beautypg.com
Manuals
Brands
HP Manuals
Switch
2600 Series
HP 2600 Series Manuals
Manuals and User Guides for HP 2600 Series. We have
2
HP 2600 Series manuals available for free PDF download: Management And Configuration Manual, Function Manual
HP 2600 Series Management And Configuration Manual (418 pages)
Brand:
HP
| Category:
Switch
| Size: 5.07 MB
Table of Contents
Table of Contents
5
Getting Started
18
Introduction
18
About the Feature Descriptions
18
Conventions
19
Command Syntax Statements
19
Command Prompts
19
Getting Documentation from the Web
22
Sources for more Information
23
Need Only a Quick Start
24
IP Addressing
24
To Set up and Install the Switch in Your Network
24
Selecting a Management Interface
26
Overview
26
Understanding Management Interfaces
26
Advantages of Using the Menu Interface
27
Advantages of Using the CLI
28
Advantages of Using the HP Web Browser Interface
29
Advantages of Using HP Procurve Manager or HP Procurve Manager Plus
30
Using the Menu Interface
34
Overview
34
Starting and Ending a Menu Session
35
How to Start a Menu Interface Session
36
How to End a Menu Session and Exit from the Console
37
Main Menu Features
39
Screen Structure and Navigation
41
Rebooting the Switch
44
Menu Features List
46
Where to Go from here
47
Using the Command Line Interface (CLI)
50
Overview
50
Accessing the CLI
50
Using the CLI
50
Privilege Levels at Logon
51
Privilege Level Operation
52
Operator Privileges
52
Manager Privileges
53
How to Move between Levels
55
Listing Commands and Command Options
56
Listing Commands Available at any Privilege Level
56
Command Option Displays
58
Displaying CLI "Help
59
Configuration Commands and the Context Configuration Modes
61
CLI Control and Editing
64
Using the HP Web Browser Interface
65
Contents
65
Overview
66
General Features
67
Starting an HP Web Browser Interface Session with the Switch
68
Using a Standalone Web Browser in a PC or UNIX Workstation
68
Using HP Procurve Manager (PCM) or HP Procurve Manager Plus
69
Using HP Procurve Manager (PCM) or HP Procurve Manager Plus (PCM+)
69
Tasks for Your First HP Web Browser Interface Session
71
Viewing the "First Time Install" Window
71
Creating Usernames and Passwords in the Browser Interface
72
Using the Passwords
74
Using the User Names
74
If You Lose a Password
75
Online Help for the HP Web Browser Interface
75
Support/Mgmt Urls Feature
76
Support URL
77
Help and the Management Server URL
77
Status Reporting Features
79
The Overview Window
79
The Port Utilization and Status Displays
80
Port Utilization
80
Port Status
82
The Alert Log
83
Sorting the Alert Log Entries
83
Alert Types and Detailed Views
84
The Status Bar
86
Setting Fault Detection Policy
87
Switch Memory and Configuration
89
Contents
89
Overview
90
Overview of Configuration File Management
90
Using the CLI to Implement Configuration Changes
93
Using the Menu and Web Browser Interfaces to Implement Configuration
96
Changes
96
Configuration Changes Using the Menu Interface
96
Rebooting from the Menu Interface
98
Configuration Changes Using the Web Browser Interface
99
Using Primary and Secondary Flash Image Options
100
Displaying the Current Flash Image Data
100
Switch Software Downloads
102
Local Switch Software Replacement and Removal
103
Rebooting the Switch
105
Operating Notes
107
Interface Access and System Information
109
Contents
109
Overview
110
Interface Access: Console/Serial Link, Web, and Telnet
111
Menu: Modifying the Interface Access
112
CLI: Modifying the Interface Access
113
Denying Interface Access by Terminating Remote Management Sessions
116
System Information
117
Menu: Viewing and Configuring System Information
118
CLI: Viewing and Configuring System Information
119
Web: Configuring System Parameters
122
Configuring IP Addressing
