Qtech QSW-3900-1x10GE [241/313] Example 2

Содержание

• Content 2
• Chapter 1 accessing switch 15
• Command line configuration mode 15
• Command line interface 15
• Command line configuration mode 16
• Domain configuration mode 16
• Qtech software configuration manual 16
• Radius configuration mode 16
• The function and details of each command mode are as following 16
• Command syntax comprehension 17
• Enable 17
• Note defaulted login and password is admin 123456 17
• Password 1 16 chars 17
• Qtech config vlan 3 17
• Qtech quit 17
• Step 1 17
• Step 2 17
• Step 3 17
• Syntax help 17
• Username 1 32 chars 17
• History command 18
• Symbols in command 18
• 02 03 04 05 0 19
• Command parameter categories 19
• Command symbols description 19
• Integer 1 10 19
• Show spanning tree interface ethernet 0 0 1 ethernet 0 0 3 to ethernet 0 0 5 19
• Add user 20
• Modify password 20
• Please input user comfirm password 20
• Please input user new password 20
• Please input username red 20
• Please input you login password 20
• Qtech config username change password 20
• Qtech config username qtech privilege 3 password 0 1234 20
• System default user name 20
• User management 20
• Username change password 20
• Username username privilege level password encryption type password 20
• Modify privilege 21
• Remove user name 21
• View system user information 21
• Caution admin user only supports local database authentication 22
• Display authentication configuration 22
• Manage switch by hyper terminal 22
• Muser local radius radiusname tacacs tacacsname pap chap local 22
• Qtech admin 22
• Remote authentication of administrator 22
• Show muser 22
• Start radius tacacs remote authentication 22
• Username 1 32 chars 22
• Ways of managing switch 22
• Brief introduction of ssh 23
• Build successfully 23
• Building please wait 23
• Manage switch by telnet 23
• Qtech copy running config startup config 23
• Qtech quit 23
• Ready to load startup config press enter to run or ctrl c to cancel 23
• Startup config in flash will be updated are you sure y n ny 23
• Step 1 23
• Step 3 23
• Step 5 23
• Step 7 23
• Configure default key 24
• Crypto key generate rsa 24
• Download or upload key by tftp or ftp 24
• Enable disable ssh function of the device 24
• Load keyfile public private ftp server ip filename username passwd 24
• Load keyfile public private tftp server ip filename 24
• No ssh 24
• Qtech config ssh 24
• Qtech crypto key generate rsa 24
• Ssh configuration list 24
• Ssh key configuration 24
• Upload keyfile public private tftp server ip filename 24
• Clear configured key 25
• Crypto key refresh 25
• Crypto key zeroize rsa 25
• Load new key 25
• Others 25
• Qtech crypto key refresh 25
• Qtech crypto key zeroize rsa 25
• Qtech load keyfile public tftp 1 pub txt 25
• Show keyfile public private 25
• Show ssh 25
• Show users 25
• Stop username 25
• Upload keyfile public private ftp server ip filename username passwd 25
• Chapter 2 switch manage and maintenance 26
• Configuration files management 26
• Configuration ip address by manual operation 26
• Configure manage ip interface 26
• Copy running config startup config 26
• Edit configuration files 26
• Ip addres 26
• Ip address ip address mask 26
• Modify and save current configuration 26
• Qtech config if vlan ip address 192 68 00 255 55 26
• System ip configuration 26
• Clear startup config 27
• Copy startup config running config 27
• Display current configuration 27
• Display saved configuration 27
• Erase saved configuration 27
• Execute saved configuration 27
• Qtech clear startup config 27
• Qtech copy running config startup config 27
• Qtech show running config 27
• Qtech show running config garp oam 27
• Show running config module list 27
• Show startup config module list 27
• Buildrun mode continu 28
• Buildrun mode sto 28
• Configure file executing mode shift 28
• Load application configuration whole bootrom tftp tftpserver ip filename 28
• Online loading upgrade program 28
• Qtech buildrun mode continue 28
• Qtech buildrun mode stop 28
• Qtech load application tftp 192 68 00 app arj 28
• Qtech load configuration ftp 192 68 00 abc 28
• Qtech load whole bootrom tftp 192 68 00 rom3x26 bin 28
• Qtech upload alarm tftp 192 68 00 abc 28
• Qtech upload configuration ftp 192 68 00 abc username password 28
• Qtech upload logging tftp 192 68 00 abc 28
• Upload alarm configuration logging tftp tftpserver ip filename 28
• Upload and download files by tftp 28
• Download files by xmodem 29
• Load application configuration whole bootrom ftp ftpserver ip filename username userpassword 29
• Load application xmodem 29
• Qtech load application ftp 192 68 00 abc user 1234 29
• Qtech load application xmodem 29
• Qtech load configuration ftp 192 68 00 abc user 1234 29
• Qtech load configuration xmodem 29
• Qtech load whole bootrom ftp 192 68 00 abc user 1234 29
• Qtech upload alarm ftp 192 68 00 abc user 1234 29
• Qtech upload configuration ftp 192 68 00 abc user 1234 29
• Qtech upload logging ftp 192 68 00 abc user 1234 29
• Upload alarm configuration logging ftp ftpserver ip filename username userpassword 29
• Upload and download files by ftp 29
• Bootrom version v1 2 30
• Compiled time jul 16 2009 10 10 00 30
• Copyright copyright c 2001 2009 30
• Flash memory bytes 8192k 30
• Hardware version v2 30
• Mac address 00 1f ce 11 87 6f 30
• Processor ppc 8245 400mhz 30
• Product serial number 010500050806020000043o 30
• Qtech config sh ver 30
• Qtech load whole bootrom xmodem 30
• Reboot 30
• Sdram bytes 128m 30
• Show cloc 30
• Show cp 30
• Show memor 30
• Show syste 30
• Show user 30
• Show usernam 30
• Show versio 30
• Software platform broadband network platform software 30
• Software version qtech qsw 3900 v100r001b01d003p001sp9 30
• System maintenance 30
• Basic configuration and management 31
• Network connecting test command 31
• Login access list web snmp telnet telnet limit ip address wildcard 32
• Loopback external internal 32
• Loopback internal external 32
• Loopback test command 32
• Packets transmitted 5 packets received 0 packet loss 32
• Qtech config if ethernet 0 0 1 loopback external 32
• Qtech config login access list telnet 192 68 0 55 55 32
• Qtech config loopback internal 32
• Qtech config no login access list telnet 0 255 55 55 55 32
• Remote access restriction 32
• Round trip ms min avg max 0 0 0 32
• Show login access list 32
• Packets rate limit to cpu 33
• Routing tracert command 33
• The number of telnet user restriction 33
• Brief introduction of snmp 34
• Monitor system by snmp 34
• Qtech config cpu car 100 34
• Snmp mechanism 34
• Target rat 34
• Mib overview 35
• Snmp configuration 35
• Snmp protocol version 35
• Configure community name and accessing right 36
• Configure syscontact 36
• No snmp server community community name 36
• No snmp server contact 36
• Qtech config no snmp server community qtech 36
• Qtech config show snmp community 36
• Qtech config snmp server community qtech rw permit 36
• Qtech config snmp server contact support qtech ru 36
• Snmp server community community name ro rw deny permit view view name 36
• Snmp server contact syscontact 36
• Configure syslocation 37
• Configure trap destination host adress 37
• Configure engine id 38
• Configure notify 38
• Configure sysname 38
• No snmp server enable traps notificationtype list 38
• No snmp server engineid local remote ip address udp port port number 38
• No snmp server name 38
• Notificationtype lis 38
• Qtech config snmp server enable traps gbn 38
• Qtech config snmp server name qsw 3900 38
• Snmp server enable traps notificationtype list 38
• Snmp server engineid local engineid string remote ip address udp port port number engineid string 38
• Snmp server name sysname 38
• Configure group 39
• Configure view 39
• Engineid strin 39
• No snmp server view view name oid tree 39
• Qtech config no snmp server view view1 39
• Qtech config show snmp engineid local 39
• Qtech config show snmp view 39
• Qtech config snmp server engineid local 12345 39
• Qtech config snmp server engineid remote 1 udp port 888 1234 39
• Qtech config snmp server view view1 1 include 39
• Show snmp engineid local remote 39
• Snmp server view view name oid tree included excluded 39
• Configure user 40
• Brief introduction of cpu alarm 41
• Cpu alarm configuration 41
• Cpu alarm configuration list 41
• Dlf forward multicast unicast 41
• Enable disable dlf forword packet 41
• No dlf forward multicast unicast 41
• Qtech config no dlf forward multicast 41
• Qtech config no dlf forward unicast 41
• Qtech config snmp server user user1 grp1 41
• Qtech config snmp server user user2 grp2 auth md5 auth password 1234 41
• Qtech config snmp server user user3 grp3 auth md5 auth password 1234 priv des priv password 4321 41
• Alarm cpu 42
• Alarm cpu threshold busy busy unbusy unbusy 42
• Configure cpu busy or unbusy threshold 42
• Display cpu alarm information 42
• Enable disable cpu alarm 42
• No alarm cpu 42
• Qtech config alarm cpu 42
• Qtech config alarm cpu threshold busy 30 unbusy 10 42
• Qtech config show alarm cpu cpu status alarm enable cpu busy threshold 90 cpu unbusy threshold 60 cpu status unbusy 42
• Show alarm cpu 42
• Anti dos attack 43
• Anti dos ip fragment maxnum 43
• Ip segment anti attack 43
• Show anti dos 43
• Chapter 3 mac address table management 44
• Introduction to bridging 44
• Maintaining the bridge table 44
• Major functionalities of bridges 44
• Forwarding and filtering 46
• Brief introduction of mac address table management 48
• Mac address table management list 48
• Note when a bridge receives a broadcast or multicast frame it forwards the frame to all interfaces other than the receiving interface 48
• Add blackhole mac address 49
• Add mac address 49
• Configure mac address item 49
• Configure system mac address aging time 49
• Mac address table age time agetime disable 49
• Mac address table blackhole mac vlan vlan id 49
• Mac address table dynamic permanent static mac interface interface num vlan vlan id 49
• No mac address table age time 49
• Qtech config mac address table age time 3600 49
• Qtech config mac address table static 00 01 02 03 04 05 interface ethernet 0 0 1 vlan 1 49
• Qtech config no mac address table age time 49
• Qtech config show mac address table aging time 49
• Show mac address table age time 49
• Delete mac address item 50
• Display mac address table 50
• Enable disable mac address learning 50
• Display mac address learning 51
• Mac address table learning mode svl ivl 51
• Modify mac address learning mode 51
• Qtech config mac address table learning mode ivl 51
• Qtech config show mac address table learning mode 51
