Cisco IOS

Aug 22 2009   8:46AM GMT

Configuring Multiple SSIDs in Cisco 1250 Access Points Series 6

Posted by: Yasir Irfan
Multiple SSID, Configuring Multiple SSID in Cisco Access Point, Cisco Aironet 1250 Series Access Points, configuring multiple SSIDs, VLANS, Cisco Configurations, Wireless, Cisco Wireless, Cisco Access Points, Cisco Aironet 1250, Cisco Aironet 1250 Access Point, Sample Configurations, configuration scenarios, Windows 2003 Server, Wireless Clients, SSIDs, Native VLAN, Cisco Catalyst 3560 Switch, Cisco Catalyst 6500 Series Switch, IOS Version 12.4(10b) JDA3, IOS version 12.2(44) SE1, IOS version 12.2(18) SXF14, Cisco IOS

In this post I will just post the snap shots for SSIDS ADMIN and GUEST, where you can see the SSIDS are connected, they got an IP address and they can ping the default gateway as well. It’s just to confirm  connectivity.

ADMIN SSID Connectivity

The PC is getting an IP from the DHCP Server for the SSID ADMIN  and VLAN 101

The PC can ping the default gateway

GUEST SSID Connectivity

The PC is getting an IP from the DHCP Server for the SSID GUEST and VLAN 102

 The PC can ping the default gateway

So with this I will conclude this series. If any body have any comments please do comment.

Aug 18 2009   7:47AM GMT

Configuring Multiple SSIDs in Cisco 1250 Access Points Series 5

Posted by: Yasir Irfan
Multiple SSID, Configuring Multiple SSID in Cisco Access Point, Cisco Aironet 1250 Series Access Points, configuring multiple SSIDs, VLANS, Cisco Configurations, Wireless, Cisco Wireless, Cisco Access Points, Cisco Aironet 1250, Cisco Aironet 1250 Access Point, Sample Configurations, configuration scenarios, Windows 2003 Server, Wireless Clients, SSIDs, Native VLAN, Cisco Catalyst 3560 Switch, Cisco Catalyst 6500 Series Switch, IOS Version 12.4(10b) JDA3, IOS version 12.2(44) SE1, IOS version 12.2(18) SXF14, Cisco IOS, Running Configuration, show running-config, ping command, Ping

 

Dear all lets proceed further with the configuration of the Cisco Catalyst 3560 Switch

 

Configure the Cisco Catalyst 3560 Switch.

 

In this step we will configure the Cisco Catalyst 3560 Switch port which is connected to the Cisco Aironet 1250 Series Access Point to the wired network. We will configure the Cisco Catalyst 3560 Switch port, which is connected to the Cisco Aironet 1250 Series Access Point as trunk port because this port will carries traffic for all the VLANs on the wired network. In our case the VLANs are VLAN 101, 102 and the native VLAN 100.

When you configure the Cisco Catalyst 3560, which connects to the Cisco Aironet 1250 Series Access Point ,ensure that the native VLANs that you configure match the native VLAN on the Cisco Aironet 1250 Series Access Point. Otherwise, frames are dropped. In order to configure the trunk port on the Cisco Catalyst 3560 Switch, use the following commands from the CLI on the Cisco Catalyst 3560 switch:

Note: In our scenario the Cisco Aironet 1250 Series Access Point is connected to a Cisco Catalyst 3560 Switch to the port number Giga Ethernet 0/20

ITKE-Cisco(config)#interface interface gigabitEthernet 0/20

ITKE-Cisco(config-if)# switchport mode trunk

ITKE-Cisco(config-if)#switchport trunk encapsulation dot1q

ITKE-Cisco(config-if)#switchport trunk native vlan 100

ITKE-Cisco(config-if)#switchport trunk allowed vlan 101,102

ITKE-Cisco(config-if)#switchport nonegotiate

ITKE-Cisco(config-if)#

 

(The above commands configures the Giga Ethernet port 0/20  as trunk port, with a dot1q encapsulation , with VLAN 100 as a native trunk VLAN ).

 

Note: Cisco IOS Software-based Aironet wireless equipment does not support Dynamic Trunking Protocol (DTP). Therefore, the Cisco Catalyst 3560 must not try to negotiate DTP.

With this configuration we have successfully completed the configuration of multiple SSIDs in the Cisco Aironet 1250 Series Access Point . In the coming post I will post the snap shots for the connection established to SSIDS ADMIN and GUEST. Basically we will test the connectivity with the ping command.

