User’s Guide Virtual Switch Extension for IBM BladeCenter, SmartConnect Version 41.1 Part Number: BMD00082, February 2009 2350 Mission College Blvd. Suite 600 Santa Clara, CA 95054 www.bladenetwork.
SmartConnect User’s Guide Copyright © 2009 BLADE Network Technologies, Inc., 2350 Mission College Blvd., Suite 600, Santa Clara, California, 95054, USA. All rights reserved. Part Number: BMD00082. This document is protected by copyright and distributed under licenses restricting its use, copying, distribution, and decompilation. No part of this document may be reproduced in any form by any means without prior written authorization of BLADE Network Technologies, Inc.
Contents Preface 7 Who Should Use This User’s Guide 7 What You’ll Find in This User’s Guide 8 Typographic Conventions 9 How to Get Help 9 Part 1: Basic Concepts & Configuration 11 Chapter 1: VSE SmartConnect Software Operation 13 VSE SmartConnect Software Overview 13 VSE SmartConnect Software Quick Start 15 Configuring the Chassis Management System 15 Configuring the Upstream Networking Device 15 Configuring the Chassis Processor Blades 15 Chapter 2: Getting Started with the Browser-Based Interface 17 Requ
SmartConnect User’s Guide Chapter 3: Switch Virtualization 25 Virtual Switch Groups 26 Port Groups 26 Virtual Machine Groups 26 Link Aggregation 27 VLANs 28 Network Segmentation 28 Port Access 28 Port-Based VLAN Tagging 28 Defined VLANs 29 Trunking 30 External Trunks 31 Internal Trunks 35 IGMP Snooping 36 ServerMobility 37 Configuring a Backup Server Port 37 General Configuration 38 Port Configuration 39 DHCP Server Configuration 40 Chapter 4: Stacking 43 Stacking Requirements 44 Stack Membership 44 Stack
SmartConnect User’s Guide Chapter 6: Configuring Switch Access 63 Management Module Setup 63 Factory Default vs.
SmartConnect User’s Guide Quality of Service 112 IEEE 8021p for MAC-Level QoS 112 DiffServ Code Point QoS 113 ServerMobility 114 ServerMobility General Configuration 115 ServerMobility Port Configuration 116 Chapter 10: System Settings 117 Management Settings 118 General Settings 119 Local User Administration 120 Remote User Administration 122 Time Services Settings 124 ErrDisable System Settings 125 Switch Protected Mode 125 Management Network Settings 126 Bootstrap Protocol Settings 126 SSH/Telnet Settin
SmartConnect User’s Guide ServerMobility 145 ServerMobility General Information 145 ServerMobility Port Information 146 SNMPv3 Information 147 Syslog Messages 149 Port Transceiver Status 150 Trunk Groups Information 150 User Information 151 Virtual Machine Group Information 151 Chapter 13: Switch Statistics 153 Access Control List Statistics 153 FDB Statistics 154 Layer 3 Statistics 154 IGMP Group Snooping Statistics Summary 158 IP Statistics 159 MP-Specific Information 160 CPU Utilization 161 MP Packet St
SmartConnect User’s Guide 6 Contents BMD00082, February 2009
Preface Virtual Switch Extension (VSE) for IBM BladeCenter, SmartConnect, is a simplified software image that can be run on a BNT 1/10Gb Uplink Ethernet Switch Module (GbESM). VSE SmartConnect software provides an easy-to-use graphical user interface (GUI) and a reduced function set to minimize networking mis-configuration. This User’s Guide describes how to configure and use the VSE SmartConnect software.
SmartConnect User’s Guide What You’ll Find in This User’s Guide This User’s Guide will help the administrator plan, implement, and administer the VSE SmartConnect software software. Where possible, each section provides feature overviews, usage examples, and configuration instructions. Part 1: Basic Concepts and Configuration Part 1 of this User’s Guide contains fundamental information necessary to use the VSE SmartConnect software.
SmartConnect User’s Guide Typographic Conventions The following table describes the typographic styles used in this book. Table 1 Typographic Conventions Typeface or Symbol Meaning Example AaBbCc123 This type is used for names of commands, files, and directories used within the text. View the readme.txt file. It also depicts on-screen computer output and Main# prompts. AaBbCc123 This bold type appears in command examples. It shows text that must be typed in exactly as shown.
SmartConnect User’s Guide 10 Preface BMD00082, February 2009
Part 1: Basic Concepts & Configuration The chapters in this part of the User’s Guide cover the following information: Chapter 1, “VSE SmartConnect Software Operation,” provides a general theory of operation for the VSE SmartConnect software. Chapter 2, “Getting Started with the Browser-Based Interface,” provides an overview of the browser-based interface (BBI) that enables the administrator to view and configure settings on the switch.
SmartConnect User’s Guide 12 Part 1: Basic Concepts & Configuration BMD00082, February 2009
CHAPTER 1 VSE SmartConnect Software Operation VSE SmartConnect Software Overview The Virtual Switch Extension (VSE) for IBM BladeCenter, SmartConnect, provides a simple Ethernet interface option for connecting a blade server chassis to the network infrastructure. The administrative effort and network skills required to connect to the network are minimized.
SmartConnect User’s Guide The VSE SmartConnect software permits the uplink ports to auto-negotiate the flow-control settings of each link (the default setting). Port characteristics can also be configured to specified values. All of the trunked uplink ports in each VSG must be configured to the same port characteristics in order to participate (form an active link) in the trunk.
SmartConnect User’s Guide VSE SmartConnect Software Quick Start When VSE SmartConnect software is loaded, the default configuration allows the switch to function correctly with no configuration changes. The administrator must make some configuration changes to the upstream network device and the blades in the blade chassis, as described in the following sections. Configuring the Chassis Management System The link through the management system is used to connect to the switch.
SmartConnect User’s Guide 16 Chapter 1: VSE SmartConnect Software Operation BMD00082, February 2009
CHAPTER 2 Getting Started with the BrowserBased Interface This chapter briefly describes the software features and requirements for the Browser-Based Interface (BBI), and explains how to access the BBI. The BBI allows the administrator to perform basic configuration tasks quickly and easily. The command line interface provides more detailed configuration options for VSE SmartConnect software (see “Command Reference” on page 57).
SmartConnect User’s Guide Starting the BBI When the VSE SmartConnect software and browser set up is done, follow these steps to launch the VSE SmartConnect software BBI: 1. Start the Web browser. 2. In the browser URL address window, specify the IP address of the target switch. If the switch is configured correctly for BBI access, the login prompt will appear. 3. Log in to the switch.
SmartConnect User’s Guide Once the administrator is properly logged in, the VSE SmartConnect software BBI appears in the Web browser’s viewing window: Figure 2-B BBI Startup Screen There are three main regions on the BBI screen: The port status area is used to view port status. Click a port icon to view details. The menus are used to select particular items or features to act upon. The configuration window is used to view and configure switch features.