123
Contents
123
Overview
124
IP Configuration
125
Just Want a Quick Start with IP Addressing
126
IP Addressing with Multiple Vlans
126
IP Configuration
126
IP Addressing in a Stacking Environment
127
Menu: Configuring IP Address, Gateway, and Time-To-Live (TTL)
127
CLI: Configuring IP Address, Gateway, and Time-To-Live (TTL)
129
Web: Configuring IP Addressing
133
How IP Addressing Affects Switch Operation
133
Dhcp/Bootp Operation
134
Network Preparations for Configuring Dhcp/Bootp
137
IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File
138
Downloads
138
Operating Rules for IP Preserve
138
Contents
143
Overview
144
Timep Time Synchronization
144
SNTP Time Synchronization
144
Overview: Selecting a Time Synchronization Protocol or Turning off Time Protocol Operation
145
General Steps for Running a Time Protocol on the Switch
145
Overview: Selecting a Time Synchronization Protocol or Turning off Time
145
Protocol Operation
145
Disabling Time Synchronization
146
SNTP: Viewing, Selecting, and Configuring
146
Menu: Viewing and Configuring SNTP
147
SNTP: Viewing, Selecting, and Configuring
147
CLI: Viewing and Configuring SNTP
150
Viewing the Current SNTP Configuration
150
Configuring (Enabling or Disabling) the SNTP Mode
151
Timep: Viewing, Selecting, and Configuring
156
Menu: Viewing and Configuring Timep
157
CLI: Viewing and Configuring Timep
158
Viewing the Current Timep Configuration
159
Configuring (Enabling or Disabling) the Timep Mode
160
SNTP Unicast Time Polling with Multiple SNTP Servers
163
Address Prioritization
164
Adding and Deleting SNTP Server Addresses
164
Menu Interface Operation with Multiple SNTP Server Addresses
166
Configured
166
SNTP Messages in the Event Log
166
Port Status and Basic Configuration
167
Contents
167
Overview
169
Viewing Port Status and Configuring Port Parameters
169
Menu: Viewing Port Status and Configuring Port Parameters
172
CLI: Viewing Port Status and Configuring Port Parameters
173
Using the CLI to View Port Status
174
Using the CLI to Configure Ports
176
Using the CLI to Configure a Broadcast Limit
177
Configuring HP Auto-MDIX
179
Manual Auto-MDIX Override on the Series 2600/2600-PWR and 2800 Switches
180
Web: Viewing Port Status and Configuring Port Parameters
183
Jumbo Packets on the Series 2800 Switches
183
Terminology
184
Operating Rules
184
Configuring Jumbo Packet Operation
185
Overview
185
Viewing the Current Jumbo Configuration
186
Enabling or Disabling Jumbo Traffic on a VLAN
188
Operating Notes for Jumbo Traffic-Handling
188
Troubleshooting
191
Qos Pass-Through Mode on the Series 2800 Switches
191
General Operation
191
Qos Priority Mapping with and Without Qos Pass-Through Mode
192
How to Enable/Disable Qos Pass-Through Mode
193
Configuring Port-Based Priority for Incoming Packets on the 4100Gl and 6108 Switches
195
The Role of 802.1Q VLAN Tagging
195
Switches
195
Outbound Port Queues and Packet Priority Settings
196
Operating Rules for Port-Based Priority
197
Configuring and Viewing Port-Based Priority
198
Messages Related to Prioritization
199
Troubleshooting Prioritization
199
Using Friendly (Optional) Port Names
200
Configuring and Operating Rules for Friendly Port Names
200
Configuring Friendly Port Names
201
Displaying Friendly Port Names with Other Port Data
203
Applicable Switch Models
208
Introduction
208
General Operation
208
Terminology
209
Related Publications
209
General Poe Operation
210
Configuration Options
210
PD Support
211
Power Priority
213
Configuring Poe Operation
215
Viewing Poe Configuration and Status
217
Displaying the Switch's Global Poe Power Status
217
Displaying an Overview of Poe Status on All Ports
218
Displaying the Poe Status on Specific Ports
219
Planning and Implementing a Poe Configuration
221
