Page 1 Catalyst 3750-X and 3560-X Switch Command Reference Cisco IOS Release 15.2(1)E and Later August 2013 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part Number: OL-29704-01...
Page 2 OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks.
Page 3: Table Of Contents
2-10 archive download-sw 2-13 archive tar 2-18 archive upload-sw 2-21 arp access-list 2-23 authentication command bounce-port ignore 2-25 authentication command disable-port ignore 2-26 authentication control-direction 2-27 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 4 2-77 boot helper-config-file 2-78 boot manual 2-79 boot private-config-file 2-80 boot system 2-81 cdp forward 2-83 channel-group 2-85 channel-protocol 2-89 cisp enable 2-90 class 2-91 class-map 2-94 clear dot1x 2-96 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 5 2-124 cluster discovery hop-count 2-126 cluster enable 2-127 cluster holdtime 2-129 cluster member 2-130 cluster outside-interface 2-132 cluster run 2-133 cluster standby-group 2-134 cluster timer 2-136 copy logging onboard 2-137 confidentiality-offset 2-139 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 6 2-190 dot1x mac-auth-bypass 2-191 dot1x max-reauth-req 2-193 dot1x max-req 2-195 dot1x pae 2-196 dot1x port-control 2-197 dot1x re-authenticate 2-199 dot1x reauthentication 2-200 dot1x supplicant controlled transient 2-201 dot1x supplicant force-multicast 2-203 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 7 2-257 ip arp inspection vlan logging 2-258 ip device tracking 2-260 ip device tracking maximum 2-261 ip device tracking probe 2-262 ip dhcp snooping 2-264 ip dhcp snooping binding 2-265 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 8 2-313 ipv6 access-list 2-314 ipv6 address dhcp 2-317 ipv6 dhcp client request vendor 2-318 ipv6 dhcp ping packets 2-319 ipv6 dhcp pool 2-321 ipv6 dhcp server 2-324 ipv6 mld snooping 2-326 Catalyst 3750-X and 3560-X Switch Command Reference viii OL-29704-01...
Page 9 2-375 mac address-table static 2-377 mac address-table static drop 2-378 mac sec 2-380 match (access-map configuration) 2-381 match (class-map configuration) 2-383 mdix auto 2-386 media-type rj45 2-388 mka default-policy 2-389 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 10 (network-policy configuration) 2-446 nmsp 2-448 nmsp attachment suppress 2-449 no authentication logging verbose 2-450 no dot1x logging verbose 2-451 no mab logging verbose 2-452 2-453 pagp learn-method 2-455 pagp port-priority 2-457 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 11 2-519 remote-span 2-521 renew ip dhcp snooping database 2-523 rep admin vlan 2-525 rep block port 2-526 rep lsl-age-timer 2-530 rep preempt delay 2-531 rep preempt segment 2-533 rep segment 2-534 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 12 2-597 show controllers ethernet phy macsec 2-600 show controllers power inline 2-602 show controllers tcam 2-604 show controllers utilization 2-606 show device-sensor cache 2-608 show diagnostic 2-610 show dot1q-tunnel 2-615 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 13 2-686 show ip verify source 2-687 show ipc 2-689 show ipv6 access-list 2-693 show ipv6 dhcp conflict 2-695 show ipv6 mld snooping 2-696 show ipv6 mld snooping address 2-698 Catalyst 3750-X and 3560-X Switch Command Reference xiii OL-29704-01...
Page 14 2-758 show mls qos input-queue 2-759 show mls qos interface 2-760 show mls qos maps 2-764 show mls qos queue-set 2-767 show mls qos vlan 2-768 show monitor 2-769 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 15 2-830 show vtp 2-832 shutdown 2-837 shutdown vlan 2-838 small-frame violation rate 2-839 snmp-server enable traps 2-841 snmp-server host 2-846 snmp trap mac-notification change 2-850 spanning-tree backbonefast 2-852 spanning-tree bpdufilter 2-853 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 16 2-898 srr-queue bandwidth limit 2-900 srr-queue bandwidth shape 2-902 srr-queue bandwidth share 2-904 stack-mac persistent timer 2-906 stack-power 2-908 storm-control 2-910 switch 2-913 switch priority 2-915 switch provision 2-916 switch renumber 2-918 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 17 2-976 vlan 2-977 vlan access-map 2-982 vlan dot1q tag native 2-984 vlan filter 2-986 vmps reconfirm (privileged EXEC) 2-988 vmps reconfirm (global configuration) 2-989 vmps retry 2-990 vmps server 2-991 Catalyst 3750-X and 3560-X Switch Command Reference xvii OL-29704-01...
Page 18 Contents vtp (global configuration) 2-993 vtp (interface configuration) 2-998 vtp primary 2-999 Catalyst 3750-X and 3560-X Switch Boot Loader Commands A P P E N D I X boot copy delete flash_init A-10 format A-11 fsck A-12 help A-13 memory...
Page 19 B-41 debug platform cli-redirection main B-42 debug platform configuration B-43 debug platform cpu-queues B-44 debug platform device-manager B-46 debug platform dot1x B-47 debug platform etherchannel B-48 debug platform fallback-bridging B-49 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 20 B-83 debug pm B-84 debug port-security B-86 debug qos-manager B-87 debug spanning-tree B-88 debug spanning-tree backbonefast B-90 debug spanning-tree bpdu B-91 debug spanning-tree bpdu-opt B-92 debug spanning-tree mstp B-93 Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 21 B-103 debug udld B-105 debug vqpc B-107 Catalyst 3750-X and 3560-X Show Platform Commands A P P E N D I X show platform acl show platform backup interface show platform configuration show platform dl show platform etherchannel...
Page 22 C-41 show platform tb C-43 show platform tcam C-44 show platform vlan C-47 Acknowledgments for Open-Source Software A P P E N D I X N D E X Catalyst 3750-X and 3560-X Switch Command Reference xxii OL-29704-01...
Page 23 This guide is for the networking professional using the Cisco IOS command-line interface (CLI) to manage the Catalyst 3750-X and 3560-X switch, or the Catalyst 3750-X switch stack, referred to as the switch. Before using this guide, you should have experience working with the Cisco IOS commands and the switch software features.
Page 24: Filtering Show Command Output
Expressions are case sensitive. If you enter | exclude output, the lines that contain output are not displayed, but the lines that contain Output are displayed. Related Publications Documents with complete information about the switch are available from these Cisco.com sites: Catalyst 3750-X http://www.cisco.com/en/US/products/ps10745/tsd_products_support_series_home.html Catalyst 3560-X http://www.cisco.com/en/US/products/ps10744/tsd_products_support_series_home.html...
Page 25: Obtaining Documentation And Submitting A Service Request
Obtaining Documentation and Submitting a Service Request For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What’s New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at: http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html...
Page 26 Preface Catalyst 3750-X and 3560-X Switch Command Reference xxvi OL-29704-01...
Page 27: Accessing The Switch
C H A P T E R Using the Command-Line Interface The Catalyst 3750-X and 3560-X switches are supported by Cisco IOS software. This chapter describes how to use the switch command-line interface (CLI) to configure software features. For a complete description of the commands that support these features, see Chapter 2, “Catalyst 3750-X...
Page 28: C H A P T E R 1 Using The Command-Line Interface
Using the Command-Line Interface CLI Command Modes CLI Command Modes This section describes the CLI command mode structure. Command modes support specific Cisco IOS commands. For example, the interface interface-id command only works when entered in global configuration mode. These are the main command modes for the switch: •...
Page 29: Cli Command Modes
The supported commands can vary depending on the version of software in use. To display a comprehensive list of commands, enter a question mark (?) at the prompt. Switch# ? To return to user EXEC mode, enter the disable privileged EXEC command. Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 30: Privileged Exec Mode
EXEC command. The configurations of VLAN IDs 1 to 1005 are saved in the VLAN database if VTP is in transparent or server mode. The extended-range VLAN configurations are not saved in the VLAN database. Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 31: Global Configuration Mode
To exit line configuration mode and to return to global configuration mode, use the exit command. To exit line configuration mode and to return to privileged EXEC mode, enter the end command, or press Ctrl-Z. Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 32 Chapter 1 Using the Command-Line Interface CLI Command Modes Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 33: Cisco Ios Commands
RADIUS hosts. • tacacs+—List of all TACACS+ hosts. • The group keyword is optional when you enter it after the broadcast group and group keywords. You can enter more than optional group keyword. Catalyst 3750-X and 3560-X Switch Command Reference OL-29704-01...
Page 34 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands aaa accounting dot1x radius (Optional) Enable RADIUS authorization. tacacs+ (Optional) Enable TACACS+ accounting. Defaults AAA accounting is disabled. Command Modes Global configuration Command History Release Modification 12.2(53)SE2 This command was introduced.
Page 35: Aaa Authentication Dot1X
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands aaa authentication dot1x aaa authentication dot1x Use the aaa authentication dot1x global configuration command on the switch stack or on a standalone switch to specify the authentication, authorization, and accounting (AAA) method to use on ports complying with the IEEE 802.1x authentication.
Page 36 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands aaa authentication dot1x Examples This example shows how to enable AAA and how to create an IEEE 802.1x-compliant authentication list. This authentication first tries to contact a RADIUS server. If this action returns an error, the user is not allowed access to the network.
Page 37: Aaa Authorization Network
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands aaa authorization network aaa authorization network Use the aaa authorization network global configuration command on the switch stack or on a standalone switch to the configure the switch to use user-RADIUS authorization for all network-related service requests, such as IEEE 802.1x per-user access control lists (ACLs) or VLAN assignment.
Page 38: Access-List
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands access-list access-list To enable smart logging for a standard or extended IP access list, use the access-list command in global configuration mode with the smartlog keyword. Matches to ACL entries are logged to a NetFlow collector.
Page 39 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands access-list Examples This example shows how to configure smart logging on an extended access list, ACL 101, which allows IP traffic from the host with the IP address 172.20.10.101 to any destination. When smart logging is enabled and the ACL is attached to a Layer 2 interface, copies of packets matching this criteria are sent to the NetFlow collector.
Page 40: Action
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands action action Use the action access-map configuration command on the switch stack or on a standalone switch to set the action for the VLAN access map entry. Use the no form of this command to return to the default setting.
Page 41 Cisco IOS IP Command Reference, Volume 1 of 3:Addressing and Services, Release 12.2 > IP Services Commands. ip access-list Creates a named access list. For syntax information, select Cisco IOS IP Command Reference, Volume 1 of 3:Addressing and Services, Release 12.2 > IP Services Commands.
Page 42: Archive Copy-Sw
[/destination-system destination-stack-member-number] [/force-reload] [leave-old-sw] [/no-set-boot] [/overwrite] [/reload] [/safe] source-stack-member-number This command is supported only on Catalyst 3750-X switches. Note Syntax Description...
Page 43 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive copy-sw To successfully use the archive copy-sw privileged EXEC command, you must have downloaded from Note a TFTP server the images for both the stack member switch being added and the stack master. You use the archive download-sw privileged EXEC command to perform the download.
Page 44 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive copy-sw Examples This example shows how to copy the running image from stack member 6 to stack member 8: Switch# archive copy-sw /destination-system 8 6 This example shows how to copy the running image from stack member 6 to all the other stack members: Switch# archive copy-sw 6 This example shows how to copy the running image from stack member 5 to stack member 7.
Page 45: Archive Download-Sw
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive download-sw archive download-sw Use the archive download-sw privileged EXEC command on the switch stack or on a standalone switch to download a new image from a TFTP server to the switch or switch stack and to overwrite or keep the existing image.
Page 46 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive download-sw source-url1 [sourceurl2 The source URLs for the software images. sourceurl3 sourceurl4] On a standalone switch, enter one source URL for the software image that the switch supports. In a switch stack, you can enter source URLs for the software images that the stack members support as follows: Up to two source URLs without the /directory keyword.
Page 47 /reload or /force-reload option in the archive download-sw command. If you use the archive download-sw command on a Catalyst 3560-X or on a Catalyst 3750-X switch or switch stack (including a mixed stack), after the switch reload and while the links are still shut down, the MCU ucode is upgraded (if necessary).
Page 48 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive download-sw Before starting the rolling stack upgrade, configure at least a redundant uplink to the network to ensure that the stack has network connectivity during the upgrade. Examples This example shows how to download a new image from a TFTP server at 172.20.129.10 and to overwrite the image on the switch: Switch# archive download-sw /overwrite tftp://172.20.129.10/test-image.tar...
Page 49 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive download-sw Command Description archive upload-sw Uploads an existing image on the switch to a server. delete Deletes a file or directory on the flash memory device. rsu {active | standby} Configures a redundant uplink to the network during the rolling stack upgrade.
Page 50: Archive Tar
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive tar archive tar Use the archive tar privileged EXEC command on the switch stack or on a standalone switch to create a tar file, list files in a tar file, or extract the files from a tar file.
Page 51 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive tar /table source-url Display the contents of an existing tar file to the screen. For source-url, specify the source URL alias for the local or network file system. These options are supported: The syntax for the local flash file system: •...
Page 52 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive tar Defaults There is no default setting. Command Modes Privileged EXEC Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines Filenames and directory names are case sensitive.
Page 53: Archive Upload-Sw
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands archive upload-sw archive upload-sw Use the archive upload-sw privileged EXEC command on the switch stack or on a standalone switch to upload an existing switch image to a server. archive upload-sw [/source-system-num stack member number | /version version_string]...
Page 54 Use the upload feature only if the HTML files associated with the embedded device manager have been installed with the existing image. The files are uploaded in this sequence: the Cisco IOS image, the HTML files, and info. After these files are uploaded, the software creates the tar file.
Page 55: Arp Access-List
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands arp access-list arp access-list Use the arp access-list global configuration command on the switch stack or on a standalone switch to define an Address Resolution Protocol (ARP) access control list (ACL) or to add clauses to the end of a previously defined list.
Page 56 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands arp access-list Examples This example shows how to define an ARP access list and to permit both ARP requests and ARP responses from a host with an IP address of 1.1.1.1 and a MAC address of 0000.0000.abcd: Switch(config)# arp access-list static-hosts Switch(config-arp-nacl)# permit ip host 1.1.1.1 mac host 00001.0000.abcd...
Page 57: Authentication Command Bounce-Port Ignore
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication command bounce-port ignore authentication command bounce-port ignore Use the authentication command bounce-port ignore global configuration command on the switch stack or on a standalone switch to allow the switch to ignore a command to temporarily disable a port.
Page 58: Authentication Command Disable-Port Ignore
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication command disable-port ignore authentication command disable-port ignore Use the authentication command disable-port ignore global configuration command on the switch stack or on a standalone switch to allow the switch to ignore a command to disable a port. Use the no form of this command to return to the default status.
Page 59: Authentication Control-Direction
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication control-direction authentication control-direction Use the authentication control-direction interface configuration command to configure the port mode as unidirectional or bidirectional. Use the no form of this command to return to the default setting.
Page 60 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication control-direction Command Description authentication Enable or disables reauthentication on a port. periodic authentication Enables manual control of the port authorization state. port-control authentication Adds an authentication method to the port-priority list.
Page 61: Authentication Event
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication event authentication event To set the actions for specific authentication events on the port, use the authentication event interface configuration command. To return to the default settings, use the no form of the command.
Page 62 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication event Usage Guidelines Use this command with the fail, no-response, or event keywords to configure the switch response for a specific action. For authentication-fail events: If the supplicant fails authentication, the port is moved to a restricted VLAN, and an EAP success •...
Page 63 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication event When MAC authentication bypass is enabled on an IEEE 802.1x port, the switch can authorize • clients based on the client MAC address if IEEE 802.1x authentication times out while waiting for an EAPOL message exchange.
Page 64 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication event Related Commands Command Description authentication Configures the port mode as unidirectional or bidirectional. control-direction authentication Configures a port to use web authentication as a fallback method for clients fallback that do not support IEEE 802.1x authentication...
Page 65: Authentication Event Linksec Fail Action
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication event linksec fail action authentication event linksec fail action To configure the required action for a link-security authentications failure, use the authentication event linksec fail action interface configuration command. To disable the configured fail action, use the no form of this command.
Page 66: Authentication Fallback
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication fallback authentication fallback Use the authentication fallback interface configuration command to configure a port to use web authentication as a fallback method for clients that do not support IEEE 802.1x authentication. To return to the default setting, use the no form of this command.
Page 67 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication fallback Command Description authentication Enables manual control of the port authorization state. port-control authentication Adds an authentication method to the port-priority list. priority authentication timer Configures the timeout and reauthentication parameters for an 802.1x-enabled port.
Page 68: Authentication Host-Mode
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication host-mode authentication host-mode Use the authentication host-mode interface configuration command to set the authorization manager mode on a port. authentication host-mode [multi-auth | multi-domain | multi-host | single-host] no authentication host-mode [multi-auth | multi-domain | multi-host | single-host]]...
Page 69 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication host-mode This example shows how to enable single-host mode on a port: Switch(config-if)# authentication host-mode single-host You can verify your settings by entering the show authentication privileged EXEC command.
Page 70: Authentication Linksec Policy
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication linksec policy authentication linksec policy To set the static selection of a link-security policy, use the authentication linksec policy interface configuration command. To return to the default state, use the no form of this command.
Page 71: Authentication Mac-Move Permit
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication mac-move permit authentication mac-move permit Use the authentication mac-move permit global configuration command to enable MAC move on a switch. Use the no form of this command to return to the default setting.
Page 72 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication mac-move permit Command Description authentication Enables manual control of the port authorization state. port-control authentication Adds an authentication method to the port-priority list. priority authentication timer Configures the timeout and reauthentication parameters for an 802.1x-enabled port.
Page 73: Authentication Open
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication open authentication open Use the authentication open interface configuration command to enable or disable open access on a port. Use the no form of this command to disable open access.
Page 74 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication open Command Description authentication timer Configures the timeout and reauthentication parameters for an 802.1x-enabled port. authentication Configures the violation modes that occur when a new device connects to a...
Page 75: Authentication Order
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication order authentication order Use the authentication order interface configuration command to set the order of authentication methods used on a port. authentication order [dot1x | mab] {webauth} no authentication order...
Page 76 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication order Related Commands Command Description authentication Configures the port mode as unidirectional or bidirectional. control-direction authentication event Sets the action for specific authentication events. authentication Configures a port to use web authentication as a fallback method for clients fallback that do not support IEEE 802.1x authentication.
Page 77: Authentication Periodic
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication periodic authentication periodic Use the authentication periodic interface configuration command to enable or disable reauthentication on a port. Enter the no form of this command to disable reauthentication. authentication periodic...
Page 78 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication periodic Command Description authentication timer Configures the timeout and reauthentication parameters for an 802.1x-enabled port. authentication Configures the violation modes that occur when a new device connects to a...
Page 79: Authentication Port-Control
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication port-control authentication port-control Use the authentication port-control interface configuration command to enable manual control of the port authorization state. Use the no form of this command to return to the default setting.
Page 80 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication port-control EtherChannel port—Do not configure a port that is an active or a not-yet-active member of an • EtherChannel as an port. If you try to enable authentication on an EtherChannel port, an error message appears, and authentication is not enabled.
Page 81: Authentication Priority
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication priority authentication priority Use the authentication priority interface configuration command to add an authentication method to the port-priority list. auth priority [dot1x | mab] {webauth} no auth priority [dot1x | mab] {webauth}...
Page 82 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication priority Examples This example shows how to set 802.1x as the first authentication method and web authentication as the second authentication method: Switch(config-if)# authentication priority dotx webauth This example shows how to set MAC authentication Bypass (MAB) as the first authentication method...
Page 83: Authentication Timer
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication timer authentication timer Use the authentication timer interface configuration command to configure the timeout and reauthentication parameters for an 802.1x-enabled port. authentication timer {{[inactivity | reauthenticate]} {restart value}} no authentication timer {{[inactivity | reauthenticate]} {restart value}}...
Page 84 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication timer Command Description authentication Configures a port to use web authentication as a fallback method for clients fallback that do not support IEEE 802.1x authentication. authentication Sets the authorization manager mode on a port.
Page 85: Authentication Violation
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication violation authentication violation Use the authentication violation interface configuration command to configure the violation modes that occur when a new device connects to a port or when a new device connects to a port after the maximum number of devices are connected to that port.
Page 86 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands authentication violation Related Commands Command Description authentication Configures the port mode as unidirectional or bidirectional. control-direction authentication event Sets the action for specific authentication events. authentication Configures a port to use web authentication as a fallback method for clients fallback that do not support 802.1x authentication.
Page 87: Auto Qos Classify
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands auto qos classify auto qos classify Use the auto qos classify interface configuration command to automatically configure quality of service (QoS) classification for untrusted devices within a QoS domain. Use the no form of this command to return to the default setting.
Page 88 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands auto qos classify Usage Guidelines Use this command to configure the QoS for trusted interfaces within the QoS domain. The QoS domain includes the switch, the network interior, and edge devices that can classify incoming traffic for QoS.
Page 89 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands auto qos classify The switch applies the auto-QoS-generated commands as if the commands were entered from the Note command-line interface (CLI). An existing user configuration can cause the application of the generated commands to fail or to be overridden by the generated commands.
Page 90: Auto Qos Trust
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands auto qos trust auto qos trust Use the auto qos trust interface configuration command on the switch stack or on a standalone switch to automatically configure quality of service (QoS) for trusted interfaces within a QoS domain. Use the no form of this command to return to the default setting.
Page 91 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands auto qos trust Table 2-5 Auto-QoS Configuration for the Egress Queues Queue (Buffer) Size Queue (Buffer) Queue Weight for Gigabit-Capable Size for 10/100 Egress Queue Queue Number CoS-to-Queue Map (Bandwidth)
Page 92 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands auto qos trust To disable auto-QoS on a port, use the no auto qos trust interface configuration command. Only the auto-QoS-generated interface configuration commands for this port are removed. If this is the last port...
Page 93: Auto Qos Video
Identiy this port as connected to a Cisco TelePresence System and automatically configure QoS for video. ip-camera Identify this port as connected to a Cisco IP camera and automatically configure QoS for video. media-player Identify this port as connected to a CDP-capable Cisco digital media player and automatically configure QoS for video.
Page 94 QoS. Auto-QoS configures the switch for video connectivity to a Cisco TelePresence system, a Cisco IP camera, or a Cisco digital media player. To take advantage of the auto-QoS defaults, you should enable auto-QoS before you configure other QoS commands.
Page 95 Examples This example shows how to enable auto-QoS for a Cisco Telepresence interface with conditional trust. The interface is trusted only if a Cisco Telepresence device is detected; otherwise, the port is untrusted. Switch(config)# interface gigabitethernet2/0/1 Switch(config-if)# auto qos video cts You can verify your settings by entering the show auto qos video interface interface-id privileged EXEC command.
Page 96: Auto Qos Voip
[cisco-phone | cisco-softphone | trust] Syntax Description cisco-phone Identify this port as connected to a Cisco IP Phone, and automatically configure QoS for VoIP. The QoS labels of incoming packets are trusted only when the telephone is detected.
Page 97 QoS. Auto-QoS configures the switch for VoIP with Cisco IP Phones on switch and routed ports and for VoIP with devices running the Cisco SoftPhone application. These releases support only Cisco IP SoftPhone Version 1.3(3) or later.
Page 98 If the packet does not have a DSCP value of 24, 26, or 46 or is out of profile, the switch changes the DSCP value to 0. When a Cisco IP Phone is absent, the ingress classification is set to not trust the QoS label in the packet.
Page 99 DSCP, and IP precedence values in the packet are not changed). Traffic is switched in pass-through mode. Packets are switched without any rewrites and classified as best effort without any policing. This is the enhanced configuration for the auto qos voip cisco-phone command: Switch(config)# mls qos map policed-dscp...
Page 100 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands auto qos voip Switch(config-pmap-c)# police 5000000 8000 exceed-action drop Switch(config-pmap)# class AUTOQOS_BULK_DATA_CLASS Switch(config-pmap-c)# set dscp af11 Switch(config-pmap-c)# police 10000000 8000 exceed-action policed-dscp-transmit Switch(config-pmap)# class AUTOQOS_TRANSACTION_CLASS Switch(config-pmap-c)# set dscp af21 Switch(config-pmap-c)# police 10000000 8000 exceed-action policed-dscp-transmit...
Page 101 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands auto qos voip Command Description srr-queue bandwidth shape Assigns the shaped weights and enables bandwidth shaping on the four egress queues mapped to a port. srr-queue bandwidth share Assigns the shared weights and enables bandwidth sharing on the four egress queues mapped to a port.
Page 102: Boot Time
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands boot time boot time To set the switch boot time, use the boot time command in global configuration mode. Use the no form of this command to return to the default setting.
Page 103: Boot Auto-Copy-Sw
Use the no form of this command to disable the auto-upgrade process. boot auto-copy-sw no boot auto-copy-sw Note This command is supported only on Catalyst 3750-X switches. Syntax Description This command has no arguments or keywords. Defaults Enabled.
Page 104: Boot Auto-Download-Sw
Use the no form of this command to remove the software image. boot auto-download-sw source-url no boot auto-download-sw This command is supported only on Catalyst 3750-X switches. Note Syntax Description source-url The source URLs for the software images. The image-name.tar is the software image to download and install on the switch.
Page 105 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands boot auto-download-sw Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines This command specifies a URL path to use for automatic software upgrades. You can use this command to configure the URL for the master switch to access in case of version-mismatch.
Page 106: Boot Buffersize
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands boot buffersize boot buffersize Use the boot buffersize global configuration command on the switch stack or on a standalone switch to configure the NVRAM size. Use the no form of this command to return to the default.
Page 107: Boot Config-File
Use the boot config-file global configuration command on a standalone switch to specify the filename that Cisco IOS uses to read and write a nonvolatile copy of the system configuration. Use the no form of this command to return to the default setting.
Page 108: Boot Enable-Break
Despite the setting of this command, you can interrupt the automatic boot process at any time by pressing Note the MODE button on the switch front panel. This command changes the setting of the ENABLE_BREAK environment variable. For more information, see Appendix A “Catalyst 3750-X and 3560-X Switch Boot Loader Commands.” Related Commands Command Description show boot Displays the settings of the boot environment variables.
Page 109: Boot Helper
This variable is used only for internal development and testing. Filenames and directory names are case sensitive. This command changes the setting of the HELPER environment variable. For more information, see Appendix A “Catalyst 3750-X and 3560-X Switch Boot Loader Commands.” Related Commands Command...
Page 110: Boot Helper-Config-File
Use the boot helper-config-file global configuration command on the switch stack or on a standalone switch to specify the name of the configuration file to be used by the Cisco IOS helper image. If this is not set, the file specified by the CONFIG_FILE environment variable is used by all versions of Cisco IOS that are loaded.
Page 111: Boot Manual
To boot up the system, use the boot boot loader command, and specify the name of the bootable image. This command changes the setting of the MANUAL_BOOT environment variable. For more information, see Appendix A “Catalyst 3750-X and 3560-X Switch Boot Loader Commands.” Related Commands Command Description show boot Displays the settings of the boot environment variables.
Page 112: Boot Private-Config-File
Use the boot private-config-file global configuration command on a standalone switch to specify the filename that Cisco IOS uses to read and write a nonvolatile copy of the private configuration. Use the no form of this command to return to the default setting.
Page 113: Boot System
Use the boot system global configuration command on the switch stack or on a standalone switch to specify the Cisco IOS image to load during the next boot cycle. Use the no form of this command to return to the default setting.
Page 114 The boot system command is automatically manipulated to load the downloaded image. This command changes the setting of the BOOT environment variable. For more information, see Appendix A “Catalyst 3750-X and 3560-X Switch Boot Loader Commands.” Related Commands Command...
Page 115: Cdp Forward
This command was introduced. Usage Guidelines You must use only CDP-enabled phones with TelePresence E911 IP phone support. You can connect the IP phone and codec in the Cisco TelePresence System through any two ports in a switch stack. Examples Switch# configure terminal Enter configuration commands, one per line.
Page 116 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cdp forward Related Commands Command Description show cdp forward Displays the CDP forwarding table. Catalyst 3750-X and 3560-X Switch Command Reference 2-84 OL-29704-01...
Page 117: Channel-Group
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands channel-group channel-group Use the channel-group interface configuration command on the switch stack or on a standalone switch to assign an Ethernet port to an EtherChannel group, to enable an EtherChannel mode, or both. Use the no form of this command to remove an Ethernet port from an EtherChannel group.
Page 118 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands channel-group Defaults No channel groups are assigned. No mode is configured. Command Modes Interface configuration Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines For Layer 2 EtherChannels, you do not have to create a port-channel interface first by using the interface port-channel global configuration command before assigning a physical port to a channel group.
Page 119 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands channel-group Do not configure a port that is an active or a not-yet-active member of an EtherChannel as an IEEE 802.1x port. If you try to enable IEEE 802.1x authentication on an EtherChannel port, an error message appears, and IEEE 802.1x authentication is not enabled.
Page 120 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands channel-group Command Description show pagp Displays PAgP channel-group information. show running-config Displays the operating configuration. Catalyst 3750-X and 3560-X Switch Command Reference 2-88 OL-29704-01...
Page 121: Channel-Protocol
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands channel-protocol channel-protocol Use the channel-protocol interface configuration command on the switch stack or on a standalone switch to restrict the protocol used on a port to manage channeling. Use the no form of this command to return to the default setting.
Page 122: Cisp Enable
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cisp enable cisp enable Use the cisp enable global configuration command to enable Client Information Signalling Protocol (CISP) on a switch so that it acts as an authenticator to a supplicant switch.
Page 123: Class
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands class class Use the class policy-map configuration command on the switch stack or on a standalone switch to define a traffic classification match criteria (through the police, set, and trust policy-map class configuration commands) for the specified class-map name.
Page 124 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands class The class command performs the same function as the class-map global configuration command. Use the class command when a new classification, which is not shared with any other ports, is needed. Use the class-map command when the map is shared among many ports.
Page 125 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands class Related Commands Command Description class-map Creates a class map to be used for matching packets to the class whose name you specify. police Defines a policer for classified traffic.
Page 126: Class-Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands class-map class-map Use the class-map global configuration command on the switch stack or on a standalone switch to create a class map to be used for matching packets to the class whose name you specify and to enter class-map configuration mode.
Page 127 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands class-map If you enter the match-all or match-any keyword, you can only use it to specify an extended named access control list (ACL) with the match access-group acl-index-or-name class-map configuration command.
Page 128: Clear Dot1X
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear dot1x clear dot1x Use the clear dot1x privileged EXEC command on the switch stack or on a standalone switch to clear IEEE 802.1x information for the switch or for the specified port.
Page 129: Clear Eap Sessions
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear eap sessions clear eap sessions Use the clear eap sessions privileged EXEC command on the switch stack or on a standalone switch to clear Extensible Authentication Protocol (EAP) session information for the switch or for the specified port.
Page 130: Clear Errdisable Interface
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear errdisable interface clear errdisable interface Use the clear errdisable interface privileged EXEC command on the switch stack or on a standalone switch to re-enable a VLAN that was error disabled.
Page 131: Clear Ip Arp Inspection Log