SmartConnect User’s Guide Updating the Software Image The software image is the executable code running on the switch. Upgrading the software image on the switch typically involves the following actions: Load a new software image onto a FTP or TFTP server on the network, or onto a local computer. Transfer the newly loaded software image to the switch. Select the new software image to be run when the switch is next reset. Reset the switch.
SmartConnect User’s Guide Perform the following steps to load a software image: 1. On the BBI, choose menu System Settings > Boot Management > General. The Boot Management window appears. Figure 2-C Boot Management Window (shown with Stacking enabled) 2. Use the Image to transfer drop-down list to select the desired image. 3. In the Update Image/Cfg section, use the Method to use for transfer drop-down list to specify the desired method (such as TFTP, FTP, or HTTP). 4.
SmartConnect User’s Guide Selecting a Software Image to Run Perform the following steps to select which software image (image1 or image2) desired to run after the next reboot. 1. On the BBI, choose menu System Settings > Boot Management > General. 2. In the Boot Management page, use the Image to boot drop-down list to select the desired image.
SmartConnect User’s Guide 3. In the Update Image/Cfg section, use the Method to use for transfer drop-down list to specify the desired method. 4. Get the image from the appropriate source: If loading a software image to a TFTP server, enter the Server IP Address, and the Remote File Name. Then click Put Image. If loading a software image to a FTP server, enter the Server IP Address, and the Remote File Name. Also enter the FTP Username and FTP Password. Then click Put Image.
SmartConnect User’s Guide Resetting the Switch The switch must be reset to make the software image file and configuration block changes active. To reset the switch module: 1. On the BBI, choose menu System Settings > Boot Management > General. The Boot Management page appears. 2. Click Reboot the Module.
CHAPTER 3 Switch Virtualization The following virtualization features are included in the VSE SmartConnect software: VMready The switch’s VMready software makes it virtualization aware. The switch automatically discovers the Virtual Machines (VMs) of hypervisors connected to internal ports on the switch. The VSE SmartConnect software accepts up to 1024 VMs. Virtual aggregation Switch resources can be pooled together, combining their capacity while at the same time simplifying their management.
SmartConnect User’s Guide Virtual Switch Groups Switch resources can be assigned to VSGs. Up to 32 VSGs are available. Each VSG behaves independently, which allows for segmenting the switch into smaller logical entities. Within each VSG, member ports can be aggregated into trunks, combining their bandwidth.
SmartConnect User’s Guide VSGs containing VMs have the following characteristics: The VSG may consist of VMs and (optionally) external ports. Internal ports cannot be added to VSGs which contain VMs, and VMs cannot be added to VSGs which contain internal ports. The switch allows communication between VMs in the same group. The switch does not allow communication between VMs which are not in the same group.
SmartConnect User’s Guide VLANs Network Segmentation Virtual Local Area Networks (VLANs) are commonly used to split up groups of network users into manageable broadcast domains, to create logical segmentation of workgroups, and to enforce security policies among logical segments. By default, the VSE SmartConnect software treats all VLAN traffic as regular, untagged traffic (as if no VLAN is assigned), and does not use VLAN information for making decisions on whether to forward, drop, or segment traffic.
SmartConnect User’s Guide Upon the ingress of tagged packets: Packets which are already tagged for specific VLANs prior to reaching the switch are unchanged (retain their original tag), regardless of the PVID setting on the ingress port. Upon the egress of untagged packets: After ingress processing, if the packet is still untagged, it will remain untagged when egressing the port, regardless of the PVID setting on the egress port.
SmartConnect User’s Guide Trunking Trunks provide super-bandwidth, multi-link connections between switch modules or other trunk-capable devices. A trunk is a group of ports that act together, combining their bandwidth to create a single, larger virtual link. In the VSE SmartConnect software, trunks function as static Link Aggregation Groups (LAGs) that are compatible with Cisco’s EtherChannel technology.
SmartConnect User’s Guide External Trunks When using a VSG with multiple external ports, a trunk can be created between the switch module and another switch. A simple example is shown in Figure 3-A. This provides a virtual link operating at up to 30G per second, depending on how many physical ports are combined.
SmartConnect User’s Guide Trunking Rules The trunking feature operates according to specific rules of operation. When working with trunks, consider the following rules to determine how a trunk reacts in any network topology: Trunking to third-party devices must comply with Cisco® EtherChannel® technology. For any specific trunk, only one physical port type can be active at any given time.
SmartConnect User’s Guide Statistical Load Distribution Network traffic is statistically distributed between external ports in a trunk. The switch uses the source and destination IP address information present in each transmitted IP frame to determine load distribution. If the frame is not an IP frame, then Layer 2 MAC addresses are used. Each packet’s particular combination of source and destination addresses results in selecting one line in the trunk for data transmission.
SmartConnect User’s Guide Switch failover is disabled by default, but can be enabled for any VSG. When enabled, switch failover works as follows: If some (or all) of the links fail in the failover trigger, the switch disables all internal ports in the VSG. This causes the NIC team on the affected server blades to failover from the primary to the backup NIC. This process is called a failover event.
SmartConnect User’s Guide Internal Trunks Internal trunks allow for more granular high-availability options for the links between the servers and switches within a blade server chassis. Internal trunks have the following requirements: One or more blade servers in the blade chassis must be installed with multiple NICs and be configured for NIC Teaming. The actual number of supported NICs depends on the specific server and chassis model, and the capabilities of the NIC Teaming software.
SmartConnect User’s Guide In Figure 3-C, the two external trunks provide aggregation to the exterior network, and also high-availability in case any single uplink cable, external port, switch module, or blade chassis fails. On the service side of the network, each server includes two NICs which are automatically connected to each of the switch modules within its blade chassis.
SmartConnect User’s Guide ServerMobility The ServerMobility™ feature allows server IP addresses to be assigned based on their physical location in a blade server chassis. If a server fails, a replacement server can assume the identity of the failed unit. The replacement can be a new blade server placed into the slot of the failed unit, or it can be a backup server in another slot, that is activated to take over for the failed server.
SmartConnect User’s Guide General Configuration To configure the ServerMobility feature, choose Policies > Server Mobility > General Configuration. Figure 3-D ServerMobility General Configuration Window The following table describes the general options for the ServerMobility feature. Table 3-1 ServerMobility General Configuration Fields Field Description ServerMobility State Enables or disables the ServerMobility feature on the switch.
SmartConnect User’s Guide Port Configuration To configure ports for the ServerMobility feature, choose Policies > Server Mobility > Port Configuration. Figure 3-E ServerMobility Port Configuration Window The following table describes the ServerMobility feature options for each port on the switch. Table 3-2 ServerMobility Port Configuration Fields Field Description Port Identifies each port in the switch. Port ServerMobility Mode Enables or disables the ServerMobility feature on the port.