 

 

Aug 17 2009   5:40AM GMT

Configuring Multiple SSIDs in Cisco 1250 Access Points Series 4

Posted by: Yasir Irfan
Multiple SSID, Configuring Multiple SSID in Cisco Access Point, Cisco Aironet 1250 Series Access Points, configuring multiple SSIDs, VLANS, Cisco Configurations, Wireless, Cisco Wireless, Cisco Access Points, Cisco Aironet 1250, Cisco Aironet 1250 Access Point, Sample Configurations, configuration scenarios, Windows 2003 Server, Wireless Clients, SSIDs, Native VLAN, Cisco Catalyst 3560 Switch, Cisco Catalyst 6500 Series Switch, IOS Version 12.4(10b) JDA3, IOS version 12.2(44) SE1, IOS version 12.2(18) SXF14, Cisco IOS, Running Configuration, show running-config

 

In the previous post we looked at configuration of the VLANs and SSIDS in a Cisco Aironet 1250 Series Access Point.  The final configuration in the Cisco Aironet 1250 Series Access Point should be as follows, I am just posting the complete running configuration from the Cisco Aironet 1250 Series Access Point

 

 

ITKE-AP-01# show running-config

Building configuration…

 

Current configuration : 2693 bytes

!

version 12.4

no service pad

service timestamps debug datetime msec

service timestamps log datetime msec

service password-encryption

!

hostname ITKE-AP-01

!

enable secret 5 $1$d1hx$IvRMqYGHs0JXjIgy8/.Ms0

!

no aaa new-model

!

!

!

dot11 ssid ADMIN

   vlan 101

   authentication open

!

dot11 ssid GUEST

   vlan 102

   authentication open

   guest-mode

   mbssid guest-mode

!

power inline negotiation prestandard source

!

!

username Cisco password 7 00271A150754

!

bridge irb

!

!

interface Dot11Radio0

 no ip address

 no ip route-cache

 !

 ssid ADMIN

 !

 ssid GUEST

 !

 mbssid

 station-role root

!

interface Dot11Radio0.100

 no ip route-cache

!

interface Dot11Radio0.101

 encapsulation dot1Q 101

 no ip route-cache

 bridge-group 101

 bridge-group 101 subscriber-loop-control

 bridge-group 101 block-unknown-source

 no bridge-group 101 source-learning

 no bridge-group 101 unicast-flooding

 bridge-group 101 spanning-disabled

!

interface Dot11Radio0.102

 encapsulation dot1Q 102

 no ip route-cache

 bridge-group 102

 bridge-group 102 subscriber-loop-control

 bridge-group 102 block-unknown-source

 no bridge-group 102 source-learning

 no bridge-group 102 unicast-flooding

 bridge-group 102 spanning-disabled

!

interface Dot11Radio0.100

 encapsulation dot1Q 100 native

 no ip route-cache

 bridge-group 1

 bridge-group 1 subscriber-loop-control

 bridge-group 1 block-unknown-source

 no bridge-group 1 source-learning

 no bridge-group 1 unicast-flooding

 bridge-group 1 spanning-disabled

!

interface Dot11Radio1

 no ip address

 no ip route-cache

 !

 ssid ADMIN

 !

 dfs band 3 block

 channel dfs

 station-role root

 bridge-group 1

 bridge-group 1 subscriber-loop-control

 bridge-group 1 block-unknown-source

 no bridge-group 1 source-learning

 no bridge-group 1 unicast-flooding

 bridge-group 1 spanning-disabled

!

interface GigabitEthernet0

 no ip address

 no ip route-cache

 duplex auto

 speed auto

!

interface GigabitEthernet0.101

 encapsulation dot1Q 101

 no ip route-cache

 bridge-group 101

 no bridge-group 101 source-learning

 bridge-group 101 spanning-disabled

!

interface GigabitEthernet0.102

 encapsulation dot1Q 102

 no ip route-cache

 bridge-group 102

 no bridge-group 102 source-learning

 bridge-group 102 spanning-disabled

!

interface GigabitEthernet0.100

 encapsulation dot1Q 100 native

 no ip route-cache

 bridge-group 1

 no bridge-group 1 source-learning

 bridge-group 1 spanning-disabled

!

interface BVI1

 ip address 10.0.0.99 255.255.254.0

 no ip route-cache

!

ip default-gateway 10.0.0.1

ip http server

no ip http secure-server

bridge 1 route ip

!

