HP FlexFabric 5700 Switch Series

Add to my manuals
293 Pages

advertisement

HP FlexFabric 5700 Switch Series | Manualzz
HP FlexFabric 5700 Switch Series
Configuration Guides Index
Part number: 5998-6672
Software version: Release 2416
Document version: 6W100-20150130
Legal and notice information
© Copyright 2015 Hewlett-Packard Development Company, L.P.
No part of this documentation may be reproduced or transmitted in any form or by any means without
prior written consent of Hewlett-Packard Development Company, L.P.
The information contained herein is subject to change without notice.
HEWLETT-PACKARD COMPANY MAKES NO WARRANTY OF ANY KIND WITH REGARD TO THIS
MATERIAL, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
AND FITNESS FOR A PARTICULAR PURPOSE. Hewlett-Packard shall not be liable for errors contained
herein or for incidental or consequential damages in connection with the furnishing, performance, or
use of this material.
The only warranties for HP products and services are set forth in the express warranty statements
accompanying such products and services. Nothing herein should be construed as constituting an
additional warranty. HP shall not be liable for technical or editorial errors or omissions contained
herein.
Index
Configuration guide
Code
HP FlexFabric 5700 Switch Series ACL and QoS Configuration Guide-Release 2416
QACL
HP FlexFabric 5700 Switch Series EVB Configuration Guide-Release 2416
EVB
HP FlexFabric 5700 Switch Series FCoE Configuration Guide-Release 2416
FCoE
HP FlexFabric 5700 Switch Series Fundamentals Configuration Guide-Release 2416
FM
HP FlexFabric 5700 Switch Series High Availability Configuration Guide-Release
2416
HA
HP FlexFabric 5700 Switch Series IP Multicast Configuration Guide-Release 2416
MCAST
HP FlexFabric 5700 Switch Series IRF Configuration Guide-Release 2416
IRF
HP FlexFabric 5700 Switch Series Layer 2—LAN Switching Configuration
Guide-Release 2416
LSW
HP FlexFabric 5700 Switch Series Layer 3 - IP Routing Configuration Guide-Release
2416
IPR
HP FlexFabric 5700 Switch Series Layer 3 - IP Services Configuration Guide-Release
2416
IPSER
HP FlexFabric 5700 Switch Series Network Management and Monitoring
Configuration Guide-Release 2416
NM
HP FlexFabric 5700 Switch Series OpenFlow Configuration Guide-Release 2416
OF
HP FlexFabric 5700 Switch Series Security Configuration Guide-Release 2416
SEC
HP FlexFabric 5700 Switch Series TRILL Configuration Guide-Release 2416
TRILL
IRF 10-GE grouped port restrictions, IRF-12
? 10-GE interface
? (CLI online help access), FM-2
combine, LSW-2
1 1:1 VLAN mapping
1-way DM
CFD 1-way DM configuration, HA-23
application scenario, LSW-214
configuration, LSW-220, LSW-227
2 implementation, LSW-216, LSW-217
2:2 VLAN mapping
application scenario, LSW-216
1:2 VLAN mapping
application scenario, LSW-216
configuration, LSW-226, LSW-232
configuration, LSW-225, LSW-232
implementation, LSW-216, LSW-218
2-way DM
implementation, LSW-216, LSW-218
CFD 2-way DM configuration, HA-24
1:N process redundancy, HA-138
10-GE
1
3 authorization VLAN, SEC-71
3DES
authorization VLAN assignment, SEC-93
basic configuration, SEC-90
IPsec encryption algorithm, SEC-253
4 configuration, SEC-71, SEC-79
40-GE interface
controlled/uncontrolled port, SEC-62
critical VLAN, SEC-76, SEC-88
split, LSW-2
8 display, SEC-90
802
EAD assistant, SEC-97
802.1Q-in-802.1Q. Use QinQ
EAD assistant configuration, SEC-89
IGMP snooping message 802.1p priority,
MCAST-26
EAD assistant feature, SEC-78
MLD snooping
MCAST-72
802.1p
message
EAP over RADIUS, SEC-64
priority,
EAP packet format, SEC-63
EAP relay authentication, SEC-67
QinQ SVLAN tag 802.1p priority, LSW-207
EAP relay enable, SEC-80
QoS packet 802.1p priority, QACL-87
EAP relay termination, SEC-69
VLAN group configuration, LSW-143
EAP relay/termination authentication, SEC-67
802.1p
EAP termination enable, SEC-80
priority marking configuration, QACL-65
EAP-Message attribute, SEC-65
QCN CND, QACL-99
EAPOL packet format, SEC-64
QCN CND priority mapping, QACL-99
enable, SEC-79
802.1p priority
feature cooperation, SEC-77
drop precedence, QACL-64
guest VLAN, SEC-73, SEC-86
802.1X
guest VLAN assignment, SEC-93
access control method, SEC-81
MAC authentication delay, SEC-108
ACL assignment, SEC-77, SEC-95
MAC-based access control, SEC-71
architecture, SEC-62
maintain, SEC-90
authentication, SEC-66
mandatory port authentication domain, SEC-84
authentication (access device initiated), SEC-65
online user handshake, SEC-83
authentication (client initiated), SEC-65
overview, SEC-62
authentication configuration, SEC-90
packet format, SEC-63
authentication initiation, SEC-65
periodic online user reauthentication, SEC-85
authentication request attempts max number,
SEC-82
port authorization state, SEC-81
authentication timeout timers, SEC-82
port authorization status, SEC-62
authentication trigger, SEC-83
port security authentication control mode,
SEC-173
Auth-Fail VLAN, SEC-74, SEC-87
2
HWTACACS accounting server, SEC-34
port
security
client
macAddressElseUserLoginSecure, SEC-189
HWTACACS authentication server, SEC-33
port security client userLoginWithOUI, SEC-186
HWTACACS authorization server, SEC-33
port security configuration, SEC-173, SEC-176,
SEC-184
HWTACACS display, SEC-38
HWTACACS implementation, SEC-7
port security features, SEC-179
HWTACACS maintain, SEC-38
port security intrusion protection, SEC-179
HWTACACS outgoing packet source IP address,
SEC-36
port security MAC address autoLearn, SEC-184
port security MAC move, SEC-182
port security
SEC-176
MAC+802.1X
HWTACACS scheme, SEC-32
authentication,
HWTACACS scheme creation, SEC-32
HWTACACS server SSH user, SEC-48
port security mode, SEC-178
HWTACACS shared keys, SEC-35
port security NTK, SEC-179
HWTACACS timers, SEC-36
port users max number, SEC-81
HWTACACS traffic statistics units, SEC-35
port-based access control, SEC-71
HWTACACS username format, SEC-35
quiet timer, SEC-85
RADIUS
SEC-65
Message-Authentication
HWTACACS/RADIUS differences, SEC-7
attribute,
ISP domain accounting method, SEC-45
related protocols, SEC-63
ISP domain attribute configuration, SEC-42
security user profile configuration, SEC-395
ISP domain authentication method, SEC-43
supported domain name delimiters, SEC-89
ISP domain authorization method, SEC-44
user profile assignment, SEC-78
ISP domain creation, SEC-42
VLAN manipulation, SEC-71
ISP domain method, SEC-41
LDAP administrator attribute, SEC-39
802.x
802.1 LLDPDU TLV types, LSW-237
LDAP authentication server, SEC-41
802.1p-to-local priority mapping, LSW-254
LDAP display, SEC-41
802.3 LLDPDU TLV types, LSW-237
LDAP implementation, SEC-9
LAN switching LLDP PFC 802.1p priority,
LSW-255
LDAP scheme, SEC-38
LDAP scheme creation, SEC-41
A LDAP server creation, SEC-38
AAA
LDAP server IP address, SEC-39
concurrent login user max, SEC-47
LDAP server SSH user authentication, SEC-54
configuration, SEC-1, SEC-16, SEC-48
LDAP user attribute, SEC-40
device implementation, SEC-11
LDAP versions, SEC-39
display, SEC-48
local user attribute, SEC-19
displaying local users/user groups, SEC-22
local user configuration, SEC-18
FIPS compliance, SEC-16
methods, SEC-12
3
troubleshoot LDAP user authentication fails,
SEC-60
NAS-ID profile configuration, SEC-47
protocols and standards, SEC-13
troubleshoot RADIUS, SEC-59
RADIUS accounting server parameters, SEC-24
troubleshoot RADIUS accounting error, SEC-60
RADIUS accounting-on configuration, SEC-30
troubleshoot RADIUS authentication failure,
SEC-59
RADIUS attributes, SEC-13
RADIUS authentication server, SEC-23
RADIUS display, SEC-32
troubleshoot RADIUS packet delivery failure,
SEC-59
RADIUS implementation, SEC-2
user group attribute, SEC-21
RADIUS maintain, SEC-32
user management by ISP domains, SEC-11
RADIUS request transmission attempts max,
SEC-26
user management by user access types, SEC-11
abbreviating command, FM-4
RADIUS scheme, SEC-22
aborting
RADIUS scheme creation, SEC-23
ISSU software activate/deactivate operation
(install series commands), FM-124
RADIUS security policy server IP address,
SEC-30
RADIUS
server
SSH
authentication+authorization, SEC-51
absolute time range (ACL), QACL-89
user
access
TRILL access port link, TRILL-10
RADIUS server status, SEC-26
access control
RADIUS session-control, SEC-46
NMM NTP access control rights configuration,
NM-17
RADIUS shared keys, SEC-25
RADIUS SNMP notification, SEC-31
NMM NTP peer ACL, NM-12
RADIUS timers, SEC-29
NMM NTP query ACL, NM-12
RADIUS traffic statistics units, SEC-25
NMM NTP security, NM-12
RADIUS username format, SEC-25
NMM NTP server ACL, NM-12
RBAC AAA authorization, FM-49
NMM NTP synchronization ACL, NM-12
RBAC default user role, FM-54
RBAC local AAA
configuration, FM-59
authentication
NMM SNMP MIB, NM-89
user
NMM SNMP MIB role-based, NM-91
NMM SNMP MIB view-based, NM-91
RBAC non-AAA authorization, FM-49
security portal authentication, SEC-123
RBAC user role local AAA authentication,
FM-55
security portal authentication configuration,
SEC-118, SEC-137
RBAC user role non-AAA authentication, FM-55
security portal
SEC-149
RBAC user role remote AAA authentication,
FM-54
authentication
cross-subnet,
security portal authentication direct, SEC-137
scheme configuration, SEC-18
security
portal
authentication
cross-subnet, SEC-159
SSH user local authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
troubleshoot HWTACACS, SEC-60
4
extended
copying, QACL-10
security portal authentication extended direct,
SEC-152
display, QACL-12
security portal authentication extended re-DHCP,
SEC-155
Ethernet frame header configuration, QACL-8
IGMP snooping policy, MCAST-27
security portal authentication re-DHCP, SEC-145
IPsec ACL, SEC-256
security
portal
authentication
server
detection+user synchronization, SEC-162
IPsec ACL de-encapsulated packet check,
SEC-264
accessing
IPsec ACL rule keywords, SEC-256
CLI online help, FM-2
IPsec ACL-based implementation, SEC-253,
SEC-255
emergency shell server access, FM-140
FC zone access control, FCoE-79
IPsec ACL-based tunnel establishment, SEC-254
IRF fabric, IRF-19
IPsec mirror image ACLs, SEC-256
login management SNMP device access,
FM-37
IPsec non-mirror image ACLs, SEC-256
IPv4 advanced configuration, QACL-6
port-based VLAN assignment (access port),
LSW-132
IPv4 basic configuration, QACL-4
RBAC VPN instance access policy, FM-48
IPv6 advanced configuration, QACL-7
security portal authentication device access,
SEC-119
IPv6 basic configuration, QACL-5
LAN switching LLDP APP parameter, LSW-252
account idle time (password control), SEC-197
login management command authorization,
FM-41, FM-42
accounting
login management SNMP access control,
FM-39, FM-40
AAA configuration, SEC-1, SEC-16, SEC-48
AAA ISP domain accounting method, SEC-45
login management SSH login control, FM-38
AAA RADIUS accounting-on, SEC-30
login management Telnet login control, FM-38,
FM-39
AAA
SSH
user
local
authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
login management
FM-44, FM-45
command
login management user access control, FM-38
MAC authentication ACL assignment, SEC-104,
SEC-115
accounting,
maintain, QACL-12
login management user access control, FM-38
match order, QACL-2
ACL
802.1X ACL assignment, SEC-77, SEC-95
MLD snooping policy, MCAST-73
advanced configuration, QACL-5
naming, QACL-2
automatic rule numbering, QACL-3
NMM NTP peer ACL, NM-12
automatic rule renumbering, QACL-3
NMM NTP query ACL, NM-12
basics configuration, QACL-4
NMM NTP server ACL, NM-12
categories, QACL-1
NMM NTP synchronization ACL, NM-12
configuration, QACL-1, QACL-4, QACL-12
numbering, QACL-2
5
packet filtering applicable
interface), QACL-11
scope
activating RRPP domain, HA-61
(VLAN
active
packet filtering application (interface), QACL-11
ARP active acknowledgement, SEC-363
packet filtering configuration, QACL-10
FC zone database active zone set, FCoE-71
packet filtering default action, QACL-12
FTP active (PORT) operating mode, FM-73
packet filtering log interval, QACL-11
security portal authentication type, SEC-118
packet fragment filtering, QACL-3
adding
rule numbering, QACL-3
MAC address table blackhole entry, LSW-23
rule numbering step, QACL-3
MAC address table multiport unicast entry,
LSW-23
SSH management parameters, SEC-308
address
switch applications, QACL-1
time range configuration, QACL-89
DHCP address assignment, IPSER-32
time range display, QACL-89
DHCP address pool, IPSER-32
user-defined configuration, QACL-9
DHCP address pool application on interface,
IPSER-44
ACS
DHCP address pool selection, IPSER-33
attribute type, NM-220
DHCP allocation, IPSER-25
attribute type (default)(CLI), NM-221
DHCP BOOTP client address acquisition,
IPSER-82
attribute type (preferred), NM-220
authentication parameters, NM-222
autoconnect parameters, NM-223
DHCP client duplicated address detection,
IPSER-66
connection interface, NM-222
DHCP IP address allocation sequence, IPSER-34
HTTPS SSL client policy, NM-224
DHCP IP address conflict detection, IPSER-44
provision code, NM-222
DHCP IP address lease extension, IPSER-26
action
DHCP server address pool, IPSER-34
loop detection block, LSW-121
DHCP server address pool creation, IPSER-35
loop detection no-learning protection, LSW-121
DHCP server address pool IP address range,
IPSER-35
loop detection shutdown protection, LSW-121
OpenFlow action
restrictions, OF-19
list/action
set
DHCPv6 address allocation, IPSER-170
merge
DHCPv6 address pool, IPSER-170
activating
DHCPv6 address pool selection, IPSER-170
EVB VSI aggregate filter, EVB-10
DHCPv6 address/prefix assignment, IPSER-165
EVB VSI filter, EVB-10
DHCPv6
IPSER-166
FC zone set, FCoE-85
ISSU activate operation
commands), FM-124
(install
address/prefix
DHCPv6 client
IPSER-187
series
IPv6
DHCPv6 IA, IPSER-169
OpenFlow instance, OF-12
DHCPv6 IAID, IPSER-169
6
lease
address
renewal,
acquisition,
DHCPv6 IPv6 address assignment, IPSER-168
special IP addresses, IPSER-21
DHCPv6 IPv6 address/prefix
sequence, IPSER-171
stateless DHCPv6, IPSER-167
allocation
static source check disable, LSW-32
DHCPv6 multicast, IPSER-169
Address Resolution Protocol. Use ARP, Use ARP
DHCPv6 overview, IPSER-165
DHCPv6 server dynamic
assignment, IPSER-179
adjusting
IPv6
address
ARP/ND table capacity, FM-163
routing table capacity, FM-163
DHCPv6 server IPv6 address assignment,
IPSER-173
advanced ACL
fabric FC address assignment, FCoE-34
category, QACL-1
fabric N_Port-WWN to FC address binding,
FCoE-38
naming, QACL-2
numbering, QACL-2
FC (FCoE), FCoE-2
advertisement
FC direct routes, FCoE-53
TRILL LSP fast advertisement, TRILL-15
FC FSPF configuration, FCoE-56
advertising
FC FSPF routes, FCoE-54
FCoE FKA advertisement interval value, FCoE-18
FC static route configuration, FCoE-55
FIP solicited discovery advertisement, FCoE-8
FC static routes, FCoE-54
FIP unsolicited discovery advertisement, FCoE-8
FCoE fabric address assignment, FCoE-159
high availability DLDP advertisement packet
send interval, HA-37
FCoE well-known fabric addresses, FCoE-159
high availability DLDP advertisement timer,
HA-33
IP address classes, IPSER-20
IP addressing configuration, IPSER-20, IPSER-23
IP services IRDP proxy-advertised IP address,
IPSER-119
IP addressing interface address, IPSER-22
IP multicast, MCAST-6
IPPO ICMP packet source address, IPSER-130
IP services IRDP router advertisement (RA),
IPSER-119
IPv6 addresses, IPSER-137
LAN switching LLDP advertisable TLV, LSW-244
IPv6 ICMPv6 packet source address, IPSER-157
LAN switching LLDP+DCBX TLV advertisement,
LSW-251
MAC address learning disable, LSW-25
RIP default route, IPR-17
MAC address move notification, LSW-30
RIP on interface, IPR-14
MAC address table address synchronization,
LSW-29
RIPng default route, IPR-38
MAC address table learning priority, LSW-28
RIPv2 summary route, IPR-16
MAC Information queue length, LSW-37
voice VLAN CDP advertisement configuration,
LSW-179
MLD snooping query source IPv6 address,
MCAST-71
voice VLAN information advertisement to IP
phones, LSW-171
ping address reachability determination, NM-1
voice VLAN LLDP advertisement configuration,
LSW-179
SNMP notification for MAC address table,
LSW-33
7
RMON alarm function, NM-110
AES
RMON alarm group sample type, NM-109
IPsec encryption algorithm, SEC-253
RMON configuration, NM-107, NM-112
affinity
process placement location affinity, HA-140
RMON group, NM-108
process placement location-set, HA-139
RMON private group, NM-108
process
HA-140
placement
location-type,
alert protocol (SSL), SEC-342
HA-139,
algorithm
process placement negative (repulse) affinity,
HA-139
configuring load sharing, IPSER-115
IPsec authentication, SEC-253
process placement positive (attract) affinity,
HA-139
IPsec encryption (3DES), SEC-253
process placement process, HA-141
IPsec encryption (AES), SEC-253
process placement program, HA-139
IPsec encryption (DES), SEC-253
process placement self, HA-139, HA-141
IPsec IKE DH algorithm, SEC-283
QCN algorithm, QACL-98
agent
NMM SNMP agent host notification, NM-99
QCN algorithm (CP), QACL-98
sFlow configuration, NM-194
QCN algorithm (RP), QACL-98
QCN CND, QACL-99
aggregate CAR
configuration, QACL-79
SSH negotiation, SEC-301
priority marking configuration, QACL-65
STP calculation, LSW-70
TRILL SPF algorithm parameter, TRILL-16
aggregating
link. See Ethernet link aggregation
alias (command keyword), FM-5
RSCN aggregation, FCoE-42
allocating
DHCP address allocation, IPSER-32
aging
ARP dynamic entry aging timer, IPSER-6
DHCP addresses allocation, IPSER-25
MAC address table timer, LSW-26
DHCP IP address allocation sequence, IPSER-34
spanning tree max age timer, LSW-91
DHCPv6 address/prefix allocation sequence,
IPSER-171
AH
DHCPv6 dynamic address allocation, IPSER-170
IPsec security protocol 51, SEC-251
DHCPv6 dynamic prefix allocation, IPSER-170
airflow direction configuration, FM-157
DHCPv6 static address allocation, IPSER-170
AIS
DHCPv6 static prefix allocation, IPSER-170
CFD AIS configuration, HA-23
alternate port (MST), LSW-80
CFD function, HA-16
anti-replay
CFD functions, HA-16
IPsec anti-replay redundancy, SEC-266
alarm
IPsec configuration, SEC-265
Ethernet OAM fault detection, HA-1
any authentication (SSH), SEC-301
8
DDNS client policy to interface, IPSER-108
Anycast
IPv6 address type, IPSER-138
DHCP address pool on interface, IPSER-44
IPv6 anycast address configuration, IPSER-147
DHCPv6 snooping trusted port, IPSER-195
DHCPv6 snooping untrusted port, IPSER-195
API
extended Python API, FM-168
flow mirroring QoS policy, NM-190
extended Python API functions, FM-168
flow mirroring QoS policy (control plane),
NM-190
APP parameter (LLDP), LSW-252
flow mirroring QoS policy (global), NM-190
Appendix A (Application restrictions), OF-18
flow mirroring QoS policy (interface), NM-190
Appendix A (Default priority maps), QACL-85
flow mirroring QoS policy (VLAN), NM-190
Appendix A (FCoE fabric address assignment),
FCoE-159
interface NAS ID profile, SEC-135
Appendix A (MAC-IP flow table), OF-22
IPsec policy to interface, SEC-264
Appendix A (Supported NETCONF operations),
NM-265
port security NAS-ID profile, SEC-183
QoS congestion avoidance
WRED table, QACL-59
Appendix B (FCoE well-known fabric addresses),
FCoE-159
queue-based
QoS policy, QACL-21
Appendix B (Packet precedence), QACL-86
QoS policy (control plane), QACL-23
application
QoS policy (global), QACL-23
ACL switch applications, QACL-1
QoS policy (user profile), QACL-24
IP multicast data distribution, MCAST-4
QoS policy (VLAN), QACL-22
IP multicast VPN, MCAST-12
IPsec
application-based
SEC-254
QoS policy to interface, QACL-22
implementation,
RIPng IPsec profile, IPR-41
appointed VLAN-x forwarder. See AVF
IPsec application-based tunnel establishment,
SEC-254
architecture
IRF ARP MAD application scenario, IRF-9
802.1X, SEC-62
IRF LACP MAD application scenario, IRF-8
IP multicast network, MCAST-5
IRF ND MAD application scenario, IRF-10
NMM NTP, NM-9
