Beruflich Dokumente
Kultur Dokumente
Henry Liang
Console Port
DB-9 male interface. VT-100 terminal - straight-through cable (female to female not a null-modem). The VT-100 configuration is: 9600 Baud 8 Data Bits Parity = None Stop Bits = 1 Flow Control = None For MODEM Cross-Over cable (typically a DB-9F to DB-25F cable)
NetIron
Link Activity Console Power 1 Link Activity FDX Link/Act FDX Link/Act 2 3 4 5 6 7 8 FDX Link/Act FDX Link/Act 9 10 11 12 13 14 15 16
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
Stackables Layout
ServerIron
1 Link Activity Console Power Link Activity 2
FDX 100 Link / Act FDX 100 Link / Act
3 4
5 6
7 8
FDX 100 Link / Act FDX 100 Link / Act
9 10
11 12
13 14
15 16
FDX 100 Link / Act FDX 100 Link / Act
17 18
19 20
21 22
23 24
1 2
FDX 100 Link / Act FDX 100 Link / Act
3 4
5 6
7 8
Direct Connect to the Serial Port Telnet to the System ? at any prompt shows available commands
FastIron>?
Enter Privileged mode Fast-reload option Ping IP node Display system info Stop current TraceRoute TraceRoute to IP Node
stop-traceroute traceroute
show
enable <password>
Privileged Level Enter through the enable command Can be password protected View detailed information (Show) Enable/Disable System-wide features
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
Privileged Level
5
FastIron# ?
access-list Enter Privileged mode arp Fast-reload option chassis Ping IP node clock Displayconfiguration system info Stop current TraceRoute default TraceRoute to IP Node flash interfaces ip logging mac-address media module priority-mapping qos-profiles relative-utilization reload rmon running-config snmp span Access list Arp table Power supply/fan/tempera Configuration data in fl Print system default set Flash memory contents Port status IP address setting System log MAC address table Gig port SX/LX/LHA/LHB Module type and status 802.1p tagged priority s Configuration of the 4 Q Relative utilization lis Scheduled system reset Rmon status Current running config Snmp statistics Spanning tree status
6
Different prompts indicate the level you are at: User = > Privileged = # Config = (config)#
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
CLI Basics
EXEC/Privilege level
NetIron> enable {superuser password} NetIron#
CONFIG Level
BigIron# conf t BigIron(config)# (stands for configure terminal)
CLI Basics
Interface Level
ServerIron(config)# int e1 (e1 = ethernet port #1) ServerIron(config-if-1)#
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
CLI Basics
Move back up the menu tree using exit
ServerIron(config-rs-c1)# exit
10
Flash Memory
Two Image Storage Areas
Primary & Secondary
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
11
12
Privileged command:
NetIron# copy tftp flash 192.22.33.44 ni0200.bin secondary Copies from TFTP the file ni0200.bin and stores it to the secondary flash area. FastIron# copy flash tftp 192.22.33.44 ni0200.bin secondary Copies the system image from the secondary flash area and stores it on the TFTP server as filename ni0200.bin. TurboIron# copy flash flash ? primary Copy secondary to primary secondary Copy primary to secondary TurboIron# copy flash flash primary Copies the system image from the secondary flash area to the primary. FastIron# copy running-config tftp 192.22.33.44 new.cfg Copies the currently running config (not the stored config) and writes it to the TFTP server as filename new.cfg.
NetIron# copy tftp flash 192.22.33.44 nib06007.bin boot
Upgrades the boot image via tftp server (boot is a hidden parameter)
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
13
Note: The running config and stored config (startup config) may or
may not be the same.