• Show mac address learning interface interface num 51
• Show mac address table learning mode 51
• Chapter 4 port configuration 52
• Enable disable specified interface 52
• Enter interface configuration mode 52
• Interface ethernet interface number 52
• Port configuration 52
• Port configuration introduction 52
• Port related configuration 52
• Shutdown 52
• Configure interface duplex mode and speed rate 53
• Description description list 53
• Duplex auto full half 53
• Interface description configuration 53
• Interface priority configuration 53
• No duplex 53
• No shutdown 53
• No speed 53
• Qtech config if ethernet 0 0 1 duplex full 53
• Qtech config if ethernet 0 0 1 no shutdown 53
• Qtech config if ethernet 0 0 1 speed 100 53
• Qtech config if ethernet 0 0 5 no priority 53
• Qtech config if ethernet 0 0 5 priority 1 53
• Qtech config if ethernet 0 1 1 shutdown 53
• Speed 10 10auto 100 100 auto 1000 1000 auto auto 53
• Bandwidth ingress egress target rate 54
• Enable disable interface flow control 54
• Enable disable vlan filtration of receiving packet of 54
• Flow control 54
• Ingress acceptable frame all tagged 54
• Ingress egress bandwidth control configuration 54
• Ingress filtering 54
• Interface 54
• Interface ingress acceptable frame configuration 54
• No bandwidth ingress egress 54
• No ingress acceptable frame 54
• No ingress filtering 54
• Qtech config if ethernet 0 0 3 description qtech 54
• Qtech config if ethernet 0 0 5 ingress acceptable frame tagged 54
• Qtech config if ethernet 0 0 5 ingress filtering 54
• Qtech config if ethernet 0 0 5 no ingress filtering 54
• Qtech config show description interface ethernet 0 0 3 54
• No flow control 55
• No switchport mode 55
• No switchport trunk allowed vlan vlan list all 55
• No switchport trunk native 55
• Port mode configuration 55
• Qtech config if ethernet 0 0 1 switchport mode trunk 55
• Qtech config if ethernet 0 0 1 switchport trunk allowed vlan 3 4 70 150 55
• Qtech config if ethernet 0 0 5 flow control 55
• Qtech config if ethernet 0 0 5 no flow control 55
• Qtech config if ethernet 0 0 5 show flow control ethernet 0 0 5 55
• Show flow control interface num 55
• Switchport mode trunk access 55
• Switchport trunk allowed vlan vlan list all 55
• Switchport trunk native vlan vlan id 55
• The default vlan id of trunk port configuration 55
• Trunk allowed vlan configuration 55
• Add access port to specified vlan 56
• Brief introduction of interface mirror 56
• Clear interface interface num slot num 56
• Display clear interface statistics information 56
• Display interface information 56
• Interface mirror 56
• No switchport access vlan vlan id 56
• Show interface interface num 56
• Show statistics interface interface num 56
• Switchport access vlan vlan id 56
• Brief introduction of port lacp 57
• Configure mirror interface 57
• Configure mirror source interface 57
• Display interface mirror 57
• Interface mirror configuration 57
• Mirror destination interface interface num 57
• Mirror source interface interface list cpu both egress ingress 57
• No mirror destination interface interface num 57
• No mirror source interface interface list cpu 57
• Qtech config mirror destination interface ethernet 0 0 1 57
• Qtech config mirror source interface ethernet 0 0 1 to ethernet 0 0 12 both 57
• Qtech config no mirror source interface ethernet 0 0 10 to ethernet 0 0 12 57
• Qtech show mirror 57
• Show mirror 57
• Manual link aggregation 59
• Overview 59
• Port configuration considerations in manual aggregation 59
• Port states in a manual aggregation 59
• Port states in static aggregation 59
• Static lacp link aggregation 59
• Aggregation port group 60
• Channel group channel group number 60
• Link aggregation configuration 60
• Load balance in a link aggregation group 60
• Port configuration considerations in static aggregation 60
• Qtech config channel group 0 60
• Brief introduction of interface car 62
• Enable disable interface car on interface 62
• Enable disable interface globally 62
• Interface bpdu rate configuration 62
• No port car 62
• Port car 62
• Port car configuration command list 62
• Qtech config port car 62
• Qtech show lacp internal 2 62
• Qtech show lacp neighbor 2 62
• Show lacp neighbor channel group number 62
• Brief introduction of port alarm configuration 63
• Configure the port car rate 63
• Configure the reopen time of the port shutdown by 63
• Display port car information 63
• No port car 63
• Port alarm configuration 63
• Port alarm configuration list 63
• Port car 63
• Port car open time time 63
• Port car rate rate 63
• Qtech config if ethernet 0 0 8 port car 63
• Qtech config port car open time 10 63
• Qtech config port car rate 200 63
• Qtech config show port car 63
• Show port car 63
• Alarm all packets 64
• Alarm all packets threshold exeed rate normal rate 64
• Configure the exceed threshold and normal threshold 64
• Display port alarm 64
• Enable disable port alarm globally 64
• Enable disable port alarm on the port 64
• No alarm all packets 64
• Normal by default 100 base exceed threshold is 85 normal 64
• Of port alarm 64
• Qtech config alarm all packets 64
• Qtech config alarm all packets threshold exceed 500 normal 300 64
• Qtech config if ethernet 0 0 8 alarm all packets 64
• Qtech config show alarm all packets interface ethernet 0 0 1 64
• Show alarm all packets 64
• Threshold is 60 64
• Configuration interface shutdown control 65
• Configuration mode and time 65
• E0 0 1 port alarm information 65
• Interface shutdown control configuration list 65
• No shutdown control broadcast multicast unicast 65
• Port alarm exceed threshold mbps 85 65
• Port alarm normal threshold mbps 60 65
• Port alarm status enable 65
• Qtech config show alarm all packets interface ethernet 0 0 1 65
• Show alarm all packets interface interface list 65
• Shutdown control broadcast multicast unicast target rate 65
• Shutdown control feature 65
• Shutdown control recover automatic open time seconds mode automatic manual seconds 65
• Total entries 1 65
• Display shutdown control 66
• No port isolation interface list all 66
• No storm control broadcast multicast dlf 66
• Port isolation configuration 66
• Port isolation interface list 66
• Qtech config if ethernet 0 0 8 shutdown control broadcast 100 66
• Qtech config no port isolation ethernet 0 0 3 to ethernet 0 0 5 ethernet 0 0 8 66
• Qtech config port isolation ethernet 0 0 1 ethernet 0 0 3 to ethernet 0 0 5 ethernet 0 0 8 66
• Qtech config show shutdown control 66
• Show shutdown control 66
• Storm control broadcast multicast dlf 66
• Storm control rate target rate 66
• Strom control configuration 66
• Qtech config if ethernet 0 0 1 storm control multicast 67
• Qtech config if ethernet 0 0 1 storm control rate 2048 67
• Qtech config if ethernet 0 0 3 storm control multicast 5120 67
• Chapter 5 vlan configuration 68
• Introduction to vlan 68
• Vlan overview 68
• Vlan classification 69
• Vlan fundamental 69
• Vlan interface 69
• Default vlan 70
• Port based and 802 q vlan 70
• Port link type 70
• Super vlan 70
• Vlan interface type 70
• Create delete vlan 71
• Default vlan 71
• No vlan vlan list all 71
• Vlan configuration list 71
• Vlan vlan list 71
• Add delete vlan interface 72
• Configure interface type 72
• Description string 72
• No description 72
• No switchport interface list all 72
• Qtech config if vlan description market 72
• Qtech config if vlan no description 72
• Qtech config if vlan no switchport ethernet 0 0 3 to ethernet 0 0 5 ethernet 0 0 8 72
• Qtech config if vlan switchport ethernet 0 0 1 ethernet 0 0 3 to ethernet 0 0 5 ethernet 72
• Specify restore vlan description 72
• Switchport interface list all 72
• Configure interface default vlan id 73
• Configure tag vlan 73
• Display vlan information 73
• No tag vlan vlan list 73
• Qtech config if ethernet 0 0 1 switchport access vlan 2 73
• Qtech config if ethernet 0 0 1 switchport mode access 73
• Qtech config if ethernet 0 0 1 tag vlan 5 7 10 73
• Qtech config show vlan 2 73
• Show vlan vlan id 73
• Switchport access vla 73
• Switchport access vlan vlan id 73
• Switchport trunk native vla 73
• Switchport trunk native vlan vlan id 73
• Tag vlan vlan list 73
• Brief introduction of gvrp 74
• Garp messages and timers 74
• Garp protocol 74
• A garp application entity may send leaveall messages at the interval set by its leaveall 75
• Figure 1 75
• Garp message format 75
• Operating mechanism of garp 75
• The settings of garp timers apply to all garp applications such as gvrp on a lan 75
• Timer or the leaveall timer on another device on the network whichever is smaller this is because each time a device on the network receives a leaveall message it resets its leaveall timer 75
• Unlike other three timers which are set on a port basis the leaveall timer is set in system 75
• View and takes effect globally 75
• Enable disable global gvrp 76
• Gvrp configuration list 76
• Table 1 76
• Add delete vlan that can be dynamic learnt by gvrp 77
• Display gvrp 77
• Enable disable gvrp on a port 77
• Garp permit vlan vlan list 77
• No garp permit vlan vlan list 77
• No gvrp 77
• Qtech config garp permit vlan 2 4 77
• Qtech config gvrp 77
• Qtech config if ethernet 0 0 8 gvrp 77
• Qtech config show gvrp interface ethernet 0 0 1 77
• Show gvrp 77
• Show gvrp interface interface list 77
• Brief introduction of qinq 78
• Display vlan that can be learnt by gvrp 78
• Examples for gvrp configuration 78
• Introduction to qinq 78
• Qtech config if ethernet 0 0 2 gvrp 78
• Qtech config if ethernet 0 0 2 no gvrp 78
• Qtech config show garp permit vlan 78
• Show garp permit vlan 78
• Adjustable tpid value of qinq frames 79
• Figure 1 79
• Figure 2 79
• Implementations of qinq 79
• Note the qinq feature requires configurations only on the service provider network and not on the customer network 79
• Configure global qinq 80
• Qinq configuration list 80
• Table 1 80
• Configure interface dynamic qinq 81
• Configure qinq mode of interface 81
• Dtag flexible qinq outer tpid tpid 81
• Dtag insert startvlanid endvlanid targetvlanid 81
• Dtag mode customer service provider 81
• Dtag pass through startvlanid endvlanid 81
• No dtag 81
• No dtag insert startvlanid endvlanid 81
• Qtech config dtag outer tpid 9100 81
• Qtech config if ethernet 0 0 1 dtag insert 1 2 3 81
• Qtech config if ethernet 0 0 1 dtag mode customer 81
• Qtech config if ethernet 0 0 1 dtag pass through 1 2 81
• Qtech config no dtag insert 1 2 3 81
• Configure global vlan swap 82
• Configure rewrite outer vlan 82
• Enable disable vlan swap 82
• No dtag pass through startvlanid endvlanid 82
