1. DL manuals
  2. Quidway
  3. Switch
  4. V100R006C00
  5. Configuration Manual

Quidway V100R006C00 Configuration Manual

Other manuals for V100R006C00: Configuration Manual

Summary of V100R006C00

  • Page 1

    Quidway s2700 series ethernet switches v100r006c00 configuration guide - ip service issue 01 date 2011-07-15 huawei technologies co., ltd..

  • Page 2

    Copyright © huawei technologies co., ltd. 2011. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any means without prior written consent of huawei technologies co., ltd. Trademarks and permissions and other huawei trademarks are trademarks of huawei te...

  • Page 3: About This Document

    About this document intended audience this document describes the configurations of the ip services of the s2700, including the basic knowledge and configurations of secondary ip addresses, dns, ip performance, basic ipv6 functions. By reading this document, you can learn the concepts and configurat...

  • Page 5: Contents

    Contents about this document.....................................................................................................................Ii 1 ip addresses configuration........................................................................................................1 1.1 introduction t...

  • Page 6

    2.6.2 configure an ip addresses for the interface............................................................................................18 2.6.3 enabling proxy arp within a vlan....................................................................................................18 2.6.4 checking ...

  • Page 7

    4.4.1 clearing dns entries..............................................................................................................................50 4.4.2 monitoring network operation status of dns.......................................................................................51 4.4.3 d...

  • Page 8

    6.5.1 example for configuring ipv6 dns.......................................................................................................79 quidway s2700 series ethernet switches configuration guide - ip service contents issue 01 (2011-07-15) huawei proprietary and confidential copyright © huawe...

  • Page 9: Ip Addresses Configuration

    1 ip addresses configuration about this chapter by assigning ip addresses to network devices, you can enable data communications between the network devices. 1.1 introduction to ip addresses ip is the core of the tcp/ip protocol suite. The packets of the transmission control protocol (tcp), user dat...

  • Page 10

    1.1 introduction to ip addresses ip is the core of the tcp/ip protocol suite. The packets of the transmission control protocol (tcp), user datagram protocol (udp), internet control message protocol (icmp), and internet group membership protocol (igmp) are all transmitted in the format of ip datagram...

  • Page 11

    1.3 configuring ip addresses for interfaces assigning an ip address to a device on a network enables the device to communicate with the other devices on the network. 1.3.1 establishing the configuration task this section describes the applicable environment, pre-configuration tasks, data preparation...

  • Page 13: 1.4 Configuration Examples

    Procedure l run the display ip interface [ brief ] [ interface-type [ interface-number ] ] command to check the ip configuration on the interface. L run the display interface [ interface-type [ interface-number ] ] command to check interface information. ----end 1.4 configuration examples this secti...

  • Page 14

    Data preparation to complete the configuration, you need the following data. L primary ip address and subnet mask of the vlanif interface l secondary ip address and subnet mask of the vlanif interface procedure step 1 set the ip address for vlanif 100 where ethernet 0/0/1 of the switch belongs. Syst...

  • Page 15

    Ip address 172.16.1.1 255.255.255.0 ip address 172.16.2.1 255.255.255.0 sub # interface ethernet0/0/1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 # return quidway s2700 series ethernet switches configuration guide - ip service 1 ip addresses configuration issue 01 (2011-07-15) huawei pro...

  • Page 16: Arp Configuration

    2 arp configuration about this chapter arp can map an ip address to a mac address and implements transmission of ethernet frames. 2.1 overview of arp an ethernet device must support arp. Arp implements dynamic mapping between layer 3 ip addresses and layer 2 mac addresses. 2.2 arp features supported...

  • Page 17: 2.1 Overview of Arp

    2.1 overview of arp an ethernet device must support arp. Arp implements dynamic mapping between layer 3 ip addresses and layer 2 mac addresses. Each host or device on the local area network (lan) can be configured a 32-bit ip address to communicate with others. The assigned ip address is independent...

  • Page 18: 2.3 Configuring Static Arp

    The switch enabled with proxy arp can also hide the details of the physical networks and implement the communication between hosts that are in different physical networks but on the same network segment. L intra-vlan proxy arp in the scenario where two users belong to the same vlan but user isolatio...

