Home > HP > Printer > HP 5500 Ei 5500 Si Switch Series Configuration Guide

HP 5500 Ei 5500 Si Switch Series Configuration Guide

Add to Favourites
    Download as PDF Print this page Share this page

    Have a look at the manual HP 5500 Ei 5500 Si Switch Series Configuration Guide online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 1114 HP manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.

    View all the pages
    Page
    of 2513
    Add page 501 to Favourites
    image text
    Enable zoom 
    							 19 
Figure 11 Network diagram 
 
 
Configuration procedure 
1. Configure Switch B: 
# Create VLAN 2, VLAN 3, and VLAN 5 on Swit ch B. Add GigabitEthernet 1/0/3 to VLAN 2, 
GigabitEthernet 1/0/1 to VLAN 3, and GigabitEthernet 1/0/2 to VLAN 5. Configure VLAN 5 as 
the isolate-user-VLAN, and VLAN 2 and VLAN  3 as secondary VLANs. Configure the mappings 
between isolate-user-VLAN  and the secondary VLANs. 
 system-view 
[SwitchB] vlan 2 
[SwitchB-vlan2] port GigabitEthernet 1/0/3 
[SwitchB-vlan2] quit 
[SwitchB] vlan 3 
[SwitchB-vlan3] port GigabitEthernet 1/0/1 
[SwitchB-vlan3] quit 
[SwitchB] vlan 5 
[SwitchB-vlan5] port GigabitEthernet 1/0/2 
[SwitchB-vlan5] isolate-user-vlan enable 
[SwitchB-vlan5] quit 
[SwitchB] interface GigabitEthernet 1/0/2 
[SwitchB-GigabitEthernet1/0/2] port isolate-user-vlan 5 promiscuous 
[SwitchB-GigabitEthernet1/0/2] quit 
[SwitchB] interface GigabitEthernet 1/0/1 
[SwitchB-GigabitEthernet1/0/1] port isolate-user-vlan host 
[SwitchB-GigabitEthernet1/0/1] quit 
[SwitchB] interface GigabitEthernet 1/0/3 
[SwitchB-GigabitEthernet1/0/3] port isolate-user-vlan host 
[SwitchB-GigabitEthernet1/0/3] quit 
[SwitchB] isolate-user-vlan 5 secondary 2 3 
2. Configure Switch A: 
# Create VLAN 5 and add Gi gabitEthernet 1/0/2 to it. 
 system-view 
[SwtichA] vlan 5
    Add page 502 to Favourites
    image text
    Enable zoom 
    							 20 
[SwtichA-vlan5] port GigabitEthernet 1/0/2 
[SwitchA-vlan5] quit 
[SwtichA] interface vlan-interface 5 
[SwtichA-Vlan-interface5] ip address 192.168.10.100 255.255.0.0 
F r o m  H o s t  A ,  p i n g  H o s t  B .  T h e  p i n g  o p e r a t i o n  i s  unsuccessful because they are isolated at Layer 2. 
# Configure local proxy ARP to implement Layer 3 communication between Host A and Host B. 
[SwtichA-Vlan-interface5] local-proxy-arp enable 
From Host A, ping Host B. The ping oper ation is successful after the configuration.
    Add page 503 to Favourites
    image text
    Enable zoom 
    							 21 
Configuring ARP snooping 
Overview 
The ARP snooping feature is used in Layer 2 switching networks. It creates ARP snooping entries using 
ARP packets. 
If ARP snooping is enabled on a VLAN of a device, ARP packets received by the interfaces of the VLAN 
are redirected to the CPU. The CPU uses ARP packets to create ARP snooping entries comprising source 
IP and MAC addresses, VLAN and receiving port information. 
The aging time and valid period of an ARP snooping entry are 25 minutes and 15 minutes, respectively. 
If an ARP snooping entry is not updated within 15 minutes, it becomes invalid and cannot be used. After 
that, if an ARP packet whose source IP and MAC addresses correspond with the entry is received, the 
entry becomes valid, and its age timer restarts. If the age timer of an ARP entry expires, the entry is 
removed. 
If the ARP snooping device receives an ARP packet th at has the same sender IP address as but a different 
sender MAC address from a valid ARP snooping entry, it considers that an attack occurs. An ARP 
snooping entry conflict occurs in this case. As a result, the ARP snooping entry becomes invalid and is 
removed after 25 minutes. 
Configuration procedure 
To enable ARP snooping for a VLAN:  
Step Command Remarks 
1.   Enter system view. 
system-view N/A 
2.  Enter VLAN view. 
vlan vlan-id  N/A 
3.  Enable ARP snooping. 
arp-snooping enable Disabled by default 
 