SmartConnect User’s Guide DHCP Server Configuration To modify the DHCP server configuration, open the configuration file (dhcpd.conf), and add new classes for server ports. Then define an IP address for each class. For Linux DHCP servers, option 82 information is referenced by the following variables: option agent.circuit-id option agent.remote-id These variables can be used in any expression allowed within a DHCP configuration file.
SmartConnect User’s Guide In the following example, one new class is added to define server port 8, then an IP address is associated with the new class: ******CLASS****** # in this class I have defined a switch in chassis with ID # 59:49:00:c1:56:5f:11:db:a8:dd:ca:d0:a4:b3:de:4a # placed in slot 1 and blade server is connected in port 8 class "class-chassis1-slot1-port8" { match if option agent.circuit-id = 59:49:00:c1:56:5f:11:db:a8:dd:ca:d0:a4:b3:de:4a and option agent.
SmartConnect User’s Guide 42 Chapter 3: Switch Virtualization BMD00082, February 2009
CHAPTER 4 Stacking A stack is a group of up to eight switches with VSE SmartConnect software that work together as a unified system. A stack has the following properties, regardless of the number of switches included: The network views the stack as a single entity, and the stack is identified by a single network IP address. Switches in a stack may reside within a single blade server chassis, or in multiple chassis.
SmartConnect User’s Guide Stacking Requirements Before switch modules can form a stack, they must meet the following requirements: All switches must be the same type. All blade server chassis must be the same type or have the same number of server slots (for example, BCE and BCH chassis types are compatible for stacking). Each switch must be installed with VSE SmartConnect software.
SmartConnect User’s Guide Master and Backup Selection A stack has only one Master and one Backup. The Master election is based on priority value and MAC address. If the priority values of two Current Masters are the same, then the one with lower MAC address becomes the Current Master for the stack. Priority is assigned internally by how the switch is configured and its changing role in the stack, as follows: Designated Master A Designated Master boots up with priority base value of 150.
SmartConnect User’s Guide Only the Designated Master can change the backup bit. So it is necessary to bring back the original Designated Master in order to make this change (/c/stack/backup). Because of the backup bit setting, the result of merging two stacks will always result in one Master and one Member at all times. Master and Backup Behavior When a group of switches are rebooted in stacking mode, the Designated Master switch becomes the Master of the stack.
SmartConnect User’s Guide Stack Member Numbers Each switch in the stack has two numeric identifiers, as follows: Attached Switch number (asnum) The asnum identifies each switch based on its physical connection in relation to the Master. Configured Switch number (csnum): The csnum is configured by the stack administrator in order to create a logical grouping of switches and ports. It is recommended that asnum 1 and csnum 1 be used for identifying the Master switch.
SmartConnect User’s Guide Configuring Each Switch To pre-configure each Member switch for stacking, use the CLI to perform the following steps. 1. Enable stacking on each Member switch module in the stack. >> /boot/stack/enable 2. Configure the Stack Trunk ports (optional). Dedicate two external 10Gb ports on each switch to support stacking. It is recommended that the default stack ports be used (shown below).
SmartConnect User’s Guide 6. Physically connect the Stack Trunks in a bidirectional ring topology. It is recommended that two 10Gb external ports on each switch are dedicated to stacking. As shown in Figure 4-A, starting with the Master switch, connect each switch in turn to the next. Connect the last Member switch back to the Master to complete the ring.
SmartConnect User’s Guide Additional Master Configuration Once stacking is enabled on each switch, connect the stack trunk, and define the Master switch interface, use the BBI to access the Master switch using the internal management IP interface of the Master switch, and complete the configuration. Locating the Master Switch Internal Management IP Interface To launch the BBI for the Master switch, use a Web browser to access the Master interface IP address configured in Step 7 of the previous procedure.
SmartConnect User’s Guide Binding Members to the Stack Choose menu System Settings > Stacking > Switch Configuration. The Stack Switch Configuration window appears, as shown in Figure 4-C. Figure 4-C Stack Switch Configuration Window Each switch in the stack is represented by an Attached Switch Number (asnum) and a Configured Switch Number (csnum) as explained in “Viewing Stack Connections” on page 50. Both asnum 1 and csnum 1 are reserved for the Master.
SmartConnect User’s Guide Configuring an External IP Address for the Stack Choose menu System Settings > Stacking > IP Interfaces. Use the Stack IP Interfaces window to configure a single IP interface for the stack. This interface is known at the Master interface and is shared by all switches in the stack.
SmartConnect User’s Guide Managing a Stack When switches are configured into a stack, the BBI displays information for the stack. The BBI menu area displays the csnum for the Master and the Backup (if configured).
SmartConnect User’s Guide Stacking Port Numbers Once a stack is configured, the manner in which port numbers are displayed changes throughout the BBI. Instead of the single number, the csnum appears in front of each port number. For example: This numbering change appears in the port status area at the top of the BBI, as well as on numerous configuration pages.
SmartConnect User’s Guide Stacking Boot Management The Boot Management General window provides controls that allow the administrator to perform a reboot of individual switches in the stack, or the entire stack. The following table describes the stacking Reboot commands. Table 4-2 Stacking Boot Management buttons Field Description Reboot Stack Performs a software reboot/reset of all switches in the stack. The software image specified in the Image To Boot drop-down list becomes the active image.
SmartConnect User’s Guide 2. Verify that the software push is complete.
CHAPTER 5 Command Reference The VSE SmartConnect software provides a default configuration that is ready to perform basic switching functions. Some of the more advanced features, however, require administrative configuration before they can be used effectively. The administrator can use the VSE SmartConnect software BBI to perform most basic configuration tasks. However, the command line interface is the most direct method for collecting information and making configuration changes.
SmartConnect User’s Guide CLI Menus The Main Menu appears after a successful connection and login. The following table shows the Main Menu for the administrator login. Some features are not available under the user login.
SmartConnect User’s Guide Statistics Menu The Statistics Menu (/stats) allows you to view performance statistics for the switch. [Statistics Menu] port - Port Stats Menu clrports - Clear stats for all ports l2 - Layer 2 Stats Menu l3 - Layer 3 Stats Menu mp - MP-specific Stats Menu ntp - Show NTP stats dump - Dump all stats Configuration Menu The Configuration Menu (/cfg) allows an administrator to configure switch parameters. Configuration changes are not active until explicitly applied.
SmartConnect User’s Guide Boot Options Menu The Boot Options Menu (/boot) is used for upgrading switch software, selecting configuration blocks, and for resetting the switch when necessary.
SmartConnect User’s Guide Viewing, Applying, and Saving Changes As you use the configuration menus to set parameters, the changes you make do not take effect immediately. All changes are considered “pending” until you explicitly apply them. Also, any changes are lost the next time the switch boots unless the changes are explicitly saved. Note – Some operations can override the settings in the Configuration Menu.
SmartConnect User’s Guide Saving the Configuration In addition to applying the configuration changes, you can save them to flash memory on the switch. Note – If you do not save the changes, they will be lost the next time the system is rebooted. To save the new configuration, enter the following command at any CLI prompt: # save When you save configuration changes, the changes are saved to the active configuration block.
