associated with this aggregate. If there is more than one route-filter for any aggregate-destination and aggregate-source combination, then the ip-router policy aggr-ge...
Page 184
Ch apte r 11: routin g po lic y c onfigu ration guide 1 6 0 d igit al gigasw it ch /route r us e r refe rence m a nu al figure 17. Exporting to rip internet r6 r42 r41 r1 r2 r3 r7 135.3.1.1/24 135.3.2.1/24 135.3.3.1/24 140.1.1.4/24 140.1.1.1/24 130.1.1.1/16 130.1.1.3/16 120.190.1.1/16 120.190.1.2/16...
Page 185
Digital gigaswitch/router user reference manual 161 configuring advanced routing policies the following configuration commands for router r1 • determine the ip address for each interface. • specify the static routes configured on the router. • determine its rip configuration. !++++++++++++++++++++++...
Page 186
Chapter 11: routing policy configuration guide 162 digital gigaswitch/router user reference manual importing a selected subset of routes from one rip trusted gateway router r1 has several rip peers. Router r41 has an interface on the network 10.51.0.0. By default, router r41 advertises network 10.51...
Page 187
Digital gigaswitch/router user reference manual 163 configuring advanced routing policies example 2: importing from ospf due to the nature of ospf, only the importation of ase routes may be controlled. Ospf intra-and inter-area routes are always imported into the gsr routing table with a preference ...
Page 188
Ch apte r 11: routin g po lic y c onfigu ration guide 1 6 4 d igit al gigasw it ch /route r us e r refe rence m a nu al figure 18. Exporting to ospf bgp r1 r2 r3 r41 r42 r6 r11 a r e a b a c k b o n e a r e a 140.1.0.0 (ri p v2 ) 140.1.1.1/24 140.1.2.1/24 140.1.5/24 140.1.4/24 190.1.1.1/16 120.190.1...
Page 189
Digital gigaswitch/router user reference manual 165 configuring advanced routing policies the following configuration commands for router r1: • determine the ip address for each interface • specify the static routes configured on the router • determine its ospf configuration importing a selected sub...
Page 190
Chapter 11: routing policy configuration guide 166 digital gigaswitch/router user reference manual examples of export policies example 1: exporting to rip exporting to rip is controlled by any of protocol, interface or gateway. If more than one is specified, they are processed from most general (pro...
Page 191
Digital gigaswitch/router user reference manual 167 configuring advanced routing policies • determine its rip configuration !++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ! Create the various ip interfaces. !++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ...
Page 192
Chapter 11: routing policy configuration guide 168 digital gigaswitch/router user reference manual exporting a given static route to all rip interfaces router r1 has several static routes, of which one is the default route. We would export this default route over all rip interfaces. 1. Create a rip ...
Page 193
Digital gigaswitch/router user reference manual 169 configuring advanced routing policies 2. Create a static export source since we would like to export static routes. 3. Create a rip export source since we would like to export rip routes. 4. Create a direct export source since we would like to expo...
Page 194
Chapter 11: routing policy configuration guide 170 digital gigaswitch/router user reference manual 5. Create the export-policy, redistributing all static routes reachable over interface 130.1.1.1 and all (rip, direct) routes into rip. Exporting aggregate-routes into rip in the configuration shown in...
Page 195
Digital gigaswitch/router user reference manual 171 configuring advanced routing policies 5. Create a aggregate export source since we would to export/redistribute an aggregate/summarized route. 6. Create a rip export source since we would like to export rip routes. 7. Create a direct export source ...
Page 196
Chapter 11: routing policy configuration guide 172 digital gigaswitch/router user reference manual the following configuration commands for router r1: • determine the ip address for each interface • specify the static routes configured on the router • determine its ospf configuration exporting all i...
Page 197
Digital gigaswitch/router user reference manual 173 configuring advanced routing policies 2. Create a ospf export destination for type-2 routes since we would like to redistribute certain routes into ospf as type 2 ospf-ase routes. 3. Create a static export source since we would like to export stati...
Page 198
Chapter 11: routing policy configuration guide 174 digital gigaswitch/router user reference manual 3. Create a ospf export destination for type-2 routes. 4. Create a ospf export destination for type-2 routes with a tag of 100. 5. Create a rip export source. 6. Create a static export source. 7. Creat...
Page 199
Digital gigaswitch/router user reference manual 175 configuring advanced routing policies 12. Create the export-policy for redistributing all interface, rip, static, ospf and ospf- ase routes into rip. Ip-router policy export destination ripexpdst source statexpsrc network all ip-router policy expor...
Page 201: Chapter 12
Digital gigaswitch/router user reference manual 177 chapter 12 multicast routing configuration guide ip multicast overview multicast routing on the gsr is supported through dvmrp and igmp. Igmp is used to determine host membership on directly attached subnets. Dvmrp is used to determine forwarding o...