  • Page 19

    Pre-configuration tasks before configuring arp, complete the following tasks: l configuring physical parameters for the interface and ensuring that the status of the physical layer of the interface is up l configuring link layer protocol parameters for the interface and ensuring that the status of t...

  • Page 20: 2.4 Optimizing Dynamic Arp

    Context if static arp and the virtual router redundancy protocol (vrrp) are enabled on a device simultaneously, the virtual ip address of the vrrp backup group configured on the vlan interface cannot be the ip address contained in the static arp entries; otherwise, incorrect host routes are generate...

  • Page 21

    2.4.1 establishing the configuration task this section describes the applicable environment, pre-configuration tasks, data preparation, and configuration procedure for optimizing dynamic arp. Applicable environment dynamic arp is one of functions owned by a device or host. You do not need to run a c...

  • Page 22

    By default, the aging detection times of the dynamic arp entries is three, and the aging timeout period is 1200 seconds. Step 5 run: arp detect-mode unicast the interface is configured to send arp aging detection packets in unicast mode. By default, an interface sends arp aging detection packets in ...

  • Page 23

    Prerequisite the configurations of the arp function are complete. Procedure l run the display arp interface interface-type interface-number command to check information about arp mapping tables based on interfaces. L run the display arp statistics { all } command to check the statistics for arp entr...

  • Page 24

    2.5.2 configure an ip addresses for the interface the ip address assigned to a routed proxy arp-enabled interface must be on the same network segment with the ip address of the host on the lan to which this interface connects. Procedure step 1 run: system-view the system view is displayed. Step 2 ru...

  • Page 25

    Prerequisite the configurations of the routed proxy arp function are complete. Procedure l run the display arp interface interface-type interface-number command to check information about arp mapping tables based on interfaces. L run the display arp statistics command to check statistics about arp e...

  • Page 26

    2.6.2 configure an ip addresses for the interface the ip address assigned to an interface needs to be in the same network segment with the ip addresses of the users of the vlans associated to this interface. Procedure step 1 run: system-view the system view is displayed. Step 2 run: interface vlanif...

  • Page 27

    Prerequisite the configurations of the proxy arp within a vlan function are complete. Procedure l run the display arp interface interface-type interface-number command to check information about arp mapping tables based on interfaces. L run the display arp statistics command to check statistics abou...

  • Page 28

    2.7.2 configuring an ip addresses for the interface the ip address assigned to an interface needs to be in the same network segment with the ip addresses of the users of all the vlans associated to this interface. Procedure step 1 run: system-view the system view is displayed. Step 2 run: interface ...

  • Page 29: 2.8 Maintaining Arp

    Prerequisite the configurations of proxy arp between vlans are complete. Procedure l run the display arp interface interface-type interface-number command to check information about arp mapping tables based on interfaces. L run the display arp statistics command to check statistics about arp entries...

  • Page 30: 2.8.3 Debugging Arp

    Procedure l run the display arp interface interface-type interface-number command in any view to check the information about the arp mapping table based on interfaces. ----end 2.8.3 debugging arp this section describes arp debugging through the debugging command. Context caution debugging affects th...

  • Page 31

    L ge 0/0/1 should be added to vlan 2, and ge 0/0/2 should be added to vlan 3. L to adapt to fast changes of the network and ensure correct forwarding of packets, dynamic arp parameters should be set on vlanif 2 of the switch. L to ensure the security of the server and prevent invalid arp packets, a ...

  • Page 32

    L interface connecting the router and the switch, with the ip address being 10.2.2.3, subnet mask being 255.255.255.0, and mac address being 00e0-fc01-0000 procedure step 1 create a vlan and add an interface to the vlan. # create vlan 2 and vlan 3. System-view [quidway] vlan batch 2 3 # add ge 0/0/1...

  • Page 33

    Configuration files the following is the configuration file of the switch. # sysname quidway # vlan batch 2 to 3 # interface vlanif2 ip address 2.2.2.2 255.255.255.0 arp expire-time 60 arp detect-times 2 # interface vlanif3 ip address 10.2.2.2 255.255.255.0 # interface gigabitethernet0/0/1 port hybr...