• No vlan swap 82
• No vlan swap original vlanid swap vlan id 82
• Qtech config if ethernet 0 0 1 no dtag pass through 1 2 82
• Qtech config no vlan swap vlan1 vlan2 82
• Qtech config vlan swap 82
• Qtech config vlan swap vlan1 vlan2 82
• Vlan swap 82
• Vlan swap original vlanid swap vlan id 82
• Display dynamic qinq 83
• Display rewrite outer vlan 83
• Display vlan swap 83
• No rewrite outer vlan start inner vid end inner vid outer vlan outer vid 83
• Qtech config if ethernet 0 0 1 rewrite outer vlan 1 50 outer vlan 3 new outer vlan 83
• Qtech config show dtag 83
• Qtech config show dtag pass through 83
• Qtech config show rewrite outer vlan 83
• Qtech config show vlan swap 83
• Rewrite outer vlan start inner vid end inner vid outer vlan outer vid new outer vlan new outer vid 83
• Show dtag 83
• Show dtag pass through 83
• Show rewrite outer vlan 83
• Show vlan swap 83
• Brief introduction of layer 3 switching 85
• Chapter 6 layer 3 configuration 85
• Layer 3 cnfiguration list 85
• Transmission mode configuration 85
• Vlan division and the creation of layer 3 interface 85
• Configure accessing ip address range of vlan or 86
• Configure ip address for vlan interface or 86
• Create supervlan interface and add vlan to 86
• Create vlan interface for normal vlan 86
• Ip address range startip endip 86
• No ip def cpu 86
• Qtech config if supervlaninterface 1 no subvlan 3 qtech config if supervlaninterface 1 no subvlan 4 86
• Qtech config if vlaninterface 2 ip address 10 1 255 55 86
• Qtech config if vlaninterface 2 ip address primary 10 1 86
• Qtech config if vlaninterface 2 no ip address 86
• Qtech config interface supervlan interface 1 qtech config if supervlaninterface 1 subvlan 3 qtech config if supervlaninterface 1 subvlan 4 86
• Supervlan 86
• Supervlan interface 86
• Arp proxy configuration 87
• Arp proxy no arp proxy 87
• Brief introduction of static routing 87
• Default route 87
• Display interface configuration 87
• Qtech config arp proxy 87
• Qtech config no arp proxy 87
• Qtech config show ip interface 87
• Qtech config show ip interface supervlan interfac 3 87
• Qtech config show ip interface vlan interface 2 87
• Add delete static route 88
• Application environment of static routing 88
• Destination address and mask 88
• Display route table information 88
• Ip route ip dest mask dest nexthop 88
• Next hop address 88
• Qtech config ip route 192 68 00 255 55 55 55 10 1 54 88
• Qtech config no ip route 192 68 00 255 55 55 55 88
• Qtech config show ip route static 88
• Show ip route static 88
• Static routing configuration list 88
• Qtech config show ip route 89
• Qtech config show ip route 192 68 00 255 55 55 89
• Background 90
• Benefits 90
• Chapter 7 vrrp 90
• Figure 1 lan networking 90
• Overview 90
• Concepts 91
• Introduction to vrrp 91
• Introduction to virtual router 92
• Vrrp working process 92
• Authentication to enhance security 93
• If the master priority in the vrrp advertisement is higher than the priority of the router the router remains as a backup 93
• If the master priority in the vrrp advertisement is lower than the priority of the router when the router works in preemptive mode it becomes the master to periodically send vrrp packets when the router works in non preemptive mode it remains as a backup 93
• If the priority of a backup is higher than that of the master whether a new master needs to be elected depends on the working mode of the backup preemptive or non preemptive 93
• If the router does not receive a vrrp advertisement in a certain period it becomes the master 93
• Master election 93
• Master state advertisement 93
• Application scenarios 94
• Backup s monitoring of the master state 94
• Master backup 94
• Figure 3 vrrp in master backup mode 95
• Figure 4 vrrp in load balancing mode 95
• Load balancing 95
• Figure 5 master monitors the uplinks 96
• Master s monitoring of uplinks through bfd nqa 96
• Virtual router 1 device a is the master device b and device c are the backups 96
• Virtual router 2 device b is the master device a and device c are the backups 96
• Virtual router 3 device c is the master device a and device b are the backups 96
• Backup s monitoring of master state using bfd 97
• Figure 6 backup monitors the master state 97
• References 97
• Rfc 3768 virtual router redundancy protocol vrrp 97
• Vrrp configuration 97
• Add or delete virtual ip address 98
• Configure preeptible way and delay time of backup 98
• Configure priority of backup group 98
• Configure timer of backup group 99
• Enable ping of virtual ip 99
• Vrrp monitor and maintenance 99
• Brief introduction of rip 100
• Chapter 8 rip configuration 100
• Rip overview 100
• Basic concept of rip 101
• Rip initialization and running procedure 101
• Rip routing table 101
• Rip timers 101
• Rip working mechanism 101
• Routing loops prevention 101
• Note ripv2 has two types of message transmission broadcast and multicast multicast is the default type using 224 as the multicast address the interface working in the ripv2 broadcast mode can also receive ripv1 messages 102
• Rip message format 102
• Rip version 102
• Ripv1 message format 102
• Rfc 1723 only defines plain text authentication for information about md5 authentication refer to rfc2082 ripv2 md5 authentication 103
• Ripv2 authentication 103
• Ripv2 authentication message 103
• Ripv2 message format 103
• With ripv1 you can configure the authentication mode in interface view however the configuration will not take effect because ripv1 does not support authentication 103
• Message types 104
• Protocols and standards 104
• Rip configuration list 104
• Trip retransmission mechanism 104
• Working mechanism 104
• Enable rip 105
• Ip rip input 105
• Ip rip output 105
• Ip rip work 105
• Network ip address 105
• No ip rip input 105
• No ip rip output 105
• No ip rip work 105
• No network ip address 105
• No route rip 105
• Rip version of specified interface 105
• Rip working status of specified interface 105
• Route rip 105
• Specify ip network to run rip protocol 105
• Auto summary 106
• Configure authentication to rip packet 106
• Configure split 106
• Enable host routing 106
• Enable route convergence 106
• Host route 106
• Ip rip authentication simple md5 password key id number key string string 106
• Ip rip version 1 106
• Ip rip version 2 bcast 106
• Ip rip version 2 mcast 106
• No auto summary 106
• No host route 106
• No ip rip authentication 106
• No ip rip version 106
• Configure metricin 107
• Configure redistribution 107
• Define prefix list 107
• Ip prefix list 107
• Ip prefix list default 107
• Ip rip metricin value 107
• Ip rip metricout value 107
• Ip rip split 107
• No ip prefix list 107
• No ip prefix list default 107
• No ip rip metricin 107
• No ip rip metricout 107
• No ip rip split 107
• No redistribute 107
• Redistribute 107
• Configure distribute list 108
• Display rip configuration 108
• Distribute list gate way in 108
• Distribute list prefix list in 108
• Distribute list prefix list out 108
• No distribute list 108
• Show ip rip 108
• Show ip rip interface 108
• Show ip route rip 108
• Background 109
• Benefits 109
• Bfd implementation 109
• Chapter 9 bfd 109
• Mechanism 109
• Overview 109
• A bfd control packet consists of the required fields and the optional authentication fields 111
• Bfd control packet authentication fields 111
• Bfd control packet format 111
• Bfd control packets 111
• Bfd packets 111
• Field description 111
• Figure 3 shows the format of the required fields 111
• Figure 4 shows the format of the optional authentication fields 111
• Qtech software configuration manual 111
• Table 1 description of the fields of a bfd control packet 111
• A session to be established the following example shows the session establishment process with both ends working in the active mode the session establishment process with one end in active mode and the other in passive mode is the same 112
• Active mode before a session is established bfd actively sends bfd control packets regardless of whether any bfd control packet is received from the peer 112
• Before a bfd session is established there are two bfd operation modes active or passive 112
• Bfd control packets are encapsulated in udp packets using destination port 3784 and a source port from 49152 to 65535 112
• Bfd echo packets 112
• Bfd echo packets are encapsulated in udp packets using destination port 3785 with the ip address of the transmitting interface as the destination ip address and a configured source ip address which must not cause icmp redirection 112
• Bfd echo packets provide a fault detection mechanism without the use of bfd control packets one end sends bfd echo packets to the peer which returns received bfd echo packets back without processing them therefore no bfd echo packet format is defined as long as the transmitting end can distinguish between sessions through packet contents 112
• Bfd session establishment 112
• During session initialization at least one end of the two in communication must operate in the active mode for 112
• Field description 112
• Passive mode before a session is established no bfd control packet is sent until a bfd control packet is received from the peer 112
• Qtech software configuration manual 112
• Application routers a and b send a bfd control packet in down state to the peer 113
• As shown in the above figure upon receipt of a notification from an upper layer 113
• Both bfd peers are up a session is established successfully and bfd starts to 113
• Detect link failures 113
• Local session state transits from init to up in the bfd control packet sent subsequently the sta field is filled with a value of 3 indicating the session state is up router b experiences the same bfd state transition as router a 113
• Session state transits from down to init in the bfd control packet sent subsequently the sta field is filled with a value of 2 indicating the session state is init router a experiences the same bfd state transition as router b 113
• Timer negotiation 113
• When router a receives the bfd control packet in init state from the peer the 113
• When router b receives the bfd control packet in down state the local 113
• After bfd session establishment and timer negotiation both ends start to transmit bfd control 115
• Application scenarios 115
• Configuring bfd for routing protocols 115
• Fault detection 115
