Blade Network Technologies BLADEOS RackSwitch G8124 User guide
2051 Mission College Blvd.
Santa Clara, CA 95054
www.bladenetwork.net
BLADEOS™6.5
Application Guide
RackSwitch™G8124/G8124-E
Part Number: BMD00220, October 2010
BLADEOS 6.5.2 Application Guide
2BMD00220, October 2010
Copyright © 2010 BLADE Network Technologies, Inc., 2051 Mission College Blvd., Santa Clara,
California, 95054, USA. All rights reserved. Part Number: BMD00220.
This document is protected by copyright and distributed under licenses restricting its use, copying,
distribution, and decompilation. No part of this document may be reproduced in any form by any
means without prior written authorization of BLADENetwork Technologies, Inc. Documentation is
provided “as is” without warranty of any kind, either express or implied, includingany kind of
implied or express warranty of non-infringement or the implied warranties of merchantability or
fitness for a particular purpose.
U.S. Government End Users: This document is provided with a “commercial item” as defined by
FAR 2.101 (Oct. 1995) and contains “commercial technical data” and “commercial software
documentation” as those terms are used in FAR 12.211-12.212 (Oct. 1995). Government End Users
are authorized to use this documentation only in accordance withthose rights and restrictions set forth
herein, consistent with FAR 12.211- 12.212 (Oct. 1995), DFARS 227.7202 (JUN 1995) and
DFARS 252.227-7015 (Nov. 1995).
BLADE Network Technologies, Inc. reserves the right to change any products described herein at any
time, and without notice. BLADE Network Technologies, Inc. assumes no responsibility or liability
arising from the use of products describedherein, except as expressly agreed to in writing by BLADE
Network Technologies, Inc. The use and purchase of this product does not convey a license under any
patent rights, trademark rights, or any other intellectual property rights of BLADE Network
Technologies, Inc.
BLADE Network Technologies, the BLADE logo, BLADEHarmony, BNT, NMotion, RackSwitch,
Rackonomics, RackSwitchSolutionPartner,ServerMobility, SmartConnect and VMready are
trademarks of BLADE Network Technologies, Inc. in the United States and certain other countries.
Cisco®and EtherChannel®are registered trademarks of Cisco Systems, Inc. in the United States and
certain other countries. VMware is a registered trademark or trademark of VMware, Inc. in the United
States and/or other jurisdictions. Any other trademarks appearingin this manualare owned bytheir
respective companies.
Originatedin theUSA.
BMD00220, October 2010 3
Contents
Preface 17
Who Should Use This Guide 17
What You’ll Find in This Guide 17
Additional References 20
Typographic Conventions 21
How to Get Help 22
Part 1: Getting Started 23
Chapter 1: Switch Administration 25
Administration Interfaces 25
Command Line Interface 26
Browser-Based Interface 26
Establishing a Connection 27
Using the Switch Management Ports 27
Using the Switch Data Ports 29
Using Telnet 30
Using Secure Shell 31
Using a Web Browser 32
Configuring HTTP Access to the BBI 32
Configuring HTTPS Access to the BBI 32
BBI Summary 34
Using Simple Network Management Protocol 35
BOOTP/DHCP Client IP Address Services 36
Global BOOTP Relay Agent Configuration 37
Domain-Specific BOOTP Relay Agent Configuration 37
Switch Login Levels 38
Setup vs. the Command Line 39
BLADEOS 6.5.2 Application Guide
4Contents BMD00220, October 2010
Chapter 2: Initial Setup 41
Information Needed for Setup 41
Default Setup Options 42
Stopping and Restarting Setup Manually 42
Setup Part 1: Basic System Configuration 43
Setup Part 2: Port Configuration 44
Setup Part 3: VLANs 46
Setup Part 4: IP Configuration 47
IP Interfaces 47
Default Gateways 49
IP Routing 49
Setup Part 5: Final Steps 50