  • Page 34

    2. Enable routed proxy arp on the interface. Data preparation to complete the configuration, you need the following data: l ip addresses of the interfaces l ip addresses of the hosts procedure step 1 create vlan 2 and add ge 0/0/1 to vlan 2. System-view [quidway] vlan 2 [quidway-vlan2] quit [quidway...

  • Page 35

    # vlan batch 2 to 3 # interface vlanif2 ip address 172.16.1.1 255.255.255.0 arp-proxy enable # interface vlanif3 ip address 172.16.2.1 255.255.255.0 arp-proxy enable # interface gigabitethernet0/0/1 port link-type access port default vlan 2 # interface gigabitethernet0/0/2 port link-type access port...

  • Page 36

    1. Create and configure a super-vlan and a sub-vlan. 2. Add an interface to the sub-vlan. 3. Create a vlanif interface of the super-vlan and assign an ip address to the vlanif interface. 4. Enable intra-vlan proxy arp on the vlanif interface of the super-vlan. Data preparation to complete the config...

  • Page 37

    [quidway-vlanif3] arp-proxy inner-sub-vlan-proxy enable [quidway-vlanif3] quit step 4 verify the configuration. # run the display current-configuration command. You can view the configurations of the super-vlan, sub-vlan, and vlanif interface. For query results, see the following configuration file....

  • Page 38

    Figure 2-4 networking diagram for configuring inter-vlan proxy arp vlan2 vlan3 vlan4 switch vlan2 vlan3 configuration roadmap the configuration roadmap is as follows: 1. Configure a super-vlan and a sub-vlan. 2. Add an interface to the sub-vlan. 3. Create an vlanif interface of the super-vlan and as...

  • Page 39

    [quidway-ethernet0/0/1] quit [quidway] interface ethernet 0/0/2 [quidway-ethernet0/0/2] port link-type access [quidway-ethernet0/0/2] port default vlan 2 [quidway-ethernet0/0/2] quit # configure sub-vlan 3. System-view [quidway] vlan 3 [quidway-vlan3] quit # add eth0/0/3 and eth0/0/4 to sub-vlan 3. ...

  • Page 40

    Configuration files the following lists the configuration file of the switch. # sysname quidway # vlan batch 2 to 4 # vlan 4 aggregate-vlan access-vlan 2 to 3 # interface vlanif4 ip address 10.10.10.1 255.255.255.0 arp-proxy inter-sub-vlan-proxy enable # interface ethernet0/0/1 port link-type access...

  • Page 41

    Configuration roadmap the configuration roadmap is as follows: 1. Add two ge interfaces to vlan 100 in default mode. 2. Enable layer 2 topology detection and view changes of arp entries. Data preparation to complete the configuration, you need the following data: l types and numbers of the interface...

  • Page 42

    Ip address mac address expire(m) type interface vpn-instance vlan ---------------------------------------------------------------------------- 10.1.1.2 00e0-c01a-4900 i - vlanif100 10.1.1.3 00e0-de24-bf04 0 d-0 ge0/0/2 ------------------------------------------------------------------------------ to...

  • Page 43: Ip Performance Configuration

    3 ip performance configuration about this chapter this chapter describes the basic concepts of ip performance, and provides configuration procedures and examples of ip performance. 3.1 introduction to ip performance on certain networks, you need to change ip parameters to optimize the performance of...

  • Page 44

    3.1 introduction to ip performance on certain networks, you need to change ip parameters to optimize the performance of networks. Here, ip performance parameters supported by the s2700 are described. 3.2 ip performance supported by the s2700 icmp l icmp host unreachable messages when forwarding pack...

  • Page 45: Packets

    L setting parameters of the link layer protocol for the interfaces to ensure that the status of the link layer protocol on the interfaces is up l assigning ip addresses to interfaces l configuring access control lists (acls) data preparation to optimize ip performance, you need the following data. N...

  • Page 46

    The interface is enabled to check the source ip addresses. By default, the function is disabled on all interfaces. ----end 3.3.3 configuring icmp attributes context by default, sending icmp redirection packets and unreachable packets is enabled. Caution l if the transmission of icmp host unreachable...

  • Page 47

    Tcp fin-wait timer is an integer that ranges from 76 to 3600, in seconds. By default, the value is 675s. L size of the packet receive or transmit buffer: the value is an integer that ranges from 1 to 32, in kbytes. By default, the value is 8 kbytes. If you run the tcp window command repeatedly in th...