• Packets at the negotiated interval each time a bfd control packet is received the detection timer is reset so that the session remains up if no bfd control packet is received within the detection timer the bfd session state transits to down and bfd notifies the failure to the upper layer application it services the upper layer application then takes proper measures when the bfd session on the local end is down the sta field of the bfd control packet transmitted to the peer is filled with a value of 1 to notify the peer that the session is down then the bfd session state of the peer also transits to down 115
• Configuring bfd for fast reroute 116
• Bfd configuration 117
• Bfd configuration list 117
• Configuring bfd for vrrp 117
• Confiure bfd detect multiplier 118
• Confiure bfd min receive interval 118
• Confiure bfd min transmit interval 118
• Enable ospf bfd 118
• Clear statistics of all session sending receiving packet 119
• Confiure bfd session demand 119
• Confiure bfd session initial mode 119
• In current interface 119
• Show all bfd session 119
• Show bfd configuration in all interface 120
• Brief introduction of ospf 121
• Chapter 10 ospf configuration 121
• Autonomous system 122
• Basic concepts 122
• Lsa types 122
• Ospf packets 122
• Ospf route computation 122
• Router id 122
• Area partition 123
• Neighbor and adjacency 123
• Ospf area partition and route summarization 123
• Area border router abr 124
• Autonomous system border router asbr 124
• Backbone router 124
• Classification of routers 124
• Internal router 124
• Ospf area partition 124
• Backbone area and virtual links 125
• Ospf router types 125
• Nssa area 126
• Totally stub area 126
• Virtual link application 1 126
• Virtual link application 2 126
• Abr route summarization 127
• Asbr route summarization 127
• Nssa area 127
• Route summarization 127
• Route types 127
• Classification of ospf networks 128
• Ii nbma network configuration principle 128
• Ospf network types 128
• Dr and bdr 129
• Dr and bdr in a network 129
• Dr bdr election 129
• Dr bdr introduction 129
• Note that 129
• Packet to all the other routers if two routers on the network declare themselves as the dr the router with the higher dr priority wins if dr priorities are the same the router with the higher router id wins in addition a router with the priority 0 cannot become the dr bdr 129
• The dr election is available on broadcast nbma interfaces rather than p2p or p2mp 129
• The election votes are hello packets each router sends the dr elected by itself in a hello 129
• A dr is an interface of a router and belongs to a single network segment the router s 130
• After dr bdr election and then a new router joins it cannot become the dr immediately 130
• Be the router with the second highest priority 130
• Even if it has the highest priority on the network 130
• Hello packet 130
• Interfaces 130
• Note md5 authentication data is added following an ospf packet rather than contained in the authentication field 130
• Ospf packet format 130
• Ospf packet formats 130
• Ospf packet header 130
• Other interfaces may be a bdr or drother 130
• The dr may not be the router with the highest priority in a network and the bdr may not 130
• Dd packet 131
• Hello packet format 131
• Dd packet format 132
• Lsr packet 132
• Lsr packet format 132
• Lsa header format 133
• Lsack packet 133
• Lsack packet format 133
• Lsu packet 133
• Lsu packet format 133
• Formats of lsas 134
• Lsa header format 134
• Router lsa 134
• Router lsa format 134
• Network lsa 135
• Network lsa format 135
• Summary lsa 135
• Summary lsa format 135
• As external lsa 136
• As external lsa format 136
• Note a type 3 lsa can be used to advertise a default route having the link state id and network mask set to 0 136
• Nssa external lsa 136
• Authentication 137
• Hot standby and gr 137
• Multi process 137
• Nssa external lsa format 137
• Supported ospf features 137
• Igp shortcut and forwarding adjacency 138
• Ospf graceful restart 138
• Te and ds tete 138
• Ospf configuration list 139
• Ospf sham link 139
• Protocols and standards 139
• Configure area authentication type 140
• Configure router id 140
• Enable disable ospf 140
• Network address wildcard mask area area id 140
• No network address wildcard mask area area id 140
• No router id 140
• No router ospf 140
• Qtech config router id 10 1 140
• Router id router id 140
• Router ospf 140
• Specify interface and area id 140
• Area area id authentication message digest 141
• Configure interface cost 141
• Configure interface type 141
• Ip ospf network broadcast non broadcast point to multipoint point to point 141
• No area area id authentication 141
• No ip ospf network 141
• Qtech config router ospf area 0 authentication message digest 141
• Configure hello time interval 142
• Configure priority when selecting dr 142
• Ip ospf cost cost 142
• Ip ospf priority value 142
• No ip ospf cost 142
• No ip ospf priority 142
• Qtech config if vlaninterface 3 ip ospf cost 10 142
• 0 configure retransmission lsa time interval of 143
• Caution after modifying network type hello interval and dead interval are 143
• Configure interface invalid time of neighbour 143
• Ip ospf dead interval seconds 143
• Ip ospf hello interval seconds 143
• Ip ospf retransmit interval seconds 143
• Neighbor router 143
• No ip ospf dead interval 143
• No ip ospf hello interval 143
• No ip ospf retransmit interval 143
• Qtech config if vlaninterface 3 ip ospf dead interval 60 143
• Qtech config if vlaninterface 3 ip ospf hello interval 15 143
• Restore to the default value 143
• Routers 143
• 1 configure time needed when interface sending link 144
• 2 configure packet authentication key 144
• 3 configure stub area of ospf 144
• Ip ospf authentication key password 144
• Ip ospf message digest key key id md5 key 144
• Ip ospf transmit delay seconds 144
• No ip ospf authentication key 144
• No ip ospf message digest key 144
• No ip ospf transmit delay 144
• Passwor 144
• Qtech config if vlaninterface 3 ip ospf authentication key abc123 144
• State update packet 144
• 4 configure route convergence in ospf 145
• 5 configure ospf virtual connection 145
• Area area id default cost cost 145
• Area area id range address mask advertise notadvertise 145
• Area area id stub no summery 145
• No area area id default cost 145
• No area area id range address mask 145
• No area area id stub 145
• Qtech config router ospf area 1 range 202 8 255 55 145
• Qtech config router ospf area 1 stub qtech config router ospf area 1 default cost 10 145
• 6 configure route introduced by ospf other route 146
• Protocol 146
• 7 configure ospf introduced default route 147
• 8 configure external route parameter received by 147
• 9 ospf monitor and maintain 147
• Qtech config router ospf show ip ospf 148
• Qtech config router ospf show ip ospf database 148
• Qtech config router ospf show ip ospf neighbor 148
• Qtech config router ospf show ip ospf virtual link 148
• Show ip ospf border routers 148
• Show ip ospf cumulative 148
• Show ip ospf database 148
• Show ip ospf error 148
• Show ip ospf interface 148
• Show ip ospf neighbor 148
• Show ip ospf request list 148
• Show ip ospf retrans list 148
• Show ip ospf virtual link 148
• Show ip route ospf 148
• Brief introduction of bgp 149
• Chapter 11 bgp configuration 149
• Bgp message type 150
• Bgp route attributes 152
• Figure 6 as_path attribute 154
• Next_hop 154
• You can use the peer allow as loop command to allow as number repetition to meet some special needs 154
• A bgp router adopts the following policies to advertise routes 157
• A bgp router filters routes in the following order 157
• Bgp route advertising policy 157
• Bgp routing policy 157
• Bgp routing tables in a large scale network may be huge in size route summarization can largely diminish 157
• Cannot be advertised outside the confederation they can only be advertised in the sub ass in the confederation 157
• Chooses routes in the order of the route origin type that is the order of igp egp and incomplete 157
• Chooses the route learnt from ebgp the route learnt from confederation and the route learnt from the ibgp in turn 157
• Does not send ibgp routes to its ibgp peers 157
• Drops the next_hop unreachable route 157
• No_advertise routes with this attribute cannot be advertised to any other bgp peers after being received by a bgp router 157
• No_export_subconfed routes with this attribute can neither be advertised outside the local as nor be advertised to other sub ass inside the confederation after being received 157
• Prefers the route with highest local_pref value 157
• Prefers the route with the lowest med value 157
• Prefers the route with the shortest as path 157
• Prefers the route with the smallest originator id 157
• Prefers the route with the smallest router id 157
• Prefers the routes starting from the local router 157
• Problems in large scale bgp networks 157
• Qtech software configuration manual 157
• Route summarization 157
• Route summarization aggregates multiple routes to one route it enables a bgp router to replace multiple 157
• Sends all its bgp routes to the new peer once a new bgp connection is established 157
• Sends all the ebgp routes to all its bgp peers including the ebgp peers and ibgp peers 157
• Sends ibgp routes to its ebgp peers 157
• Sends only the routes used by itself to its peers 157
• Sends the optimal route to its peers when multiple valid routes exist 157
• Specific routes with one summary route 157
• The size of a routing table 157
• With prefered value specified chooses the route with highest prefered value value 157
• Bgp route dampening 158
• Figure 10 diagram for bgp route dampening 158
• Peer group 158
• Community 159
• Figure 11 diagram for the route reflector 159
• If a bgp peer and the peer group containing the bgp peer are configured differently the last configuration takes effect 159
• Router reflector 159
• Confederation 160
• Figure 12 a cluster containing two rrs 160
• The configuration to disable routing information reflection only applies to clients that is routing information can still be reflected between a client and a non client even if you disable routing information reflection 160
• Basic bgp configuration 161
• Bgp configuration task list 161
• Complete the following tasks to configure bgp 161
• Figure 13 a confederation implementation 161
• In a large scale bgp network router reflector and confederation can be used simultaneously 161
• Others are still in draft such as the graceful restart feature and the extended community attribute 161
• Protocol standard 161
• Protocol standards concerning bgp are 161
• Qtech software configuration manual 161
• Required 161
• Rfc1771 a border gateway protocol 4 bgp 4 161
• Rfc1997 bgp communities attribute 161
• Rfc2439 bgp route flap damping 161