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear ip arp inspection log clear ip arp inspection log Use the clear ip arp inspection log privileged EXEC command on the switch stack or on a standalone switch to clear the dynamic Address Resolution Protocol (ARP) inspection log buffer.
Page 132: Clear Ip Arp Inspection Statistics
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear ip arp inspection statistics clear ip arp inspection statistics Use the clear ip arp inspection statistics privileged EXEC command on the switch stack or on a standalone switch to clear the dynamic Address Resolution Protocol (ARP) inspection statistics.
Page 133: Clear Ip Dhcp Snooping
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear ip dhcp snooping clear ip dhcp snooping Use the clear ip dhcp snooping privileged EXEC command on the switch stack or on a standalone switch to clear the DHCP binding database agent statistics or the DHCP snooping statistics counters.
Page 134 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear ip dhcp snooping Related Commands Command Description ip dhcp snooping Enables DHCP snooping on a VLAN. ip dhcp snooping database Configures the DHCP snooping binding database agent or the binding file.
Page 135: Clear Ipc
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear ipc clear ipc Use the clear ipc privileged EXEC command on the switch stack or on a standalone switch to clear Interprocess Communications Protocol (IPC) statistics. clear ipc {queue-statistics | statistics} Note This command is not supported on switches running the LAN base feature set.
Page 136: Clear Ipv6 Dhcp Conflict
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear ipv6 dhcp conflict clear ipv6 dhcp conflict Use the clear ipv6 dhcp conflict privileged EXEC command on the switch stack or on a standalone switch to clear an address conflict from the Dynamic Host Configuration Protocol for IPv6 (DHCPv6) server database.
Page 137: Clear L2Protocol-Tunnel Counters
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear l2protocol-tunnel counters clear l2protocol-tunnel counters Use the clear l2protocol-tunnel counters privileged EXEC command on the switch stack or on a standalone switch to clear the protocol counters in protocol tunnel ports.
Page 138: Clear Lacp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear lacp clear lacp Use the clear lacp privileged EXEC command on the switch stack or on a standalone switch to clear Link Aggregation Control Protocol (LACP) channel-group counters. clear lacp {channel-group-number counters | counters}...
Page 139: Clear Logging Onboard
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear logging onboard clear logging onboard Use the clear logging onboard privileged EXEC command on the switch stack or on a standalone switch to clear all of the on-board failure logging (OBFL) data except for the uptime and CLI-command information stored in the flash memory.
Page 140: Clear Logging Smartlog Statistics Interface
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear logging smartlog statistics interface clear logging smartlog statistics interface To clear smart logging counters on an interface, use the clear logging smartlog statistics interface command in privileged EXEC mode.
Page 141: Clear Mac Address-Table
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear mac address-table clear mac address-table Use the clear mac address-table privileged EXEC command on the switch stack or on a standalone switch to delete from the MAC address table a specific dynamic address, all dynamic addresses on a particular interface, all dynamic addresses on stack members, or all dynamic addresses on a particular VLAN.
Page 142: Clear Mac Address-Table Move Update
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear mac address-table move update clear mac address-table move update Use the clear mac address-table move update privileged EXEC command on the switch stack or on a standalone switch to clear the MAC address table move-update counters.
Page 143: Clear Macsec Counters Interface
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear macsec counters interface clear macsec counters interface To clear Media Access Control Security (MACsec) counters for all interfaces or a specified interface, use the clear macsec counters interface privileged EXEC command.
Page 144: Clear Mka
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear mka clear mka To clear MACsec Key Agreement (MKA) protocol sessions or information, use the clear mka privileged EXEC command. clear mka {all | sessions [interface interface-id [port-id port-id]] | [local-sci sci] | statistics...
Page 145 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear mka Related Commands Command Description show mka policy Displays MKA policy configuration information. show mka sessions Displays a summary of MKA sessions. show mka statistics Displays global MKA statistics.
Page 146: Clear Nmsp Statistics
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear nmsp statistics clear nmsp statistics Use the clear nmsp statistics privileged EXEC command to clear the Network Mobility Services Protocol (NMSP) statistics. clear nmsp statistics Syntax Description This command has no arguments or keywords.
Page 147: Clear Pagp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear pagp clear pagp Use the clear pagp privileged EXEC command on the switch stack or on a standalone switch to clear Port Aggregation Protocol (PAgP) channel-group information. clear pagp {channel-group-number counters | counters}...
Page 148: Clear Port-Security
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear port-security clear port-security Use the clear port-security privileged EXEC command on the switch stack or on a standalone switch to delete from the MAC address table all secure addresses or all secure addresses of a specific type (configured, dynamic, or sticky) on the switch or on an interface.
Page 149 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear port-security Examples This example shows how to clear all secure addresses from the MAC address table: Switch# clear port-security all This example shows how to remove a specific configured secure address from the MAC address table: Switch# clear port-security configured address 0008.0070.0007...
Page 150: Clear Psp Counter
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear psp counter clear psp counter To clear the protocol storm protection counter of packets dropped for all protocols, use the clear psp counter privileged EXEC command. clear psp counter [arp | igmp | dhcp] Syntax Description (Optional) Clear the counter of dropped packets for ARP and ARP snooping.
Page 151: Clear Rep Counters
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear rep counters clear rep counters To clear Resilient Ethernet Protocol (REP) counters for the specified interface or all interfaces, use the clear rep counters privileged EXEC command clear rep counters [interface interface-id]...
Page 152: Clear Spanning-Tree Counters
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear spanning-tree counters clear spanning-tree counters Use the clear spanning-tree counters privileged EXEC command on the switch stack or on a standalone switch to clear the spanning-tree counters. clear spanning-tree counters [interface interface-id]...
Page 153: Clear Spanning-Tree Detected-Protocols
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear spanning-tree detected-protocols clear spanning-tree detected-protocols Use the clear spanning-tree detected-protocols privileged EXEC command on the switch stack or on a standalone switch to restart the protocol migration process (force the renegotiation with neighboring switches) on all interfaces or on the specified interface.
Page 154: Clear Vmps Statistics
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear vmps statistics clear vmps statistics Use the clear vmps statistics privileged EXEC command on the switch stack or on a standalone switch to clear the statistics maintained by the VLAN Query Protocol (VQP) client.
Page 155: Clear Vtp Counters
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands clear vtp counters clear vtp counters Use the clear vtp counters privileged EXEC command on the switch stack or on a standalone switch to clear the VLAN Trunking Protocol (VTP) and pruning counters.
Page 156: Cluster Commander-Address
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster commander-address cluster commander-address You do not need to enter this command from the switch stack or from a standalone cluster member switch. The cluster command switch automatically provides its MAC address to cluster member switches when these switches join the cluster.
Page 157 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster commander-address Examples This is partial sample output from the running configuration of a cluster member. Switch(config)# show running-configuration <output truncated> cluster commander-address 00e0.9bc0.a500 member 4 name my_cluster <output truncated>...
Page 158: Cluster Discovery Hop-Count
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster discovery hop-count cluster discovery hop-count Use the cluster discovery hop-count global configuration command on the switch stack or on the cluster command switch to set the hop-count limit for extended discovery of candidate switches. Use the no form of this command to return to the default setting.
Page 159: Cluster Enable
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster enable cluster enable Use the cluster enable global configuration command on a command-capable switch or switch stack to enable it as the cluster command switch, assign a cluster name, and to optionally assign a member number to it.
Page 160 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster enable Related Commands Command Description show cluster Displays the cluster status and a summary of the cluster to which the switch belongs. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 161: Cluster Holdtime
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster holdtime cluster holdtime Use the cluster holdtime global configuration command on the switch stack or on the cluster command switch to set the duration in seconds before a switch (either the command or cluster member switch) declares the other switch down after not receiving heartbeat messages.
Page 162: Cluster Member
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster member cluster member Use the cluster member global configuration command on the cluster command switch to add candidates to a cluster. Use the no form of the command to remove members from the cluster.
Page 163 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster member Examples This example shows how to add a switch as member 2 with MAC address 00E0.1E00.2222 and the password key to a cluster. The cluster command switch adds the candidate to the cluster through VLAN 3.
Page 164: Cluster Outside-Interface
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster outside-interface cluster outside-interface Use the cluster outside-interface global configuration command on the switch stack or on the a cluster command switch to configure the outside interface for cluster Network Address Translation (NAT) so that a member without an IP address can communicate with devices outside the cluster.
Page 165: Cluster Run
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster run cluster run Use the cluster run global configuration command to enable clustering on a switch. Use the no form of this command to disable clustering on a switch.
Page 166: Cluster Standby-Group
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster standby-group cluster standby-group Use the cluster standby-group global configuration command to enable cluster command-switch redundancy by binding the cluster to an existing Hot Standby Router Protocol (HSRP). Entering the routing-redundancy keyword enables the same HSRP group to be used for cluster command-switch redundancy and routing redundancy.
Page 167 Related Commands Command Description standby ip Enables HSRP on the interface. For syntax information, select Cisco IOS IP Command Reference, Volume 1 of 3:Addressing and Services, Release 12.2 > IP Services Commands. show cluster Displays the cluster status and a summary of the cluster to which the switch belongs.
Page 168: Cluster Timer
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands cluster timer cluster timer Use the cluster timer global configuration command on the switch stack or on the a cluster command switch to set the interval in seconds between heartbeat messages. Use the no form of this command to set the interval to the default value.
Page 169: Copy Logging Onboard
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands copy logging onboard copy logging onboard Use the copy logging onboard privileged EXEC command on the switch stack or on a standalone switch to copy on-board failure logging (OBFL) data to the local network or a specific file system.
Page 170 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands copy logging onboard Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines For information about OBFL, see the hw-module command. Examples This example shows how to copy the OBFL data messages to the obfl_file file on the flash file system...
Page 171: Confidentiality-Offset
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands confidentiality-offset confidentiality-offset To configure the confidentiality offset value for the MACsec Key Agreement (MKA) Protocol policy, use the confidentiality-offset MKA policy configuration command. To return to the default setting, use...
Page 172: Define Interface-Range
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands define interface-range define interface-range Use the define interface-range global configuration command on the switch stack or on a standalone switch to create an interface-range macro. Use the no form of this command to delete the defined macro.
Page 173 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands define interface-range For physical interfaces: stack member is the number used to identify the switch within the stack. The number ranges from 1 • to 9 and is assigned to the switch the first time the stack member initializes.
Page 174: Delete
The prompting behavior depends on the setting of the file prompt global configuration command. By default, the switch prompts for confirmation on destructive file operations. For more information about this command, see the Cisco IOS Configuration Fundamentals Command Reference, Release 12.2. Examples...
Page 175: Deny (Access-List Configuration Mode)
The smartlog keyword was added. Usage Guidelines For the complete syntax description of the deny command without the smartlog keyword, see the Cisco IOS Security Command Reference. When an ACL is applied to an interface, packets matching the ACL are denied or permitted based on the ACL configuration.
Page 176 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (access-list configuration mode) Examples This example enables smart logging on a named access list with a deny condition: Switch(config)# ip access-list extended test1 Switch(config-ext-nacl)# deny ip host 10.1.1.3 any smartlog...
Page 177: Deny (Arp Access-List Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (ARP access-list configuration) deny (ARP access-list configuration) Use the deny Address Resolution Protocol (ARP) access-list configuration command on the switch stack or on a standalone switch to deny an ARP packet based on matches against the DHCP bindings. Use the no form of this command to remove the specified access control entry (ACE) from the access list.
Page 178 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (ARP access-list configuration) Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines You can add deny clauses to drop ARP packets based on matching criteria. Examples This example shows how to define an ARP access list and to deny both ARP requests and ARP responses from a host with an IP address of 1.1.1.1 and a MAC address of 0000.0000.abcd:...
Page 179: Deny (Ipv6 Access-List Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (IPv6 access-list configuration) deny (IPv6 access-list configuration) Use the deny command in IPv6 access list configuration mode on the switch stack or on a standalone switch to set deny conditions for an IPv6 access list. Use the no form of this command to remove the deny conditions.
Page 180 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (IPv6 access-list configuration) An abbreviation for the IPv6 prefix ::/0. host source-ipv6-address The source IPv6 host address for which to set deny conditions. This source-ipv6-address argument must be in the form documented in RFC 2373 where the address is specified in hexadecimal using 16-bit values between colons.
Page 181 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (IPv6 access-list configuration) sequence value (Optional) Specify the sequence number for the access list statement. The acceptable range is from 1 to 4294967295. time-range name (Optional) Specify the time range that applies to the deny statement. The name of the time range and its restrictions are specified by the time-range and absolute or periodic commands, respectively.
Page 182 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (IPv6 access-list configuration) Usage Guidelines The deny (IPv6 access-list configuration mode) command is similar to the deny (IPv4 access-list configuration mode) command, but it is IPv6-specific. Use the deny (IPv6) command after the...
Page 183 Examples This example configures the IPv6 access list named CISCO and applies the access list to outbound traffic on a Layer 3 interface. The first deny entry in the list prevents all packets that have a destination TCP port number greater than 5000 from leaving the interface. The second deny entry in the list prevents all packets that have a source UDP port number less than 5000 from leaving the interface.
Page 184: Deny (Mac Access-List Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (MAC access-list configuration) deny (MAC access-list configuration) Use the deny MAC access-list configuration command on the switch stack or on a standalone switch to prevent non-IP traffic from being forwarded if the conditions are matched. Use the no form of this command to remove a deny condition from the named MAC access list.
Page 185 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (MAC access-list configuration) lsap lsap-number mask (Optional) Use the LSAP number (0 to 65535) of a packet with 802.2 encapsulation to identify the protocol of the packet. mask is a mask of don’t care bits applied to the LSAP number before testing for a match.
Page 186 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands deny (MAC access-list configuration) Usage Guidelines You enter MAC-access list configuration mode by using the mac access-list extended global configuration command. If you use the host keyword, you cannot enter an address mask; if you do not use the host keyword, you must enter an address mask.
Page 187: Device-Sensor Accounting
This command was introduced. Usage Guidelines Device Sensor gathers endpoint information from Cisco Discovery Protocol (CDP), Link Layer Discovery Protocol (LLDP), and DHCP messages and makes this information available to registered clients in the context of an access session. You can use the device-sensor accounting command to include Device Sensor protocol data in RADIUS accounting messages.
Page 188: Interface Configuration Mode
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands device-sensor filter-list device-sensor filter-list To create a CDP or Link Layer Discovery Protocol (LLPD) filter list that contains a list of Type-Length-Value (TLV) fields to be included or excluded in the Device Sensor output, use the device-sensor filter-list command in global configuration mode.
Page 189 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands device-sensor filter-list Table 2-2 LLDP TLVs LLPP TLV Name Description Global configuration mode 4-wire-power-management Cisco 4-wire power with MDI TLV mac-phy-cfg IEEE 802.3 MAC/PHY configuration status TLV management-address Management address TLV...
Page 190 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands device-sensor filter-list Related Commands Command Description debug device-sensor Enables debugging for Device Sensor. device-sensor Adds the Device Sensor protocol data to accounting records and generates accounting additional accounting events when new sensor data is detected.
Page 191: Device-Sensor Filter-List Dhcp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands device-sensor filter-list dhcp device-sensor filter-list dhcp To create a DHCP filter containing a list of options that can be included or excluded in the Device Sensor output, use the device-sensor filter-list dhcp command in global configuration mode. To remove the DHCP filter containing the list of options, use the no form of this command.
Page 192 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands device-sensor filter-list dhcp Related Commands Command Description debug device-sensor Enables debugging for Device Sensor. device-sensor Adds the Device Sensor protocol data to accounting records and generates accounting additional accounting events when new sensor data is detected.
Page 193: Device-Sensor Filter-Spec
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands device-sensor filter-spec device-sensor filter-spec To apply a protocol filter list to the Device Sensor output, use the device-sensor filter-spec command in global configuration mode. To remove the protocol filter list from the Device Sensor output, use the no form of this command.
Page 194 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands device-sensor filter-spec Related Commands Command Description debug device-sensor Enables debugging for Device Sensor. device-sensor Adds the Device Sensor protocol data to accounting records and generates accounting additional accounting events when new sensor data is detected.
Page 195: Device-Sensor Notify
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands device-sensor notify device-sensor notify To enable client notifications and accounting events for TLV changes, use the device-sensor notify command in global configuration mode. To disable client notifications and accounting events for TLV changes, use the no form of this command.
Page 196 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands device-sensor notify Command Description device-sensor filter-list Creates a CDP or LLDP filter containing a list of options that can be included or excluded in the Device Sensor output. device-sensor filter-list...
Page 197: Diagnostic Monitor
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands diagnostic monitor diagnostic monitor Use the diagnostic monitor global configuration command to configure health-monitoring diagnostic testing. Use the no form of this command to disable testing and to return to the default settings.
Page 198 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands diagnostic monitor threshold Configure the failure threshold. failure count Set the failure threshold count. The range for count is from 0 to 99. count Defaults Monitoring is disabled, and a failure threshold value is not set.
Page 199: Diagnostic Schedule
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands diagnostic schedule diagnostic schedule Use the diagnostic schedule global configuration command to configure the diagnostic test schedule. Use the no form of this command to remove the schedule. diagnostic schedule switch number test {name | test-id | test-id-range | all | basic | non-disruptive}...
Page 200 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands diagnostic schedule Usage Guidelines Use these guidelines when scheduling testing: name—Enter the show diagnostic content privileged EXEC command to display the test names in • the test ID list. test-id—Enter the show diagnostic content command to display the test numbers in the test ID list.
Page 201: Diagnostic Start
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands diagnostic start diagnostic start Use the diagnostic start privileged EXEC command to run an online diagnostic test. diagnostic start switch number test {name | test-id | test-id-range | all | basic | non-disruptive}...
Page 202 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands diagnostic start When specifying a test name, use the show diagnostic content privileged EXEC command to display the test ID list. To specify test 3 by using the test name, enter the diagnostic start switch number test TestPortAsicCam privileged EXEC command.
Page 203 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands diagnostic start This message appears if the configured test can cause a stack partition: Switch 6: Running test(s) 2 will cause the switch under test to reload after completion of the test list.
Page 204: Dot1X
IEEE 802.1x authentication and EtherChannel are configured. If you are using a device running the Cisco Access Control Server (ACS) application for IEEE 802.1x authentication with EAP-Transparent LAN Services (TLS) and with EAP-MD5, make sure that the device is running ACS Version 3.2.1 or later.
Page 205 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x Examples This example shows how to globally enable IEEE 802.1x authentication on a switch: Switch(config)# dot1x system-auth-control This example shows how to globally enable the optional guest VLAN behavior on a switch:...
Page 206: Dot1X Auth-Fail Max-Attempts
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x auth-fail max-attempts dot1x auth-fail max-attempts Use the dot1x auth-fail max-attempts interface configuration command on the switch stack or on a standalone switch to configure the maximum allowable authentication attempts before a port is moved to the restricted VLAN.
Page 207 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x auth-fail max-attempts Related Commands Command Description dot1x auth-fail vlan [vlan id] Enables the optional restricted VLAN feature. dot1x max-reauth-req [count] Sets the maximum number of times that the switch restarts the authentication process before a port changes to the unauthorized state.
Page 208: Dot1X Auth-Fail Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x auth-fail vlan dot1x auth-fail vlan Use the dot1x auth-fail vlan interface configuration command on the switch stack or on a standalone switch to enable the restricted VLAN on a port. To return to the default setting, use the no form of this command.
Page 209 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x auth-fail vlan You cannot configure a VLAN to be both a restricted VLAN and a voice VLAN. If you do this, a syslog message is generated. When a restricted VLAN port is moved to an unauthorized state, the authentication process restarts. If the supplicant fails the authentication process again, the authenticator waits in the held state.
Page 210: Dot1X Control-Direction
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x control-direction dot1x control-direction Use the dot1x control-direction interface configuration command to enable the IEEE 802.1x authentication with the wake-on-LAN (WoL) feature and to configure the port control as unidirectional or bidirectional.
Page 211 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x control-direction If you enter the dot1x control-direction in interface configuration command to enable unidirectional control, this appears in the show dot1x all command output: ControlDirection = In If you enter the dot1x control-direction in interface configuration command and the port cannot support...
Page 212: Dot1X Credentials (Global Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x credentials (global configuration) dot1x credentials (global configuration) Use the dot1x credentials global configuration command to configure a profile on a supplicant switch. dot1x credentials profile no dot1x credentials profile...
Page 213: Dot1X Critical (Global Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x critical (global configuration) dot1x critical (global configuration) Use the dot1x critical global configuration command on the switch stack or on a standalone switch to configure the parameters for the inaccessible authentication bypass feature, also referred to as critical authentication or the authentication, authorization, and accounting (AAA) fail policy.
Page 214 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x critical (global configuration) Related Commands Command Description dot1x critical (interface Enables the inaccessible authentication bypass feature, and configuration) configures the access VLAN for the feature. show dot1x Displays IEEE 802.1x status for the specified port.
Page 215: Dot1X Critical (Interface Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x critical (interface configuration) dot1x critical (interface configuration) Use the dot1x critical interface configuration command on the switch stack or on a standalone switch to enable the inaccessible-authentication-bypass feature, also referred to as critical authentication or the authentication, authorization, and accounting (AAA) fail policy.
Page 216 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x critical (interface configuration) You can configure the inaccessible authentication bypass feature and the restricted VLAN on an IEEE 802.1x port. If the switch tries to re-authenticate a critical port in a restricted VLAN and all the RADIUS servers are unavailable, the switch changes the port state to the critical authentication state, and it remains in the restricted VLAN.
Page 217: Dot1X Default
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x default dot1x default Use the dot1x default interface configuration command on the switch stack or on a standalone switch to reset the IEEE 802.1x parameters to their default values.
Page 218: Dot1X Fallback
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x fallback dot1x fallback Use the dot1xfallback interface configuration command on the switch stack or on a standalone switch to configure a port to use web authentication as a fallback method for clients that do not support IEEE 802.1x authentication.
Page 219: Dot1X Guest-Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x guest-vlan dot1x guest-vlan Use the dot1x guest-vlan interface configuration command on the switch stack or on a standalone switch to specify an active VLAN as an IEEE 802.1x guest VLAN. Use the no form of this command to return to the default setting.
Page 220 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x guest-vlan Any number of non-IEEE 802.1x-capable clients are allowed access when the switch port is moved to the guest VLAN. If an IEEE 802.1x-capable client joins the same port on which the guest VLAN is configured, the port is put into the unauthorized state in the RADIUS-configured or user-configured access VLAN, and authentication is restarted.
Page 221: Dot1X Host-Mode
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x host-mode dot1x host-mode Use the dot1x host-mode interface configuration command on the switch stack or on a standalone switch to allow a single host (client) or multiple hosts on an IEEE 802.1x-authorized port that has the dot1x port-control interface configuration command set to auto.
Page 222: Dot1X Initialize
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x initialize dot1x initialize Use the dot1x initialize privileged EXEC command on the switch stack or on a standalone switch to manually return the specified IEEE 802.1x-enabled port to an unauthorized state before initiating a new authentication session on the port.
Page 223: Dot1X Mac-Auth-Bypass
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x mac-auth-bypass dot1x mac-auth-bypass Use the dot1x mac-auth-bypass interface configuration command on the switch stack or on a standalone switch to enable the MAC authentication bypass feature. Use the no form of this command to disable MAC authentication bypass feature.
Page 224 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x mac-auth-bypass Examples This example shows how to enable MAC authentication bypass and to configure the switch to use EAP for authentication: Switch(config-if)# dot1x mac-auth-bypass eap You can verify your settings by entering the show dot1x [interface interface-id] privileged EXEC command.
Page 225: Dot1X Max-Reauth-Req
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x max-reauth-req dot1x max-reauth-req Use the dot1x max-reauth-req interface configuration command on the switch stack or on a standalone switch to set the maximum number of times that the switch restarts the authentication process before a port changes to the unauthorized state.
Page 226 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x max-reauth-req Command Description dot1x timeout tx-period Sets the number of seconds that the switch waits for a response to an EAP-request/identity frame from the client before resending the request.
Page 227: Dot1X Max-Req
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x max-req dot1x max-req Use the dot1x max-req interface configuration command on the switch stack or on a standalone switch to set the maximum number of times that the switch sends an Extensible Authentication Protocol (EAP) frame from the authentication server (assuming that no response is received) to the client before restarting the authentication process.
Page 228: Dot1X Pae
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x pae dot1x pae Use the dot1x pae interface configuration command on the switch stack or on a standalone switch to configure the port as an IEEE 802.1x port access entity (PAE) authenticator. Use the no form of this command to disable IEEE 802.1x authentication on the port.
Page 229: Dot1X Port-Control
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x port-control dot1x port-control Use the dot1x port-control interface configuration command on the switch stack or on a standalone switch to enable manual control of the authorization state of the port. Use the no form of this command to return to the default setting.
Page 230 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x port-control Dynamic-access ports—If you try to enable IEEE 802.1x authentication on a dynamic-access • (VLAN Query Protocol [VQP]) port, an error message appears, and IEEE 802.1x authentication is not enabled. If you try to change an IEEE 802.1x-enabled port to dynamic VLAN assignment, an error message appears, and the VLAN configuration is not changed.
Page 231: Dot1X Re-Authenticate
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x re-authenticate dot1x re-authenticate Use the dot1x re-authenticate privileged EXEC command on the switch stack or on a standalone switch to manually initiate a re-authentication of the specified IEEE 802.1x-enabled port.
Page 232: Dot1X Reauthentication
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x reauthentication dot1x reauthentication Use the dot1x reauthentication interface configuration command on the switch stack or on a standalone switch to enable periodic re-authentication of the client. Use the no form of this command to return to the default setting.
Page 233: Dot1X Supplicant Controlled Transient
Spanning Tree Protocol (STP) bridge protocol data unit (BPDU) packets before the supplicant switch has authenticated. Beginning with Cisco IOS Release 15.0(1)SE, you can control traffic exiting the supplicant port during the authentication period. Entering the dot1x supplicant controlled transient global configuration command temporarily blocks the supplicant port during authentication to ensure that the authenticator port does not shut down before authentication completes.
Page 234 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x supplicant controlled transient Related Commands Command Description cisp enable Enable Client Information Signalling Protocol (CISP) on a switch so that it acts as an authenticator to a supplicant switch.
Page 235: Dot1X Supplicant Force-Multicast
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x supplicant force-multicast dot1x supplicant force-multicast Use the dot1x supplicant force-multicast global configuration command to force a supplicant switch to send only multicast Extensible Authentication Protocol over LAN (EAPOL) packets whenever it receives multicast or unicast EAPOL packets.
Page 236: Dot1X Test Eapol-Capable
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x test eapol-capable dot1x test eapol-capable Use the dot1x test eapol-capable privileged EXEC command on the switch stack or on a standalone switch to monitor IEEE 802.1x activity on all the switch ports and to display information about the devices that are connected to the ports that support IEEE 802.1x.
Page 237: Dot1X Test Timeout
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x test timeout dot1x test timeout Use the dot1x test timeout global configuration command on the switch stack or on a standalone switch to configure the timeout used to wait for EAPOL response from a port being queried for IEEE 802.1x readiness.
Page 238: Dot1X Timeout
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x timeout dot1x timeout Use the dot1x timeout interface configuration command on the switch stack or on a standalone switch to set IEEE 802.1x timers. Use the no form of this command to return to the default setting.
Page 239 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x timeout Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines You should change the default value of this command only to adjust for unusual circumstances such as unreliable links or specific behavioral problems with certain clients and authentication servers.
Page 240 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x timeout Related Commands Command Description dot1x max-req Sets the maximum number of times that the switch sends an EAP-request/identity frame before restarting the authentication process. dot1x reauthentication Enables periodic re-authentication of the client.
Page 241: Dot1X Violation-Mode
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands dot1x violation-mode dot1x violation-mode Use the dot1x violation-mode interface configuration command on the switch stack or on a standalone switch to configure the violation modes that occur when a new device connects to a port or when a new device connects to a port after the maximum number of devices are connected to that port.
Page 242: Duplex
This command was introduced. Usage Guidelines For Fast Ethernet ports on stack members other than Catalyst 3750-X switches, setting the port to auto has the same effect as specifying half if the attached device does not autonegotiate the duplex parameter.
Page 243 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands duplex If both ends of the line support autonegotiation, we highly recommend using the default autonegotiation settings. If one interface supports autonegotiation and the other end does not, configure duplex and speed on both interfaces;...
Page 244: Epm Access-Control Open
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands epm access-control open epm access-control open Use the epm access-control open global configuration command on the switch stack or on a standalone switch to configure an open directive for ports that do not have an access control list (ACL) configured.
Page 245 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands epm access-control open Examples This example shows how to configure an open directive. Switch(config)# epm access-control open You can verify your settings by entering the show running-config privileged EXEC command.
Page 246: Errdisable Detect Cause
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands errdisable detect cause errdisable detect cause To enable error-disable detection for a specific cause or for all causes, use the errdisable detect cause global configuration command. To disable the error-disable detection feature, use the no form of this command.
Page 247 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands errdisable detect cause Command Default Detection is enabled for all causes. All causes, except for per-VLAN error disabling, are configured to shut down the entire port. Command Modes Global configuration...
Page 248 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands errdisable detect cause Related Commands Command Description show errdisable detect Displays error-disabled detection information. show interfaces status err-disabled Displays interface status or a list of interfaces in the error-disabled state.
Page 249: Errdisable Detect Cause Small-Frame
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands errdisable detect cause small-frame errdisable detect cause small-frame Use the errdisable detect cause small-frame global configuration command on the switch stack or on a standalone switch to allow any switch port to be error disabled if incoming VLAN-tagged packets are small frames (67 bytes or less) and arrive at the minimum configured rate (the threshold).
Page 250 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands errdisable detect cause small-frame Command Description show interfaces Displays the interface settings on the switch, including input and output flow control. small-frame violation rate Configures the rate (threshold) for incoming small frames to cause a port to be put into the error-disabled state.