  • Page 48

    L run the display fib [ slot-id ] [ verbose ] command to check information about the fib table. L run the display fib acl acl-number [ verbose ] command to check information about the fib entries that match acl rules in a certain format. L run the display fib interface interface-type interface-numbe...

  • Page 50: 3.5 Configuration Examples

    When an ip, tcp, udp, rawip, or rawlink fault occurs, run the following debugging commands in the user view to locate the fault. For details on debugging commands, see the quidway s2700 series ethernet switches debugging reference . Procedure l run the debugging ip packet [ error ] [ acl acl-number ...

  • Page 51

    Figure 3-1 networking diagram for disabling the sending of icmp host unreachable packets switcha switchc ethernet0/0/1 vlanif10 1.1.1.1/24 ethernet0/0/2 vlanif11 2.2.2.2/24 switchb ethernet0/0/1 vlanif10 1.1.1.2/24 ethernet0/0/2 vlanif11 2.2.2.1/24 configuration roadmap the configuration roadmap is ...

  • Page 52

    [switcha] ip route-static 2.2.2.0 24 1.1.1.2 step 2 configure switch b. # assign an ip address to vlanif 10 on switch b and disable the sending of icmp host unreachable packets. System-view [quidway] sysname switchb [switchb] vlan 10 [switchb-vlan10] quit [switchb] interface ethernet0/0/1 [switchb-e...

  • Page 53

    # interface ethernet0/0/1 port hybrid tagged vlan 10 # ip route-static 2.2.2.0 255.255.255.0 1.1.1.2 # return l configuration file of switch b # sysname switchb # vlan batch 10 to 11 # interface vlanif 10 ip address 1.1.1.2 255.255.255.0 # interface vlanif 11 ip address 2.2.2.1 255.255.255.0 # inter...

  • Page 54: Dns Configuration

    4 dns configuration about this chapter by configuring the domain name system (dns), you can enable network devices to communicate with other through their domain names. 4.1 introduction to dns after each host on the internet is assigned a domain name, you can set up a mapping between the domain name...

  • Page 55: 4.1 Introduction to Dns

    4.1 introduction to dns after each host on the internet is assigned a domain name, you can set up a mapping between the domain name and ip address of a host through. In this manner, you can use domain names, which are easy to memorize and are of significance, instead of complicated ip addresses. The...

  • Page 56

    L configuring physical attributes of the interface and ensuring that the physical layer status of the interface is up l configuring parameters of the link layer protocol of the interface and ensuring that the link layer protocol status of the interface is up l configuring routes between the local de...

  • Page 57

    Procedure step 1 run: system-view the system view is displayed. Step 2 run: dns resolve dynamic domain name resolution is enabled. Step 3 run: dns server ip-address a dns server is specified. Step 4 (optional) run: dns server source-ip source-ip-address the ip address of the local device is specifie...

  • Page 58: 4.4 Maintaining Dns

    L run the display dns dynamic-host command to check the information about dynamic dns entries in the domain name cache. ----end example run the display ip host command. If static dns entries including the mappings between host names and ip addresses, are displayed, it means that the configuration su...

  • Page 59: 4.4.3 Debugging Dns

    Procedure step 1 run the reset dns dynamic-host command in the user view to clear dynamic dns entries statistics in the domain name cache. ----end 4.4.2 monitoring network operation status of dns this section describes dns operation monitoring through the display command. Context in routine maintena...

  • Page 60: 4.5 Configuration Examples

    4.5 configuration examples this section provides a configuration example of dns. 4.5.1 example for configuring dns this section provides a configuration example of dns. Networking requirements as shown in figure 4-1 , switch a acts as a dns client, being required to access the host 2.1.1.3/16 by usi...

  • Page 61

    L suffixes of domain names procedure step 1 configure switch a. # configure static dns entries. System-view [switcha] ip host switchb 4.1.1.1 [switcha] ip host switchc 4.1.1.2 # enable dns resolution. [switcha] dns resolve # configure an ip address for the dns server. [switcha] dns server 3.1.1.2 # ...