NQA+Track+static
HA-128
PKI, SEC-217
routing
collaboration,
archiving
Track+application module association, HA-131
configuration archive, FM-99
Track+application
HA-128
configuration archive parameters, FM-100
module
collaboration,
configuration archiving (automatic), FM-100
Track+Smart Link association, HA-132
running configuration (manual), FM-101
Track+static routing association, HA-131
area
applying
data buffer fixed area, QACL-91
ACL packet filtering (interface), QACL-11
data buffer shared area, QACL-91
data buffer configuration, QACL-94
9
operation, IPSER-1
QoS data buffer fixed-area max queue ratio,
QACL-94
proxy ARP configuration, IPSER-14
QoS data buffer shared-area max queue ratio,
QACL-93
scanning configuration restrictions, SEC-370
snooping configuration, IPSER-17
QoS data buffer total shared-area ratio,
QACL-93
snooping display, IPSER-17
argument (CLI string/text type), FM-4
snooping maintain, IPSER-17
ARP
static configuration, IPSER-7
ARP fast update enabling for MAC address
move, LSW-32
static entry configuration, IPSER-3
attack protection. See ARP attack protection
table, IPSER-2
static table entry, IPSER-3
common proxy ARP configuration, IPSER-15
ARP attack protection
common proxy ARP enable, IPSER-14
active acknowledgement, SEC-363
configuration, IPSER-1, IPSER-7
ARP detection display, SEC-366
display, IPSER-7
ARP detection maintain, SEC-366
dynamic entry aging timer configuration,
IPSER-6
authorized ARP configuration, SEC-364
configuration, SEC-357
dynamic entry check enable, IPSER-6
detection configuration, SEC-364
dynamic entry max (device), IPSER-5
filtering configuration, SEC-372, SEC-373
dynamic entry max (interface), IPSER-5
fixed ARP configuration, SEC-370
dynamic table entry, IPSER-2
gateway protection, SEC-371, SEC-372
fast-reply configuration, IPSER-18
packet rate limit configuration, SEC-360
gratuitous ARP configuration, IPSER-11, IPSER-12
gratuitous ARP IP conflict notification, IPSER-12
packet source
SEC-363
gratuitous ARP packet learning, IPSER-11
packet validity check configuration, SEC-365
gratuitous ARP periodic packet send, IPSER-11
restricted forwarding, SEC-366
local proxy ARP enable, IPSER-14
restricted forwarding configuration, SEC-368
logging enable, IPSER-6
scanning configuration, SEC-370
MAD. See ARP MAD
maintain, IPSER-7
source MAC-based attack detection, SEC-361,
SEC-362
message format, IPSER-1
source MAC-based detection display, SEC-361
MFF
configuration,
SEC-379
SEC-375,
MAC
consistency
check,
unresolvable IP attack, SEC-357, SEC-359
SEC-377,
unresolvable
SEC-358
MFF manual-mode in ring network, SEC-380
IP
attack
blackhole
routing,
unresolvable IP attack protection display,
SEC-358
MFF manual-mode in tree network, SEC-379
multiport entry configuration, IPSER-4, IPSER-8
unresolvable IP attack source suppression,
SEC-358
OpenFlow table entry, IPSER-3
10
DHCPv6 server network parameters assignment,
IPSER-174
user validity check, SEC-364
user+packet validity check, SEC-367
fabric domain ID, FCoE-33
ARP detection
fabric FC address, FCoE-34
VLAN M:1 mapping (dynamic IP address
assignment), LSW-221
FCoE fabric address, FCoE-159
IP addressing interface address, IPSER-22
ARP MAD
IRF ARP MAD, IRF-9
IPv6 interface addresses, IPSER-144
IRF ARP MAD configuration, IRF-24
IPv6 multicast port-based VLAN user port,
MCAST-97
IRF fabric ARP MAD configuration, IRF-34
IRF device member IDs, IRF-15
ARP snooping
VLAN M:1 mapping
assignment), LSW-223
(static
IP
Layer 2 LAN switching port-based VLAN access
port, LSW-132
address
MAC address table learning priority, LSW-28
ASCII transfer mode, FM-73
MAC authentication ACL, SEC-115
ASM
MAC-based
LSW-136
IP multicast model), MCAST-5
assigning
VLAN
dynamic
assignment,
MAC-based VLAN server assignment, LSW-138
802.1X ACL assignment, SEC-77, SEC-95
MAC-based VLAN static assignment, LSW-136
802.1X user profile assignment, SEC-78
CLI user line assignment, FM-17
port mirroring monitor port to remote probe
VLAN, NM-179
CWMP ACS attribute (preferred)(CLI), NM-221
port to isolation group (multiple), LSW-65
CWMP ACS attribute (preferred)(DHCP server),
NM-220
port-based
MCAST-52
DHCP address, IPSER-32
port-based VLAN access port (interface view),
LSW-132
DHCPv6 address/prefix, IPSER-165
DHCPv6 IPv6 address, IPSER-168
IPv6
RBAC local AAA authentication user role,
FM-55
address
RBAC non-AAA authentication user role, FM-55
RBAC permission assignment, FM-47
DHCPv6 server dynamic IPv6 prefix assignment,
IPSER-177
RBAC remote AAA authentication user role,
FM-54
DHCPv6 server IPv6 address assignment,
IPSER-173
prefix
port,
port-based VLAN trunk port, LSW-133
DHCPv6 rapid assignment (2 messages),
IPSER-165
IPv6
user
port-based VLAN hybrid port, LSW-134
DHCPv6 IPv6 prefix, IPSER-168
DHCPv6 server
IPSER-172
VLAN
port-based VLAN access port (VLAN view),
LSW-132
DHCPv6 assignment (4 messages), IPSER-165
DHCPv6 server dynamic
assignment, IPSER-179
multicast
RBAC user role, FM-54
assignment,
RBAC user role assignment, FM-49
voice VLAN assignment mode, LSW-173
11
CFD maintenance association, HA-13
voice VLAN assignment mode (automatic),
LSW-173
voice VLAN
LSW-173
assignment
mode
asynchronous
(manual),
OpenFlow message (asynchronous), OF-7
attack
assistant edge node
ARP attack protection configuration, SEC-357
RRPP type, HA-48
attack D&P
specifying RRPP, HA-60
configuration, SEC-401
associating
TCP fragment attack prevention configuration,
SEC-401
IPsec SA, SEC-252
NMM IPv6 NTP client/server association mode,
NM-29
attack detection and prevention. See attack D&P
attacking
NMM IPv6 NTP multicast association mode,
NM-38
detection and prevention. See attack D&P
attribute
NMM IPv6 NTP symmetric active/passive
association mode, NM-32
802.1X RADIUS EAP-Message, SEC-65
NMM NTP association mode, NM-14
802.1X
SEC-65
NMM NTP broadcast association mode, NM-10,
NM-16, NM-33
RADIUS
Message-Authentication,
AAA HWTACACS scheme, SEC-32
NMM NTP broadcast association mode with
authentication, NM-43
AAA ISP domain attribute, SEC-42
NMM NTP client/server association mode,
NM-10, NM-14, NM-28
AAA LDAP scheme, SEC-38
AAA LDAP administrator attribute, SEC-39
NMM NTP client/server association mode with
authentication, NM-41
AAA LDAP user attribute, SEC-40
NMM NTP multicast association mode, NM-10,
NM-16, NM-35
AAA local user attribute, SEC-19
AAA local user, SEC-18
AAA RADIUS, SEC-13
NMM
NTP
symmetric
active/passive
association mode, NM-10, NM-15, NM-31
AAA RADIUS common standard attributes,
SEC-13
Smart Link associated device, HA-104
AAA RADIUS extended attributes, SEC-6
Track+application module, HA-131
AAA RADIUS HP proprietary attributes, SEC-15
Track+CFD, HA-129
Track+detection modules, HA-129
AAA RADIUS Login-Service attribute check
method, SEC-31
Track+interface management, HA-130
AAA RADIUS scheme, SEC-22
Track+NQA, HA-129
AAA scheme, SEC-18
Track+Smart Link, HA-132
AAA user group attribute, SEC-21
Track+static routing, HA-131
Ethernet link aggregation attribute configuration,
LSW-41
TRILL port+track entry, TRILL-23
port-based multicast VLAN user port attribute,
MCAST-51
TRILL VR-Track entry, TRILL-20
association
12
FTP basic server authentication, FM-74
authenticating
802.1X access device initiated authentication,
SEC-65
high availability DLDP MD5 authentication,
HA-38
802.1X authentication, SEC-66
high availability DLDP MD5 mode, HA-34
802.1X authentication request attempts max
number, SEC-82
high availability DLDP non-authentication mode,
HA-34
802.1X authentication trigger, SEC-83
high availability DLDP password authentication,
HA-38
802.1X client-initiated, SEC-65
high availability DLDP plaintext authentication,
HA-38
802.1X EAP over RADIUS, SEC-64
802.1X EAP relay authentication, SEC-67
high availability DLDP plaintext mode, HA-34
802.1X EAP relay enable, SEC-80
802.1X EAP relay/termination, SEC-67
high availability DLDP simple authentication,
HA-38
802.1X EAP termination, SEC-69
IPsec, SEC-253
802.1X EAP termination enable, SEC-80
IPsec authentication algorithms, SEC-253
802.1X initiation, SEC-65
IPsec Authentication Header. Use AH
802.1X mandatory port authentication domain,
SEC-84
IPsec configuration, SEC-250, SEC-272
IPsec Encapsulating Security Payload. Use ESP
802.1X overview, SEC-62
IPsec IKE configuration (main mode/pre-shared
key authentication), SEC-292
802.1X periodic online user reauthentication,
SEC-85
IPsec IKE
SEC-282
DSA
802.1X timeout timers, SEC-82
IPsec IKE
SEC-282
pre-shared
802.1X VLAN manipulation, SEC-71
IPsec IKE RSA signature authentication, SEC-282
AAA configuration, SEC-1, SEC-16, SEC-48
IPsec RIPng configuration, SEC-277
AAA ISP
SEC-43
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
802.1X
RADIUS
attribute, SEC-65
domain
Message-Authentication
authentication
method,
signature
key
authentication,
authentication,
AAA LDAP authentication, SEC-9
IPsec tunnel for IPv4 packets (manual), SEC-272
AAA LDAP server SSH user authentication,
SEC-54
login management CLI console/AUX none
authentication, FM-19
AAA
RADIUS
server
SSH
authentication+authorization, SEC-51
user
login management CLI console/AUX password
authentication, FM-20
AAA RADIUS user authentication methods,
SEC-3
login management CLI console/AUX scheme
authentication, FM-21
AAA
SSH
user
local
authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
login management CLI none authentication
mode, FM-18
login management CLI password authentication
mode, FM-18
CWMP CPE ACS authentication parameters,
NM-222
13
login management CLI scheme authentication
mode, FM-18
RBAC temporary user role authorization
(HWTACACS authentication), FM-64
login management
authentication, FM-24
RBAC temporary user role authorization
(RADIUS authentication), FM-68
Telnet
login
none
RBAC user role authentication, FM-58
login management Telnet login password
authentication, FM-25
scheme
RBAC user role local AAA authentication,
FM-55
MAC authentication, SEC-101, SEC-105, SEC-111
RBAC user role remote AAA authentication,
FM-54
MAC authentication (local), SEC-111
RIPng IPsec profile application, IPR-41
MAC authentication (RADIUS-based), SEC-113
RIPv2 message authentication configuration,
IPR-21
login management Telnet
authentication, FM-26
MAC authentication
SEC-102
login
VLAN
assignment,
security password control, SEC-197, SEC-202
security
SEC-194
NMM NTP, NM-13
NMM NTP broadcast authentication, NM-22
configuration,
security portal authentication server, SEC-119
security user profile configuration, SEC-395
NMM NTP client/server mode authentication,
NM-18
mode
control
security portal authentication client, SEC-119
NMM NTP broadcast mode with authentication,
NM-43
NMM
NTP
client/server
authentication, NM-41
password
SSH configuration, SEC-300
with
SSH methods, SEC-301
SSH
Secure
Telnet
authentication, SEC-325
client
password
SSH
Secure
Telnet
authentication, SEC-329
client
publickey
NMM NTP security, NM-12
NMM NTP symmetric active/passive mode
authentication, NM-19
SSH
Secure
Telnet
authentication, SEC-317
server
password
NMM SNTP authentication, NM-48
SSH
Secure
Telnet
authentication, SEC-320
server
publickey
NMM NTP configuration, NM-18
NMM NTP multicast authentication, NM-23
periodic MAC reauthentication, SEC-104
SSH server configuration, SEC-303
port security authentication modes, SEC-173
SSH SFTP client publickey authentication,
SEC-334
port
security
client
macAddressElseUserLoginSecure, SEC-189
SSH SFTP server password authentication,
SEC-331
port security client userLoginWithOUI, SEC-186
port security configuration, SEC-173, SEC-176,
SEC-184
SSL services, SEC-342
authentication
port security MAC address autoLearn, SEC-184
RBAC local AAA
configuration, FM-59
authentication
creating user profile, SEC-395
user
Authentication, Authorization, and Accounting. Use
AAA
RBAC RADIUS authentication user configuration,
FM-61
Auth-Fail VLAN
802.1X authentication, SEC-74
14
automatic configuration archiving, FM-100
802.1X configuration, SEC-87
CFD MIP auto-generation rule, HA-20
authorization VLAN
802.1X assignment, SEC-72, SEC-93
configuration. See automatic configuration
802.1X supported, SEC-71
CWMP ACS autoconnect parameters, NM-223
802.1X unsupported, SEC-72
DHCP automatic address allocation, IPSER-25
MAC authentication, SEC-102
DHCP client auto-configuration file, IPSER-40
DHCP snooping entry auto backup, IPSER-74
authorized ARP
eIRF device operating mode, IRF-49
configuration, SEC-364
FIPS mode (automatic reboot), SEC-385
authorizing
802.1X authorization VLAN, SEC-71
FIPS mode entry (automatic reboot), SEC-390
802.1X port authorization state, SEC-81
FIPS mode exit (automatic reboot), SEC-387,
SEC-392
802.1X port authorization status, SEC-62
interface auto power-down (Ethernet), LSW-8
802.1X port authorized-force state, SEC-81
IPv6 interface link-local address automatic
generation, IPSER-147
802.1X port auto state, SEC-81
802.1X port unauthorized-force state, SEC-81
IPv6 link-local address automatic generation,
IPSER-146
AAA configuration, SEC-1, SEC-16, SEC-48
AAA ISP domain authorization method, SEC-44
IPv6 ND stateless address autoconfiguration,
IPSER-141
AAA LDAP authorization, SEC-9
AAA
RADIUS
server
SSH
authentication+authorization, SEC-51
IPv6 stateless
IPSER-145
user
address
autoconfiguration,
AAA RADIUS session-control, SEC-46
IRF software auto-update, IRF-22
AAA
SSH
user
local
authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
loop detection port status auto recovery,
LSW-122
FTP basic server authorization, FM-74
port security MAC address autoLearn, SEC-184
login management command authorization,
FM-41, FM-42
SCSI-FCP information autodiscovery, FCoE-43
PKI certificate request (automatic), SEC-223
voice VLAN assignment (automatic), LSW-173
login management user access control, FM-38
MAC authentication
SEC-102
authorization
voice VLAN port operation configuration
(automatic assignment), LSW-176, LSW-180
VLAN,
automatic
port security authorization-fail-offline feature,
SEC-184
high availability DLDP automatic unidirectional
link shutdown, HA-39
port security server authorization information,
SEC-182
RIPv2 automatic route summarization enable,
IPR-16
RBAC temporary user role authorization, FM-56
automatic configuration
auto
DHCP server, FM-175
ACL auto match order sort, QACL-2
DNS server, FM-176
ACL automatic rule numbering, QACL-3
15
file preparation, FM-174
QoS overview, QACL-15
file server configuration, FM-174
QoS policy configuration, QACL-18
banner
gateway, FM-177
HTTP server+Python script, FM-183
configuration, FM-147, FM-148
HTTP server+Tcl script, FM-182
incoming type, FM-147
interface selection, FM-177
legal type, FM-147
IRF setup, FM-184
login type, FM-147
server-based, FM-173, FM-177
MOTD type, FM-147
start, FM-177
multiple-line input mode, FM-147
TFTP server, FM-177
shell type, FM-147
USB-based, FM-173
single-line input mode, FM-147
basic ACL
AutoMDIX mode (Ethernet interface), LSW-12
category, QACL-1
AUX
configuration, QACL-4
console/AUX common user line settings, FM-21
console/AUX none authentication, FM-19
basic management LLDPDU TLV types, LSW-237
console/AUX password authentication, FM-20
BAS-IP
security portal authentication BAS-IP, SEC-134
console/AUX scheme authentication, FM-21
behavior
login management CLI local console/AUX port
login, FM-19
QoS traffic behavior definition, QACL-20
login management overview, FM-14
best-effort QoS service model, QACL-15
AVF
bidirectional
TRILL AVF inhibition time, TRILL-12
high availability DLDP port state, HA-33
AVF (TRILL), TRILL-1
port mirroring, NM-171
B BIMS server information (DHCP client), IPSER-40
backing up
binary transfer mode, FM-73
DHCP snooping entries, IPSER-74
binding
IP routing route backup, IPR-2
fabric N_Port-WWN to FC address, FCoE-38
IRF configuration backup, IRF-14
fabric N_Port-WWN to FC address binding,
FCoE-38
main next-startup configuration file, FM-103
IP source guard (IPSG) dynamic binding,
SEC-347
MST backup port, LSW-80
Smart Link link backup, HA-100
IP source guard (IPSG) static binding, SEC-347
software upgrade backup image set, FM-107
IPsec source interface to policy, SEC-266
bandwidth
IPv4 source guard (IPv4SG) dynamic binding
configuration, SEC-352
Ethernet link aggregate interface (expected
bandwidth), LSW-52
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
LAN switching LLDP ETS parameters, LSW-254
16
DHCP client address acquisition, IPSER-82
IPv4 source guard (IPv4SG) static binding
configuration, SEC-349, SEC-351
DHCP server BOOTP request ignore, IPSER-45
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
DHCP server BOOTP response format, IPSER-46
protocols and standards, IPSER-81
Bootstrap Protocol. Use BOOTP
IPv6 source guard (IPv6SG) static binding
configuration, SEC-350, SEC-354
boundary
IRF physical interface+port, IRF-17
NMM PTP clock node (BC), NM-51
BITS clock
boundary port (MST), LSW-80
NMM PTP clock priority, NM-64
BPDU
NMM PTP clock source type, NM-53
MST region max hops, LSW-90
NMM PTP parameter, NM-64
spanning tree BPDU drop, LSW-111
blackhole entry
spanning tree BPDU guard, LSW-108
MAC address table, LSW-21, LSW-23
spanning tree hello time, LSW-91
blackhole routing
ARP attack protection blackhole
(unresolvable IP attack), SEC-358
spanning tree max age timer, LSW-91
routing
spanning tree TC-BPDU guard, LSW-111
block action (loop detection), LSW-121
spanning tree TC-BPDU transmission restriction,
LSW-110
boot loader
STP BPDU forwarding, LSW-75
startup image file specification, FM-110
transmission rate configuration, LSW-93
startup image file specification (in bulk), FM-110
bridge
startup image file specification (one by one),
FM-111
LAN switching LLDP agent customer bridge,
LSW-235
Boot ROM
LAN switching LLDP agent nearest bridge,
LSW-235
Boot ROM image preload, FM-110
LAN switching LLDP agent non-TPMR bridge,
LSW-235
software upgrade image type, FM-106
software upgrade methods, FM-108
bridging
software upgrade preparation, FM-109
EVB configuration, EVB-1, EVB-3, EVB-11
software upgrade system startup, FM-107
EVB default VSI manager specification, EVB-4
startup image file specification, FM-110, FM-112
EVB LLDP configuration, EVB-4
startup image file specification (in bulk), FM-110
EVB S-channel aggregate interface, EVB-7
startup image file specification (one by one),
FM-111
EVB S-channel configuration, EVB-6
EVB S-channel interface, EVB-7
BOOTP
EVB S-channel MAC
configuration, EVB-8
client configuration, IPSER-81, IPSER-82
client display, IPSER-82
address
learning
EVB S-channel RR mode configuration, EVB-7
client dynamic IP address acquisition, IPSER-81
DHCP application, IPSER-81
17
EVB S-channel VSI
configuration, EVB-8
aggregate
data. See data buffer
interface
information center log buffer, NM-78
EVB S-channel VSI interface configuration,
EVB-8
IPPO TCP buffer size, IPSER-128
building
EVB VDP negotiation parameter configuration,
EVB-5
fabric, FCoE-32, FCoE-34
IRF bridge MAC persistence, IRF-20
fabric dynamically, FCoE-35
MST common root bridge, LSW-80
fabric statically, FCoE-35
bulk
MST regional root, LSW-80
spanning tree loop guard, LSW-109
interface configuration, LSW-18
spanning tree root bridge, LSW-88
interface configuration display, LSW-19
spanning tree root bridge (device), LSW-89
interface configuration restrictions, LSW-18
spanning tree root guard, LSW-108
burst function (data buffer), QACL-92
spanning tree secondary root bridge (device),
LSW-89
C CA
STP designated bridge, LSW-69
PKI architecture, SEC-217
STP root bridge, LSW-69
PKI CA policy, SEC-217
broadcast
PKI certificate, SEC-216
DHCP server response broadcast, IPSER-45
PKI certificate export, SEC-227
IP multicast transmission technique, MCAST-2
PKI certificate obtain, SEC-224
NMM NTP association mode, NM-33
PKI certificate removal, SEC-228
NMM NTP broadcast association mode, NM-10,
NM-16, NM-22
PKI certificate request, SEC-222
NMM NTP broadcast association mode with
authentication, NM-43