Page 251: Errdisable Recovery
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands errdisable recovery errdisable recovery Use the errdisable recovery global configuration command on the switch stack or on a standalone switch to configure the recover mechanism variables. Use the no form of this command to return to the default setting.
Page 252 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands errdisable recovery udld Enable the timer to recover from the UniDirectional Link Detection (UDLD) error-disabled state. vmps Enable the timer to recover from the VLAN Membership Policy Server (VMPS) error-disabled state.
Page 253 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands errdisable recovery Command Description Related Commands show errdisable recovery Displays error-disabled recovery timer information. show interfaces status Displays interface status or a list of interfaces in error-disabled err-disabled state. clear errdisable interface Clears the error-disabled state from a port or VLAN that was error disabled by the per-VLAN error disable feature.
Page 254: Errdisable Recovery Cause Small-Frame
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands errdisable recovery cause small-frame errdisable recovery cause small-frame Use the errdisable recovery cause small-frame global configuration command on the switch stack or on a standalone switch to enable the recovery timer for ports to be automatically re-enabled after they are error disabled by the arrival of small frames.
Page 255: Exception Crashinfo
This command was introduced. Usage Guidelines The basic crashinfo file includes the Cisco IOS image name and version that failed, and a list of the processor registers, and a stack trace. The extended crashinfo file includes additional information that can help determine the cause of the switch failure.
Page 256: Fallback Profile
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands fallback profile fallback profile Use the fallback profile global configuration command on the switch stack or on a standalone switch to create a fallback profile for web authentication. To return to the default setting, use the no form of this command.
Page 257 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands fallback profile Related Commands Command Description dot1x fallback Configure a port to use web authentication as a fallback method for clients that do not support IEEE 802.1x authentication. ip admission...
Page 258: Flowcontrol
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands flowcontrol flowcontrol Use the flowcontrol interface configuration command on the switch stack or on a standalone switch to set the receive flow-control state for an interface. When flow control send is operable and on for a device and it detects any congestion at its end, it notifies the link partner or the remote device of the congestion by sending a pause frame.
Page 259 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands flowcontrol Table 2-13 shows the flow control results on local and remote ports for a combination of settings. The table assumes that receive desired has the same results as using the receive on keywords.
Page 260: Hw-Module
If a Catalyst 3750 switch is a stack master in a mixed stack of Catalyst 3750-E or Catalyst 3750-X and 3750 switches and you enter an OBFL command on the Catalyst 3750 switch, the command does not take affect on the stack master, but the stack master sends the OBFL configuration to the stack members.
Page 261 Examples This example shows how to enable OBFL on a Catalyst 3750-X-only switch stack and to specify that all the hardware-related messages on stack member 4 are stored in the flash memory when this command is entered on the stack master:...
Page 262: Hw-Module Switch
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands hw-module switch hw-module switch To configure the port speed on the 10-Gigabit Ethernet slots on a C3KX-NM-10GT network module, use the hw-module switch global configuration command. To return to the default speed (10 Gigabit Ethernet), use the no form of this command.
Page 263: Interface Port-Channel
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands interface port-channel interface port-channel Use the interface port-channel global configuration command on the switch stack or on a standalone switch to access or create the port-channel logical interface. Use the no form of this command to remove the port-channel.
Page 264 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands interface port-channel Follow these guidelines when you use the interface port-channel command: If you want to use the Cisco Discovery Protocol (CDP), you must configure it only on the physical • port and not on the port-channel interface.
Page 265: Interface Range
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands interface range interface range Use the interface range global configuration command on the switch stack or on a standalone switch to enter interface range configuration mode and to execute a command on multiple ports at the same time.
Page 266 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands interface range tengigabitethernet stack member/module/{first port} - {last port}, where module is always 0 • For physical interfaces: stack member is the number used to identify the switch within the stack. The number ranges –...
Page 267: Interface Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands interface vlan interface vlan Use the interface vlan global configuration command on the switch stack or on a standalone switch to create or access a dynamic switch virtual interface (SVI) and to enter interface configuration mode. Use the no form of this command to delete an SVI.
Page 268 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands interface vlan Examples This example shows how to create a new SVI with VLAN ID 23 and to enter interface configuration mode: Switch(config)# interface vlan 23 Switch(config-if)# You can verify your setting by entering the...
Page 269: Ip Access-Group
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip access-group ip access-group Use the ip access-group interface configuration command on the switch stack or on a standalone switch to control access to a Layer 2 or Layer 3 interface. Use the no form of this command to remove all access groups or the specified access group from the interface.
Page 270 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip access-group An IP ACL applied to a Layer 2 interface only filters IP packets. To filter non-IP packets, use the • mac access-group interface configuration command with MAC extended ACLs.
Page 271 IOS IP Command Reference, Volume 1 of 3:Addressing and Services, Release 12.2 > IP Services Commands ip access-list Configures a named ACL. For syntax information, select Cisco IOS IP Command Reference, Volume 1 of 3:Addressing and Services, Release 12.2 > IP Services Commands.
Page 272: Ip Address
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip address ip address Use the ip address interface configuration command on the switch stack or on a standalone switch to set an IP address for the Layer 2 switch or an IP address for each switch virtual interface (SVI) or routed port on the Layer 3 switch.
Page 273 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip address If your switch receives its IP address from a Bootstrap Protocol (BOOTP) or a DHCP server and you remove the switch IP address by using the no ip address command, IP processing is disabled, and the BOOTP or the DHCP server cannot reassign the address.
Page 274: Ip Admission
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip admission ip admission Use the ip admission interface configuration command to enable web authentication. You can also use this command in fallback-profile mode. Use the no form of this command to disable web authentication.
Page 275: Ip Admission Name Proxy Http
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip admission name proxy http ip admission name proxy http Use the ip admission name proxy http global configuration command to enable web authentication. Use the no form of this command to disable web authentication.
Page 276 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip admission name proxy http Related Commands Command Description dot1x fallback Configure a port to use web authentication as a fallback method for clients that do not support IEEE 802.1x authentication.
Page 277: Ip Arp Inspection Filter Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection filter vlan ip arp inspection filter vlan Use the ip arp inspection filter vlan global configuration command on the switch stack or on a standalone switch to permit or deny Address Resolution Protocol (ARP) requests and responses from a host configured with a static IP address when dynamic ARP inspection is enabled.
Page 278 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection filter vlan Examples This example shows how to apply the ARP ACL static-hosts to VLAN 1 for dynamic ARP inspection: Switch(config)# ip arp inspection filter static-hosts vlan 1 You can verify your settings by entering the show ip arp inspection vlan 1 privileged EXEC command.
Page 279: Ip Arp Inspection Limit
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection limit ip arp inspection limit Use the ip arp inspection limit interface configuration command on the switch stack or on a standalone switch to limit the rate of incoming Address Resolution Protocol (ARP) requests and responses on an interface.
Page 280 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection limit On a switch stack, the rate limit is calculated separately on each switch in the stack. For a cross-stack EtherChannel, this means that the actual rate limit might be higher than the configured value. For...
Page 281: Ip Arp Inspection Log-Buffer
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection log-buffer ip arp inspection log-buffer Use the ip arp inspection log-buffer global configuration command on the switch stack or on a standalone switch to configure the dynamic Address Resolution Protocol (ARP) inspection logging buffer.
Page 282 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection log-buffer In a switch stack, the log buffer configuration applies to each stack member in the stack. Each stack member has the specified logs number entries and generates system messages at the configured rate. For example, if the interval (rate) is one entry per second, up to five system messages are generated per second in a five-member switch stack.
Page 283: Ip Arp Inspection Smartlog
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection smartlog ip arp inspection smartlog To send the contents of packets in the dynamic Address Resolution Protocol (ARP) inspection logging buffer to a Flexible NetFlow collector, use the ip arp inspection smartlog command in global configuration mode.
Page 284 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection smartlog Related Commands Command Description ip arp inspection vlan Enables dynamic ARP inspection on a VLAN. ip arp inspection Configures the dynamic ARP inspection log buffer. log-buffer logging smartlog Enables smart logging on the switch.
Page 285: Ip Arp Inspection Trust
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection trust ip arp inspection trust Use the ip arp inspection trust interface configuration command on the switch stack or on a standalone switch to configure an interface trust state that determines which incoming Address Resolution Protocol (ARP) packets are inspected.
Page 286 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection trust Related Commands Command Description ip arp inspection Configures the dynamic ARP inspection logging buffer. log-buffer show inventory Displays the trust state and the rate limit of ARP packets for the specified interfaces interface or all interfaces.
Page 287: Ip Arp Inspection Validate
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection validate ip arp inspection validate Use the ip arp inspection validate global configuration command on the switch stack or on a standalone switch to perform specific checks for dynamic Address Resolution Protocol (ARP) inspection. Use the no form of this command to return to the default settings.
Page 288 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection validate Usage Guidelines You must specify at least one of the keywords. Each command overrides the configuration of the previous command; that is, if a command enables src-mac and dst-mac validations, and a second command enables IP validation only, the src-mac and dst-mac validations are disabled as a result of the second command.
Page 289: Ip Arp Inspection Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection vlan ip arp inspection vlan Use the ip arp inspection vlan global configuration command on the switch stack or on a standalone switch to enable dynamic Address Resolution Protocol (ARP) inspection on a per-VLAN basis. Use the no form of this command to return to the default setting.
Page 290: Ip Arp Inspection Vlan Logging
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection vlan logging ip arp inspection vlan logging Use the ip arp inspection vlan logging global configuration command on the switch stack or on a standalone switch to control the type of packets that are logged per VLAN. Use the no form of this command to disable this logging control.
Page 291 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip arp inspection vlan logging Usage Guidelines The term logged means that the entry is placed into the log buffer and that a system message is generated. The acl-match and dhcp-bindings keywords merge with each other; that is, when you configure an ACL match, the DHCP bindings configuration is not disabled.
Page 292: Ip Device Tracking
ARP probe address with the ip device tracking probe command. Use the show ip device tracking all command to display information about entries in the IP device tracking table. For more information about this command, see the Cisco IOS Security Command Reference, Release 12.4T.
Page 293: Ip Device Tracking Maximum
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip device tracking maximum ip device tracking maximum Use the ip device tracking maximum command to enable IP port security binding tracking on a Layer 2 port. Use the no form of this command to disable IP port security on untrusted Layer 2 interfaces.
Page 294: Ip Device Tracking Probe
Use the show ip device tracking all command to display information about entries in the IP device tracking table. For more information about this command, see the Cisco IOS Security Command Reference, Release 12.4T. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 295 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip device tracking probe Examples This example shows how to set SVI as the source for ARP probes: Switch(config)# ip device tracking probe use-svi Switch(config)# Related Commands Command Description show ip device Displays information about the entries in the IP device tracking table.
Page 296: Ip Dhcp Snooping
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping ip dhcp snooping Use the ip dhcp snooping global configuration command on the switch stack or on a standalone switch to globally enable DHCP snooping. Use the no form of this command to return to the default setting.
Page 297: Ip Dhcp Snooping Binding
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping binding ip dhcp snooping binding Use the ip dhcp snooping binding privileged EXEC command on the switch stack or on a standalone switch to configure the DHCP snooping binding database and to add binding entries to the database. Use the no form of this command to delete entries from the binding database.
Page 298 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping binding Examples This example shows how to generate a DHCP binding configuration with an expiration time of 1000 seconds on a port in VLAN 1: Switch# ip dhcp snooping binding 0001.1234.1234 vlan 1 172.20.50.5 interface...
Page 299: Ip Dhcp Snooping Database
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping database ip dhcp snooping database Use the ip dhcp snooping database global configuration command on the switch stack or on a standalone switch to configure the DHCP snooping binding database agent. Use the no form of this command to disable the agent, to reset the timeout value, or to reset the write-delay value.
Page 300 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping database Usage Guidelines The DHCP snooping binding database can have up to 8192 bindings. To ensure that the lease time in the database is accurate, we recommend that Network Time Protocol...
Page 301: Ip Dhcp Snooping Information Option
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping information option ip dhcp snooping information option Use the ip dhcp snooping information option global configuration command on the switch stack or on a standalone switch to enable DHCP option-82 data insertion. Use the no form of this command to disable DHCP option-82 data insertion.
Page 302 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping information option Related Commands Command Description show ip dhcp snooping Displays the DHCP snooping configuration. show ip dhcp snooping binding Displays the DHCP snooping binding information. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 303: Ip Dhcp Snooping Information Option Allow-Untrusted
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping information option allow-untrusted ip dhcp snooping information option allow-untrusted Use the ip dhcp snooping information option allow-untrusted global configuration command on an aggregation switch to configure it to accept DHCP packets with option-82 information that are received on untrusted ports that might be connected to an edge switch.
Page 304 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping information option allow-untrusted Examples This example shows how to configure an access switch to not check the option-82 information in untrusted packets from an edge switch and to accept the packets: Switch(config)# ip dhcp snooping information option allow-untrusted You can verify your settings by entering the show ip dhcp snooping user EXEC command.
Page 305: Ip Dhcp Snooping Information Option Format Remote-Id
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping information option format remote-id ip dhcp snooping information option format remote-id Use the ip dhcp snooping information option format remote-id global configuration command on the switch stack or on a standalone switch to configure the option-82 remote-ID suboption. Use the no form of this command to configure the default remote-ID suboption.
Page 306: Ip Dhcp Snooping Limit Rate
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping limit rate ip dhcp snooping limit rate Use the ip dhcp snooping limit rate interface configuration command on the switch stack or on a standalone switch to configure the number of DHCP messages an interface can receive per second. Use the no form of this command to return to the default setting.
Page 307: Ip Dhcp Snooping Trust
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping trust ip dhcp snooping trust Use the ip dhcp snooping trust interface configuration command on the switch stack or on a standalone switch to configure a port as trusted for DHCP snooping purposes. Use the no form of this command to return to the default setting.
Page 308: Ip Dhcp Snooping Verify
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping verify ip dhcp snooping verify Use the ip dhcp snooping verify global configuration command on the switch stack or on a standalone switch to configure the switch to verify on an untrusted port that the source MAC address in a DHCP packet matches the client hardware address.
Page 309: Ip Dhcp Snooping Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping vlan ip dhcp snooping vlan To enable DHCP snooping on a VLAN or to enable DHCP snooping smart logging on the VLAN, use the ip dhcp snooping vlan command in global configuration mode. To return to the default setting, use the no form of this command.
Page 310 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping vlan Examples This example shows how to enable DHCP snooping on VLAN 10 and then enable smart logging for packets entering the VLAN: Switch(config)# ip dhcp snooping vlan 10...
Page 311: Ip Dhcp Snooping Vlan Information Option Format-Type Circuit-Id String
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping vlan information option format-type circuit-id string ip dhcp snooping vlan information option format-type circuit-id string Use the ip dhcp snooping vlan information option format-type circuit-id string interface configuration command on the switch stack or on a standalone switch to configure the option-82 circuit-ID suboption.
Page 312 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip dhcp snooping vlan information option format-type circuit-id string Examples This example shows how to configure the option-82 circuit-ID suboption: Switch(config-if)# ip dhcp snooping vlan 250 information option format-type circuit-id...
Page 313: Ip Igmp Filter
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp filter ip igmp filter Use the ip igmp filter interface configuration command on the switch stack or on a standalone switch to control whether or not all hosts on a Layer 2 interface can join one or more IP multicast groups by applying an Internet Group Management Protocol (IGMP) profile to the interface.
Page 314: Ip Igmp Max-Groups
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp max-groups ip igmp max-groups Use the ip igmp max-groups interface configuration command on the switch stack or on a standalone switch to set the maximum number of Internet Group Management Protocol (IGMP) groups that a Layer 2 interface can join or to configure the IGMP throttling action when the maximum number of entries is in the forwarding table.
Page 315 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp max-groups If you configure the throttling action as replace and set the maximum group limitation, the entries • that were previously in the forwarding table are removed. When the maximum number of entries is in the forwarding table, the switch replaces a randomly selected multicast entry with the received IGMP report.
Page 316: Ip Igmp Profile
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp profile ip igmp profile Use the ip igmp profile global configuration command on the switch stack or on a standalone switch to create an Internet Group Management Protocol (IGMP) profile and enter IGMP profile configuration mode.
Page 317 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp profile Related Commands Command Description ip igmp filter Applies the IGMP profile to the specified interface. show ip igmp profile Displays the characteristics of all IGMP profiles or the specified IGMP profile number.
Page 318: Ip Igmp Snooping
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping ip igmp snooping Use the ip igmp snooping global configuration command on the switch stack or on a standalone switch to globally enable Internet Group Management Protocol (IGMP) snooping on the switch or to enable it on a per-VLAN basis.
Page 319 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping Command Description show ip igmp snooping mrouter Displays the IGMP snooping router ports. show ip igmp snooping querier Displays the configuration and operation information for the IGMP querier configured on a switch.
Page 320: Ip Igmp Snooping Last-Member-Query-Interval
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping last-member-query-interval ip igmp snooping last-member-query-interval Use the ip igmp snooping last-member-query-interval global configuration command on the switch stack or on a standalone switch to enable the Internet Group Management Protocol (IGMP) configurable-leave timer globally or on a per-VLAN basis.
Page 321 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping last-member-query-interval Related Commands Command Description ip igmp snooping Enables IGMP snooping on the switch or on a VLAN. ip igmp snooping vlan immediate-leave Enables IGMP Immediate-Leave processing.
Page 322: Ip Igmp Snooping Querier
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping querier ip igmp snooping querier Use the ip igmp snooping querier global configuration command on the switch stack or on a standalone switch to globally enable the Internet Group Management Protocol (IGMP) querier function in Layer 2 networks.
Page 323 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping querier Usage Guidelines Use this command to enable IGMP snooping to detect the IGMP version and IP address of a device that sends IGMP query messages, which is also called a querier.
Page 324: Ip Igmp Snooping Report-Suppression
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping report-suppression ip igmp snooping report-suppression Use the ip igmp snooping report-suppression global configuration command on the switch stack or on a standalone switch to enable Internet Group Management Protocol (IGMP) report suppression. Use the no form of this command to disable IGMP report suppression and to forward all IGMP reports to multicast routers.
Page 325 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping report-suppression Related Commands Command Description ip igmp snooping Enables IGMP snooping on the switch or on a VLAN. show ip igmp snooping Displays the IGMP snooping configuration of the switch or the VLAN.
Page 326: Ip Igmp Snooping Tcn
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping tcn ip igmp snooping tcn Use the ip igmp snooping tcn global configuration command on the switch stack or on a standalone switch to configure the Internet Group Management Protocol (IGMP) Topology Change Notification (TCN) behavior.
Page 327 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping tcn Related Commands Command Description ip igmp snooping Enables IGMP snooping on the switch or on a VLAN. ip igmp snooping tcn flood Specifies flooding on an interface as the IGMP snooping spanning-tree TCN behavior.
Page 328: Ip Igmp Snooping Tcn Flood
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping tcn flood ip igmp snooping tcn flood Use the ip igmp snooping tcn flood interface configuration command on the switch stack or on a standalone switch to specify multicast flooding as the Internet Group Management Protocol (IGMP) snooping spanning-tree Topology Change Notification (TCN) behavior.
Page 329: Ip Igmp Snooping Vlan Immediate-Leave
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping vlan immediate-leave ip igmp snooping vlan immediate-leave Use the ip igmp snooping immediate-leave global configuration command on the switch stack or on a standalone switch to enable Internet Group Management Protocol (IGMP) snooping immediate-leave processing on a per-VLAN basis.
Page 330: Ip Igmp Snooping Vlan Mrouter
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping vlan mrouter ip igmp snooping vlan mrouter Use the ip igmp snooping mrouter global configuration command on the switch stack or on a standalone switch to add a multicast router port or to configure the multicast learning method. Use the no form of this command to return to the default settings.
Page 331 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping vlan mrouter Examples This example shows how to configure a port as a multicast router port: Switch(config)# ip igmp snooping vlan 1 mrouter interface gigabitethernet1/0/2 This example shows how to specify the multicast router learning method as CGMP: Switch(config)# ip igmp snooping vlan 1 mrouter learn cgmp You can verify your settings by entering the show ip igmp snooping privileged EXEC command.
Page 332: Ip Igmp Snooping Vlan Static
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping vlan static ip igmp snooping vlan static Use the ip igmp snooping static global configuration command on the switch stack or on a standalone switch to enable Internet Group Management Protocol (IGMP) snooping and to statically add a Layer 2 port as a member of a multicast group.
Page 333 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip igmp snooping vlan static Related Commands Command Description ip igmp snooping report-suppression Enables IGMP report suppression. show ip igmp snooping Displays the snooping configuration. show ip igmp snooping groups Displays IGMP snooping multicast information.
Page 334: Ip Snap Forwarding
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip snap forwarding ip snap forwarding Use the ip snap forwarding global configuration comm and on the switch stack or on a standalone switch to ersion 6 (IPv6) frames with Subnetwork Access Protocol enable forwarding of IP Version 4 (IPv4) and IP V (SNAP) encapsulation.
Page 335: Ip Source Binding
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip source binding ip source binding Use the ip source binding global configuration command on the switch stack or on a standalone switch to configure static IP source bindings on the switch. Use the no form of this command to delete static bindings.
Page 336 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip source binding Related Commands Command Description ip verify source Enables IP source guard on an interface. show ip source binding Displays the IP source bindings on the switch. show ip verify source Displays the IP source guard configuration on the switch or on a specific interface.
Page 337: Ip Ssh
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip ssh ip ssh Use the ip ssh global configuration command on the switch stack or on a standalone switch to configure the switch to run Secure Shell (SSH) Version 1 or SSH Version 2. Use the no form of this command to return to the default setting.
Page 338 Features > Secure Shell Commands. show ssh Displays the status of the SSH server. For syntax information, select Cisco IOS Release 12.2 Configuration Guides and Command References > Cisco IOS Security Command Reference, Release 12.2 > Other Security Features >...
Page 339: Ip Sticky-Arp (Global Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip sticky-arp (global configuration) ip sticky-arp (global configuration) Use the ip sticky-arp global configuration command to enable sticky Address Resolution Protocol (ARP) on a switch virtual interface (SVI) that belongs to a private VLAN. Use the no form of this command to disable sticky ARP.
Page 340 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip sticky-arp (global configuration) Use the no sticky-arp global configuration command to disable sticky ARP on the switch. • Use the no sticky-arp interface configuration command to disable sticky ARP on an interface when •...
Page 341: Ip Sticky-Arp (Interface Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip sticky-arp (interface configuration) ip sticky-arp (interface configuration) Use the ip sticky-arp interface configuration command to enable sticky Address Resolution Protocol (ARP) on a switch virtual interface (SVI) or a Layer 3 interface. Use the no form of this command to disable sticky ARP.
Page 342 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip sticky-arp (interface configuration) We recommend that you use the show arp privileged EXEC command to display and verify Note private-VLAN interface ARP entries. • If you disconnect the switch from a device and then connect it to another device with a different MAC address but with the same IP address, the ARP entry is not created, and this message appears: *Mar 2 00:26:06.967: %IP-3-STCKYARPOVR: Attempt to overwrite Sticky ARP entry:...
Page 343: Ip Verify Source
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip verify source ip verify source Use the ip verify source interface configuration command on the switch stack or on a standalone switch to enable IP source guard on an interface. Use the no form of this command to disable IP source guard.
Page 344 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip verify source Interface Filter-type Filter-mode IP-address Mac-address Vlan --------- ----------- ----------- --------------- ----------------- ---------- Gi1/0/1 ip-mac active 10.0.0.1 Gi1/0/1 ip-mac active deny-all 11-20 Switch# This example shows how to enable IP port security with IP-MAC filters on a Layer 2 access port: Switch# configure terminal Enter configuration commands, one per line.
Page 345: Ip Verify Source Smartlog
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ip verify source smartlog ip verify source smartlog To send the contents of all packets denied on an interface because of an IP source guard violation to a Flexible NetFlow collector, use the ip verify source smartlog command in interface configuration mode.
Page 346: Ipv6 Access-List
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 access-list ipv6 access-list Use the ipv6 access-list global configuration command on the switch stack or on a standalone switch to define an IPv6 access list and to place the switch in IPv6 access list configuration mode. To remove the access list, use the no form of this command.
Page 347 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 access-list Every IPv6 ACL has implicit permit icmp any any nd-na, permit icmp any any nd-ns, and deny ipv6 Note any any statements as its last match conditions. The two permit conditions allow ICMPv6 neighbor discovery.
Page 348 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 access-list Related Commands Command Description deny (IPv6 access-list Sets deny conditions for an IPv6 access list. configuration) ipv6 traffic-filter Filters incoming or outgoing IPv6 traffic on an interface. permit (IPv6 Sets permit conditions for an IPv6 access list.
Page 349: Ipv6 Address Dhcp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 address dhcp ipv6 address dhcp Use the ipv6 address dhcp interface configuration command on the switch stack or on a standalone switch to acquire an IPv6 address on an interface from the Dynamic Host Configuration Protocol for IPv6 (DHCPv6) server.
Page 350: Ipv6 Dhcp Client Request Vendor
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 dhcp client request vendor ipv6 dhcp client request vendor Use the ipv6 dhcp client request interface configuration command on the switch stack or on a standalone switch to configure an IPv6 client to request an option from a Dynamic Host Configuration Protocol for IPv6 (DHCPv6) server.
Page 351: Ipv6 Dhcp Ping Packets
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 dhcp ping packets ipv6 dhcp ping packets Use the ipv6 dhcp ping packets global configuration command on the switch stack or on a standalone switch to specify the number of packets a Dynamic Host Configuration Protocol for IPv6 (DHCPv6) server sends to a pool address as part of a ping operation.
Page 352 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 dhcp ping packets Related Commands Command Description clear ipv6 dhcp Clears an address conflict from the DHCPv6 server database. conflict show ipv6 dhcp Displays address conflicts found by a DHCPv6 server, or reported through conflict a DECLINE message from a client.
Page 353: Ipv6 Dhcp Pool
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 dhcp pool ipv6 dhcp pool Use the ipv6 dhcp pool global configuration command on the switch stack or on a standalone switch to enter Dynamic Host Configuration Protocol for IPv6 (DHCPv6) pool configuration mode. Use the no form of this command to return to the default settings.
Page 354 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 dhcp pool link-address IPv6-prefix: sets a link-address IPv6 prefix. When an address on the incoming • interface or a link-address in the packet matches the specified IPv6-prefix, the server uses the configuration information pool.
Page 355 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 dhcp pool Related Commands Command Description ipv6 dhcp server Enables DHCPv6 service on an interface. show ipv6 dhcp pool Displays DHCPv6 configuration pool information. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 356: Ipv6 Dhcp Server
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 dhcp server ipv6 dhcp server Use the ipv6 dhcp server interface configuration command on the switch stack or on a standalone switch to enable Dynamic Host Configuration Protocol for IPv6 (DHCPv6) service on an interface. To disable DHCPv6 service on an interface, use the no form of this command.
Page 357 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 dhcp server If the packet was directly received from the client, the server performs this same matching, but it uses all the IPv6 addresses configured on the incoming interface when performing the match. Once again, the server selects the longest prefix match.
Page 358: Ipv6 Mld Snooping
1006 to 4094), IPv6 MLD snooping must be enabled on the extended VLAN on the Catalyst 6500 switch in order for the Catalyst 3750-X or Catalyst 3560-X switch to receive queries on the VLAN. For normal-range VLANs (1 to 1005), it is not necessary to enable IPv6 MLD snooping on the VLAN on the Catalyst 6500 switch.
Page 359 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping Examples This example shows how to globally enable MLD snooping: Switch(config)# ipv6 mld snooping This example shows how to disable MLD snooping on a VLAN: Switch(config)# no ipv6 mld snooping vlan 11 You can verify your settings by entering the show ipv6 mld snooping user EXEC command.
Page 360: Ipv6 Mld Snooping Last-Listener-Query-Count
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping last-listener-query-count ipv6 mld snooping last-listener-query-count Use the ipv6 mld snooping last-listener-query-count global configuration command on the switch stack or on a standalone switch to configure IP version 6 (IPv6) Multicast Listener Discovery Mulitcast Address Specific Queries (MASQs) or that will be sent before aging out a client.
Page 361 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping last-listener-query-count Examples This example shows how to globally set the last-listener query count: Switch(config)# ipv6 mld snooping last-listener-query-count 1 This example shows how to set the last-listener query count for VLAN 10:...
Page 362: Ipv6 Mld Snooping Last-Listener-Query-Interval
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping last-listener-query-interval ipv6 mld snooping last-listener-query-interval Use the ipv6 mld snooping last-listener-query-interval global configuration command on the switch stack or on a standalone switch to configure IP version 6 (IPv6) Multicast Listener Discovery (MLD) snooping last-listener query interval on the switch or on a VLAN.
Page 363 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping last-listener-query-interval Examples This example shows how to globally set the last-listener query interval to 2 seconds: Switch(config)# ipv6 mld snooping last-listener-query-interval 2000 This example shows how to set the last-listener query interval for VLAN 1 to 5.5 seconds:...
Page 364: Ipv6 Mld Snooping Listener-Message-Suppression
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping listener-message-suppression ipv6 mld snooping listener-message-suppression Use the ipv6 mld snooping listener-message-suppression global configuration command on the switch stack or on a standalone switch to enable IP version 6 (IPv6) Multicast Listener Discovery (MLD) snooping listener message suppression.
Page 365: Ipv6 Mld Snooping Robustness-Variable
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping robustness-variable ipv6 mld snooping robustness-variable Use the ipv6 mld snooping robustness-variable global configuration command on the switch stack or on a standalone switch to configure the number of IP version 6 (IPv6) Multicast Listener Discovery (MLD) queries that the switch sends before deleting a listener that does not respond, or enter a VLAN ID to configure on a per-VLAN basis.
Page 366 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping robustness-variable Examples This example shows how to configure the global robustness variable so that the switch sends out three queries before it deletes a listener port that does not respond: Switch(config)# ipv6 mld snooping robustness-variable 3 This example shows how to configure the robustness variable for VLAN 1.
Page 367: Ipv6 Mld Snooping Tcn
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping tcn ipv6 mld snooping tcn Use the ipv6 mld snooping tcn global configuration commands on the switch stack or on a standalone switch to configure IP version 6 (IPv6) Multicast Listener Discovery (MLD) Topology Change Notifications (TCNs).
Page 368 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping tcn Related Commands Command Description sdm prefer Configures an SDM template to support IPv6 functions. dual-ipv4-and-ipv6 show ipv6 mld snooping Displays MLD snooping configuration. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 369: Ipv6 Mld Snooping Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 mld snooping vlan ipv6 mld snooping vlan Use the ipv6 mld snooping vlan global configuration command on the switch stack or on a standalone switch to configure IP version 6 (IPv6) Multicast Listener Discovery (MLD) snooping parameters on the VLAN interface.