Page 202
Chapter 12: multicast routing configuration guide 178 digital gigaswitch/router user reference manual the gsr allows per-interface control of the host query interval and response time. Query interval defines the time between igmp queries. Response time defines the time the gsr will wait for host res...
Page 203: Configuring Igmp
Digital gigaswitch/router user reference manual 179 configuring igmp configuring igmp you configure igmp on the gsr by performing the following configuration tasks: • creating ip interfaces • setting global parameters that will be used for all the interfaces on which dvmrp is enabled • configuring i...
Page 204: Configuring Dvmrp
Chapter 12: multicast routing configuration guide 180 digital gigaswitch/router user reference manual configuring igmp response wait time you can configure the gsr with a wait time for igmp host membership responses which is different from the default. The wait time you set then applies to all ports...
Page 205
Digital gigaswitch/router user reference manual 181 configuring dvmrp starting and stopping dvmrp dvmrp is disabled by default on the gsr. To start or stop dvmrp, enter one of the following commands in configure mode: configuring dvmrp on an interface dvmrp can be controlled/configured on per-interf...
Page 206
Chapter 12: multicast routing configuration guide 182 digital gigaswitch/router user reference manual configuring the dvmrp routing metric you can configure the dvmrp routing metric associated with a set of destinations for dvmrp reports. The default metric is 1. To configure the dvmrp routing metri...
Page 207
Digital gigaswitch/router user reference manual 183 configuring dvmrp to prevent the gsr from forwarding any data destined to a scoped group on an interface, enter the following command in the configure mode: configuring a dvmrp tunnel the gsr supports dvmrp tunnels to the mbone (the multicast backb...
Page 208: Monitoring Igmp & Dvmrp
Chapter 12: multicast routing configuration guide 184 digital gigaswitch/router user reference manual monitoring igmp & dvmrp you can monitor igmp and dvmrp information on the gsr. To display igmp and dvmrp information, enter the following commands in the enable mode. Show all interfaces running dvm...
Page 209: Configuration Examples
Digital gigaswitch/router user reference manual 185 configuration examples configuration examples the following is a sample gsr configuration for dvmrp and igmp. Seven subnets are created. Igmp is enabled on 4 ip interfaces. The igmp query interval is set to 30 seconds. Dvmrp is enabled on 5 ip inte...
Page 211: Chapter 13
Digital gigaswitch/router user reference manual 187 chapter 13 ip policy-based forwarding configuration guide overview you can configure the gsr to route ip packets according to policies that you define. Ip- policy-based routing allows network managers to engineer traffic to make the most efficient ...
Page 212: Configuring Ip Policies
Chapter 13: ip policy-based forwarding configuration guide 188 digital gigaswitch/router user reference manual for example, you can set up an ip policy to send packets originating from a certain network through a firewall, while letting other packets bypass the firewall. Using ip policies, sites tha...
Page 213
Digital gigaswitch/router user reference manual 189 configuring ip policies associating the profile with an ip policy once you have defined a profile with the acl command, you associate the profile with an ip policy by entering one or more ip-policy statements. An ip-policy statement specifies the n...
Page 214
Chapter 13: ip policy-based forwarding configuration guide 190 digital gigaswitch/router user reference manual for example, the following commands create an ip policy called “p3”, which consists of two ip policy statements. The ip policy permit statement has a sequence number of 1, which means it is...
Page 215
Digital gigaswitch/router user reference manual 191 configuring ip policies to set the ip policy action with respect to dynamic or statically configured routes, enter one of the following commands in configure mode: checking the availability of next-hop gateways the gsr can check the availability of...
Page 216
Chapter 13: ip policy-based forwarding configuration guide 192 digital gigaswitch/router user reference manual applying an ip policy to an interface after you define the ip policy, it must be applied to an inbound ip interface. Once the ip policy is applied to the interface, packets start being forw...
Page 217
Digital gigaswitch/router user reference manual 193 ip policy configuration examples in the sample configuration in figure 19 , the policy router is configured to divide traffic originating within the corporate network between different isps (100.1.1.1 and 200.1.1.1). Figure 19. Using an ip policy t...
Page 218
Chapter 13: ip policy-based forwarding configuration guide 194 digital gigaswitch/router user reference manual prioritizing service to customers an isp can use policy-based routing on an access router to supply different customers with different levels of service. The sample configuration in figure ...
Page 219
Digital gigaswitch/router user reference manual 195 ip policy configuration examples the following is the ip policy configuration for the policy router in figure 20 : authenticating users through a firewall you can define an ip policy that authenticates packets from certain users via a firewall befo...
Page 220
Chapter 13: ip policy-based forwarding configuration guide 196 digital gigaswitch/router user reference manual the following is the ip policy configuration for the policy router in figure 21 : firewall load balancing the next hop gateway can be selected by the following information in the ip packet:...
Page 221: Monitoring Ip Policies
Digital gigaswitch/router user reference manual 197 monitoring ip policies the following is the configuration for policy router 1 in figure 22 . The following is the configuration for policy router 2 in figure 22 . Monitoring ip policies the ip-policy show command reports information about active ip...