  • Page 62

    Display dns dynamic-host no domain-name ipaddress ttl alias 1 huawei.Com 2.1.1.3 3579 note ttl value in the above display indicates the lifetime of an entry. It is in seconds. ----end configuration files l configuration file of switch a # sysname switcha # vlan batch 100 # ip host switchb 4.1.1.1 ip...

  • Page 63

    L configuration file of switch c # sysname switchc # vlan batch 100 101 # interface ethernet0/0/1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 # interface ethernet0/0/2 port hybrid pvid vlan 101 port hybrid untagged vlan 101 # interface loopback0 ip address 4.1.1.2 255.255.255.255 # inter...

  • Page 64: Basic Configurations of Ipv6

    5 basic configurations of ipv6 about this chapter this chapter describes the basic concept and configurations of ipv6. 5.1 introduction to ipv6 this section describes the basic principle of ipv6. 5.2 ipv6 features supported by the s2700 the s2700 supports the ipv6 protocol suite and tcp6 protocol su...

  • Page 65: 5.1 Introduction to Ipv6

    5.1 introduction to ipv6 this section describes the basic principle of ipv6. Basic concepts internet protocol version 6 (ipv6), also called ip next generation (ipng), is the standard network protocol of 2nd generation. It is designed by internet engineering task force as an upgraded version of ipv4....

  • Page 66

    Address for an interface. The link-local address manually set must be a valid link-local address (fe80::/10). Automatically generated link-local addresses are recommended because link-local addresses are used only for communications between link-local nodes usually to satisfy the communication reque...

  • Page 67

    5.3 configuring an ipv6 address for an interface assigning an ipv6 address to a device on a network enables the device to communicate with the other devices on the network. 5.3.1 establishing the configuration task this section describes the applicable environment, pre-configuration tasks, data prep...

  • Page 68

    5.3.2 enabling ipv6 packet forwarding capability you can perform other ipv6 configurations on an interface only when ipv6 is enabled in the interface view. To enable ipv6 packet forwarding on an interface, you must configure ipv6 in the system view. Context to enable a device to forward ipv6 packets...

  • Page 69

    Address of a link is valid only for the link. A packet with a link-local address as the source or destination address is forwarded only along the local link. Procedure step 1 run: system-view the system view is displayed. Step 2 run: interface interface-type interface-number the interface view is di...

  • Page 71

    No. Data 1 number of interface which needs to be configured with ipv6 nd 2 ipv6 address and mac address of the static neighbor 3 intervals, prefix, and life duration of ra messages 4 flag bit of automatic configuration 5 hop limit of nd 6 sending times of dad 7 intervals for re-transmitting ns messa...

  • Page 72

    Procedure step 1 run: system-view the system view is displayed. Step 2 run: interface vlanif vlan-id the vlanif interface view is displayed. Step 3 run: ipv6 enable you can enable the ipv6 capability. Step 4 run: undo ipv6 nd ra halt the function of advertising ra messages is enabled. ----end 5.4.4 ...

  • Page 73

    5.4.5 enabling stateful auto configuration after being enabled with stateful auto-configuration, the host can obtain an ipv6 address through stateful auto-configuration, for example, the dhcp server. Procedure step 1 run: system-view the system view is displayed. Step 2 run: interface vlanif vlan-id...

  • Page 75

    Note l when the ipv6 nd ra command is run to set the interval for advertising ra messages, the interval must be less than or equal to the life duration. L by default, the maximum interval is 600 seconds, and the minimum interval is 200 seconds. L by default, the life duration of ra messages is 1800 ...

  • Page 76: 5.5 Maintaining Ipv6

    -------------------------------------------------------- ipv6 address : 3003::2 link-layer : 00e0-fc89-fe6e state : stale interface : vlanif10 age : 7 vlan : - ipv6 address : fe80::2e0:fcff:fe89:fe6e link-layer : 00e0-fc89-fe6e state : stale interface : vlanif10 age : 7 vlan : - --------------------...

  • Page 78: 5.6 Configuration Examples

    L run the debugging ipv6 nd command in the user view to debug ipv6 neighbors status and nd messages. L run the debugging ipv6 packet [ error ] [ acl acl-number ] command in the user view to debug ipv6 packet. L run the debugging ipv6 pathmtu command in the user view to debug pmtu. L run the debuggin...