Page 370 1006 to 4094), IPv6 MLD snooping must be enabled on the extended VLAN on the Catalyst 6500 switch in order for the Catalyst 3750-X or Catalyst 3560-X switch to receive queries on the VLAN. For normal-range VLANs (1 to 1005), it is not necessary to enable IPv6 MLD snooping on the VLAN on the Catalyst 6500 switch.
Page 371: Ipv6 Traffic-Filter
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 traffic-filter ipv6 traffic-filter Use the ipv6 traffic-filter interface configuration command on the switch stack or on a standalone switch to filter IPv6 traffic on an interface. The type and direction of traffic that you can filter depends on the feature set running on the switch stack.
Page 372 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands ipv6 traffic-filter Examples This example filters inbound IPv6 traffic on an IPv6-configured interface as defined by the access list named cisco: Switch (config)# interface gigabitethernet1/0/1 Switch(config-if)# no switchport Switch(config-if)# ipv6 address 2001::/64 eui-64...
Page 373: L2Protocol-Tunnel
Layer 2 protocols on an access port, IEEE 802.1Q tunnel port, or a port channel. You can enable tunneling for Cisco Discovery Protocol (CDP), Spanning Tree Protocol (STP), or VLAN Trunking Protocol (VTP) packets. You can also enable point-to-point tunneling for Port Aggregation Protocol (PAgP), Link Aggregation Control Protocol (LACP), or UniDirectional Link Detection (UDLD) packets.
Page 374 When protocol tunneling is enabled, protocol packets are encapsulated with a well-known Cisco multicast address for transmission across the network. When the packets reach their destination, the well-known MAC address is replaced by the Layer 2 protocol MAC address.
Page 375 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands l2protocol-tunnel For more information about Layer 2 protocol tunneling, see the software configuration guide for this release. Examples This example shows how to enable protocol tunneling for CDP packets and to configure the shutdown...
Page 376: L2Protocol-Tunnel Cos
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands l2protocol-tunnel cos l2protocol-tunnel cos Use the l2protocol-tunnel cos global configuration command on the switch stack or on a standalone switch to configure class of service (CoS) value for all tunneled Layer 2 protocol packets. Use the no form of this command to return to the default setting.
Page 377: Lacp Port-Priority
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands lacp port-priority lacp port-priority Use the lacp port-priority interface configuration command on the switch stack or on a standalone switch to configure the port priority for the Link Aggregation Control Protocol (LACP). Use the no form of this command to return to the default setting.
Page 378 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands lacp port-priority Examples This example shows how to configure the LACP port priority on a port: Switch(config)# interface gigabitethernet2/0/1 Switch(config-if)# lacp port-priority 1000 You can verify your settings by entering the show lacp [channel-group-number] internal privileged EXEC command.
Page 379: Lacp System-Priority
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands lacp system-priority lacp system-priority Use the lacp system-priority global configuration command on the switch stack or on a standalone switch to configure the system priority for the Link Aggregation Control Protocol (LACP). Use the no form of this command to return to the default setting.
Page 380 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands lacp system-priority Related Commands Command Description channel-group Assigns an Ethernet port to an EtherChannel group. lacp port-priority Configures the LACP port priority. show lacp sys-id Displays the system identifier that is being used by LACP.
Page 381: License Boot Level
IP services IP base LAN base For more information about using software licenses, see the Cisco IOS Software Activation document on Cisco.com and the Cisco IOS Software Activation Configuration Guide, Release 12.4T at: http://www.cisco.com/en/US/docs/ios/csa/configuration/guide/12.4T/csa_book.html Examples...
Page 382 Saves a copy of a permanent license on a switch to a specific license file. For syntax information, use this link to the Cisco IOS Software Activation Command Reference at http://www.cisco.com/en/US/docs/ios/csa/command/reference/csa_book.ht Catalyst 3750-X and 3560-X Switch Command Reference...
Page 383: Link State Group
The reverse is also true. • An interface cannot be a member of more than one link-state group. You can configure only ten link-state groups per Catalyst 3750-X switch and two link-state groups • per Catalyst 3560-X switch.
Page 384 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands link state group Examples This example shows how to configure the interfaces as upstream in group 2: Switch# configure terminal Switch(config)# interface range gigabitethernet1/0/11 - 14 Switch(config-if-range)# link state group 2 upstream...
Page 385: Link State Track
Syntax Description number (Optional) Specify the link-state group number. For a Catalyst 3750-X switch, the group number can be 1 to 10. For a Catalyst 3560-X switch, the group number can be from 1 to 2. The default is 1.
Page 386: Location (Global Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands location (global configuration) location (global configuration) Use the location global configuration command to configure location information for an endpoint. Use the no form of this command to remove the location information.
Page 387 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands location (global configuration) Examples This example shows how to configure civic location information on the switch: Switch(config)# location civic-location identifier 1 Switch(config-civic)# number 3550 Switch(config-civic)# primary-road-name “Cisco Way” Switch(config-civic)# city “San Jose”...
Page 388: Location (Interface Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands location (interface configuration) location (interface configuration) Use the location interface command to enter location information for an interface. Use the no form of this command to remove the interface location information.
Page 389 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands location (interface configuration) You can verify your settings by entering the show location civic interface privileged EXEC command. This example shows how to enter emergency location information for an interface:...
Page 390: Logging Event
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands logging event logging event Use the logging event interface configuration command to enable notification of interface link status changes. Use the no form of this command to disable notification. logging event {bundle-status | link-status | spanning-tree | status | trunk status}...
Page 391: Logging Event Power-Inline-Status
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands logging event power-inline-status logging event power-inline-status Use the logging event power-inline-status interface configuration command to enable the logging of Power over Ethernet (PoE) events. Use the no form of this command to disable the logging of PoE status events;...
Page 392: Logging File
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands logging file logging file Use the logging file global configuration command on the switch stack or on a standalone switch to set logging file parameters. Use the no form of this command to return to the default setting.
Page 393 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands logging file Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines On the Catalyst 3750-switch, the log file is stored in ASCII text format in an internal buffer on a standalone switch, and in the case of a switch stack, on the stack master.
Page 394: Logging Smartlog
To enable smart logging on the switch, use the logging smartlog command in global configuration mode. Smart logging sends the contents of specified dropped packets to a Cisco IOS Flexible NetFlow collector. To disable smart logging or return to the default setting, use the no form of this command.
Page 395 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands logging smartlog Related Commands Command Description ip arp inspection smartlog Enables smart logging of dynamic ARP inspection dropped packets. ip dhcp snooping vlan smartlog Enables smart logging of IP DHCP snooping dropped packets.
Page 396: Mab Request Format Attribute 32
Usage Guidelines Use this command to allow a RADIUS server to authenticate a new user based on the host MAC address and VLAN. Use this feature on networks with the Microsoft IAS RADIUS server. The Cisco ACS ignores this command. Examples...
Page 397 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mab request format attribute 32 Command Description authentication Adds an authentication method to the port-priority list. priority authentication timer Configures the timeout and reauthentication parameters for an 802.1x-enabled port. authentication...
Page 398: Mac Access-Group
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac access-group mac access-group Use the mac access-group interface configuration command on the switch stack or on a standalone switch to apply a MAC access control list (ACL) to a Layer 2 interface. Use the no form of this command to remove all MAC ACLs or the specified MAC ACL from the interface.
Page 399 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac access-group Examples This example shows how to apply a MAC extended ACL named macacl2 to an interface: Switch(config)# interface gigabitethernet1/0/1 Switch(config-if)# mac access-group macacl2 in You can verify your settings by entering the show mac access-group privileged EXEC command. You can see configured ACLs on the switch by entering the show access-lists privileged EXEC command.
Page 400: Mac Access-List Extended
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac access-list extended mac access-list extended Use the mac access-list extended global configuration command on the switch stack or on a standalone switch to create an access list based on MAC addresses for non-IP traffic. Using this command puts you in the extended MAC access-list configuration mode.
Page 401 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac access-list extended This example shows how to delete MAC named extended access list mac1: Switch(config)# no mac access-list extended mac1 You can verify your settings by entering the show access-lists privileged EXEC command.
Page 402: Mac Address-Table Aging-Time
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table aging-time mac address-table aging-time Use the mac address-table aging-time global configuration command on the switch stack or on a standalone switch to set the length of time that a dynamic entry remains in the MAC address table after the entry is used or updated.
Page 403: Mac Address-Table Learning Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table learning vlan mac address-table learning vlan Use the mac address-table learning global configuration command to enable MAC address learning on a VLAN. This is the default state. Use the no form of this command to disable MAC address learning on a VLAN to control which VLANs can learn MAC addresses.
Page 404 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table learning vlan If you disable MAC address learning on a VLAN that includes a secure port, MAC address learning is not disabled on the secure port. If you later disable port security on the interface, the disabled MAC address learning state is enabled.
Page 405: Mac Address-Table Move Update
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table move update mac address-table move update Use the mac address-table move update global configuration command on the switch stack or on a standalone switch to enable the MAC address-table move update feature. Use the no form of this command to return to the default setting.
Page 406 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table move update Related Commands Command Description clear mac address-table move Clears the MAC address-table move update global counters. update debug matm move update Debugs the MAC address-table move update message processing.
Page 407: Mac Address-Table Notification
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table notification mac address-table notification Use the mac address-table notification global configuration command on the switch stack or on a standalone switch to enable the MAC address notification feature on the switch or the switch stack. Use the no form of this command to return to the default setting.
Page 408 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table notification When you configure the history-size option, the existing MAC address history table is deleted, and a new table is created. You enable the MAC address notification change feature by using the mac address-table notification change command.
Page 409: Mac Address-Table Static
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table static mac address-table static Use the mac address-table static global configuration command on the switch stack or on a standalone switch to add static addresses to the MAC address table. Use the no form of this command to remove static entries from the table.
Page 410: Mac Address-Table Static Drop
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table static drop mac address-table static drop Use the mac address-table static drop global configuration command on the switch stack or on a standalone switch to enable unicast MAC address filtering and to configure the switch to drop traffic with a specific source or destination MAC address.
Page 411 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac address-table static drop Examples This example shows how to enable unicast MAC address filtering and to configure the switch to drop packets that have a source or destination address of c2f3.220a.12f4. When a packet is received in VLAN 4 with this MAC address as its source or destination, the packet is dropped: Switch(config)# mac address-table static c2f3.220a.12f4 vlan 4 drop...
Page 412: Mac Sec
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mac sec mac sec To enable 802.1ae Media Access Control Security (MACsec) on an interface, use the macsec interface configuration command. To disable MACsec on the interface, use the no form of this command.
Page 413: Match (Access-Map Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands match (access-map configuration) match (access-map configuration) Use the match access-map configuration command on the switch stack or on a standalone switch to set the VLAN map to match packets against one or more access lists. Use the no form of this command to remove the match parameters.
Page 414 Specifies the action to be taken if the packet matches an entry in an access control list (ACL). ip access list Creates a named access list. For syntax information, select Cisco IOS IP Command Reference, Volume 1 of 3:Addressing and Services, Release 12.2 > IP Services Commands.
Page 415: Match (Class-Map Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands match (class-map configuration) match (class-map configuration) Use the match class-map configuration command on the switch stack or on a standalone switch to define the match criteria to classify traffic. Use the no form of this command to remove the match criteria.
Page 416 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands match (class-map configuration) If you enter the class-map {match-all | match-any} class-map-name global configuration command, you can enter these match commands: • match access-group acl-name The ACL must be an extended named ACL.
Page 417 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands match (class-map configuration) This example shows how to specify a range of physical ports to which an interface-level class map in a hierarchical policy map applies: Switch(config)# class-map match-all class4...
Page 418: Mdix Auto
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mdix auto mdix auto Use the mdix auto interface configuration command on the switch stack or on a standalone switch to enable the automatic medium-dependent interface crossover (auto-MDIX) feature on the interface.
Page 419 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mdix auto Related Commands Command Description show controllers Displays general information about internal registers of an interface, ethernet-controller including the operational state of auto-MDIX. interface-id phy Catalyst 3750-X and 3560-X Switch Command Reference...
Page 420: Media-Type Rj45
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands media-type rj45 media-type rj45 Use the media-type rj45 line configuration command to manually select the RJ-45 console connection for input, whether or not there is a device connected to the USB console port. Use the no form of this command to return to the default setting.
Page 421: Mka Default-Policy
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mka default-policy mka default-policy To apply the MACsec Key Agreement (MKA) protocol default policy on an interface, use the mka default-policy interface configuration command. This command also enables MKA on the interface if no MKAs were applied.
Page 422: Mka Policy (Global Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mka policy (global configuration) mka policy (global configuration) To create or configure a MACsec Key Agreement (MKA) Protocol policy and to enter MKA policy configuration mode, use the mka policy global configuration command, To delete the policy, use the no form of this command.
Page 423 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mka policy (global configuration) Examples This example shows what you see if you create a policy name that already exists: Switch(config)# mka policy test-policy Switch(config-mks-policy)# exit Switch(config)# mka policy test-policy %MKA policy “test-policy”...
Page 424: Mka Policy (Interface Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mka policy (interface configuration) mka policy (interface configuration) To apply an existing MACsec Key Agreement (MKA) Protocol policy to an interface, use the mka policy interface configuration command. This command also enables MKA on the interface if no MKAs have been applied.
Page 425 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mka policy (interface configuration) Related Commands Command Description mka policy (global Creates an MKA policy and enters MKA policy configuration mode. configuration) show mka policy Displays MKA policies configured on the switch.
Page 426: Mls Qos
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos mls qos Use the mls qos global configuration command on the switch stack or on a standalone switch to enable quality of service (QoS) for the entire switch. When the mls qos command is entered, QoS is enabled with the default parameters on all ports in the system.
Page 427 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos Examples This example shows how to enable QoS on the switch: Switch(config)# mls qos This example shows how to enable IPv6 QoS on the switch: Switch(config)# sdm prefer dual-ipv4-and-ipv6 default...
Page 428: Mls Qos Aggregate-Policer
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos aggregate-policer mls qos aggregate-policer Use the mls qos aggregate-policer global configuration command on the switch stack or on a standalone switch to define policer parameters, which can be shared by multiple classes within the same policy map.
Page 429 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos aggregate-policer You cannot delete an aggregate policer if it is being used in a policy map. You must first use the no police aggregate aggregate-policer-name policy-map class configuration command to delete the aggregate policer from all policy maps before using the no mls qos aggregate-policer aggregate-policer-name command.
Page 430: Mls Qos Cos
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos cos mls qos cos Use the mls qos cos interface configuration command on the switch stack or on a standalone switch to define the default class of service (CoS) value of a port or to assign the default CoS to all incoming packets on the port.
Page 431 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos cos This example shows how to assign all the packets entering a port to the default port CoS value of 4 on a port: Switch(config)# interface gigabitethernet2/0/1 Switch(config-if)# mls qos cos 4 Switch(config-if)# mls qos cos override You can verify your settings by entering the show mls qos interface privileged EXEC command.
Page 432: Mls Qos Dscp-Mutation
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos dscp-mutation mls qos dscp-mutation Use the mls qos dscp-mutation interface configuration command on the switch stack or on a standalone switch to apply a Differentiated Services Code Point (DSCP)-to-DSCP-mutation map to a DSCP-trusted port.
Page 433 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos dscp-mutation This example show how to remove the DSCP-to-DSCP-mutation map name dscpmutation1 from the port and to reset the map to the default: Switch(config-if)# no mls qos dscp-mutation dscpmutation1 You can verify your settings by entering the show mls qos maps privileged EXEC command.
Page 434: Mls Qos Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos map mls qos map Use the mls qos map global configuration command on the switch stack or on a standalone switch to define the class of service (CoS)-to-Differentiated Services Code Point (DSCP) map, DSCP-to-CoS map, the DSCP-to-DSCP-mutation map, the IP-precedence-to-DSCP map, and the policed-DSCP map.
Page 435 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos map Defaults Table 2-14 shows the default CoS-to-DSCP map: Table 2-14 Default CoS-to-DSCP Map CoS Value DSCP Value Table 2-15 shows the default DSCP-to-CoS map: Table 2-15 Default DSCP-to-CoS Map...
Page 436 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos map The default DSCP-to-DSCP-mutation map is a null map, which maps an incoming DSCP value to the same DSCP value. The default policed-DSCP map is a null map, which maps an incoming DSCP value to the same DSCP value.
Page 437 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos map Related Commands Command Description mls qos dscp-mutation Applies a DSCP-to-DSCP-mutation map to a DSCP-trusted port. show mls qos maps Displays quality of service (QoS) mapping information. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 438: Mls Qos Queue-Set Output Buffers
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos queue-set output buffers mls qos queue-set output buffers Use the mls qos queue-set output buffers global configuration command on the switch stack or on a standalone switch to allocate buffers to a queue-set (four egress queues per port). Use the no form of this command to return to the default setting.
Page 439 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos queue-set output buffers Examples This example shows how to map a port to queue-set 2. It allocates 40 percent of the buffer space to egress queue 1 and 20 percent to egress queues 2, 3, and 4:...
Page 440: Mls Qos Queue-Set Output Threshold
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos queue-set output threshold mls qos queue-set output threshold Use the mls qos queue-set output threshold global configuration command on the switch stack or on a standalone switch to configure the weighted tail-drop (WTD) thresholds, to guarantee the availability of buffers, and to configure the maximum memory allocation to a queue-set (four egress queues per port).
Page 441 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos queue-set output threshold Usage Guidelines Use the mls qos queue-set output qset-id buffers global configuration command to allocate a fixed number of buffers to the four queues in a queue-set.
Page 442: Mls Qos Rewrite Ip Dscp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos rewrite ip dscp mls qos rewrite ip dscp Use the mls qos rewrite ip dscp global configuration command on the switch stack or on a standalone switch to configure the switch to change (rewrite) the Differentiated Services Code Point (DSCP) field of an incoming IP packet.
Page 443 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos rewrite ip dscp Examples This example shows how to enable DSCP transparency and configure the switch to not change the DSCP value of the incoming IP packet: Switch(config)# mls qos...
Page 444: Mls Qos Srr-Queue Input Bandwidth
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input bandwidth mls qos srr-queue input bandwidth Use the mls qos srr-queue input bandwidth global configuration command on the switch stack or on a standalone switch to assign shaped round robin (SRR) weights to an ingress queue. The ratio of the weights is the ratio of the frequency in which the SRR scheduler dequeues packets from each queue.
Page 445 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input bandwidth This example shows how to assign the ingress bandwidths for the queues in the stack. Queue 1 is the priority queue with 10 percent of the bandwidth allocated to it. The bandwidth ratio allocated to queues 1 and 2 is 4/(4+4).
Page 446: Mls Qos Srr-Queue Input Buffers
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input buffers mls qos srr-queue input buffers Use the mls qos srr-queue input buffers global configuration command on the switch stack or on a standalone switch to allocate the buffers between the ingress queues. Use the no form of this command to return to the default setting.
Page 447 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input buffers Command Description mls qos srr-queue input threshold Assigns weighted tail-drop (WTD) threshold percentages to an ingress queue. show mls qos input-queue Displays ingress queue settings.
Page 448: Mls Qos Srr-Queue Input Cos-Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input cos-map mls qos srr-queue input cos-map Use the mls qos srr-queue input cos-map global configuration command on the switch stack or on a standalone switch to map class of service (CoS) values to an ingress queue or to map CoS values to a queue and to a threshold ID.
Page 449 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input cos-map Usage Guidelines The CoS assigned at the ingress port selects an ingress or egress queue and threshold. The drop-threshold percentage for threshold 3 is predefined. It is set to the queue-full state. You can assign two weighted tail-drop (WTD) threshold percentages to an ingress queue by using the mls qos srr-queue input threshold global configuration command.
Page 450: Mls Qos Srr-Queue Input Dscp-Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input dscp-map mls qos srr-queue input dscp-map Use the mls qos srr-queue input dscp-map global configuration command on the switch stack or on a standalone switch to map Differentiated Services Code Point (DSCP) values to an ingress queue or to map DSCP values to a queue and to a threshold ID.
Page 451 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input dscp-map Usage Guidelines The DSCP assigned at the ingress port selects an ingress or egress queue and threshold. The drop-threshold percentage for threshold 3 is predefined. It is set to the queue-full state. You can assign two weighted tail-drop (WTD) threshold percentages to an ingress queue by using the mls qos srr-queue input threshold global configuration command.
Page 452: Mls Qos Srr-Queue Input Priority-Queue
On the Catalyst 3750-X switch, the amount of bandwidth that can be guaranteed is restricted because a large value affects the entire stack and can degrade the stack performance.
Page 453 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input priority-queue Examples This example shows how to assign the ingress bandwidths for the queues in the stack. Queue 1 is the priority queue with 10 percent of the bandwidth allocated to it. The bandwidth ratio allocated to queues 1 and 2 is 4/(4+4).
Page 454: Mls Qos Srr-Queue Input Threshold
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input threshold mls qos srr-queue input threshold Use the mls qos srr-queue input threshold global configuration command on the switch stack or on a standalone switch to assign weighted tail-drop (WTD) threshold percentages to an ingress queue. Use the no form of this command to return to the default setting.
Page 455 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue input threshold Related Commands Command Description mls qos srr-queue input bandwidth Assigns shaped round robin (SRR) weights to an ingress queue. mls qos srr-queue input buffers Allocates the buffers between the ingress queues.
Page 456: Mls Qos Srr-Queue Output Cos-Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue output cos-map mls qos srr-queue output cos-map Use the mls qos srr-queue output cos-map global configuration command on the switch stack or on a standalone switch to map class of service (CoS) values to an egress queue or to map CoS values to a queue and to a threshold ID.
Page 457 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue output cos-map Usage Guidelines The drop-threshold percentage for threshold 3 is predefined. It is set to the queue-full state. The egress queue default settings are suitable for most situations. You should change them only when...
Page 458: Mls Qos Srr-Queue Output Dscp-Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue output dscp-map mls qos srr-queue output dscp-map Use the mls qos srr-queue output dscp-map global configuration command on the switch stack or on a standalone switch to map Differentiated Services Code Point (DSCP) values to an egress or to map DSCP values to a queue and to a threshold ID.
Page 459 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos srr-queue output dscp-map Usage Guidelines The drop-threshold percentage for threshold 3 is predefined. It is set to the queue-full state. The egress queue default settings are suitable for most situations. You should change them only when...
Page 460: Mls Qos Trust
Use the no form of this command to return a port to its untrusted state. mls qos trust [cos | device {cisco-phone | cts | ip-camera | media-player} | dscp | ip-precedence] no mls qos trust [cos | device | dscp | ip-precedence] Syntax Description (Optional) Classify an ingress packet by using the packet CoS value.
Page 461 The trusted boundary feature prevents security problems if users disconnect their PCs from networked Cisco IP Phones and connect them to the switch port to take advantage of trusted CoS or DSCP settings. You must globally enable the Cisco Discovery Protocol (CDP) on the switch and on the port connected to the IP phone.
Page 462: Mls Qos Vlan-Based
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mls qos vlan-based mls qos vlan-based Use the mls qos vlan-based interface configuration command on the switch stack or on a standalone switch to enable VLAN-based quality of service (QoS) on the physical port. Use the no form of this command to disable this feature.
Page 463: Mode
To return to the default settings, use the no form of the command. mode {redundant | power-shared} [strict] no mode This command is available only on Catalyst 3750-X switch stacks running the IP base or IP services Note feature set.
Page 464 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mode In redundant mode, the largest power supply is removed from the power pool to use as backup power in case one of the other power supplies fails. The available power budget is the total power minus the largest power supply.
Page 465: Monitor Session
(such as a Cisco IDS Sensor Appliance), to add or delete interfaces or VLANs to or from an existing SPAN or RSPAN session, and to limit (filter) SPAN source traffic to specific VLANs. Use the no form of this command to remove the SPAN or RSPAN session or to remove source or destination interfaces or filters from the SPAN or RSPAN session.
Page 466 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands monitor session dot1q vlan vlan-id Accept incoming packets with IEEE 802.1Q encapsulation with the specified VLAN as the default VLAN. Specify ingress forwarding using ISL encapsulation. untagged vlan vlan-id Accept incoming packets with untagged encapsulation with the specified VLAN as the default VLAN.
Page 467 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands monitor session Defaults No monitor sessions are configured. On a source interface, the default is to monitor both received and transmitted traffic. On a trunk interface used as a source port, all VLANs are monitored.
Page 468 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands monitor session VLAN filtering refers to analyzing network traffic on a selected set of VLANs on trunk source ports. By default, all VLANs are monitored on trunk source ports. You can use the monitor session session_number filter vlan vlan-id command to limit SPAN traffic on trunk source ports to only the specified VLANs.
Page 469 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands monitor session This example shows how to configure the destination port for ingress traffic on VLAN 5 by using a security device that supports IEEE 802.1Q encapsulation. Egress traffic replicates the source; ingress traffic uses IEEE 802.1Q encapsulation.
Page 470: Mvr (Global Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mvr (global configuration) mvr (global configuration) Use the mvr global configuration command without keywords on the switch stack or on a standalone switch to enable the multicast VLAN registration (MVR) feature on the switch. Use the command with...
Page 471 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mvr (global configuration) Command Modes Global configuration Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines A maximum of 256 MVR multicast groups can be configured on a switch.
Page 472 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mvr (global configuration) Related Commands Command Description mvr (interface configuration) Configures MVR ports. show mvr Displays MVR global parameters or port parameters. show mvr interface Displays the configured MVR interfaces with their type, status, and Immediate Leave configuration.
Page 473: Mvr (Interface Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mvr (interface configuration) mvr (interface configuration) Use the mvr interface configuration command on the switch stack or on a standalone switch to configure a Layer 2 port as a multicast VLAN registration (MVR) receiver or source port, to set the Immediate Leave feature, and to statically assign a port to an IP multicast VLAN and IP address.
Page 474 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mvr (interface configuration) Usage Guidelines Configure a port as a source port if that port should be able to both send and receive multicast data bound for the configured multicast groups. Multicast data is received on all ports configured as source ports.
Page 475 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands mvr (interface configuration) Related Commands Command Description mvr (global configuration) Enables and configures multicast VLAN registration on the switch. show mvr Displays MVR global parameters or port parameters. show mvr interface Displays the configured MVR interfaces or displays the multicast groups to which a receiver port belongs.
Page 476: Network-Policy
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands network-policy network-policy Use the network-policy interface configuration command to apply a network-policy profile to an interface. Use the no form of this command to remove the policy. network-policy profile number...
Page 477: Network-Policy Profile (Global Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands network-policy profile (global configuration) network-policy profile (global configuration) Use the network-policy profile global configuration command to create a network-policy profile and to enter network-policy configuration mode. Use the no form of this command to delete the policy and to return to global configuration mode.
Page 478: Network-Policy Profile (Network-Policy Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands network-policy profile (network-policy configuration) network-policy profile (network-policy configuration) Use the network-policy profile configuration mode command to configure the network-policy profile created by using the network-policy profile global configuration command. Use the no form of this command without additional parameters to delete a profile.
Page 479 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands network-policy profile (network-policy configuration) Examples This example shows how to configure the voice application type for VLAN 100 with a priority 4 CoS: Switch(config)# network-policy profile 1 Switch(config-network-policy)# voice vlan 100 cos 4...
Page 480: Nmsp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands nmsp nmsp Use the nmsp global configuration command to enable Network Mobility Services Protocol (NMSP) on the switch. Use the no form of this command to return to the default setting.
Page 481: Nmsp Attachment Suppress
Usage Guidelines Use the nmsp attachment suppress interface configuration command to configure an interface to not send location and attachment notifications to a Cisco Mobility Services Engine (MSE). Examples This example shows how to configure an interface to not send attachment information to the MSE:...
Page 482: No Authentication Logging Verbose
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands no authentication logging verbose no authentication logging verbose Use the no authentication logging verbose global configuration command on the switch stack or on a standalone switch to filter detailed information from authentication system messages.
Page 483: No Dot1X Logging Verbose
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands no dot1x logging verbose no dot1x logging verbose Use the no dot1x logging verbose global configuration command on the switch stack or on a standalone switch to filter detailed information from 802.1x system messages.
Page 484: No Mab Logging Verbose
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands no mab logging verbose no mab logging verbose Use the no mab logging verbose global configuration command on the switch stack or on a standalone switch to filter detailed information from MAC authentication bypass (MAB) system messages.
Page 485: Nsf
Use the nsf router configuration command on a switch stack or standalone switch to enable and configure Cisco nonstop forwarding (NSF) for Open Shortest Path First (OSPF) or Enhanced Interior Gateway Routing Protocol (EIGRP) routing. Use the no form of this command to disable NSF.
Page 486 For syntax information, select Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols, Release 12.2 > EIGRP Commands and Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols, Release 12.2 > OSFP Commands. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 487: Pagp Learn-Method
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands pagp learn-method pagp learn-method Use the pagp learn-method interface configuration command on the switch stack or on a standalone switch to learn the source address of incoming packets received from an EtherChannel port. Use the no form of this command to return to the default setting.
Page 488 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands pagp learn-method Examples This example shows how to set the learning method to learn the address on the physical port within the EtherChannel: Switch(config-if)# pagp learn-method physical-port This example shows how to set the learning method to learn the address on the port-channel within the...
Page 489: Pagp Port-Priority
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands pagp port-priority pagp port-priority Use the pagp port-priority interface configuration command on the switch stack or on a standalone switch to select a port over which all Port Aggregation Protocol (PAgP) traffic through the EtherChannel is sent.
Page 490 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands pagp port-priority Related Commands Command Description pagp learn-method Provides the ability to learn the source address of incoming packets. show pagp Displays PAgP channel-group information. show running-config Displays the operating configuration.
Page 491: Permit (Access-List Configuration Mode)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (access-list configuration mode) permit (access-list configuration mode) To enable smart logging in a named IP access list with deny conditions, use the permit command in access list configuration mode with the smartlog keyword. Matches to ACL entries are logged to a NetFlow collector.
Page 492 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (access-list configuration mode) Examples This example enables smart logging on a named access list with a permit condition: Switch(config)# ip access-list extended test1 Switch(config-ext-nacl)# permit ip host 10.1.1.3 any smartlog...