Assigning Poe Ports to Vlans
221
Applying Security Features to Poe Configurations
221
Poe Operating Notes
222
Poe Event Log Messages
223
Port Trunking
228
Overview
228
Port Status and Configuration
228
Port Connections and Configuration
229
Link Connections
229
Trunk Group Boundary Requirement with IP Routing Enabled on the Series 2800 Switch
229
Trunk Group Boundary Requirement with IP Routing Enabled
229
On the Series 2800 Switch
229
Trunk Group Boundary Requirement for the Series 4100Gl Switch 10/100/1000 Module (J4908A)
230
Port Trunk Options and Operation
231
Trunk Configuration Methods
231
Menu: Viewing and Configuring a Static Trunk Group
236
CLI: Viewing and Configuring a Static or Dynamic Port Trunk Group
238
Using the CLI to View Port Trunks
238
Using the CLI to Configure a Static or Dynamic Trunk Group
241
Web: Viewing Existing Port Trunk Groups
244
Trunk Group Operation Using LACP
244
Default Port Operation
247
LACP Notes and Restrictions
249
Trunk Group Operation Using the "Trunk" Option
251
Trunk Operation Using the "FEC" Option
251
How the Switch Lists Trunk Data
252
Outbound Traffic Distribution Across Trunked Links
252
Configuring for Network Management Applications
257
Using SNMP Tools to Manage the Switch
257
Overview
257
SNMP Management Features
258
Configuring for SNMP Access to the Switch
258
Configuring for SNMP Version 3 Access to the Switch
259
SNMP Version 3 Commands
260
Snmpv3 Enable
261
SNMP Version 3 Users
262
Group Access Levels
265
SNMP Communities
266
SNMP Communities
267
Menu: Viewing and Configuring Non-SNMP Version 3
268
Communities
268
CLI: Viewing and Configuring SNMP Community Names
270
SNMP Notification and Traps
272
Trap Features
274
Using the CLI to Enable Authentication Traps
277
Advanced Management: RMON
278
Cdp
279
Introduction
279
CDP Terminology
280
General CDP Operation
281
Outgoing Packets
281
Incoming CDP Packets
282
Configuring CDP on the Switch
285
CLI: Viewing and Configuring CDP
285
Viewing the Switch's Current CDP Configuration
286
Viewing the Switch's Current CDP Neighbors Table
286
Clearing (Resetting) the CDP Neighbors Table
287
Configuring CDP Operation
288
Effect of Spanning Tree (STP) on CDP Packet Transmission
290
Packets
291
CDP Neighbor Data and MIB Objects
292
Operating Notes
294
Overview
298
Downloading Switch Software
298
General Switch Software Download Rules
299
Using TFTP to Download Switch Software from a Server
299
Menu: TFTP Download from a Server to Primary Flash
300
CLI: TFTP Download from a Server to Primary or Secondary Flash
302
Secondary Flash
302
Using Secure Copy and SFTP
303
How It Works
304
The SCP/SFTP Process
305
Command Options
305
Authentication
306
SCP/SFTP Operating Notes
306
Using Xmodem to Download Switch Software from a PC or UNIX Workstation
307
Menu: Xmodem Download to Primary Flash
307
CLI: Xmodem Download from a PC or Unix Workstation to Primary or Secondary Flash
308
Switch-To-Switch Download
310
Menu: Switch-To-Switch Download to Primary Flash
310
CLI: Switch-To-Switch Downloads
311
Using HP PCM+ to Update Switch Software
312
Troubleshooting TFTP Downloads
313
Transferring Switch Configurations
314
Copying Diagnostic Data to a Remote Host, PC, or Unix Workstation
317
Copying Command Output to a Destination Device
317
Copying Event Log Output to a Destination Device
318
Copying Crash Data Content to a Destination Device
318
Copying Crash Log Data Content to a Destination Device
319
Overview
323
Status and Counters Data
324
Menu Access to Status and Counters
325
General System Information
326
Menu Access
326
CLI Access
326
Switch Management Address Information
327
Menu Access
327
CLI Access
327
Module Information
328
Menu: Displaying Port Status
328
CLI Access
328
Port Status
329
Menu: Displaying Port Status
329
CLI Access
