HP 5500 Ei 5500 Si Switch Series Configuration Guide
Have a look at the manual HP 5500 Ei 5500 Si Switch Series Configuration Guide online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 1114 HP manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
![Page 239
28
Displaying and maintaining MAC address tables
Task Command Remarks
Display MAC address table
information. display mac-address
[ mac-address [ vlan vlan-id ] |
[ [ dynamic | static ] [ interface interface-type
interface-number ] | blackhole ] [ vlan vlan-id ]
[ count ] ] [ | { begin | exclude | include }
regular-expression ] Available in any view
Display the aging timer for
dynamic MAC address
entries.
display mac-address aging-time
[ | { begin |
exclude | include }...](http://img.usermanuals.tech/thumb/36/58909/w64_hp-5500-ei-5500-si-switch-series-configuration-guide-238.png "Page 239
28
Displaying and maintaining MAC address tables
Task Command Remarks
Display MAC address table
information. display mac-address
[ mac-address [ vlan vlan-id ] |
[ [ dynamic | static ] [ interface interface-type
interface-number ] | blackhole ] [ vlan vlan-id ]
[ count ] ] [ | { begin | exclude | include }
regular-expression ] Available in any view
Display the aging timer for
dynamic MAC address
entries.
display mac-address aging-time
[ | { begin |
exclude | include }...")
![Page 240
29
Configuration procedure
# Add a static MAC address entry.
system-view
[Sysname] mac-address static 000f-e235-dc71 interface gigabitethernet 1/\
0/1 vlan 1
# Add a blackhole MAC address entry.
[Sysname] mac-address blackhole 000f-e235-abcd vlan 1
# Set the aging timer for dynamic MAC address entries to 500 seconds.
[Sysname] mac-address timer aging 500
# Display the MAC address entry for port GigabitEthernet 1/0/1.
[Sysname] display mac-address interface gigabitethernet 1/0/1
MAC ADDR...](http://img.usermanuals.tech/thumb/36/58909/w64_hp-5500-ei-5500-si-switch-series-configuration-guide-239.png "Page 240
29
Configuration procedure
# Add a static MAC address entry.
system-view
[Sysname] mac-address static 000f-e235-dc71 interface gigabitethernet 1/\
0/1 vlan 1
# Add a blackhole MAC address entry.
[Sysname] mac-address blackhole 000f-e235-abcd vlan 1
# Set the aging timer for dynamic MAC address entries to 500 seconds.
[Sysname] mac-address timer aging 500
# Display the MAC address entry for port GigabitEthernet 1/0/1.
[Sysname] display mac-address interface gigabitethernet 1/0/1
MAC ADDR...")
30 Configuring MAC Information Overview Introduction to MAC Information To monitor a network, you must monitor users who are joining and leaving the network. Because a MAC address uniquely identifies a network user, you can monitor users who are joining and leaving a network by monitoring their MAC addresses. With the MAC Information function, Layer 2 Ethernet ports send Syslog or trap messages to the monitor end in the network when they obtain or delete MAC addresses. By analyzing these messages, the monitor end can monitor users who are accessing the network. How MAC Information works When a new MAC address is obtained or an existing MAC address is deleted on a device, the device writes related information about the MAC address to th e buffer area used to store user information. When the timer set for sending MAC address monitoring Syslog or trap messages expires, or when the buffer reaches capacity, the device sends the Syslog or trap messages to the monitor end. The device writes information and sends messages only for the following MAC addresses: automatically learned source MAC addresses, MAC addresses that pass MAC authentication, MAC addresses that pass 802.1X authentication, MAC addresses matching OUI addresses in the voice VLAN feature, and secure MAC addresses. The device does not write information or send messages for blackhole MAC address, static MAC addresses, dynamic MAC addresses that are manually configured, multicast MAC addresses, and local MAC addresses. For more information about MAC authentication, 802.1X, and secure MAC addresses in port security, see Security Configuration Guide . For more information about voice VLAN and OUI addresses, see Configuring a voice VLAN . Configuring MAC Information Enabling MAC Information globally Step Command Remarks 1. Enter system view. system-view N/A 2. Enable MAC Information globally. mac-address information enable Disabled by default. Enabling MAC Information on an interface To enable MAC Information on an Ethernet interface, enable MAC Information globally first.
31
To enable MAC Information on an interface:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Enter Layer 2 Ethernet
interface view. interface
interface-type
interface-number N/A
3.
Enable MAC Information on
the interface. mac-address information enable
{
added | deleted } Disabled by default.
Configuring MAC Information mode
Step Command Remarks
1.
Enter system view.
system-view N/A
2. Configure MAC Information
mode. mac-address information mode
{ syslog | trap } Optional
trap by default.