PKI certificate request (manual), SEC-223
PKI certificate request (automatic), SEC-223
NMM NTP broadcast client configuration,
NM-16
PKI certificate request abort, SEC-224
NMM NTP broadcast mode max number
dynamic associations, NM-27
PKI CRL, SEC-217
NMM NTP broadcast server configuration,
NM-16
PKI entity configuration, SEC-219
PKI certificate verification, SEC-225
PKI domain configuration, SEC-220
UDP helper configuration, IPSER-132, IPSER-134
PKI OpenCA server certificate request, SEC-236
UDP helper conversion (broadcast to multicast),
IPSER-133
PKI RSA Keon CA server certificate request,
SEC-230
UDP helper conversion (broadcast to unicast),
IPSER-132
PKI storage path, SEC-227
PKI Windows 2003 CA server certificate
request, SEC-233
broadcast (RRPP storm suppression mechanism),
HA-52
troubleshooting PKI CA certificate import failure,
SEC-248
buffer
18
certificate
troubleshooting PKI CA certificate obtain failure,
SEC-245
authority. Use CA
cable
PKI certificate verification (CRL checking),
SEC-226
interface cable connection (Layer 2 Ethernet),
LSW-13
PKI certificate verification (w/o CRL checking),
SEC-226
calculating
revocation list. Use CRL
FC FSPF SPF calculation (shortest interval),
FCoE-57
CF card partitioning, FM-92
file digest, FM-89
CFD
MSTI calculation, LSW-82
1-way DM configuration, HA-23
MSTP CIST calculation, LSW-81
2-way DM configuration, HA-24
spanning tree port path cost calculation
standard, LSW-94
AIS configuration, HA-23
AIS function, HA-16
spanning tree timeout factor, LSW-92
basic concepts, HA-13
STP algorithm, LSW-70
basic configuration, HA-19
TRILL link cost configuration, TRILL-11
configuration, HA-13, HA-18, HA-26
CAR
continuity check, HA-21
aggregate CAR configuration, QACL-79
continuity check function, HA-16
global CAR configuration, QACL-79
display, HA-25
QoS aggregate CAR configuration, QACL-79
DM function, HA-17
user profile configuration, SEC-396
EAIS configuration, HA-24
category
enabling, HA-19
ACL advanced, QACL-1
Ethernet alarm indication signal (EAIS) function,
HA-17
ACL auto match order sort, QACL-2
ACL basic, QACL-1
function configuration, HA-20
ACL config match order sort, QACL-2
linktrace configuration, HA-22
ACL Ethernet frame header, QACL-1
linktrace function, HA-16
ACL user-defined, QACL-1
LM configuration, HA-23
CDP
LM function, HA-16
LAN switching
LSW-248
LLDP
CDP
LAN
switching
LLDP
configuration, LSW-262
compatibility,
loopback configuration, HA-22
loopback function, HA-16
CDP-compatible
maintenance association, HA-13
maintenance domain, HA-13
voice VLAN information advertisement to IP
phones, LSW-171
maintenance point, HA-14
cell
MEP, HA-14
data buffer burst function, QACL-92
MEP configuration, HA-19
data buffer configuration, QACL-91
19
LAN switching
LSW-248
MEP list, HA-15
MIP, HA-14
LLDP
CDP
LAN
switching
LLDP
(CDP-compatible), LSW-262
MIP auto-generation rule, HA-20
protocols and standards, HA-17
compatibility,
configuration
CIST
service instance configuration, HA-19
calculation, LSW-81
Smart Link+Track+CFD collaboration, HA-137
network device connection, LSW-79
Track+CFD association, HA-129
spanning tree max age timer, LSW-91
TRILL port+track entry association, TRILL-23
class
TST configuration, HA-24
IP address class, IPSER-20
TST function, HA-17
classifying
change cipher spec protocol (SSL), SEC-342
IPsec QoS pre-classify enable, SEC-267
changing
port mirroring classification, NM-172
file system current working directory, FM-89
FTP user account, FM-79
QoS class-based
QACL-83
NMM NETCONF parameter value, NM-253
QoS traffic class definition, QACL-19
QoS priority mapping interface port priority,
QACL-31
IPsec packet DF bit clear, SEC-268
CLI
channel
command abbreviation, FM-4
OpenFlow channel, OF-6
command entry, FM-3
CHAP/PAP authentication
portal
command history function use, FM-7
authentication
command hotkey use, FM-5
command keyword alias configuration, FM-5
re-DHCP portal authentication process, SEC-122
command keyword alias use, FM-5
checking
command keyword hotkey configuration, FM-5
emergency shell server connectivity, FM-140
command line editing, FM-4
IPsec ACL de-encapsulated packet check,
SEC-264
command redisplay, FM-6
command-line error message, FM-7
PKI certificate verification (CRL checking),
SEC-226
console port login procedure, FM-15
PKI certificate verification (w/o CRL checking),
SEC-226
console/AUX common user line settings, FM-21
console/AUX none authentication, FM-19
spanning tree No Agreement Check, LSW-104,
LSW-106
console/AUX password authentication, FM-20
console/AUX scheme authentication, FM-21
choosing
Ethernet link aggregation
LSW-42, LSW-45
QACL-82,
clearing
TRILL neighbor change logging, TRILL-21
direct/cross-subnet
process, SEC-121
accounting,
reference
device reboot (immediate), FM-150
port,
device reboot (scheduled), FM-150
Cisco
20
display command output filtering, FM-9
user roles, FM-18
display command output line numbering, FM-9
view hierarchy, FM-1
client
display command output management, FM-13
display command output save to file, FM-12
802.1X authentication, SEC-66, SEC-90
display command output viewing, FM-13
802.1X authentication (access device initiated),
SEC-65
displaying login, FM-35
802.1X authentication (client-initiated), SEC-65
emergency shell file system management,
FM-138
802.1X authentication client timeout timer,
SEC-82
emergency shell system software image retrieval,
FM-139
802.1X authentication initiation, SEC-65
emergency shell use, FM-138, FM-142
802.1X basics, SEC-90
enter system view from user view, FM-2
802.1X configuration, SEC-71, SEC-79
IRF fabric access CLI login, IRF-19
DHCP BOOTP configuration, IPSER-81, IPSER-82
local console/AUX port login, FM-19
DHCP client auto-configuration file, IPSER-40
login authentication modes, FM-18
DHCP client BIMS server information, IPSER-40
login management overview, FM-14
DHCP client configuration, IPSER-65, IPSER-67
login overview, FM-17
DHCP client display, IPSER-67
maintaining login, FM-35
DHCP client DNS server, IPSER-39
NMM EAA configuration, NM-203, NM-211
DHCP client domain name suffix, IPSER-39
NMM EAA monitor policy configuration,
NM-207, NM-211
DHCP client duplicated address detection,
IPSER-66
NMM EAA monitor policy configuration
(CLI-defined with environment variables),
NM-212
DHCP client enable (interface), IPSER-65
DHCP client gateway, IPSER-38
DHCP client
IPSER-65
NMM NETCONF CLI operations, NM-261
NMM NETCONF return to CLI, NM-265
ID
configuration
(interface),
DHCP client NetBIOS node type, IPSER-39
online help access, FM-2
DHCP client packet DSCP value, IPSER-66
output control, FM-8
DHCP client WINS server, IPSER-39
output control keys, FM-9
DHCP server specification, IPSER-41
return to upper-level view from any view, FM-2
DHCP snooping Option 82 support, IPSER-71
return to user view, FM-2
running configuration save, FM-13
DHCP voice client Option 184 parameters,
IPSER-41
software upgrade, FM-106
DHCPv6 address pool, IPSER-170
string/text type argument value, FM-4
DHCPv6 client DUID, IPSER-189
undo command form, FM-3
DHCPv6 client packet DSCP value, IPSER-189
use, FM-1
DHCPv6 configuration, IPSER-187, IPSER-190
user lines, FM-17
DHCPv6 IA, IPSER-169
21
NQA client template optional parameters,
NM-144
DHCPv6 IAID, IPSER-169
DHCPv6 IPv6 address acquisition, IPSER-187
NQA client threshold monitoring, NM-118,
NM-134
DHCPv6 IPv6 address acquisition configuration,
IPSER-190
NQA client
NM-133
DHCPv6 IPv6 prefix acquisition, IPSER-188
DHCPv6 IPv6 prefix acquisition configuration,
IPSER-191
Track
collaboration
function,
NQA client UDP jitter operation, NM-125
NQA client voice operation, NM-129
DHCPv6 IPv6 prefix assignment, IPSER-168
NQA collaboration configuration, NM-163
DHCPv6 relay agent configuration, IPSER-182,
IPSER-185
NQA DHCP operation configuration, NM-147
DHCPv6 stateless DHCPv6, IPSER-188
NQA DLSw operation configuration, NM-160
FTP client configuration (centralized IRF device),
FM-81
NQA DNS operation configuration, NM-148
NQA echo operation configuration (ICMP),
NM-145
IPv4 TFTP client configuration, FM-83
NQA echo operation configuration (UDP),
NM-156
IPv6 TFTP client configuration, FM-84
NMM NTP broadcast client configuration,
NM-16
NQA enable, NM-120
NMM NTP multicast client configuration, NM-16
NQA FTP operation configuration, NM-149
NMM SNTP configuration, NM-47, NM-49
NQA HTTP operation configuration, NM-150
NQA client DHCP operation, NM-121
NQA operation, NM-120
NQA client DLSw operation, NM-131
NQA SNMP operation configuration, NM-154
NQA client DNS operation, NM-122
NQA TCP operation configuration, NM-155
NQA client echo operation (ICMP), NM-121
NQA UDP
NM-151
NQA client echo operation (UDP), NM-128
jitter
operation
configuration,
NQA voice operation configuration, NM-158
NQA client FTP operation, NM-123
security portal authentication, SEC-119
NQA client history record save, NM-137
security
portal
authentication
components, SEC-118
NQA client HTTP operation, NM-124
NQA client operation scheduling, NM-138
system
SSL client policy configuration, SEC-344
NQA client SNMP operation, NM-126
stateless DHCPv6 configuration, IPSER-193
NQA client statistics collection, NM-137
client/server
NQA client template, NM-138
NQA client template (DNS), NM-139
NMM IPv6 NTP client/server association mode,
NM-29
NQA client template (FTP), NM-142
NMM NTP association mode, NM-10, NM-14
NQA client template (HTTP), NM-141
NMM NTP client/server association mode,
NM-18, NM-28
NQA client template (ICMP), NM-139
NMM NTP client/server association mode with
authentication, NM-41
NQA client template (TCP), NM-140
22
Smart Link+Track, HA-101, HA-104
NMM NTP client/server mode max number
dynamic associations, NM-27
Smart Link+Track+CFD collaboration, HA-137
clock
Smart Link-Monitor Link, HA-100
NMM PTP BITS clock parameter, NM-64
NMM PTP clock mode, NM-55
static
routing+Track+NQA
HA-132
collaboration,
NMM PTP clock node (BC), NM-51
Track configuration, HA-127, HA-128, HA-132
NMM PTP clock node (hybrid), NM-51
Track+application modules, HA-128
NMM PTP clock node (OC), NM-51
Track+detection modules, HA-127
collecting
NMM PTP clock node (TC), NM-51
NMM PTP clock node type, NM-57
sFlow collector configuration, NM-194
NMM PTP clock priority, NM-64
sFlow remote collector cannot receive packets,
NM-197
NMM PTP clock source type, NM-53
collision handling (IRF), IRF-7
NMM PTP frequency synchronization, NM-51
combining
NMM PTP grandmaster clock, NM-52
interfaces (Ethernet 10-GE into 40-GE), LSW-2
NMM PTP phase synchronization, NM-51
command
NMM PTP system time source, NM-64
AAA command accounting method, SEC-12
close-wait timer (CWMP ACS), NM-224
AAA command authorization method, SEC-12
CND
CLI command abbreviation, FM-4
algorithms, QACL-99
CLI command entry, FM-3
congestion detection parameter, QACL-102
CLI command history function use, FM-7
defense mode, QACL-99
CLI command hotkey configuration, FM-5
multi-CND QCN configuration, QACL-105
CLI command hotkey use, FM-5
priority mapping, QACL-99
CLI command keyword alias configuration,
FM-5
settings configuration, QACL-100
settings configuration (global), QACL-101
CLI command keyword alias use, FM-5
settings configuration (interface), QACL-101
CLI command line editing, FM-4
CNM
CLI command redisplay, FM-6
CNM PDU format, QACL-96
CLI string/text type argument value, FM-4
PDU EtherType format, QACL-96
CLI undo command form, FM-3
collaborating
NQA client
NM-133
Track
collaboration
ISSU command series, FM-116
function,
ISSU install series commands, FM-121
ISSU performance by issu series commands,
FM-118
NQA+Track collaboration, NM-118
NQA+Track+static
HA-128
routing
collaboration,
line interface. Use CLI
login management
FM-44, FM-45
Smart Link mechanism, HA-100
23
command
accounting,
software upgrade image type, FM-106
login management command authorization,
FM-41, FM-42
software upgrade patch image, FM-106
Python, FM-166
software upgrade system image type, FM-106
Tcl, FM-164
committed access rate. Use CAR
conditional match NETCONF data filtering, NM-256,
NM-260
committing
conditional self-test, SEC-389
ISSU software changes
commands), FM-124
(install
configuration
series
startup configuration loading, FM-95
common
configuration file
DHCP options, IPSER-28
configuration archive, FM-99
information center common logs, NM-71
configuration archive parameters, FM-100
common CAR
configuration archiving (automatic), FM-100
priority marking configuration, QACL-65
configuration rollback, FM-99, FM-101
common port (RRPP), HA-49
content, FM-96
common root bridge, LSW-80
device configuration types, FM-94
common-flush-FDB RRPPDU type, HA-49
displaying, FM-104
communication
encryption, FM-97
peer public key entry, SEC-211
file formats, FM-96
comparing
FIPS compliance, FM-97
802.1X EAP relay/termination authentication,
SEC-67
format, FM-96
main next-startup file backup, FM-103
complete-flush-FDB RRPPDU type, HA-49
main next-startup file restore, FM-103
completing
management, FM-94
software upgrade, FM-110
next-startup configuration file, FM-102
software upgrade (in bulk), FM-110
next-startup file delete, FM-104
software upgrade (one by one), FM-111
restrictions and guidelines, FM-97
software upgrade with a warm reboot, FM-112
running
FM-101
complexity checking (password control), SEC-195
composition checking (password control), SEC-194
configuration
archiving
(manual),
running configuration save, FM-98
compressing
startup file selection, FM-96
file, FM-87, FM-88
configuring
Comware
802.1X, SEC-71, SEC-79
software upgrade Boot image type, FM-106
802.1X ACL assignment, SEC-95
software upgrade feature image, FM-106
802.1X authentication, SEC-90
software upgrade image loading, FM-107
802.1X authentication trigger, SEC-83
software upgrade image redundancy, FM-107
802.1X Auth-Fail VLAN, SEC-74, SEC-87
24
802.1X
SEC-93
authorization
VLAN
AAA user group attributes, SEC-21
assignment,
ACL, QACL-1, QACL-4, QACL-12
802.1X basics, SEC-90
ACL (advanced), QACL-5
802.1X critical VLAN, SEC-76, SEC-88
ACL (basic), QACL-4
802.1X EAD assistant, SEC-89, SEC-97
ACL (Ethernet frame header), QACL-8
802.1X guest VLAN, SEC-73, SEC-86
ACL (user-defined), QACL-9
802.1X guest VLAN assignment, SEC-93
ACL packet filtering, QACL-10
802.1X online user handshake, SEC-83
802.1X quiet timer, SEC-85
ACL packet filtering applicable scope (VLAN
interface), QACL-11
AAA, SEC-1, SEC-16, SEC-48
aggregate CAR, QACL-79
AAA HWTACACS schemes, SEC-32
allowed domain ID list, FCoE-37
AAA HWTACACS server SSH user, SEC-48
ARP, IPSER-1, IPSER-7
AAA ISP domain accounting method, SEC-45
ARP (static), IPSER-7
AAA ISP domain attribute, SEC-42
ARP active acknowledgement, SEC-363
AAA ISP
SEC-43
domain
authentication
ARP attack detection (source MAC-based),
SEC-361, SEC-362
method,
AAA ISP domain authorization method, SEC-44
ARP attack protection, SEC-357
AAA ISP domain method, SEC-41
ARP attack protection (unresolvable IP attack),
SEC-357, SEC-359
AAA LDAP administrator attributes, SEC-39
ARP attack protection blackhole
(unresolvable IP attack), SEC-358
AAA LDAP scheme, SEC-38
AAA LDAP server IP address, SEC-39
ARP attack protection source suppression
(unresolvable IP attack), SEC-358
AAA LDAP server SSH user authentication,
SEC-54
ARP detection, SEC-364
AAA LDAP user attributes, SEC-40
ARP dynamic entry aging timer, IPSER-6
AAA local user, SEC-18
ARP fast-reply, IPSER-18
AAA local user attributes, SEC-19
ARP filtering, SEC-372, SEC-373
AAA RADIUS accounting-on, SEC-30
ARP gateway protection, SEC-371, SEC-372
AAA RADIUS Login-Service attribute check
method, SEC-31
ARP multiport entry, IPSER-4, IPSER-8
ARP packet rate limit, SEC-360
AAA RADIUS scheme, SEC-22
ARP packet source MAC consistency check,
SEC-363
AAA RADIUS security policy server IP address,
SEC-30
AAA
RADIUS
server
SSH
authentication+authorization, SEC-51
routing
ARP packet validity check, SEC-365
user
ARP restricted forwarding, SEC-366, SEC-368
AAA scheme, SEC-18
ARP scanning, SEC-370
AAA
SSH
user
local
authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
ARP snooping, IPSER-17
ARP static entry, IPSER-3
25
ARP user validity check, SEC-364
CWMP ACS attribute, NM-220
ARP user+packet validity check, SEC-367
CWMP ACS attribute (default)(CLI), NM-221
attack D&P, SEC-401
CWMP ACS attribute (preferred), NM-220
authorized ARP, SEC-364
CWMP ACS autoconnect parameters, NM-223
automatic configuration (DHCP server), FM-175
CWMP ACS close-wait timer, NM-224
automatic configuration (DNS server), FM-176
CWMP ACS connection retry max number,
NM-223
automatic configuration (HTTP server+Python
script), FM-183
CWMP ACS periodic Inform feature, NM-223
automatic configuration (HTTP server+Tcl script),
FM-182
CWMP CPE ACS authentication parameters,
NM-222
automatic configuration (IRF setup), FM-184
CWMP CPE
NM-222
automatic configuration (server-based), FM-177
ACS
connection
interface,
CWMP CPE ACS provision code, NM-222
automatic configuration (TFTP server), FM-177
CWMP CPE attribute, NM-221
CFD, HA-13, HA-18, HA-26
CWMP CPE NAT traversal, NM-224
CFD 1-way DM, HA-23
data buffer, QACL-91
CFD 2-way DM, HA-24
data buffers manually, QACL-92
CFD AIS, HA-23
DDNS, IPSER-105, IPSER-109
CFD basic settings, HA-19
DDNS (PeanutHull server), IPSER-111
CFD continuity check, HA-21
DDNS (www.3322.org), IPSER-109
CFD EAIS, HA-24
DDNS client, IPSER-106
CFD functions, HA-20
DDNS client policy, IPSER-106
CFD linktrace, HA-22
default action of table-miss flow entries, OF-12
CFD LM, HA-23
device airflow direction, FM-157
CFD loopback, HA-22
device as IPv4 TFTP client, FM-83
CFD MEPs, HA-19
device as IPv6 TFTP client, FM-84
CFD MIP auto-generation rules, HA-20
device banner, FM-147, FM-148
CFD service instance, HA-19
device CPU usage monitoring, FM-157
CFD TST, HA-24
device name, FM-145
color-based priority marking, QACL-65
device temperature alarm threshold, FM-159
command keyword alias, FM-5
DHCP BOOTP client, IPSER-81, IPSER-82
command keyword hotkey, FM-5
DHCP BOOTP client address acquisition,
IPSER-82
common proxy ARP, IPSER-15
configuration archive parameters, FM-100
DHCP client, IPSER-65, IPSER-67
configuration rollback, FM-99
DHCP client ID (interface), IPSER-65
crypto engine, SEC-383
DHCP IP address conflict detection, IPSER-44
CWMP, NM-215, NM-218, NM-225
DHCP packet blocking port, IPSER-77
26
DHCP relay
IPSER-62
agent,
IPSER-55,
DHCPv6 server, IPSER-168, IPSER-171, IPSER-177
IPSER-56,
DHCP relay agent IP address release, IPSER-60
DHCPv6 server dynamic
assignment, IPSER-179
DHCP relay agent Option 82, IPSER-60,
IPSER-63
DHCPv6 server dynamic IPv6 prefix assignment,
IPSER-177
DHCP relay agent security functions, IPSER-58
DHCPv6 server IPv6 address assignment,
IPSER-173
DHCP server, IPSER-32, IPSER-34
DHCPv6 server
IPSER-172
DHCP server address pool, IPSER-34
DHCP server BOOTP request ignore, IPSER-45
IPv6
IPv6
prefix
address
assignment,
DHCP server BOOTP response format, IPSER-46
DHCPv6 server network parameters assignment,
IPSER-174
DHCP server compatibility, IPSER-45
DHCPv6 server on interface, IPSER-175
DHCP server configuration, IPSER-47
DHCPv6 snooping,
IPSER-202
DHCP server IP address dynamic assignment,
IPSER-49
IPSER-195,
IPSER-197,
DHCPv6 snooping basics, IPSER-197
DHCP server IP address static assignment,
IPSER-47
DHCPv6 snooping
IPSER-199
DHCP server option customization, IPSER-53
DHCPv6 snooping Option 18, IPSER-198
DHCP server response broadcast, IPSER-45
DHCPv6 snooping Option 37, IPSER-198
DHCP server subnet, IPSER-52
DHCPv6 snooping packet rate limit, IPSER-200
DHCP server user class, IPSER-50
DNS, IPSER-83, IPSER-86
DHCP snooping, IPSER-70, IPSER-72, IPSER-78
DNS proxy, IPSER-89
DHCP snooping basics, IPSER-72, IPSER-78
DNS spoofing, IPSER-90
DHCP snooping Option 82, IPSER-79
DNS trusted interface, IPSER-91
DHCP snooping Option 82 configuration,
IPSER-73
eIRF configuration management, IRF-48
backup,
eIRF device as PEX, IRF-50