Page 493: Permit (Arp Access-List Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (ARP access-list configuration) permit (ARP access-list configuration) Use the permit Address Resolution Protocol (ARP) access-list configuration command to permit an ARP packet based on matches against the Dynamic Host Configuration Protocol (DHCP) bindings. Use the no form of this command to remove the specified access control entry (ACE) from the access control list.
Page 494 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (ARP access-list configuration) Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines You can add permit clauses to forward ARP packets based on some matching criteria. Examples This example shows how to define an ARP access list and to permit both ARP requests and ARP responses from a host with an IP address of 1.1.1.1 and a MAC address of 0000.0000.abcd:...
Page 495: Permit (Ipv6 Access-List Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (IPv6 access-list configuration) permit (IPv6 access-list configuration) Use the permit IPv6 access list configuration command on the switch stack or on a standalone switch to set permit conditions for an IPv6 access list. Use the no form of this command to remove the permit conditions.
Page 496 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (IPv6 access-list configuration) Syntax Description protocol Name or number of an Internet protocol. It can be one of the keywords ahp, esp, icmp, ipv6, pcp, sctp, tcp, or udp, or an integer in the range from 0 to 255 representing an IPv6 protocol number.
Page 497 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (IPv6 access-list configuration) (Optional) Send an informational logging message to the console about the packet that matches the entry. (The level of messages logged to the console is controlled by the logging console command.) The message includes the access list name and sequence number;...
Page 498 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (IPv6 access-list configuration) Defaults No IPv6 access list is defined. Command Modes IPv6 access-list configuration Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines The permit (IPv6 access-list configuration mode) command is similar to the permit (IPv4 access-list configuration mode) command, but it is IPv6-specific.
Page 499 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (IPv6 access-list configuration) This is a list of ICMP message names: beyond-scope destination-unreachable echo-reply echo-request header hop-limit mld-query mld-reduction mld-report nd-na nd-ns next-header no-admin no-route packet-too-big parameter-option parameter-problem port-unreachable...
Page 500 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (IPv6 access-list configuration) Related Commands Command Description ipv6 access-list Defines an IPv6 access list and enters IPv6 access list configuration mode. ipv6 traffic-filter Filters incoming or outgoing IPv6 traffic on an interface.
Page 501: Permit (Mac Access-List Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (MAC access-list configuration) permit (MAC access-list configuration) Use the permit MAC access-list configuration command on the switch stack or on a standalone switch to allow non-IP traffic to be forwarded if the conditions are matched. Use the no form of this command to remove a permit condition from the extended MAC access list.
Page 502 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (MAC access-list configuration) lsap lsap-number mask (Optional) Use the LSAP number (0 to 65535) of a packet with 802.2 encapsulation to identify the protocol of the packet. The mask is a mask of don’t care bits applied to the LSAP number before testing for a match.
Page 503 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands permit (MAC access-list configuration) Usage Guidelines You enter MAC access-list configuration mode by using the mac access-list extended global configuration command. If you use the host keyword, you cannot enter an address mask; if you do not use the any or host keywords, you must enter an address mask.
Page 504: Police
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands police police Use the police policy-map class configuration command on the switch stack or on a standalone switch to define a policer for classified traffic. A policer defines a maximum permissible rate of transmission, a maximum burst size for transmissions, and an action to take if either maximum is exceeded.
Page 505 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands police Examples This example shows how to configure a policer that drops packets if traffic exceeds 1 Mb/s average rate with a burst size of 20 KB. The DSCPs of incoming packets are trusted, and there is no packet modification.
Page 506: Police Aggregate
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands police aggregate police aggregate Use the police aggregate policy-map class configuration command on the switch stack or on a standalone switch to apply an aggregate policer to multiple classes in the same policy map. A policer defines a maximum permissible rate of transmission, a maximum burst size for transmissions, and an action to take if either maximum is exceeded.
Page 507 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands police aggregate Switch(config-pmap-c)# exit Switch(config-pmap)# class class3 Switch(config-pmap-c)# trust dscp Switch(config-pmap-c)# police aggregate agg_policer2 Switch(config-pmap-c)# exit You can verify your settings by entering the show mls qos aggregate-policer privileged EXEC command.
Page 508: Policy-Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands policy-map policy-map Use the policy-map global configuration command on the switch stack or on a standalone switch to create or modify a policy map that can be attached to multiple physical ports or switch virtual interfaces (SVIs) and to enter policy-map configuration mode.
Page 509 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands policy-map Only one policy map per ingress port or SVI is supported. You can apply the same policy map to multiple physical ports or SVIs. You can apply a nonhierarchical policy maps to physical ports or to SVIs. A nonhierarchical policy map is the same as a port-based policy maps in Catalyst 3750 and 3560 switches.
Page 510 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands policy-map Switch(config)# policy-map pm-test-int Switch(config-pmap)# class cm-test-int Switch(config-pmap-c)# police 18000000 8000 exceed-action drop Switch(config-pmap-c)# exit Switch(config-pmap)# exit Switch(config)# policy-map pm-test-pm-2 Switch(config-pmap)# class cm-non-int Switch(config-pmap-c)# set dscp 7 Switch(config-pmap-c)# service-policy pm-test-int...
Page 511: Port-Channel Load-Balance
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands port-channel load-balance port-channel load-balance Use the port-channel load-balance global configuration command on the switch stack or on a standalone switch to set the load-distribution method among the ports in the EtherChannel. Use the no form of this command to return to the default setting.
Page 512 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands port-channel load-balance Related Commands Command Description interface port-channel Accesses or creates the port channel. show etherchannel Displays EtherChannel information for a channel. show running-config Displays the operating configuration. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 513: Power Inline
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power inline power inline To configure the power management mode on Power over Ethernet (PoE) ports, use the power inline interface configuration command. To return to the default settings, use the no form of this command.
Page 514 If a port has a Cisco powered device connected to it, you should not use the power inline never command to configure the port. A false link-up can occur, placing the port in an error-disabled state.
Page 515 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power inline This example shows how to configure a PoE port on a switch to allow a class 1 or a class 2 powered device: Switch(config)# interface gigabitethernet1/0/2 Switch(config-if)# power inline auto max 7000...
Page 516: Power Inline Consumption
This command was introduced. Usage Guidelines When Cisco powered devices are connected to PoE ports, the switch uses Cisco Discovery Protocol (CDP) to determine the CDP-specific power consumption of the devices, which is the amount of power to allocate based on the CDP messages. The switch adjusts the power budget accordingly. This does not apply to IEEE third-party powered devices.
Page 517 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power inline consumption The initial allocation for Class 0, Class 3, and Class 4 powered devices is 15.4 W. When a device starts Note up and uses CDP or LLDP to send a request for more than 15.4 W, it can be allocated up to the maximum of 30 W.
Page 518 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power inline consumption %CAUTION: Interface Gi1/0/2: Misconfiguring the 'power inline consumption/allocation' command may cause damage to the switch and void your warranty. Take precaution not to oversubscribe the power supply.
Page 519: Power Inline Police
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power inline police power inline police To enable policing of real-time power consumption on a powered device, use the power inline police interface configuration command. To disable this feature, use the no form of this command...
Page 520 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power inline police The switch automatically sets the power usage of the device by using CDP power negotiation or by the IEEE classification and LLPD power negotiation. Use the first or second method in the previous list to manually configure the cutoff-power value by...
Page 521 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power inline police Examples This example shows how to enable policing of the power consumption and configuring the switch to generate a syslog message on the PoE port on a switch:...
Page 522: Power-Priority
{high value | low value | switch value} no power-priority {high | low | system} This command is available only on Catalyst 3750-X switch stacks running the IP base or IP services Note feature set.
Page 523 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power-priority Examples This is an example of setting the power priority for switch 1 in power stack a to 7, for the high-priority ports to 11, and for the low-priority ports to 20.
Page 524: Power Rps
To configure and manage the Cisco Redundant Power System 2300, also referred to as the RPS 2300, connected to a Catalyst 3750-E switch in a Catalyst 3750-X and 3750-E mixed switch stack, use the power rps user EXEC command.
Page 525 In a mixed stack with Catalyst 3750-X and 3750-E switches, one or more Catalyst 3750-E switches can be connected to a Cisco Redundant Power System 2300, also known as the RPS 2300. You can use the power rps command to configure and manage an RPS 2300 connected to a Catalyst 3750-E switch.
Page 526: Power Supply
Catalyst 3750-X switches. In a switch stack with only Catalyst 3750-X switches, you must specify the stack member before entering the reset {hard | soft} or slot {A | B} off or on keywords.
Page 527 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power supply This example shows how to set the power supply in slot A of stack member 2 in a switch stack to off: Switch> power supply 2 slot A off This example shows how to set power supply B of a standalone switch to on: Switch>...
Page 528: Power Xps (Global Configuration)
To configure a name for the Cisco eXpandable Power System 2200 (XPS 2200) that is connected to a Catalyst 3750-X or 3650-X switch, or to configure the XPS port used for the connection, use the power xps command in global configuration mode. To remove the name, use the no form of the command.
Page 529 You can verify your settings by entering the show env xps configuration or show env xps port privileged EXEC command. Examples This example shows how to configure the name of the XPS 2200 that is connected to a Catalyst 3750-X switch stack in a stack as a accounting: Switch> power xps 2 name accounting...
Page 530: Power Xps (Privileged Exec)
(privileged EXEC) power xps (privileged EXEC) To configure and manage the Cisco eXpandable Power System (XPS) 2200 connected to a Catalyst 3750-X or Catalyst 3650-X switch, use the power xps command in privileged EXEC mode. power xps switch-number {factory-default | port | reload {hard [force] | soft} | {supply {A | B}...
Page 531 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power xps (privileged EXEC) Usage Guidelines A power supply in RPS mode can supply power to only one failed power supply, regardless of the power level of the supply or the failed power supply. The smallest power supply in RPS mode must be equal to or greater than the largest switch power supply connected to an XPS port in RPS mode.
Page 532: Power Xps Port
To configure and manage a Cisco eXpandable Power System (XPS) 2200 port connected to a Catalyst 3750-X or Catalyst 3650-X switch, use the power xps port command in privileged EXEC mode. power xps switch-number port {port-number | connected} mode {enable | disable} | priority...
Page 533 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands power xps port Usage Guidelines The priority setting applies only to RPS mode. You configure stack power priority for the system and for high and low-priority ports by using the power-priority switch, power-priority high, and power-priority low commands in switch stack power configuration mode.
Page 534: Priority-Queue
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands priority-queue priority-queue Use the priority-queue interface configuration command to enable the egress expedite queue on a port. Use the no form of this command to return to the default setting.
Page 535 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands priority-queue This example shows how to disable the egress expedite queue after the SRR shaped and shared weights are configured. The shaped mode overrides the shared mode. Switch(config)# interface gigabitethernet1/0/2...
Page 536: Private-Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands private-vlan private-vlan Use the private-vlan VLAN configuration command on the switch stack or on a standalone switch to configure private VLANs and to configure the association between private-VLAN primary and secondary VLANs.
Page 537 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands private-vlan You can associate a secondary (isolated or community) VLAN with only one primary VLAN. A primary VLAN can have one isolated VLAN and multiple community VLANs associated with it.
Page 538 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands private-vlan Switch(config-vlan)# private-vlan association 501-503 Switch(config-vlan)# end You can verify your setting by entering the show vlan private-vlan or show interfaces status privileged EXEC command. Related Commands Command Description show interfaces...
Page 539: Private-Vlan Mapping
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands private-vlan mapping private-vlan mapping Use the private-vlan mapping interface configuration command on a switch virtual interface (SVI) on the switch stack or on a standalone switch to create a mapping between a private-VLAN primary and secondary VLANs so that both VLANs share the same primary VLAN SVI.
Page 540 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands private-vlan mapping Examples This example shows how to map the interface of VLAN 20 to the SVI of VLAN 18: Switch# configure terminal Switch# interface vlan 18 Switch(config-if)# private-vlan mapping 20...
Page 541: Psp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands To control the rate at which protocol packets are sent to the switch, use the psp global configuration command to specify the upper threshold for the packet flow rate. The supported protocols are Address Resolution Protocol (ARP), ARP snooping, Dynamic Host Configuration Protocol (DHCP) v4, DHCP snooping, Internet Group Management Protocol (IGMP), and IGMP snooping.
Page 542: Queue-Set
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands queue-set queue-set Use the queue-set interface configuration command on the switch stack or on a standalone switch to map a port to a queue-set. Use the no form of this command to return to the default setting.
Page 543: Radius-Server Dead-Criteria
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands radius-server dead-criteria radius-server dead-criteria Use the radius-server dead-criteria global configuration command on the switch stack or on a standalone switch to configure the conditions that determine when a RADIUS server is considered unavailable or dead.
Page 544 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands radius-server dead-criteria Related Commands Command Description dot1x critical (global configuration) Configures the parameters for the inaccessible authentication bypass feature. dot1x critical (interface Enables the inaccessible authentication bypass feature on an...
Page 545: Radius-Server Host
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands radius-server host radius-server host Use the radius-server host global configuration command on the switch stack or on a standalone switch to configure the RADIUS server parameters, including the RADIUS accounting and authentication. Use the no form of this command to return to the default settings.
Page 546 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands radius-server host Usage Guidelines We recommend that you configure the UDP port for the RADIUS accounting server and the UDP port for the RADIUS authentication server to nondefault values. Use the test username name keywords to enable automatic server testing of the RADIUS server status and to specify the username to be used.
Page 547: Rcommand
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rcommand rcommand Use the rcommand user EXEC command on the switch stack or on the cluster command switch to start a Telnet session and to execute commands on a cluster member switch from the cluster command switch or the switch stack.
Page 548 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rcommand The Catalyst 1900 and 2820 CLI is available only on switches running Enterprise Edition Software. This command will not work if the vty lines of the cluster command switch have access-class configurations.
Page 549: Reload
Use the reload privileged EXEC command to reload the stack member and to put a configuration change into effect. reload [LINE | at | cancel | in | slot stack-member-number | standby-cpu] Note This command is supported only on Catalyst 3750-X switches. Syntax Description LINE Specify the reason for the reload.
Page 550 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands reload Related Commands Command Description rcommand Accesses a specific stack member. switch priority Changes the stack member priority value. switch renumber Changes the stack member number. show switch Displays information about the switch stack and its stack members.
Page 551: Remote Command
Use the remote command privileged EXEC command to monitor all or specified stack members. remote command {all | stack-member-number} LINE This command is supported only on Catalyst 3750-X switches. Note Syntax Description Apply to all stack members.
Page 552 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands remote command Related Commands Command Description reload Accesses a specific stack member. switch priority Changes the stack member priority value. switch renumber Changes the stack member number. show switch Displays information about the switch stack and its stack members.
Page 553: Remote-Span
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands remote-span remote-span Use the remote-span VLAN configuration command on the switch stack or on a standalone switch to configure a VLAN as a Remote Switched Port Analyzer (RSPAN) VLAN. Use the no form of this command to remove the RSPAN designation from the VLAN.
Page 554 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands remote-span Examples This example shows how to configure a VLAN as an RSPAN VLAN. Switch(config)# vlan 901 Switch(config-vlan)# remote-span This example shows how to remove the RSPAN feature from a VLAN.
Page 555: Renew Ip Dhcp Snooping Database
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands renew ip dhcp snooping database renew ip dhcp snooping database Use the renew ip dhcp snooping database privileged EXEC command on the switch stack or on a standalone switch to renew the DHCP snooping binding database.
Page 556 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands renew ip dhcp snooping database Related Commands Command Description ip dhcp snooping Enables DHCP snooping on a VLAN. ip dhcp snooping binding Configures the DHCP snooping binding database. show ip dhcp snooping database Displays the status of the DHCP snooping database agent.
Page 557: Rep Admin Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep admin vlan rep admin vlan To configure a Resilient Ethernet Protocol (REP) administrative VLAN for REP to transmit hardware flood layer (HFL) message, use the rep admin vlan global configuration command. Use the no form of this command to return to the default configuration with VLAN 1 as the administrative VLAN.
Page 558: Rep Block Port
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep block port rep block port To configure Resilient Ethernet Protocol (REP) VLAN load balancing, use the rep block port interface configuration command on the REP primary edge port . Use the no form of this command to return to the default configuration.
Page 559 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep block port When you select an alternate port by entering an offset number, this number identifies the downstream neighbor port of an edge port. The primary edge port has an offset number of 1; positive numbers above 1 identify downstream neighbors of the primary edge port.
Page 560 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep block port Examples This example shows how to configure REP VLAN load balancing on the Switch B primary edge port (Gigabit Ethernet port 0/1) and to configure Gigabit Ethernet port 0/2 of Switch A as the alternate port to block VLANs 1 to 100.
Page 561 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep block port Related Commands Command Description rep preempt delay Configures a waiting period after a segment port failure and recovery before REP VLAN load balancing is triggered. rep preempt segment Manually starts REP VLAN load balancing on a segment.
Page 562: Rep Lsl-Age-Timer
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep lsl-age-timer rep lsl-age-timer To configure the Link Status Layer (LSL) age timer for the time period that the REP interface remains up without receiving a hello from the REP neighbor, use the rep lsl-age-timer interface configuration command on a Resilient Ethernet Protocol (REP) port.
Page 563: Rep Preempt Delay
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep preempt delay rep preempt delay To configure a waiting period after a segment port failure and recovery before Resilient Ethernet Protocol (REP) VLAN load balancing is triggered, use the rep preempt delay interface configuration command on the REP primary edge por .
Page 564 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep preempt delay Command Description rep block port Configures VLAN load balancing. show interfaces rep [detail] Displays REP configuration and status for all interfaces or the specified interface. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 565: Rep Preempt Segment
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep preempt segment rep preempt segment To manually start Resilient Ethernet Protocol (REP) VLAN load balancing on a segment, use the rep preempt segment privileged EXEC command. rep preempt segment segment_id...
Page 566: Rep Segment
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep segment rep segment To enable Resilient Ethernet Protocol (REP) on the interface and to assign a segment ID to it, use the rep segment interface configuration command. Use the no form of this command to disable REP on the interface.
Page 567 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep segment You must configure two edge ports on each REP segment, a primary edge port and a port to act as a secondary edge port. If you configure two ports in a segment as the primary edge port, for example, ports on different switches, the configuration is allowed, but the REP selects one of them to serve as the segment primary edge port.
Page 568 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep segment You can verify your settings by entering the show interfaces rep privileged EXEC command. To verify which port in the segment is the primary edge port, enter the show rep topology privileged EXEC command.
Page 569: Rep Stcn
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep stcn rep stcn To configure the port to send REP segment topology change notifications (STCNs) to another interface, use the rep stcn interface configuration command on a Resilient Ethernet Protocol (REP) edge port , to other segments, or to Spanning Tree Protocol (STP) networks.
Page 570 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rep stcn Related Commands Command Description show interfaces rep Displays REP configuration and status for all interfaces or the specified [detail] interface. Catalyst 3750-X and 3560-X Switch Command Reference 2-538...
Page 571: Replay-Protection
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands replay-protection replay-protection To configure replay protection for Media Access Control Security (MACsec), use the replay-protection window-size MKA policy configuration command. When replay protection is set, you must configure a window size in number of frames. Use the no form of the command to disable replay protection. Use the default form of this command to return to the default window size of 0 frames.
Page 572: Reserved-Only
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands reserved-only reserved-only Use the reserved-only DHCP pool configuration mode command to allocate only reserved addresses in the Dynamic Host Configuration Protocol (DHCP) address pool. Use the no form of the command to return to the default.
Page 573: Rmon Collection Stats
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands rmon collection stats Use the rmon collection stats interface configuration command on the switch stack or on a standalone switch to collect Ethernet group statistics, which include usage statistics about broadcast and multicast packets, and error statistics about cyclic redundancy check (CRC) alignment errors and collisions.
Page 574: Rsu
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands To configure redundant uplinks to the network during the rolling stack upgrade process, use the rsu command in interface configuration mode. Use the no form of this command to return to the default setting.
Page 575: Sdm Prefer
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands sdm prefer sdm prefer To configure the template used in Switch Database Management (SDM) resource allocation, use the sdm prefer command in global configuration mode. You can use a template to allocate system resources to best support the features being used in your application.
Page 576 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands sdm prefer Usage Guidelines You must reload the switch for the configuration to take effect. If you enter the show sdm prefer command before you enter the reload privileged EXEC command, the show sdm prefer command shows the template currently in use and the template that will become active after a reload.
Page 577 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands sdm prefer Table 2-23 lists the approximate number of each resource that is supported in each of the IPv4-only templates for a switch. The values in the template are based on 8 routed interfaces and 1024 VLANs and represent the approximate hardware boundaries set when a template is selected.
Page 578 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands sdm prefer Table 2-24 Approximate Feature Resources Allowed by Dual IPv4-IPv6 Templates (continued) Dual IPv4-and IPv6 Templates Indirect IPv4 and Resource Default VLAN Routing IPv6 Routing IPv6 multicast groups Directly connected IPv6 addresses 1.5 K...
Page 579: Service Password-Recovery
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands service password-recovery service password-recovery Use the service password-recovery global configuration command on the switch stack or on a standalone switch to enable the password-recovery mechanism (the default). This mechanism allows an end user with physical access to the switch to hold down the Mode button and interrupt the boot process while the switch is powering up and to assign a new password.
Page 580 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands service password-recovery If you use the no service password-recovery command to control end user access to passwords, we Note recommend that you save a copy of the config file in a location away from the switch in case the end user uses the password recovery procedure and sets the system back to default values.
Page 581: Service-Policy
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands service-policy service-policy Use the service-policy interface configuration command on the switch stack or on a standalone switch to apply a policy map defined by the policy-map command to the input of a physical port or a switch virtual interface (SVI).
Page 582 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands service-policy Examples This example shows how to apply plcmap1 to an physical ingress port: Switch(config)# interface gigabitethernet2/0/1 Switch(config-if)# service-policy input plcmap1 This example shows how to remove plcmap2 from a physical port:...
Page 583 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands service-policy Related Commands Command Description policy-map Creates or modifies a policy map that can be attached to multiple ports to specify a service policy. show policy-map Displays QoS policy maps.
Page 584: Session
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands session session Use the session privileged EXEC command on the stack master to access a specific stack member. session stack-member-number This command is supported only on Catalyst 3750-X switches. Note...
Page 585: Set
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands Use the set policy-map class configuration command on the switch stack or on a standalone switch to classify IP traffic by setting a Differentiated Services Code Point (DSCP) or an IP-precedence value in the packet.
Page 586 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands Examples This example shows how to assign DSCP 10 to all FTP traffic without any policers: Switch(config)# policy-map policy_ftp Switch(config-pmap)# class ftp_class Switch(config-pmap-c)# set dscp 10 Switch(config-pmap)# exit You can verify your settings by entering the show policy-map privileged EXEC command.
Page 587: Setup
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands setup setup Use the setup privileged EXEC command to configure the switch with its initial configuration. setup Syntax Description This command has no arguments or keywords. Command Modes Privileged EXEC...
Page 588 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands setup Would you like to enter basic management setup? [yes/no]: yes Configuring global parameters: Enter host name [Switch]:host-name The enable secret is a password used to protect access to privileged EXEC and configuration modes. This password, after entered, becomes encrypted in the configuration.
Page 589 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands setup cluster enable cluster-name Use this configuration? [yes/no]: yes [0] Go to the IOS command prompt without saving this config. [1] Return back to the setup without saving this config.
Page 590: Setup Express
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands setup express setup express Use the setup express global configuration command to enable Express Setup mode on the switch stack or on a standalone switch. Use the no form of this command to disable Express Setup mode.
Page 591 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands setup express Examples This example shows how to enable Express Setup mode: Switch(config)# setup express You can verify that Express Setup mode is enabled by pressing the Mode button: On an unconfigured switch, the LEDs above the Mode button turn solid green after 3 seconds.
Page 592: Show Access-Lists
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show access-lists show access-lists Use the show access-lists privileged EXEC command to display access control lists (ACLs) configured on the switch. show access-lists [name | number | hardware counters | ipc]...
Page 593 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show access-lists 20 permit ip host 10.46.22.128 any 30 permit ip host 10.45.101.64 any 40 permit ip host 10.45.20.64 any 50 permit ip host 10.213.43.128 any 60 permit ip host 10.91.28.64 any 70 permit ip host 10.99.75.128 any...
Page 594 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show access-lists L2 ACL OUTPUT Statistics Drop: All frame count: 0 Drop: All bytes count: 0 Drop And Log: All frame count: 0 Drop And Log: All bytes count: 0...
Page 595: Show Archive Status
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show archive status show archive status Use the show archive status privileged EXEC command to display the status of a new image being downloaded to a switch with the HTTP or the TFTP protocol.
Page 596: Show Arp Access-List
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show arp access-list show arp access-list Use the show arp access-list user EXEC command to display detailed information about Address Resolution Protocol (ARP) access control (lists). show arp access-list [acl-name]...
Page 597: Show Authentication
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show authentication show authentication Use the show authentication command (in either user EXEC or privileged EXEC mode) to display information about authentication manager events on the switch. show authentication {interface interface-id | registrations | sessions [session-id session-id]...
Page 598 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show authentication Table 2-25 show authentication Command Output Field Description Idle The session has been initialized and no methods have run yet. Running A method is running for this session.
Page 599 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show authentication 3 0 dot1x Runnable methods list: Handle Priority Name 3 0 dot1x This is an example of the show authentication sessions command: Switch# show authentication sessions Interface MAC Address...
Page 600 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show authentication authentication Sets the authorization manager mode on a port. host-mode authentication open Enables or disable open access on a port. authentication order Sets the order of authentication methods used on a port.
Page 601: Show Auto Qos
• show running-config • Examples This is an example of output from the show auto qos command after the auto qos voip cisco-phone and the auto qos voip cisco-softphone interface configuration commands are entered: Switch> show auto qos GigabitEthernet2/0/4 auto qos voip cisco-softphone...
Page 602 GigabitEthernet2/0/5 auto qos voip cisco-phone This is an example of output from the show running-config privileged EXEC command when the auto qos voip cisco-phone and the auto qos voip cisco-softphone interface configuration commands are entered: Switch# show running-config Building configuration...
Page 603 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show auto qos class-map match-all AutoQoS-VoIP-RTP-Trust match ip dscp ef class-map match-all AutoQoS-VoIP-Control-Trust match ip dscp cs3 af31 policy-map AutoQoS-Police-SoftPhone class AutoQoS-VoIP-RTP-Trust set dscp ef police 320000 8000 exceed-action policed-dscp-transmit...
Page 604 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show auto qos This is an example of output from the show auto qos interface interface-id command when the auto qos voip cisco-phone interface configuration command is entered: Switch> show auto qos interface gigabitethernet1/0/2...
Page 605: Show Boot
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show boot show boot Use the show boot privileged EXEC command to display the settings of the boot environment variables. show boot Syntax Description This command has no arguments or keywords.
Page 606 VM mode, reboots, and joins the switch stack. NVRAM/Config file buffer size In a switch stack, displays the buffer size that Cisco IOS uses to hold a copy of the configuration file in memory. The configuration file cannot be larger than the buffer size allocation.
Page 607 Specifies the software image to use in the auto-upgrade process. auto-download-sw This command is available only on stacking-capable switches. boot config-file Specifies the filename that Cisco IOS uses to read and write a nonvolatile copy of the system configuration. boot enable-break Enables interrupting the automatic boot process.
Page 608: Show Cable-Diagnostics Tdr
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cable-diagnostics tdr show cable-diagnostics tdr Use the show cable-diagnostics tdr privileged EXEC command to display the Time Domain Reflector (TDR) results. show cable-diagnostics tdr interface interface-id Syntax Description interface-id Specify the interface on which TDR was run.
Page 609 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cable-diagnostics tdr Table 2-28 Fields Descriptions for the show cable-diagnostics tdr Command Output (continued) Field Description Remote pair Name of the pair of wires to which the local pair is connected. TDR can learn about the remote pair only when the cable is properly connected and the link is up.
Page 610: Show Cdp Forward
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cdp forward show cdp forward To display the CDP forwarding table, use the show cdp forward user EXEC command. show cdp forward [entry | forward | interface interface-id | neighbor | traffic] This command is not supported on switches running the LAN base feature set.
Page 611: Show Cisp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cisp show cisp Use the show cisp privileged EXEC command to display CISP information for a specified interface. show cisp {[interface interface-id] | clients | summary} Syntax Description clients...
Page 612: Show Class-Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show class-map show class-map Use the show class-map user EXEC command to display quality of service (QoS) class maps, which define the match criteria to classify traffic. show class-map [class-map-name]...
Page 613: Show Cluster
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cluster show cluster Use the show cluster user EXEC command to display the cluster status and a summary of the cluster to which the switch belongs. This command can be entered on the cluster command switch and cluster member switches.
Page 614 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cluster This is an example of output when the show cluster command is entered on a cluster member switch that is configured as the standby cluster command switch: Switch> show cluster Member switch for cluster “hapuna”...
Page 615: Show Cluster Candidates
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cluster candidates show cluster candidates Use the show cluster candidates privileged EXEC command on a switch stack or on a cluster command switch to display a list of candidate switches.
Page 616 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cluster candidates This is an example of output from the show cluster candidates command that uses the MAC address of a cluster member switch directly connected to the cluster command switch: Switch>...
Page 617: Show Cluster Members
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cluster members show cluster members Use the show cluster members privileged EXEC command on a switch stack or on a cluster command switch to display information about the cluster members.
Page 618 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show cluster members Hops from command device: 0 Device 'tal-switch-14' with member number 1 Device type: cisco WS-C3548-XL MAC address: 0030.946c.d740 Upstream MAC address: 0002.4b29.2e00 (Cluster member 0) Local port:...
Page 619: Show Controllers Cpu-Interface
Modification 12.2(53)SE2 This command was introduced. Usage Guidelines This display provides information that might be useful for Cisco technical support representatives troubleshooting the switch. Examples This is a partial output example from the show controllers cpu-interface command: Switch# show controllers cpu-interface...