  • Page 79

    L global unicast address of an interface procedure step 1 enable the ipv6 forwarding capability on the switch. # configure switch a. System-view [quidway] sysname switcha [switcha] ipv6 # configure switch b. System-view [quidway] sysname switchb [switchb] ipv6 step 2 configure the ipv6 global unicas...

  • Page 80

    Nd retransmit interval is 1000 milliseconds hosts use stateless autoconfig for addresses # display information about the interface on switch b. [switchb] display ipv6 interface vlanif 100 vlanif100 current state : up ipv6 protocol current state : up ipv6 is enabled, link-local address is fe80::2e0:f...

  • Page 81

    Configuration files l configuration file of switch a # sysname switcha # ipv6 # vlan 100 # interface vlanif100 ipv6 enable ipv6 address 3001::1/64 # interface ethernet0/0/1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 # return l configuration file of switch b # sysname switchb # ipv6 # vl...

  • Page 82: Ipv6 Dns Configuration

    6 ipv6 dns configuration about this chapter by configuring the ipv6 domain name system (dns), you can enable network devices to communicate with other through their domain names. 6.1 introduction to ipv6 dns after each host on the internet is assigned a domain name, you can set up mapping between th...

  • Page 83: 6.3 Configuring Ipv6 Dns

    6.1 introduction to ipv6 dns after each host on the internet is assigned a domain name, you can set up mapping between the domain name and ip address of a host. In this manner, you can use domain names, which are easy to memorize and are of significance, instead of complicated ip addresses. Ipv6 dns...

  • Page 84

    No. Data 1 domain name of the static ipv6 dns entry and the corresponding ipv6 address 2 ipv6 address of the ipv6 dns server 3 domain name of the dynamic ipv6 dns or the domain name list 6.3.2 configuring a static ipv6 dns entry you can create a table of mappings between domain names and ipv6 addres...

  • Page 85

    Caution if multiple dns servers are configured, the servers are queried in the order of configuration till proper response is received. If both ipv4 and ipv6 servers are configured, the a query is first sent to the ipv4 server, while aaaa query packets are first sent to the ipv6 server. The dns doma...

  • Page 86: 6.4 Maintaining Ipv6 Dns

    Procedure l run the display ipv6 host command to check the static ipv6 dns table. L run the display dns server command to check the configuration of the dns server. L run the display dns domain command to check the configuration of the suffix list of the domain name. L run the display dns ipv6 dynam...

  • Page 87: 6.5 Configuration Examples

    Context caution ipv6 dns entries cannot be restored after being cleared. So, confirm the action before you use this command. Procedure step 1 run the reset dns ipv6 dynamic-host command in the user view to clear dynamic ipv6 dns entries statistics in the domain name cache. ----end 6.4.2 monitoring n...

  • Page 88

    Networking requirements as shown in figure 6-2 , switch a, functioning as the ipv6 dns client and working jointly whose ipv6 dns server, can access the host with the ip address as 2002::1/64 based on the domain name huawei.Com. On switch a, the static ipv6 dns entries of switch b and switch c are co...

  • Page 89

    [switcha] ipv6 host routerb 2001::2 [switcha] ipv6 host routerc 2002::3 # enable the dns resolution function. [switcha] dns resolve # configure the ipv6 address of the ipv6 dns server. [switcha] dns server ipv6 2003::2 # set the domain name suffix to ".Net". [switcha] dns domain net # set the domain...

  • Page 90

    Configuration files l configuration file of switch a l # sysname switcha # vlan batch 100 # ipv6 # ipv6 host switchb 2001::2 ipv6 host switchc 2002::3 # dns resolve dns server ipv6 2003::2 dns domain net dns domain com # interface ethernet0/0/1 port hybrid pvid vlan 100 port hybrid untagged vlan 100...

  • Page 91

    # interface vlanif100 ipv6 enable ipv6 address 2002::3/64 # interface vlanif101 ipv6 enable ipv6 address 2003::1/64 # return quidway s2700 series ethernet switches configuration guide - ip service 6 ipv6 dns configuration issue 01 (2011-07-15) huawei proprietary and confidential copyright © huawei t...