!

!

line con 0

line vty 0 4

 login local

!

end

 

ITKE-AP-01#

 

In my next post as promised I will post the configuraton for the Cisco Catalyst 3560 Switch.

Aug 16 2009   4:53AM GMT

Configuring Multiple SSIDs in Cisco 1250 Access Points Series 3

Posted by: Yasir Irfan
Multiple SSID, Configuring Multiple SSID in Cisco Access Point, Cisco Aironet 1250 Series Access Points, configuring multiple SSIDs, VLANS, Cisco Configurations, Wireless, Cisco Wireless, Cisco Access Points, Cisco Aironet 1250, Cisco Aironet 1250 Access Point, Sample Configurations, configuration scenarios, Windows 2003 Server, Wireless Clients, SSIDs, Native VLAN, Cisco Catalyst 3560 Switch, Cisco Catalyst 6500 Series Switch, IOS Version 12.4(10b) JDA3, IOS version 12.2(44) SE1, IOS version 12.2(18) SXF14, Cisco IOS, DHCP Server, IP Address

 

In today’s entry we will focus on configuration of VLANs and SSIDs in a Cisco Aironet 1250 Series Access Point. The procedure is as follows.

 

Configure

 

In this section, you will see the configuration steps required to complete the above mentioned scenario.

 

1^st Step: Configure the Native VLAN on the Cisco Aironet 1250 Series Access Point

The Native VLAN is a VLAN to which the Cisco Aironet 1250 Series Access Point and the Cisco Catalyst 3560 Switch are connected. Native VLAN of the Cisco Aironet 1250 Series Access Point is usually different from the other VLANS configured in the Cisco Aironet 1250 Series Access Point (In our case VLAN 101 and VLAN 102). The IP address used for the management of the Cisco Aironet 1250 Series Access Point is assigned to its BVI Interface and the IP address assigned is in the native VLAN. (In our case VLAN 100). . The traffic, for example, management traffic, sent to and by the Point itself assumes the native VLAN (VLAN 100), and it is untagged. All untagged traffic that is received on an IEEE 802.1Q (dot1q) trunk port is forwarded with the native VLAN (VLAN 100) that is configured for the port. If a packet has a VLAN ID that is the same as the native VLAN ID of the sending port, the Cisco Catalyst 3560 Switch sends the packet without a tag. Otherwise, the switch sends the packet with a tag.

In order to configure a native VLAN on a Cisco Aironet 1250 Series Access Point, issue the following commands in the global configuration mode on the Cisco Aironet 1250 Series Access Point

 

ITKE-AP-01(config)#interface gigabitEthernet 0.100

ITKE-AP-01(config-subif)# encapsulation dot1Q 100 native

ITKE-AP-01(config-subif)#exit

 

(The above commands will configure the encapsulation as dot1q and assign VLAN 100 as the native VLAN on the Giga Ethernet interface.)

 

ITKE-AP-01(config)#interface dot11radio 0.100

ITKE-AP-01(config-subif)# encapsulation dot1Q 100 native

ITKE-AP-01(config-subif)#exit

 

(The above commands will configure the encapsulation as dot1q and assign VLAN 100 as the native VLAN on the radio interface.)

 

 

2^nd Step: Configure the SSIDs on the Cisco Aironet 1250 Series Access Point

In this step we will configure two VLANs (VLAN 101 & VLAN 102) one for the ITKE administration department and other for the guest users only with an internet access.  The SSIDs are also need to be associated with specific VLANS as shown below.

 

·         VLAN 101 for the ITKE administration department and uses the SSID ADMIN.

·         VLAN 102 for the guest users and uses the SSID GUEST.

 

In order to configure a VLAN101 and 102 on a Cisco Aironet 1250 Series Access Point, issue the following commands in the global configuration mode on the Cisco Aironet 1250 Series Access Point

 

ITKE-AP-01(config)#dot11 ssid ADMIN

ITKE-AP-01(config-ssid)#authentication open

ITKE-AP-01(config-ssid)#vlan 101

 (The above commands will create an ssid ADMIN, assigned to VLAN 101 and with an open authentication.)

 

ITKE-AP-01(config)#dot11 ssid GUEST

ITKE-AP-01(config-ssid)#authentication open

ITKE-AP-01(config-ssid)#vlan 102

(The above commands will create an ssid GUEST, assigned to VLAN 102 and with an open authentication).