CHAPTER 6 Configuring Switch Access The VSE SmartConnect software provides detailed commands for configuring system access and system management, and for viewing information and statistics.
SmartConnect User’s Guide Factory Default vs. MM Assigned IP Addresses Each switch must be assigned its own Internet Protocol address, which is used for communication with a SNMP network manager or other transmission control protocol/Internet Protocol (TCP/IP) applications (for example, BootP or TFTP). The factory-default IP address is 10.90.90.9x, where x corresponds to the number of the bay into which the switch is installed (for additional information, see the Installation Guide).
SmartConnect User’s Guide Configuring Management Module for Switch Access Complete the following initial configuration steps: 1. Connect the Ethernet port of the management module to a 10/100 Mbps network (with access to a management station) or directly to a management station. 2. Access and log on to the management module, as described in the blade server chassis Management Module User’s Guide.
SmartConnect User’s Guide 4. You can use the default IP addresses provided by the management module, or you can assign a new IP address to the switch through the management module. You can assign this IP address through one of the following methods: Manually through the management module Automatically through the blade server chassis Configuration Wizard Note – If you change the IP address of the switch, make sure that the switch and the management module both reside on the same subnet.
SmartConnect User’s Guide Using Telnet Telnet is used to access the switch’s command-line interface. Telnet can be launched from the management system interface, or by using a local Telnet application on your workstation. Note – If you cannot access the switch using Telnet or the Browser-Based Interface (BBI), try to ping the switch’s IP address from management system. If the ping fails, the management system is not configured correctly.
SmartConnect User’s Guide Using the Browser-Based Interface Use the management system to access the switch through a Web session. Choose menu I/O Module Tasks > Configuration from the navigation pane on the left. Select a bay number and click Advanced Configuration > Start Telnet/Web Session > Start Web Session. A Web browser window opens a connection to the VSE SmartConnect software interface on the switch.
SmartConnect User’s Guide To access the switch via the BBI, open a Web browser window and type in the URL using the IP interface address of the switch. For example: https://192.168.70.127 You can save the certificate to flash for use if the switch is rebooted.
SmartConnect User’s Guide Securing Access to the Switch Secure management is needed for environments that perform significant management functions across the Internet. The following are some of the functions for secured management: Limiting management users to a specific IP address range.
SmartConnect User’s Guide Setting Allowable Source IP Address Ranges To limit access to the switch, you can set a source IP address (or range) that will be allowed to connect to the switch IP interface through Telnet, SSH, or the BBI. This also helps to prevent spoofing or attacks on the switch’s TCP/IP stack. When an IP packet reaches the switch, the source IP address is checked against the range of addresses defined by the management networks and masks (as defined in the /cfg/sys/access/mgmt menu).
SmartConnect User’s Guide RADIUS Authentication and Authorization The VSE SmartConnect software supports the RADIUS (Remote Authentication Dial-in User Service) method to authenticate and authorize remote administrators for managing the switch. This method is based on a client/server model. The Remote Access Server (RAS)—the switch—is a client to the back-end database server. A remote user (the remote administrator) interacts only with the RAS, not the back-end server and database. Configuring RADIUS 1.
SmartConnect User’s Guide RADIUS Attributes for VSE SmartConnect Software User Privileges When the user logs in, the switch authenticates the appropriate level of access by sending the RADIUS access request (the client authentication request) to the RADIUS authentication server. If the remote user is successfully authenticated by the authentication server, the switch verifies the privileges of the remote user and authorize the appropriate access.
SmartConnect User’s Guide TACACS+ Authentication The switch supports authentication and authorization with networks using the Cisco Systems TACACS+ protocol. The switch functions as the Network Access Server (NAS) by interacting with the remote client and initiating authentication and authorization sessions with the TACACS+ access server. The remote user is defined as someone requiring management access to the switch either through a data or management port.
SmartConnect User’s Guide End User Access Control The administrator can define user accounts that permit end users to access the switch using the CLI commands. Once end-user accounts are configured and enabled, the switch requires user name/password authentication. Considerations for Configuring End User Accounts A maximum of 10 end-user IDs are supported on the switch. The switch does not automatically validate configurations.
SmartConnect User’s Guide Configuring End-User Access Control 1. On the BBI, choose System Settings > Local User Administration. Figure 6-B Local User Administration Window 2. In the User Configuration section, enter a Username and Password for the account. 3. Select the User Type. By default, the end user is assigned to the user access level (also known as Class of Service, or CoS).
SmartConnect User’s Guide Protected Mode Protected Mode settings allow the switch administrator to block the management module from making configuration changes that affect switch operation. The switch retains control over those functions.
SmartConnect User’s Guide Secure Shell and Secure Copy Secure Shell (SSH) and Secure Copy (SCP) use secure tunnels to encrypt and secure messages between a remote administrator and the switch. Telnet does not provide this level of security. The Telnet method of managing a switch does not provide a secure connection. SSH is a protocol that enables remote administrators to log securely into the switch over a network to execute management commands.
SmartConnect User’s Guide Configuring SSH/SCP Features SSH and SCP are disabled by default. Before you can use SSH commands, you must turn on SSH/SCP.
SmartConnect User’s Guide Configuring the SCP Administrator Password To configure the SCP Administrator password, first connect to the switch via the management system. For security reasons, the scpadm password may only be configured when connected through the management system. To configure the password, enter the following command via the CLI. At factory default settings, the current SCP administrator password is PASSWORD.
SmartConnect User’s Guide To Download the Switch Configuration Using SCP: Syntax: scp @:getcfg or scp -p @:getcfg Example: >> # scp scpadmin@205.178.15.100:getcfg ad4.cfg or >> # scp -p 1022 scpadmin@205.178.15.157:getcfg ad4.
SmartConnect User’s Guide Apply and Save the Configuration The apply and save commands are still needed after the last command (scp ad4.cfg scpadmin@205.178.15.100:putcfg). Or, instead, you can use the following commands: >> # scp ad4.cfg scpadmin@205.178.15.157 1022:putcfg_apply >> # scp ad4.cfg scpadmin@205.178.15.157 1022:putcfg_apply_save The diff command is automatically executed at the end of putcfg to notify the remote client of the difference between the new and the current configurations.
SmartConnect User’s Guide Generating RSA Host and Server Keys for SSH Access To support the SSH server feature, two sets of RSA keys (host and server keys) are required. The host key is 1024 bits and is used to identify the SmartConnect. The server key is 768 bits and is used to make it impossible to decipher a captured session by breaking into the SmartConnect at a later time.
SmartConnect User’s Guide SSH/SCP Integration with Radius Authentication SSH/SCP is integrated with RADIUS authentication. After the RADIUS server is enabled on the switch, all subsequent SSH authentication requests will be redirected to the specified RADIUS servers for authentication. The redirection is transparent to the SSH clients. SSH/SCP Integration with TACACS+ Authentication SSH/SCP is integrated with TACACS+ authentication.