Configuring the interval for sending Syslog or trap messages
To prevent Syslog or trap messages from being sent
too frequently, change the interval for sending Syslog
or trap messages.
To set the interval for sending Syslog or trap messages:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Set the interval for sending
Syslog or trap messages. mac-address information interval
interval-time
Optional
One second by default.
Configuring the MAC Information queue length
To avoid losing user MAC address information, when the buffer that stores user MAC address
information reaches capacity, the user MAC address information in the buffer is sent to the monitor end
in the network, even if the timer set for sending MA
C address monitoring Syslog or trap messages has not
expired yet.
To configure the MAC Information queue length:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Configure the MAC
Information queue length. mac-address information
queue-length
value Optional
50 by default.
32 MAC Information configuration example Network requirements As shown: Enable MAC Information on GigabitEthernet 1/0/1 on Device in Figure 7 to send MAC address changes in Syslog messages to Host B through GigabitEthernet 1/0/3. Host B analyzes and displays the Syslog messages. Figure 7 Network diagram Configuration procedure 1. Configure Device to send Syslog messages to Host B (see Network Management and Monitoring Configuration Guide ). 2. Enable MAC Information. # Enable MAC Information on Device. system-view [Device] mac-address information enable # Configure MAC Information mode as Syslog. [Device] mac-address information mode syslog # Enable MAC Information on GigabitEthernet 1/0/1. [Device] interface gigabitethernet 1/0/1 [Device-GigabitEthernet1/0/1] mac-address information enable added [Device-GigabitEthernet1/0/1] mac-address information enable deleted [Device-GigabitEthernet1/0/1] quit # Set the MAC Information queue length to 100. [Device] mac-address information queue-length 100 # Set the interval for sending Syslog or trap messages to 20 seconds. [Device] mac-address information interval 20
33 Configuring Ethernet link aggregation The 5500 SI Switch Series does not support Layer 3 aggregate interfaces. The Layer 3 aggregate interface configurations in this document apply to only the 5500 EI Switch Series. Overview E t h e r n e t l i n k a g g re g a t i o n, o r s i m p l y l i n k a g g re g a t i o n, combines multiple physical Ethernet ports into one logical link, called an aggregate link. Link aggregation delivers the following benefits: • Increases bandwidth beyond the limits of any single link. In an aggregate link, traffic is distributed across the member ports. • Improves link reliability. The member ports dynamically back up one another. When a member port fails, its traffic is automatically switched to other member ports. As shown in Figure 8, D evice A and Device B are connected by three physical Ethernet links. These physical Ethernet links are combined into an aggreg ate link, Link Aggregation 1. The bandwidth of this aggregate link is as high as the total bandwidth of the three physical Ethernet links. At the same time, the three Ethernet links back up one another. Figure 8 Ethernet link aggregation Basic concepts Aggregation group, member port, and aggregate interface Link aggregation is implemented by combining Ethernet interfaces into a link aggregation group. Each link aggregation group has one logical aggregate interf ace. To an upper layer entity that uses the link aggregation service, a link aggregation group appear s to be a single logical link and data traffic is transmitted through the aggr egate interface. The rate of an aggregate interface equals the total rate of its member ports in the Selected stat e, and its duplex mode is the same as the selected member ports. For more information about the states of memb er ports in an aggregation group, see Aggregation states of member por ts in an aggregation group . Aggregate interfaces are one of the following types: Bridge-aggregation (BAGG) interfaces —Also called Layer 2 aggregate interfaces. Route-aggregation (RAGG) interfaces —Also called Layer 3 aggregate interfaces. When you create an aggregate inte rface, the switch automatically creates an aggregation group of the same type and number as the aggregate interf ace. For example, when you create interface Bridge-Aggregation 1, Layer 2 aggregation group 1 is automatically created. You can assign Layer 2 Ethernet interfaces only to a Layer 2 aggregation group, and Layer 3 Ethernet interfaces only to a Layer 3 aggregation group.