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
14
15
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
16
Clear Commands
Sometimes its helpful to clear forwarding tables and/or route tables Switch and Router clear commands:(FastIron, TurboIron, BigIron)
TurboIron# clear arp TurboIron# clear statistics Clears ARP table Clears all statistic counters. TurboIron# clear mac-address Clears the MAC forwarding tables
17
Ping Command
Helpful when trying to verify connectivity
Cannot be entered when in configure mode A few sample PING commands:
FastIron> ping 192.190.10.10 FastIron# ping 192.190.10.10 count 100 FastIron> ping 192.190.10.10 size 1200 FastIron# ping 192.190.10.10 ttl 5 c 10 s 200
Issues 10 pings with a time to live of 5 and each ping is 200 bytes long Use ? after the address for other options
ping <ip addr> [count <num>] [timeout <msec>] [ttl <num>] [size <byte>] [no-fragment] [quiet] [verify] [data <1-to-4 byte hex#, e.g. abcdef00>]
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
18
Super User - Unlimited access, can change all parameters Configure Port - Change interface level parameters Read Only - View only, no changing allowed BigIron(config)# enable super-user-password SuPswd BigIron(config)# enable port-config-password PCPswd BigIron(config)# enable read-only-password ROPswd BigIron> enable PCPswd or BigIron> enable Password:
If the system password is not yet set, the system warns you BigIron> enable No password has been assigned yet...
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
19
Password Examples
Defining the Super-User password
ServerIron(config)#enable super-user-password SuPswd ServerIron(config)#quit ServerIron> enable SuPswd
20
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
21
options: <any|serial-port-only|telnet-only>
Privilege level: 0=Super-User, 4=Port-Config, 5=Read-only A Super-User account (or Super-User enable password) must be set before you can create lower-access accounts Passwords are stored in Config File ENCRYPTED (default) or you can turn off encryption
(config)# no service password-encryption
22
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
23
If a method is NOT configured, use the next method NOTE: not if it fails, not configured
local
Use locally defined username/password combinations
line
Use the TELNET access password
enable
Use the enable passwords (super-user, port-config, read-only)
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
24
Examples
aaa authentication login default local
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
25
SNMP Configuration
SNMP required information:
FastIron(config)# ip address 192.22.33.45 255.255.255.0 FastIron(config)# ip default-gateway 192.22.33.1 FastIron(config)# snmp-server contact Bill Clinton FastIron(config)# snmp-server location the_white_house FastIron(config)# snmp-server host 192.22.33.55 public FastIron(config)# snmp-server community notsafe ro FastIron(config)# snmp-server community safe rw
Note:The first two commands are valid for switches only. Routers would assign an IP address at the interface level, not at the global level.
NetIron(config) interface ethernet 9 NetIron(config-if-9)# ip address 192.22.33.45 255.255.255.0
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
26
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
27
Must set a password via the Command Line Interface (CLI) The default WEB GUI passwords are the SNMP Community names
BigIron(config)# snmp-server community notsafe ro BigIron(config)# snmp-server community safe rw
28
Controlling Access
You can restrict Web,Telnet and SNMP access to a single management address:
BigIron(config)#web client 209.157.22.39 BigIron(config)#snmp-client 209.157.22.14 BigIron(config)#telnet client 209.157.22.26 BigIron(config)#all-client 209.157.22.69 for all three types
29
Lab #1
Objective: Copy software file from TFTP Server to Switch.