Page 620 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers cpu-interface Supervisor ASIC receive-queue parameters ---------------------------------------- queue 0 maxrecevsize 5EE pakhead 1419A20 paktail 13EAED4 queue 1 maxrecevsize 5EE pakhead 15828E0 paktail 157FBFC queue 2 maxrecevsize 5EE pakhead 1470D40 paktail 1470FE4 queue 3 maxrecevsize 5EE pakhead 19CDDD0 paktail 19D02C8 <output truncated>...
Page 621: Show Controllers Ethernet-Controller
This display without keywords provides traffic statistics, basically the RMON statistics for all interfaces or for the specified interface. When you enter the phy or port-asic keywords, the displayed information is useful primarily for Cisco technical support representatives troubleshooting the switch.
Page 622 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet-controller Examples This is an example of output from the show controllers ethernet-controller command for an interface. Table 2-29 describes the Transmit fields, and Table 2-30 describes the Receive fields.
Page 623 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet-controller Table 2-29 Transmit Field Descriptions (continued) Field Description 5 collision frames The number of frames that are successfully sent on an interface after five collisions occur. 6 collision frames The number of frames that are successfully sent on an interface after six collisions occur.
Page 624 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet-controller Table 2-30 Receive Field Descriptions Field Description Bytes The total amount of memory (in bytes) used by frames received on an interface, including the value and the incorrectly formed frames. This value excludes the frame header bits.
Page 625 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet-controller Table 2-30 Receive Field Descriptions (continued) Field Description Valid frames, too small The number of frames received on an interface that are smaller than 64 bytes (or 68 bytes for VLAN-tagged frames) and that have valid FCS values.
Page 626 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet-controller X2 Serial EEPROM Contents: Non-Volatile Register (NVR) Fields X2 MSA Version supported :0x1E NVR Size in bytes :0x100 Number of bytes used :0x100 Basic Field Address :0xB...
Page 627 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet-controller TransmitBufferInfo : 00012000 00000FFF 00000000 00000030 TransmitBufferCommonCount : 00000F7A TransmitBufferCommonCountPeak : 0000001E TransmitBufferCommonCommonEmpty : 000000FF NetworkActivity : 00000000 00000000 00000000 02400000 DroppedStatistics : 00000000 FrameLengthDeltaSelect : 00000001...
Page 628 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet-controller Related Commands Command Description show controllers Displays the state of the CPU network ASIC and send and receive statistics cpu-interface for packets reaching the CPU. show controllers tcam...
Page 629: Show Controllers Ethernet-Controller Fastethernet
Modification 12.2(53)SE2 This command was introduced. Usage Guidelines The output display provides information that might be useful for Cisco technical support representatives troubleshooting the switch. Examples This is an example of output from the show controllers ethernet-controller fastethernet 0 command.
Page 630 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet-controller fastethernet 0 3 collision frames 0 Oversize frames 0 4 collision frames 0 Undersize frames 0 5 collision frames 0 Collision fragments 0 6 collision frames 0 7 collision frames...
Page 631 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet-controller fastethernet This is an example of output from the show controllers ethernet-controller fastethernet 0 stack command on a stack member: Switch# show controller ethernet-controller fastethernet 0 stack...
Page 632: Show Controllers Ethernet Phy Macsec
Modification 12.2(53)SE2 This command was introduced. Usage Guidelines The displayed information is useful s for Cisco technical support representatives troubleshooting the switch. Examples This is an example output from the show controllers ethernet phy macsec counters command: Switch# show controllers ethernet g1/0/1 phy macsec counters...
Page 633 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers ethernet phy macsec ---------- TX SA Stats ---------- EGR_HIT : 0x682 EGR_PKT_PROT : 0x0 EGR_PKT_ENC : 0x682 ========== Port Stats ========== IGR_UNTAG : 0x0 IGR_NOTAG : 0x57B IGR_BADTAG...
Page 634: Show Controllers Power Inline
Though visible on all switches, this command is valid only for PoE switches. It provides no information for switches that do not support PoE. The output provides information that might be useful for Cisco technical support representatives troubleshooting the switch.
Page 635 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers power inline Pending event flag : N N N N N N N N N N N N N N N N Current State : 55 55 55 55 55 55 66 55...
Page 636: Show Controllers Tcam
Modification 12.2(53)SE2 This command was introduced. Usage Guidelines This display provides information that might be useful for Cisco technical support representatives troubleshooting the switch. Examples This is an example of output from the show controllers tcam command: Switch# show controllers tcam...
Page 637 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers tcam HRR0: 00000000_E000CAFC HRR1: 00000000_00000000 HRR2: 00000000_00000000 HRR3: 00000000_00000000 HRR4: 00000000_00000000 HRR5: 00000000_00000000 HRR6: 00000000_00000000 HRR7: 00000000_00000000 <output truncated> GMR31: FF_FFFFFFFF_FFFFFFFF GMR32: FF_FFFFFFFF_FFFFFFFF GMR33: FF_FFFFFFFF_FFFFFFFF ============================================================================= TCAM related PortASIC 1 registers...
Page 638: Show Controllers Utilization
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers utilization show controllers utilization Use the show controllers utilization user EXEC command to display bandwidth utilization on the switch or specific ports. show controllers [interface-id] utilization Syntax Description interface-id (Optional) ID of the switch interface.
Page 639 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show controllers utilization Table 2-31 show controllers utilization Field Descriptions Field Description Receive Bandwidth Percentage Displays the received bandwidth usage of the switch, which is the Utilization sum of the received traffic on all the ports divided by the switch receive capacity.
Page 640: Show Device-Sensor Cache
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show device-sensor cache show device-sensor cache To display Device Sensor cache entries, use the show device-sensor cache command in privileged EXEC mode. show device-sensor cache {mac mac-address | all} Syntax Description...
Page 641 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show device-sensor cache The following is sample output from the show device-sensor cache all command: Router# show device-sensor cache all Device: 001c.0f74.8480 on port GigabitEthernet2/1 -------------------------------------------------- Proto Type:Name Value dhcp...
Page 642: Show Diagnostic
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show diagnostic show diagnostic Use the show diagnostic user EXEC command to display the online diagnostic test results and the supported test suites. show diagnostic content switch [number | all]...
Page 643 The show diagnostic post command output is the same as the show post command output. In Catalyst 3750-X switch stacks, if you do not enter the switch number parameter with the content, result, schedule, and switch keywords, information for all stack members is displayed.
Page 644 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show diagnostic If you enter the show diagnostic content switch all command on a non-PoE-capable switch, Note information about test 7, TestInlinePwrCtlr, does not appear in the command output. This example shows how to display the diagnostic test results on a switch. You can also use the show diagnostic switch command to display these diagnostic results.
Page 645 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show diagnostic ___________________________________________________________________________ 1) TestPortAsicStackPortLoopback ---> . Error code ------------------> 0 (DIAG_SUCCESS) Total run count -------------> 19 Last test execution time ----> Mar 01 1993 00:21:46 First test failure time -----> n/a Last test failure time ------>...
Page 646 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show diagnostic Error code ------------------> 0 (DIAG_SUCCESS) Total run count -------------> 0 Last test execution time ----> n/a First test failure time -----> n/a Last test failure time ------> n/a Last test pass time --------->...
Page 647: Show Dot1Q-Tunnel
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show dot1q-tunnel show dot1q-tunnel Use the show dot1q-tunnel user EXEC command to display information about IEEE 802.1Q tunnel ports. show dot1q-tunnel [interface interface-id] Note This command is not supported on switches running the LAN base feature set.
Page 648: Show Dot1X
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show dot1x show dot1x Use the show dot1x user EXEC command to display IEEE 802.1x statistics, administrative status, and operational status for the switch or for the specified port. show dot1x [{all [summary] | interface interface-id} [details | statistics]]...
Page 649 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show dot1x ControlDirection = Both HostMode = SINGLE_HOST ReAuthentication = Disabled QuietPeriod = 60 ServerTimeout = 30 SuppTimeout = 30 ReAuthPeriod = 3600 (Locally configured) ReAuthMax MaxReq TxPeriod = 30 RateLimitPeriod <output truncated>...
Page 650 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show dot1x This is an example of output from the show dot1x interface interface-id details commmand when a port is assigned to a guest VLAN and the host mode changes to multiple-hosts mode:...
Page 651 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show dot1x Table 2-32 show dot1x statistics Field Descriptions (continued) Field Description TxReqId Number of Extensible Authentication Protocol (EAP)-request/identity frames that have been sent. TxTotal Number of Extensible Authentication Protocol over LAN (EAPOL) frames of any type that have been sent.
Page 652: Show Dtp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show dtp show dtp Use the show dtp privileged EXEC command to display Dynamic Trunking Protocol (DTP) information for the switch or for a specified interface. show dtp [interface interface-id]...
Page 653 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show dtp Related Commands Command Description show interfaces trunk Displays interface trunking information. Catalyst 3750-X and 3560-X Switch Command Reference 2-621 OL-29704-01...
Page 654: Show Eap
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show eap show eap Use the show eap privileged EXEC command to display Extensible Authentication Protocol (EAP) registration and session information for the switch or for the specified port. show eap {{registrations [method [name] | transport [name]]} | {sessions [credentials name...
Page 655 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show eap When you use the show eap sessions privileged EXEC command with these keywords, the command output shows this information: • None—All active EAP sessions. credentials name keyword—The specified credentials profile.
Page 656 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show eap This is an example of output from the show eap sessions interface interface-id privileged EXEC command: Switch# show eap sessions gigabitethernet1/0/1 Role: Authenticator Decision: Fail Lower layer: Dot1x-AuthenticaInterface:...
Page 657: Show Env
RPS 2300. Catalyst 3750 switch—the RPS 2300 or Cisco RPS 675 Redundant Power • System, also referred to as the RPS 675. Catalyst 3750-X and 3560-X switches do not connect to redundant power Note systems. stack Display all environmental status for each switch in the stack or for the specified [switch-number] switch.
Page 658 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show env Usage Guidelines Use the show env user EXEC command to display the information for the switch being accessed—a standalone switch or the stack master. Use this command with the stack and switch keywords to display all information for the stack or for the specified stack member.
Page 659 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show env FAN 1 is OK FAN 2 is OK PS-FAN1 is OK PS-FAN2 is OK TEMPERATURE is OK Temperature Value: 27 Degree Celsius Temperature State: GREEN Yellow Threshold : 49 Degree Celsius...
Page 660: Show Env Xps
To display budgeting, configuration, power, and system power information for the Cisco eXpandable Power System (XPS) 2200, use the show env xps command in privileged EXEC mode. show env xps {budgeting | configuration | port [all | number] | power | system | thermal | upgrade...
Page 661 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show env xps 1100 This is an example of output from the show env xps configuration command: Switch# show env xps configuration ============================================= XPS 0101.0100.0000 : ============================================= power xps port 4 priority 5...
Page 662 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show env xps C3KX-PWR-1100WAC LIT141307RK 1100 Not Present This is an example of output from the show env xps system command: Switch# show env xps system ============================================================================ XPS 0101.0100.0000 :...
Page 663: Configuration Command
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show env xps XPS Upgrade Xfer Status Prog ----------- ---- Receiving Switch# show env xps upgrade XPS Upgrade Xfer Status Prog ----------- ---- Reloading 100% Switch# *Mar 22 03:16:01.733: %PLATFORM_XPS-6-UPGRADE_DONE: XPS 0022.bdd7.9b14 upgrade has completed and the XPS is reloading.
Page 664: Show Errdisable Detect
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show errdisable detect show errdisable detect Use the show errdisable detect user EXEC command to display error-disabled detection status. show errdisable detect Syntax Description This command has no arguments or keywords.
Page 665 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show errdisable detect Related Commands Command Description errdisable detect cause Enables error-disabled detection for a specific cause or all causes. show errdisable flap-values Displays error condition recognition information. show errdisable recovery Displays error-disabled recovery timer information.
Page 666: Show Errdisable Flap-Values
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show errdisable flap-values show errdisable flap-values Use the show errdisable flap-values user EXEC command to display conditions that cause an error to be recognized for a cause. show errdisable flap-values Syntax Description This command has no arguments or keywords.
Page 667: Show Errdisable Recovery
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show errdisable recovery show errdisable recovery Use the show errdisable recovery user EXEC command to display the error-disabled recovery timer information. show errdisable recovery Syntax Description This command has no arguments or keywords.
Page 668 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show errdisable recovery Related Commands Command Description errdisable recovery Configures the recover mechanism variables. show errdisable detect Displays error-disabled detection status. show errdisable flap-values Displays error condition recognition information. show interfaces status Displays interface status or a list of interfaces in error-disabled state.
Page 669: Show Etherchannel
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show etherchannel show etherchannel Use the show etherchannel user EXEC command to display EtherChannel information for a channel. show etherchannel [channel-group-number {detail | port | port-channel | protocol | summary}]...
Page 670 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show etherchannel Examples This is an example of output from the show etherchannel 1 detail command: Switch> show etherchannel 1 detail Group state = L2 Ports: 2 Maxports = 16...
Page 671 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show etherchannel This is an example of output from the show etherchannel 1 summary command: Switch> show etherchannel 1 summary Flags: D - down P - in port-channel I - stand-alone s - suspended...
Page 672: Show Fallback Profile
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show fallback profile show fallback profile Use the show fallback profile privileged EXEC command to display the fallback profiles that are configured on a switch. show fallback profile Syntax Description This command has no arguments or keywords.
Page 673: Show Flowcontrol
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show flowcontrol show flowcontrol Use the show flowcontrol user EXEC command to display the flow control status and statistics. show flowcontrol [interface interface-id | module number] Syntax Description interface interface-id (Optional) Display the flow control status and statistics for a specific interface.
Page 674 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show flowcontrol Related Commands Command Description flowcontrol Sets the receive flow-control state for an interface. Catalyst 3750-X and 3560-X Switch Command Reference 2-642 OL-29704-01...
Page 675: Show Hw-Module Switch
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show hw-module switch show hw-module switch To display the configured port speed on the 10-Gigabit Ethernet slots on C3KX-NM-10GT network modules, use the show hw-module switch command in privileged EXEC mode.
Page 676 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show hw-module switch This is sample output showing the speed set for only port group 1 for all switches in a stack. The Active column specifies the speed at which the port is operating.
Page 677: Show Idprom Interface
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show idprom interface show idprom interface Use the show idprom user EXEC command to display the IDPROM information for the specified interface. show idprom interface interface-id [detail] Syntax Description interface interface-id Display the IDPROM information for the specified interface.
Page 678 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show idprom interface Standards Compliance Codes : 10GbE Code Byte 0 :0x0 =Unspecified 10GbE Code Byte 1 :0x0 SONET/SDH Code Byte 0 :0x0 SONET/SDH Code Byte 1 :0x0 SONET/SDH Code Byte 2 :0x0...
Page 679: Show Interfaces
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces show interfaces Use the show interfaces privileged EXEC command to display the administrative and operational status of all interfaces or a specified interface. show interfaces [interface-id | vlan vlan-id] [accounting | capabilities [module number] |...
Page 680 • interface. • On Catalyst 3750-X switches, use the show interfaces capabilities (with no module number or interface ID) to display the capabilities of all interfaces in the stack. • On Catalyst 3560-X switches, use the show interfaces capabilities (with no module number or interface ID) to display the capabilities of all interfaces on the switch.
Page 681 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces Encapsulation ARPA, loopback not set Keepalive set (10 sec) Auto-duplex, Auto-speed input flow-control is off, output flow-control is off ARP type: ARPA, ARP Timeout 04:00:00 Last input never, output never, output hang never Last clearing of "show interface"...
Page 682 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces UDLD: Inline power: SPAN: source/destination PortSecure: Dot1x: This is an example of output from the show interfaces interface description command when the interface has been described as Connects to Marketing by using the description interface configuration command.
Page 683 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces This is an example of partial output from the show interfaces status command. It displays the status of all interfaces. Switch# show interfaces status Port Name Status Vlan...
Page 684 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces Administrative private-vlan trunk private VLANs: none Operational private-vlan: none Trunking VLANs Enabled: ALL Pruning VLANs Enabled: 2-1001 Capture Mode Disabled Capture VLANs Allowed: ALL Protected: false Unknown unicast blocked: disabled...
Page 685 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces This is an example of output from the show interfaces switchport command for a port configured as a private VLAN promiscuous port. The primary VLAN 20 is mapped to secondary VLANs 25, 30 and 35:...
Page 686 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces When a Flex Link interface goes down (LINK_DOWN), VLANs preferred on this interface are moved to the peer interface of the Flex Link pair. In this example, if interface Gi2/0/6 goes down, Gi2/0/8 carries all VLANs of the Flex Link pair.
Page 687 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces This is an example of output from the show interfaces interface-id transceiver properties command: Switch# show interfaces gigabitethernet1/0/1 transceiver properties Name : Gi1/0/1 Administrative Speed: auto Operational Speed: auto...
Page 688 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces This is an example of output from the show interfaces tengigabitethernet interface-id transceiver detail command: Switch# show interfaces tengigabitethernet1/0/1 transceiver detail Transceiver monitoring is disabled for all interfaces.
Page 689 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces Related Commands Command Description switchport access Configures a port as a static-access or a dynamic-access port. switchport block Blocks unknown unicast or multicast traffic on an interface. switchport backup interface Configures Flex Links, a pair of Layer 2 interfaces that provide mutual backup.
Page 690: Show Interfaces Counters
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces counters show interfaces counters Use the show interfaces counters privileged EXEC command to display various counters for the switch or for a specific interface. show interfaces [interface-id | vlan vlan-id] counters [errors | etherchannel | module switch-...
Page 691 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces counters This is an example of partial output from the show interfaces counters module command for stack member 2. It displays all counters for the specified switch in the stack.
Page 692: Show Interfaces Rep
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces rep show interfaces rep To display Resilient Ethernet Protocol (REP) configuration and status for a specified interface or for all interfaces, use the show interfaces rep user EXEC command.
Page 693 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces rep GigabitEthernet0/2 REP enabled Segment-id: 1 (Segment) PortID: 00030019E85BDD00 Preferred flag: No Operational Link Status: INIT_DOWN Current Key: 00000000000000000000 Port Role: Fail Blocked VLAN: 1-4094 Admin-vlan: 1 Preempt Delay Timer: disabled...
Page 694: Show Interfaces Transceivers
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces transceivers show interfaces transceivers Use the show interfaces transceivers privileged EXEC command to display the physical properties of a small form-factor pluggable (SFP) module interface. show interfaces [interface-id] transceiver [detail | dom-supported-list | module number |...
Page 695 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces transceivers ------- ------------------ ---------- --------- --------- --------- Gi1/0/3 41.5 110.0 103.0 -8.0 -12.0 High Alarm High Warn Low Warn Low Alarm Voltage Threshold Threshold Threshold Threshold Port (Volts)
Page 696 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show interfaces transceivers Max1 3.50 6.00 5.50 DWDM SFP Min1 -0.50 -28.50 3.00 Min2 -0.30 -28.29 3.09 Max2 4.30 -9.50 3.59 Max1 4.50 9.30 3.70 RX only WDM GBIC Min1 -28.50...
Page 697: Show Inventory
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show inventory show inventory Use the show inventory user EXEC command to display product identification (PID) information for the hardware. show inventory [entity-name | raw] Syntax Description entity-name (Optional) Display the specified entity. For example, enter the interface (such as gigabitethernet1/0/1) into which a small form-factor pluggable (SFP) module is installed.
Page 698: Show Ip Arp Inspection
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip arp inspection show ip arp inspection Use the show ip arp inspection privileged EXEC command to display the configuration and the operating state of dynamic Address Resolution Protocol (ARP) inspection or the status of this feature for all VLANs or for the specified interface or VLAN.
Page 699 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip arp inspection Vlan Configuration Operation ACL Match Static ACL ---- ------------- --------- --------- ---------- Enabled Active deny-all Vlan ACL Logging DHCP Logging Probe Logging ---- ----------- ------------ -------------...
Page 700 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip arp inspection If the log buffer overflows, it means that a log event does not fit into the log buffer, and the display for the show ip arp inspection log privileged EXEC command is affected. A -- in the display appears in place of all data except the packet count and the time.
Page 701 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip arp inspection This is an example of output from the show ip arp inspection vlan 5 command. It shows the configuration and the operating state of dynamic ARP inspection for VLAN 5.
Page 702: Show Ip Dhcp Snooping
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip dhcp snooping show ip dhcp snooping Use the show ip dhcp snooping user EXEC command to display the DHCP snooping configuration. show ip dhcp snooping Syntax Description This command has no arguments or keywords.
Page 703 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip dhcp snooping binding show ip dhcp snooping binding Use the show ip dhcp snooping binding user EXEC command to display the DHCP snooping binding database and configuration information for all interfaces on a switch.
Page 704 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip dhcp snooping binding This example shows how to display the DHCP snooping binding entries on a port: Switch> show ip dhcp snooping binding interface gigabitethernet2/0/2 MacAddress IpAddress Lease(sec)
Page 705: Show Ip Dhcp Snooping Database
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip dhcp snooping database show ip dhcp snooping database Use the show ip dhcp snooping database user EXEC command to display the status of the DHCP snooping binding database agent.
Page 706 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip dhcp snooping database This is an example of output from the show ip dhcp snooping database detail command: Switch# show ip dhcp snooping database detail Agent URL : tftp://10.1.1.1/directory/file...
Page 707: Show Ip Dhcp Snooping Statistics
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip dhcp snooping statistics show ip dhcp snooping statistics Use the show ip dhcp snooping statistics user EXEC command to display DHCP snooping statistics in summary or detail form.
Page 708 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip dhcp snooping statistics Table 2-36 DHCP Snooping Statistics DHCP Snooping Statistic Description Packets Processed by DHCP Snooping Total number of packets handled by DHCP snooping, including forwarded and dropped packets.
Page 709 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip dhcp snooping statistics Table 2-36 DHCP Snooping Statistics (continued) DHCP Snooping Statistic Description Interface Down Number of times the packet is a reply to the DHCP relay agent, but the SVI interface for the relay agent is down.
Page 710: Show Ip Igmp Profile
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip igmp profile show ip igmp profile Use the show ip igmp profile privileged EXEC command to display all configured Internet Group Management Protocol (IGMP) profiles or a specified IGMP profile.
Page 711: Show Ip Igmp Snooping
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip igmp snooping show ip igmp snooping Use the show ip igmp snooping user EXEC command to display the Internet Group Management Protocol (IGMP) snooping configuration of the switch or the VLAN.
Page 712 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip igmp snooping This is an example of output from the show ip igmp snooping command. It displays snooping characteristics for all VLANs on the switch. Switch> show ip igmp snooping...
Page 713: Show Ip Igmp Snooping Groups
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip igmp snooping groups show ip igmp snooping groups Use the show ip igmp snooping groups privileged EXEC command to display the Internet Group Management Protocol (IGMP) snooping multicast table for the switch or the multicast information. Use with the vlan keyword to display the multicast table for a specified multicast VLAN or specific multicast information.
Page 714 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip igmp snooping groups Examples This is an example of output from the show ip igmp snooping groups command without any keywords. It displays the multicast table for the switch.
Page 715: Show Ip Igmp Snooping Mrouter
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip igmp snooping mrouter show ip igmp snooping mrouter Use the show ip igmp snooping mrouter privileged EXEC command to display the Internet Group Management Protocol (IGMP) snooping dynamically learned and manually configured multicast router ports for the switch or for the specified multicast VLAN.
Page 716: Show Ip Igmp Snooping Querier
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip igmp snooping querier show ip igmp snooping querier Use the show ip igmp snooping querier detail user EXEC command to display the configuration and operation information for the IGMP querier configured on a switch.
Page 717 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip igmp snooping querier This is an example of output from the show ip igmp snooping querier detail command: Switch> show ip igmp snooping querier detail Vlan IP Address...
Page 718: Show Ip Source Binding
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip source binding show ip source binding Use the show ip source binding user EXEC command to display the IP source bindings on the switch. show ip source binding [ip-address] [mac-address] [dhcp-snooping | static] [interface...
Page 719: Show Ip Verify Source
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip verify source show ip verify source Use the show ip verify source user EXEC command to display the IP source guard configuration on the switch or on a specific interface.
Page 720 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ip verify source This is an example of output on an interface on which IP source guard is disabled: Switch> show ip verify source gigabitethernet1/0/6 IP source guard is not configured on the interface gi1/0/6.
Page 721: Show Ipc
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipc show ipc Use the show ipc user EXEC command to display Interprocess Communications Protocol (IPC) configuration, status, and statistics on a switch stack or a standalone switch. show ipc {mcast {appclass | groups | status} | nodes | ports [open] | queue | rpc | session {all | rx | tx} [verbose] | status [cumlulative] | zones} This command is not supported on switches running the LAN base feature set.
Page 722 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipc Examples This example shows how to display the IPC routing status: Switch> show ipc mcast status IPC Mcast Status Total Frames Total control Frames Total Frames dropped Total control Frames dropped...
Page 723 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipc This example shows how to display the contents of the IPC retransmission queue: Switch> show ipc queue There are 0 IPC messages waiting for acknowledgement in the transmit queue.
Page 724 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipc This example shows how to display the status of the local IPC server: Switch> show ipc status cumulative IPC System Status Time last IPC stat cleared :never This processor is the IPC master server.
Page 725: Show Ipv6 Access-List
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 access-list show ipv6 access-list Use the show ipv6 access-list user EXEC command to display the contents of all current IPv6 access lists. show ipv6 access-list [access-list-name] Syntax Description access-list-name (Optional) Name of access list.
Page 726 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 access-list Table 2-37 show ipv6 access-list Field Descriptions (continued) Field Description bgp (matches) Border Gateway Protocol. The protocol type that the packet is equal to and the number of matches.
Page 727: Show Ipv6 Dhcp Conflict
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 dhcp conflict show ipv6 dhcp conflict Use the show ipv6 dhcp conflict privileged EXEC command on the switch stack or on a standalone switch to display address conflicts found by a Dynamic Host Configuration Protocol for IPv6 (DHCPv6) server when addresses are offered to the client.
Page 728: Show Ipv6 Mld Snooping
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 mld snooping show ipv6 mld snooping Use the show ipv6 mld snooping user EXEC command to display IP version 6 (IPv6) Multicast Listener Discovery (MLD) snooping configuration of the switch or the VLAN.
Page 729 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 mld snooping This is an example of output from the show ipv6 mld snooping command. It displays snooping characteristics for all VLANs on the switch. Switch> show ipv6 mld snooping...
Page 730: Show Ipv6 Mld Snooping Address
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 mld snooping address show ipv6 mld snooping address Use the show ipv6 mld snooping address user EXEC command to display all or specified IP Version 6 (IPv6) multicast address information maintained by Multicast Listener Discovery (MLD) snooping.
Page 731 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 mld snooping address This is an example of output from the show snooping address user user EXEC command: Switch> show ipv6 mld snooping address user Vlan Group Type Version Port List...
Page 732: Show Ipv6 Mld Snooping Mrouter
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 mld snooping mrouter show ipv6 mld snooping mrouter Use the show ipv6 mld snooping mrouter user EXEC command to display dynamically learned and manually configured IP version 6 (IPv6) Multicast Listener Discovery (MLD) router ports for the switch or a VLAN.
Page 733 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 mld snooping mrouter Related Commands Command Description ipv6 mld snooping Enables and configures MLD snooping on the switch or on a VLAN. ipv6 mld snooping vlan mrouter Configures multicast router ports for a VLAN.
Page 734: Show Ipv6 Mld Snooping Querier
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 mld snooping querier show ipv6 mld snooping querier Use the show ipv6 mld snooping querier user EXEC command to display IP version 6 (IPv6) Multicast Listener Discovery (MLD) snooping querier-related information most recently received by the switch or the VLAN.
Page 735 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 mld snooping querier This is an example of output from the show ipv6 mld snooping querier detail command: Switch> show ipv6 mld snooping querier detail Vlan IP Address...
Page 736: Show Ipv6 Route Updated
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 route updated show ipv6 route updated Use the show ipv6 route updated command in user EXEC command to display the current contents of the IPv6 routing table. show ipv6 route [protocol] updated [boot-up] {hh:mm | day {month [hh:mm]} [{hh:mm | day{month [hh:mm]}] This command is not supported on switches running the LAN base feature set.
Page 737 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show ipv6 route updated Usage Guidelines Use the show ipv6 route privileged EXEC command to display the current contents of the IPv6 routing table. Examples This is an example of output from the show ipv6 route updated rip command.
Page 738: Show L2Protocol-Tunnel
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show l2protocol-tunnel show l2protocol-tunnel Use the show l2protocol-tunnel user EXEC command to display information about Layer 2 protocol tunnel ports. Displays information for interfaces with protocol tunneling enabled. show l2protocol-tunnel [interface interface-id] [summary] Note This command is not supported on switches running the LAN base feature set.
Page 739 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show l2protocol-tunnel udld ---- ---- 897960 Gi3/0/4 ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- pagp 1000 ---- 24249 242700 lacp ---- ----...
Page 740: Show Lacp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show lacp show lacp Use the show lacp user EXEC command to display Link Aggregation Control Protocol (LACP) channel-group information. show lacp [channel-group-number] {counters | internal | neighbor | sys-id}...
Page 741 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show lacp Table 2-38 show lacp counters Field Descriptions Field Description LACPDUs Sent and Recv The number of LACP packets sent and received by a port. Marker Sent and Recv The number of LACP marker packets sent and received by a port.
Page 742 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show lacp Table 2-39 show lacp internal Field Descriptions (continued) Field Description Port Number Port number. Port State State variables for the port, encoded as individual bits within a single octet with these...
Page 743 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show lacp Related Commands Command Description clear lacp Clears the LACP channel-group information. lacp port-priority Configures the LACP port priority. lacp system-priority Configures the LACP system priority. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 744: Show Link State Group
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show link state group show link state group Use the show link state group privileged EXEC command to display the link-state group information. show link state group [number] [detail] Syntax Description number (Optional) Number of the link-state group.
Page 745 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show link state group Related Commands Command Description link state group Configures an interface as a member of a link-state group. link state track Enables a link-state group. show running-config Displays the operating configuration.
Page 746: Show Location
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show location show location Use the show location user EXEC command to display location information for an endpoint. show location admin-tag show location civic-location {identifier id number | interface interface-id | static}...
Page 747 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show location This is an example of output from the show location civic-location command that displays all the civic location information: Switch> show location civic-location static Civic location information --------------------------...
Page 748: Show Logging Onboard
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show logging onboard show logging onboard Use the show logging onboard privileged EXEC command to display the on-board failure logging (OBFL) information. show logging onboard [module [switch-number]] {{clilog | environment | message | poe |...
Page 749 When using the module switch-number parameter, follow these guidelines: • On a Catalyst 3750-X switch, if you enter the module keyword but do not enter the switch number, the switch displays OBFL information about the stack members that support OBFL.
Page 750 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show logging onboard This is an example of output from the show logging onboard message command: Switch# show logging onboard message -------------------------------------------------------------------------------- ERROR MESSAGE SUMMARY INFORMATION -------------------------------------------------------------------------------- Facility-Sev-Name | Count | Persistence Flag...
Page 751 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show logging onboard Application name poe : Path : obfl0: CLI enable status : enabled Platform enable status: enabled Application name temperature : Path : obfl0: CLI enable status : enabled...
Page 752 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show logging onboard Current slot Current uptime 0 years 0 weeks 0 days 0 hours 55 minutes -------------------------------------------------------------------------------- Reset Reason | Count -------------------------------------------------------------------------------- No historical data to display -------------------------------------------------------------------------------- This is an example of output from the show logging onboard voltage summary command:...