DHCP voice client Option 184 parameters,
IPSER-41
eIRF device operating mode, IRF-49
emergency shell management Ethernet port,
FM-139
DHCPv6 client, IPSER-187, IPSER-190
DHCPv6 client DUID, IPSER-189
address
auto
eIRF device as independent switch, IRF-50
DHCP snooping packet rate limit, IPSER-77
DHCPv6 client IPv6
IPSER-187, IPSER-190
entry
Ethernet aggregate interface, LSW-50
acquisition,
Ethernet link aggregation, LSW-40, LSW-47,
LSW-57
DHCPv6 client IPv6 prefix acquisition, IPSER-188,
IPSER-191
Ethernet link aggregation edge aggregate
interface, LSW-52
DHCPv6 client stateless DHCPv6, IPSER-188,
IPSER-193
Ethernet link aggregation group, LSW-48
Ethernet link aggregation group (dynamic),
LSW-49
DHCPv6 packet blocking port, IPSER-201
DHCPv6 relay agent, IPSER-182, IPSER-183,
IPSER-185
27
Ethernet
LSW-48
link
aggregation
group
fabric reconfiguration (manual), FCoE-40
(static),
fabric switch domain IDs, FCoE-38
Ethernet link aggregation group load sharing
mode, LSW-54
FC, FCoE-13
FC default zone policy, FCoE-83
Ethernet link aggregation load sharing, LSW-53
FC forwarding, FCoE-52
Ethernet link aggregation load sharing mode
(global), LSW-54
FC FSPF, FCoE-56
Ethernet link aggregation load sharing mode
(group-specific), LSW-54
FC FSPF GR, FCoE-59
Ethernet OAM, HA-1, HA-4, HA-11
FC FSPF GR restarter, FCoE-60
Ethernet OAM basics, HA-4
FC Pairwise, FCoE-81
Ethernet OAM connection detection timer, HA-4
FC ping, FCoE-118
Ethernet OAM errored frame event detection,
HA-6
FC routing, FCoE-52, FCoE-61
Ethernet OAM errored frame period event
detection, HA-7
FC static routing (VFC interface), FCoE-61
FC FSPF GR helper, FCoE-60
FC static route, FCoE-55
Ethernet OAM errored seconds period event
detection, HA-7
FC switch operation, FCoE-13
Ethernet OAM errored symbol event detection,
HA-5
FC zone aliases, FCoE-81
FC tracert, FCoE-122, FCoE-123
FC zone distribution, FCoE-83
Ethernet OAM link monitoring, HA-5
FC zone sets, FCoE-82
Ethernet OAM port action, HA-8
Ethernet OAM remote loopback, HA-9
FC zones,
FCoE-88
EVB, EVB-1, EVB-3, EVB-11
FC4 node default information, FCoE-43
EVB LLDP, EVB-4
FC4 node information, FCoE-42
EVB S-channel, EVB-6
FCoE, FCoE-13, FCoE-21
EVB S-channel aggregate interface, EVB-7
FCoE (VFC interface)(IRF mode), FCoE-141
EVB S-channel interface, EVB-7
EVB S-channel MAC address learning, EVB-8
FCoE (VFC
FCoE-129
EVB S-channel RR mode, EVB-7
FCoE mode for switch, FCoE-13
EVB S-channel VSI aggregate interface, EVB-8
FCoE switch operation, FCoE-13
EVB S-channel VSI interface, EVB-8
FCS, FCoE-109, FCoE-112
EVB VDP negotiation parameter, EVB-5
FDMI, FCoE-116
EVB VSI filter, EVB-9
FIP snooping, FCoE-102, FCoE-104, FCoE-105
fabric building (dynamic), FCoE-47
FIP snooping Ethernet interface operating mode,
FCoE-104
fabric building configuration (static), FCoE-44
FCoE-70,
interface)(standalone
FIPS, SEC-384, SEC-390
fabric configuration, FCoE-44
FIPS mode, SEC-385
fabric reconfiguration, FCoE-40
28
FCoE-79,
FCoE-82,
mode),
IGMP snooping multicast source port filtering
(global), MCAST-28
fixed ARP, SEC-370
flow mirroring, NM-188, NM-191
IGMP snooping multicast source port filtering
(on port), MCAST-28
flow mirroring match criteria, NM-188
flow mirroring QoS policy, NM-189
IGMP snooping policy, MCAST-27
flow mirroring traffic behavior, NM-189
IGMP snooping port feature, MCAST-20
FSPF (VFC interface), FCoE-66
IGMP snooping querier, MCAST-23, MCAST-36
FTP, FM-73
IGMP snooping query/response parameters,
MCAST-24
FTP basic server parameters, FM-74
FTP client (centralized IRF device), FM-81
IGMP snooping query/response parameters
(global), MCAST-25
FTP server (centralized IRF device), FM-75
IGMP snooping query/response parameters
(VLAN), MCAST-25
FTP server authentication, FM-74
FTP server authorization, FM-74
IGMP snooping
MCAST-22
gratuitous ARP, IPSER-11, IPSER-12
high availability DLDP, HA-32, HA-36, HA-39
simulated
high availability DLDP authentication, HA-38
high availability DLDP automatic unidirectional
link shutdown, HA-39
information center, NM-6, NM-71, NM-76,
NM-84
IGMP snooping,
MCAST-31
information center trace log file max size,
NM-82
MCAST-17,
port,
host,
IGMP snooping
MCAST-33
MCAST-14,
static
member
IGMP snooping basic features, MCAST-18
interface (Ethernet), LSW-1
IGMP snooping
MCAST-22
interface (inloopback), LSW-16
fast
leave
processing,
MCAST-21,
interface (loopback), LSW-15
IGMP snooping group policy+simulated joining,
MCAST-31
interface (null), LSW-16
IGMP
snooping
MCAST-25
interface common settings (Ethernet), LSW-2
message
interface basic settings (Ethernet), LSW-3
parameters,
IGMP snooping message source IP address,
MCAST-26
interface generic flow control (Ethernet), LSW-6
IGMP snooping
MCAST-27
interface PFC (Ethernet), LSW-6
multicast
group
interface jumbo frame support (Ethernet), LSW-3
policy,
interface physical state change suppression
(Ethernet), LSW-4
IGMP snooping multicast group policy (global),
MCAST-27
interface storm control (Layer 2 Ethernet),
LSW-10
IGMP snooping multicast group policy (on port),
MCAST-28
interface storm suppression (Layer 2 Ethernet),
LSW-9
IGMP snooping multicast groups on port max,
MCAST-29
IP addressing, IPSER-20, IPSER-23
IGMP snooping multicast source port filtering,
MCAST-28
IP forwarding load sharing, IPSER-115, IPSER-116
IP performance optimization directed broadcast
receive/forward, IPSER-125
29
IPsec IPv6 routing protocol profile (manual),
SEC-269
IP routing, IPR-1
IP routing FIB route max lifetime, IPR-4
IPsec IPv6 routing protocols, SEC-269
IP routing RIB label max lifetime, IPR-3
IPsec packet DF bit, SEC-268
IP routing RIB route max lifetime, IPR-3
IPsec policy (IKE-based), SEC-260
IP routing RIP, IPR-24
IPsec policy (IKE-based/direct), SEC-261
IP routing RIP basics, IPR-24
IPsec policy (IKE-based/template), SEC-262
IP routing RIP interface additional metric, IPR-29
IPsec policy (manual), SEC-258
IP routing RIP route redistribution, IPR-27
IPsec RIPng, SEC-277
IP routing static route, IPR-7
IPsec SNMP notification, SEC-270
IP services fast forwarding, IPSER-118
IPsec transform set, SEC-257
IP services IRDP, IPSER-119, IPSER-120, IPSER-121
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
IP source guard (IPSG), SEC-346, SEC-348,
SEC-351
IPsec tunnel for IPv4 packets (manual), SEC-272
IP subnet-based VLAN, LSW-140, LSW-147
IPv4 ACL (advanced), QACL-6
IPPO ICMP error message rate limit, IPSER-130
IPv4 ACL (basic), QACL-4
IPPO interface MTU, IPSER-125
IPv4 DNS, IPSER-92
IPPO interface TCP MSS, IPSER-126
IPv4 DNS client configuration, IPSER-87
IPPO TCP buffer size, IPSER-128
IPv4 DNS client dynamic domain name
resolution, IPSER-87, IPSER-93
IPPO TCP path MTU discovery, IPSER-126
IPPO TCP timers, IPSER-128
IPsec, SEC-250, SEC-272
IPv4 DNS client static domain name resolution,
IPSER-87, IPSER-92
IPsec ACL, SEC-256
IPv4 DNS proxy, IPSER-95
IPsec ACL anti-replay function, SEC-265
IPv4 source guard (IPv4SG), SEC-348
IPsec anti-replay redundancy, SEC-266
IPv4 source guard (IPv4SG) dynamic binding,
SEC-352
IPsec IKE, SEC-281, SEC-283, SEC-292
IPsec IKE (main mode/pre-shared
authentication), SEC-292
IPv4 source guard (IPv4SG)
binding+DHCP relay, SEC-353
key
dynamic
IPv4 source guard (IPv4SG) static binding,
SEC-349, SEC-351
IPsec IKE DPD, SEC-290
IPsec IKE global identity information, SEC-288
IPv6 ACL (advanced), QACL-7
IPsec IKE keepalive function, SEC-289
IPv6 ACL (basic), QACL-5
IPsec IKE keychain, SEC-287
IPv6 address manual configuration, IPSER-145
IPsec IKE NAT keepalive function, SEC-289
IPv6 anycast address, IPSER-147
IPsec IKE profile, SEC-284
IPsec IKE proposal, SEC-286
IPv6 basic settings, IPSER-136, IPSER-143,
IPSER-159
IPsec IKE SNMP notification, SEC-291
IPv6 default route, IPR-34
IPv6 DNS, IPSER-97
30
IPv6 DNS client configuration, IPSER-88
IPv6 static prefix, IPSER-146
IPv6 DNS client dynamic domain name
resolution, IPSER-88, IPSER-98
IPv6 static route, IPR-31
IPv6 static routing, IPR-31, IPR-32
IPv6 DNS client static domain name resolution,
IPSER-88, IPSER-97
IPv6 static routing basics, IPR-32
IRF ARP MAD, IRF-24
IPv6 DNS proxy, IPSER-102
IRF bridge MAC persistence, IRF-20
IPv6 dynamic path MTU aging timer, IPSER-155
IRF fabric, IRF-14, IRF-29
IPv6 EUI-64 address, IPSER-144
IRF fabric ARP MAD, IRF-34
IPv6 fast forwarding, IPSER-204
IRF fabric LACP MAD, IRF-29
IPv6 global unicast address, IPSER-144
IRF fabric ND MAD, IRF-38
IPv6 ICMPv6 error message rate limit, IPSER-155
IRF LACP MAD, IRF-24
IPv6 interface link-local address automatic
generation, IPSER-147
IRF link load sharing mode, IRF-19
IPv6 interface MTU, IPSER-154
IRF link load sharing mode (global), IRF-20
IPv6 link-local address, IPSER-146
IRF link load sharing mode (port-specific),
IRF-20
IPv6 max number NS message sent attempts,
IPSER-152
IRF MAD, IRF-23
IPv6 multicast port-based VLAN, MCAST-96
IRF member device description, IRF-19
IPv6 multicast port-based VLAN user port
attribute, MCAST-96
IRF ND MAD, IRF-26
IPv6
multicast
MCAST-95
sub-VLAN-based
LAN switching
LSW-258
VLAN,
LAN
switching
LSW-262
IPv6 multicast VLAN, MCAST-93, MCAST-95,
MCAST-98
LLDP,
LLDP
LSW-235,
LSW-241,
(CDP-compatible),
IPv6 ND, IPSER-148
LAN switching LLDP 802.1p-to-local priority
mapping, LSW-254
IPv6 ND static neighbor entry, IPSER-148
LAN switching LLDP advertisable TLVs, LSW-244
IPv6 path MTU discovery, IPSER-154
LAN switching LLDP APP parameter, LSW-252
IPv6 PIM snooping, MCAST-86, MCAST-87,
MCAST-88
LAN switching LLDP basics, LSW-242, LSW-258
IPv6 RA
IPSER-151
LAN switching
LSW-248
message
parameter,
LAN switching LLDP bridge mode, LSW-243
IPSER-150,
LLDP
CDP
compatibility,
IPv6 source guard (IPv6SG), SEC-349
LAN switching LLDP DCBX, LSW-250, LSW-264
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping, SEC-355
LAN switching LLDP ETS parameter, LSW-254
LAN switching LLDP group-based WRR queuing,
LSW-255
IPv6 source guard (IPv6SG) static binding,
SEC-350, SEC-354
IPv6 stateless
IPSER-145
address
LAN switching LLDP management address,
LSW-246
autoconfiguration,
LAN switching LLDP management address
encoding format, LSW-246
IPv6 static path MTU, IPSER-154
31
login management CLI console/AUX scheme
authentication, FM-21
LAN switching LLDP PFC parameter, LSW-255
LAN switching LLDP trapping, LSW-256
login management CLI local console/AUX port
login, FM-19
LAN switching LLDP-MED trapping, LSW-256
Layer 2 cut-through forwarding, LSW-270
login management
FM-44, FM-45
Layer 2 Ethernet link aggregation (dynamic),
LSW-59
login management common VTY line settings,
FM-27
Layer 2 Ethernet link aggregation edge
aggregate interface, LSW-63
login management SNMP access control,
FM-40
Layer 2 Ethernet link aggregation group
(dynamic), LSW-49
login management SSH login, FM-30
Layer 2 Ethernet link aggregation group (static),
LSW-49
login management SSH login on device, FM-30
login management Telnet login, FM-23
Layer 2 Ethernet link aggregation load sharing,
LSW-61
login management Telnet login on device,
FM-24
Layer 2 remote port mirroring, NM-177, NM-184
login management Telnet login password
authentication, FM-25
load sharing, IPSER-115
local port mirroring, NM-173, NM-182
login management Telnet
authentication, FM-26
local port mirroring group monitor port, NM-175
local port mirroring group monitor port
(interface view), NM-175
login
scheme
loop detection, LSW-120, LSW-122, LSW-124
loop detection protection action, LSW-123
local port mirroring group monitor port (system
view), NM-175
loop detection protection action (global),
LSW-123
local port mirroring group source ports, NM-174
source
accounting,
login management command authorization,
FM-41, FM-42
Layer 2 Ethernet link aggregation (static),
LSW-57
local port mirroring group
(interface view), NM-175
command
loop detection protection action (Layer 2
aggregate interface), LSW-124
ports
loop detection protection action (Layer 2
Ethernet interface), LSW-123
local port mirroring group source ports (system
view), NM-174
MAC address table, LSW-20, LSW-21, LSW-34
local port mirroring with multiple monitor ports,
NM-186
MAC address table entry, LSW-22
MAC address table unknown frame forwarding
rule, LSW-27
local precedence marking, QACL-66
local QoS ID marking, QACL-68
MAC authentication, SEC-101, SEC-105, SEC-111
login management CLI console/AUX common
user line settings, FM-21
MAC authentication (local), SEC-111
MAC authentication (RADIUS-based), SEC-113
login management CLI console/AUX none
authentication, FM-19
MAC authentication ACL assignment, SEC-115
MAC authentication critical VLAN, SEC-109
login management CLI console/AUX password
authentication, FM-20
MAC authentication delay, SEC-108
MAC authentication guest VLAN, SEC-109
32
MLD snooping query/response parameters,
MCAST-70
MAC authentication keep-online, SEC-110
MAC authentication user account format,
SEC-106
MLD snooping query/response parameters
(global), MCAST-71
MAC Information, LSW-36, LSW-37
MLD snooping query/response parameters
(VLAN), MCAST-71
MAC-based VLAN, LSW-135, LSW-145
MAC-based
LSW-139
VLAN
dynamic
assignment,
MLD snooping report suppression, MCAST-75
MLD snooping simulated member host port,
MCAST-68
MAC-based VLAN server assignment, LSW-140
MAC-based VLAN static assignment, LSW-139
MLD snooping static port, MCAST-79
management interface, LSW-1
MLD snooping static ports, MCAST-67
MFF, SEC-375, SEC-377, SEC-379
Monitor Link, HA-120, HA-121, HA-122
MFF manual-mode in ring network, SEC-380
MFF manual-mode in tree network, SEC-379
Monitor Link downlink interface switchover
delay, HA-122
MFF network port, SEC-377
Monitor Link group member interface, HA-121
MLD querier, MCAST-69
MST region, LSW-87
MLD snooping,
MCAST-77
MCAST-60,
MCAST-63,
MST region max hops, LSW-90
MSTP, LSW-86, LSW-112
MLD snooping basic features, MCAST-64
multicast VLAN,
MCAST-53
MLD snooping group policy+simulated joining,
MCAST-77
MCAST-48,
MCAST-50,
multi-CND QCN, QACL-105
MLD snooping IPv6 multicast group policy,
MCAST-73
MVRP, LSW-185, LSW-188, LSW-192
MVRP registration mode, LSW-190
MLD snooping IPv6 multicast group policy
(global), MCAST-73
MVRP timer, LSW-190
NAS-ID profile, SEC-47
MLD snooping IPv6 multicast group policy (on
portl), MCAST-74
ND attack defense, SEC-402
MLD snooping IPv6 multicast source port
filtering, MCAST-74
NETCONF-over-SSH, SEC-305
NETCONF-over-SSH client user line, SEC-305
MLD snooping IPv6 multicast source port
filtering (global), MCAST-74
NETCONF-over-SSH+password authentication,
SEC-337, SEC-339
MLD snooping IPv6 multicast source port
filtering (on port), MCAST-74
NMM EAA, NM-203, NM-211
NMM EAA environment variable (user-defined),
NM-206
MLD snooping message parameters, MCAST-71
MLD snooping policy, MCAST-73
NMM EAA monitor policy, NM-207
MLD snooping port features, MCAST-66
NMM EAA monitor policy (CLI), NM-207,
NM-211
MLD snooping querier, MCAST-82
MLD snooping query source IPv6 address,
MCAST-71
NMM EAA monitor policy (CLI-defined with
environment variables), NM-212
33
NMM EAA monitor policy (Tcl), NM-209,
NM-213
NMM
NTP
symmetric
active/passive
association mode, NM-15, NM-31
NMM IPv6 NTP client/server association mode,
NM-29
NMM NTP symmetric active/passive mode
authentication, NM-19
NMM IPv6 NTP multicast association mode,
NM-38
NMM PTP, NM-51
NMM PTP (IEEE 1588 v2), NM-65
NMM IPv6 NTP symmetric active/passive
association mode, NM-32
NMM PTP (IEEE 802.1AS), NM-68
NMM PTP announce message interval, NM-60
NMM NETCONF, NM-236, NM-239
NMM PTP announcement interval, NM-60
NMM NTP, NM-8, NM-14, NM-51
NMM PTP BITS clock parameter, NM-64
NMM NTP access control rights, NM-17
NMM PTP clock mode, NM-55
NMM NTP association mode, NM-14
NMM PTP clock priority, NM-64
NMM NTP authentication, NM-18
NMM PTP cumulative offset, NM-63
NMM NTP broadcast association mode, NM-16,
NM-33
NMM PTP delay correction value, NM-63
NMM PTP Delay_Req message send interval,
NM-61
NMM NTP broadcast client, NM-16
NMM NTP broadcast mode authentication,
NM-22
NMM PTP non-Pdelay message MAC address,
NM-62
NMM NTP broadcast mode with authentication,
NM-43
NMM PTP OC, NM-58
NMM PTP Pdelay_Req message send interval,
NM-61
NMM NTP broadcast server, NM-16
NMM NTP client/server association mode,
NM-14, NM-28
NMM PTP port role, NM-58
NMM NTP client/server mode authentication,
NM-18
NMM PTP Sync message send interval, NM-61
NMM
NTP
client/server
authentication, NM-41
NMM PTP TC+OC port type, NM-59
mode
NMM PTP system time source, NM-64
with
NMM PTP timestamp carry mode, NM-58
NMM NTP local clock as reference source,
NM-27
NMM PTP UTC correction date, NM-63
NMM NTP max number dynamic associations,
NM-27
NMM SNMP, NM-89, NM-107
NMM NTP multicast association mode, NM-16,
NM-35
NMM SNMP basics, NM-91
NMM SNMP agent host notification, NM-99
NMM SNMP logging, NM-98
NMM NTP multicast client, NM-16
NMM SNMP notification, NM-98
NMM NTP multicast mode authentication,
NM-23
NMM SNMPv1, NM-101
NMM NTP multicast server, NM-17
NMM SNMPv1 agent host notification, NM-99
NMM NTP optional parameters, NM-25
NMM SNMPv1 basics, NM-91
NMM NTP packet DSCP value, NM-27
NMM SNMPv2c, NM-101
34
NMM SNMPv2c
NM-99
agent
host
NQA client template optional parameters,
NM-144
notification,
NMM SNMPv2c basics, NM-91
NQA client threshold monitoring, NM-134
NMM SNMPv3 (RBAC mode ), NM-105
NQA client
NM-133
NMM SNMPv3 (VACM mode ), NM-103
function,
NQA client voice operation, NM-129
NMM SNMPv3 basics, NM-93
NQA collaboration, NM-163
NMM SNTP, NM-47, NM-49
NQA DHCP operation, NM-147
NMM SNTP authentication, NM-48
NQA DLSw operation, NM-160
NPV, FCoE-93, FCoE-94, FCoE-97
NQA DNS operation, NM-148
NPV downlink interface, FCoE-95
interface
collaboration
NQA client UDP jitter operation, NM-125
NMM SNMPv3 agent host notification, NM-99
NPV downlink-uplink
FCoE-96
Track
NQA echo operation (ICMP), NM-145
mapping,
NQA echo operation (UDP), NM-156
NPV uplink interface, FCoE-95
NQA FTP operation, NM-149
NQA, NM-117, NM-119, NM-145
NQA HTTP operation, NM-150
NQA client DHCP operation, NM-121
NQA path jitter operation, NM-161
NQA client DLSw operation, NM-131
NQA server, NM-119
NQA client DNS operation, NM-122
NQA SNMP operation, NM-154
NQA client echo operation (ICMP), NM-121
NQA TCP operation, NM-155
NQA client echo operation (UDP), NM-128
NQA template (DNS), NM-166
NQA client FTP operation, NM-123
NQA template (FTP), NM-169
NQA client history record save, NM-137
NQA template (HTTP), NM-168
NQA client HTTP operation, NM-124
NQA template (ICMP), NM-165
NQA client operation, NM-120
NQA template (TCP), NM-167
NQA client operation optional parameters,
NM-132
NQA UDP jitter operation, NM-151
NQA voice operation, NM-158
NQA client path jitter operation, NM-131
OpenFlow, OF-1, OF-8, OF-16
NQA client SNMP operation, NM-126
OpenFlow controller+main connection, OF-13
NQA client statistics collection, NM-137
NQA client TCP operation, NM-127
OpenFlow dynamic MAC address support,
OF-14
NQA client template, NM-138
OpenFlow inband management VLAN, OF-10
NQA client template (DNS), NM-139
OpenFlow instance, OF-8
NQA client template (FTP), NM-142
OpenFlow instance mode, OF-8
NQA client template (HTTP), NM-141
OpenFlow MAC address learning, OF-11
NQA client template (ICMP), NM-139
OpenFlow switch controller, OF-13
NQA client template (TCP), NM-140
PIM
snooping,
MCAST-43
35
MCAST-41,
MCAST-42,
port-based multicast VLAN user port assignment,
MCAST-52
PKI, SEC-216, SEC-218, SEC-230
PKI certificate import/export, SEC-240
port-based multicast VLAN user port attribute,
MCAST-51
PKI certificate request (automatic), SEC-223
PKI certificate request (manual), SEC-223
port-based VLAN, LSW-131, LSW-144
PKI certificate request abort, SEC-224
priority marking based on colors obtained
through mapping drop precedence, QACL-65
PKI certificate-based access control policy,
SEC-228
PKI domain, SEC-220
priority marking based on colors obtained
through traffic policing, QACL-65