Optional Setup for Telnet Support 51
Part 2: Securing the Switch 53
Chapter 3: Securing Administration 55
Secure Shell and Secure Copy 55
Configuring SSH/SCP Features on the Switch 56
Configuring the SCP Administrator Password 57
Using SSH and SCP Client Commands 57
SSH and SCP Encryption of Management Messages 59
Generating RSA Host and Server Keys for SSH Access 60
SSH/SCP Integration with Radius Authentication 60
SSH/SCP Integration with TACACS+ Authentication 61
SecurID Support 61
End User Access Control 62
Considerations for Configuring End User Accounts 62
Strong Passwords 62
User Access Control 63
Listing Current Users 64
Logging into an End User Account 64
BLADEOS 6.5.2 Application Guide
BMD00220, October 2010 Contents 5
Chapter 4: Authentication & Authorization Protocols 65
RADIUS Authentication and Authorization 65
How RADIUS Authentication Works 66
Configuring RADIUS on the Switch 66
RADIUS Authentication Features in BLADEOS 67
Switch User Accounts 68
RADIUS Attributes for BLADEOS User Privileges 68
TACACS+ Authentication 69
How TACACS+ Authentication Works 69
TACACS+ Authentication Features in BLADEOS 70
Authorization 70
Accounting 71
Command Authorization and Logging 71
Configuring TACACS+ Authentication on the Switch 72
LDAP Authentication and Authorization 73
Chapter 5: Access Control Lists 75
Summary of Packet Classifiers 76
Summary of ACL Actions 78
Assigning Individual ACLs to a Port 78
ACL Order of Precedence 78
ACL Metering and Re-Marking 79
ACL Port Mirroring 80
Viewing ACL Statistics 80
ACL Configuration Examples 81
VLAN Maps 82
Using Storm Control Filters 84
BLADEOS 6.5.2 Application Guide
6Contents BMD00220, October 2010
Part 3: Switch Basics 85
Chapter 6: VLANs 87
VLANs Overview 88
VLANs and Port VLAN ID Numbers 88
VLAN Numbers 88
PVID Numbers 89
VLAN Tagging 90
VLAN Topologies and Design Considerations 94
VLAN Configuration Rules 94
Multiple VLANs with Tagging Adapters 95
VLAN Configuration Example 97
Private VLANs 98
Private VLAN Ports 98
Configuration Guidelines 99
Configuration Example 99
Chapter 7: Ports and Trunking 101
Trunking Overview 102
Before You Configure Static Trunks 103
Trunk Group Configuration Rules 104
Port Trunking Example 104
Configurable Trunk Hash Algorithm 106
Link Aggregation Control Protocol 107
Chapter 8: Spanning Tree Protocols 109
Spanning Tree Protocol Modes 109
Global STP Control 110
STP/PVST+ Mode 111
Port States 111
Bridge Protocol Data Units 112
Bridge Protocol Data Units Overview 112
Determining the Path for Forwarding BPDUs 112
Fast Uplink Convergence 113
Port Fast Forwarding 114
Simple STP Configuration 115
BLADEOS 6.5.2 Application Guide
BMD00220, October 2010 Contents 7
Per-VLAN Spanning Tree Groups 117
Using Multiple STGs to Eliminate False Loops 117
STP/PVST+ Defaults and Guidelines 118
Adding a VLAN to a Spanning Tree Group 118
Creating a VLAN 119
Rules for VLAN Tagged Ports 119
Adding and Removing Ports from STGs 120
Switch-Centric Configuration 121
Configuring Multiple STGs 122
Rapid Spanning Tree Protocol 124
Port State Changes 124
RSTP Configuration Guidelines 125
RSTP Configuration Example 125
Per-VLAN Rapid Spanning Tree Groups 126
Configuring PVRST 126
Multiple Spanning Tree Protocol 127
MSTP Region 127
Common Internal Spanning Tree 127
MSTP Configuration Guidelines 128
MSTP Configuration Example 1 128
MSTP Configuration Example 2 129
Port Type and Link Type 131
Edge Port 131
Link Type 131
Chapter 9: Quality of Service 133
QoS Overview 133
Using ACL Filters 135
Summary of ACL Actions 135
ACL Metering and Re-Marking 136
Using DSCP Values to Provide QoS 137
Differentiated Services Concepts 137
Per Hop Behavior 138
QoS Levels 139
DSCP Re-Marking and Mapping 140
DSCP Re-Marking Configuration Example 141
Using 802.1p Priority to Provide QoS 142