• Rfc2796 bgp route reflection 161
• Rfc2858 multiprotocol extensions for bgp 4 161
• Rfc2918 route refresh capability for bgp 4 161
• Rfc3065 autonomous system confederations for bgp 161
• Rfc3392 capabilities advertisement with bgp 4 161
• Task remarks 161
• The disadvantage of confederation is that when an as changes from non confederation to confederation configurations are needed on the routers and the topology changes 161
• To a bgp speaker that does not belong to any confederation the sub ass of a confederation are a whole and the information about the sub ass is invisible to the bgp speaker the confederation id which is usually the corresponding as number uniquely identifies a confederation in figure 13 as 200 is a confederation id 161
• Bgp configuration 162
• Enable disable bgp 162
• No router bgp as number 162
• Optional 162
• Required 162
• Router bgp as number 162
• Task remarks 162
• Configure bgp peer 163
• Configure bgp timer 164
• Configure local preference 164
• Compare med from different as neighbors 165
• Configure as med 165
• Configure bgp route aggregation 165
• Configure route information of igp protocol 165
• Introduced by bgp 165
• 0 define as path list 166
• Alternation matches either left side or right side 166
• Any character except listing in square brackets is in the front of the character 166
• Configure bgp distribution list 166
• End of the string or a space 166
• Hyphen 166
• Ip distribute list list number permit deny net addr wildcard netmask 166
• Match the beginning of the string 166
• Match the end of the string 166
• No ip distribute list list number permit deny net addr wildcard netmask 166
• Symbol description 166
• _ underline match comma the beginning of the string the 166
• 1 bgp monitor and maintenance 167
• Show ip bgp ip address a b c d m 167
• Show ip bgp neighbors neighbor address 167
• Show ip bgp summary 167
• Background 168
• Benefits 168
• Chapter 12 multicast protocol configuration 168
• Multicast implementation 168
• Overview 168
• Multicast addressing mechanism 169
• As for link layer multicast this document focuses on the multicast implementations of the ethernet protocol only and the multicast implementations of other link layer protocols are out of the scope of this document 170
• Figure 3 ip to mac address mapping 170
• Group membership management 170
• Igmpv1 documented in rfc 1112 defines the group member query and report processes 170
• Igmpv2 documented in rfc 2236 adds a leave group mechanism based on igmpv1 170
• Multicast address mapping 170
• A major enhancement in igmpv3 documented in rfc 3376 is that it allows hosts to specify a list of sources they expect or do not expect multicast data from the source specific multicast ssm model needs the support of igmpv3 171
• Figure 4 how igmpv2 works 171
• Igmp snooping 171
• Based on the group memberships maintained by igmp an intra domain multicast routing protocol builds multicast distribution trees according to certain 172
• Multicast forwarding tree 172
• Multicast packet forwarding 172
• Multicast packet forwarding mechanism 172
• Multicast routing protocols 172
• Able to differentiate the unicast topology and the multicast topology 174
• Having a set of stable methods for peering and policy control 174
• Inter domain multicast routing protocols 174
• Multicast border gateway protocol mbgp is used for exchanging multicast routing information between ass 174
• Multicast source discovery protocol msdp is used for advertising multicast source information between internet service providers isps 174
• When a multicast source sends multicast data to a multicast group the source side dr first registers the multicast source with the rp by sending register messages to the rp by unicast the arrival of a register message at the rp triggers the establishment of an spt then the multicast source sends subsequent multicast packets along the spt to the rp upon reaching the rp the multicast packet is duplicated and delivered to the receivers down the rpt 174
• Asm model any source multicast model in the asm model any sender can be a multicast source sending multicast information to a multicast group and receivers can join a multicast group identified by a group address and obtain multicast information addressed to that multicast group in this model receivers are not aware of the location of the multicast source in advance however they can join or leave the multicast group at any time 175
• Gmrp overview 175
• Multicast models 175
• Ssm model source specific multicast model in actual situations users may be interested in the multicast data only from certain specific multicast sources the ssm model provides a transmission service that allows users to specify the multicast sources they are interested in at the client side 175
• With igmpv1 or igmpv2 running on the receivers no source addresses are specified in igmpv1 or igmpv2 report messages in such cases static ssm mappings must be configured on the router to map the g information carried in these reports to the g include s1 s2 information 175
• With igmpv3 running on the receivers multicast source addresses are contained in igmpv3 report messages 175
• Caution enable global gmrp before enable gmrp on a port by default global 176
• Display gmrp 176
• Enable disable global gmrp 176
• Enable disable gmrp on a port 176
• Gmrp configuration 176
• Gmrp configuration list 176
• Gmrp deisables and gmrp on a port can be enabled in trunk mode interface 176
• No gmrp 176
• Qtech config gmrp 176
• Qtech config if ethernet 0 0 3 gmrp 176
• Show gmrp 176
• Igmp snooping 177
• Igmp snooping overview 177
• Basic concepts in igmp snooping 178
• Igmp snooping related ports 178
• Actions 179
• An igmp snooping enabled switch deems that all its ports on which igmp general 179
• How igmp snooping works 179
• Leads the switch to a layer 3 multicast device rather than a port on a router 179
• Port aging timers in igmp snooping and related messages and 179
• Queries with the source address other than 0 or pim hello messages are received to be router ports 179
• Table 1 179
• The port aging mechanism of igmp snooping works only for dynamic ports a static port will never age out 179
• When receiving a general query 179
• Whenever mentioned in this document a router port is a port on the switch that 179
• A switch does not forward an igmp report through a non router port the reason is as follows due to the igmp report suppression mechanism if the switch forwards a report message through a member port all the attached hosts listening to the reported multicast address will suppress their own reports upon hearing this report and this will prevent the switch from knowing whether any hosts attached to that port are still active members of the reported multicast group 180
• When receiving a leave group message 180
• When receiving a membership report 180
• Processing of multicast protocol messages 181
• Qtech software configuration manual 182
• Table 2 3 igmp snooping messages 182
• An igmp snooping enabled ethernet switch judges whether the multicast group exists when it receives an igmp leave packet sent by a host in a multicast group if this multicast group does not exist the switch will drop the igmp leave packet instead of forwarding it 183
• Caution 183
• Mld snooping 183
• Mld snooping configuration 183
• Mld snooping protocol overview 183
• No mld snooping 183
• Protocols and standards 183
• Show mld snooping 183
• Mld snooping 184
• Mld snooping fast leave 184
• Mld snooping host aging time 184
• Mld snooping max learnt multicast number 184
• Mld snooping max response time 184
• Mld snooping max response time seconds 184
• No mld snooping 184
• Configure mld snooping route port forward 185
• Mld snooping group limit limit 185
• Mld snooping multicast vlan 185
• Mld snooping permit deny group 185
• 0 display mld snooping group 186
• Configuration 186
• Igmp snooping 186
• Igmp snooping configuration 186
• Igmp snooping host aging time 186
• Igmp snooping multicast interface aging time 186
• No igmp snooping 186
• Qtech config igmp snooping host aging time 10 186
• Qtech config show igmp snooping 186
• Show igmp snooping 186
• Allowed learning 187
• Configure the number of the multicast group 187
• Igmp snooping deny permit group all 187
• Igmp snooping fast leave 187
• Igmp snooping group limit limit 187
• Igmp snooping interface fast leave configuration 187
• Igmp snooping max response time configuration 187
• Igmp snooping max response time seconds 187
• Igmp snooping permit deny group configuration 187
• Igmp snooping permit deny group group address 187
• Qtech config if ethernet 0 0 1 igmp snooping deny group 01 00 5e 00 01 01 187
• Qtech config if ethernet 0 0 1 igmp snooping fast leave 187
• Qtech config if ethernet 0 0 1 igmp snooping group limit 10 187
• Qtech config igmp snooping max response time 13 187
• Qtech config igmp snooping permit group all 187
• Configure igmp snooping querier vlan 188
• Configure igmp snooping query interval 188
• Enable disable igmp snooping querier 188
• Igmp snooping querier 188
• Igmp snooping querier vlan vlanid 188
• Igmp snooping query interval seconds 188
• Igmp snooping route port forward 188
• Igmp snooping route port forward configuration 188
• No igmp snooping querier 188
• No igmp snooping querier vlan 188
• No igmp snooping query interval 188
• No igmp snooping route port forward 188
• Qtech config igmp snooping querier 188
• Qtech config igmp snooping querier 90 188
• Qtech config igmp snooping querier vlan 10 188
• Qtech config igmp snooping route port forward 188
• 0 configure igmp snooping query max response 189
• 1 configure igmp snooping query source ip 189
• 2 configure igmp snooping route port aging 189
• 3 add igmp snooping route port 189
• Add interfaces to multicast group 190
• Brief introduction of static multicast 190
• Create multicast group 190
• Multicast mac address mac vlan vlan id 190
• Multicast mac address mac vlan vlan id interface all interface list 190
• No igmp snooping route port vlan vlanid interface port number 190
• Qtech config igmp snooping route port vlan 2 interface ethernet 0 0 1 190
• Qtech config multicast mac address 01 00 5e 01 02 03 vlan 1 190
• Static multicast configuration 190
• Delete interface members from multicast group 191
• Delete multicast group 191
• Display multicast group information 191
• Enable multicast protocol 192
• Igmp configuration 192
• Igmp configuration list 192
• Ip igmp 192
• Ip multicast routing 192
• No ip igmp 192
• No ip multicast routing 192
• Specify interface running igmp protocol 192