 

ITKE-AP-01(config)#interface gigabitEthernet 0.101

ITKE-AP-01(config-subif)#encapsulation dot1Q 101

ITKE-AP-01(config-subif)#bridge-group 101

ITKE-AP-01(config-subif)#exit

ITKE-AP-01(config)#

(The above commands will set the encapsulation dot1q for VLAN 101 and assigns the sub interface to bridge group 101 to the giga Ethernet).

 

ITKE-AP-01(config)#interface dot11Radio 0.101

ITKE-AP-01(config-subif)#encapsulation dot1Q 101

ITKE-AP-01(config-subif)#bridge-group 101

ITKE-AP-01(config-subif)#exit

ITKE-AP-01(config)#

 

(The above commands will set the encapsulation dot1q for VLAN 101 and assigns the sub interface to bridge group 101 to the sub interface on the radio interface).

 

 

ITKE-AP-01(config)#interface gigabitEthernet 0.102

ITKE-AP-01(config-subif)#encapsulation dot1Q 102

ITKE-AP-01(config-subif)#bridge-group 102

ITKE-AP-01(config-subif)#exit

ITKE-AP-01(config)#

(The above commands will set the encapsulation dot1q for VLAN 102 and assigns the sub interface to bridge group 102 to the giga Ethernet).

 

ITKE-AP-01(config)#interface dot11Radio 0.102

ITKE-AP-01(config-subif)#encapsulation dot1Q 102

ITKE-AP-01(config-subif)#bridge-group 102

ITKE-AP-01(config-subif)#exit

ITKE-AP-01(config)#

(The above commands will set the encapsulation dot1q for VLAN 101 and assigns the sub interface to bridge group 101 to the sub interface on the radio interface).

 

3^rd Step: Assign the multiple SSIDs to the radio interface on the Cisco Aironet 1250 Series Access Point

 

ITKE-AP-01(config)#interface dot11Radio 0

ITKE-AP-01(config-if)#ssid ADMIN

ITKE-AP-01(config-if)#ssid GUEST

ITKE-AP-01(config-if)#mbssid

(The above commands assigns the multiple SSIDs ADMIN and GUEST  to the radio interface dot11radio 0 ).

 

Note: The SSIDs ADMIN and GUEST are configured for open authentication, For information on how to configure different authentication types on the Cisco Aironet 1250 Series Access Point , refer the Cisco document “Configuring Authentication Types”.

In next post we will look at the configuration for the Cisco 3560 Switch .

Aug 13 2009   8:56AM GMT

Configuring Multiple SSIDs in Cisco 1250 Access Points Series 2

Posted by: Yasir Irfan
Multiple SSID, Configuring Multiple SSID in Cisco Access Point, Cisco Aironet 1250 Series Access Points, configuring multiple SSIDs, VLANS, Cisco Configurations, Wireless, Cisco Wireless, Cisco Access Points, Cisco Aironet 1250, Cisco Aironet 1250 Access Point, Sample Configurations, configuration scenarios, Windows 2003 Server, Wireless Clients, SSIDs, Native VLAN, Cisco Catalyst 3560 Switch, Cisco Catalyst 6500 Series Switch, IOS Version 12.4(10b) JDA3, IOS version 12.2(44) SE1, IOS version 12.2(18) SXF14, Cisco IOS, DHCP Server, IP Address

In order to configure multiple SSIDs in a Cisco Aironet 1250 Series Access Point, we will follow the following scenario,

 

The Scenario is based on following hardware and software versions.

 

Cisco Aironet 1250 Series Access Point runs with an IOS Version 12.4(10b) JDA3.

Cisco Catalyst 3560 Switch runs with an IOS version 12.2(44) SE1.

Cisco Catalyst 6500 Series Switch runs with an IOS version 12.2(18) SXF14.

 

The Cisco Aironet 1250 Series Access Point has three VLANs, - VLAN 100, VLAN 101 and VLAN 102. VLAN 100 will be the native VLAN, VLAN 101 for the ITKE admin department and VLAN 102 for the guest users. The Wireless users who belong to ITKE admin department must connect to the Cisco Aironet 1250 Series Access Point and should be able to connect the ITKE admin department users on the wired network which is VLAN 101.

 

The wireless guest users should be able to connect to the Internet Gateway or web server which is on the wired segment of VLAN 102.