329
Web Access
329
Viewing Port and Trunk Group Statistics and Flow Control Status
330
Menu Access to Port and Trunk Statistics
331
CLI Access to Port and Trunk Group Statistics
332
Web Browser Access to View Port and Trunk Group Statistics
332
Viewing the Switch's MAC Address Tables
333
Menu Access to the MAC Address Views and Searches
334
CLI Access for MAC Address Views and Searches
336
Spanning Tree Protocol (STP) Information
338
Menu Access to STP Data
338
CLI Access to STP Data
339
Internet Group Management Protocol (IGMP) Status
340
VLAN Information
340
VLAN Information
341
Web Browser Interface Status Information
343
Port and Static Trunk Monitoring Features
344
Switch 6108 and Series 4100Gl Switches
344
Series 2600, 2600-PWR, and 2800 Switches
344
Menu: Configuring Port and Static Trunk Monitoring
345
CLI: Configuring Port and Static Trunk Monitoring
347
Web: Configuring Port Monitoring
349
Overview
353
Troubleshooting Approaches
353
Chassis Over-Temperature Detection
355
Browser or Telnet Access Problems
356
Unusual Network Activity
358
General Problems
358
CDP Problems
359
Prioritization Problems
359
IGMP-Related Problems
360
LACP-Related Problems
361
Port-Based Access Control (802.1X)-Related Problems
361
Radius-Related Problems
364
Spanning-Tree Protocol (STP) and Fast-Uplink Problems
365
SSH-Related Problems
366
Stacking-Related Problems
367
TACACS-Related Problems
368
Timep, SNTP, or Gateway Problems
370
VLAN-Related Problems
370
Using Logging to Identify Problem Sources
373
Event Log Operation
373
Menu: Entering and Navigating in the Event Log
375
Cli
376
Debug and Syslog Operation
377
Diagnostic Tools
384
Port Auto-Negotiation
384
Ping and Link Tests
385
Diagnostic Tools
385
Web: Executing Ping or Link Tests
386
CLI: Ping or Link Tests
387
Displaying the Configuration File
389
Web: Viewing the Configuration File
389
CLI: Viewing the Configuration File
389
Listing Switch Configuration and Operation Details for Help in Troubleshooting
390
CLI Administrative and Troubleshooting Commands
392
Restoring the Factory-Default Configuration
393
Using the CLI
393
Using the Clear/Reset Buttons
393
Restoring a Flash Image
394
Overview
398
Determining MAC Addresses in the Switch
398
Menu: Viewing the Switch's MAC Addresses
399
CLI: Viewing the Port and VLAN MAC Addresses
400
Viewing Themac Addresses of Connected Devices on Series 2600/2600-PWR, 2800 and 4100Gl Switches
402
HP 2600 Series Function Manual (306 pages)
Access Security Guide ProCurve 2600, 2600-PWR, 2800, 4100, 6108 Series
Brand:
HP
| Category:
Switch
| Size: 2.18 MB
Table of Contents
Access Security Guide
1
Table of Contents
5
Product Documentation
13
About Your Switch Manual Set
13
Feature Index
14
Contents
17
Getting Started
18
Introduction
18
Overview of Access Security Features
18
Management Access Security Protection
19
General Switch Traffic Security Guidelines
20
Conventions
21
Feature Descriptions by Model
21
Command Syntax Statements
21
Command Prompts
22
Screen Simulations
22
Port Identity Examples
22
Sources for more Information
23
Need Only a Quick Start
24
IP Addressing
24
To Set up and Install the Switch in Your Network
25
Contents
27
Configuring Username and Password Security
28
Overview
28
Configuring Local Password Security
30
Menu: Setting Passwords
30
CLI: Setting Passwords and Usernames
31
Web: Setting Passwords and Usernames
32
Front-Panel Security
33
When Security Is Important
33
Front-Panel Button Functions
34
Configuring Front-Panel Security
36
Password Recovery
41
Password Recovery Process
43
Web and MAC Authentication for the Series 2600/2600-PWR and 2800 Switches
45
Contents
45
Overview
46
Client Options
47
General Features
48
How Web and MAC Authentication Operate
49
Authenticator Operation
49
Terminology
53
