Blade Network Technologies RackSwitch G8000 Guida utente
2350 Mission College Blvd.
Suite 600
Santa Clara, CA 95054
www.bladenetwork.net
RackSwitch G8000
Application Guide
Version 1.0
TM
Part Number: BMD00041, November 2008
RackSwitch G8000 Application Guide
2BMD00041, November 2008
Copyright © 2009 Blade Network Technologies, Inc., 2350 Mission College Blvd., Suite 600, Santa Clara,
California, 95054, USA. All rights reserved. Part Number: BMD00041.
This document is protected by copyright and distributed under licenses restricting its use, copying,
distribution, and decompilation. No part of this document may be reproduced in any form by any means
without prior written authorization of Blade Network Technologies, Inc. Documentation is provided “as
is” without warranty of any kind, either express or implied, including any kind of implied or express
warranty of non-infringement or the implied warranties of merchantability or fitness for a particular
purpose.
U.S. Government End Users: This document is provided with a “commercial item” as defined by FAR
2.101 (Oct. 1995) and contains “commercial technical data”and “commercial software documentation” as
those terms are used in FAR 12.211-12.212 (Oct. 1995). Government End Users are authorized to use this
documentation only in accordance with those rights and restrictions set forth herein, consistent with FAR
12.211- 12.212 (Oct. 1995), DFARS 227.7202(JUN 1995) and DFARS 252.227-7015 (Nov. 1995).
Blade Network Technologies, Inc. reserves the right to change any products described herein at any time,
and without notice. Blade Network Technologies, Inc. assumes no responsibility or liability arising from
the use of products described herein, except as expressly agreed to in writing by Blade Network
Technologies, Inc. The use and purchase of this product does not convey a license under any patent rights,
trademark rights, or any other intellectual property rights of Blade Network Technologies, Inc.
Originated in the USA.
RackSwitch is atrademark of Blade Network Technologies, Inc. in the UnitedStates and certain other
countries. Cisco®and EtherChannel®are registered trademarks of Cisco Systems, Inc. in the United States
and certain other countries. Any other trademarks appearing in this manual are owned by their respective
companies.
BMD00041, November 2008 3
Contents
Preface 11
Who Should Use This Guide 11
What You’ll Find in This Guide 12
Typographic Conventions 13
How to Get Help 14
Chapter 1: Accessing the Switch 15
Configuring an IP Interface 16
Using Telnet 17
Using the Browser-Based Interface 18
Configuring BBI access via HTTP 18
Configuring BBI access via HTTPS 18
Using SNMP 20
SNMP v1, v2 20
SNMP v3.0 20
Configuring SNMP Trap Hosts 23
Securing Access to the Switch 25
RADIUS Authentication and Authorization 26
TACACS+ Authentication 30
Secure Shell 34
End User Access Control 36
Chapter 2: Port-based Network Access Control 39
Extensible Authentication Protocol over LAN 40
802.1X authentication process 41
802.1X port states 43
Supported RADIUS attributes 44
Configuration guidelines 45
RackSwitch G8000 Application Guide
4BMD00041, November 2008
Chapter 3: VLANs 47
Overview 48
VLANs and Port VLAN ID Numbers 49
VLAN numbers 49
PVID numbers 50
VLAN Tagging 51
VLAN Topologies and Design Considerations 55
VLAN configuration rules 55
Multiple VLANs with Tagging Adapters 56
VLAN configuration example 58
Private VLANs 59
Private VLAN ports 59
Configuration guidelines 60
Configuration example 60
Chapter 4: Ports and Trunking 63
Overview 64
Statistical load distribution 64
Built-In fault tolerance 64
Before you configure static trunks 65
Static trunk group configuration rules 65
Port Trunking Example 67
Configurable Trunk Hash Algorithm 69
Link Aggregation Control Protocol 70
LACP configuration guidelines 72
Configuring LACP 72
Chapter 5: Spanning Tree 73
Overview 74
Bridge Protocol Data Units (BPDUs) 75
Spanning Tree Group configuration guidelines 76
Rapid Spanning Tree Protocol 80