• Configure switch sending the last member query 193
• Configure the time interval switch sending query 193
• Interval 193
• Ip igmp last member query interval seconds 193
• Ip igmp query interval seconds 193
• Ip igmp version 1 2 3 193
• No ip igmp query interval seconds 193
• No ip igmp version 193
• Packet 193
• Specify interface running igmp version 193
• Configure igmp the max response time of query 194
• Configure switch robustness varible 194
• Configure the number of the multicast group 194
• Ip igmp limit group num 194
• Ip igmp robustness variable num 194
• No ip igmp last member query interval 194
• No ip igmp limit group 194
• No ip igmp robustness variable 194
• Packet 194
• Restricted switch interface to add 194
• 0 configure interface accessing control list 195
• 1 configure switch interface to add to multicast 195
• Ip igmp access group access list number port list 195
• Ip igmp query max response time seconds 195
• Ip igmp static group groups address port list sourcelist sourcelist 195
• No ip igmp access group access list number port list 195
• No ip igmp query max response time 195
• No ip igmp static group groups address port list sourcelist sourcelist 195
• 2 vlanid configure ingress vlanid of static multicast 196
• 3 enable igmp proxy 196
• 4 igmp monitor and maintenance 196
• Group members 196
• Igmp proxy 196
• Ip igmp create group groups address 196
• Ip igmp create group groups address vlan vlanid 196
• No igmp proxy 196
• No ip igmp create group groups address 196
• No ip igmp create group groups address vlan vlanid 196
• Show ip igmp interface vlan interface vid supervlan interface number 196
• 5 enable ssm mapping 197
• 6 enter igmp mode 197
• 7 configure ssm mapping static group address 197
• Ip igmp ssm mapping 197
• Mapping rule 197
• Mroute igmp 197
• No ip igmp ssm mapping 197
• Show ip igmp groups multicast ip 197
• Show ip igmp proxy 197
• Show ip igmp ssm mapping multicast ip 197
• Ssm mapping static access control list source address 197
• Assert mechanism 198
• Brief introduction of pim 198
• Forwarding pruning 198
• Neighbor discovering 198
• No ssm mapping static access control list source address all 198
• Working theory of pim dm 198
• Multicast source register 199
• Rp sharing tree rpt generating 199
• Working theory of pim sm 199
• Ip pim dense mode 200
• Pim configuration 200
• Pim configuration list 200
• Specified interface to run pim dm protocol 200
• Working theory of pim ssm 200
• Configure bsr border 201
• Configure hello packet sending interval 201
• Ip pim query interval seconds 201
• Ip pim sparse mode 201
• No ip pim dense mode 201
• No ip pim query interval 201
• No ip pim sparse mode 201
• Specified interface to run pim sm protocol 201
• Configure multicast source group filtrate 202
• Configure pim neighbor filtrate 202
• Enter pim mode 202
• Ip pim bsr border 202
• Ip pim neighbor policy acl number 202
• Mroute pim 202
• No ip pim bsr border 202
• No ip pim neighbor policy 202
• No source policy 202
• Source policy acl number 202
• 0 configure static rp 203
• 1 candidate bsr 203
• Configure max number of pim neighbor 203
• Ip pim neighbor limit limit 203
• No ip pim neighbor limit 203
• No static rp 203
• Static rp address 203
• 2 specify candidate rp 204
• 3 configure spt threshold 204
• 4 monitor and maintenance of pim 204
• No spt threshold 204
• Rp candidate interface type interface number group list acl number 204
• Rp candidate interface type interface number group list acl number priority 204
• Show ip pim interface vlan interface vid 204
• Spt threshold immediately infinity 204
• 5 configure ssm multicast group range 205
• No ssm default range access list 205
• Show ip mroute group address 205
• Show ip pim bsr 205
• Show ip pim neighbor 205
• Show ip pim rp info group address 205
• Show ip pim ssm range 205
• Ssm default range access list 205
• Brief introduction of dhcp 206
• Chapter 13 dhcp configuration 206
• Dhcp discovery 207
• Dhcp offers 207
• Dhcp requests 207
• Technical details 207
• Client configuration parameters 208
• Dhcp acknowledgement 208
• Dhcp information 208
• Dhcp ip address assignment 208
• Dhcp releasing 208
• Ip address assignment policy 208
• Options 208
• The client sends a request to the dhcp server to release the dhcp information and the client deactivates its ip address as clients usually do not know when users may unplug them from the network the protocol does not mandate the sending of dhcp release 208
• Dhcp packet format 209
• Note the ip addresses offered by other dhcp servers if any are not used by the dhcp client and are still available to other clients 209
• Obtaining ip addresses dynamically 209
• Updating ip address lease 209
• Format of dhcp packets 210
• Op operation types of dhcp packets 1 for request packets and 2 for response packets htype hlen hardware address type and length of the dhcp client hops number of dhcp relay agents which a dhcp packet passes for each dhcp relay agent that the dhcp request packet passes the field value increases by 1 xid random number that the client selects when it initiates a request the number is used to identify an address requesting process secs elapsed time after the dhcp client initiates a dhcp request flags the first bit is the broadcast response flag bit it is used to identify that the dhcp response packet is sent in the unicast or broadcast mode other bits are reserved 210
• Qtech software configuration manual 210
• The field meanings are illustrated as follows 210
• Dhcp packet processing modes 211
• Dhcp server configuration list 211
• Protocols and standards 211
• Configure dhcp server 212
• Dhcp relay 212
• Dhcp server group num ip ip address 212
• Dhcp sever group num 212
• Display dhcp server configuration 212
• Enable dhcp relay 212
• No dhcp relay 212
• No dhcp server 212
• No dhcp server group num 212
• Qtech config dhcp server 1 ip 192 68 00 212
• Qtech config if vlaninterface 1 dhcp server 1 212
• Qtech config if vlaninterface 1 no dhcp server 212
• Qtech config no dhcp server 1 212
• Show dhcp relay 212
• Show dhcp server group num 212
• Specify dhcp server for layer 3 interface 212
• Dhcp relay hide server ip 213
• Enter ip address pool configuration mode 213
• Hide dhcp server 213
• Ip pool ippoolname 213
• Local ip address pool configuration 213
• Qtech config show dhcp server 213
• Qtech config show dhcp server 1 213
• Qtech config show dhcp server interface vlan interface 1 213
• Show dhcp server inerface supervlan interface vlan interface vlan id vlan i 213
• Address pool 214
• Configure gateway and netmask of local ip 214
• Configure local ip address pool network interface 214
• Disable enable specified ip address in ip address 214
• From i 214
• Gateway ip address mask 214
• Ip addres 214
• Ip disable enable ip address 214
• No ip pool ippoolname 214
• No section section id section i 214
• Qtech config ip pool nic 214
• Qtech config ip pool nic gateway 192 68 00 255 55 55 214
• Qtech config ip pool nic ip disable 192 68 00 214
• Qtech config ip pool nic ip enable 192 68 00 214
• Qtech config ip pool nic no section 0 214
• Qtech config ip pool nic section 0 192 68 00 192 68 00 214
• Qtech config no ip pool nic 214
• Section section id from ip to ip 214
• Configure dns 215
• Configure lease time 215
• Configure wins 215
• Display ip address pool configuration 215
• 0 display ip bind 216
• 1 add dhcp client 216
• 2 show dhcp client 216
• Configure ip bind 216
• Dhcp client mac ip vlanid 216
• Ip bind 216
• No dhcp client mac vlanid 216
• No ip bind 216
• Qtech config dhcp client 01 00 5e 22 22 22 5 2 216
• Qtech config ip bind 216
• Qtech config no dhcp client 01 00 5e 22 22 22 2 216
• Qtech config no ip bind 216
• Qtech config show dhcp client 216
• Qtech config show ip bind 216
• Show dhcp client 216
• Show ip bind 216
• Caution 217
• Dhcp relay agent fundamentals 217
• Introduction to dhcp relay agent 217
• Usage of dhcp relay agent 217
• Option 82 supporting 218
• Introduction to option 82 supporting 219
• Primary terminologies 219
• Dhcp relay 220
• Dhcp relay configuration list 220
• Enable dhcp relay 220
• Mechanism of option 82 supporting on dhcp relay agent 220
• No dhcp relay 220
• Note request packets sent by a dhcp client fall into two categories dhcp discover packets and dhcp request packets as dhcp servers coming from different manufacturers process dhcp request packets in different ways that is some dhcp servers process option 82 in dhcp discover packets whereas the rest process option 82 in dhcp request packets a dhcp relay agent adds option 82 to both types of packets to accommodate to dhcp servers of different manufacturers 220
• Qtech config dhcp relay 220
• Show dhcp relay 220
• Configure vlan interface 221
• Dhcp option82 221
• Dhcp option82 strategy drop keep replace 221
• Introduction dhcp snooping 221
• No dhcp option82 221
• Qtech config if vlan dhcpserver ip ipadddress 221
• Qtech config if vlan interface ipaddress mask gateway 221
• Qtech config no dhcp relay 221
• Qtech config show dhcp relay 221
• Qtech config vlan vlannumber 221
• Show dhcp option82 221
• Support relay option82 221
• Configure ip source guard 223
• Configure max host number 223
• Configure trust ports 223
• Dhcp snooping 223
• Dhcp snooping configuration list 223
• Dhcp snooping max clients num 223
• Dhcp snooping trust 223
• Enable dhcp snooping 223
• Ip source guard 223
• Show dhcp snooping clients 223
• Show dhcp snooping configuration of vlans 223
• Show dhcp snooping interface interface num 223
• Show dhcp snooping of ports 223
• Show dhcp snooping vlan 223
• Show information of clients 223
• Brief introduction of arp 224
• Chapter 14 arp configuration 224
• Arp announcements 225
• Arp mediation 225
• Arp probe 225
• Inverse arp and reverse arp 225
• Variants of the protocol 225
• Arp proxy 226
• Arp spoofing 226
• Arp spoofing poising animation 226
• How arp spooing works 226
• Add and delete arp table item 227
• Anti flood arp 227
• Arp configuration list 227
• Qtech config arp 192 68 00 00 01 02 03 04 05 1 0 3 227
• Qtech config no arp 192 68 00 227
• Qtech config no arp all 227
• Qtech config no arp dynamic 227
• Qtech config no arp static 227
• Arp aging seconds 228
• Configure arp aging time 228
• Display arp aging time 228
• Display arp table item 228
• Enable disable arp anti flood attack 228
• Qtech config show arp 192 68 00 228
• Show arp aging 228
• Show arp all 228
• Show arp dynamic 228
• Show arp static 228
• Anti flood 229
• Arp anti flood 229
• Arp anti flood action deny arp deny all threshold rate lim it 229