Queuing and Scheduling 143
BLADEOS 6.5.2 Application Guide
8Contents BMD00220, October 2010
Part 4: Advanced Switching Features 145
Chapter 10: Deployment Profiles 147
Available Profiles 147
Selecting Profiles 149
Automatic Configuration Changes 149
Chapter 11: Virtualization 151
Chapter 12: Virtual NICs 153
Defining Server Ports 154
Enabling the vNIC Feature 154
vNIC IDs 155
vNIC IDs on the Switch 155
vNIC Interface Names on the Server 155
vNIC Bandwidth Metering 156
vNIC Groups 157
vNIC Teaming Failover 159
vNIC Configuration Example 161
vNICs for iSCSI on Emulex Eraptor 2 164
Chapter 13: VMready 165
VE Capacity 166
Defining Server Ports 166
VM Group Types 166
Local VM Groups 167
Distributed VM Groups 169
VM Profiles 169
Initializing a Distributed VM Group 170
Assigning Members 170
Synchronizing the Configuration 171
Removing Member VEs 171
Virtualization Management Servers 172
Assigning a vCenter 172
vCenter Scans 173
Deleting the vCenter 173
Exporting Profiles 174
VMware Operational Commands 174
Pre-Provisioning VEs 175
BLADEOS 6.5.2 Application Guide
BMD00220, October 2010 Contents 9
VLAN Maps 176
VM Policy Bandwidth Control 178
VM Policy Bandwidth Control Commands 178
Bandwidth Policies vs. Bandwidth Shaping 179
VMready Information Displays 180
VMready Configuration Example 184
Chapter 14: FCoE and CEE 187
Fibre Channel over Ethernet 189
The FCoE Topology 189
FCoE Requirements 191
Converged Enhanced Ethernet 192
Turning CEE On or Off 192
Effects on Link Layer Discovery Protocol 192
Effects on 802.1p Quality of Service 193
Effects on Flow Control 194
FCoE Initialization Protocol Snooping 195
Global FIP Snooping Settings 195
FIP Snooping for Specific Ports 195
Port FCF and ENode Detection 196
FCoE Connection Timeout 196
FCoE ACL Rules 197
FCoE VLANs 197
Viewing FIP Snooping Information 198
Operational Commands 198
FIP Snooping Configuration 199
Priority-Based Flow Control 200
Global Configuration 201
PFC Configuration Example 202
Enhanced Transmission Selection 204
802.1p Priority Values 204
Priority Groups 206
PGID 206
Assigning Priority Values to a Priority Group 207
Deleting a Priority Group 207
Allocating Bandwidth 208
Configuring ETS 209
Data Center Bridging Capability Exchange 211
DCBX Settings 211
Configuring DCBX 214
BLADEOS 6.5.2 Application Guide
10 Contents BMD00220, October 2010
Part 5: IP Routing 217
Chapter 15: Basic IP Routing 219
IP Routing Benefits 219
Routing Between IP Subnets 219
Example of Subnet Routing 221
Using VLANs to Segregate Broadcast Domains 222
Configuration Example 222
ECMP Static Routes 225
OSPF Integration 225
ECMP Route Hashing 225
Configuring ECMP Static Routes 226
Dynamic Host Configuration Protocol 227
Chapter 16: Internet Protocol Version 6 229
IPv6 Limitations 230
IPv6 Address Format 231
IPv6 Address Types 232
IPv6 Address Autoconfiguration 233
IPv6 Interfaces 234
Neighbor Discovery 235
Supported Applications 237
Configuration Guidelines 239
IPv6 Configuration Examples 240
Chapter 17: Routing Information Protocol 243
Distance Vector Protocol 243
Stability 243
Routing Updates 244
RIPv1 244
RIPv2 244
RIPv2 in RIPv1 Compatibility Mode 245
RIP Features 245
RIP Configuration Example 247
BLADEOS 6.5.2 Application Guide
BMD00220, October 2010 Contents 11
Chapter 18: Internet Group Management Protocol 249
IGMP Snooping 250
IGMP Groups 251
FastLeave 251
IGMPv3 Snooping 251
IGMP Snooping Configuration Example 253
Static Multicast Router 254
IGMP Querier 255
IGMP Filtering 256
Chapter 19: Border Gateway Protocol 259
Internal Routing Versus External Routing 260
Forming BGP Peer Routers 261
What is a Route Map? 261
Incoming and Outgoing Route Maps 262
Precedence 263
Configuration Overview 263
Aggregating Routes 265
Redistributing Routes 265
BGP Attributes 266