Displaying and maintaining ARP snooping 
 
Task Command Remarks 
Display ARP snooping entries.  display arp-snooping 
[ ip  ip-address  | vlan 
vlan-id  ] [ | { begin |  exclude | include  } 
regular-expression  ]  Available in any view 
Remove ARP snooping entries. 
reset arp-snooping
 [ ip ip-address |  vlan 
vlan-id  ]  Available in user view
    Add page 504 to Favourites
    image text
    Enable zoom 
    							 22 
Configuring IP addressing 
Only the HP 5500 EI switches support Layer 3 Ethernet port configuration. 
This chapter describes IP addressing basic and manual IP address assignment for interfaces. Dynamic IP 
address assignment (BOOTP and DHCP) are beyond the scope of this chapter. 
The term interface in this chapter refers to Layer 3 interfaces, including VLAN interfaces and 
route-mode (or Layer 3) Ethernet ports. You can set an Ethernet port to operate in route mode by using the 
port  link-mode  route  command (see  Layer 2—LAN Switching Configuration Guide ). 
Overview 
This section describes the IP addressing basics. 
IP addressing uses a 32-bit address to identify each host on a network. To make addresses easier to read, 
they are written in dotted decimal notation, each  address being four octets in length. For example, 
address 0000100000000001 0000000100000001 in binary is written as 10.1.1.1. 
IP address classes 
Each IP address breaks down into two parts:  
•  Net ID —Identifies a network. The first several bits of a net ID, known as the class field or class bits, 
identify the class of the IP address. 
•   Host ID —Identifies a host on a network. 
IP addresses are divided into five classes, shown in  Figure 12. T
 he shaded areas represent the address 
class. The first three classes are widely used. 
Figure 12  IP address classes 
 
 
Table 1 IP address classes and ranges 
Class Address ran
ge Remarks 
A 0.0.0.0  to 127.255.255.255  The IP address 0.0.0.0 is use
d by a host at startup for 
temporary communication. This address is never a valid 
destination address.  
Addresses starting with 127 ar e reserved for loopback test. 
Packets destined to these addr esses are processed locally as 
input packets rather than sent to the link.
    Add page 505 to Favourites
    image text
    Enable zoom 
    							 23 
Class Address range Remarks 
B 128.0.0.0 to 
191.255.255.255 
N/A 
C 192.0.0.0 to 
223.255.255.255 
N/A 
D 224.0.0.0 to 
239.255.255.255 
Multicast addresses. 
E 240.0.0.0 to 
255.255.255.255  Reserved for future use except for the broadcast address 
255.255.255.255.  
 
Special IP addresses 
The following IP addresses are for special use and cannot be used as host IP addresses. 
•
  IP address with an all-zero net ID —Identifies a host on the local network. For example, IP address 
0.0.0.16 indicates the host with a host ID of 16 on the local network. 
•   IP address with an all-zero host ID —Identifies a network. 
•   IP address with an all-one host ID —Identifies a directed broadcast address. For example, a packet 
with the destination address of 192.168.1.255 will be broadcast to all the hosts on the network 
192.168.1.0. 
Subnetting and masking 
Subnetting divides a network down into smaller networks  c a l l e d  s u b n e t s  by  u s i n g  s o m e  b i t s  o f  t h e  h o s t  I D  
to create a subnet ID.  
Masking identifies the boundary between the host ID and the combination of net ID and subnet ID. 
(When subnetting is not adopted, a mask identifies  the boundary between the net ID and the host ID.) 
Each subnet mask is made up of 32 bits that corres pond to the bits in an IP address. In a subnet mask, 
consecutive ones represent the net ID and subnet  ID, and consecutive zeros represent the host ID. 
Before being subnetted, Class A, B, and C networks use the following default masks (also called natural 
masks) : 255.0.0.0, 255.255.0.0, and 255.255.255.0 respectively. 
Figure 13  sh
 ows how a Class B network is subnetted. 
Figure 13  Subnetting a Class B network 
 