Page 222
Chapter 13: ip policy-based forwarding configuration guide 198 digital gigaswitch/router user reference manual to display ip policy information, enter the following commands in enable mode. For example, to display information about an active ip policy called “p1”, enter the following command in enab...
Page 223
Digital gigaswitch/router user reference manual 199 monitoring ip policies legend: 1. The name of the ip policy. 2. The interface where the ip policy was applied. 3. The load distribution setting for ip-policy statements that have more than one next- hop gateway; either first available (the default)...
Page 225: Chapter 14
Digital gigaswitch/router user reference manual 201 chapter 14 network address translation configuration guide overview note: some commands in this facility require updated gsr hardware. Please refer to the release notes for details. Network address translation (nat) allows an ip address used within...
Page 226: Configuring Nat
Chapter 14: network address translation configuration guide 202 digital gigaswitch/router user reference manual the gsr allows you to create the following nat address bindings: • static, one-to-one binding of inside, local address or address pool to outside, global address or address pool. A static ...
Page 227: Managing Dynamic Bindings
Digital gigaswitch/router user reference manual 203 managing dynamic bindings setting nat rules static you create nat static bindings by entering the following command in configure mode. Dynamic you create nat dynamic bindings by entering the following command in configure mode:. For dynamic address...
Page 228: Nat And Ftp
Chapter 14: network address translation configuration guide 204 digital gigaswitch/router user reference manual nat and ftp file transfer protocol (ftp) packets require special handling with nat, because the ftp port command packets contain ip address information within the data portion of the packe...
Page 229
Digital gigaswitch/router user reference manual 205 configuration examples the first step is to create the interfaces: next, define the interfaces to be nat “inside” or “outside”: then, define the nat static rules: using static nat static nat can be used when the local and global ip addresses are to...
Page 230
Chapter 14: network address translation configuration guide 206 digital gigaswitch/router user reference manual dynamic configuration the following example configures a dynamic address binding for inside addresses 10.1.1.0/24 to outside address 192.50.20.0/24: the first step is to create the interfa...
Page 231
Digital gigaswitch/router user reference manual 207 configuration examples dynamic bindings are removed when the flow count for that binding goes to zero or the timeout has been reached. The free globals are used again for the next packet. A typical problem is that if there are more local ip address...
Page 232
Chapter 14: network address translation configuration guide 208 digital gigaswitch/router user reference manual using dynamic nat with ip overload dynamic nat with ip overload can be used when the local network (inside network) will be initializing the connections using tcp or udp protocols. It crea...
Page 233
Digital gigaswitch/router user reference manual 209 configuration examples next, define the interfaces to be nat “inside” or “outside”: then, define the nat dynamic rules by first creating the source acl pool and then configuring the dynamic bindings: using dynamic nat with matching interface redund...
Page 235: Chapter 15
Digital gigaswitch/router user reference manual 211 chapter 15 web hosting configuration guide overview accessing information on web sites for both work or personal purposes is becoming a normal practice for an increasing number of people. For many companies, fast and efficient web access is importa...
Page 236: Load Balancing
Chapter 15: web hosting configuration guide 212 digital gigaswitch/router user reference manual load balancing note: some commands in this facility require updated gsr hardware. Please refer to the release notes for details. You can use the load balancing feature on the gsr to distribute session loa...
Page 237
Digital gigaswitch/router user reference manual 213 load balancing specifying load balancing policy (optional) the default policy for distributing workload among the load balancing servers is “round- robin,” where the gsr selects the server on a rotating basis without regard to the load on individua...
Page 238
Chapter 15: web hosting configuration guide 214 digital gigaswitch/router user reference manual to set the status of a load balancing server, enter the following command in enable mode. Load balancing and ftp file transfer protocol (ftp) packets require special handling with load balancing, because ...
Page 239
Digital gigaswitch/router user reference manual 215 load balancing setting timeouts for load balancing mappings a mapping between a host (source) and a load-balancing server (destination) times out after a certain period. You can specify the timeout for source-destination load balancing mappings. To...
Page 240
Chapter 15: web hosting configuration guide 216 digital gigaswitch/router user reference manual configuration examples this section shows examples of load balancing configurations. Web hosting with one virtual group and multiple destination servers in the following example, a company web site is est...
Page 241
Digital gigaswitch/router user reference manual 217 load balancing web hosting with multiple virtual groups and multiple destination servers in the following example, two different servers are used to provide different services for a site. The network shown above can be created with the following lo...
Page 242
Chapter 15: web hosting configuration guide 218 digital gigaswitch/router user reference manual virtual ip address ranges isps who provide web hosting services for their clients require a large number of virtual ip addresses (vips). The load-balance create vip-range-name and load-balance add host- t...