Selecting Route Paths in BGP 267
BGP Failover Configuration 268
Default Redistribution and Route Aggregation Example 270
Chapter 20: OSPF 273
OSPFv2 Overview 273
Types of OSPF Areas 274
Types of OSPF Routing Devices 275
Neighbors and Adjacencies 276
The Link-State Database 276
The Shortest Path First Tree 277
Internal Versus External Routing 277
OSPFv2 Implementation in BLADEOS 278
Configurable Parameters 278
Defining Areas 279
Assigning the Area Index 279
Using the Area ID to Assign the OSPF Area Number 280
Attaching an Area to a Network 280
BLADEOS 6.5.2 Application Guide
12 Contents BMD00220, October 2010
Interface Cost 281
Electing the Designated Router and Backup 281
Summarizing Routes 281
Default Routes 282
Virtual Links 283
Router ID 283
Authentication 284
Configuring Plain Text OSPF Passwords 285
Configuring MD5 Authentication 286
Host Routes for Load Balancing 287
OSPF Features Not Supported in This Release 287
OSPFv2 Configuration Examples 288
Example 1: Simple OSPF Domain 289
Example 2: Virtual Links 291
Example 3: Summarizing Routes 295
Verifying OSPF Configuration 297
OSPFv3 Implementation in BLADEOS 298
OSPFv3 Differences from OSPFv2 298
OSPFv3 Requires IPv6 Interfaces 298
OSPFv3 Uses Independent Command Paths 299
OSPFv3 Identifies Neighbors by Router ID 299
Other Internal Improvements 299
OSPFv3 Limitations 300
OSPFv3 Configuration Example 300
Chapter 21: Protocol Independent Multicast 303
PIM Overview 303
Supported PIM Modes and Features 304
Basic PIM Settings 305
Globally Enabling or Disabling the PIM Feature 305
Defining a PIM Network Component 306
Defining an IP Interface for PIM Use 306
PIM Neighbor Filters 307
Additional Sparse Mode Settings 308
Specifying the Rendezvous Point 308
Influencing the Designated Router Selection 309
Specifying a Bootstrap Router 309
Using PIM with Other Features 310
PIM Configuration Examples 311
BLADEOS 6.5.2 Application Guide
BMD00220, October 2010 Contents 13
Part 6: High Availability Fundamentals 315
Chapter 22: Basic Redundancy 317
Trunking for Link Redundancy 317
Hot Links 318
Forward Delay 318
Preemption 318
FDB Update 318
Configuration Guidelines 319
Configuring Hot Links 319
Active MultiPath Protocol 320
Health Checks 321
FDB Flush 321
Configuration Guidelines 321
Configuration Example 322
Chapter 23: Layer 2 Failover 325
Monitoring Trunk Links 325
Setting the Failover Limit 326
Manually Monitoring Port Links 327
L2 Failover with Other Features 328
LACP 328
Spanning Tree Protocol 328
Configuration Guidelines 328
Configuring Layer 2 Failover 329
Chapter 24: Virtual Router Redundancy Protocol 331
VRRP Overview 332
VRRP Components 332
VRRP Operation 333
Selecting the Master VRRP Router 334
Failover Methods 334
Active-Active Redundancy 335
Virtual Router Group 335
BLADEOS Extensions to VRRP 336
Virtual Router Deployment Considerations 337
High Availability Configurations 338
BLADEOS 6.5.2 Application Guide
14 Contents BMD00220, October 2010
Part 7: Network Management 343
Chapter 25: Link Layer Discovery Protocol 345
LLDP Overview 345
Enabling or Disabling LLDP 346
Global LLDP Setting 346
Transmit and Receive Control 346
LLDP Transmit Features 347
Scheduled Interval 347
Minimum Interval 347
Time-to-Live for Transmitted Information 348
Trap Notifications 348
Changing the LLDP Transmit State 349
Types of Information Transmitted 349
LLDP Receive Features 351
Types of Information Received 351
Viewing Remote Device Information 351
Time-to-Live for Received Information 352
LLDP Example Configuration 353
Chapter 26: Simple Network Management Protocol 355
SNMP Version 1 355
SNMP Version 3 356
Configuring SNMP Trap Hosts 358
SNMP MIBs 361
Switch Images and Configuration Files 364
Loading a New Switch Image 365
Loading a Saved Switch Configuration 365