• Arp anti flood mac recover 229
• Arp anti flood recover time time 229
• Configure arp anti flood recover time 229
• Configure deny action and threshold of arp 229
• No arp anti flood 229
• 0 display arp anti flood attack information 230
• 1 bind blackhole mac generated by arp anti flood to 230
• 2 enable disable arp anti spoofing 230
• Arp anti flood bind blackhole mac all 230
• Arp anti flood recover mac all 230
• Be general 230
• Show arp anti flood 230
• 3 configure unknown arp packet handling strategy 231
• 4 enable disable arp anti spoofing valid check 231
• 5 enable disable arp anti spoofing deny disguiser 231
• Arp anti spoofing 231
• Arp anti spoofing unknown discard flood 231
• Arp anti spoofing valid check 231
• 6 display arp anti spoofing 232
• 7 configure trust port of arp anti attack 232
• Arp anti spoofing deny disguiser 232
• Show arp anti spoofing 232
• Acl match order 233
• Acl overview 233
• Chapter 15 acl configuration 233
• Ip acl depth first order 233
• Acl referenced by the upper level modules 234
• Acls activated directly on the hardware 234
• Acls based on time ranges 234
• Layer 2 acl depth first order 234
• Ways to apply acl on a switch 234
• Access list access list number match order config auto 235
• Acl support 235
• Configuring acl 235
• Matching order configuration 235
• Table 1 acl number restriction 235
• Absolute start time date end time date 236
• Acl configuration 236
• Configuration list 236
• Configure time range 236
• Create absolute time range 236
• Create periodic time range 236
• Enter time range configuration mode 236
• No absolute start time date end time date 236
• Time range time range name 236
• Define extended acl 237
• Standard acl 237
• Access lis 238
• Access list access list number match order config auto 238
• Access list extended name match order config auto 238
• Define extended acl with name id 238
• Define extended acl with number id 238
• Define layer 2 acl 238
• Define layer 2 acl based on number id 238
• No access list all access list number name access list name subitem 238
• Activate acl 239
• Monitor and maintanence of acl 239
• Brief introduction of isolation 240
• Configuration example of qacl 240
• Example 1 240
• Show access list config all access list number name access list name 240
• Show access list config statistic 240
• Show access list runtime all access list number name access list name 240
• Show access list runtime statistic 240
• Show time range all statistic name time range name 240
• Use qacl to realize user isolation 240
• Example 2 241
• Brief introduction 242
• Brief introduction of deny all packet expect 242
• Configuration example 242
• Use qacl to realize bandwidth control 242
• Use qacl to realize deny all packet expect 242
• Brief introduction of qacl anti virus 243
• Configuration example 243
• Use qacl to prevent virus 243
• Access control list 244
• Brief introduction of qos 244
• Chapter 16 qos configuration 244
• Packet filtration 244
• Traffic classification 244
• 0 queue scheduler 245
• Choose interface outputting queue for packet 245
• Flow monitor 245
• Interface speed limitation 245
• Priority mark 245
• Redirection 245
• 1 cos map 246
• 2 flow mirror 246
• 3 statistics based on flow 246
• 4 copy packet to cpu 246
• Packet redirection configuration 246
• Qos configuration 246
• Qos configuration list 246
• Priority configuration 247
• Queue scheduler configuration 247
• Flow mirror configuration 248
• Flow statistic configuration 248
• Queue and priority of ieee802 p protocol 248
• The cos map relationship of hardware priority 248
• Monitor and maintenance of qos 249
• Basic concepts in stp 250
• Brief introduction of stp configuration 250
• Chapter 17 stp configuration 250
• Introduction to stp 250
• Protocol packets of stp 250
• Why stp 250
• How stp works 251
• Note all the ports on the root bridge are designated ports 251
• Principle for configuration bpdu comparison the configuration bpdu that has the lowest root bridge id has the highest priority if all the configuration bpdus have the same root bridge id they will be compared for their root path costs if the root path cost in a configuration bpdu plus the path cost corresponding to this port is s the configuration bpdu with the smallest s value has the highest priority if all configuration bpdu have the same root path cost they will be compared for their designated bridge ids then their designated port ids and then the ids of the ports on which they are received the smaller the id the higher message priority 253
• Table 2 selection of the optimum configuration bpdu 253
• When the network topology is stable only the root port and designated ports forward traffic while other ports are all in the blocked state they only receive stp packets but do not forward user traffic 254
• In rstp a newly elected designated port can enter the forwarding state rapidly if this condition is met the designated port is an edge port or a port connected with a point to point link if the designated port is an edge port it can enter the forwarding state directly if the designated port is connected with a point to point link it can enter the forwarding state immediately after the device undergoes handshake with the downstream device and gets a response 257
• In rstp a newly elected root port can enter the forwarding state rapidly if this condition is met the old root port on the device has stopped forwarding data and the upstream designated port has started forwarding data 257
• Introduction to mstp 257
• To facilitate description the spanning tree computing process in this example is simplified while the actual process is more complicated 257
• Why mstp 257
• Some concepts in mstp 258
• Currently the device is not capable of recognizing boundary ports when the device interworks with a third party s device that supports boundary port recognition the third party s device may malfunction in recognizing a boundary port 259
• When in different mst instances a port can be in different states 260
• How mstp works 261
• Implementation of mstp on devices 261
• Protocols and standards 261
• Enable disable interface stp 262
• Enable disable stp 262
• No spanning tree 262
• Qtech config spanning tree 262
• Spanning tree 262
• Stp configuration 262
• Stp configuration list 262
• Caution if the priorities of all network bridge in switching network are the same 263
• Choose the one with the smallest mac address to be the root if stp enables configuring network bridge may cause the re accounting of the stp by default the network bridge priority is 32768 and ranges from 0 to 65535 263
• Configure hello time 263
• Configure stp priority 263
• Configure switch forward delay 263
• No spanning tree forward time 263
• No spanning tree hello time 263
• No spanning tree priority 263
• Qtech config if ethernet 0 0 1 no spanning tree 263
• Qtech config spanning tree forward time 20 263
• Qtech config spanning tree hello time 5 263
• Qtech config spanning tree priority 30000 263
• Spanning tree forward time seconds 263
• Spanning tree hello time seconds 263
• Spanning tree priority bridge priority 263
• Caution max age is used to configure the longest aging interval of stp lose 264
• Configure max age 264
• Configure path cost of specified interfaces 264
• Configure stp priority od specified port 264
• No spanning tree cost 264
• No spanning tree max age 264
• No spanning tree port priority 264
• Packet when overtiming the stp will be frequently accounts and take crowded network to be link fault if the value is too small if the value is too large the link fault cannot be known timely max age is determined by diameter of network and the default time of 20 seconds is suggested 2 hello time 1 max age 2 forwarddelay 1 264
• Qtech config spanning tree max age 10 264
• Spanning tree cost cost 264
• Spanning tree max age seconds 264
• Spanning tree port priority port priority 264
• 0 configure spanning tree root guard 265
• 1 configure interface to force to send rstp packet 265
• 2 configure link type of specified interface 265
• 3 configure the current port as an edge port 265
• No spanning tree root guard 265
• Qtech config if ethernet 0 0 1 spanning tree mcheck 265
• Qtech config if ethernet 0 0 1 spanning tree point to point forcetrue 265
• Qtech config if ethernet 0 0 1 spanning tree port priority 120 265
• Qtech config if ethernet 0 0 1 spanning tree root guard 265
• Spanning tree mcheck 265
• Spanning tree point to point auto 265
• Spanning tree point to point forcefalse 265
• Spanning tree point to point forcetrue 265
• Spanning tree root guard 265
• 4 configure the speed limit of sending bpdu of 266
• 5 display stp status 266
• 5 stp monitor and maintainenance 266
• Configured hello time 2 second s max age 20 second s 266
• Forward delay 15 second s 266
• No spanning tree portfast 266
• Path cost to root bridge is 0 266
• Port 1 ethernet0 0 1 of bridge is disabled 266
• Qtech config if ethernet 0 0 1 spanning tree portfast 266
• Qtech config if ethernet 0 0 1 spanning tree transit limit 2 266
• Qtech config show spanning tree interface ethernet 0 0 1 266
• Root bridge has priority 32768 mac address 001f ce10 4f1 266
• Spanning tree portfast 266
• Spanning tree protocol is enabled 266
• Spanning tree transit limit number 266
• Specified interface 266
• Stp top change 42 times 266
• The bridge has priority 32768 mac address 001f ce10 4f1 266
• The bridge is executing the ieee rapid spanning tree protocol 266
• 6 enable disable stp remote loop detect 267
• Brief introduction of mstp 267
• Configure mstp configuration mark 268
• Configure mstp timer parameter 268
• Mstp configuration 268
• Mstp configuration list 268
• Qtech config spanning tree mst max hops 10 268
• Spanning tree mst forward time forward time 268
• Spanning tree mst hello time hello time 268
• Spanning tree mst instance instance num vlan vlan list 268
• Spanning tree mst max age max age 268
• Spanning tree mst max hops max hops 268
• Spanning tree mst name name 268
• Spanning tree mst revision revision level 268
• Configure mstp interface edge interface status 269
• Configure mstp interface link type 269
• Configure mstp interface path cost 269
• Configure mstp netbridge priority 269
• Qtech config if ethernet 0 0 2 spanning tree mst link type point to point forcefalse 269
• Qtech config if ethernet 0 0 2 spanning tree mst portfast 269
• Qtech config spanning tree mst instance 4 priority 4096 269
• Qtech config spanning tree mst instance 5 vlan 2 7 269
• Qtech config spanning tree mst name qtech 269
• Qtech config spanning tree mst revision 10 269