Page 753: Show Logging Smartlog
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show logging smartlog show logging smartlog To display smart logging information, use the show logging smartlog command in privileged EXEC mode. show logging smartlog [event-ids | events | statistics {interface interface-id | summary}]...
Page 754 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show logging smartlog pkt-section: 9CAFCA7F3E4300000700011108004500002E0000000040060CBFAC140B70AC140A731875005000000000000000 005000000023050000000102030405 Event: IPSG Extended Event:IPSG_DENY Interface: Gi1/0/2 Input Vlan: 3 Timestamp: 05:06:37 UTC Mar 2 1993 pkt-section: FFFFFFFFFFFF00000700011108004500002E0000000040FFC257AC140B66FFFFFFFF000102030405060708090A 0B0C0D0E0F10111213141516171819 This is an example of output from the show logging smartlog event-ids command:...
Page 755 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show logging smartlog This is an example of output from the show logging smartlog summary command: Switch# show logging smartlog statistics summary Total number of logged packets: 0 Total number of DHCP Snooping logged packets: 0...
Page 756: Show Mac Access-Group
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac access-group show mac access-group Use the show mac access-group user EXEC command to display the MAC access control lists (ACLs) configured for an interface or a switch. show mac access-group [interface interface-id]...
Page 757: Show Mac Address-Table
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands \show mac address-table show mac address-table Use the show mac address-table user EXEC command to display a specific MAC address table static and dynamic entry or the MAC address table static and dynamic entries on a specific interface or VLAN.
Page 758 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands \show mac address-table Command Description show mac address-table notification Displays the MAC address notification settings for all interfaces or the specified interface. show mac address-table static Displays static MAC address table entries only.
Page 759: Show Mac Address-Table Address
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table address show mac address-table address Use the show mac address-table address user EXEC command to display MAC address table information for the specified MAC address. show mac address-table address mac-address [interface interface-id] [vlan vlan-id]...
Page 760: Show Mac Address-Table Aging-Time
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table aging-time show mac address-table aging-time Use the show mac address-table aging-time user EXEC command to display the aging time of a specific address table instance, all address table instances on a specified VLAN or, if a specific VLAN is not specified, on all VLANs.
Page 761 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table aging-time Command Description show mac address-table static Displays static MAC address table entries only. show mac address-table vlan Displays the MAC address table information for the specified VLAN.
Page 762: Show Mac Address-Table Count
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table count show mac address-table count Use the show mac address-table count user EXEC command to display the number of addresses present in all VLANs or the specified VLAN.
Page 763: Show Mac Address-Table Dynamic
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table dynamic show mac address-table dynamic Use the show mac address-table dynamic user EXEC command to display only dynamic MAC address table entries. show mac address-table dynamic [address mac-address] [interface interface-id] [vlan vlan-id]...
Page 764: Show Mac Address-Table Interface
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table interface show mac address-table interface Use the show mac address-table interface user command to display the MAC address table information for the specified interface in the specified VLAN.
Page 765: Show Mac Address-Table Learning
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table learning show mac address-table learning Use the show mac address-table learning user EXEC command to display the status of MAC address learning for all VLANs or the specified VLAN.
Page 766: Show Mac Address-Table Move Update
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table move update show mac address-table move update Use the show mac address-table move update user EXEC command to display the MAC address-table move update information on the switch.
Page 767: Show Mac Address-Table Notification
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table notification show mac address-table notification Use the show mac address-table notification user EXEC command to display the MAC address notification settings for all interfaces or the specified interface.
Page 768 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table notification History Index 1, Entry Timestamp 1038254, Despatch Timestamp 1038254 MAC Changed Message : Operation: Added Vlan: 2 MAC Addr: 0000.0000.0000 Module: 0 Port: 1 Operation: Added Vlan: 2 MAC Addr: 0000.0000.0002 Module: 0...
Page 769: Show Mac Address-Table Static
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table static show mac address-table static Use the show mac address-table static user EXEC command to display only static MAC address table entries. show mac address-table static [address mac-address] [interface interface-id] [vlan vlan-id]...
Page 770 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table static Command Description show mac address-table count Displays the number of addresses present in all VLANs or the specified VLAN. show mac address-table dynamic Displays dynamic MAC address table entries only.
Page 771: Show Mac Address-Table Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table vlan show mac address-table vlan Use the show mac address-table vlan user EXEC command to display the MAC address table information for the specified VLAN. show mac address-table vlan vlan-id...
Page 772 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mac address-table vlan Command Description show mac address-table notification Displays the MAC address notification settings for all interfaces or the specified interface. show mac address-table static Displays static MAC address table entries only.
Page 773: Show Macsec
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show macsec show macsec To display 802.1ae Media Access Control Security (MACsec) information, use the show macsec privileged EXEC command. show macsec {interface interface-id | summary} Syntax Description interface interface-id Displays MACsec interface details.
Page 774 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show macsec Current AN: 0 Previous AN: -1 SC Statistics Auth-only (0 / 0) Encrypt (1910 / 0) Receive Secure Channels SCI : 001B2140EC4C0000 Elapsed time : 00:00:00 Current AN: 0...
Page 775: Show Mka Default-Policy
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka default-policy show mka default-policy To display information about the MACsec Key Agreement (MKA) Protocol default policy, use the show mka default-policy privileged EXEC command show mka default-policy [sessions] [detail]...
Page 776 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka default-policy This is sample output of the show mka default-policy sessions command: Switch# show mka default-policy sessions Summary of All Active MKA Sessions with MKA Policy "*DEFAULT POLICY*"...
Page 777: Show Mka Policy
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka policy show mka policy To display a summary of all defined MACsec Key Agreement (MKA) protocol policies, including the MKA default policy, or to display a summary of a specified policy, use the show mka policy privileged EXEC command.
Page 778 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka policy Table 2-41 show mka policy Output FIelds Field Description Policy Name The string identifier of the policy. KS Priority The set value of the priority for becoming the key server (KS). The range is 0 to 255, with 0 as the highest priority and 255 as the lowest priority.
Page 779 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka policy Related Commands Command Description mka policy (global Creates an MKA policy and enters MKA policy configuration mode. configuration) mka policy (interface Applies an MKA policy to the interface.
Page 780: Show Mka Session
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka session show mka session To display a summary of active MACsec Key Agreement (MKA) Protocol sessions, use the show mka session privileged EXEC command. show mka session [interface interface-id] [port-id port-id]] [local-sci sci]...
Page 781 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka session Table 2-42 show mka session Output Fields Field Description Interface The short name of the physical interface on which the MKA session is active. Peer-RxSCI The MAC address of the interface of the peer concatenated with the peer 16-bit Port-ID.
Page 782 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka session Live Peers List: Rx-SCI (Peer) --------------------------------------------------------- DA296D3E62E0961234BF39A6 001b.2140.ec4c/0000 Potential Peers List: Rx-SCI (Peer) --------------------------------------------------------- This is sample output of the show mka session interface command: Switch# show mka session interface gigabitethernet1/0/25 Summary of All Currently Active MKA Sessions on Interface GigabitEthernet1/0/25.
Page 783: Show Mka Statistics
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka statistics show mka statistics To display global MACsec Key Agreement (MKA) Protocol statistics and error counters from active and previous MKA sessions, use the show mka statistics privileged EXEC command...
Page 784 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka statistics "Distributed SAK"..0 "Distributed CAK"..0 MKPDUs Transmitted..597 "Distributed SAK"..32 "Distributed CAK"..0 MKA Error Counter Totals ======================== Bring-up Failures....0 Reauthentication Failures..0 SAK Failures SAK Generation....
Page 785 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka statistics Table 2-43 show mka Global Statistics Output Fields (continued) Field Description MPDUs Validated & Rx MACsec Key Agreement Protocol Data Units (MPDUs) received and validated. MPDUs Transmitted Transmitted MPDUs.
Page 786: Show Mka Summary
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka summary show mka summary To display a summary of MACsec Key Agreement (MKA) sessions and global statistics, use the show mka summary privileged EXEC command. show mka summary Syntax Description This command has no arguments or keywords.
Page 787 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka summary "Distributed CAK"..0 MKA Error Counter Totals ======================== Internal Failures....0 Session Failures Failed while Initializing..6 Failed while Pending MACsec... 2 Reauthentication Failure..0 SAK Failures SAK Generation....
Page 788 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mka summary Table 2-44 show mka summary Output Fields Field Description SAKs Received Received SAKs while acting as a nonkey server member in any CA. MPDUs Validated & Rx MACsec Key Agreement Protocol Data Units (MPDUs) received and validated.
Page 789: Show Mls Qos
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos show mls qos Use the show mls qos user EXEC command to display global quality of service (QoS) configuration information. show mls qos Syntax Description This command has no arguments or keywords.
Page 790: Show Mls Qos Aggregate-Policer
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos aggregate-policer show mls qos aggregate-policer Use the show mls qos aggregate-policer user EXEC command to display the quality of service (QoS) aggregate policer configuration. A policer defines a maximum permissible rate of transmission, a maximum burst size for transmissions, and an action to take if either maximum is exceeded.
Page 791: Show Mls Qos Input-Queue
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos input-queue show mls qos input-queue Use the show mls qos input-queue user EXEC command to display quality of service (QoS) settings for the ingress queues. show mls qos input-queue Syntax Description This command has no arguments or keywords.
Page 792: Show Mls Qos Interface
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos interface show mls qos interface Use the show mls qos interface user EXEC command to display quality of service (QoS) information at the port level. show mls qos interface [interface-id] [buffers | queueing | statistics]...
Page 793 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos interface This is an example of output from the show mls qos interface interface-id command when VLAN-based QoS is disabled: Switch> show mls qos interface gigabitethernet1/0/2 GigabitEthernet1/0/2...
Page 794 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos interface dscp: outgoing ------------------------------- 363949 10 - 14 : 15 - 19 : 20 - 24 : 25 - 29 : 30 - 34 : 35 - 39 :...
Page 795 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos interface Command Description mls qos srr-queue input threshold Assigns WTD threshold percentages to an ingress queue. mls qos srr-queue output cos-map Maps CoS values to an egress queue or maps CoS values to a queue and to a threshold ID.
Page 796: Show Mls Qos Maps
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos maps show mls qos maps Use the show mls qos maps user EXEC command to display quality of service (QoS) mapping information. During classification, QoS uses the mapping tables to represent the priority of the traffic and to derive a corresponding class of service (CoS) or Differentiated Services Code Point (DSCP) value from the received CoS, DSCP, or IP precedence value.
Page 797 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos maps Examples This is an example of output from the show mls qos maps command: Switch> show mls qos maps Policed-dscp map: d1 : d2 0 ---------------------------------------...
Page 798 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos maps Cos-outputq-threshold map: cos: ------------------------------------ queue-threshold: 2-1 2-1 3-1 3-1 4-1 1-1 4-1 4-1 Cos-inputq-threshold map: cos: ------------------------------------ queue-threshold: 1-1 1-1 1-1 1-1 1-1 2-1 1-1 1-1...
Page 799: Show Mls Qos Queue-Set
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos queue-set show mls qos queue-set Use the show mls qos queue-set user EXEC command to display quality of service (QoS) settings for the egress queues. show mls qos queue-set [qset-id]...
Page 800: Show Mls Qos Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mls qos vlan show mls qos vlan Use the show mls qos vlan user EXEC command to display the policy maps attached to a switch virtual interface (SVI). show mls qos vlan vlan-id...
Page 801: Show Monitor
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show monitor show monitor Use the show monitor user EXEC command to display information about all Switched Port Analyzer (SPAN) and Remote SPAN (RSPAN) sessions on the switch. Use the command with keywords to show a specific session, all sessions, all local sessions, or all remote sessions.
Page 802 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show monitor Dest RSPAN VLAN : 105 This is an example of output for the show monitor user EXEC command for local SPAN source session 1: Switch# show monitor session 1...
Page 803: Show Mvr
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mvr show mvr Use the show mvr privileged EXEC command without keywords to display the current Multicast VLAN Registration (MVR) global parameter values, including whether or not MVR is enabled, the MVR multicast VLAN, the maximum query response time, the number of multicast groups, and the MVR mode (dynamic or compatible).
Page 804: Show Mvr Interface
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mvr interface show mvr interface Use the show mvr interface privileged EXEC command without keywords to display the Multicast VLAN Registration (MVR) receiver and source ports. Use the command with keywords to display MVR parameters for a specific receiver port.
Page 805 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mvr interface This is an example of output from the show mvr interface interface-id members command: Switch# show mvr interface gigabitethernet1/0/2 members 239.255.0.0 DYNAMIC ACTIVE 239.255.0.1 DYNAMIC ACTIVE 239.255.0.2 DYNAMIC ACTIVE 239.255.0.3...
Page 806: Show Mvr Members
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mvr members show mvr members Use the show mvr members privileged EXEC command to display all receiver and source ports that are currently members of an IP multicast group.
Page 807 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show mvr members Related Commands Command Description mvr (global configuration) Enables and configures multicast VLAN registration on the switch. mvr (interface configuration) Configures MVR ports. show mvr Displays the global MVR configuration on the switch.
Page 808: Show Network-Policy Profile
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show network-policy profile show network-policy profile Use the show network policy profile privileged EXEC command to display the network-policy profiles. show network-policy profile [profile number] [detail] Syntax Description profile (Optional) Display the network-policy profile number. If no profile is entered, all number network-policy profiles appear.
Page 809: Show Nmsp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show nmsp show nmsp Use the show nmsp privileged EXEC command to display the Network Mobility Services Protocol (NMSP) information for the switch. show nmsp {attachment suppress interface | capability | notification interval | statistics...
Page 810 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show nmsp This is an example of output from the show nmsp notification interval command: Switch# show nmsp notification interval NMSP Notification Intervals ---------------------------------- Attachment notify interval: 30 sec (default)
Page 811 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show nmsp Switch# show nmsp subscription summary Mobility Services Subscribed: MSE IP Address Services -------------------- --------------------- 172.19.35.109 Attachment, Location Related Commands Command Description clear nmsp statistics Clears the NMSP statistic counters.
Page 812: Show Pagp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show pagp show pagp Use the show pagp user EXEC command to display Port Aggregation Protocol (PAgP) channel-group information. show pagp [channel-group-number] {counters | dual-active | internal | neighbor} Syntax Description channel-group-number (Optional) Number of the channel group.
Page 813 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show pagp This is an example of output from the show pagp 1 internal command: Switch> show pagp 1 internal Flags: S - Device is sending Slow hello. C - Device is in Consistent state.
Page 814: Show Policy-Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show policy-map show policy-map Use the show policy-map user EXEC command to display quality of service (QoS) policy maps, which define classification criteria for incoming traffic. Policy maps can include policers that specify the bandwidth limitations and the action to take if the limits are exceeded.
Page 815: Show Port-Security
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show port-security show port-security Use the show port-security privileged EXEC command to display port-security settings for an interface or for the switch. show port-security [interface interface-id] [address | vlan] Syntax Description interface interface-id (Optional) Display port security settings for the specified interface.
Page 816 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show port-security This is an example of output from the show port-security interface interface-id command: Switch# show port-security interface gigabitethernet1/0/1 Port Security : Enabled Port status : SecureUp Violation mode : Shutdown...
Page 817: Show Power Inline
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show power inline show power inline Use the show power inline user EXEC command to display the Power over Ethernet (PoE) status for the specified PoE port, the specified stack member, or for all PoE ports in the switch stack.
Page 818 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show power inline This is an example of output from the show power inline interface-id command on a switch port. Table 2-46 describes the output fields. Switch> show power inline gigabitethernet0/5...
Page 819 Gi3/0/5 Gi3/0/6 Gi3/0/7 Gi3/0/8 Gi3/0/9 Gi3/0/10 <output truncated> This is an example of output from the show power inline police command on a Catalyst 3750-X switch. Table 2-47 describes the output fields. Switch> show power inline police Module Available Used...
Page 820 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show power inline Gi1/0/5 Gi1/0/6 errdisable n/a Gi1/0/7 auto none Gi1/0/8 auto Gi1/0/9 auto none Gi1/0/10 auto Gi1/0/11 auto Gi1/0/12 auto errdisable ok Gi1/0/13 auto errdisable errdisable n/a <output truncated>...
Page 821 IEEE classification, which is different than the real-time power that is monitored with the power sensing feature. The configured power values on a Catalyst 3750-X, Catalyst 3750-E, Catalyst 3650-X, or Catalyst 3560-E switch is the same as the actual power values on a Catalyst 3750 or 3560 switch.
Page 822 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show power inline This is an example of output from the show power inline police interface-id command on a standalone switch. Switch> show power inline priority Interface Admin Oper Priority...
Page 823: Show Psp Config
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show psp config show psp config To display the status of protocol storm protection configured for a specific protocol on a VLAN, use the show psp config privileged EXEC command.
Page 824: Show Psp Statistics
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show psp statistics show psp statistics To display the number of packets dropped for all protocols when protocol storm protection is configured, use the show psp statistics privileged EXEC command.
Page 825: Show Rep Topology
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show rep topology show rep topology To display Resilient Ethernet Protocol (REP) topology information for a segment or for all segments, including the primary and secondary edge ports in the segment, use the show rep topology user EXEC...
Page 826 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show rep topology This example shows output from the show rep topology detail command: Switch# show rep topology detail REP Segment 2 repc_2_24ts, Fa0/2 (Primary Edge) Alternate Port, some vlans blocked Bridge MAC: 0019.e714.5380...
Page 827: Show Sdm Prefer
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show sdm prefer show sdm prefer To display information about the Switch Database Management (SDM) templates that can be used to maximize system resources for a particular feature, use the show sdm prefer command in privileged EXEC mode.
Page 828 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show sdm prefer Although these templates are visible on all switches, the resources on switches running the LAN base feature do not match those shown in the templates: • Switches running the LAN base feature set support only 255 VLAN s, not 1024 as shown in all templates.
Page 829 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show sdm prefer This is an example of output from the show sdm prefer dual-ipv4-and-ipv6 vlan command: Switch# show sdm prefer dual-ipv4-and-ipv6 vlan The current template is "desktop IPv4 and IPv6 vlan" template.
Page 830: Show Setup Express
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show setup express show setup express Use the show setup express privileged EXEC command to display if Express Setup mode is active on the switch. show setup express Syntax Description This command has no arguments or keywords.
Page 831: Show Spanning-Tree
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show spanning-tree show spanning-tree Use the show spanning-tree user EXEC command to display spanning-tree state information. show spanning-tree [bridge-group | active [detail] | backbonefast | blockedports | bridge | detail...
Page 832 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show spanning-tree mst [configuration (Optional) Display the multiple spanning-tree (MST) region [digest]] [instance-id configuration and status (available only in privileged EXEC mode). [detail | interface The keywords have these meanings: interface-id [detail]] digest—(Optional) Display the MD5 digest included in the current...
Page 833 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show spanning-tree Command Modes User EXEC Command History Release Modification 12.2(53)SE2 This command was introduced. Usage Guidelines If the vlan-id variable is omitted, the command applies to the spanning-tree instance for all VLANs.
Page 834 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show spanning-tree This is an example of output from the show spanning-tree interface interface-id command: Switch# show spanning-tree interface gigabitethernet2/0/1 Vlan Role Sts Cost Prio.Nbr Type ---------------- ---- --- --------- -------- --------------------------------...
Page 835 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show spanning-tree This is an example of output from the show spanning-tree mst configuration command: Switch# show spanning-tree mst configuration Name [region1] Revision Instance Vlans Mapped -------- ------------------ 1-9,21-4094 10-20...
Page 836 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show spanning-tree Command Description spanning-tree loopguard default Prevents alternate or root ports from becoming the designated port because of a failure that leads to a unidirectional link. spanning-tree mst configuration Enters multiple spanning-tree (MST) configuration mode through which the MST region configuration occurs.
Page 837: Show Stack-Power
EXEC command. show stack-power [budgeting | detail | load-shedding | neighbors] [order power-stack-name] | [stack-name [stack-id] | switch [switch-id]] This command is available only on Catalyst 3750-X switch stacks running the IP base or IP services Note image. Syntax Description budgeting (Optional) Displays the stack power budget table.
Page 838 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show stack-power Examples This is an example of output from the show stack-power command. Switch# show stack-power Power Stack Stack Stack Total Rsvd Alloc Unused Name Mode Topolgy Pwr(W) Pwr(W)
Page 839 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show stack-power -------------------- ------ ------- ------ ------ ------ ------ Powerstack-1 SP-PS Ring 2880 2373 Priority Load Switch or PoE Shed Order Type Devices Shed ---------- ---- ------------------------------------------------------------ Gi2/0/16, Gi1/0/13, Gi1/0/20,...
Page 840: Show Storm-Control
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show storm-control show storm-control Use the show storm-control user EXEC command to display broadcast, multicast, or unicast storm control settings on the switch or on the specified interface or to display storm-control history.
Page 841 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show storm-control This is an example of output from the show storm-control command for a specified interface. Because no traffic-type keyword was entered, the broadcast storm control settings appear. Switch> show storm-control gigabitethernet 1/0/1...
Page 842: Show Switch
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show switch show switch Use the show switch user EXEC command to display information related to the stack member or the switch stack. show switch [stack-member-number | detail | neighbors | stack-ports [summary]| stack-ring activity [detail] | speed | stack-upgrade {sequence | status}] This command is supported only on Catalyst 3750-X switches.
Page 843 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show switch Master Re-Init—The state immediately after a master re-election and a different member is elected • master. The new master is re-initializing its configuration. This state applies only to the new master.
Page 844 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show switch This example shows the neighbor information for a stack: Switch> show switch neighbors Switch # Port A Port B -------- ------ ------ None None This example shows stack-port information: Switch>...
Page 845 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show switch Table 2-49 show switch stack-ports summary Command Output (continued) Field Description Link OK This shows if the link is stable. The link partner is a stack port on a neighbor switch.
Page 846 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show switch This example shows how to display the member upgrade sequence and status during a rolling stack upgrade: Switch> show switch stack-upgrade status Upgrade Time Remaining: 21 minutes Unupgraded Stack:...
Page 847: Show Switch Service-Modules
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show switch service-modules show switch service-modules To display the status of C3KX-SM-10G network service modules on the switch or in the switch stack, use the show switch service-modules command in EXEC mode.
Page 848 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show switch service-modules This is an example of output when a switch with a service module installed is running the LAN base feature set and service-module-specific features are not supported: Switch# show switch service-modules Switch/Stack supports service module CPU version: 03.00.25...
Page 849: Show System Mtu
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show system mtu show system mtu Use the show system mtu privileged EXEC command to display the global maximum transmission unit (MTU) or maximum packet size set for the switch.
Page 850: Show Udld
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show udld show udld Use the show udld user EXEC command to display UniDirectional Link Detection (UDLD) administrative and operational status for all ports or the specified port. show udld [interface-id]...
Page 851 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show udld Table 2-51 show udld Field Descriptions Field Description Interface The interface on the local device configured for UDLD. Port enable administrative How UDLD is configured on the port. If UDLD is enabled or...
Page 852 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show udld Related Commands Command Description udld Enables aggressive or normal mode in UDLD or sets the configurable message timer time. udld port Enables UDLD on an individual interface or prevents a fiber-optic interface from being enabled by the udld global configuration command.
Page 853: Show Version
If you are unable to comply with U.S. and local laws, return this product immediately. A summary of U.S. laws governing Cisco cryptographic products may be found at: http://www.cisco.com/wwl/export/crypto/tool/stqrg.html If you require further assistance please contact us by sending email to export@cisco.com.
Page 854 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show version License Level: ipbase Type: Default. No license found. Next reboot license Level: ipbase cisco WS-C3750E-24PD (PowerPC405) processor with 245760K/16376K bytes of memory. Processor board ID CAT1006R0LH Last reset from power-on Target IOS Version 12.2(35)SE2...
Page 855: Show Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vlan show vlan Use the show vlan user EXEC command to display the parameters for all configured VLANs or one VLAN (if the VLAN ID or name is specified) on the switch.
Page 856 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vlan Usage Guidelines In the show vlan mtu command output, the MTU_Mismatch column shows whether all the ports in the VLAN have the same MTU. When yes appears in this column, it means that the VLAN has ports with different MTUs, and packets that are switched from a port with a larger MTU to a port with a smaller MTU might be dropped.
Page 857 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vlan Primary Secondary Type Ports ------ --------- ----------------- ------------------------------------------ Primary Secondary Type Ports ------- --------- ----------------- ------------------------------------------ isolated Gi1/0/1,Gi3/0/1 community Gi1/0/1, Gi3/0/1 community Gi1/0/1, Gi3/0/1 <output truncated> Table 2-52...
Page 858 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vlan This is an example of output from the show vlan private-vlan command: Switch> show vlan private-vlan Primary Secondary Type Ports ------- --------- ----------------- ------------------------------------------ isolated Gi3/0/3 community Gi2/0/11...
Page 859 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vlan Related Commands Command Description private-vlan Configures a VLAN as a community, isolated, or primary VLAN or associates a primary VLAN with secondary VLANs. switchport mode Configures the VLAN membership mode of a port.
Page 860: Show Vlan Access-Map
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vlan access-map show vlan access-map Use the show vlan access-map privileged EXEC command to display information about a particular VLAN access map or for all VLAN access maps. show vlan access-map [mapname] Note This command is not supported on switches running the LAN base feature set.
Page 861: Show Vlan Filter
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vlan filter show vlan filter Use the show vlan filter privileged EXEC command to display information about all VLAN filters or about a particular VLAN or VLAN access map.
Page 862: Show Vmps
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vmps show vmps Use the show vmps user EXEC command without keywords to display the VLAN Query Protocol (VQP) version, reconfirmation interval, retry count, VLAN Membership Policy Server (VMPS) IP addresses, and the current and primary servers, or use the statistics keyword to display client-side statistics.
Page 863 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vmps Table 2-53 show vmps statistics Field Descriptions (continued) Field Description VMPS Changes Number of times that the VMPS changed from one server to another. VQP Shutdowns Number of times the VMPS sent a response to shut down the port. The client disables the port and removes all dynamic addresses on this port from the address table.
Page 864: Show Vtp
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vtp show vtp Use the show vtp user EXEC command to display general information about the VLAN Trunking Protocol (VTP) management domain, status, and counters. show vtp {counters | devices [conflicts] | interface [interface-id] | password | status}...
Page 865 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vtp VLAN 000c.0412.6300=000c.0412.6300 67 qwerty.cisco.com This is an example of output from the show vtp counters command. Table 2-54 describes each field in the display. Switch> show vtp counters...
Page 866 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vtp Table 2-54 show vtp counters Field Descriptions (continued) Field Description Number of configuration Number of revision errors. revision errors Whenever you define a new VLAN, delete an existing one, suspend or resume an existing VLAN, or modify the parameters on an existing VLAN, the configuration revision number of the switch increments.
Page 867 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vtp Table 2-55 show vtp status Field Descriptions Field Description VTP Version Displays the VTP version operating on the switch. By default, the switch implements Version 1 but can be set to Version 2.
Page 868 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands show vtp This is an example of output from the show vtp status command for a switch running VTP version 3. . Switch> show vtp status VTP Version capable : 1 to 3...
Page 869: Shutdown
2 V ] Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands shutdown shutdown Use the shutdown interface configuration command on the switch stack or on a standalone switch to disable an interface. Use the no form of this command to restart a disabled interface.
Page 870: Shutdown Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands shutdown vlan shutdown vlan Use the shutdown vlan global configuration command on the switch stack or on a standalone switch to shut down (suspend) local traffic on the specified VLAN. Use the no form of this command to restart local traffic on the VLAN.
Page 871: Small-Frame Violation Rate
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands small-frame violation rate small-frame violation rate Use the small-frame violation rate pps interface configuration command on the switch stack or on a standalone switch to configure the rate (threshold) for an interface to be error disabled when it receives VLAN-tagged packets that are small frames (67 bytes or less) at the specified rate.
Page 872 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands small-frame violation rate Related Commands Command Description errdisable detect cause small-frame Allows any switch port to be put into the error-disabled state if an incoming frame is smaller than the minimum size and arrives at the specified rate (threshold).
Page 873: Snmp-Server Enable Traps
} | entity | envmon [fan | shutdown | status | supply | temperature] | flash [insertion | removal] | fru-ctrl | hsrp | ipmulticast | | mac-notification [change] [move] [threshold] | msdp | ospf [cisco-specific | errors | lsa | rate-limit | retransmit | state-change] | pim [invalid-pim-message | neighbor-change | rp-mapping-change] | port-security...
Page 874 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands snmp-server enable traps dot1x [auth-fail-vlan | (Optional) Enable IEEE 802.1x traps. The keywords have these meanings: guest-vlan | auth-fail-vlan—(Optional) Generate a trap when the port moves to the • no-auth-fail-vlan | configured restricted VLAN.
Page 875 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands snmp-server enable traps ospf [cisco-specific | (Optional) Enable Open Shortest Path First (OSPF) traps. The keywords have errors | lsa | rate-limit | these meanings: retransmit | cisco-specific—(Optional) Enable Cisco-specific traps.
Page 876 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands snmp-server enable traps syslog (Optional) Enable SNMP syslog traps. (Optional) Send TCP connection traps. This is enabled by default. vlan-membership (Optional) Enable SNMP VLAN membership traps. vlancreate (Optional) Enable SNMP VLAN-created traps.
Page 877 Displays the operating configuration. For syntax information, use this link to the Cisco IOS Release 12.2 Command Reference listing page: http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/prod_command _reference_list.html Select the Cisco IOS Commands Master List, Release 12.2 to navigate to the command. snmp-server host Specifies the host that receives SNMP traps.
Page 878: Snmp-Server Host
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands snmp-server host snmp-server host Use the snmp-server host global configuration command on the switch stack or on a standalone switch to specify the recipient (host) of a Simple Network Management Protocol (SNMP) notification operation.
Page 879 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands snmp-server host notification-type (Optional) Type of notification to be sent to the host. If no type is specified, all notifications are sent. The notification type can be one or more of the these keywords: bgp—Send Border Gateway Protocol (BGP) state change traps.
Page 880 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands snmp-server host Defaults This command is disabled by default. No notifications are sent. If you enter this command with no keywords, the default is to send all trap types to the host. No informs are sent to this host.
Page 881 The community string is defined as comaccess: Switch(config)# snmp-server enable traps Switch(config)# snmp-server host myhost.cisco.com comaccess snmp This example shows how to enable the switch to send all traps to the host myhost.cisco.com by using the community string public: Switch(config)# snmp-server enable traps Switch(config)# snmp-server host myhost.cisco.com public...
Page 882: Snmp Trap Mac-Notification Change
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands snmp trap mac-notification change snmp trap mac-notification change Use the snmp trap mac-notification change interface configuration command on the switch stack or on a standalone switch to enable the Simple Network Management Protocol (SNMP) MAC address notification trap on a specific Layer 2 interface.
Page 883 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands snmp trap mac-notification change Related Commands Command Description clear mac address-table notification Clears the MAC address notification global counters. mac address-table notification Enables the MAC address notification feature. show mac address-table notification...