SmartConnect User’s Guide Using SecurID with SCP Using SecurID with SCP can be accomplished in two ways: Using a RADIUS server to store an administrator password. You can configure a regular administrator with a fixed password in the RADIUS server if it can be supported. A regular administrator with a fixed password in the RADIUS server can perform both SSH and SCP with no additional authentication required. Using a SCP-only administrator password.
SmartConnect User’s Guide 86 Chapter 6: Configuring Switch Access BMD00082, February 2009
Part 2: BBI Reference VSE SmartConnect software provides a graphical user interface that lets you remotely configure and manage switches through a Web browser. Using the VSE SmartConnect software browser-based interface (BBI), you can: Divide the switch into multiple virtual switches. Group multiple physical ports together to aggregate the bandwidth between large-scale network devices. Set properties for internal and external switch ports and management ports.
SmartConnect User’s Guide Chapter 10, “System Settings,” provides information for configuring management capabilities, local and remote user administration, time services, BOOTP, SSH and Telnet access, Syslog, and more. Chapter 11, “Boot Management,” provides information for loading switch software images, and for selecting which image and configuration files will be used.
CHAPTER 7 Understanding the Browser-Based Interface The VSE SmartConnect software offers two user interfaces: a browser-based interface (BBI) and a command-line interface (CLI). The BBI allows you to perform basic switch configuration tasks quickly and easily using a standard Web browser. The CLI provides more detailed configuration options for VSE SmartConnect software. This User’s Guide covers primarily the usage of the VSE SmartConnect software BBI.
SmartConnect User’s Guide The SmartConnect BBI Screen The VSE SmartConnect software BBI has three major areas, as shown below and described in the following sections: Figure 7-A Main VSE SmartConnect Software Screen 90 Chapter 7: Understanding the Browser-Based Interface BMD00082, February 2009
SmartConnect User’s Guide Port Status Area The port status area displays port icons representing each port in the switch. The border color of each icon indicates the Virtual Switch Group (VSG) to which the port belongs.
SmartConnect User’s Guide Menu Area The menu area displays the switch type and the bay number where the switch resides. It also displays a list of menu items, arranged in a tree of feature folders (indicated with a small triangle) and feature names: Figure 7-B VSE SmartConnect Software Menu Area Click on a closed feature folder to open it and reveal its contents. Click on it again to close it.
SmartConnect User’s Guide Configuration Window When you choose a feature name from the menu area, the corresponding configuration controls are displayed in the configuration window. Depending on the selected feature, the configuration window provides switch information or allows you to view and change the settings of the VSE SmartConnect software features.
SmartConnect User’s Guide 94 Chapter 7: Understanding the Browser-Based Interface BMD00082, February 2009
CHAPTER 8 Virtual Switch Groups Switch resources can be pooled or divided into logical units known as Virtual Switch Groups (VSGs). Up to 32 VSGs are available. Two different types of resources can be assigned to VSGs: Ports (internal and external) Virtual Machines (VMs) Port Groups Each internal and external port can be independently assigned to one of the 32 available VSGs. Each VSG can contain multiple ports, but each port can belong to only one VSG.
SmartConnect User’s Guide Virtual Machine Groups The switch automatically discovers VMs that reside in the hypervisor directly connected to the switch. As with ports, VMs can be independently assigned to VSGs in order to group or separate them. Optionally, uplink ports can also be assigned to VSGs that include VMs. The switch will accept a maximum of 1024 VMs. Once this limit is reached, the switch will reject additional VMs.
SmartConnect User’s Guide Virtual Switch Groups Membership Use this window to group ports or virtual machines into VSGs. Assigning Ports to VSGs Choose menu Virtual Switch Groups > Membership to select the VSG in the Group dropdown list for each of the external ports and internal server blade ports. Also in this configuration window, external ports can be assigned to a VSG trunk. Click Apply to make your changes active, and Save to retain changes beyond reboot.
SmartConnect User’s Guide Virtual Switch Groups Settings Use this window to configure the following features for VSGs: Delete the settings VSGs Switch Failover Link Aggregation Control Protocol (LACP) IGMP Snooping BPDU policy Delete Virtual Switch Group Settings Use the Delete drop-down list to remove all settings for a specific VSG or all VSGs.
SmartConnect User’s Guide Link Aggregation Control Protocol Link Aggregation Control Protocol (LACP) is an IEEE 802.3ad standard for grouping several physical ports into one logical port (known as a dynamic trunk group or Link Aggregation group) with any device that supports the standard. Please refer to IEEE 802.3ad-2002 for a full description of the standard. The 802.3ad standard allows standard Ethernet links to form a single Layer 2 link using the Link Aggregation Control Protocol (LACP).
SmartConnect User’s Guide Virtual Switch Groups ACL QoS Use this window to assign Access Control Lists (ACLs) or ACL Sets (group of ACLs) to a VSGs. Assigning ACLs has the following prerequisites: A valid VSG must be configured (see “Virtual Switch Groups Membership” on page 97). A valid ACL or ACL set must be configured (“ACL Configuration Table” on page 106 and “Access Control List Sets” on page 111).
CHAPTER 9 Switch Policies Switch Policies include configuration windows for the following port and access related features: “Internal Port Settings” on page 102 “External Port Settings” on page 103 “Management Port Settings” on page 104 “Port Mirroring” on page 105 “Access Control Lists” on page 106 “Access Control List Sets” on page 111 “Quality of Service” on page 112 “ServerMobility” on page 114™ BMD00082, February 2009 101
SmartConnect User’s Guide Internal Port Settings Use this window to configure internal port settings. Table 9-1 Internal Port Settings Fields Field Description Port Displays the port number. This field is non-configurable. Note: If the switch is part of a multi-switch stack, the displayed number indicates the Configured Switch number (csnum) followed by the port number. See “Stacking Port Numbers” on page 54 for more information. Group Displays the current VSG for the port.
SmartConnect User’s Guide External Port Settings Use this window to configure external port settings. Table 9-2 External Port Settings Fields Field Description Port Displays the port number. This field is non-configurable. Note: If the switch is part of a multi-switch stack, the displayed number indicates the Configured Switch number (csnum) followed by the port number. See “Stacking Port Numbers” on page 54 for details. Group Displays the current VSG for the port.
SmartConnect User’s Guide See also: “Virtual Switch Groups Membership” on page 97 “Internal Port Settings” on page 102 “Stacking” on page 43 Management Port Settings Use this window to configure management port settings. Table 9-3 Management Port Settings Fields Field Description Port Displays the port number. This field is non-configurable. Note: If the switch is part of a multi-switch stack, the displayed number indicates the Configured Switch number (csnum) followed by the port number.
SmartConnect User’s Guide Port Mirroring Port mirroring allows you to attach a sniffer to a monitoring port that is configured to receive a copy of all packets forwarded from the mirrored port. SmartConnect enables you to mirror port traffic for all Layer 2 and Layer 3 traffic, including ports involved in VSG and stacking. Port mirroring can be used as a troubleshooting tool or to enhance the security of your network.