PKI entity, SEC-219
private VLAN, LSW-153, LSW-154, LSW-157
PKI OpenCA server certificate request, SEC-236
private VLAN promiscuous port, LSW-157
PKI RSA Keon CA server certificate request,
SEC-230
private VLAN trunk promiscuous port, LSW-160
private
VLAN
trunk
secondary port, LSW-163
PKI Windows 2003 CA server certificate
request, SEC-233
PMM kernel
NM-200
thread
deadloop
detection,
PMM kernel
NM-201
thread
starvation
detection,
process placement, HA-138, HA-139
process placement policy, HA-140
process placement policy location affinity,
HA-140
process placement policy location-type affinity,
HA-140
port isolation, LSW-65
port isolation
LSW-66
(multiple
isolation
promiscuous+trunk
groups),
process placement policy process affinity,
HA-141
port mirroring, NM-182
process placement policy self affinity, HA-141
port mirroring remote destination group monitor
port, NM-178
protocol-based VLAN, LSW-141, LSW-149
proxy ARP, IPSER-14
port mirroring remote destination group remote
probe VLAN, NM-179
public peer key, SEC-210
port security, SEC-173, SEC-176, SEC-184
PVST, LSW-85, LSW-116
port
security
client
macAddressElseUserLoginSecure, SEC-189
QCN, QACL-95, QACL-100, QACL-102
QCN basics, QACL-102
port security client userLoginWithOUI, SEC-186
port security features, SEC-179
QCN CND congestion detection parameter,
QACL-102
port security intrusion protection, SEC-179
QCN CND settings, QACL-100
port security MAC address autoLearn, SEC-184
QCN CND settings (global), QACL-101
port security NTK feature, SEC-179
QCN CND settings (interface), QACL-101
port security secure MAC addresses, SEC-180
QinQ, LSW-203, LSW-209
port-based IPv6 multicast VLAN, MCAST-101
QinQ basics, LSW-209
port-based
MCAST-56
QinQ CVLAN tag TPID value, LSW-207
multicast
VLAN,
MCAST-51,
QinQ SVLAN tag TPID value, LSW-207
36
QoS priority mapping trusted port packet
priority, QACL-30
QinQ VLAN tag TPID value, LSW-206
QinQ VLAN transparent transmission, LSW-205,
LSW-211
QoS priority marking, QACL-64, QACL-66
QoS rate limit, QACL-36, QACL-42
QoS aggregate CAR, QACL-79
QoS class-based
QACL-83
accounting,
QoS traffic filtering, QACL-62, QACL-63
QACL-82,
QoS congestion avoidance, QACL-58
QoS traffic policing, QACL-36, QACL-40,
QACL-42
QoS congestion avoidance WRED, QACL-60
QoS traffic redirection, QACL-75, QACL-76
QoS congestion
QACL-50
RBAC, FM-47, FM-50, FM-59
management,
QACL-46,
RBAC feature group, FM-52
QoS
congestion
management
queue
scheduling profile, QACL-55, QACL-57
RBAC for RADIUS authentication user, FM-61
RBAC local AAA authentication user, FM-59
QoS congestion management queue-based
WRED table, QACL-59
QoS congestion
QACL-50
management
RBAC resource access policies, FM-53
RBAC temporary user role authorization, FM-56
queuing,
RBAC temporary user role authorization
(HWTACACS authentication), FM-64
QoS congestion management SP queuing,
QACL-50
QoS congestion
queuing, QACL-53
management
SP+WFQ
QoS congestion
queuing, QACL-52
management
SP+WRR
RBAC temporary user role authorization
(RADIUS authentication), FM-68
RBAC user role authentication, FM-58
RBAC user role interface policy, FM-53
RBAC user role rules, FM-51
QoS congestion management WFQ queuing,
QACL-51
RBAC user role VLAN policy, FM-53
QoS congestion management WRR queuing,
QACL-50
remote port
NM-178
mirroring
destination
group,
QoS data buffer total shared-area ratio,
QACL-93
remote port mirroring source group, NM-180
remote port mirroring source group egress port,
NM-181
QoS global CAR, QACL-79
remote port mirroring source group remote
probe VLAN, NM-182
QoS GTS, QACL-36, QACL-41
QoS nesting, QACL-72, QACL-73
QoS or CAR parameters, SEC-396
remote port mirroring source group source ports,
NM-180
QoS policy, QACL-18
RIP, IPR-11, IPR-13
QoS priority mapping, QACL-26, QACL-29
RIP additional routing metric, IPR-15
QoS priority mapping map, QACL-30
RIP basics, IPR-13
QoS priority mapping priority trust mode,
QACL-31
RIP GR, IPR-23
QoS priority mapping table+priority marking,
QACL-32
RIP packet send rate, IPR-23
RIP network management, IPR-22
RIP poison reverse, IPR-20
37
RIP preference, IPR-18
RRPP intersecting rings, HA-67
RIP received/redistributed route filtering, IPR-18
RRPP load-balanced intersecting rings, HA-83
RIP route control, IPR-15
RRPP node, HA-59
RIP route redistribution, IPR-19
RRPP port, HA-59
RIP split horizon, IPR-20
RRPP protected VLAN, HA-57
RIP timers, IPR-19
RRPP ring, HA-59
RIP version, IPR-15
RRPP ring group, HA-63
RIPng, IPR-35, IPR-36, IPR-42
RRPP single ring, HA-64
RIPng basics, IPR-36, IPR-42
RSCN aggregation, FCoE-41
RIPng GR, IPR-41
RSTP, LSW-84
RIPng IPsec profile configuration, IPR-47
secondary VLAN Layer 3 communication,
LSW-167
RIPng packet zero field check, IPR-40
Secure Telnet client user line, SEC-305
RIPng poison reverse, IPR-40
security password control, SEC-194, SEC-197,
SEC-202
RIPng preference, IPR-38
RIPng received/redistributed route filtering,
IPR-38
security portal authentication, SEC-118, SEC-123,
SEC-137
RIPng route control, IPR-37
security portal
SEC-149
RIPng route redistribution, IPR-39, IPR-44
RIPng route summarization, IPR-37
authentication
cross-subnet,
security portal authentication destination subnet,
SEC-128
RIPng routing metric, IPR-37
security portal authentication detection features,
SEC-130
RIPng split horizon, IPR-40
RIPng timer, IPR-39
security portal authentication direct, SEC-137
RIPv2 message authentication, IPR-21
security
portal
authentication
cross-subnet, SEC-159
RIPv2 route summarization, IPR-16
RMON, NM-107, NM-112
extended
security portal authentication extended direct,
SEC-152
RMON alarm function, NM-110, NM-114
security portal authentication extended re-DHCP,
SEC-155
RMON Ethernet statistics group, NM-112
RMON history group, NM-113
security
SEC-134
RMON statistics function, NM-109
RRPP, HA-47, HA-56, HA-64
portal
authentication
fail-permit,
RRPP control VLAN, HA-57
security portal authentication portal-free rule,
SEC-126
RRPP dual-homed rings, HA-73
security portal authentication re-DHCP, SEC-145
RRPP fail timer, HA-61
security portal authentication server, SEC-124
RRPP fast detection, HA-62, HA-93
security portal authentication server BAS-IP,
SEC-134
RRPP fast detection timer, HA-62
security portal authentication server detection,
SEC-131
RRPP hello timer, HA-61
38
spanning tree edge port, LSW-93
security
portal
authentication
server
detection+user synchronization, SEC-162
spanning tree No Agreement Check, LSW-104,
LSW-106
security portal authentication source subnet,
SEC-127
security portal authentication
detection, SEC-130
user
spanning tree port link type, LSW-98
online
security
portal
authentication
synchronization, SEC-133
spanning tree port mode, LSW-99
spanning tree port path cost, LSW-94, LSW-97
user
spanning tree port priority, LSW-97
spanning tree port role restriction, LSW-110
security portal authentication Web server,
SEC-125
spanning tree protection functions, LSW-108
security portal authentication Web server
detection, SEC-132
spanning tree root bridge, LSW-88
spanning tree root bridge (device), LSW-89
security user profile, SEC-395
spanning tree secondary root bridge, LSW-88
sFlow, NM-193, NM-196
spanning tree secondary root bridge (device),
LSW-89
sFlow agent, NM-194
sFlow collector information, NM-194
sFlow counter sampling, NM-195
spanning tree switched network diameter,
LSW-90
sFlow flow sampling, NM-194
spanning tree TC Snooping, LSW-106
Smart Link, HA-98, HA-101, HA-105
spanning tree TC-BPDU transmission restriction,
LSW-110
Smart Link associated device, HA-104
spanning tree timeout factor, LSW-92
Smart Link device, HA-101
spanning tree timer, LSW-91
Smart Link group (multiple group load sharing),
HA-110
SSH, SEC-300
Smart Link group (single group), HA-105
SSH client host public key, SEC-306
Smart Link group member port, HA-102
SSH device as Secure Telnet client, SEC-310
Smart Link group member port (group view),
HA-102
SSH device as server, SEC-303
Smart Link group member port (interface view),
HA-103
SSH management parameters, SEC-308
SSH device as SFTP client, SEC-312
SSH SCP client device, SEC-315
Smart Link group protected VLAN, HA-102
SSH Secure Telnet, SEC-317
Smart Link group role preemption, HA-103
SSH
Secure
Telnet
authentication, SEC-325
client
password
SSH
Secure
Telnet
authentication, SEC-329
client
publickey
SSH
Secure
Telnet
authentication, SEC-317
server
password
spanning tree device priority, LSW-89
SSH
Secure
Telnet
authentication, SEC-320
server
publickey
spanning tree Digest Snooping, LSW-102,
LSW-103
SSH SFTP, SEC-331
Smart Link+Track collaboration, HA-104, HA-114
Smart Link+Track+CFD collaboration, HA-137
source MAC consistency check, SEC-402
spanning tree, LSW-68, LSW-82, LSW-112
spanning tree BPDU transmission rate, LSW-93
39
TRILL timers, TRILL-12
SSH SFTP client publickey authentication,
SEC-334
TRILL VR, TRILL-19
SSH SFTP server password authentication,
SEC-331
trunk VSAN, FCoE-27
UDP helper, IPSER-132, IPSER-134
SSH user, SEC-307
UDP helper conversion (broadcast to multicast),
IPSER-133
SSL, SEC-342, SEC-343
SSL client policy, SEC-344
SSL server policy, SEC-343
UDP helper conversion (broadcast to unicast),
IPSER-132
static routing, IPR-6
user profile, SEC-396
static routing basics, IPR-7
user profile parameters, SEC-396
static routing default route, IPR-10
VFC interface, FCoE-15
static
routing+Track+NQA
HA-132
VFC interface RCF request rejection, FCoE-41
collaboration,
VLAN, LSW-128, LSW-144
STP, LSW-83
sub-VLAN-based
MCAST-98
VLAN basic settings, LSW-129
IPv6
multicast
VLAN,
VLAN group, LSW-143
VLAN interface basics, LSW-130
sub-VLAN-based multicast VLAN, MCAST-50,
MCAST-53
VLAN mapping, LSW-214, LSW-219, LSW-227
TCP fragment attack prevention, SEC-401
VLAN mapping (1:1), LSW-220, LSW-227
TFTP, FM-83
VLAN mapping (1:2), LSW-225, LSW-232
time range, QACL-89
VLAN mapping (2:2), LSW-226, LSW-232
Track, HA-127, HA-128, HA-132
VLAN mapping (M:1), LSW-221, LSW-227
TRILL, TRILL-1, TRILL-7, TRILL-25
VLAN mapping (M:1)
assignment), LSW-223
TRILL announcing VLAN, TRILL-12
(static
IP
address
VLAN mapping (M:1)(dynamic IP address
assignment), LSW-221
TRILL designated VLAN, TRILL-12
TRILL distribution tree, TRILL-16
TRILL ECMP routes, TRILL-18
VLAN mapping M:1 customer-side port
(dynamic IP address assignment), LSW-222
TRILL forwarding for EVB S-channel traffic,
TRILL-22
VLAN mapping M:1 customer-side port (static IP
address assignment), LSW-224
TRILL GR, TRILL-23
VLAN mapping M:1 network-side port (dynamic
IP address assignment), LSW-222
TRILL LSP parameter and feature, TRILL-13
VLAN mapping M:1 network-side port (static IP
address assignment), LSW-224
TRILL port DRB priority, TRILL-11
TRILL port link cost, TRILL-11
voice VLAN, LSW-170, LSW-180
TRILL port link type, TRILL-10
voice VLAN CDP advertisement, LSW-179
TRILL RB nickname, TRILL-9
voice VLAN LLDP advertisement, LSW-179
TRILL RB system ID, TRILL-9
voice VLAN port operation
assignment), LSW-176, LSW-180
TRILL SNMP, TRILL-22
40
(automatic
voice
VLAN
port
operation
assignment), LSW-177, LSW-182
Ethernet OAM connection establishment, HA-2
(manual
Ethernet OAM port action configuration, HA-8
voice VLAN QoS priority settings, LSW-175
VSAN, FCoE-26, FCoE-28
interface cable connection (Layer 2 Ethernet),
LSW-13
zoning mode, FCoE-80
IRF physical interface, IRF-16
confirmed DLDP neighbor state, HA-33
OpenFlow connection detection interval, OF-14
congestion avoidance
OpenFlow reconnection interval, OF-14
voice VLAN host+IP phone connection (in
series), LSW-172
configuration, QACL-58
ECN, QACL-59
voice VLAN IP phone connection (device),
LSW-172
queue-based WRED table, QACL-59
RED, QACL-58
Connectivity Fault Detection. Use CFD
tail drop, QACL-58
consistency check (ARP attack protection), SEC-363
WRED, QACL-58
console
WRED configuration, QACL-60
information center log output, NM-77, NM-84
congestion management
login management CLI console/AUX common
user line settings, FM-21
configuration, QACL-46, QACL-50
queue aging time setting, QACL-57
login management CLI console/AUX none
authentication, FM-19
queue scheduling profile, QACL-55, QACL-57,
QACL-88
login management CLI console/AUX password
authentication, FM-20
queuing, QACL-50
login management CLI console/AUX scheme
authentication, FM-21
SP queuing, QACL-46, QACL-50
SP+WFQ queuing, QACL-49
login management CLI local console/AUX port
login, FM-19
SP+WFQ queuing configuration, QACL-53
SP+WRR queuing, QACL-49
SP+WRR queuing configuration, QACL-52
login management
procedure, FM-15
console
WFQ queuing, QACL-49, QACL-51
login management overview, FM-14
login
continuity check
WRR queuing, QACL-47, QACL-50
CFD configuration, HA-21
Congestion Notification
CFD function, HA-16
Domain. Use CND
control plane
Message. Use CNM
flow mirroring QoS policy application, NM-190
connecting
CWMP ACS connection initiation, NM-223
QoS policy application, QACL-21
CWMP ACS connection retry max number,
NM-223
QoS policy
QACL-23
CWMP CPE
NM-222
port
ACS
connection
application
control VLAN
interface,
RRPP, HA-48
Ethernet OAM connection detection timer, HA-4
RRPP configuration, HA-57
41
(control
plane),
controller-to-switch message (OpenFlow), OF-6
cookie (TCP SYN), IPSER-127
controlling
cooperating
OpenFlow MAC-IP flow table/extensibility flow
table cooperations, OF-24
802.1X controlled/uncontrolled port, SEC-62
AAA RADIUS session-control, SEC-46
copying
CLI output, FM-8
ACL, QACL-10
CLI output control keys, FM-9
FC zone alias, FCoE-87
FC access control, FCoE-79
FC zone set, FCoE-87
IPv6 ICMPv6 message send, IPSER-155
FC zones, FCoE-87
login management SNMP access, FM-39
file, FM-87
login management SSH logins, FM-38
IPsec packet DF bit copy, SEC-268
login management Telnet logins, FM-38, FM-39
copyright statement display, FM-147
login management user access, FM-38
correcting
NMM NTP access control rights configuration,
NM-17
NMM PTP delay correction value, NM-63
CoS
OpenFlow configuration, OF-1, OF-16
voice VLAN QoS priority setting configuration,
LSW-175
OpenFlow connection interruption mode, OF-13
OpenFlow controller, OF-8
cost
OpenFlow controller mode set, OF-10
OpenFlow
controller+main
configuration, OF-13
spanning tree port path cost calculation
standard, LSW-94
connection
spanning tree port path cost configuration,
LSW-94, LSW-97
OpenFlow datapath ID, OF-12
OpenFlow
OF-12
instance
activation/reactivation,
STP path cost, LSW-70
TRILL ECMP route configuration, TRILL-18
OpenFlow max number flow entries, OF-10
TRILL link cost configuration, TRILL-11
OpenFlow switch controller, OF-13
CPE
port security MAC address learning, SEC-175
ACS authentication parameters, NM-222
RBAC configuration, FM-47, FM-50
ACS connection interface, NM-222
RIP additional routing metric configuration,
IPR-15
ACS provision code, NM-222
RIP interface advertisement, IPR-14
attribute type, NM-221
RIP interface reception, IPR-14
CWMP ACS autoconnect parameters, NM-223
RIP route control configuration, IPR-15
NAT traversal, NM-224
RIPng route control, IPR-37
CPE WAN Management Protocol. Use CWMP
RMON history control entry, NM-110
CPU
device CPU usage monitoring, FM-157
security portal authentication user access,
SEC-126
flow mirroring configuration, NM-188, NM-191
Converged Enhanced Ethernet. Use CEE
ISSU command series, FM-116
42
PKI certificate export, SEC-227
ISSU methods, FM-115
PKI certificate removal, SEC-228
creating
PKI certificate-based access control policy,
SEC-228
AAA HWTACACS scheme, SEC-32
AAA ISP domain, SEC-42
troubleshooting PKI CRL obtain failure, SEC-247
AAA LDAP scheme, SEC-41
cross-subnet
AAA RADIUS scheme, SEC-23
portal authentication, SEC-149
DHCP server address pool, IPSER-35
portal authentication extended, SEC-159
EVB S-channel, EVB-6
portal authentication mode, SEC-121
EVB VSI aggregate interface, EVB-8
crypto engine
EVB VSI interface, EVB-8
configuration, SEC-383
file system directory, FM-90
displaying, SEC-383
local key pair, SEC-207
maintaining, SEC-383
local port mirroring group, NM-174
cryptography
Monitor Link group, HA-121
FIPS self-test, SEC-388
OpenFlow flow table, OF-9
CSNP
OpenFlow instance, OF-8
port mirroring
NM-178
remote
destination
TRILL CSNP interval, TRILL-12
group,
CST
MST region connection, LSW-79
port mirroring remote source group, NM-180
cumulative offset (UTC
RBAC user role, FM-50
TAI), NM-63
RMON Ethernet statistics entry, NM-109
custom
RMON history control entry, NM-110
information center custom logs, NM-71
RRPP domain, HA-56
customer
security LDAP server, SEC-38
LAN switching LLDP customer bridge mode,
LSW-243
TRILL VR, TRILL-19
user profile, SEC-395
customizing
VSAN, FCoE-27
DHCP options, IPSER-28, IPSER-42
critical VLAN
DHCP server option customization, IPSER-53
802.1X authentication, SEC-76
cut-through Layer 2 forwarding, LSW-270
802.1X configuration, SEC-88
CVLAN
MAC authentication, SEC-103
QinQ basic configuration, LSW-209
MAC authentication configuration, SEC-109
QinQ configuration, LSW-203, LSW-209
CRL
QinQ
VLAN
transparent
configuration, LSW-211
PKI, SEC-217
PKI architecture, SEC-217
VLAN mapping
LSW-219, LSW-227
PKI CA policy, SEC-217
43
configuration,
transmission
LSW-214,
NMM NETCONF filtering (regex match),
NM-256, NM-258
VLAN mapping implementation, LSW-216
CWMP
QCN basic configuration, QACL-102
ACS, NM-215
QCN configuration, QACL-95, QACL-100,
QACL-102
ACS attribute (default)(CLI), NM-221
ACS attribute (preferred), NM-220
QCN data flow format, QACL-95
ACS attribute configuration, NM-220
SSL configuration, SEC-342, SEC-343
ACS autoconnect parameters, NM-223
data buffer
ACS HTTPS SSL client policy, NM-224
burst function enable, QACL-92
basic functions, NM-216
configuration, QACL-91
configuration, NM-215, NM-218, NM-225
configuration (manual), QACL-92
CPE, NM-215
configuration application, QACL-94
CPE ACS authentication parameters, NM-222
display, QACL-94
CPE ACS connection interface, NM-222
fixed-area max queue ratio, QACL-94
CPE ACS provision code, NM-222
shared-area max queue ratio, QACL-93
CPE attribute configuration, NM-221
total shared-area ratio, QACL-93
CPE NAT traversal, NM-224
Data Center
DHCP server, NM-215
Bridging Exchange Protocol. Use DCBX
displaying settings, NM-225
Ethernet. Use DCE
DNS server, NM-215
data encryption
enable, NM-219
PKI configuration, SEC-216, SEC-218, SEC-230
how it works, NM-217
data forwarding
network framework, NM-215
OpenFlow configuration, OF-1, OF-8, OF-16
D OpenFlow datapath ID, OF-12
data
buffer. See data buffer
OpenFlow dynamic MAC address support,
OF-14
eIRF data forwarding, IRF-48
OpenFlow instance configuration, OF-8
multi-CND QCN configuration, QACL-105
OpenFlow
OF-13
NMM NETCONF configuration data retrieval
(all modules), NM-249
switch
controller
configuration,
OpenFlow timer setting, OF-14
NMM NETCONF configuration data retrieval
(Syslog module), NM-250
data VLAN (RRPP), HA-48
DCBX
NMM NETCONF data entry retrieval (interface
table), NM-251
configuration, LSW-250, LSW-264
NMM NETCONF filtering (conditional match),
NM-256, NM-260
NMM NETCONF filtering (full match), NM-256
44
LAN
switching
LLDP
configuration, LSW-252
APP
parameter
LAN
switching
LLDP
configuration, LSW-254
ETS
parameter
LAN
switching
LLDP
configuration, LSW-255
PFC
information center log default output rules,
NM-72
parameter
IPv6 default route configuration, IPR-34
LAN switching LLDP+DCBX TLV advertisement,
LSW-251
RIP default route advertisement, IPR-17
DDNS. See also DNS
RIPng default route advertisement, IPR-38
application, IPSER-105
static routing configuration. See under static
routing
client, IPSER-105
system information diagnostic log output rules,
NM-72
client configuration, IPSER-106
client policy application, IPSER-108
system information hidden log output rules,
NM-73
client policy configuration, IPSER-106
configuration, IPSER-105, IPSER-109
system information security log output rules,
NM-73
configuration (PeanutHull server), IPSER-111