A Cisco Catalyst 3560 Switch is connected to the Cisco Aironet 1250 Series Access Point at the access layer and the Cisco Catalyst 3560 Switch is also connected to the Cisco Catalyst 6500 Switch at the Core/Distribution layer). All VLANs are created in the Cisco Catalyst 6500 Switch which is beyond the scope of this document. (If any one feels he or she needs the sample configuration for the VLANs in the Cisco Catalyst 6500 switch it can be provided in the comments section of this blog entry).

 

A windows 2003 Server is used as a DHCP server which provides the IP address for both the VLANs VLAN 101 and VLAN 102. A DHCP scope has to be configured for both VLANS in the windows 2003 Server which is also beyond the scope of this document. But I am just adding the snap shot from the DHCP Server.

 

The following IP Address Scheme is applied for the VLANs

 

VLAN 100– 10.0.0.0 /23 (NATIVE VLAN)

VLAN 101 – 10.2.0.0/23

VLAN 102– 10.4.0.0/23

 

Following are the IP address used for the devices in this document.

 

·         The Cisco Aironet 1250 Series Access Point Bridge-Group Virtual Interface (BVI) IP Address (VLAN 100) 10.0.0.99.

 

·         Windows 2003 DHCP Server with an IP address 10.0.1.100 with VLAN scopes configured

 

·         Web Server with an IP Address 10.4.0.100.

 

·         Wireless Clients (SSID ITKE) gets connected to VLAN 101 gets an IP address from the Windows 2003 DHCP Server from the subnet 10.2.0.0.

 

·         Wireless Clients (SSID Guest) gets connected to VLAN 102 gets an IP Address from the Windows 2003 DHCP Server from the subnet 10.4.0.0.

In my next post I will post the configuration steps required to carry out the above motioned task. Until then do leave your comments for any future improvements or suggestions.

Aug 11 2009   6:40AM GMT

Manage Engine releases Netflow Analyzer 7.5

Posted by: Yasir Irfan
Networking, Manage Engine Netflow Analyzer 7.5, Cisco IOS, Cisco Netflow, NetFlow Analyzer, Scrutinizer net flow analyzer, Manage Engine Net flow analyzer, sFlow, Network Monitoring, You Tube, Router Monitoring, Cisco 6500 Netflow, LAN Bandwitdh, Network Security, Custom Net Flow Reports, Netflow Reports, Cisco IOS NetFlow, Monitor, Router, Network, Administration, Network Traffic, Cisco Systems Inc., Netflow, Site-to-Site traffic monitoring, Network Bandwidth Monitoring

 

In one of my past posts, I mentioned about the Scrutinizer netflow analyzer, still I am testing some more netflow analyzers . Manage Engine recently released the latest version of its Manage Engine Netflow Analyzer 7.5.

 

So I though let me try the demo version of Manage Engine Netflow Analyzer 7.5, the new version features a customizable administrator dashboards allows an IT administrator to monitor the critical parts of the network infrastructure.

 

The new  Manage Engine Netflow Analyzer 7.5 ‘s Site-to-Site traffic monitoring capability helps businesses track network traffic patterns between separate physical locations, ensuring business-critical applications have the right amount of bandwidth allocated for maximum performance. This level of understanding is vital for the day-to-day performance of existing applications, as well as for planning infrastructure growth. It is also key to IT departments that chargeback business units for the volume of network traffic generated, and for service providers who bill customers based on volume and speed.

 

Some of the features of Manage Engine  Netflow Analyzer 7.5 are as follows

Network Bandwidth Monitoring Bandwidth Reporting Netflow Monitoring Network Traffic Analysis Site to site traffic monitoring

Application Performance Optimization Network Security Netflow Reporting Automating Reports Customizable Dashboard

 

The Manage Engine Netflow Analyzer 7.5 is worth trying the demo version for 30 days.  The good thing about the Manage Engine Netflow Analyzer 7.5 is the enhanced reporting tool, customizable dash board and ease to manage and install.