Page 884: Spanning-Tree Backbonefast
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree backbonefast spanning-tree backbonefast Use the spanning-tree backbonefast global configuration command on the switch stack or on a standalone switch to enable the BackboneFast feature. Use the no form of the command to return to the default setting.
Page 885: Spanning-Tree Bpdufilter
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree bpdufilter spanning-tree bpdufilter Use the spanning-tree bpdufilter interface configuration command on the switch stack or on a standalone switch to prevent an interface from sending or receiving bridge protocol data units (BPDUs).
Page 886 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree bpdufilter Related Commands Command Description show running-config Displays the operating configuration. For syntax information, use this link to the Cisco IOS Release 12.2 Command Reference listing page: http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/prod _command_reference_list.html Select the Cisco IOS Commands Master List, Release 12.2 to...
Page 887: Spanning-Tree Bpduguard
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree bpduguard spanning-tree bpduguard Use the spanning-tree bpduguard interface configuration command on the switch stack or on a standalone switch to put an interface in the error-disabled state when it receives a bridge protocol data unit (BPDU).
Page 888 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree bpduguard Related Commands Command Description show running-config Displays the operating configuration. For syntax information, use this link to the Cisco IOS Release 12.2 Command Reference listing page: http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/prod _command_reference_list.html Select the Cisco IOS Commands Master List, Release 12.2 to...
Page 889: Spanning-Tree Cost
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree cost spanning-tree cost Use the spanning-tree cost interface configuration command on the switch stack or on a standalone switch to set the path cost for spanning-tree calculations. If a loop occurs, spanning tree considers the path cost when selecting an interface to place in the forwarding state.
Page 890 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree cost Related Commands Command Description show spanning-tree interface Displays spanning-tree information for the specified interface. interface-id spanning-tree port-priority Configures an interface priority. spanning-tree vlan priority Sets the switch priority for the specified spanning-tree instance.
Page 891: Spanning-Tree Etherchannel Guard Misconfig
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree etherchannel guard misconfig spanning-tree etherchannel guard misconfig Use the spanning-tree etherchannel guard misconfig global configuration command to display an error message when the switch detects an EtherChannel misconfiguration. Use the no form of this command to disable the feature.
Page 892 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree etherchannel guard misconfig Related Commands Command Description errdisable recovery cause Enables the timer to recover from the EtherChannel channel-misconfig misconfiguration error-disabled state. show etherchannel summary Displays EtherChannel information for a channel as a one-line summary per channel-group.
Page 893: Spanning-Tree Extend System-Id
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree extend system-id spanning-tree extend system-id Use the spanning-tree extend system-id global configuration command on the switch stack or on a standalone switch to enable the extended system ID feature.
Page 894 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree extend system-id Related Commands Command Description show spanning-tree summary Displays a summary of spanning-tree interface states. spanning-tree mst root Configures the MST root switch priority and timers based on the network diameter.
Page 895: Spanning-Tree Guard
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree guard spanning-tree guard Use the spanning-tree guard interface configuration command on the switch stack or on a standalone switch to enable root guard or loop guard on all the VLANs associated with the selected interface. Root guard restricts which interface is allowed to be the spanning-tree root port or the path-to-the root for the switch.
Page 896 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree guard Loop guard is most effective when it is configured on the entire switched network. When the switch is operating in PVST+ or rapid-PVST+ mode, loop guard prevents alternate and root ports from becoming designated ports, and spanning tree does not send bridge protocol data units (BPDUs) on root or alternate ports.
Page 897: Spanning-Tree Link-Type
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree link-type spanning-tree link-type Use the spanning-tree link-type interface configuration command on the switch stack or on a standalone switch to override the default link-type setting, which is determined by the duplex mode of the interface, and to enable rapid spanning-tree transitions to the forwarding state.
Page 898 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree link-type Related Commands Command Description clear spanning-tree detected-protocols Restarts the protocol migration process (force the renegotiation with neighboring switches) on all interfaces or on the specified interface. show spanning-tree...
Page 899: Spanning-Tree Loopguard Default
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree loopguard default spanning-tree loopguard default Use the spanning-tree loopguard default global configuration command on the switch stack or on a standalone switch to prevent alternate or root ports from becoming designated ports because of a failure that leads to a unidirectional link.
Page 900 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree loopguard default Related Commands Command Description show running-config Displays the operating configuration. For syntax information, use this link to the Cisco IOS Release 12.2 Command Reference listing page: http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/prod_com mand_reference_list.html...
Page 901: Spanning-Tree Mode
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mode spanning-tree mode Use the spanning-tree mode global configuration command on the switch stack or on a standalone switch to enable per-VLAN spanning-tree plus (PVST+), rapid PVST+, or multiple spanning tree (MST) on your switch.
Page 902 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mode Related Commands Command Description show running-config Displays the operating configuration. For syntax information, use this link to the Cisco IOS Release 12.2 Command Reference listing page: http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/prod_comm and_reference_list.html Select the Cisco IOS Commands Master List, Release 12.2 to navigate...
Page 903: Spanning-Tree Mst Configuration
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst configuration spanning-tree mst configuration Use the spanning-tree mst configuration global configuration command on the switch stack or on a standalone switch to enter multiple spanning-tree (MST) configuration mode through which you configure the MST region.
Page 904 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst configuration When you map VLANs to an MST instance, the mapping is incremental, and VLANs specified in the command are added to or removed from the VLANs that were previously mapped. To specify a range, use a hyphen;...
Page 905: Spanning-Tree Mst Cost
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst cost spanning-tree mst cost Use the spanning-tree mst cost interface configuration command on the switch stack or on a standalone switch to set the path cost for multiple spanning-tree (MST) calculations. If a loop occurs, spanning tree considers the path cost when selecting an interface to put in the forwarding state.
Page 906 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst cost Related Commands Command Description show spanning-tree Displays MST information for the specified interface. interface interface-id spanning-tree mst Configures an interface priority. port-priority spanning-tree mst priority Configures the switch priority for the specified spanning-tree instance.
Page 907: Spanning-Tree Mst Forward-Time
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst forward-time spanning-tree mst forward-time Use the spanning-tree mst forward-time global configuration command on the switch stack or on a standalone switch to set the forward-delay time for all multiple spanning-tree (MST) instances. The forwarding time specifies how long each of the listening and learning states last before the interface begins forwarding.
Page 908: Spanning-Tree Mst Hello-Time
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst hello-time spanning-tree mst hello-time Use the spanning-tree mst hello-time global configuration command on the switch stack or on a standalone switch to set the interval between hello bridge protocol data units (BPDUs) sent by root switch configuration messages.
Page 909: Spanning-Tree Mst Max-Age
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst max-age spanning-tree mst max-age Use the spanning-tree mst max-age global configuration command on the switch stack or on a standalone switch to set the interval between messages that the spanning tree receives from the root switch.
Page 910: Spanning-Tree Mst Max-Hops
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst max-hops spanning-tree mst max-hops Use the spanning-tree mst max-hops global configuration command on the switch stack or on a standalone switch to set the number of hops in a region before the bridge protocol data unit (BPDU) is discarded and the information held for an interface is aged.
Page 911: Spanning-Tree Mst Port-Priority
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst port-priority spanning-tree mst port-priority Use the spanning-tree mst port-priority interface configuration command on the switch stack or on a standalone switch to configure an interface priority. If a loop occurs, the Multiple Spanning Tree Protocol (MSTP) can find the interface to put in the forwarding state.
Page 912 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst port-priority Related Commands Command Description show spanning-tree mst interface Displays MST information for the specified interface. interface-id spanning-tree mst cost Sets the path cost for MST calculations. spanning-tree mst priority Sets the switch priority for the specified spanning-tree instance.
Page 913: Spanning-Tree Mst Pre-Standard
The port can accept both prestandard and standard BPDUs. If the neighbor types are mismatched, only the common and internal spanning tree (CIST) runs on this interface. If a switch port is connected to a switch running prestandard Cisco IOS software, you must use the Note spanning-tree mst pre-standard interface configuration command on the port.
Page 914: Spanning-Tree Mst Priority
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst priority spanning-tree mst priority Use the spanning-tree mst priority global configuration command on the switch stack or on a standalone switch to set the switch priority for the specified spanning-tree instance. Use the no form of this command to return to the default setting.
Page 915: Spanning-Tree Mst Root
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst root spanning-tree mst root Use the spanning-tree mst root global configuration command on the switch stack or on a standalone switch to configure the multiple spanning-tree (MST) root switch priority and timers based on the network diameter.
Page 916 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree mst root When you enter the spanning-tree mst instance-id root secondary command, because of support for the extended system ID, the software changes the switch priority from the default value (32768) to 28672.
Page 917: Spanning-Tree Port-Priority
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree port-priority spanning-tree port-priority Use the spanning-tree port-priority interface configuration command on the switch stack or on a standalone switch to configure an interface priority. If a loop occurs, spanning tree can find the interface to put in the forwarding state.
Page 918 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree port-priority Examples This example shows how to increase the likelihood that a port will be put in the forwarding state if a loop occurs: Switch(config)# interface gigabitethernet2/0/2 Switch(config-if)# spanning-tree vlan 20 port-priority 0...
Page 919: Spanning-Tree Portfast (Global Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree portfast (global configuration) spanning-tree portfast (global configuration) Use the spanning-tree portfast global configuration command on the switch stack or on a standalone switch to globally enable bridge protocol data unit (BPDU) filtering on Port Fast-enabled interfaces, the BPDU guard feature on Port Fast-enabled interfaces, or the Port Fast feature on all nontrunking interfaces.
Page 920 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree portfast (global configuration) Enabling BPDU filtering on an interface is the same as disabling spanning tree on it and can result in Caution spanning-tree loops. Use the spanning-tree portfast bpduguard default global configuration command to globally enable BPDU guard on interfaces that are in a Port Fast-operational state.
Page 921 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree portfast (global configuration) Command Description spanning-tree bpduguard Puts an interface in the error-disabled state when it receives a BPDU. spanning-tree portfast (interface Enables the Port Fast feature on an interface in all its associated configuration) VLANs.
Page 922: Spanning-Tree Portfast (Interface Configuration)
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree portfast (interface configuration) spanning-tree portfast (interface configuration) Use the spanning-tree portfast interface configuration command on the switch stack or on a standalone switch to enable the Port Fast feature on an interface in all its associated VLANs. When the Port Fast feature is enabled, the interface changes directly from a blocking state to a forwarding state without making the intermediate spanning-tree state changes.
Page 923 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree portfast (interface configuration) Examples This example shows how to enable the Port Fast feature on a port: Switch(config)# interface gigabitethernet2/0/2 Switch(config-if)# spanning-tree portfast You can verify your settings by entering the show running-config privileged EXEC command.
Page 924: Spanning-Tree Transmit Hold-Count
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree transmit hold-count spanning-tree transmit hold-count Use the spanning-tree transmit hold-count global configuration command to configure the number of bridge protocol data units (BPDUs) sent every second. Use the no form of this command to return to the default setting.
Page 925: Spanning-Tree Uplinkfast
When you enable UplinkFast, it is enabled for the entire switch and cannot be enabled for individual VLANs. On Catalyst 3750-X switches, when you enable or disable UplinkFast, cross-stack UplinkFast (CSUF) also is automatically enabled or disabled on all nonstack port interfaces. CSUF accelerates the choice of a new root port when a link or switch fails or when spanning tree reconfigures itself.
Page 926 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree uplinkfast Do not enable the root guard on interfaces that will be used by the UplinkFast feature. With UplinkFast, the backup interfaces (in the blocked state) replace the root port in the case of a failure. However, if root guard is also enabled, all the backup interfaces used by the UplinkFast feature are placed in the root-inconsistent state (blocked) and prevented from reaching the forwarding state.
Page 927: Spanning-Tree Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree vlan spanning-tree vlan Use the spanning-tree vlan global configuration command on the switch stack or on a standalone switch to configure spanning tree on a per-VLAN basis. Use the no form of this command to return to the default setting.
Page 928 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree vlan Defaults Spanning tree is enabled on all VLANs. The forward-delay time is 15 seconds. The hello time is 2 seconds. The max-age is 20 seconds. The primary root switch priority is 24576.
Page 929 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands spanning-tree vlan Examples This example shows how to disable the STP on VLAN 5: Switch(config)# no spanning-tree vlan 5 You can verify your setting by entering the show spanning-tree privileged EXEC command. In this instance, VLAN 5 does not appear in the list.
Page 930: Speed
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands speed speed Use the speed interface configuration command on the switch stack or on a standalone switch to specify the speed of a 10/100 Mb/s or 10/100/1000 Mb/s port. Use the no or default form of this command to return the port to its default value.
Page 931 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands speed For guidelines on setting the switch speed and duplex parameters, see the “Configuring Interface Characteristics” chapter in the software configuration guide for this release. Examples This example shows how to set speed on a port to 100 Mb/s:...
Page 932: Srr-Queue Bandwidth Limit
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands srr-queue bandwidth limit srr-queue bandwidth limit Use the srr-queue bandwidth limit interface configuration command on the switch stack or on a standalone switch to limit the maximum output on a port. Use the no form of this command to return to the default setting.
Page 933 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands srr-queue bandwidth limit Related Commands Command Description mls qos queue-set output buffers Allocates buffers to the queue-set. mls qos srr-queue output cos-map Maps class of service (CoS) values to egress queue or maps CoS values to a queue and to a threshold ID.
Page 934: Srr-Queue Bandwidth Shape
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands srr-queue bandwidth shape srr-queue bandwidth shape Use the srr-queue bandwidth shape interface configuration command on the switch stack or on a standalone switch to assign the shaped weights and to enable bandwidth shaping on the four egress queues mapped to a port.
Page 935 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands srr-queue bandwidth shape Examples This example shows how to configure the queues for the same port for both shaping and sharing. Because the weight ratios for queues 2, 3, and 4 are set to 0, these queues operate in shared mode. The bandwidth weight for queue 1 is 1/8, which is 12.5 percent.
Page 936: Srr-Queue Bandwidth Share
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands srr-queue bandwidth share srr-queue bandwidth share Use the srr-queue bandwidth share interface configuration command on the switch stack or on a standalone switch to assign the shared weights and to enable bandwidth sharing on the four egress queues mapped to a port.
Page 937 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands srr-queue bandwidth share Examples This example shows how to configure the weight ratio of the SRR scheduler running on an egress port. Four queues are used. The bandwidth ratio allocated for each queue in shared mode is 1/(1+2+3+4), 2/(1+2+3+4), 3/(1+2+3+4), and 4/(1+2+3+4), which is 10 percent, 20 percent, 30 percent, and 40 percent for queues 1, 2, 3, and 4.
Page 938: Stack-Mac Persistent Timer
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands stack-mac persistent timer stack-mac persistent timer Use the stack-mac persistent timer global configuration command on the switch stack or on a standalone switch to enable the persistent MAC address feature. When this feature is enabled, if the stack master changes, the stack MAC address does not change for approximately four minutes, for an indefinite time period, or for a configured time value.
Page 939 Displays the operating configuration. For syntax information, use this link to the Cisco IOS Release 12.2 Command Reference listing page: http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/prod_command _reference_list.html Select the Cisco IOS Commands Master List, Release 12.2 to navigate to the command. Catalyst 3750-X and 3560-X Switch Command Reference 2-907...
Page 940: Stack-Power
To return to the default setting, use the no form of the command, stack-power {stack power stack name | switch switch-number} no stack-power {stack-id name | switch switch-number} This command is available only on Catalyst 3750-X switch stacks running the IP base or IP services Note image.
Page 941 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands stack-power power-priority: sets the power priority for the switch and the switch ports. See the power-priority • command. • stack-id name: enter the name of the power stack to which the switch belongs. If you do not enter the power stack-ID, the switch does not inherit the stack parameters.
Page 942: Storm-Control
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands storm-control storm-control Use the storm-control interface configuration command on the switch stack or on a standalone switch to enable broadcast, multicast, or unicast storm control and to set threshold levels on an interface. Use the no form of this command to return to the default setting.
Page 943 When the storm control threshold for multicast traffic is reached, all multicast traffic except control Note traffic, such as bridge protocol data unit (BDPU) and Cisco Discovery Protocol (CDP) frames, are blocked. However, the switch does not differentiate between routing updates, such as Open Shortest Path First (OSPF) and regular multicast data traffic, so both types of traffic are blocked.
Page 944 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands storm-control If you configure the action to be taken as shutdown (the port is error-disabled during a storm) when a packet storm is detected, you must use the no shutdown interface configuration command to bring the interface out of this state.
Page 945: Switch
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switch switch Use the switch privileged EXEC on a stack member to disable or enable the specified stack port on the member. switch stack-member-number stack port port-number {disable | enable}...
Page 946 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switch Examples This example shows how to disable stack port 2 on member 4: Switch# switch 4 stack port 2 disable Related Commands Command Description show switch Displays information about the switch stack and the stack members.
Page 947: Switch Priority
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switch priority switch priority Use the switch priority global configuration command on the stack master to change the stack member priority value. switch stack-member-number priority new-priority-value Note This command is supported only on Catalyst 3750-X switches.
Page 948: Switch Provision
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switch provision switch provision Use the switch provision global configuration command on the stack master to provision (to supply a configuration to) a new switch before it joins the switch stack. Use the no form of this command to delete all configuration information associated with the removed switch (a stack member that has left the stack).
Page 949 Displays the operating configuration. For syntax information, use this link to the Cisco IOS Release 12.2 Command Reference listing page: http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/prod_command _reference_list.html Select the Cisco IOS Commands Master List, Release 12.2 to navigate to the command. show switch Displays information about the switch stack and its stack members.
Page 950: Switch Renumber
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switch renumber switch renumber Use the switch renumber global configuration command on the stack master to change the stack member number. switch current-stack-member-number renumber new-stack-member-number Note This command is supported only on Catalyst 3750-X switches.
Page 951 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switch renumber Related Commands Command Description reload Reloads the stack member and puts a configuration change into effect. session Accesses a specific stack member. switch priority Changes the stack member priority value.
Page 952: Switchport
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport switchport Use the switchport interface configuration command with no keywords on the switch stack or on a standalone switch to put an interface that is in Layer 3 mode into Layer 2 mode for Layer 2 configuration.
Page 953 This example shows how to cause an interface to cease operating as a Layer 2 port and become a Cisco-routed port: Switch(config-if)# no switchport This example shows how to cause the port interface to cease operating as a Cisco-routed port and convert to a Layer 2 switched interface: Switch(config-if)# switchport...
Page 954: Switchport Access
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport access switchport access Use the switchport access interface configuration command on the switch stack or on a standalone switch to configure a port as a static-access or dynamic-access port. If the switchport mode is set to access, the port operates as a member of the specified VLAN.
Page 955 The software implements the VLAN Query Protocol (VQP) client, which can query a VMPS such • as a Catalyst 6000 series switch. The Catalyst 3750-X and 3560-X switches are not VMPS servers. The VMPS server must be configured before a port is configured as dynamic.
Page 956: Switchport Autostate Exclude
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport autostate exclude switchport autostate exclude Use the switchport autostate exclude interface configuration command to exclude an interface from the VLAN interface (switch virtual interface) line-state up or down calculation. Use the no form of this command to return to the default setting.
Page 957 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport autostate exclude Operational Mode: down Administrative Trunking Encapsulation: negotiate Negotiation of Trunking: On Access Mode VLAN: 1 (default) Trunking Native Mode VLAN: 1 (default) Administrative Native VLAN tagging: enabled...
Page 958: Switchport Backup Interface
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport backup interface switchport backup interface Use the switchport backup interface interface configuration command on a Layer 2 interface on the switch stack or on a standalone switch to configure Flex Links, a pair of interfaces that provide backup to each other.
Page 959 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport backup interface Usage Guidelines With Flex Links configured, one link acts as the primary interface and forwards traffic, while the other interface is in standby mode, ready to begin forwarding traffic if the primary link shuts down. The interface being configured is referred to as the active link;...
Page 960 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport backup interface This example shows how to configure the Gigabit Ethernet interface as the MMU primary VLAN: Switch# configure terminal Switch(conf)# interface gigabitethernet1/0/1 Switch(conf-if)# switchport backup interface gigabitethernet1/0/2 mmu primary vlan 1021...
Page 961: Switchport Block
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport block switchport block Use the switchport block interface configuration command on the switch stack or on a standalone switch to prevent unknown multicast or unicast packets from being forwarded. Use the no form of this command to allow forwarding unknown multicast or unicast packets.
Page 962 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport block Related Commands Command Description show interfaces switchport Displays the administrative and operational status of a switching (nonrouting) port, including port blocking and port protection settings. Catalyst 3750-X and 3560-X Switch Command Reference...
Page 963: Switchport Host
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport host switchport host Use the switchport host interface configuration command on the switch stack or on a standalone switch to optimize a Layer 2 port for a host connection. The no form of this command has no affect on the system.
Page 964: Switchport Mode
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport mode switchport mode Use the switchport mode interface configuration command on the switch stack or on a standalone switch to configure the VLAN membership mode of a port. Use the no form of this command to reset the mode to the appropriate default for the device.
Page 965 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport mode When you enter dynamic desirable mode, the interface becomes a trunk interface if the neighboring interface is set to trunk, desirable, or auto mode. To autonegotiate trunking, the interfaces must be in the same VLAN Trunking Protocol (VTP) domain.
Page 966 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport mode Examples This example shows how to configure a port for access mode: Switch(config)# interface gigabitethernet2/0/1 Switch(config-if)# switchport mode access This example shows how set the port to dynamic desirable mode:...
Page 967: Switchport Mode Private-Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport mode private-vlan switchport mode private-vlan Use the switchport mode private-vlan interface configuration command on the switch stack or on a standalone switch to configure a port as a promiscuous or host private VLAN port. Use the no form of this command to reset the mode to the appropriate default for the device.
Page 968 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport mode private-vlan A private-VLAN port cannot be a secure port and should not be configured as a protected port. For more information about private-VLAN interaction with other features, see the software configuration guide for this release.
Page 969: Switchport Nonegotiate
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport nonegotiate switchport nonegotiate Use the switchport nonegotiate interface configuration command on the switch stack or on a standalone switch to specify that Dynamic Trunking Protocol (DTP) negotiation packets are not sent on the Layer 2 interface.
Page 970 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport nonegotiate Examples This example shows how to cause a port to refrain from negotiating trunking mode and to act as a trunk or access port (depending on the mode set):...
Page 971: Switchport Port-Security
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport port-security switchport port-security Use the switchport port-security interface configuration command without keywords on the switch stack or on a standalone switch to enable port security on the uplink interface. Use the keywords to configure secure MAC addresses, sticky MAC address learning, a maximum number of secure MAC addresses, or the violation mode.
Page 972 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport port-security vlan [vlan-list] (Optional) For trunk ports, you can set the maximum number of secure MAC addresses on a VLAN. If the vlan keyword is not entered, the default value is used.
Page 973 IP phone requires one MAC address. The Cisco IP phone address is learned on the voice VLAN, but is not learned on the access VLAN. If you connect a single PC to the Cisco IP phone, no additional MAC addresses are required. If you connect more than one PC to the Cisco IP phone, you must configure enough secure addresses to allow one for each PC and one for the Cisco IP phone.
Page 974 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport port-security Sticky secure MAC addresses have these characteristics: When you enable sticky learning on an interface by using the switchport port-security • mac-address sticky interface configuration command, the interface converts all the dynamic secure...
Page 975 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport port-security Related Commands Command Description clear port-security Deletes from the MAC address table a specific type of secure address or all the secure addresses on the switch or an interface.
Page 976: Switchport Port-Security Aging
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport port-security aging switchport port-security aging Use the switchport port-security aging interface configuration command on the switch stack or on a standalone switch to set the aging time and type for secure address entries or to change the aging behavior for secure addresses on a particular port.
Page 977 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport port-security aging Examples This example sets the aging time as 2 hours for absolute aging for all the secure addresses on the port: Switch(config)# interface gigabitethernet1/0/1 Switch(config-if)# switchport port-security aging time 120...
Page 978: Switchport Priority Extend
IP phone how to send data packets from the device attached to the access port on the Cisco IP Phone. You must enable CDP on the switch port connected to the Cisco IP Phone to send the configuration to the Cisco IP Phone.
Page 979 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport priority extend Related Commands Command Description show interfaces Displays the administrative and operational status of a switching (nonrouting) port. switchport voice vlan Configures the voice VLAN on the port.
Page 980: Switchport Private-Vlan
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport private-vlan switchport private-vlan Use the switchport private-vlan interface configuration command on the switch stack or on a standalone switch to define a private-VLAN association for an isolated or community port or a mapping for a promiscuous port.
Page 981 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport private-vlan Usage Guidelines Private-VLAN association or mapping has no effect on the port unless the port has been configured as a private-VLAN host or promiscuous port by using the switchport mode private-vlan {host | promiscuous} interface configuration command.
Page 982: Switchport Protected
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport protected switchport protected Use the switchport protected interface configuration command on the switch stack or on a standalone switch to isolate unicast, multicast, and broadcast traffic at Layer 2 from other protected ports on the same switch.
Page 983 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport protected Related Commands Command Description show interfaces Displays the administrative and operational status of a switching (nonrouting) switchport port, including port blocking and port protection settings. switchport block Prevents unknown multicast or unicast traffic on the interface.
Page 984: Switchport Trunk
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport trunk switchport trunk Use the switchport trunk interface configuration command on the switch stack or on a standalone switch to set the trunk characteristics when the interface is in trunking mode. Use the no form of this command to reset a trunking characteristic to the default.
Page 985 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands switchport trunk remove removes the defined list of VLANs from those currently set instead of replacing the list. • Valid IDs are from 1 to 1005; extended-range VLAN IDs are valid in some cases.
Page 986 VLAN trunk port by removing VLAN 1 from the allowed list. When you remove VLAN 1 from a trunk port, the interface continues to send and receive management traffic, for example, Cisco Discovery Protocol (CDP), Port Aggregation Protocol (PAgP), Link Aggregation Control Protocol (LACP), Dynamic Trunking Protocol (DTP), and VLAN Trunking Protocol (VTP) in VLAN 1.
Page 987: Switchport Voice Detect
Use the switchport voice detect interface configuration command on the switch stack or on a standalone switch to detect and recognize a Cisco IP phone. Use the no form of this command to return to the default setting.
Page 988: Switchport Voice Vlan
You should configure voice VLAN on Layer 2 access ports. You must enable Cisco Discovery Protocol (CDP) on the switchport connected to the Cisco IP phone for the switch to send configuration information to the phone. CDP is enabled by default globally and on the interface.
Page 989 IP phone requires one MAC address. The Cisco IP phone address is learned on the voice VLAN, but is not learned on the access VLAN. If you connect a single PC to the Cisco IP phone, no additional MAC addresses are required.
Page 990: System Env Temperature Threshold Yellow
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands system env temperature threshold yellow system env temperature threshold yellow Use the system env temperature threshold yellow global configuration command on the switch stack or on a standalone switch to configure the difference between the yellow and red temperature thresholds that determines the value of yellow threshold.
Page 991 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands system env temperature threshold yellow Examples This example sets 15 as the difference between the yellow and red thresholds: Switch(config)# system env temperature threshold yellow 15 Switch(config)# Related Commands Command...
Page 992: System Mtu
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands system mtu system mtu Use the system mtu global configuration command on the switch stack or on a standalone switch to set the maximum packet size or maximum transmission unit (MTU) size for Gigabit Ethernet (10/100/1000) ports, or for 10-Gigabit ports, or for routed ports.
Page 993 Unlike the system MTU routing configuration, the MTU settings that you enter with the system mtu and system mtu jumbo commands are not saved in the switch Cisco IOS configuration file, even if you enter the copy running-config startup-config privileged EXEC command.
Page 994 MTU value (in bytes). Catalyst 3560 switch 1. If you use the system mtu bytes command on a Catalyst 3750-X or 3750-E member in a mixed hardware stack, the setting takes effect on the Fast Ethernet ports of Catalyst 3750 members.
Page 995: Test Cable-Diagnostics Tdr
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands test cable-diagnostics tdr test cable-diagnostics tdr Use the test cable-diagnostics tdr privileged EXEC command on the switch stack or on a standalone switch to run the Time Domain Reflector (TDR) feature on an interface.
Page 996: Traceroute Mac
This command was introduced. Usage Guidelines For Layer 2 traceroute to function properly, Cisco Discovery Protocol (CDP) must be enabled on all the switches in the network. Do not disable CDP. When the switch detects a device in the Layer 2 path that does not support Layer 2 traceroute, the switch continues to send Layer 2 trace queries and lets them time out.
Page 997 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands traceroute mac The Layer 2 traceroute feature is not supported when multiple devices are attached to one port through hubs (for example, multiple CDP neighbors are detected on a port). When more than one CDP neighbor is detected on a port, the Layer 2 path is not identified, and an error message appears.
Page 998 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands traceroute mac This example shows the Layer 2 path when the switch cannot find the destination port for the source MAC address: Switch# traceroute mac 0000.0011.1111 0000.0201.0201 Error:Source Mac address not found.
Page 999: Traceroute Mac Ip
This command was introduced. Usage Guidelines For Layer 2 traceroute to function properly, Cisco Discovery Protocol (CDP) must be enabled on all the switches in the network. Do not disable CDP. When the switch detects an device in the Layer 2 path that does not support Layer 2 traceroute, the switch continues to send Layer 2 trace queries and lets them time out.
Page 1000 Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands traceroute mac ip The Layer 2 traceroute feature is not supported when multiple devices are attached to one port through hubs (for example, multiple CDP neighbors are detected on a port). When more than one CDP neighbor is detected on a port, the Layer 2 path is not identified, and an error message appears.

This manual is also suitable for:

Catalyst 3560-x

Cisco Catalyst 3750-X Command Reference Manual

CHAPTER 1 Using the Command-Line Interface1-1

CHAPTER 2 Catalyst 3750-X and 3560-X Switch

Cisco IOS Commands

Class

Clear Ipc

Clear Mka

Delete

Dot1X

Dot1X Pae

Duplex

Hw-Module

Ip Ssh

Mac Sec

MDIX Auto

Mls Qos

Mode

Nmsp

Nsf

Police

Power Rps

Psp

Queue-Set

Rcommand

Quick Links

Related Manuals for Cisco Catalyst 3750-X

Summary of Contents for Cisco Catalyst 3750-X