34 Aggregation states of member ports in an aggregation group A member port in an aggregation group can be in either of the following aggregation states: • Selected: A Selected port can forward user traffic. • Unselected: An Unselected port cannot forward user traffic. Operational key When aggregating ports, the system automatically as signs each port an operational key based on port information such as port rate and duplex mode. Any change to this information triggers a recalculation of the operational key. In an aggregation group, all selected member ports are assigned the same operational key. Configuration classes Every configuration setting on a port might affect its aggregation state. Port configurations fall into the following classes: • Port attribute configurations —Includes port rate, duplex mode, and link status (up/down). These are the most basic port configurations. • Class-two configurations— A member port can be placed in Sele cted state only if it has the same class-two configurations as the aggregate interface. Class-two configurations made on an aggregate interface are automatically synchronized to all its member ports. These configurations are retained on the member ports even after the aggregate interface is removed. Table 2 Class-two configurations Feature Considerations Port isolation Whether the port has joined an isolation group QinQ QinQ enable state (enable/disable), TPID for VLAN tags, outer VLAN tags to be added, inner-to-outer VLAN priority mappings, inner-to-outer VLAN tag mappings, inner VLAN ID substitution mappings VLAN Permitted VLAN IDs, PVID, link type (t runk, hybrid, or access), IP subnet-based VLAN configuration, protocol-based VLAN configuration, VLAN tagging mode MAC address learning MAC address learning capability NOTE: Any class-two configuration change might affect the aggregation state of link aggregation member ports and ongoing traffic. To be sure that you are aware of the risk, the system displays a warning message every time you attempt to change a class-tw o configuration setting on a member port. • Class-one configurations —Include settings that do not affect the aggregation state of the member port even if they are different from those on th e aggregate interface. GVRP and MSTP settings are examples of class-one configurations. The class-one configuration for a member port is effective only when the member port leaves the aggregation group. Reference port When setting the aggregation state of the ports in an aggregation group, the system automatically picks a member port as the reference port. A Selected port must have the same port attributes and class-two configurations as the reference port.
35 LACP The IEEE 802.3ad Link Aggregation Control Protocol (LACP) enables dynamic aggregation of physical links. It uses link aggregation control protocol data units (LACPDUs) for exchanging aggregation information between LACP-enabled devices. 1. LACP functions The IEEE 802.3ad LACP offers basic LACP functions and extended LACP functions, as described in Table 3. Table 3 Basic and ext ended LACP functions Cate gory Description Basic LACP functions Implemented through the basic LA CPDU fields, including the system LACP priority, system MAC address, port aggregation priority, port number, and operational key. Each member port in a LACP-enabled aggregation group exchanges the preceding information with its peer. When a member po rt receives an LACPDU, it compares the received information with the information receiv ed on the other member ports. In this way, the two systems reach an agreement on which po rts should be placed in the Selected state. Extended LACP functions Implemented by extending the LACPDU with new Type/Length/Value (TLV) fields. This is how the LACP multi-active detection (MAD) mech anism of the Intelligent Resilient Framework (IRF) feature is implemented. The 5500 EI[SI] Switch Series can participate in LACP MAD as either an IRF member switch or an intermediate device. For more information about IRF, member switches, intermediate devices, and the LACP MAD mechanism, see IRF Configuration Guide . 2. LACP priorities LACP priorities have the following types: system LACP priority and port aggregation priority. Table 4 LACP priorities T ype Description Remarks System LACP priority Used by two peer devices (or systems) to determine which one is superior in link aggregation. In dynamic link aggregation, the sy stem that has higher system LACP priority sets the Selected state of memb er ports on its side first, and then the system that has lower priority sets the port state accordingly. The smaller the priority value, the higher the priority. Port aggregation priority Determines the likelihood of a member port to be selected on a system. The higher the port aggregation priority, the higher the likelihood. 3. LACP timeout interval The LACP timeout interval specifies how long a member port waits to receive LACPDUs from the peer port. If a local member port fails to rece ive LACPDUs from the peer within three times the LACP timeout interval, the member port assumes th at the peer port has failed. You can configure the LACP timeout interval as either the short timeou t interval (1 second) or the long timeout interval (30 seconds). Link aggregation modes Link aggregation has the following modes: dynamic and static. Dynamic link aggregation uses LACP and static link aggregation does not. Table 5 c ompares the two aggregation modes.
36 Table 5 A comparison between static and dynamic aggregation modes Aggregation mode LACP status on member ports Pros Cons Static Disabled Aggregation is stable. Peers do not affect the aggregation state of the member ports. The member ports do not adjust the aggregation state according to that of the peer ports. The administrator must manually maintain link aggregations. Dynamic Enabled The administrator does not need to maintain link aggregations. The peer systems maintain the aggregation state of the member ports automatically. Aggregation is unstable. The aggregation state of the member ports is susceptible to network changes. The following points apply to a dynamic link aggregation group: • A Selected port can receive and send LACPDUs. • An Unselected port can receive and send LACPDUs only if it is up and has the same class-two configurations as the aggregate interface. Aggregating links in static mode LACP is disabled on the member ports in a static aggregation group. You must manually maintain the aggregation state of the member ports. The static link aggregation process comprises: • Selecting a reference port • Setting the aggregation state of each member port Selecting a reference port The system selects a reference port from the member ports that are: • Are in the up state and have • Have the same class-two configurations as the aggregate interface. The candidate ports are sorted by aggregation prio rity, duplex, and speed in the following order: • Lowest aggregation priority value • Full duplex/high speed • Full duplex/low speed • Half duplex/high speed • Half duplex/low speed The one at the top is selected as the reference port. If two ports have the same aggregation priority, duplex mode, and speed, the one with the lower port number wins. Setting the aggregation stat e of each member port After selecting the reference port, the static aggregation group sets the aggregation state of each member port, as shown in Figure 9. A fter the static aggregation group has reached the limit on Selected ports, any port assigned to the group is placed in Unselected state to avoid traffic interruption on the current Selected ports.