Port state changes 80
Port Type and Link Type 81
RSTP configuration guidelines 81
RSTP configuration example 82
Per VLAN Rapid Spanning Tree 83
Default Spanning Tree configuration 83
RackSwitch G8000 Application Guide
5BMD00041, November 2008
Why do we need multiple Spanning Trees? 84
PVRST configuration guidelines 85
Configuring PVRST 85
Multiple Spanning Tree Protocol 86
MSTP Region 86
Common Internal Spanning Tree 86
MSTP configuration guidelines 87
Fast Uplink Convergence 91
Configuration Guidelines 91
Configuring Fast Uplink Convergence 91
Chapter 6: Quality of Service 93
Overview 94
Using ACL Filters 95
IP Standard ACLs 96
IP Extended ACLs 96
Understanding ACL priority 98
Assigning ACLs to a port 98
Viewing ACL statistics 99
ACL configuration examples 100
Using Storm Control Filters 105
Broadcast storms 105
Configuring storm control 105
Using DSCP Values to Provide QoS 106
Differentiated Services Concepts 106
Using 802.1p Priority to Provide QoS 111
802.1p configuration example 112
Queuing and Scheduling 112
Chapter 7: Remote Monitoring 113
Overview 113
RMON group 1—Statistics 114
RMON group 2—History 115
RMON group 3—Alarms 116
RMON group 9—Events 118
RackSwitch G8000 Application Guide
6BMD00041, November 2008
Chapter 8: Basic IP Routing 119
IP Routing Benefits 120
Routing Between IP Subnets 121
Example of Subnet Routing 123
Using VLANs to segregate Broadcast Domains 124
Configuration example 124
Dynamic Host Configuration Protocol 127
Chapter 9: IGMP 129
IGMP Snooping 130
FastLeave 131
IGMPv3 Snooping 131
IGMP Snooping configuration example 132
Static Multicast Router 134
Chapter 10: High Availability 135
Uplink Failure Detection 136
Failure Detection Pair 137
Spanning Tree Protocol with UFD 137
Configuration guidelines 137
Configuring UFD 138
Monitoring UFD 138
Appendix A: Troubleshooting 139
Monitoring Ports 140
Port Mirroring behavior 141
Configuring Port Mirroring 141
Index 143
BMD00041, November 2008 7
Figures
Figure 2-1:Authenticating a Port Using EAPoL 41
Figure 3-1:Default VLAN settings 52
Figure 3-2:Port-based VLAN assignment 53
Figure 3-3:802.1Q tagging (after port-based VLAN assignment) 53
Figure 3-4:802.1Q tag assignment 54
Figure 3-5:802.1Q tagging (after 802.1Q tag assignment) 54
Figure 3-6:Example 1: Multiple VLANs with VLAN-Tagged Gigabit Adapters 56
Figure 4-1:Port Trunk Group Configuration Example 67
Figure 5-1:Two VLANs on one Spanning Tree Group 84
Figure 5-2:Two VLANs, each on a different Spanning Tree Group 84
Figure 5-3:Implementing Multiple Spanning Tree Groups 88
Figure 6-1:QoS Model 94
Figure 6-2:Layer 3 IPv4 packet 106
Figure 6-3:Layer 2 802.1q/802.1p VLAN tagged packet 111
Figure 8-1:The Router Legacy Network 121
Figure 8-2:Switch-Based Routing Topology 123
Figure 10-1:Uplink Failure Detection example 136
RackSwitch G8000 Application Guide
8BMD00041, November 2008
BMD00041, November 2008 9
Tables
Table 1-1: User Access Levels 29
Table 1-2: Blade OS-proprietary Attributes for RADIUS 29
Table 1-3: Default TACACS+ Authorization Levels 31
Table 1-4: Alternate TACACS+ Authorization Levels 31
Table 4-1: Actor vs. Partner LACP configuration 70
Table 5-1: Ports, Trunk Groups, and VLANs 74
Table 6-1: Well-known protocol types 97
Table 6-2: Well-known application ports 97
Table 6-3: Default QoS Service Levels 109
Table 8-1: Subnet Routing Example: IP Address Assignments 124
Table 8-2: Subnet Routing Example: IP Interface Assignments 124
Table 8-3: Subnet Routing Example: Optional VLAN Ports 125
RackSwitch G8000 Application Guide
10 BMD00041, November 2008
Altri manuali per RackSwitch G8000
1
Indice
Altri manuali Blade Network Technologies Interruttore
Blade Network Technologies
Blade Network Technologies BLADEOS RackSwitch G8124 Manuale utente
Blade Network Technologies
Blade Network Technologies RackSwitch G8000 Manuale utente
Blade Network Technologies
Blade Network Technologies BLADEOS RackSwitch G8124 Guida utente
Blade Network Technologies
Blade Network Technologies BLADEOS RackSwitch G8124 Manuale utente