configuration (www.3322.org), IPSER-109
system information trace log output rules,
NM-73
display, IPSER-109
default action
outgoing packet DSCP value, IPSER-109
table-miss flow entries, OF-12
server, IPSER-105
defining
deactivating
ISSU deactivate operation
commands), FM-124
(install
QoS policy, QACL-21
series
QoS traffic behavior, QACL-20
dead interval, FCoE-58
QoS traffic class, QACL-19
deadloop detection (Linux kernel PMM), NM-200
Delay_Req message, NM-61
debugging
DelayDown timer (DLDP), HA-33, HA-37
feature module, NM-6
delaying
system maintenance, NM-1
MAC authentication delay, SEC-108
decompressing
NMM PTP BC delay measurement, NM-59
file, FM-87, FM-88
NMM PTP delay correction value, NM-63
ISSU IPE file, FM-122
NMM PTP OC delay measurement, NM-59
default
deleting
ACL packet filtering default action, QACL-12
FC zone database, FCoE-87
CFD MIP default rule, HA-14
file, FM-88
Ethernet link aggregate
settings, LSW-53
interface
default
next-startup configuration file, FM-104
recycle bin file, FM-88
EVB default VSI manager, EVB-4
delimiter (802.1X domain name), SEC-89
FC zone database structure default zone,
FCoE-72
DES
IPsec encryption algorithm, SEC-253
FCoE VFC interface F mode, FCoE-6
designated
45
high availability DLDP automatic unidirectional
link shutdown, HA-39
MST port, LSW-80
STP bridge, LSW-69
high availability DLDP configuration, HA-32,
HA-36, HA-39
STP port, LSW-69
TRILL designated routing bridge, TRILL-1
high availability DLDP manual unidirectional
link shutdown, HA-42
destination
destination device, NM-171
high availability DLDP multiple neighbors
detection, HA-36
information center system logs, NM-72
high availability DLDP single neighbor detection,
HA-34
port mirroring, NM-171
security portal authentication portal-free rule,
SEC-126
IPv6 ND duplicate address detection, IPSER-141
IPv6 ND neighbor reachability detection,
IPSER-141
security portal authentication subnet, SEC-128
destination
IPSER-156
unreachable
message
(ICMPv6),
IPv6 ND redirection, IPSER-142
IPv6 ND router/prefix discovery, IPSER-141
destroying
IRF ARP MAD, IRF-9
local key pair, SEC-209
IRF failure recovery, IRF-7
detecting
ARP attack detection (source MAC-based),
SEC-361, SEC-362
IRF LACP MAD, IRF-8
ARP detection configuration, SEC-364
IRF ND MAD, IRF-10
configuring RRPP fast detection, HA-62
NQA+Track+static
HA-128
IRF MAD handling procedure, IRF-7
configuring RRPP fast detection timer, HA-62
device port status detection timer, FM-157
DHCP client duplicated address detection,
IPSER-66
DHCP IP address conflict detection, IPSER-44
routing
collaboration,
PMM kernel
NM-200
thread
deadloop
detection,
PMM kernel
NM-201
thread
starvation
detection,
enabling RRPP fast detection, HA-62
QCN CND congestion detection parameter,
QACL-102
Ethernet OAM connection detection timer, HA-4
QoS congestion avoidance RED, QACL-58
Ethernet OAM errored frame event detection,
HA-6
QoS congestion avoidance WRED, QACL-58
RRPP fast detection mechanism, HA-52
Ethernet OAM errored frame period event
detection, HA-7
security portal authentication detection features,
SEC-130
Ethernet OAM errored frame seconds event
detection, HA-7
security portal authentication server, SEC-131
Ethernet OAM errored symbol event detection,
HA-5
security
portal
authentication
server
detection+user synchronization, SEC-162
Ethernet OAM fault detection, HA-1
security portal authentication
detection, SEC-130
Ethernet OAM remote fault detection, HA-3
user
security
portal
authentication
synchronization, SEC-133
46
online
user
security portal authentication Web server,
SEC-132
automatic
FM-174
Track configuration, HA-127, HA-132
automatic configuration start, FM-177
Track+application
HA-128
CLI command history function use, FM-7
module
collaboration,
configuration
file
preparation,
CLI command redisplay, FM-6
Track+CFD association, HA-129
CLI display command output filtering, FM-9
Track+detection module association, HA-129
Track+detection module collaboration, HA-127
CLI display command output line numbering,
FM-9
Track+interface
HA-130
CLI display command output management,
FM-13
management
association,
CLI display command output save to file, FM-12
Track+NQA association, HA-129
CLI display command output viewing, FM-13
determining
CLI output control, FM-8, FM-9
address reachability with ping, NM-1
CLI running configuration save, FM-13
device
CLI use, FM-1
ACL packet filtering applicable scope (VLAN
interface), QACL-11
command help information display, FM-80
ACL packet filtering application (interface),
QACL-11
common proxy ARP configuration, IPSER-15
configuration types, FM-94
ACL packet filtering configuration, QACL-10
creating RRPP domain, HA-56
ACL packet filtering default action, QACL-12
creating user profile, SEC-395
ACL packet filtering log interval, QACL-11
crypto engine configuration, SEC-383
ACL switch applications, QACL-1
CWMP configuration,
NM-225
activating RRPP domain, HA-61
allowed domain ID list, FCoE-37
NM-215,
NM-218,
DDNS client policy application, IPSER-108
ARP dynamic entry max (device), IPSER-5
DDNS outgoing packet DSCP value, IPSER-109
ARP dynamic entry max (interface), IPSER-5
DHCP client packet DSCP value, IPSER-66
attack D&P configuration, SEC-401
DHCP overview, IPSER-25
automatic configuration, FM-173
DHCP relay agent packet DSCP value, IPSER-61
automatic configuration (DHCP server), FM-175
DHCP server configuration, IPSER-32, IPSER-34
automatic configuration (DNS server), FM-176
DHCP server packet DSCP value, IPSER-46
automatic configuration (HTTP server+Python
script), FM-183
DHCP snooping entry max, IPSER-76
DHCPv6 client DUID, IPSER-189
automatic configuration (HTTP server+Tcl script),
FM-182
DHCPv6 client packet DSCP value, IPSER-189
automatic configuration (IRF setup), FM-184
DHCPv6 DUID, IPSER-169
automatic configuration (server-based), FM-177
DHCPv6 IA, IPSER-169
automatic configuration (TFTP server), FM-177
DHCPv6 IAID, IPSER-169
DHCPv6 packet DSCP value, IPSER-176
47
FCoE communication flow, FCoE-4
DHCPv6 PD, IPSER-170
DHCPv6 server
IPSER-171
configuration,
FCoE
configuration,
FCoE-129
IPSER-168,
FCoE-13,
FCoE-21,
FCoE configuration (VFC interface)(IRF mode),
FCoE-141
DNS outgoing packet DSCP value, IPSER-91
DNS packet source interface, IPSER-90
FCoE configuration (VFC interface)(standalone
mode), FCoE-129
DNS proxy, IPSER-84
DNS proxy configuration, IPSER-89
FCoE for VLAN enable, FCoE-17
DNS spoofing, IPSER-85
FCoE overview, FCoE-1
DNS spoofing configuration, IPSER-90
FCoE switch mode configuration, FCoE-13
DNS trusted interface, IPSER-91
FCoE VFC interface, FCoE-6
eIRF device configuration as independent switch,
IRF-50
FCoE VLAN-VSAN mapping, FCoE-17
FCoE VN interface, FCoE-6
eIRF device configuration as PEX, IRF-50
FCoE VSAN, FCoE-4
emergency shell management Ethernet port
configuration, FM-139
FCS configuration, FCoE-109, FCoE-112
emergency shell reboot, FM-142
FDMI configuration, FCoE-116
emergency shell server access, FM-140
file system management, FM-85
emergency shell server connectivity check,
FM-140
file system storage media formatting, FM-91
file system storage media management, FM-90
emergency shell system software image load,
FM-141
file system storage media mount, FM-91
file system storage media repair, FM-91
emergency shell use, FM-138, FM-142
file system storage media unmount, FM-91
enter system view from user view, FM-2
FTP basic server parameters configuration,
FM-74
Ethernet OAM basic configuration, HA-4
Ethernet OAM configuration, HA-1, HA-4, HA-11
FTP client, FM-77
fabric building, FCoE-32, FCoE-34
fabric building
FCoE-47
configuration
FTP client configuration (centralized IRF device),
FM-81
(dynamic),
FTP client connection establishment, FM-77
fabric building configuration (static), FCoE-44
FTP configuration, FM-73
fabric configuration, FCoE-44
FTP connection termination, FM-80
fabric principal switch selection, FCoE-32
FTP connection troubleshooting, FM-80
fabric switch domain ID, FCoE-38
FTP manual server connection release, FM-75
fabric switch priority, FCoE-36
FTP server, FM-73
FC configuration, FCoE-13, FCoE-129
FTP server authentication, FM-74
FC overview, FCoE-1
FTP server authorization, FM-74
FC SAN, FCoE-1
FTP server configuration (centralized IRF device),
FM-75
FC zone, FCoE-5
48
FTP server directory management, FM-78
IPv6 DNS client configuration, IPSER-88
FTP server files, FM-78
IPv6 DNS proxy configuration, IPSER-102
FTP user account change, FM-79
IPv6 TFTP client configuration, FM-84
high availability DLDP automatic unidirectional
link shutdown, HA-39
ISSU install series commands, FM-132
LAN switching LLDP
LSW-242, LSW-258
high availability DLDP configuration, HA-32,
HA-36, HA-39
LAN switching
LSW-248
high availability DLDP manual unidirectional
link shutdown, HA-42
LLDP
basic
configuration,
CDP
compatibility,
LAN switching LLDP configuration, LSW-235,
LSW-241, LSW-258
information center configuration, NM-6, NM-71,
NM-76, NM-84
information center log output (console), NM-84
LAN
switching
LLDP
(CDP-compatible), LSW-262
configuration
information center log output (Linux log host),
NM-86
LAN switching LLDP DCBX configuration,
LSW-250, LSW-264
information center log output (UNIX log host),
NM-85
LAN switching LLDP parameters, LSW-247
information center system log types, NM-71
Layer 2 cut-through forwarding configuration,
LSW-270
interface configuration (Ethernet), LSW-1
Layer 2 remote port mirroring, NM-184
IP addressing configuration, IPSER-23
Layer 2 remote port mirroring configuration,
NM-177
IP forwarding, IPSER-113
link detection protocol. Use DLDP
IP forwarding load sharing, IPSER-115, IPSER-116
load sharing, IPSER-115
IP performance optimization directed broadcast
receive/forward configuration, IPSER-125
local port mirroring, NM-182
IPPO ICMP error message send, IPSER-128
local port mirroring configuration, NM-173
IPPO ICMP fragment forwarding disable,
IPSER-130
local port mirroring configuration with multiple
monitor ports, NM-186
IPPO interface MTU configuration, IPSER-125
local port mirroring group monitor port, NM-175
IPPO interface
IPSER-126
login management modem login, FM-32
TCP
MSS
configuration,
login management SNMP device access,
FM-37
IPPO TCP buffer size, IPSER-128
login management SSH login configuration on
device, FM-30
IPPO TCP path MTU discovery, IPSER-126
IPPO TCP SYN cookie, IPSER-127
login management SSH server login, FM-32
IPPO TCP timer, IPSER-128
login management
configuration, FM-24
IPv4 DNS client configuration, IPSER-87
IPv4 DNS proxy configuration, IPSER-95
Telnet
login
device
login management Telnet server login, FM-29
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
loop protection actions, LSW-121
management, FM-145
IPv4 TFTP client configuration, FM-83
MFF server IP address, SEC-378
IPv6 basics configuration, IPSER-159
49
Monitor Link configuration, HA-120, HA-121,
HA-122
NMM SNMP MIB role-based access control,
NM-91
Monitor Link downlink interface switchover
delay, HA-122
NMM SNMP MIB view-based access control,
NM-91
Monitor Link group creation, HA-121
NMM SNMP notification, NM-98
Monitor Link group member interface, HA-121
NMM SNMP view-based MIB access control,
NM-89
MSTP implementation, LSW-82
MVRP configuration,
LSW-192
LSW-185,
NMM SNMPv1 basics, NM-91
LSW-188,
NMM SNMPv1 configuration, NM-101
NMM SNMPv2c basics, NM-91
NMM IPv6 NTP multicast association mode,
NM-38
NMM NETCONF
NM-240
capability
NMM SNMPv2c configuration, NM-101
exchange,
NMM SNMPv3 basics, NM-93
NMM SNMPv3 configuration (RBAC mode ),
NM-105
NMM NETCONF CLI operations, NM-261
NMM NETCONF
NM-239
configuration,
NM-236,
NMM SNMPv3 configuration (VACM mode ),
NM-103
NMM NETCONF configuration lock/unlock,
NM-243, NM-245
NMM NETCONF
NM-248
edit-config
operation,
NMM NETCONF
NM-246
get/get-bulk
operation,
NPV configuration, FCoE-93, FCoE-94, FCoE-97
NPV disruptive load balancing, FCoE-94
NPV downlink, FCoE-93
NPV downlink interface, FCoE-93, FCoE-95
NPV downlink-uplink
FCoE-94, FCoE-96
NMM NETCONF get-config/get-bulk-config
operation, NM-247
interface
mapping,
NPV uplink, FCoE-94
NMM NETCONF service operations, NM-246
NPV uplink interface, FCoE-94, FCoE-95
NMM NETCONF session information retrieval,
NM-262
NQA client operation, NM-120
NQA DNS operation configuration, NM-148
NMM NETCONF session termination, NM-264
NQA server, NM-119
NMM NTP architecture, NM-9
NQA UDP
NM-151
NMM NTP broadcast association mode,
NM-33
jitter
operation
configuration,
port mirroring configuration, NM-171, NM-182
NMM NTP broadcast mode with authentication,
NM-43
port mirroring
NM-178
NMM NTP multicast association mode, NM-35
remote
destination
group,
port mirroring remote source group, NM-180
NMM SNMP basics, NM-91
port mirroring remote source group egress port,
NM-181
NMM SNMP configuration, NM-89, NM-107
NMM SNMP FIPS compliance, NM-91
port mirroring remote source group remote
probe VLAN, NM-182
NMM SNMP MIB, NM-89
port mirroring remote source group source ports,
NM-180
NMM SNMP MIB access control mode, NM-91
50
process
HA-139
placement
configuration,
software upgrade system startup, FM-107
HA-138,
spanning tree BPDU drop, LSW-111
QoS congestion management configuration,
QACL-50
QoS policy
QACL-23
application
(control
spanning tree BPDU guard, LSW-108
spanning tree Digest Snooping, LSW-102,
LSW-103
plane),
spanning tree loop guard, LSW-109
QoS policy application (global), QACL-23
spanning tree No Agreement Check, LSW-104,
LSW-106
QoS policy application (user profile), QACL-24
QoS policy application (VLAN), QACL-22
spanning tree port role restriction, LSW-110
QoS policy interface application, QACL-22
spanning tree priority, LSW-89
return to upper-level view from any view, FM-2
spanning tree protection functions, LSW-108
return to user view, FM-2
spanning tree root guard, LSW-108
running configuration, FM-94
spanning tree TC Snooping, LSW-106
security password control, SEC-197, SEC-202
security
SEC-194
password
control
spanning tree TC-BPDU guard, LSW-111
configuration,
spanning tree TC-BPDU transmission restriction,
LSW-110
security password control global parameters,
SEC-198
SSH SCP client, SEC-315
SSH SCP server enable, SEC-305
security password control local user parameters,
SEC-200
security password
parameters, SEC-199
control
user
SSH Secure Telnet client, SEC-310
SSH Secure Telnet
establishment, SEC-310
group
server
connection
security password setting, SEC-194
SSH server configuration, SEC-303
security portal authentication AAA server,
SEC-119
SSH SFTP client, SEC-312
security portal authentication client, SEC-119
SSL server policy configuration, SEC-343
security portal authentication device access,
SEC-119
startup configuration, FM-94
security portal authentication policy server,
SEC-119
stateless DHCPv6, IPSER-167
SSH SFTP server enable, SEC-304
startup configuration loading, FM-95
security portal authentication server, SEC-119
Stelnet server enable, SEC-304
security portal authentication Web server,
SEC-119
storage media CF card partition, FM-92
security super password control parameters,
SEC-201
TFTP configuration, FM-83
storage media USB disk partition, FM-92
UDP helper configuration, IPSER-134
security user profile configuration, SEC-395
VFC interface configuration, FCoE-15
Smart Link associated device, HA-104
voice VLAN IP phone connection, LSW-172
Smart Link device, HA-101
VSAN configuration, FCoE-26, FCoE-28
software upgrade, FM-106
device management
51
airflow direction configuration, FM-157
address allocation, IPSER-25
banner configuration, FM-147, FM-148
address assignment, IPSER-32
banner input modes, FM-147
address pool, IPSER-32
banner types, FM-147
address pool application on interface, IPSER-44
configuration, FM-145
address pool selection, IPSER-33
copyright statement display, FM-147
automatic configuration, FM-173
CPU usage monitoring, FM-157
automatic configuration (DHCP server), FM-175
device name configuration, FM-145
automatic configuration (HTTP server+Python
script), FM-183
device reboot, FM-150
automatic configuration (HTTP server+Tcl script),
FM-182
device reboot (immediate), FM-150
device reboot (scheduled), FM-150
automatic configuration (IRF setup), FM-184
displaying configuration, FM-162
automatic configuration (server-based), FM-177
maintaining configuration, FM-162
automatic configuration (TFTP server), FM-177
memory usage threshold, FM-158
automatic configuration start, FM-177
password recovery capability disable, FM-156
BOOTP application, IPSER-81
port status detection timer, FM-157
BOOTP client address acquisition, IPSER-82
restoring factory-default settings and states,
FM-161
BOOTP client configuration, IPSER-81, IPSER-82
BOOTP client display, IPSER-82
system operating mode, FM-149
BOOTP client dynamic IP address acquisition,
IPSER-81
system time set, FM-146
system time source set, FM-146
BOOTP protocols and standards, IPSER-81
table capacity adjust, FM-163
client auto-configuration file, IPSER-40
task scheduling, FM-151, FM-153
client BIMS server information, IPSER-40
temperature alarm threshold, FM-159
client configuration, IPSER-65, IPSER-67
transceiver module diagnosis, FM-161
client display, IPSER-67
transceiver module verification, FM-161
client DNS server specification, IPSER-39
USB interface disable, FM-160
client domain
IPSER-39
DF bit
name
suffix
specification,
IPsec packet DF bit clear, SEC-268
client duplicated address detection, IPSER-66
IPsec packet DF bit copy, SEC-268
client enable (interface), IPSER-65
IPsec packet DF bit set, SEC-268
client gateway specification, IPSER-38
DH algorithm
client ID configuration (interface), IPSER-65
IPsec IKE, SEC-283
client NetBIOS node type, IPSER-39
IPsec PFS, SEC-283
client packet DSCP value, IPSER-66
DHCP
client server specification, IPSER-41
802.1X EAD assistant, SEC-97
client WINS server specification, IPSER-39
52
relay agent configuration, IPSER-55, IPSER-56,
IPSER-62
DHCPv6. See DHCPv6
enable, IPSER-43
relay agent display, IPSER-61
enabling Option 82 handling, IPSER-44
relay agent enable on interface, IPSER-57
IP address allocation, IPSER-26
relay agent entry periodic refresh, IPSER-58
IP address allocation sequence, IPSER-34
relay agent IP address release, IPSER-60
IP address conflict detection, IPSER-44
relay agent maintain, IPSER-61
IP address lease extension, IPSER-26
relay agent operation, IPSER-55
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
relay agent Option 82 configuration, IPSER-60,
IPSER-63
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
relay agent Option 82 support, IPSER-56
relay agent packet DSCP value, IPSER-61
message format, IPSER-27
relay agent relay entry recording, IPSER-58
NQA, NM-117
relay agent security functions, IPSER-58
NQA client DHCP operation, NM-121
relay agent server, IPSER-57
NQA DHCP operation configuration, NM-147
relay agent
IPSER-59
Option #. See also Option #
starvation
attack
protection,
security portal authentication extended re-DHCP,
SEC-155
Option 3, IPSER-28
Option 6, IPSER-28
security portal authentication modes, SEC-120
Option 33, IPSER-28
security portal authentication process, SEC-121
Option 43 (vendor-specific), IPSER-28
security portal authentication re-DHCP, SEC-145
Option 51, IPSER-28
security portal authentication re-DHCP process
(with CHAP/PAP authentication), SEC-122
Option 53, IPSER-28
Option 55, IPSER-28
server address pool configuration, IPSER-34
Option 60, IPSER-28
server address pool creation, IPSER-35
Option 66, IPSER-28
server address pool IP address range, IPSER-35
Option 67, IPSER-28
server BOOTP request ignore, IPSER-45
Option 82 (relay agent), IPSER-28, IPSER-30
server BOOTP response format, IPSER-46
Option 121, IPSER-28
server compatibility configuration, IPSER-45
Option 150, IPSER-28
Option 184 (reserved), IPSER-28, IPSER-30
server configuration,
IPSER-47
option customization, IPSER-42
server display, IPSER-46