 
Subnetting increases the number of addresses that ca nnot be assigned to hosts. After being subnetted, 
a network can accommodate fewer hosts. 
For example, a Class B network without subnetting  can accommodate 1022 more hosts than the same 
network subnetted into 512 subnets.
    Add page 506 to Favourites
    image text
    Enable zoom 
    							 24 
•  Without subnetting —65,534 hosts (216 – 2). (The two deducted addresses are the broadcast 
address, which has an all-one host ID, and the network address, which has an all-zero host ID.)  
•   With subnetting —Using the first 9 bits of the host-id for subnetting provides 512 (2
9) subnets. 
H owever,  o n ly 7  bi t s  re m a i n  ava i l ab l e  for  t h e  hos t  I D.  Th i s  a l l ows  126  (27 –  2 )  hos ts  i n  e a ch  s u b ne t,  
a  t o t a l  o f  6 4 , 512  h o s t s  ( 512  ×  12 6 ) .  
Assigning an IP address to an interface 
You can assign an interface one primary  address and multiple secondary addresses. 
Generally, you only need to assign the primary address to an interface. In some cases, you need to 
assign secondary IP addresses to the interface. For exam ple, if the interface connects to two subnets, to 
enable the device to communicate with all hosts on the LAN, you need to assign a primary IP address 
and a secondary IP address to the interface. 
Configuration guidelines 
Follow these guidelines when you assign an IP address to an interface: 
•   Each interface has only one primary IP address. A newly configured primary IP address overwrites 
the previous one. 
•   You cannot assign secondary IP addresses to an interface that obtains an IP address through 
BOOTP or DHCP.  
•   The primary and secondary IP addresses you assign  to the interface can be located on the same 
network segment, but different interfaces on your  device must reside on different network segments. 
•   You can manually assign an IP address to an interface, or configure the interface to obtain an IP 
address through BOOTP or DHCP. If you change the way an interface obtains an IP address, the 
new IP address overwrites the previous one.  
Configuration procedure 
To assign an IP address to an interface:  
Step Command Remarks 
1.  Enter system view. 
system-view N/A 
2.  Enter interface view.  interface
 interface-type 
interface-number   N/A 
3.
  Assign an IP address to 
the interface.  ip
 address  ip-address  { mask-length 
|  mask  } [ sub ]  By default, no IP address is assigned to 
any interface. 
 
Configuration example 
Network requirements 
As shown in Figure 14
, a port in VLAN 1 on a switch is connected to a LAN comprising two segments: 
172.16.1.0 / 24  a n d  172.16. 2.0 / 24 .   
To enable the hosts on the two subnets to communicate with the external network through the switch, and 
to enable the hosts on the two subnets to communicate with each other:
    Add page 507 to Favourites
    image text
    Enable zoom 
    							 25 
•  Assign a primary IP address and a secondary IP address to VLAN-interface 1 on the switch.  
•   Set the primary IP address of VLAN-interface 1 as the gateway address of the hosts on subnet 
172.16.1.0/24, and the secondary IP address of VLAN-interface 1 as the gateway address of the 
hosts on subnet 172.16.2.0/24. 
Figure 14  Network diagram 
 
 
Configuration procedure 
# Assign a primary IP address and a secondary IP address to VLAN-interface 1.  
 system-view 
[Switch] interface vlan-interface 1 
[Switch-Vlan-interface1] ip address 172.16.1.1 255.255.255.0 
[Switch-Vlan-interface1] ip address 172.16.2.1 255.255.255.0 sub 
# Set the gateway address to 172.16.1.1 on the hosts attached to subnet 172.16.1.0/24, and to 172.16.2.1 
on the hosts attached to subnet 172.16.2.0/24.  
# From the switch, ping a host on subnet 172.16.1.0/24 to verify the connectivity. 
 ping 172.16.1.2 
  PING 172.16.1.2: 56  data bytes, press CTRL_C to break 
    Reply from 172.16.1.2: bytes=56 Sequence=1 ttl=255 time=25 ms 
    Reply from 172.16.1.2: bytes=56 Sequence=2 ttl=255 time=27 ms 
    Reply from 172.16.1.2: bytes=56 Sequence=3 ttl=255 time=26 ms 
    Reply from 172.16.1.2: bytes=56 Sequence=4 ttl=255 time=26 ms 
    Reply from 172.16.1.2: bytes=56 Sequence=5 ttl=255 time=26 ms 
 