Page 243: Web Caching
Digital gigaswitch/router user reference manual 219 web caching the network shown in the previous example can be created with the following load- balance commands: web caching web caching provides a way to store frequently accessed web objects on a cache of local servers. Each http request is transp...
Page 244
Chapter 15: web hosting configuration guide 220 digital gigaswitch/router user reference manual to create the cache group, enter the following command in configure mode: specifying the client(s) for the cache group (optional) you can explicitly specify the hosts whose http requests are or are not re...
Page 245
Digital gigaswitch/router user reference manual 221 web caching configuration example in the following example, a cache group of seven local servers is configured to store web objects for users in the local network: the following commands configure the cache group ‘cache1’ that contains the servers ...
Page 246
Chapter 15: web hosting configuration guide 222 digital gigaswitch/router user reference manual bypassing cache servers some web sites require source ip address authentication for user access, therefore http requests for these sites cannot be redirected to the cache servers. To specify the sites for...
Page 247
Digital gigaswitch/router user reference manual 223 web caching monitoring web-caching to display web-caching information, enter the following commands in enable mode. Show information for all caching policies and all server lists. Web-cache show all show caching policy information. Web-cache show c...
Page 249: Chapter 16
Digital gigaswitch/router user reference manual 225 chapter 16 ipx routing configuration guide ipx routing overview the internetwork packet exchange (ipx) is a datagram connectionless protocol for the novell netware environment. You can configure the gsr for ipx routing and sap. Routers interconnect...
Page 250
Chapter 16: ipx routing configuration guide 226 digital gigaswitch/router user reference manual rip (routing information protocol) ipx routers use rip to create and dynamically maintain a database of internetwork routing information. Rip allows a router to exchange routing information with a neighbo...
Page 251: Configuring Ipx Rip & Sap
Digital gigaswitch/router user reference manual 227 configuring ipx rip & sap • routers make periodic broadcasts to make sure all other routers are aware of the internetwork configuration • routers perform broadcasting whenever they detect a change in the internetwork configurations configuring ipx ...
Page 252
Chapter 16: ipx routing configuration guide 228 digital gigaswitch/router user reference manual ipx addresses the ipx address is a 12-byte number divided into three parts. The first part is the 4-byte (8-character) ipx external network number. The second part is the 6-byte (12-character) node number...
Page 253: Configuring Ipx Routing
Digital gigaswitch/router user reference manual 229 configuring ipx routing • 802.3: 802.3 encapsulation method used within novell ipx environments • 802.2: 802.2 encapsulation method used within novell ipx environments configuring ipx routing by default, ipx routing is enabled on the gsr. Enabling ...
Page 254
Chapter 16: ipx routing configuration guide 230 digital gigaswitch/router user reference manual configuring static sap table entries servers in an ipx network use sap to advertise services via broadcast packets. Services from servers are stored in the server information table. If you want to have a ...
Page 255
Digital gigaswitch/router user reference manual 231 configuring ipx routing creating an ipx type 20 access control list ipx type 20 access control lists control the forwarding of ipx type 20 packets. To create an ipx type 20 access control list, enter the following command in configure mode: creatin...
Page 256: Monitoring An Ipx Network
Chapter 16: ipx routing configuration guide 232 digital gigaswitch/router user reference manual creating an ipx rip access control list ipx rip access control lists control which rip updates are allowed. To create an ipx rip access control list, perform the following task in the configure mode: once...
Page 257: Configuration Examples
Digital gigaswitch/router user reference manual 233 configuration examples configuration examples this example performs the following configuration: • creates ipx interfaces • adds static rip routes • adds static sap entries • adds a rip access list • adds a sap access list • adds a gns access list ...
Page 259: Chapter 17
Digital gigaswitch/router user reference manual 235 chapter 17 access control list configuration guide note: some commands in this facility require updated gsr hardware. Please refer to the release notes for details. This chapter explains how to configure and use access control lists (acls) on the g...
Page 260: Acl Basics
Chapter 17: access control list configuration guide 236 digital gigaswitch/router user reference manual acl basics an acl consists of one or more rules describing a particular type of ip or ipx traffic. Acls can be simple, consisting of only one rule, or complicated with many rules. Each rule tells ...
Page 262
Chapter 17: access control list configuration guide 238 digital gigaswitch/router user reference manual how acl rules are evaluated for an acl with multiple rules, the ordering of the rules is important. When the gsr checks a packet against an acl, it goes through each rule in the acl sequentially. ...
Page 263
Digital gigaswitch/router user reference manual 239 acl basics with the implicit deny rule, this acl actually has three rules: if a packet comes in and doesn't match the first two rules, the packet is dropped. This is because the third rule (the implicit deny rule) matches all packets. Although the ...
Page 264
Chapter 17: access control list configuration guide 240 digital gigaswitch/router user reference manual allowing external responses to established tcp connections typically organizations that are connected to the outside world implement acls to deny access to the internal network. If an internal use...