SmartConnect User’s Guide Access Control Lists Access Control Lists (ACLs) are used for limiting or permitting network traffic based on a variety of port, network, and traffic characteristics. Use the ACL Configuration Table window to search for existing ACLs to view or edit, or to launch the window for configuring a new ACL. Once ACLs or ACL sets are defined, see “Virtual Switch Groups ACL QoS” on page 100 for assigning them to VSGs.
SmartConnect User’s Guide 2. Choose a search operation: or Search for ACLs specified in the search range that meet any of the criteria entered. and Search for ACLs specified in the search range that meet all of the criteria entered. 3. Click Search to display ACLs that fit the range and meet the criteria entered. Select any displayed ACL to view or edit its configuration using the Access Control List configuration window.
SmartConnect User’s Guide Add or Edit ACLs This configuration window is used for modifying existing ACLs or defining new ACLs. This window is reached from the ACL Configuration Table window. Access Control List Use these fields to configure basic ACL parameters Table 9-4 ACL Configuration Fields Field Description ACL ID Configures the ACL number. Filter Action Defines the filter action, as follows: Permit Deny none Ethernet Packet Format Defines the Ethernet format for the ACL.
SmartConnect User’s Guide Table 9-4 ACL Configuration Fields (continued) Field Description Source IP Address Defines a source IP address for the ACL. If defined, traffic with this source IP address will match this ACL. Specify an IP address in dotted decimal notation. Destination IP Address Defines a destination IP address for the ACL. If defined, traffic with this destination IP address will match this ACL. TCP/UDP Src Port Defines a source port for the ACL.
SmartConnect User’s Guide ACL Metering Settings The following table describes the ACL metering configuration controls: Table 9-5 ACL Metering Configuration Fields Field Description Committed rate Configures the committed rate, in Kilobits per second. The committed rate must be a multiple of 64. Maximum burst size Configures the maximum burst size, in Kilobits.
SmartConnect User’s Guide Access Control List Sets Use this window to assign ACLs to a set for quicker application. To search for an ACL Set, enter a range of ACL Set numbers in the From and To fields. Click Search to display ACL Sets that fit the range. The following table describes the ACL Sets configuration controls: Table 9-7 ACL Sets Configuration Fields Field Description Set ID Assigns a numeric identifier to the ACL Set. ACLs Available Lists the ACLs that you can add to the ACL Set.
SmartConnect User’s Guide Quality of Service VSE SmartConnect software supports two types of Quality of Service (QoS) classifications: “IEEE 8021p for MAC-Level QoS” on page 112 “DiffServ Code Point QoS” on page 113 IEEE 8021p for MAC-Level QoS VSE SmartConnect software supports the following configuration windows for IEEE 802.
SmartConnect User’s Guide DiffServ Code Point QoS Use this configuration window to re-map DiffServ Code Point (DSCP) values. Table 9-8 DSCP Configuration Fields Field Description DSCP Lists the initial DSCP values. New Mapped DSCP Enter the new DSCP value to which the initial DSCP value will be mapped.
SmartConnect User’s Guide ServerMobility The ServerMobility feature uses the DHCP Relay Agent information option (option 82) to support fixed server address allocation, based on host location. The Relay Agent information option allows the switch to append location information to packets sent to a DHCP server, as follows: Agent circuit ID sub-option encodes the chassis ID, in hexadecimal format.
SmartConnect User’s Guide ServerMobility General Configuration Use this window to configure global settings for the ServerMobility feature. Table 9-9 ServerMobility - General Configuration Fields Field Description Server Mobility State Enables or disables the ServerMobility feature on the VSE SmartConnect software. Relay on Non-ServerMobility Ports Enables or disables BOOTP Relay for all ports that have ServerMobility disabled.
SmartConnect User’s Guide ServerMobility Port Configuration Use this window to configure ServerMobility feature settings for each port on the SmartConnect. Table 9-10 ServerMobility - Port Configuration Fields Field Description Port Identifies each port in the switch. Note: If the switch is part of a multi-switch stack, the displayed number indicates the Configured Switch number (csnum) followed by the port number. See “Stacking Port Numbers” on page 54 for more information.
CHAPTER 10 System Settings The VSE SmartConnect software provides configuration windows for the following system settings: “Management Settings” on page 118 for SNMP and Syslog settings “General Settings” on page 119 for system idle and watchdog timer settings “Local User Administration” on page 120 for defining switch user accounts “Remote User Administration” on page 122 for defining switch access using RADIUS or TACACS+.
SmartConnect User’s Guide Management Settings Use this window to configure SNMP and System Log (syslog) settings. SNMP SmartConnect supports SNMP-based network management. If you are running a SNMP network management station on your network, you can manage the SmartConnect using standard SNMP MIBs. Table 10-1 SNMP Management Fields Field Description System Name Defines the name for the system, up to 64 characters. System Contact Defines the name of the system contact, up to 64 characters.
SmartConnect User’s Guide General Settings Use this window to configure general switch settings. Table 10-3 General Configuration Fields Field Description Idle Timeout Sets the idle timeout for CLI sessions. Enable/Disable Watchdog Enables or disables the system watchdog. The system watchdog monitors system activity, and resets the switch if it becomes unresponsive. Watchdog Timeout Configures the watchdog reset interval, in seconds.
SmartConnect User’s Guide Local User Administration VSE SmartConnect software provides three built-in (static) user accounts, and up to ten enduser accounts. Built-In Users The following types of user accounts are always available: User The User has no direct responsibility for Virtual Switch Extension (VSE) for IBM BladeCenter, SmartConnect, management.
SmartConnect User’s Guide User Configuration The administrator can define and manage up to ten end-user accounts. Depending on the user type specified for each account, the user can perform various operation tasks via the CLI commands. Once end-user accounts are configured and enabled, the VSE SmartConnect software requires username/password authentication. Table 10-5 Local User Administration Fields Field Description Username Defines the user name, up to eight characters.
SmartConnect User’s Guide Remote User Administration Use this window to manage remote user authorization for RADIUS or TACACS+. RADIUS VSE SmartConnect software supports the RADIUS (Remote Authentication Dial-in User Service) method to authenticate and authorize remote administrators for managing the switch. The VSE SmartConnect software acts as a RADIUS client and communicates to the RADIUS server which authenticates and authorizes a remote administrator.
SmartConnect User’s Guide TACACS+ VSE SmartConnect software supports authentication and authorization using the Cisco Systems TACACS+ protocol. Table 10-7 TACACS+ Fields Field Description Tacacs+ Enables or disables the TACACS+ server. Port Displays the number of the TCP port for TACACS+. Tacacs+ Primary Server Defines the primary TACACS+ server IP address. Tacacs+ Secondary Server Defines the secondary TACACS+ server IP address.