options (common), IPSER-28
server enable on interface, IPSER-43
options (custom), IPSER-28
server IP address dynamic assignment, IPSER-49
overview, IPSER-25
server IP address static assignment, IPSER-47
protocols and standards, IPSER-30
server maintain, IPSER-46
53
IPSER-32,
IPSER-34,
server option
IPSER-53
customization
address pool selection, IPSER-170
configuration,
address/prefix assignment, IPSER-165
server packet DSCP value, IPSER-46
address/prefix lease renewal, IPSER-166
server response broadcast, IPSER-45
assignment (4 messages), IPSER-165
server subnet configuration, IPSER-52
client configuration, IPSER-187, IPSER-190
server user class configuration, IPSER-50
client configuration restrictions, IPSER-187
snooping. See DHCP snooping
troubleshoot
IPSER-63
relay
agent
client display, IPSER-190
configuration,
client DUID, IPSER-189
client IPv6 address acquisition, IPSER-187
troubleshoot server configuration, IPSER-54
client IPv6 address acquisition configuration,
IPSER-190
troubleshooting security portal authentication
users cannot log in (re-DHCP), SEC-172
client IPv6 prefix acquisition, IPSER-188
voice client Option 184 parameters, IPSER-41
client IPv6 prefix acquisition configuration,
IPSER-191
DHCP snooping
basic configuration, IPSER-72
client maintain, IPSER-190
basics configuration, IPSER-78
client packet DSCP value, IPSER-189
configuration, IPSER-70, IPSER-72, IPSER-78
client stateless DHCPv6, IPSER-188
DHCP-REQUEST message attack protection,
IPSER-76
client
stateless
IPSER-193
display, IPSER-78
DHCPv6
configuration,
concepts, IPSER-169
entry auto backup, IPSER-74
DUID, IPSER-169
entry max, IPSER-76
IA, IPSER-169
maintain, IPSER-78
IAID, IPSER-169
Option 82 configuration, IPSER-73
IPv6 address assignment, IPSER-168
Option 82 support, IPSER-71
Option 82 support configuration, IPSER-79
IPv6 address/prefix
IPSER-171
packet blocking port, IPSER-77
IPv6 prefix assignment, IPSER-168
packet rate limit, IPSER-77
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
starvation attack protection, IPSER-75
trusted port, IPSER-70
allocation
sequence,
multicast address, IPSER-169
untrusted port, IPSER-70
overview, IPSER-165
VLAN M:1 mapping (dynamic IP address
assignment), LSW-221
PD, IPSER-170
prefix allocation, IPSER-170
DHCP-REQUEST message attack protection, IPSER-76
protocols and standards, IPSER-167
DHCPv6
rapid assignment (2 messages), IPSER-165
address allocation, IPSER-170
relay agent configuration, IPSER-182, IPSER-183,
IPSER-185
address pool, IPSER-170
54
relay agent display, IPSER-184
information center diagnostic log, NM-71
relay agent enable on interface, IPSER-183
information center diagnostic log save (log file),
NM-81
relay agent maintain, IPSER-184
DiffServ QoS service model, QACL-15
relay agent packet DSCP value, IPSER-184
Digest Snooping (spanning tree), LSW-102, LSW-103
relay agent server, IPSER-183
server configuration,
IPSER-177
IPSER-168,
digital certificate
IPSER-171,
PKI CA certificate, SEC-216
server configuration on interface, IPSER-175
PKI CA policy, SEC-217
server display, IPSER-176
PKI CA storage path, SEC-227
server dynamic IPv6 address assignment,
IPSER-179
PKI certificate export, SEC-227
server dynamic
IPSER-177
IPv6
prefix
PKI certificate import/export, SEC-240
assignment,
PKI certificate obtain, SEC-224
PKI certificate removal, SEC-228
server IPv6 address assignment, IPSER-173
PKI certificate request, SEC-222
server IPv6 prefix assignment, IPSER-172
PKI certificate request (automatic), SEC-223
server maintain, IPSER-176
server network
IPSER-174
parameters
PKI certificate request (manual), SEC-223
assignment,
PKI certificate request abort, SEC-224
snooping. See DHCPv6 snooping
PKI certificate verification, SEC-225
stateless DHCPv6, IPSER-167
PKI certificate-based access control policy,
SEC-228
DHCPv6 snooping
PKI configuration, SEC-216, SEC-218, SEC-230
basic configuration, IPSER-197
PKI CRL, SEC-217
configuration, IPSER-195, IPSER-197, IPSER-202
PKI domain configuration, SEC-220
DHCPv6 packet blocking port, IPSER-201
PKI entity configuration, SEC-219
DHCPv6-REQUEST check, IPSER-200
PKI local certificate, SEC-216
display, IPSER-201
PKI OpenCA server certificate request, SEC-236
maintain, IPSER-201
PKI peer certificate, SEC-216
Option 18, IPSER-196
PKI RA certificate, SEC-216
Option 18 configuration, IPSER-198
PKI RSA Keon CA server certificate request,
SEC-230
Option 37, IPSER-196
Option 37 configuration, IPSER-198
PKI verification (CRL checking), SEC-226
packet rate limit configuration, IPSER-200
PKI verification (w/o CRL checking), SEC-226
snooping entry auto backup, IPSER-199
PKI Windows 2003 CA server certificate
request, SEC-233
snooping entry max, IPSER-199
DHCPv6-REQUEST check, IPSER-200, IPSER-201
Digital Signature Algorithm. Use DSA
diagnosing
direct portal authentication mode, SEC-120, SEC-121
direction
device transceiver modules, FM-161
55
MST discarding port state, LSW-81
port mirroring (bidirectional), NM-171
port mirroring (inbound), NM-171
disconnect state (RRPP ring), HA-48
port mirroring (outbound), NM-171
discovering
FCS topology discovery, FCoE-111, FCoE-112
directory
displaying
AAA LDAP directory service, SEC-9
802.1X, SEC-90
file system current working directory change,
FM-89
AAA, SEC-48
file system current working directory display,
FM-89
AAA HWTACACS, SEC-38
AAA LDAP, SEC-41
file system directory creation, FM-90
AAA local users/user groups, SEC-22
file system directory information display, FM-89
AAA RADIUS, SEC-32
file system directory management, FM-89
ACL, QACL-12
file system directory removal, FM-90
ARP, IPSER-7
file system management, FM-85
ARP attack detection (source MAC-based),
SEC-361
FTP server directory management, FM-78
SSH SFTP, SEC-314
ARP attack protection (unresolvable IP attack),
SEC-358
disabling
CLI output screen pausing, FM-9
ARP detection, SEC-366
device password recovery capability, FM-156
ARP snooping, IPSER-17
device USB interface, FM-160
bulk interface configuration, LSW-19
fabric configuration, FCoE-36
CFD, HA-25
FC FSPF for interface, FCoE-59
CLI login, FM-35
IGMP snooping dynamic router port change,
MCAST-23
command help information, FM-80
configuration files, FM-104
information center interface link up/link down
log generation, NM-83
crypto engine, SEC-383
CWMP settings, NM-225
IPPO ICMP fragment forwarding, IPSER-130
data buffer, QACL-94
login management Telnet login authentication,
FM-24
DDNS, IPSER-109
MAC address learning, LSW-25
device copyright statement, FM-147
MLD snooping dynamic router port change,
MCAST-69
device management configuration, FM-162
NMM NTP message processing, NM-26
DHCP client, IPSER-67
RIP host route reception, IPR-17
DHCP relay agent, IPSER-61
static source check, LSW-32
DHCP server, IPSER-46
DHCP BOOTP client, IPSER-82
discarding
IPv6 packet
IPSER-158
DHCP snooping, IPSER-78
(extension
header)
discard,
DHCPv6 client, IPSER-190
56
DHCPv6 relay agent, IPSER-184
IPsec, SEC-271
DHCPv6 server, IPSER-176
IPsec IKE, SEC-292
DHCPv6 snooping, IPSER-201
IPv4 DNS, IPSER-91
emergency shell mode device information,
FM-142
IPv4 source guard (IPv4SG), SEC-350
IPv6 basics, IPSER-158
Ethernet link aggregation, LSW-56
IPv6 fast forwarding, IPSER-204
Ethernet OAM, HA-10
IPv6 multicast VLAN, MCAST-98
EVB, EVB-11
IPv6 PIM snooping, MCAST-88
fabric, FCoE-44
IPv6 source guard (IPv6SG), SEC-350
FC forwarding, FCoE-60
IPv6 static routing, IPR-31
FC routing, FCoE-60
IRF fabric, IRF-29
FC zones, FCoE-88
ISSU, FM-125
FCoE, FCoE-20
LAN switching LLDP, LSW-257
FCS, FCoE-112
loop detection, LSW-124
FDMI, FCoE-117
MAC address table, LSW-33
file system current working directory display,
FM-89
MAC authentication, SEC-111
MFF, SEC-379
file system directory information, FM-89
MLD snooping, MCAST-76
file system file information, FM-86
Monitor Link, HA-122
file system text file content, FM-87
multicast VLAN, MCAST-53
FIP snooping, FCoE-105
MVRP, LSW-192
FIPS, SEC-389
NMM EAA settings, NM-210
FTP client, FM-81
NMM NTP, NM-28
FTP server, FM-75
NMM PTP, NM-65
high availability DLDP, HA-39
NMM SNMP settings, NM-101
host public key, SEC-209
NMM SNTP, NM-49
IGMP snooping, MCAST-30
NPV, FCoE-96
information center, NM-84
NQA, NM-144
interface, LSW-16
OpenFlow, OF-15
interface (Ethernet), LSW-14
PIM snooping, MCAST-43
IP addressing, IPSER-22
PKI, SEC-229
IP forwarding FIB table entries, IPSER-113
PMM, NM-199
IP routing table, IPR-4
PMM kernel threads, NM-201
IP services fast forwarding, IPSER-118
port isolation, LSW-65
IP source guard (IPSG), SEC-350
port mirroring, NM-182
IPPO, IPSER-131
57
port security, SEC-184
TRILL, TRILL-24
private VLAN, LSW-157
UDP helper, IPSER-134
process placement, HA-142
user PMM, NM-199
proxy ARP, IPSER-14
VFC interface, FCoE-16
public key, SEC-211
VLAN, LSW-143
QCN, QACL-102
VLAN mapping, LSW-226
QinQ, LSW-209
voice VLAN, LSW-180
QoS aggregate CAR, QACL-79
VSAN, FCoE-27
disruptive
QoS congestion avoidance WRED, QACL-61
QoS
congestion
management
scheduling profile, QACL-56
QoS congestion
QACL-55
management
fabric reconfiguration, FCoE-40
queue
NPV load balancing, FCoE-94, FCoE-96
queuing,
distributing
FC distributed service timeout timer, FCoE-39
QoS GTS, QACL-42
FC zone set to fabric, FCoE-85
QoS policies, QACL-24
IP routing route redistribution, IPR-3
QoS priority mapping, QACL-31
load balancing over TRILL distribution trees,
TRILL-17
QoS rate limit, QACL-42
QoS traffic policing, QACL-42
local host public key, SEC-208
RBAC settings, FM-59
RIP, IPR-24
RIPng received/redistributed route filtering,
IPR-38
RIPng, IPR-42
RIPng route redistribution, IPR-39, IPR-44
RMON settings, NM-111
TRILL distribution tree, TRILL-16
RRPP, HA-63
TRILL distribution tree basics, TRILL-16
security password control, SEC-202
TRILL distribution tree multithread calculation,
TRILL-17
security portal authentication, SEC-136
DLDP
security user profile, SEC-396
advertisement packet send interval, HA-37
sFlow, NM-195
authentication configuration, HA-38
Smart Link, HA-105
authentication modes, HA-34
software upgrade image settings, FM-112
automatic unidirectional link shutdown, HA-39
spanning tree, LSW-112
basic concepts, HA-33
SSH, SEC-317
configuration, HA-32, HA-36, HA-39
SSH SFTP help information, SEC-314
configuration restrictions, HA-36
SSL, SEC-345
DelayDown timer, HA-37
static routing, IPR-7
displaying, HA-39
time range, QACL-89
enabling, HA-37
Track entries, HA-132
58
how it works, HA-34
IPv4 DNS maintain, IPSER-91
maintaining, HA-39
IPv4 proxy configuration, IPSER-95
manual unidirectional link shutdown, HA-42
IPv6 client configuration, IPSER-88
multiple neighbors detection, HA-36
IPv6 client dynamic domain name resolution,
IPSER-88, IPSER-98
neighbor states, HA-33
IPv6 client static domain name resolution,
IPSER-88, IPSER-97
port shutdown mode, HA-38
port states, HA-33
IPv6 configuration, IPSER-97
single neighbor detection, HA-34
IPv6 proxy configuration, IPSER-102
timers, HA-33
NQA, NM-117
DLSw
NQA client DNS operation, NM-122
NQA, NM-117
NQA client template (DNS), NM-139
NQA client DLSw operation, NM-131
NQA DNS operation configuration, NM-148
NQA DLSw operation configuration, NM-160
NQA template configuration (DNS), NM-166
DM
outgoing packet DSCP value, IPSER-91
CFD function, HA-16
packet source interface, IPSER-90
CFD functions, HA-17
proxy, IPSER-84
DNS. See also DDNS
proxy configuration, IPSER-89
automatic configuration, FM-173
spoofing, IPSER-85
automatic configuration (DNS server), FM-176
spoofing configuration, IPSER-90
automatic configuration start, FM-177
static domain name resolution, IPSER-83
configuration, IPSER-83, IPSER-86
suffixes, IPSER-84
DDNS configuration, IPSER-105, IPSER-109
DDNS configuration
IPSER-111
(PeanutHull
DDNS
configuration
IPSER-109
troubleshoot IPv4 DNS configuration, IPSER-103
server),
troubleshoot IPv4 DNS incorrect IP address,
IPSER-103
(www.3322.org),
troubleshoot IPv6 DNS configuration, IPSER-103
troubleshoot IPv6 DNS incorrect IP address,
IPSER-103
DDNS outgoing packet DSCP value, IPSER-109
DHCP client domain name suffix, IPSER-39
trusted interface configuration, IPSER-91
DHCP client server, IPSER-39
domain
dynamic domain name resolution, IPSER-83
IPv4 client configuration, IPSER-87
802.1X mandatory port authentication domain,
SEC-84
IPv4 client dynamic domain name resolution,
IPSER-87, IPSER-93
802.1X supported domain name delimiters,
SEC-89
IPv4 client static domain name resolution,
IPSER-87, IPSER-92
AAA ISP domain accounting method, SEC-45
AAA ISP domain attribute, SEC-42
IPv4 configuration, IPSER-92
AAA ISP
SEC-43
IPv4 DNS display, IPSER-91
59
domain
authentication
method,
MLD snooping unknown IPv6 multicast data,
MCAST-74
AAA ISP domain authorization method, SEC-44
activating (RRPP), HA-61
DSA
allowed domain ID list, FCoE-37
IPsec IKE signature authentication, SEC-282
CFD maintenance domain, HA-13
public key management, SEC-206, SEC-211
creating (RRPP), HA-56
SSH client host public key configuration,
SEC-306
DHCP client domain name suffix, IPSER-39
fabric domain ID assignment, FCoE-33
SSH DSA host key pair, SEC-303
fabric switch domain ID, FCoE-38
SSH
Secure
Telnet
authentication, SEC-329
IRF domain ID, IRF-3
MAC authentication, SEC-106
client
publickey
DSCP
name system. Use DNS, Use DNS
DDNS outgoing packet DSCP value, IPSER-109
NMM PTP domain, NM-51, NM-57
DHCP client packet DSCP value, IPSER-66
PKI domain configuration, SEC-220
DHCP relay agent packet DSCP value, IPSER-61
RRPP, HA-47
DHCP server packet DSCP value, IPSER-46
security portal authentication domain, SEC-129
DHCPv6 client packet DSCP value, IPSER-189
done message (MLD snooping), MCAST-62
DHCPv6 packet value, IPSER-176
Don't Fragment bit. See DF bit
dot1d-1998 (STP port path cost calculation), LSW-94
DHCPv6 relay agent packet DSCP value,
IPSER-184
dot1s (STP port mode), LSW-99
DNS outgoing packet DSCP value, IPSER-91
dot1t (STP port path cost calculation), LSW-94
NMM NTP packet value configuration, NM-27
downlink
QoS packet IP precedence and DSCP values,
QACL-86
FCoE downlink-uplink
FCoE-96
interface
mapping,
voice VLAN QoS priority setting configuration,
LSW-175
NPV downlink interface configuration, FCoE-95
NPV downlink-uplink
FCoE-94
interface
DSL network
mapping,
CWMP configuration, NM-215, NM-218
dst-mac validity check (ARP), SEC-365
DPD
dual stack technology, IPSER-142
IPsec IKE DPD, SEC-290
DUID
DRB
DHCPv6 client DUID, IPSER-189
TRILL port priority, TRILL-11
DUID (DHCPv6), IPSER-169
drop precedence
duplicate log suppression, NM-83
priority marking configuration, QACL-65
drop priority (QoS priority mapping), QACL-26
duplicated address detection (DHCP), IPSER-66
dropping
dynamic
IGMP snooping
MCAST-28
unknown
ARP dynamic entry aging timer, IPSER-6
multicast data,
ARP dynamic entry check enable, IPSER-6
60
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
ARP dynamic entry max (device), IPSER-5
ARP dynamic entry max (interface), IPSER-5
IPv6 DNS client dynamic domain name
resolution, IPSER-88, IPSER-98
ARP table entry, IPSER-2
DDNS client configuration, IPSER-106
IPv6 dynamic path MTU aging timer, IPSER-155
DDNS configuration, IPSER-105, IPSER-109
DDNS configuration
IPSER-111
(PeanutHull
DDNS
configuration
IPSER-109
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
server),
(www.3322.org),
Layer 2 Ethernet link aggregation, LSW-59
DHCP address allocation, IPSER-25, IPSER-32
Layer 2 Ethernet link aggregation edge
aggregate interface, LSW-63
DHCP relay agent entry periodic refresh,
IPSER-58
Layer 2 Ethernet link aggregation group
(dynamic), LSW-49
DHCP server IP address assignment, IPSER-49
DHCP server user class, IPSER-50
MAC address table dynamic aging timer,
LSW-26
DHCPv6 dynamic address allocation, IPSER-170
MAC address table entry, LSW-21
DHCPv6 dynamic prefix allocation, IPSER-170
MAC-based VLAN
LSW-136, LSW-139
DHCPv6 server dynamic
assignment, IPSER-179
IPv6
address
dynamic
assignment,
MLD snooping dynamic port aging timer,
MCAST-61
DHCPv6 server dynamic IPv6 prefix assignment,
IPSER-177
MLD snooping dynamic router port change,
MCAST-69
DNS domain name resolution, IPSER-83
NMM NTP max number dynamic associations,
NM-27
Ethernet link aggregation dynamic mode,
LSW-43
OpenFlow dynamic MAC address support,
OF-14
Ethernet link aggregation edge aggregate
interface, LSW-47
OpenFlow MAC-IP flow table dynamic aware,
OF-24
Ethernet link aggregation group, LSW-49
Ethernet link aggregation mode, LSW-42
Dynamic Domain Name System. Use DDNS
fabric building configuration, FCoE-47
Dynamic Host Configuration Protocol. Use DHCP,
Use DHCP
FCoE fabric mode, FCoE-32
E IGMP snooping dynamic port aging timer,
MCAST-15, MCAST-20
EAA
IGMP snooping dynamic router port change,
MCAST-23
configuration, NM-203, NM-211
displaying settings, NM-210
IP source guard (IPSG) dynamic binding,
SEC-347
environment
variable
(user-defined), NM-206
IPv4 DNS client dynamic domain name
resolution, IPSER-87, IPSER-93
configuration
event monitor, NM-203
event monitor policy action, NM-205
IPv4 source guard (IPv4SG) dynamic binding
configuration, SEC-352
event monitor policy element, NM-204
61
802.1X authentication (client-initiated), SEC-65
event monitor policy environment variable,
NM-205
802.1X packet format, SEC-64
event monitor policy event types, NM-204
ECDSA
event monitor policy runtime, NM-205
public key management, SEC-206, SEC-211
event monitor policy user role, NM-205
event source, NM-203
SSH client host public key configuration,
SEC-306
how it works, NM-203
SSH ECDSA host key pair, SEC-303
echo
monitor policy, NM-204
monitor policy configuration, NM-207
high availability DLDP echo timer, HA-33
monitor policy configuration (CLI), NM-207,
NM-211
NQA client echo operation (ICMP), NM-121
NQA client echo operation (UDP), NM-128
monitor policy configuration (CLI-defined with
environment variables), NM-212
NQA echo operation configuration (ICMP),
NM-145
monitor policy configuration (Tcl), NM-209,
NM-213
NQA echo operation configuration (UDP),
NM-156
monitor policy suspension, NM-210
ECN
RTM, NM-204
QoS congestion avoidance, QACL-59
EAD
edge
802.1X EAD assistant, SEC-78, SEC-89, SEC-97
edge-hello RRPPDU type, HA-49
troubleshooting 802.1X EAD assistant Web
browser users, SEC-100
RRPP node type, HA-48
RRPP port type, HA-49
EAIS
specifying RRPP node, HA-60
CFD EAIS configuration, HA-24
edge port
EAP
MST, LSW-80
802.1X EAP over RADIUS, SEC-64
spanning tree, LSW-93
802.1X EAP relay enable, SEC-80
edge relay (EVB), EVB-2
802.1X EAP termination enable, SEC-80
Edge Virtual Bridging. Use EVB
802.1X packet format, SEC-63
editing command line, FM-4
802.1X RADIUS EAP-Message attribute, SEC-65
802.1X
RADIUS
attribute, SEC-65
EEE energy saving, LSW-8
Message-Authentication
egress port
802.1X relay authentication, SEC-67
Layer 2 remote port mirroring, NM-172, NM-184
802.1X relay termination, SEC-69
port mirroring remote source group egress port,
NM-181
802.1X
SEC-67
relay/termination
authentication,
eIRF
device configuration as independent switch,
IRF-50
EAPOL
802.1X authentication (access device initiated),
SEC-65
device configuration as PEX, IRF-50
62
device operating mode, IRF-49
data buffer burst function, QACL-92
hardware compatibility, IRF-48
device copyright statement display, FM-147
PEX port, IRF-46
DHCP, IPSER-43
DHCP client (interface), IPSER-65
Elliptic Curve Digital Signature Algorithm. Use
ECDSA
email (PKI secure), SEC-218
DHCP client duplicated address detection,
IPSER-66
Embedded Automation Architecture. Use EAA
DHCP Option 82 handling, IPSER-44
emergency shell
DHCP relay agent entry periodic refresh,
IPSER-58
device information display, FM-142
DHCP relay agent on interface, IPSER-57
device reboot, FM-142
DHCP relay agent relay entry recording,
IPSER-58
file system management, FM-138
management
FM-139
Ethernet
port
configuration,
DHCP relay agent starvation attack protection,
IPSER-59
server access, FM-140