Page 265
Digital gigaswitch/router user reference manual 241 creating and modifying acls editing acls offline you can create and edit acls on a remote host and then upload them to the gsr with tftp or rcp. With this method, you use a text editor on a remote host to edit, delete, replace, or reorder acl rules...
Page 266: Using Acls
Chapter 17: access control list configuration guide 242 digital gigaswitch/router user reference manual maintaining acls using the acl editor in addition to the traditional method of maintaining acls using tftp or rcp, the gsr provides a simpler and more user-friendly mechanism to maintain acls: the...
Page 267
Digital gigaswitch/router user reference manual 243 using acls restriction does not prevent you from specifying many rules in an acl. You just have to put all of these rules into one acl and apply it to an interface. When a packet comes into the gsr at an interface where an inbound acl is applied, t...
Page 268
Chapter 17: access control list configuration guide 244 digital gigaswitch/router user reference manual to apply an acl to a service, enter the following command in configure mode: using acls as profiles you can use the acl command to define a profile. A profile specifies the criteria that addresses...
Page 269
Digital gigaswitch/router user reference manual 245 using acls • only certain acl rule parameters are relevant for each configuration command. For example, the configuration command to create nat address pools for dynamic bindings (the nat create dynamic command) only looks at the source ip address ...
Page 270
Chapter 17: access control list configuration guide 246 digital gigaswitch/router user reference manual using profile acls with the traffic rate limiting facility traffic rate limiting is a mechanism that allows you to control bandwidth usage of incoming traffic on a per-flow basis. A flow meeting c...
Page 271
Digital gigaswitch/router user reference manual 247 using acls the following command creates a profile acl called local. The local profile specifies as its selection criteria the range of ip addresses in network 10.1.1.0/24.. Note: when a profile acl is defined for dynamic nat, only the source ip ad...
Page 272
Chapter 17: access control list configuration guide 248 digital gigaswitch/router user reference manual using profile acls with the web caching facility web caching is the gsr’s ability to direct http requests for frequently accessed web objects to local cache servers, rather than to the internet. S...
Page 273: Enabling Acl Logging
Digital gigaswitch/router user reference manual 249 enabling acl logging this command creates a profile acl called prof5 that uses as its selection criteria all packets with a source address of 1.2.3.4 and a destination address of 10.10.10.10: to have packets matching profile acl prof5’s selection c...
Page 274: Monitoring Acls
Chapter 17: access control list configuration guide 250 digital gigaswitch/router user reference manual monitoring acls the gsr provides a display of acl configurations active in the system. To display acl information, enter the following commands in enable mode. Show all acls. Acl show all show a s...
Page 275: Chapter 18
Digital gigaswitch/router user reference manual 251 chapter 18 security configuration guide security overview the gsr provides security features that help control access to the gsr and filter traffic going through the gsr. Access to the gsr can be controlled by: • enabling radius • enabling tacacs •...
Page 276
Chapter 18: security configuration guide 252 digital gigaswitch/router user reference manual configuring gsr access security this section describes the following methods of controlling access to the gsr: • radius • tacacs • tacacs plus • passwords configuring radius you can secure login or enable mo...
Page 277
Digital gigaswitch/router user reference manual 253 configuring gsr access security monitoring radius you can monitor radius configuration and statistics within the gsr. To monitor radius, enter the following commands in enable mode: configuring tacacs in addition, enable mode access to the gsr can ...
Page 278
Chapter 18: security configuration guide 254 digital gigaswitch/router user reference manual configuring tacacs plus you can secure login or enable mode access to the gsr by enabling a tacacs plus client. A tacacs plus server responds to the gsr tacacs plus client to provide authentication. You can ...
Page 279: Layer-2 Security Filters
Digital gigaswitch/router user reference manual 255 layer-2 security filters monitoring tacacs plus you can monitor tacacs plus configuration and statistics within the gsr. To monitor tacacs plus, enter the following commands in enable mode: configuring passwords the gsr provides password authentica...
Page 280
Chapter 18: security configuration guide 256 digital gigaswitch/router user reference manual • secure port filters a secure filter shuts down access to the gsr based on mac addresses. All packets received by a port are dropped. When combined with static entries, however, these filters can be used to...
Page 281
Digital gigaswitch/router user reference manual 257 layer-2 security filters to configure layer-2 port address lock filters, enter the following commands in configure mode: configuring layer-2 static entry filters static entry filters allow or force traffic to go to a set of destination ports based ...
Page 282
Chapter 18: security configuration guide 258 digital gigaswitch/router user reference manual you can combine secure port filters with static entries in the following ways: • combine a source secure port filter with a source static entry to drop all received traffic but allow any frame coming from sp...
Page 283
Digital gigaswitch/router user reference manual 259 layer-2 security filters layer-2 filter examples figure 23. Source filter example example 1: address filters source filter: the consultant is not allowed to access any file servers. The consultant is only allowed to interact with the engineers on t...