Jun 17 2009   7:56AM GMT

Scrutinizer NetFlow analyzer simple and easy to manage

Posted by: Yasir Irfan
Networking, Cisco IOS, Cisco Netflow, NetFlow Analyzer, Scrutinizer net flow analyzer, Manage Engine Net flow analyzer, sFlow, Network Monitoring, You Tube, Router Monitoring, Cisco 6500 Netflow, LAN Bandwitdh, Network Security, Custom Net Flow Reports, Netflow Reports, Cisco IOS NetFlow, Monitor, Router, Network, Administration, Network Traffic, Cisco Systems Inc., Netflow

 

It’s my habit to always  try something new or some interesting. As we have a huge project coming up, hence  I am in the process of testing many windows supported netflow analyzers.  Since I am aware of Manage Engine Netflow analyzer I thought for a change let me start over with Scrutinizer netflow analyzer.

I just went to the Scrutinizer web site and downloaded the latest Scrutinizer netflow analyzer; there support seems to be good, the moment I downloaded the  Scrutinizer netflow analyzer;  I received an email offering a trial key with few faqs of the Scrutinizer netflow analyzer.

  Continued »

Mar 14 2009   5:22AM GMT

Cisco Systems released Cisco® IOS® Software updates for Cisco Catalyst® 3750-E, 3750, 3560-E, 3560, and 2960 Series Catalyst Switches

Posted by: Yasir Irfan
Cisco IOS, Cisco 12.2(50)SE, Cisco EnergyWise, Auto Smartports, Identity-based networking, Cisco Catalyst 3750 Series, Cisco Catalyst 3650, 3560E, Cisco Catalyst 2960, Cisco IOS Release, Advanced IP Services, IP Services, IP Base

Cisco Systems announces the release of Cisco IOS ® Software Release 12.2(50)SE for Cisco Catalyst 3750-E,3560-E,3750,3560 and 2960 Series Switches. This new release from Cisco Systems introduces Energy wise technology and adds several enhancements in the areas of identity-based networking services and ease of use with Auto Smart ports.

Picture Courtesy:Cisco Systems.

There are several new features included in this release, which are as following.

• Cisco EnergyWise: The inclusion of Cisco EnergyWise technology in this release enables companywide optimization of greenhouse gas (GhG) emissions by measuring, reporting, and reducing energy consumption across the entire corporate infrastructure.

• Identity-based networking: This release continues to enhance Cisco Identity-based Networking Services (IBNS) with several primary innovations to simplify configurations that support heterogeneous endpoint device environments. The release also includes innovations to transparently integrate with existing network and Internet Protocol Telephony (IPT) infrastructure and to provide IT administrators comprehensive policy enforcement options. These enhancements are covered in detail under “Security and Identity Enhancements” section.

• Auto Smartports: This release extends Smartports to allow dynamic switch port provisioning. The switch uses Cisco Discovery Protocol to determine the type of the device connected to the switch and automatically provisions the port based on the predefined macros. The switch integrates with RADIUS for device authentication and applies the macro based on the RADIUS-assigned tag.

• Wired location services: This enhancement enables switch port tracking of hosts or users connected to switches. As part of the location service, the switch integrates with Cisco wireless Mobility Services Engine, which can be used for host/user lookup in determining the switch connectivity for troubleshooting purposes.

• Cisco Catalyst 3750 Series with Cisco StackWise^® enhancements for troubleshooting: This release provides new command-line interface (CLI) for StackWise stats and counters to aid in troubleshooting.

• LLDP-MED integration for class of service/diff services code point (CoS/DSCP): Switch will signal CoS/DSCP settings to connected IP telephone using Link Layer Discovery Protocol for Media Endpoint Devices (LLDP-MED) (so that the IP telephone can use the values for communication)

• Link Layer Discovery Protocol (LLDP) MIB: This release provides manageability for LLDP including local and remote MIBs.

• Secure copy (SCP) support for Configuration Copy Management Information Base (Config-Copy-MIB). This feature provides secure configuration copy capability.

• IP Source Guard (IPSG) and Dynamic Address Resolution Protocol (ARP) Inspection (DAI) support for Cisco Catalyst 2960 Series Switches with LAN Base software: This release introduces IPSG and DAI capabilities for Layer 2 security.

• Cisco Catalyst 2960 Series authentication-failed VLAN. This feature is now also available in LAN Lite package. Previously it was available only in LAN Base package.

• Cisco Configuration Engine support: Catalyst switches can be managed from Cisco Configuration Engine for zero-touch deployment.

• IS-ISv4: This release introduces Integrated Intermediate System-to-Intermediate System (IS-IS) routing protocol for IPv4 networks.

• RADIUS Server load balancing: This release allows access and authentication requests to be distributed evenly across all RADIUS servers in a server group.