Saving the Switch Configuration 366
Saving a Switch Dump 366
BLADEOS 6.5.2 Application Guide
BMD00220, October 2010 Contents 15
Part 8: Monitoring 367
Chapter 27: Remote Monitoring 369
RMON Overview 369
RMON Group 1—Statistics 370
RMON Group 2—History 371
History MIB Object ID 371
Configuring RMON History 372
RMON Group 3—Alarms 373
Alarm MIB objects 373
Configuring RMON Alarms 373
RMON Group 9—Events 374
Chapter 28: sFLOW 375
sFlow Statistical Counters 375
sFlow Network Sampling 375
sFlow Example Configuration 376
Chapter 29: Port Mirroring 377
Part 9: Appendices 379
Appendix A: Glossary 381
Index 383
BLADEOS 6.5.2 Application Guide
16 Contents BMD00220, October 2010
BMD00220, October 2010 17
Preface
The BLADEOS 6.5.2 Application Guide describes how to configure and use the BLADEOS 6.5
software on the RackSwitch G8124/G8124-E (collectively referred to as G8124 throughout this
document). For documentation on installing the switch physically, see the Installation Guide for
your G8124.
Who Should Use This Guide
This guide is intended for network installers and system administrators engaged in configuring and
maintaining a network. The administrator should be familiar with Ethernet concepts, IP addressing,
Spanning Tree Protocol, and SNMP configuration parameters.
What You’ll Find in This Guide
This guide will help you plan, implement, and administer BLADEOS software. Where possible,
each section provides feature overviews, usage examples, and configuration instructions. The
following material is included:
Part 1: Getting Started
This material is intended to help those new to BLADEOS products with the basics of switch
management. This part includes the following chapters:
Chapter 1, “Switch Administration,” describes how to access the G8124 in order to configure
the switch and view switch information and statistics. This chapter discusses a variety of
manual administration interfaces, including local management via the switch console, and
remote administration via Telnet, a web browser, or via SNMP.
Chapter 2, “Initial Setup,” describes how to use the built-in Setup utility to perform first-time
configuration of the switch.
BLADEOS 6.5.2 Application Guide
18 Preface BMD00220, October 2010
Part 2: Securing the Switch
Chapter 3, “Securing Administration,” describes methods for using Secure Shell for
administration connections, and configuring end-user access control.
Chapter 4, “Authentication & Authorization Protocols,” describes different secure
administration for remote administrators. This includes using Remote Authentication Dial-in
User Service (RADIUS), as well as TACACS+ and LDAP.
Chapter 5, “Access Control Lists,” describes how to use filters to permit or deny specific types
of traffic, based on a variety of source, destination, and packet attributes.
Part 3: Switch Basics
Chapter 6, “VLANs,” describes how to configure Virtual Local Area Networks (VLANs) for
creating separate network segments, including how to use VLAN tagging for devices that use
multiple VLANs. This chapter also describes Protocol-based VLANs, and Private VLANs.
Chapter 7, “Ports and Trunking,” describes how to group multiple physical ports together to
aggregate the bandwidth between large-scale network devices.
Chapter 8, “Spanning Tree Protocols,” discusses how Spanning Tree Protocol (STP) configures
the network so that the switch selects the most efficient path when multiple paths exist. Also
includes the Rapid Spanning Tree Protocol (RSTP), Per-VLAN Rapid Spanning Tree Plus
(PVRST+), and Multiple Spanning Tree Protocol (MSTP) extensions to STP.
Chapter 9, “Quality of Service,” discusses Quality of Service (QoS) features, including IP
filtering using Access Control Lists (ACLs), Differentiated Services, and IEEE 802.1p priority
values.