Page 284
Chapter 18: security configuration guide 260 digital gigaswitch/router user reference manual destination static entry: restrict “login multicasts” originating from the engineering segment (port et.1.1) from reaching the finance servers. Or flow static entry: restrict “login multicasts” originating f...
Page 285
Digital gigaswitch/router user reference manual 261 layer-3 access control lists (acls) destination secure port: to block access to all file servers on all ports from port et.1.1 use the following command: to allow all engineers access to the engineering servers, you must “punch” a hole through the ...
Page 287: Chapter 19
Digital gigaswitch/router user reference manual 263 chapter 19 qos configuration guide qos & layer-2/layer-3/layer-4 flow overview the gsr allows network managers to identify traffic and set quality of service (qos) policies without compromising wire speed performance. The gsr can guarantee bandwidt...
Page 288
Chapter 19: qos configuration guide 264 digital gigaswitch/router user reference manual within the gsr, qos policies are used to classify layer-2, layer-3, and layer-4 traffic into the following priorities: • control • high • medium • low by assigning priorities to network traffic, you can ensure th...
Page 289
Digital gigaswitch/router user reference manual 265 traffic prioritization for layer-2 flows gsr queuing policies you can use one of two queuing policies on the gsr: • strict priority : assures the higher priorities of throughput but at the expense of lower priorities. For example, during heavy load...
Page 290
Chapter 19: qos configuration guide 266 digital gigaswitch/router user reference manual configuring layer-2 qos when applying qos to a layer-2 flow, priority can be assigned as follows: • the frame gets assigned a priority within the switch. Select “low, medium, high or control”. • the frame gets as...
Page 291
Digital gigaswitch/router user reference manual 267 traffic prioritization for layer-3 & layer-4 flows setting an ip qos policy to set a qos policy on an ip traffic flow, enter the following command in configure mode: for example, the following command assigns control priority to any traffic coming ...
Page 292: Tos Rewrite
Chapter 19: qos configuration guide 268 digital gigaswitch/router user reference manual specifying precedence for an ipx qos policy to specify the precedence for an ipx qos policy, enter the following command in configure mode: configuring gsr queueing policy the gsr queuing policy is set on a syste...
Page 293
Digital gigaswitch/router user reference manual 269 tos rewrite the tos octet part of the ip specification, however, has not been widely employed in the past. The ietf is looking into using the tos octet to help resolve ip quality problems. Some newer routing protocols, like ospf and is-is, are desi...
Page 294
Chapter 19: qos configuration guide 270 digital gigaswitch/router user reference manual the and parameters use values ranging from 0 to 255. They are used in conjunction with each other to define which bit in the field of the packet is significant. The value ranges from 0 to 7 and is the value that ...
Page 295: Monitoring Qos
Digital gigaswitch/router user reference manual 271 monitoring qos the following example will rewrite the tos precedence and the tos fields to 5 and 30 if the incoming packet is from the 10.10.10.0/24 network with the tos precedence field set to 2 and the tos field set to 7. (in this example, the mb...
Page 296: Limiting Traffic Rate
Chapter 19: qos configuration guide 272 digital gigaswitch/router user reference manual limiting traffic rate note: some commands in this facility require updated gsr hardware. Please refer to the release notes for details. Traffic rate limiting provides the ability to control the usage of a fundame...
Page 297
Digital gigaswitch/router user reference manual 273 limiting traffic rate traffic from two interfaces, ‘ipclient1’ with ip address 1.2.2.2 and ‘ipclient2’ with ip address 3.1.1.1, is restricted to 10 mbps for each flow with the following configuration: displaying rate limit information to show infor...
Page 299: Chapter 20
Digital gigaswitch/router user reference manual 275 chapter 20 performance monitoring guide performance monitoring overview the gsr is a full wire-speed layer-2, 3 and 4 switching router. As packets enter the gsr, layer-2, 3, and 4 flow tables are populated on each line card. The flow tables contain...
Page 300
Chapter 20: performance monitoring guide 276 digital gigaswitch/router user reference manual show all l2 flows (for ports in flow- bridging mode. L2-tables show all-flows show information about the master mac table. L2-tables show mac-table-stats show information about a particular mac address. L2-t...
Page 301
Digital gigaswitch/router user reference manual 277 configuring the gsr for port mirroring configuring the gsr for port mirroring the gsr allows you to monitor activity with port mirroring. Port mirroring allows you to monitor the performance and activities of one or more ports on the gsr or for tra...
Page 303: Chapter 21
Digital gigaswitch/router user reference manual 279 chapter 21 rmon configuration guide rmon overview you can employ remote network monitoring (rmon) in your network to help monitor traffic at remote points on the network. With rmon, data collection and processing is done with a remote probe, namely...
Page 304
Chapter 21: rmon configuration guide 280 digital gigaswitch/router user reference manual configuring and enabling rmon by default, rmon is disabled on the gsr. To configure and enable rmon on the gsr, follow these steps: 1. Turn on the lite, standard, or professional rmon groups by entering the rmon...