• Cisco Entity Sensor MIB: This release adds manageability for Digital Optical Monitoring (DOM)-capable modules.

• Small Form-Factor Pluggable (SFP) + 10 Gigabit Ethernet X2: This release supports SFP-10G-SR and SFP-10G-LR SFP+ transceiver modules.

• X2 ZR: This release supports 10 Gigabit Ethernet X2 ZR optical modules.

• CPU utilization threshold: This release allows users to define thresholds and receive notification when thresholds are exceeded.

• Embedded Event Manager (EEM) 2.4: This release adds EEM 2.4 support.

• Support for 64 EtherChannel ports: This release increases EtherChannel scaling to 64 per switch. Available only on Cisco Catalyst 3100 Series blade switches

• Resilient Ethernet Protocol (REP) for the Cisco Industrial Ethernet (IE) 3000 Series: This protocol provides fast convergence for Layer 2 ring topologies.

• IPv6 packaging changes: Cisco has announced the end of life for Advanced IP Services (AIS). Functionality previously available in AIS has been migrated to IP Services or IP Base as documented in Table 1.

Table 1. Feature Migration for Catalyst 3k Advanced IP Services

Feature	Current IPv6 Features before EOL	Location of IPv6 after EOL
EIGRPv6, OSPFv3	Advanced IP Services	IP Services
ACL	Advanced IP Services	IP Base
HSRPv6	Advanced IP Services	IP Base
DHCP Server/Client/Relay	Advanced IP Services	IP Base
RIPng	Advanced IP Services	IP Base
Static Routes	Advanced IP Services	IP Base

Dec 27 2008   6:19AM GMT

Cisco Etherchannel Overview and how it can be configured in Cisco Catalyst Switches – Series 3

Posted by: Yasir Irfan
Networking, Switches, Cisco, IEEE, Switching, Cisco IOS, Cisco 2960, Cisco 2950, Cisco 6500, Cisco Tips, Cisco 3560, Cisco Learning, Cisco 3750-E, Cisco Systems, Etherchannel, Cisco 6500 Series Catalyst Switch, 802.3ad, Etherchannel configuration, Etherchannel restrictions, Protocol, PAGP, LACP, Port Aggregation Protocol, Link Aggregation Control Protocol

Dear Friends, hope everyone is having great holidays, have fun. In my previous post  I was focusing on some of the limitations of Etherchannel. Now let’s proceed a step ahead and figure out about the Etherchannel negotiation protocols. Etherchannels can be negotiated between two Cisco Catalyst Switches  to provide some dynamic link configuration.

 Basically there are two types of protocols are available, which can be used to bundled the automated creation of an Etherchannel in the Cisco Catalyst Switches.

In upcomming post I will try to concentrate on automating the creation of an Etherchannel . Have fun and happy new year 2009.

Dec 15 2008   6:55AM GMT

Cisco Etherchannel Overview and how it can be configured in Cisco Catalyst Switches – Series 1

Posted by: Yasir Irfan
Networking, Switches, Cisco, IEEE, Switching, Routing and Switching, Cisco IOS, Cisco 6500, Cisco Tips, Etherchannel, Switching Secrets, 802.3ad, Kalpana, Layer 2 Etherchannel, Layer 3 Etherchannel, Etherchannel configuration, 10 GigaEtherchannel

Dear Friends in this upcoming series of posts I would like to concentrate on Etherchannel , what is Etherchannel? , what rules and restrictions are  applied to an Etherchannel and finally I will show you how to configure an Etherchannel in Cisco Switches both layer 2 as well as layer 3.

 

An Etherchannel combines multiple physical links into a single logical link that provides aggregate bandwidth of 800 MBPS (fast Etherchannel, full duplex) , 8 GBPS (Giga Etherchannel) or 80 Gbps (10 Giga Ethernet) . Ideal for load sharing or link redundancy – can be used by both layer 2 and Layer 3 subsystems and Etherchannel  can provide network managers with a reliable, high-speed solution for the campus network backbone. EtherChannel technology was invented by Kalpana in the early 1990s. They were later acquired by Cisco Systems in 1994. In 2000 the IEEE passed 802.3ad which is an open standard version of EtherChannel.

I would like to explain some key points about Etherchannel using graphical diagrams so that it’s easy understand and to remember.

 

Etherchannel  can be configured defined on Ethernet, Fast Ethernet, Giga Ethernet or 10 Giga Ethernet ports.