37 Figure 9 Setting the aggregation state of a member port in a static aggregation group Aggregating links in dynamic mode LACP is automatically enabled on all member ports in a dynamic aggregation group. The protocol automatically maintains the aggregation state of ports. The dynamic link aggregation process comprises: • Selecting a reference port • Setting the aggregation state of each member port Selecting a reference port The local system (the actor) and the remote system (the partner) negotiate a reference port using the following workflow: 1. The systems compare the system ID (which compri ses the system LACP priority and the system MAC address). The system with the lower LACP priority value wins. If they are the same, the systems compare the system MA C addresses. The system with the lower MAC address wins. 2. The system with the smaller system ID selects the port with the smallest port ID as the reference port. A port ID comprises a port aggregation priority and a port number. The port with the lower aggregation priority value wins. If two ports have the same aggregation priority, the system compares their port numbers. The port with the smaller port number wins. Setting the aggregation stat e of each member port After the reference port is selected, the system with the lower system ID sets the state of each member port in the dynamic aggregation group on its side. No Port attribute/class 2 configurations same as the reference port? More candidate ports than max. number of Selected ports? Is the port up? Is there any hardware restriction? Port number as low as to set the port in the Selected state? Set the aggregation state of a member port Set the port in the Selected stateSet the port in the Unselected state Yes Yes No Yes No Yes No Yes No
38 Figure 10 Setting the state of a member port in a dynamic aggregation group Meanwhile, the system with the higher system ID, which has identified the aggregation state changes on the remote system, sets the aggregation state of local member ports as the same as their peer ports. A dynamic link aggregation group preferably sets full-duplex ports as the Selected ports, and will set one, and only one, half-duplex port as a Selected port when none of the full-duplex ports can be selected or only half-duplex ports exist in the group. When the aggregation state of a member port change s, the aggregation state of its peer port also changes. After the Selected port limit has been reached, a port assigned to the dynamic aggregation group is placed in Selected state if it is more eligible for being selected than a current member port. The port assigned to the dynamic aggregation group after the Selected port limit has been reached is placed in Selected state if it is more eligible for being selected than a current member port. Load-sharing criteria for link aggregation groups In a link aggregation group, traffic can be load-shar ed across the selected member ports based on a set of criteria, depending on your configuration.
39 You can choose one of the following criteria or any combination for load sharing: • MAC addresses • Service port numbers • Ingress ports • IP addresses Alternatively, you can let the system automatically choose link-aggregation load-sharing criteria based on packet types (Layer 2, IPv4, or IPv6 for example) Configuration restrictions and guidelines Follow these guidelines when you configure a link aggregation group: • To ensure stable aggregation state and service continuity, do not change port attributes or class-two configurations on any member port. If you must, make sure you understand its impact on the live network. Any port attribute or class-two configuration change might affect the aggregation state of link aggregation member ports and ongoing traffic. Avoid assigning ports to a static aggregation group th at has reached the limit on Selected ports. These ports will be placed in Unselected state to avoid traffic interruption on the current Selected ports. However, a device reboot can cause the aggregation state of member ports to change. Ethernet link aggregation configuration task list Complete the following tasks to configure Ethernet link aggregation: Task Remarks Configuring an aggregation group Configuring a static aggregation group Select either task Configuring a dynamic aggregation group Configuring an aggregate interface Configuring the description of an aggregate interface Optional Configuring the MTU of a Layer 3 aggregate interface Optional Enabling link state traps for an aggregate interface Optional Limiting the number of Selected ports for an aggregation group Optional Shutting down an aggregate interface Optional Restoring the default settings for an aggregate interface Optional Configuring load sharing for link aggregation groups Configuring load-sharing criteria for link aggregation groups Optional Enabling local-first load sharing for link aggregation Optional Enabling link-aggregation traffic redirection Optional Configuring an aggregation group You can choose to create a Layer 2 or Layer 3 link aggregation group depending on the ports to be aggregated on the 5500 EI switch: • To aggregate Layer 2 Ethernet interfaces, cr eate a Layer 2 link aggregation group.