Operating Rules and Notes
54
General Setup Procedure for Web/Mac Authentication
56
Do These Steps before You Configure Web/Mac Authentication
56
Additional Information for Configuring the RADIUS Server to Support MAC Authentication
58
Configuring the Switch to Access a RADIUS Server
59
Configuring Web Authentication
61
Overview
61
Configure the Switch for Web-Based Authentication
62
Configuring MAC Authentication on the Switch
66
Overview
66
Configure the Switch for MAC-Based Authentication
67
Show Status and Configuration of Web-Based Authentication
70
Show Status and Configuration of MAC-Based Authentication
71
Show Client Status
73
TACACS+ Authentication
75
Contents
75
Overview
76
Terminology Used in TACACS Applications
77
General System Requirements
79
General Authentication Setup Procedure
79
Configuring TACACS+ on the Switch
82
Before You Begin
82
CLI Commands Described in this Section
83
Viewing the Switch's Current Authentication Configuration
83
Viewing the Switch's Current TACACS+ Server Contact Configuration
84
Configuring the Switch's Authentication Methods
85
Configuring the Switch's TACACS+ Server Access
89
How Authentication Operates
94
General Authentication Process Using a TACACS+ Server
94
Local Authentication Process
96
Using the Encryption Key
97
Controlling Web Browser Interface Access When Using TACACS+ Authentication
98
Controlling Web Browser Interface Access When Using TACACS
98
Authentication
98
Messages Related to TACACS+ Operation
99
Operating Notes
99
RADIUS Authentication and Accounting
101
Contents
101
Overview
102
Terminology
103
Switch Operating Rules for RADIUS
104
General RADIUS Setup Procedure
105
Configuring the Switch for RADIUS Authentication
106
Outline of the Steps for Configuring RADIUS Authentication
107
Configure Authentication for the Access Methods You Want RADIUS
108
To Protect
108
Configure Authentication for the Access Methods You Want
108
Configure the Switch to Access a RADIUS Server
110
Configure the Switch's Global RADIUS Parameters
112
Local Authentication Process
116
Controlling Web Browser Interface Access When Using RADIUS Authentication
117
Configuring RADIUS Accounting
117
Operating Rules for RADIUS Accounting
119
Steps for Configuring RADIUS Accounting
119
Configuring RADIUS Accounting
119
Reports to the Radius Server
122
Viewing RADIUS Statistics
125
General RADIUS Statistics
125
RADIUS Authentication Statistics
127
RADIUS Accounting Statistics
128
Changing RADIUS-Server Access Order
129
Messages Related to RADIUS Operation
131
Configuring Secure Shell (SSH)
133
Contents
133
Overview
134
Terminology
136
Prerequisite for Using SSH
137
Public Key Formats
137
Steps for Configuring and Using SSH for Switch and Client Authentication
138
General Operating Rules and Notes
140
Configuring the Switch for SSH Operation
141
Assign Local Login (Operator) and Enable (Manager) Password
141
Generate the Switch's Public and Private Key Pair
142
Provide the Switch's Public Key to Clients
144
Enable SSH on the Switch and Anticipate SSH Client Contact Behavior
147
Enable SSH on the Switch and Anticipate SSH Client
147
Configure the Switch for SSH Authentication
150
Use an SSH Client to Access the Switch
153
Further Information on SSH Client Public-Key Authentication
153
Messages Related to SSH Operation
159
Configuring Secure Socket Layer (SSL)
161
Contents
161
Overview
162
Terminology
163
Prerequisite for Using SSL
165
Steps for Configuring and Using SSL for Switch and Client Authentication
165
General Operating Rules and Notes
166
Configuring the Switch for SSL Operation
167
Assign Local Login (Operator) and Enable (Manager) Password
167
Generate the Switch's Server Host Certificate
169
Comments on Certificate Fields
171
Enable SSL on the Switch and Anticipate SSL Browser Contact