Part 4: Advanced Switching Features
Chapter 10, “Deployment Profiles,” describes how the G8124 can operate in different modes
for different deployment scenarios, adjusting switch capacity levels in order to optimize
performance for different types of networks.
Chapter 11, “Virtualization,” provides an overview of allocating resources based on the logical
needs of the data center, rather than on the strict, physical nature of components.
Chapter 12, “Virtual NICs,” discusses using virtual NIC (vNIC) technology to divide NICs into
multiple logical, independent instances.
Chapter 13, “VMready,” discusses virtual machine (VM) support on the G8124.
Chapter 14, “FCoE and CEE,” discusses using various Converged Enhanced Ethernet (CEE)
features such as Priority-based Flow Control (PFC), Enhanced Transmission Selection (ETS),
and FIP Snooping for solutions such as Fibre Channel over Ethernet (FCoE).
BLADEOS 6.5.2 Application Guide
BMD00220, October 2010 Preface 19
Part 5: IP Routing
Chapter 15, “Basic IP Routing,” describes how to configure the G8124 for IP routing using IP
subnets, BOOTP, and DHCP Relay.
Chapter 16, “Internet Protocol Version 6,” describes how to configure the G8124 for IPv6 host
management.
Chapter 17, “Routing Information Protocol,” describes how the BLADEOS software
implements standard Routing Information Protocol (RIP) for exchanging TCP/IP route
information with other routers.
Chapter 18, “Internet Group Management Protocol,” describes how the BLADEOS software
implements IGMP Snooping or IGMP Relay to conserve bandwidth in a multicast-switching
environment.
Chapter 19, “Border Gateway Protocol,” describes Border Gateway Protocol (BGP) concepts
and features supported in BLADEOS.
Chapter 20, “OSPF,” describes key Open Shortest Path First (OSPF) concepts and their
implemented in BLADEOS, and provides examples of how to configure your switch for OSPF
support.
Chapter 21, “Protocol Independent Multicast,” describes how multicast routing can be
efficiently accomplished using the Protocol Independent Multicast (PIM) feature.
Part 6: High Availability Fundamentals
Chapter 22, “Basic Redundancy,” describes how the G8124 supports redundancy through
trunking, Active Multipass Protocol (AMP), and hotlinks.
Chapter 23, “Layer 2 Failover,” describes how the G8124 supports high-availability network
topologies using Layer 2 Failover.
Chapter 24, “Virtual Router Redundancy Protocol,” describes how the G8124 supports
high-availability network topologies using Virtual Router Redundancy Protocol (VRRP).
Part 7: Network Management
Chapter 25, “Link Layer Discovery Protocol,” describes how Link Layer Discovery Protocol
helps neighboring network devices learn about each others’ ports and capabilities.
Chapter 26, “Simple Network Management Protocol,” describes how to configure the switch
for management through an SNMP client.
BLADEOS 6.5.2 Application Guide
20 Preface BMD00220, October 2010
Part 8: Monitoring
Chapter 27, “Remote Monitoring,” describes how to configure the RMON agent on the switch,
so that the switch can exchange network monitoring data.
Chapter 28, “sFLOW, described how to use the embedded sFlow agent for sampling network
traffic and providing continuous monitoring information to a central sFlow analyzer.
Chapter 29, “Port Mirroring,” discusses tools how copy selected port traffic to a monitor port
for network analysis.
Part 9: Appendices
Appendix A, “Glossary,” describes common terms and concepts used throughout this guide.
Additional References
Additional information about installing and configuring the G8124 is available in the following
guides:
RackSwitch G8124 Installation Guide
BLADEOS 6.5 Command Reference
BLADEOS 6.5 ISCLI Reference Guide
BLADEOS 6.5 BBI Quick Guide
Other manuals for BLADEOS RackSwitch G8124
2
This manual suits for next models
1
Table of contents
Other Blade Network Technologies Switch manuals
Blade Network Technologies
Blade Network Technologies BLADEOS RackSwitch G8124 User manual
Blade Network Technologies
Blade Network Technologies RackSwitch G8000 User manual
Blade Network Technologies
Blade Network Technologies BLADEOS RackSwitch G8124 User manual
Blade Network Technologies
Blade Network Technologies RackSwitch G8000 User guide