• Spanning tree mst instance instance num priority priority 269
• Spanning tree mst link type point to point forcetrue forcefalse auto 269
• Spanning tree mst portfast 269
• 0 display mstp configuration information 270
• Configure mstp interface priority 270
• Configure spanning tree mst root guard 270
• 1 enable disable digest snooping 271
• 2 configure ignore of vlan 271
• No spanning tree mst config digest snooping 271
• No spanning tree mst ignored vlan vlan list 271
• Qtech config if ethernet 0 0 1 spanning tree mst config digest snooping 271
• Qtech config spanning tree mst ignored vlan 10 20 30 271
• Show spanning tree mst ignored vlan 271
• Spanning tree mst config digest snooping 271
• Spanning tree mst ignored vlan vlan list 271
• Brief introduction of flex links 272
• Chapter 18 flex links configuration 272
• Configure flex links preemption mode 272
• Convergent interface 272
• Enable or disable flex links of interface or 272
• Flex links configuration 272
• Flex links configuration list 272
• Configure flex links preemption mode delay 273
• Disaply flex links information 273
• Brief introduction of monitor link 274
• Chapter 19 monitor link configuration 274
• Downlink 274
• Enable disable monitor link 274
• Monitor link configuration 274
• Monitor link configuration list 274
• Monitor link group 274
• Uplink 274
• Show monitor link 275
• 802 x configuration 276
• Aaa configuration mode 276
• Brief introduction of 802 x configuration 276
• Chapter 20 802 x configuration command 276
• Qtech config aaa 276
• Radius and tacacs server configuration 276
• Add users 277
• Local authentication configuration 277
• System default user 277
• User s authentication 277
• Caution case sensitive is for password but not username 278
• Change password 278
• Encryption type it can be 0 or 7 0 means clear text and 7 means encrypted text not 278
• Level means the priority of the user to be added which is the number between 0 and 15 0 and 1 mean the normal user and 2 to 15 mean the administrator 278
• Supported now privilege it can be 0 1 or 2 to 15 0 and 1 mean normal users while 2 to 15 mean administrators password the login password of new added user which is 1 to 16 characters if the user s privilege level is not specified it will default to be normal user there is up to 8 users in the system 278
• Copy running config startup config 279
• Delete user 279
• Modify user s privilege level 279
• No username username 279
• Show username 279
• Show users 279
• Configure radius to be remote authentication server 280
• Configure tacacs remote authentication 280
• Remote authentication configuration 280
• 802 x configuration 281
• Dot1x 802 x daemon 281
• Dot1x eap finis 281
• Dot1x eap transfe 281
• No dot1 281
• Qtech config dot1x 281
• Qtech config dot1x eap finish 281
• Qtech config if ethernet 0 0 5 dot1x daemon time 20 281
• Qtech config show dot1x 281
• Show dot1 281
• Dot1x max user user num 282
• Dot1x port control auto forceauthorized forceunauthorized 282
• E0 0 5 forceauthorized disabled 3600 160 282
• Port ctrlmode reauth reauthperiod s maxhosts 282
• Qtech config dot1x user cut username aaa qtech com 282
• Qtech config if ethernet 0 0 5 dot1x max user 10 282
• Qtech config if ethernet 0 0 5 dot1x port control forceauthorized 282
• Qtech config show dot1x interface ethernet 0 0 5 282
• Total 26 item s printed 1 item s 282
• Brief introduction of sntp protocol 283
• Chapter 21 sntp client configuration 283
• Enable disable sntp client 283
• No sntp client 283
• Qtech config sntp client 283
• Sntp client 283
• Sntp client configuration 283
• Sntp client working mode configuration 283
• Sntp client broadcast delay configuration 284
• Sntp client multicast ttl configuration 284
• Sntp client poll interval configuration 284
• Sntp client unicast server configuration 284
• Sntp client md5 authentication configuration 285
• Sntp client retransmit configuration 285
• Sntp client valid server configuration 285
• Brief introduction of syslog 286
• Chapter 22 syslog configiration 286
• Syslog configiration 286
• Enable disable syslog 287
• Logging 287
• Logging monitor all monitor no 287
• Logging sequence numbers 287
• Logging timestamps notime uptime datetime 287
• No logging 287
• No logging monitor all monitor no 287
• No logging sequence numbers 287
• No logging timestamps 287
• Qtech config logging 287
• Qtech config logging monitor 0 287
• Qtech config logging sequence numbers 287
• Qtech config logging timestamps datetime 287
• Syslog sequence number configuration 287
• Syslog terminal outputting configuration 287
• Syslog time stamps configuration 287
• Terminal monitor 287
• Logging buffered 288
• Logging flash 288
• Module xxx 288
• No logging buffered 288
• No logging buffered filter 288
• No logging flash 288
• No logging flash filter 288
• No logging monitor all monitor no filter 288
• No terminal monitor 288
• Qtech config logging buffered 288
• Qtech config logging buffered 6 288
• Qtech config logging flash 288
• Qtech config logging monitor 0 7 288
• Qtech config terminal monitor 288
• Syslog flash storage outputting configuration 288
• Syslog logging buffered outputting configuration 288
• Syslog logging host outputting configuration 289
• Module debug configuration 290
• Syslog snmp agent outputting configuration 290
• Brief introduction of lldp protocol 291
• Chapter 23 lldp configuration 291
• Lldp operating mode 291
• Lldp overview 291
• Receiving lldpdus 291
• Sending lldpdus 291
• Configure lldp hello time 292
• Configure lldp hold time 292
• Enable disable global lldp 292
• Lldp configuration 292
• Lldp configuration list 292
• No lldp 292
• No lldp hello time 292
• No lldp hold time 292
• Qtech config lldp 292
• Qtech config lldp hello time 10 292
• Qtech config lldp hold time 2 292
• Chassis id 00 1f ce 10 14 f1 293
• Configuration 293
• Display lldp information 293
• Interface ethernet 0 0 1 293
• Interface lldp packet receiving sending mode 293
• Lldp hello time 30 s lldp hold time 4 lldp ttl 120 s 293
• Lldp rx tx rxtx 293
• Neighbor 1 293
• No lldp 293
• Port id port 7 293
• Port lldp rxtx pkt tx 2019 pkt rx 1943 293
• Qtech config if ethernet 0 0 1 lldp tx 293
• Qtech config show lldp interface ethernet 0 0 1 293
• System description qtech switch 293
• System lldp enable 293
• System name qsw 3900 293
• Ttl 119 s 293
• Basic concepts in errp 295
• Brief introduction of errp 295
• Chapter 24 errp command configuration 295
• Errp domain 295
• Errp overview 295
• Control vlan and data vlan 296
• Errp ring 296
• Primary port and secondary port 296
• Common port and edge port 297
• Errp packets 297
• In an errp domain a transit node learns the hello timer value and the fail timer value on the master node through the received health packets guaranteeing the consistency of two timer values across a ring 297
• Multi domain intersection common port 297
• The fail timer value must be greater than or equal to 3 times of the hello timer value 297
• Timers 297
• Single ring 298
• Typical errp networking 298
• Domain 1 299
• Domain 2 299
• Multi domain tangent rings 299
• Ring 1 299
• Ring 2 299
• Dual homed rings 300
• Single domain intersecting rings 300
• How errp works 301
• Link down alarm mechanism 301
• Multi domain intersecting rings 301
• Polling mechanism 301
• Broadcast storm suppression mechanism in a 302
• Errp configuration 302
• Errp configuration list 302
• Multi homed subring in case of primary ring link failure 302
• No errp 302
• Protocols and standards 302
• Qtech config errp 302
• Ring recovery 302
• Configure control vlan of errp domain 303
• Configure errp timer 303
• Control vlan vlan id 303
• Enter errp configuration mode 303
• Errp domain domain id 303
• Errp fail timer timer value 303
• Errp hello timer timer value 303
• No control vlan 303
• Qtech config errp 0 control vlan 25 303
• Qtech config errp 0 no control vlan 303
• Qtech config errp domain 0 303
• Qtech config errp hello timer 1 303
• Create errp ring 304
• Display errp domain and ring information 304
• Enable disable errp ring 304
• Brief introduction of pppoe plus 305
• Chapter 25 pppoe plus configuration 305
• Enable disable pppoe plus 305
• No pppoeplus 305
• Pppoe plus configuration 305
• Pppoe plus configuration list 305
• Pppoeplus 305
• Qtech config pppoeplus 305
• Configure pppoe plus type 306
• Basic concepts in connectivity fault detection 307
• Brief introduction of cfm 307
• Chapter 26 cfm configuration 307
• Connectivity fault management overview 307
• Maintenance association 307
• Maintenance domain 307
• Maintenance point 307
• Basic functions of connectivity fault 308
• Continuity check 308
• Management 308
• Cfm configuration 309
• Cfm configuration list 309
• Cfm domain domain name level level id 309
• Configure cfm domain 309
• Linktrace 309
• Loopback 309
• Protocols and standards 309
• Cfm mep level level id direction up down mpid mep id vlan vlan id 310
• Cfm mip level level id 310
• Cfm rmep level level id mpid mep id vlan vlan id 310
• Configure cfm mep level 310
• Configure cfm mip level 310
• Configure remote cfm rmep level 310
• No cfm domain level level id 310
• No cfm mep level level id vlan vlan id 310
• No cfm mip level level id 310
• No cfm rmep level level id mpid mep id vlan vlan id 310
• Qtech config cfm domain customer level 7 310
• Qtech config if ethernet 0 0 1 cfm mep level 7 direction up mpid 7110 vlan 110 310
• Qtech config if ethernet 0 0 1 cfm mip level 7 310
• Cfm cc enable level level list vlan vlan list 311
• Cfm cc interval 1 10 60 311
• Cfm ping 311
• Cfm ping c count s packetsize t timeout mac level level id vlan vlan id 311
• Configure cfm cc interval 311
• Enable disable vlan sending cfm cc enable level 311
• No cfm cc enable level level list vlan vlan list 311
• No cfm cc interval 311
• Qtech config cfm cc interval 1 311
• Qtech config cfm rmep level 7 mpid 7110 vlan 110 311
• 0 display cfm domain 312
• 1 display cfm maintenance points local 312
• Cfm traceroute 312
• Cfm traceroute f first_ttl h maximum_hops w time_out target mac level level id vlan vlan id 312
• Qtech cfm traceroute 00 1f ce 10 14 f1 level 4 vlan 110 312
• Qtech config show cfm domain 312
• Show cfm domain 312
• 2 display cfm maintenance points remote 313
• 3 display cfm cc database 313
• 4 display cfm errors 313
• Qtech config show cfm cc database 313
• Qtech config show cfm error 313
• Qtech config show cfm maintenance points local 313
• Qtech config show cfm maintenance points remote 313
• Show cfm cc database 313
• Show cfm errors 313
• Show cfm maintenance points local 313
• Show cfm maintenance points remote 313