Page 305
Digital gigaswitch/router user reference manual 281 configuring and enabling rmon the next sections describe lite, standard, and professional rmon groups and control tables. Rmon groups the rmon mib groups are defined in rfcs 1757 (rmon 1) and 2021 (rmon 2). On the gsr, you can configure one or more...
Page 306
Chapter 21: rmon configuration guide 282 digital gigaswitch/router user reference manual lite rmon groups this section describes the rmon groups that are enabled when you specify the lite support level. The lite rmon groups are shown in the table below. Standard rmon groups this section describes th...
Page 307
Digital gigaswitch/router user reference manual 283 configuring and enabling rmon the professional rmon groups are shown in the table below. Control tables many rmon groups contain both control and data tables. Control tables specify what statistics are to be collected. For example, you can specify ...
Page 308: Using Rmon
Chapter 21: rmon configuration guide 284 digital gigaswitch/router user reference manual if you choose to create default control tables, entries are created in the control tables for each port on the gsr for the following groups: lite groups: etherstats history standard groups: host matrix professio...
Page 309: Configuring Rmon Groups
Digital gigaswitch/router user reference manual 285 configuring rmon groups for example, use the rmon show protocol-distribution command to see the kinds of traffic received on a given port: in the example output above, only http and icmp traffic is being received on this port. To find out which hos...
Page 311
Digital gigaswitch/router user reference manual 287 configuring rmon groups configuration examples this section shows examples of configuration commands that specify an event that generates an snmp trap and the alarm condition that triggers the event. The rmon alarm group allows the gsr to poll itse...
Page 312
Chapter 21: rmon configuration guide 288 digital gigaswitch/router user reference manual the following examples configure the gsr to create an event when a module is hot swapped into the chassis or any new ip interface is configured. The managed object iftablelastchanged from rfc 2233) has an object...
Page 313: Displaying Rmon Information
Digital gigaswitch/router user reference manual 289 displaying rmon information displaying rmon information the cli rmon show commands allow you to display the same rmon statistics that can be viewed from a management station. To display rmon statistics for the gsr, use the following cli command lin...
Page 314
Chapter 21: rmon configuration guide 290 digital gigaswitch/router user reference manual 1 to display ethernet statistics and related statistics for wan ports, rmon has to be activated on that port. To activate rmon on a port, use the frame-relay define service or ppp define service command, and the...
Page 315
Digital gigaswitch/router user reference manual 291 displaying rmon information the following shows the same rmon show hosts command with a filter applied so that only hosts with inpkts greater than 500 are displayed: rmon cli filters can only be used with the following groups: • hosts • matrix • pr...
Page 316: Troubleshooting Rmon
Chapter 21: rmon configuration guide 292 digital gigaswitch/router user reference manual troubleshooting rmon if you are not seeing the information you expected with an rmon show command, or if the network management station is not collecting the desired statistics, first check that the port is up. ...
Page 317: Allocating Memory to Rmon
Digital gigaswitch/router user reference manual 293 allocating memory to rmon if you or your application are unable to crate a control table row, check the snmp show status output for errors. Make sure that there is a read-write community string. Verify that you can ping the gsr and that no acls pre...
Page 318
Chapter 21: rmon configuration guide 294 digital gigaswitch/router user reference manual any memory allocation failures are reported. The following is an example of the information shown with the rmon show status command: to set the amount of memory allocated to rmon, use the following cli command i...
Page 319: Chapter 22
Digital gigaswitch/router user reference manual 295 chapter 22 wan configuration guide this chapter provides an overview of wide area network (wan) applications as well as an overview of both frame relay and ppp configuration for the gsr. In addition, you can view an example of a multi-router wan co...
Page 320
Chapter 22: wan configuration guide 296 digital gigaswitch/router user reference manual for example, you would specify a frame relay serial wan port located at router slot 4, port 1, on vc 100 as “se.4.1.100”. Using the same approach, a ppp high-speed serial interface (hssi) wan port located at rout...
Page 321
Digital gigaswitch/router user reference manual 297 wan overview the following command line displays an example for a port: the following command line displays an example for a vlan: mapped addresses mapped peer ip/ipx addresses are very similar to static addresses in that inarp is disabled for fram...
Page 322
Chapter 22: wan configuration guide 298 digital gigaswitch/router user reference manual the following command lines display examples for a port and a vc: the following command line displays an example for a vlan: forcing bridged encapsulation wan for the gsr has the ability to force bridged packet e...
Page 323
Digital gigaswitch/router user reference manual 299 wan overview the “no history” option. If the compression statistics do not improve or show a ration of less than 1, then compression should be disabled altogether. Average packet size in most cases, the larger the packet size, the better the potent...
Page 324
Chapter 22: wan configuration guide 300 digital gigaswitch/router user reference manual example configurations the following command line displays an example for frame relay: the following command line displays an example for ppp: packet encryption packet encryption allows data to travel through uns...