SmartConnect User’s Guide Time Services Settings Use this window to synchronize the SmartConnect’s system clock to a Network Time Protocol (NTP) server. General Settings Table 10-8 Time Services General Settings Fields Field Description Current Date Configures the system date. The date reverts to its default value when the switch is reset. Current Time Configures the system time using a 24-hour clock format. The time reverts to its default value when the switch is reset.
SmartConnect User’s Guide ErrDisable System Settings Use this window to configure the global ErrDisable settings. Table 10-10 ErrDisable Configuration Fields Field Description Global ErrDisable Recovery Enables or disables automatic recovery of error-disabled ports. Global ErrDisable Timeout Sets the time, in seconds, that the system waits before it automatically re-enables an error-disabled port.
SmartConnect User’s Guide Management Network Settings Use this window to add a defined network through which switch access is allowed through Telnet, SNMP, SSH, or the SmartConnect browser-based interface (BBI). A range of IP addresses is produced when used with a network mask address. Specify an IP address and mask address in dotted-decimal notation.
SmartConnect User’s Guide SSH/Telnet Settings Note – For security purposes, the ability to change SSH and Telnet settings through the BBI is disabled by default and the fields in this window are subdued. To allow the BBI to make Telnet and SSH changes, use the following CLI command: /cfg/sys/access/tsbbi enable. Switch SSH Settings Use these fields to configure Secure Shell (SSH) settings.
SmartConnect User’s Guide Virtual Machine Group Settings Use this window to configure VM Group settings. Table 10-15 VM Group Configuration Fields Field Description Virtual Machine Groups Enable or disable Virtual Machine Groups. VMware ESX Service Console Heartbeat Port Number The port number that the VMWare ESX server and VMware Virtual Console use to exchange heartbeat messages. VSE SmartConnect software VMready can identify ESX Service Console interfaces connected to internal ports.
SmartConnect User’s Guide Syslog Settings Use this screen to control the types of activity messages logged by the system, and whether or not they are sent to the system console in addition to being appended to the system log file.
SmartConnect User’s Guide Stacking Configuration Stacking allows up to eight switches to act as a single logical unit for aggregating bandwidth. Initial configuration of stacking is performed using a combination of CLI and BBI commands (see “Stacking” on page 43). The BBI provides the following stacking configuration options.
SmartConnect User’s Guide Stack IP Interfaces Use the Stack IP Interfaces window to configure a single IP interface for the stack. This interface is known at the master interface and is shared by all switches in the stack. Enter the following information for the master and backup stacking IP interfaces: IP address and subnet mask Group number VLAN number Default gateway IP address Click Apply to make your changes active, and Save to retain changes beyond reboot cycles.
SmartConnect User’s Guide 132 Chapter 10: System Settings BMD00082, February 2009
CHAPTER 11 Boot Management Use the Boot Management window to manage SmartConnect software. The Boot Management window allows you to perform the following tasks: General Boot Settings: Select a software image to be used when the SmartConnect is next reset. Select a configuration block to be used when the SmartConnect is next reset. Download or upload a new software image to the SmartConnect via FTP/TFTP/ HTTP. Boot Schedule: Set a time when the switch will next reset.
SmartConnect User’s Guide The following table describes the buttons on the Boot Management window. Table 11-1 Boot Management buttons Field Description Reboot the Module Performs a software reboot/reset. The software image specified in the Image to boot drop-down list becomes the active image. Get Image Loads the software image specified in the Remote File Name field to the switch. Places the software in the block specified in the Image to transfer drop-down list.
SmartConnect User’s Guide Boot Schedule Use this window to configure the switch’s boot scheduler. Table 11-2 Boot Schedule Fields Field Description Enter day of the week for reboot Configures the day of the week of the scheduled reboot. Enter hour in 24-hour format (0...23) Configures the hour of the scheduled reboot. Enter minutes (0...59) Configures the minute of the scheduled reboot. Cancel scheduled reboot? Select “cancel” if you want to cancel a scheduled reboot.
SmartConnect User’s Guide 136 Chapter 11: Boot Management BMD00082, February 2009
CHAPTER 12 Switch Information The following windows display information about switch settings and operational status: “Access Control List Information” on page 138 “Access Control List Sets Information” on page 138 “ARP Cache Information” on page 139 “Bootstrap Protocol Relay Information” on page 139 “Forwarding Database Information” on page 140 “Virtual Switch Group Information” on page 141 “IGMP Information” on page 142 “IP Information” on page 143 “Link Status Informat
SmartConnect User’s Guide Access Control List Information Use this window to display Access Control List information. This window displays a list of ACLs configured on the switch. To view configuration details of an ACL, click the ACL number. See also: “Access Control Lists” on page 106 “Access Control List Sets” on page 111 “Virtual Switch Groups ACL QoS” on page 100 Access Control List Sets Information Use this window to display ACL Set information.
SmartConnect User’s Guide ARP Cache Information This window displays ARP cache information. The following table describes the ARP cache information fields. Table 12-1 ARP Cache Information Fields Field Description Entry # Displays the numeric identifier of the ARP entry. IP Address Displays the IP address of the ARP entry. Flags Displays the address status flag for the ARP entry. MAC Address Displays the MAC address of the ARP entry.
SmartConnect User’s Guide Forwarding Database Information The following table describes the FDB information fields. Table 12-3 FDB Information Fields Field Description Entry # Displays the numeric identifier of the FDB entry. MAC Address Displays the MAC address of the FDB entry. Group Displays the VSG number on which the MAC was learned. If the entry was learned on a management port, the field displays Mgmt. Port Displays the VLAN number of the FDB entry.
SmartConnect User’s Guide Virtual Switch Group Information The following table describes the VSG information fields. Table 12-4 Virtual Switch Group Information Fields Field Description VM MAC Address Displays a list of the MAC addresses of Virtual Servers that are members of the VSG. Optional. Internal Ports Displays a list of the internal port members in the VSG. Optional. Ports in External Trunk 1 Displays a list of external ports that are members of the first external trunk of the VSG.
SmartConnect User’s Guide IGMP Information IGMP Multicast Groups The following table describes the IGMP Multicast Groups information fields. Table 12-5 IGMP Multicast Groups information Field Description MCGroup Displays the IP address of the IGMP Multicast Group. Group Displays the VSG number. Vlan Displays the VLAN number of the IGMP Multicast Group. Port Displays the port numbers of ports that carry IGMP Multicast traffic for the group.
SmartConnect User’s Guide IP Information IP Interfaces The following table describes the IP information fields. Table 12-7 Interface information Field Description Status Shows the IP Interface status: enabled, disabled, or enabled but down. IP Interface ID Displays the numeric identifier of the IP Interface. IP Address Displays the IP address of the IP Interface. Subnet Mask Displays the Subnet Mask of the IP Interface. Broadcast Address Displays the IP Broadcast address for this IP Interface.