FESX-1 192.168.1.1
NetIron
Link Activity Console Power Link Activity FDX Link/Act FDX Link/Act 1 2 3 4 5 6 7 8 FDX Link/Act FDX Link/Act 9 10 11 12 13 14 15 16
Serial Cable
30
Lab #1a
Objective: Configure the Web interface to manage the switch
FESX-1 192.168.1.1
NetIron
Link Activity Console Power Link Activity FDX Link/Act FDX Link/Act 1 2 3 4 5 6 7 8 FDX Link/Act FDX Link/Act 9 10 11 12 13 14 15 16
Serial Cable
31
Interface Configuration
Specific attributes of each port
Speed Auto-negotiate (default) Forced to 10 or 100Mbps-Full Duplex/Half Duplex
Examples:
NetIron> enable passwordhere NetIron# config term NetIron(config)# interface e8 NetIron(config-if-8)# speed-duplex 100-half NetIron(config-if-8)# speed 10-full NetIron(config-if-8)# speed auto NetIron(config-if-8)# interface e12 NetIron(config-if-12)# speed 100-full NetIron(config-if-12)# end NetIron# write mem
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
32
Interface Configuration
Other attributes assigned to a port
NetIron(config-if-8)# show interface brief
Port Link Current Link 01 Down State 02 Down Up or Down 03 Down 04 05 06 07 08 Down Down Down Down Down State Duplex Speed Tag Priority MAC Trunk None Spanning TreeNone No Normal None 00e0.5200.0385 1 State None Forward, Listen, None None No Normal 00e0.5200.0386 1 None etc. None None No 802.1q Normal 00e0.5200.0387 None Is this port part of Tagged or None None Current No Normal None 00e0.5200.0388 None a Trunk Group? not (Trunk Group #) None None Speed None No Normal 00e0.5200.0389 None None None 10M, None No Normal 00e0.5200.038a None 100M, None None None No Normal 00e0.5200.038b None 1G None None None No Normal 00e0.5200.038c None Full Full None None 100M 100M None None Yes Normal No Normal QoS No Normal Priority, Normal, No Normal High 00e0.5200.038d None 00e0.5200.038e None 00e0.5200.038f None 00e0.5200.0390 None
Current Duplex 09 Up Listen State Up 10 Forward Full or Half 11 Down link None = no None 12 state Down None
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
33
FastIron Workgroup
Link Activity Console Power Link Activity FDX Link/Act FDX Link/Act 1 2 3 4 5 6 7 8 FDX Link/Act FDX Link/Act 9 10 11 12 13 14 15 16
34
Multi-Homed Server Quad Fast Ethernet NIC Multiple Fast Ethernet NICs Configure NIC(s) with same MAC/IP address Up to Four 100Mb links per server Link Redundancy Load balancing based on session counts
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
35
3 4
5 6
7 8
FDX 100 Link / Act FDX 100 Link / Act
9 10
11 12
13 14
15 16
FDX 100 Link / Act FDX 100 Link / Act
Port assignment must be contiguous 1-2, 1-3, 1-4 or 9-10, 9-12, etc. Trunk ports cannot cross above groups All interface parameters in a group must match
Port Tag-type (tagged/untagged) Port Speed and Duplex QoS priority
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
36
F as
Lk in A ctivity C nso o le Lk in A ctiv
F as
Lk in A ctivity C nso o le Pwr oe Lk in A ctiv
Pwr oe
Duplex Speed Tag Priority Full FOR INTERNAL USE ONLY High 100M No
2009 Brocade Communications Systems, Inc. All Rights Reserved.
37
Dest-Mac-B
38
Switch
IP traffic load balanced by Src & Dest IP address. All other type of traffic, balance by Src MAC only Non-IP traffic: If most of the traffic comes in through a single router, the routers MAC is the source address, not the stations behind it. The Trunk group provides redundancy, but not load balancing
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
Src-Mac-C Src-Mac-C
39
FastIron Workgroup
1 Link Activity Console Power Link Activity 2
FDX 100 Link / Act FDX 100 Link / Act
3 4
5 6
7 8
FDX 100 Link / Act FDX 100 Link / Act
9 10
11 12
13 14
15 16
FDX 100 Link / Act FDX 100 Link / Act
17 18
19 20
21 22
23 24
3 4
5 6
7 8
FDX 100 Link / Act FDX 100 Link / Act
9 10
11 12
13 14
15 16
FDX 100 Link / Act FDX 100 Link / Act
17 18
19 20
21 22
23 24
FESX-2 192.168.1.4
192.168.1.3
PC2
FOR INTERNAL USE ONLY 2009 Brocade Communications Systems, Inc. All Rights Reserved.
40
Thank You