177
Behavior
181
Common Errors in SSL Setup
181
Configuring Port-Based Access Control (802.1X)
183
Contents
183
Overview
185
Why Use Port-Based Access Control
185
General Features
185
How 802.1X Operates
188
Authenticator Operation
188
Switch-Port Supplicant Operation
189
Terminology
190
General Operating Rules and Notes
192
General Setup Procedure for Port-Based Access Control (802.1X)
194
Do These Steps before You Configure 802.1X Operation
194
Overview: Configuring 802.1X Authentication on the Switch
195
Configuring Switch Ports as 802.1X Authenticators
197
Enable 802.1X Authentication on Selected Ports
197
Configuring Switch Ports as 802.1X Authenticators
201
Configure the 802.1X Authentication Method
201
Enter the RADIUS Host IP Address(Es)
202
Enable 802.1X Authentication on the Switch
202
802.1X Open VLAN Mode
203
Introduction
203
Use Models for 802.1X Open VLAN Modes
204
Operating Rules for Authorized-Client and Unauthorized-Client Vlans
207
Setting up and Configuring 802.1X Open VLAN Mode
209
802.1X Open VLAN Operating Notes
213
Option for Authenticator Ports: Configure Port-Security to Allow Only 802.1X Devices
214
Configuring Switch Ports to Operate as Supplicants for 802.1X Connections to Other Switches
216
Displaying 802.1X Configuration, Statistics, and Counters
220
Show Commands for Port-Access Authenticator
220
Viewing 802.1X Open VLAN Mode Status
222
Show Commands for Port-Access Supplicant
225
How RADIUS/802.1X Authentication Affects VLAN Operation
226
Messages Related to 802.1X Operation
230
Configuring and Monitoring Port Security
231
Contents
231
Overview
232
Basic Operation
232
Blocking Unauthorized Traffic
233
Trunk Group Exclusion
234
Planning Port Security
235
Port Security Command Options and Operation
236
Retention of Static MAC Addresses
240
Displaying Current Port Security Settings
240
Configuring Port Security
242
MAC Lockdown
247
Differences between MAC Lockdown and Port Security
249
Deploying MAC Lockdown
251
MAC Lockout
255
Port Security and MAC Lockout
257
IP Lockdown
258
Web: Displaying and Configuring Port Security Features
259
Reading Intrusion Alerts and Resetting Alert Flags
259
Notice of Security Violations
259
How the Intrusion Log Operates
260
Keeping the Intrusion Log Current by Resetting Alert Flags
261
Using the Event Log to Find Intrusion Alerts
266
Web: Checking for Intrusions, Listing Intrusion Alerts, and Resetting Alert Flags
266
Operating Notes for Port Security
267
Contents
269
Traffic/Security Filters (Procurve Series 2600/2600-PWR and 2800 Switches)
270
Overview
270
Using Source-Port Filters
272
Operating Rules for Source-Port Filters
272
Configuring a Source-Port Filter
273
Viewing a Source-Port Filter
275
Filter Indexing
276
Editing a Source-Port Filter
277
Using Named Source-Port Filters
278
Contents
287
Using Authorized IP Managers
288
Overview
288
Configuration Options
289
Access Levels
289
Defining Authorized Management Stations
290
Overview of IP Mask Operation
290
Menu: Viewing and Configuring IP Authorized Managers
291
CLI: Viewing and Configuring Authorized IP Managers
292
Configuring Ip Authorized Managers for the Switch
293
Web: Configuring IP Authorized Managers
295
Building IP Masks
295
Configuring One Station Per Authorized Manager IP Entry
295
Configuring Multiple Stations Per Authorized Manager IP Entry
296
Additional Examples for Authorizing Multiple Stations
297
Operating Notes
298
Related Products
HP ProCurve Switch 2600-8-PWR with Gigabit Uplink
HP 2600-PWR Series
HP ProCurve Switch 2626
HP PROCURVE 2610-PWR Series
HP 2615 series
HP ProCurve Switch 2626-PWR
HP HP 2610 Series
HP StorageWorks Core Switch 2/64
HP ProCurve 2615-8-PoE
HP 2620-48-PoE+
HP Categories
Desktop
Laptop
Server
Monitor
Switch
More HP Manuals