SmartConnect User’s Guide Link Status Information The following table describes the Link Status information fields. Table 12-9 Link Status information Field Description Port Displays the port name and number. Note: If a switch is part of a multi-switch stack, the displayed number indicates the Configured Switch number (csnum) followed by the port number. See “Stacking Port Numbers” on page 54 for more information. Speed Displays the port speed.
SmartConnect User’s Guide ServerMobility These windows display information about the ServerMobility feature: “ServerMobility General Information” on page 145 “ServerMobility Port Information” on page 146 ServerMobility General Information The following table describes the general ServerMobility information fields. Table 12-10 ServerMobility General information Field Description ServerMobility settings Displays the current ServerMobility status (enabled or disabled).
SmartConnect User’s Guide ServerMobility Port Information The following table describes the ServerMobility Port information fields. Table 12-11 Server Mobility Port information Field Description client-id Displays the client identifier value (option 61) that will be encoded by the switch in the DHCP request packets received on the port. agent.circuit-id Displays the relay agent circuit ID sub-option value that will be encoded in the DHCP request packets received on the port. agent.
SmartConnect User’s Guide SNMPv3 Information The following table describes the SNMPv3 information fields. Table 12-12 SNMPv3 information Field Description Engine ID Displays the unique identifier for the SNMP engine. usmUser Table User Name This text string represents the name of the user that you can use to access the switch. Authentication Protocol This indicates whether messages sent on behalf of this user can be authenticated, and if so, the type of authentication protocol which is used.
SmartConnect User’s Guide Table 12-12 SNMPv3 information (continued) Field Description Type Displays whether a family of view subtrees is included or excluded from the MIB view. vacmSecurityToGroup Table Sec Model Displays the security model used, which is any one of: USM, SNMPv1, SNMPv2, and SNMPv3. User Name Displays the name for the group. Group Name Displays the access name of the group. snmpCommunity Table Index Displays the unique index value of a row in this table.
SmartConnect User’s Guide Table 12-12 SNMPv3 information (continued) Field Description Taglist This column contains a list of tag values which are used to select target addresses for a particular SNMP message. Params The value of this object identifies an entry in the snmpTargetParamsTable. The identified entry contains SNMP parameters to be used when generating messages to be sent to this transport address.
SmartConnect User’s Guide Port Transceiver Status The following table describes the Transceiver information fields. Table 12-13 Transceiver information Field Description Port Displays the port number and SFP/XFP number.
SmartConnect User’s Guide User Information The following table describes the User information fields. Table 12-15 User Access information Field Description User ID Displays the numeric identifier for the user. User Name Displays the name of the user. COS Displays the Class of Service level for the user. Password Indicates whether a valid password is defined for the user. Status Displays whether the user is enabled or disabled. Login Displays the login status of the user (online or offline).
SmartConnect User’s Guide 152 Chapter 12: Switch Information BMD00082, February 2009
CHAPTER 13 Switch Statistics These windows provide collective packet and event counters for a variety of switch transactions: “Access Control List Statistics” on page 153 “FDB Statistics” on page 154 “Layer 3 Statistics” on page 154 “IGMP Group Snooping Statistics Summary” on page 158 “IP Statistics” on page 159 “MP-Specific Information” on page 160 “Network Time Protocol Statistics” on page 162 “Port Statistics” on page 162 Access Control List Statistics The following table
SmartConnect User’s Guide FDB Statistics The following table describes the Forwarding Database statistics fields. Table 13-2 FDB Statistics Field Description current Current number of entries in the Forwarding Database. hiwat Highest number of entries recorded at any given time in the Forwarding Database. To clear FDB statistics, select Clear in the Clear FDB Statistics field and click Submit.
SmartConnect User’s Guide ICMP Statistics The following table describes the ICMP statistics fields. Table 13-4 ICMP Statistics Field Description icmpInMsgs The total number of ICMP messages which the entity (the switch) received. Note that this counter includes all those counted by icmpInErrors. icmpInErrors The number of ICMP messages which the entity (the switch) received but determined as having ICMP-specific errors (bad ICMP checksums, bad length, and so forth).
SmartConnect User’s Guide Table 13-4 ICMP Statistics (continued) Field Description icmpOutRedirects The number of ICMP Redirect messages sent. For a host, this object will always be zero, since hosts do not send redirects. icmpOutEchos The number of ICMP Echo (request) messages sent. icmpOutEchoReps The number of ICMP Echo Reply messages sent. icmpOutTimestamps The number of ICMP Timestamp (request) messages sent. icmpOutTimestampReps The number of ICMP Timestamp Reply messages sent.
SmartConnect User’s Guide Table 13-5 TCP Statistics (continued) Field Description tcpAttemptFails The number of times TCP connections have made a direct transition to the CLOSED state from either the SYN-SENT state or the SYN-RCVD state, plus the number of times TCP connections have made a direct transition to the LISTEN state from the SYN-RCVD state.
SmartConnect User’s Guide IGMP Group Snooping Statistics Summary The following table describes the IGMP Snooping statistics fields. Table 13-7 IGMP Snooping Statistics Field Description Group # Displays the Switch Group number.
SmartConnect User’s Guide IP Statistics The following table describes the Internet Protocol statistics fields. Table 13-8 IP Statistics Field Description ipInReceives The total number of input datagrams received from interfaces, including those received in error.
SmartConnect User’s Guide Table 13-8 IP Statistics (continued) Field Description ipOutNoRoutes The number of IP datagrams discarded because no route could be found to transmit them to their destination. Note that this counter includes any packets counted in ipForwDatagrams, which meet this no-route criterion. Note that this includes any datagrams which a host cannot route because all of its default gateways are down.
SmartConnect User’s Guide CPU Utilization The following table describes the CPU Utilization fields. Table 13-9 CPU Utilization Field Description CpuUtil1Second The utilization of MP CPU over 1 second. It shows the percentage. CpuUtil4Seconds The utilization of MP CPU over 4 seconds. It shows the percentage. CpuUtil64Seconds The utilization of MP CPU over 64 seconds. It shows the percentage. MP Packet Statistics The following table describes the MP Packet statistics fields.
SmartConnect User’s Guide Network Time Protocol Statistics The following table describes the NTP statistics fields. Table 13-11 NTP Statistics Field Description Request Sent The total number of NTP requests the switch sent to the primary NTP server to synchronize time. Response Received The total number of NTP responses received from the primary NTP server. Updates The total number of times the switch updated its time based on the NTP responses received from the primary NTP server.
Index Symbols D [ ]......................................................................... 9 daylight savings time ......................................... 124 default password .................................................. 72 diff (global) command, viewing changes ................ 61 downloading software .......................................... 20 A accessing the switch defining source IP addresses........................... 71 RADIUS authentication ......................... 72, 122 security..
SmartConnect User’s Guide M Main Menu summary ......................................................58 management module.............................................63 Management Processor (MP) use in switch security .....................................71 manual style conventions ........................................9 mirroring ports ...................................................105 monitoring ports .................................................