  --- 172.16.1.2 ping statistics --- 
    5 packet(s) transmitted 
    5 packet(s) received 
    0.00% packet loss 
    round-trip min/avg/max = 25/26/27 ms 
The output shows that the switch can communicate with the hosts on subnet 172.16.1.0/24. 
# From the switch, ping a host on subnet 172.16.2.0/24 to verify the connectivity. 
Vlan-int1
172.16.1.1/24
172.16.2.1/24 sub
172.16.1.0/24
172.16.1.2/24
172.16.2.0/24
172.16.2.2/24
Host A
Host B
Switch
    Add page 508 to Favourites
    image text
    Enable zoom 
    							 26 
 ping 172.16.2.2 
  PING 172.16.2.2: 56  data bytes, press CTRL_C to break 
    Reply from 172.16.2.2: bytes=56 Sequence=1 ttl=255 time=25 ms 
    Reply from 172.16.2.2: bytes=56 Sequence=2 ttl=255 time=26 ms 
    Reply from 172.16.2.2: bytes=56 Sequence=3 ttl=255 time=26 ms 
    Reply from 172.16.2.2: bytes=56 Sequence=4 ttl=255 time=26 ms 
    Reply from 172.16.2.2: bytes=56 Sequence=5 ttl=255 time=26 ms 
 
  --- 172.16.2.2 ping statistics --- 
    5 packet(s) transmitted 
    5 packet(s) received 
    0.00% packet loss 
    round-trip min/avg/max = 25/25/26 ms 
The output shows that the switch can communicate with the hosts on subnet 172.16.2.0/24. 
# From a host on subnet 172.16.2.0/24, ping a host on subnet 172.16.1.0/24 to verify the connectivity. 
Host B can be successfully pinged from Host A. 
Configuring IP unnumbered(only available on the 
HP 5500 EI) 
Overview 
Logically, to enable IP on an interface, you must assign this interface a unique IP address. Yet, you can 
borrow an IP address already configured on one of other interfaces on your device instead. This is called 
IP unnumbered and the interface borrowing the IP  address is called IP unnumbered interface.  
You can use IP unnumbered to save IP addresses either when available IP addresses are inadequate or 
when an interface is brought up only for occasional use.  
Configuration guidelines 
Follow these guidelines when you configure IP unnumbered on an interface: 
•   An interface cannot borrow an IP address from an unnumbered interface.  
•   Multiple interfaces can use the same unnumbered IP address.  
•   If an interface has multiple IP addresses, only the primary IP address can be borrowed. 
•   The IP address of the borrowing interface varies with  that of the borrowed interface. If an IP address 
is configured for the borrowed interface, the IP  address of the borrowing interface is the same as 
that of the borrowed interface; if no IP address  is configured for the borrowed interface, no IP 
address is assigned for the borrowing interface. 
Configuration prerequisites 
Assign a primary IP address to the interface from which you want to borrow the IP address. Alternatively, 
you may configure the interface to obtain one through BOOTP or DHCP.
    Add page 509 to Favourites
    image text
    Enable zoom 
    							 27 
Configuration procedure 
To configure IP unnumbered on an interface:  
Step Command Remarks 
1.  Enter system view. 
system-view N/A 
2.  Enter tunnel interface view. 
interface tunnel number N/A 
3.  Specify the current interface to 
borrow the IP address of the 
specified interface.  ip address unnumbered
 interface  
interface-type interface-number   The interface does not borrow IP 
addresses from other interfaces by 
default. 
 
Displaying and maintaining IP addressing 
 
Task Command Remarks 
Display IP configuration information 
for a specified Layer 3 interface or all 
Layer 3 interfaces.  display ip interface 
[ interface-type 
interface-number  ] [ | { begin  | exclude  | 
include  } regular-expression ]  Available in any view 
Display brief IP configuration 
information for a specified Layer 3 
interface or all Layer 3 interfaces.  display ip interface
 [ interface-type 
[ interface-number  ] ] brief [ | {  begin | 
exclude  | include  } regular-expression ]  Available in any view
    Add page 510 to Favourites
    image text
    Enable zoom 
    							 28 
DHCP overview 
The Dynamic Host Configuration Protocol (DHCP) provides a framework to assign configuration 
information to network devices.  
DHCP uses the client/server model. 
Figure 15 A typical DHCP application 
 
A DHCP client can obtain an IP address and other configuration parameters from a DHCP server on 
another subnet via a DHCP relay agent. For more information about the DHCP relay agent, see 
 Configuring DHCP relay agent . 
DHCP address allocation 
DHCP supports the following mechanisms for IP address allocation. 
•  Static allocation —The network administrator assigns an IP address to a client like a WWW server, 
and DHCP conveys the assigned address to the client. 
•   Automatic allocation —DHCP assigns a permanent IP address to a client. 
•   Dynamic allocation —DHCP assigns an IP address to a client for a limited period of time, which is 
called a lease. Most DHCP clients obtain their addresses in this way.
    All HP manuals Comments (0)

    Related Manuals for HP 5500 Ei 5500 Si Switch Series Configuration Guide