Page 325
Digital gigaswitch/router user reference manual 301 wan overview of the following sorts of attributes to interfaces on your network, you can begin to shape your network’s qos configuration to use existing bandwidth more effectively. Source filtering and acls source filtering and acls can be applied ...
Page 326: Frame Relay Overview
Chapter 22: wan configuration guide 302 digital gigaswitch/router user reference manual random early discard (red) red allows network operators to manage traffic during periods of congestion based on policies. Random early discard (red) works with tcp to provide fair reductions in traffic proportion...
Page 327
Digital gigaswitch/router user reference manual 303 configuring frame relay interfaces for the gsr virtual circuits you can think of a virtual circuit (vc) as a “virtual interface” (sometimes referred to as “sub-interfaces”) over which frame relay traffic travels. Frame relay interfaces on the gsr u...
Page 328
Chapter 22: wan configuration guide 304 digital gigaswitch/router user reference manual then, you must set up a frame relay virtual circuit (vc). The following command line displays a simplified example of a vc definition: setting up a frame relay service profile once you have defined the type and l...
Page 329
Digital gigaswitch/router user reference manual 305 monitoring frame relay wan ports monitoring frame relay wan ports once you have configured your frame relay wan interface(s), you can use the cli to monitor status and statistics for your wan ports. The following table describes the monitoring comm...
Page 330
Chapter 22: wan configuration guide 306 digital gigaswitch/router user reference manual suppose you wish to set up a service profile called “profile1” that includes the following characteristics: • committed burst value of 2 million and excessive burst value of 1 million • becn active shaping at 65 ...
Page 331
Digital gigaswitch/router user reference manual 307 point-to-point protocol (ppp) overview point-to-point protocol (ppp) overview because of its ability to quickly and easily accommodate ip and ipx protocol traffic, point- to-point protocol (ppp) routing has become a very important aspect of wan con...
Page 332: Configuring Ppp Interfaces
Chapter 22: wan configuration guide 308 digital gigaswitch/router user reference manual configuring ppp interfaces this section provides an overview of configuring a host of wan parameters and setting up wan interfaces. When working in the ppp environment, you must first define the type and location...
Page 333
Digital gigaswitch/router user reference manual 309 configuring ppp interfaces ppp traffic. The following command line displays all of the possible attributes used to define a ppp service profile: note: if it is necessary to specify a value for bridging, ip, and/or ipx, you must specify all three of...
Page 334
Chapter 22: wan configuration guide 310 digital gigaswitch/router user reference manual configuring multilink ppp bundles the multilink ppp (mlp) standard defines a method for grouping multiple physical ppp links into a logical pipe, called an “mlp bundle”. Large packets are fragmented and transmitt...
Page 335: Monitoring Ppp Wan Ports
Digital gigaswitch/router user reference manual 311 monitoring ppp wan ports monitoring ppp wan ports once you have configured your ppp wan interface(s), you can use the cli to monitor status and statistics for your wan ports. The following table describes the monitoring commands for wan interfaces,...
Page 336
Chapter 22: wan configuration guide 312 digital gigaswitch/router user reference manual suppose you wish to set up a service profile called “profile2” that includes the following characteristics: • bridging enabled • leave high-, low-, and medium-priority queue depths set to factory defaults • ip an...
Page 337: Wan Configuration Examples
Digital gigaswitch/router user reference manual 313 wan configuration examples wan configuration examples simple configuration file the following is an example of a simple configuration file used to test frame relay and ppp wan ports: for a broader, more application-oriented wan configuration exampl...
Page 338
Chapter 22: wan configuration guide 314 digital gigaswitch/router user reference manual multi-router wan configuration the following is a diagram of a multi-router wan configuration encompassing three subnets. From the diagram, you can see that r1 is part of both subnets 1 and 2; r2 is part of both ...
Page 339
Digital gigaswitch/router user reference manual 315 wan configuration examples router r1 configuration file the following configuration file applies to router r1. ---------------------------------------------------------------------- configuration for router r1 --------------------------------------...
Page 340
Chapter 22: wan configuration guide 316 digital gigaswitch/router user reference manual router r2 configuration file the following configuration file applies to router r2. ---------------------------------------------------------------------- configuration for router r2 -----------------------------...
Page 341
Digital gigaswitch/router user reference manual 317 wan configuration examples router r3 configuration file the following configuration file applies to router r3. ---------------------------------------------------------------------- configuration for router r3 --------------------------------------...
Page 342
Chapter 22: wan configuration guide 318 digital gigaswitch/router user reference manual router r4 configuration file the following configuration file applies to router r4. Router r5 configuration file the following configuration file applies to router r5. --------------------------------------------...
Page 343
Digital gigaswitch/router user reference manual 319 wan configuration examples router r6 configuration file the following configuration file applies to router r6. ---------------------------------------------------------------------- configuration for router r6 --------------------------------------...
Page 346
9032684-03 printed in u.S.A..