DHCP server on interface, IPSER-43
server connectivity check, FM-140
DHCP snooping starvation attack protection,
IPSER-75
software upgrade (Comware), FM-107
system software image, FM-139
system software image load, FM-141
DHCP-REQUEST message attack protection,
IPSER-76
use, FM-138, FM-142
DHCPv6 relay agent on interface, IPSER-183
DHCPv6-REQUEST check, IPSER-200
enabling
Ethernet link aggregation traffic redirection,
LSW-56
802.1X, SEC-79
802.1X EAP relay, SEC-80
Ethernet OAM remote loopback on port, HA-10
802.1X EAP termination, SEC-80
Ethernet OAM remote loopback on specific port,
HA-9
802.1X periodic online user reauthentication,
SEC-85
EVB, EVB-3
AAA RADIUS session-control, SEC-46
fabric configuration, FCoE-36
AAA RADIUS SNMP notification, SEC-31
fabric reconfiguration (auto), FCoE-40
ARP dynamic entry check, IPSER-6
FC FSPF, FCoE-56
ARP fast update for MAC address move,
LSW-32
FC hard zoning, FCoE-84
ARP logging, IPSER-6
FCoE for VLAN, FCoE-17
CFD, HA-19
FCoE VSAN
FCoE-41
CLI command redisplay, FM-6
fabric
SNMP
notifications,
FCoE VSAN zone SNMP notifications, FCoE-87
common proxy ARP, IPSER-14
FIP snooping, FCoE-104
configuration archiving (automatic), FM-100
gratuitous ARP IP conflict notification, IPSER-12
configuration encryption, FM-97
high availability DLDP, HA-37
CWMP, NM-219
63
IPv4 source guard (IPv4SG) on interface,
SEC-348
IGMP snooping, MCAST-18
IGMP snooping drop unknown multicast data,
MCAST-28
IPv6 ICMPv6 destination unreachable message,
IPSER-156
IGMP snooping drop unknown multicast data
(global), MCAST-28
IPv6 ICMPv6 redirect message, IPSER-157
IGMP snooping drop unknown multicast data
(VLAN), MCAST-28
IPv6 ICMPv6
IPSER-156
time
exceeded
message,
IGMP snooping fast-leave processing (global),
MCAST-22
IPv6 multicast echo request reply, IPSER-156
IPv6 ND proxy, IPSER-152
IGMP snooping fast-leave processing (on port),
MCAST-23
IPv6 packet
IPSER-158
IGMP snooping multicast group replacement,
MCAST-29
(extension
header)
discard,
IPv6 RA message send, IPSER-151
IPv6 source guard (IPv6SG) on interface,
SEC-349
IGMP snooping multicast group replacement
(global), MCAST-29
IRF software auto-update, IRF-22
IGMP snooping multicast group replacement
(on port), MCAST-29
LAN switching LLDP, LSW-242
IGMP snooping querier, MCAST-24
LAN switching LLDP polling, LSW-244
IGMP snooping report suppression, MCAST-29
LAN switching LLDP+DCBX TLV advertisement,
LSW-251
incremental flush for TRILL multicast routing
entries, TRILL-19
load balancing over TRILL distribution trees,
TRILL-17
information center duplicate log suppression,
NM-83
local proxy ARP, IPSER-14
information center synchronous output, NM-82
loop detection, LSW-122
interface auto power-down (Ethernet), LSW-8
loop detection (global), LSW-122
interface bridging (Ethernet), LSW-14
loop detection (port-specific), LSW-123
interface EEE energy saving, LSW-8
MAC address move notification, LSW-30
interface energy-saving features (Ethernet),
LSW-8
MAC address retaining on TRILL port, TRILL-21
IP routing RIP (interface), IPR-14
MAC authentication, SEC-105
IP routing RIP (network), IPR-14
MAC authentication multi-VLAN mode, SEC-108
IPPO directed
IPSER-124
broadcast
MAC address synchronization, LSW-29
receive/forward,
MAC Information, LSW-36
MFF, SEC-377
IPPO ICMP error message send, IPSER-128
MFF periodic gateway probe, SEC-378
IPPO TCP SYN cookie, IPSER-127
MLD snooping, MCAST-64
IPsec ACL de-encapsulated packet check,
SEC-264
MLD snooping
MCAST-64
IPsec IKE invalid SPI recovery, SEC-291
(MLD
snooping
MLD snooping (VLAN view), MCAST-64
IPsec packet logging, SEC-268
IPsec QoS pre-classify, SEC-267
64
view),
MLD
snooping
MCAST-68
fast-leave
RIP update source IP address check, IPR-21
processing,
RIPv1 incoming message zero field check,
IPR-21
MLD snooping fast-leave processing (global),
MCAST-68
RIPv2 automatic route summarization, IPR-16
MLD snooping fast-leave processing (on port),
MCAST-68
MLD
snooping
IPv6
replacement, MCAST-76
multicast
group
MLD
snooping
IPv6
multicast
replacement (global), MCAST-76
group
MLD
snooping
IPv6
multicast
replacement (on port), MCAST-76
group
RRPP fast detection, HA-62
SCSI-FCP information autodiscovery, FCoE-43
security password control, SEC-198
security portal authentication, SEC-125
security portal authentication roaming, SEC-136
Smart Link flush message reception, HA-104
Smart Link flush message send, HA-103
MLD snooping IPv6 multicast unknown data
drop, MCAST-74
SNMP notification for MAC address table,
LSW-33
MLD snooping IPv6 multicast unknown data
drop (global), MCAST-74
spanning tree BPDU drop, LSW-111
MLD snooping IPv6 multicast unknown data
drop (VLAN), MCAST-74
spanning tree BPDU guard, LSW-108
MLD snooping querier, MCAST-70
spanning tree loop guard, LSW-109
MVRP, LSW-189
MVRP GVRP compatibility, LSW-191
spanning tree port state transition information
output, LSW-99
NETCONF over SSH, NM-240
spanning tree root guard, LSW-108
NMM NETCONF over SOAP, NM-239
spanning tree TC-BPDU guard, LSW-111
NMM NTP, NM-14
SSH SCP server, SEC-305
NMM PTP on port, NM-65
SSH SFTP server, SEC-304
NMM SNMP notification, NM-99
Stelnet server, SEC-304
NMM SNTP, NM-47
TRILL, TRILL-8
NQA client, NM-120
TRILL distribution tree multithread calculation,
TRILL-17
spanning tree feature, LSW-100
packet loss prevention, OF-15
TRILL LSP fast advertisement, TRILL-15
port security, SEC-177
TRILL neighbor change logging, TRILL-21
port security authorization-fail-offline, SEC-184
TRILL pseudonode bypass, TRILL-16
port security MAC move, SEC-182
VLAN mapping M:1 ARP detection (dynamic IP
address assignment), LSW-221
QCN, QACL-100
QinQ, LSW-205
VLAN mapping M:1 ARP snooping (static IP
address assignment), LSW-223
RBAC default user role, FM-54
VLAN mapping M:1 DHCP snooping (dynamic
IP address assignment), LSW-221
RIP, IPR-13
RIP poison reverse, IPR-20
voice VLAN LLDP, LSW-178
RIP split horizon, IPR-20
encapsulating
65
802.1X RADIUS EAP-Message attribute, SEC-65
SSH server configuration, SEC-303
FCoE frames, FCoE-7
SSL services, SEC-342
Energy Efficient Ethernet. See EEE
IPsec ACL de-encapsulated packet check,
SEC-264
energy-saving features, LSW-8
IPsec anti-replay, SEC-265
enhanced timer (DLDP), HA-33
IPsec configuration, SEC-250, SEC-272
ENode
IPsec RIPng configuration, SEC-277
FIP snooping mode, FCoE-102
IPsec transport mode, SEC-251
FIP snooping rule establishment, FCoE-103
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
entering
CLI
entered-but-not-submitted
redisplay, FM-6
IPsec tunnel for IPv4 packets (manual), SEC-272
IPsec tunnel mode, SEC-251
command
command, FM-3
LAN switching LLDP frame encapsulated in
Ethernet II, LSW-236
FIPS mode
SEC-390
LAN switching LLDP frame encapsulated in
SNAP format, LSW-236
(automatic
reboot),
SEC-385,
FIPS mode (manual reboot), SEC-385, SEC-391
NMM NETCONF xml view, NM-240
LAN switching LLDP frame encapsulation format,
LSW-248
peer host public key, SEC-210
NMM PTP message encapsulation protocol,
NM-62
peer public key, SEC-211
VLAN frame encapsulation, LSW-128
system view from user view, FM-2
string/text type argument value, FM-4
encrypting
entry
crypto engine configuration, SEC-383
ARP fast update enabling for MAC address
move, LSW-32
IPsec, SEC-253
IPsec configuration, SEC-250, SEC-272
entry timer (DLDP), HA-33
IPsec encryption algorithm (3DES), SEC-253
environment
NMM EAA environment variable configuration
(user-defined), NM-206
IPsec encryption algorithm (AES), SEC-253
IPsec encryption algorithm (DES), SEC-253
NMM EAA event monitor policy environment
variable, NM-205
IPsec RIPng configuration, SEC-277
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
NMM EAA monitor policy configuration
(CLI-defined with environment variables),
NM-212
IPsec tunnel for IPv4 packets (manual), SEC-272
error
peer public key entry, SEC-211
private key, FM-97
CLI command line error message, FM-7
public key, FM-97
FC error detection timeout timer, FCoE-39
public key import from file, SEC-213
IPPO ICMP error message sending, IPSER-128
errored
public key management, SEC-206, SEC-211
SSH configuration, SEC-300
66
Ethernet OAM errored frame event detection,
HA-6
DHCP server IP address static assignment,
IPSER-47
Ethernet OAM errored frame period event
detection, HA-7
DHCP server option customization, IPSER-53
DHCP server subnet, IPSER-52
Ethernet OAM errored frame seconds event
detection, HA-7
DHCP server user class, IPSER-50
DHCP snooping basic configuration, IPSER-78
Ethernet OAM errored symbol event detection,
HA-5
DHCPv6 client
IPSER-190
ESP
IPsec security protocol 50, SEC-251
establishing
eIRF membership establishment, IRF-47
configuration,
IPSER-187,
DHCPv6 client IPv6 address
configuration, IPSER-190
acquisition
DHCPv6 client IPv6
configuration, IPSER-191
acquisition
prefix
DHCPv6 client stateless DHCPv6 configuration,
IPSER-193
Ethernet OAM connection, HA-2
FTP client connection, FM-77
DHCPv6 snooping configuration, IPSER-195,
IPSER-197, IPSER-202
IPsec tunnel establishment, SEC-254
NMM NETCONF session, NM-240
SSH Secure Telnet server connection, SEC-310
emergency shell management Ethernet port
configuration, FM-139
SSH SFTP server connection, SEC-312
FC configuration, FCoE-13
Ethernet
FC forwarding configuration, FCoE-52
802.1X overview, SEC-62
FC ping configuration, FCoE-118
ARP attack protection configuration, SEC-357
FC routing configuration, FCoE-52, FCoE-61
ARP configuration, IPSER-1, IPSER-7
ARP fast-reply configuration, IPSER-18
FC static routing configuration (VFC interface),
FCoE-61
ARP multiport entry configuration, IPSER-8
FC tracert configuration, FCoE-122, FCoE-123
ARP snooping configuration, IPSER-17
FC zone configuration, FCoE-70, FCoE-79,
FCoE-88
ARP static configuration, IPSER-7
FCoE. See also under FCoE
CFD Ethernet alarm indication signal (EAIS),
HA-17
FCoE configuration, FCoE-13
common proxy ARP configuration, IPSER-15
FCoE description, FCoE-5
CWMP configuration,
NM-225
FCoE fabric address assignment, FCoE-159
NM-215,
NM-218,
FCoE frames, FCoE-7
DHCP BOOTP client configuration, IPSER-81,
IPSER-82
FCoE well-known fabric addresses, FCoE-159
Fibre Channel. Use FC
DHCP client configuration, IPSER-65, IPSER-67
Fibre Channel over Ethernet. Use FCoE
DHCP server configuration, IPSER-32, IPSER-34,
IPSER-47
FIP snooping Ethernet interface operating mode,
FCoE-104
DHCP server IP address dynamic assignment,
IPSER-49
gratuitous ARP configuration, IPSER-11
interface. See Ethernet interface
67
private VLAN configuration, LSW-153, LSW-154,
LSW-157
IP multicast MAC address, MCAST-8
IP multicast overview, MCAST-1
private VLAN promiscuous port configuration,
LSW-157
IP multicast VPN application, MCAST-12
IP multicast VPN instance, MCAST-12
private VLAN trunk
configuration, LSW-160
IP multicast VPN support, MCAST-12
LAN switching LLDP APP parameters, LSW-252
promiscuous
port
private
VLAN
trunk
promiscuous+trunk
secondary port configuration, LSW-163
LAN switching LLDP DCBX configuration,
LSW-250, LSW-264
proxy ARP configuration, IPSER-14
LAN switching LLDP ETS parameters, LSW-254
QinQ CVLAN frame header tag, LSW-203
LAN switching LLDP frame encapsulated in
Ethernet II, LSW-236
QinQ SVLAN frame header tag, LSW-203
RMON Ethernet statistics entry, NM-109
LAN switching LLDP group-based WRR queuing,
LSW-255
RMON Ethernet statistics group configuration,
NM-112
LAN switching LLDP PFC parameters, LSW-255
RMON statistics group, NM-107
LAN switching LLDP trapping, LSW-256
RRPP configuration, HA-47, HA-56, HA-64
LAN switching LLDP+DCBX TLV advertisement,
LSW-251
RRPP dual-homed rings configuration, HA-73
RRPP fast detection configuration, HA-93
LAN switching LLDP-MED trapping, LSW-256
RRPP intersecting rings configuration, HA-67
Layer 2 remote port mirroring configuration,
NM-177
RRPP
load-balanced
configuration, HA-83
link aggregation. See Ethernet link aggregation
loop detection
LSW-124
configuration,
intersecting
rings
RRPP single ring configuration, HA-64
LSW-120,
RSCN aggregation, FCoE-42
MAC address table configuration, LSW-20,
LSW-21, LSW-34
secondary VLAN Layer 3 communication,
LSW-167
MAC Information
LSW-37
sFlow configuration, NM-193, NM-196
configuration,
LSW-36,
NPV configuration, FCoE-93, FCoE-94, FCoE-97
subinterface. See Ethernet interface, Ethernet
subinterface, subinterface
port isolation configuration, LSW-65
UDP helper configuration, IPSER-132, IPSER-134
port isolation configuration (multiple isolation
groups), LSW-66
UDP helper conversion (broadcast to multicast),
IPSER-133
port mirroring configuration, NM-171, NM-182
UDP helper conversion (broadcast to unicast),
IPSER-132
port-based VLAN assignment (access port),
LSW-132
VLAN basic configuration, LSW-129
VLAN configuration, LSW-128, LSW-144
port-based VLAN assignment (hybrid port),
LSW-134
VLAN frame encapsulation, LSW-128
port-based VLAN assignment (trunk port),
LSW-133
VLAN interface basics, LSW-130
VLAN port-based configuration, LSW-144
port-based VLAN configuration, LSW-131
voice VLAN configuration, LSW-170, LSW-180
68
aggregate interface default settings, LSW-53
VSAN configuration, FCoE-26, FCoE-28
aggregate interface shutdown, LSW-53
Ethernet frame header
ACL category, QACL-1
aggregation group, LSW-40
ACL configuration, QACL-8
aggregation group restrictions, LSW-48
basic concepts, LSW-40
Ethernet interface
10-GE into 40-GE interface combine, LSW-2
configuration, LSW-40, LSW-47, LSW-57
40-GE interface split, LSW-2
configuration types, LSW-41
auto power-down enable, LSW-8
display, LSW-56
basic settings configuration, LSW-3
dynamic mode, LSW-43
bridging, LSW-14
edge aggregate interface, LSW-47, LSW-52
common settings configuration, LSW-2
group configuration, LSW-48
configuration, LSW-1
group configuration (dynamic), LSW-49
dampening restrictions, LSW-5
group configuration (static), LSW-48
displaying, LSW-14
group load sharing mode, LSW-54
EEE energy saving enable, LSW-8
how dynamic link aggregation works, LSW-45
energy-saving features, LSW-8
interface configuration (expected bandwidth),
LSW-52
fiber port restrictions (Layer 2), LSW-5
LACP, LSW-43
generic flow control, LSW-6
Layer 2 aggregate interface (ignored VLAN),
LSW-51
jumbo frame support configuration, LSW-3
loopback test, LSW-5
Layer 2 aggregation (dynamic), LSW-59
loopback test restrictions, LSW-5
Layer 2 aggregation (static), LSW-57
maintaining, LSW-14
Layer 2 aggregation load sharing, LSW-61
management interface configuration, LSW-1
Layer 2 edge aggregate interface, LSW-63
naming conventions, LSW-1
Layer 2 group (dynamic), LSW-49
PFC configuration, LSW-6
Layer 2 group (static), LSW-49
PFC configuration restrictions, LSW-5
load sharing configuration, LSW-53
physical state change suppression, LSW-4
load sharing mode, LSW-47
statistics polling interval, LSW-9
local-first load sharing, LSW-54
storm control restrictions (Layer 2), LSW-5
maintain, LSW-56
storm suppression restrictions (Layer 2), LSW-5
member port, LSW-40
Ethernet link aggregation
member port state, LSW-40, LSW-42, LSW-45
aggregate group Selected ports min/max,
LSW-51
modes, LSW-42
operational key, LSW-41
aggregate interface, LSW-40
per-flow
LSW-55
aggregate interface (description), LSW-50
aggregate interface configuration, LSW-50
69
load
sharing
algorithm
settings,
evaluating
reference port, LSW-45
reference port choice, LSW-42
QoS traffic, QACL-36
static mode, LSW-42
QoS traffic with token bucket, QACL-36
EVB
traffic redirection, LSW-56
basic concepts, EVB-2
traffic redirection restrictions, LSW-56
configuration, EVB-1, EVB-3, EVB-11
Ethernet OAM
basic configuration, HA-4
default VSI manager specification, EVB-4
configuration, HA-1, HA-4, HA-11
displaying, EVB-11
connection detection timer, HA-4
edge relay, EVB-2
connection establishment, HA-2
enabling, EVB-3
display, HA-10
how it works, EVB-2
errored frame event detection, HA-6
LLDP configuration, EVB-4
errored frame period event detection, HA-7
maintaining, EVB-11
errored frame seconds event detection, HA-7
protocols and standards, EVB-3
errored symbol event detection, HA-5
reflective relay, EVB-2
how it works, HA-1
S-channel, EVB-2
link monitoring, HA-2
S-channel aggregate interface configuration,
EVB-7
link monitoring configuration, HA-5
S-channel configuration, EVB-6
maintain, HA-10
S-channel creation, EVB-6
OAMPDUs, HA-1
S-channel interface configuration, EVB-7
port action configuration, HA-8
S-channel MAC address learning configuration,
EVB-8
protocols and standards, HA-3
remote fault detection, HA-3
S-channel RR mode configuration, EVB-7
remote loopback, HA-3
remote loopback configuration, HA-9
S-channel
VSI
configuration, EVB-8
remote loopback on port, HA-10
S-channel VSI interface configuration, EVB-8
remote loopback on specific port, HA-9
VDP negotiation
EVB-5
remote loopback request rejection, HA-10
aggregate
parameter
interface
configuration,
virtual station interface, EVB-2
Ethernet subinterface. See also Ethernet interface,
Layer 2 Ethernet subinterface, Layer 3 Ethernet
subinterface
VSI aggregate filter activation, EVB-10
VSI filter activation, EVB-10
ETS parameter (LLDP), LSW-254
VSI filter configuration, EVB-9
EUI-64 address
event
IP services address-based interface identifiers,
IPSER-139
NMM EAA configuration, NM-203, NM-211
NMM EAA environment variable configuration
(user-defined), NM-206
IP services configuration, IPSER-144
70
interface external loopback test (Ethernet),
LSW-5
NMM EAA event monitor, NM-203
NMM EAA event monitor policy element,
NM-204
F fabric
NMM EAA event monitor policy environment
variable, NM-205
building, FCoE-34
NMM EAA event source, NM-203
configuration enable/disable, FCoE-36
NMM EAA monitor policy, NM-204
configuration server. See FCS
NMM NETCONF event notification subscription,
NM-241, NM-242
device management interface. See FDMI
display, FCoE-44
RMON event group, NM-108
domain ID assignment, FCoE-33
exchanging
fabric building
FCoE-47
NMM NETCONF capabilities, NM-240
excluding
(dynamic),
fabric building configuration (static), FCoE-44
IRF port from shutdown action, IRF-27
fabric configuration, FCoE-44
exiting
FIPS mode
SEC-392
configuration
fabric dynamic build, FCoE-35
(automatic
reboot),
SEC-387,
fabric static build, FCoE-35
FC address assignment, FCoE-34
FIPS mode (manual reboot), SEC-387, SEC-393
FC zone set distribution, FCoE-85
Explicit Congestion Notification. Use ECN
FC4 node default information, FCoE-43
explicit rule (CFD MIP), HA-14
FC4 node information, FCoE-42
exporting
FCoE building, FCoE-32
host public key, SEC-208
FCoE fabric address assignment, FCoE-159
PKI certificate, SEC-227
PKI certificate import/export, SEC-240
FCoE VSAN
FCoE-41
troubleshooting PKI certificate export failure,
SEC-249
FCoE well-known fabric addresses, FCoE-159
SNMP
notifications,
IRF ARP MAD, IRF-9
extending
IRF bridge MAC persistence, IRF-20
DHCP IP address lease extension, IPSER-26
security
portal
authentication
cross-subnet, SEC-159
fabric
IRF configuration, IRF-14, IRF-29
extended
IRF configuration synchronization, IRF-6
security portal authentication extended direct,
SEC-152
IRF device member ID assignment, IRF-15
security portal authentication extended re-DHCP,
SEC-155
IRF fabric access, IRF-19
IRF device member priority, IRF-16
IRF fabric ARP MAD configuration, IRF-34
extension header
IPv6 packet
IPSER-158
(extension
header)
IRF fabric LACP MAD configuration, IRF-29
discard,
IRF fabric ND MAD configuration, IRF-38
IRF fabric recovery, IRF-27
external
71
fast forwarding
IRF failure recovery, IRF-7
IRF hardware compatibility, IRF-11
configuration, IPSER-118
IRF LACP MAD, IRF-8
displaying, IPSER-118
IRF link load sharing mode, IRF-19
IPv6 configuration, IPSER-204
IRF MAD handling procedure, IRF-7
maintaining, IPSER-118
fast leave processing
IRF MAD mechanism, IRF-8
IGMP snooping, MCAST-22
IRF master election, IRF-6
IRF member device description, IRF-19
fast saving running configuration, FM-98
IRF ND MAD, IRF-10
fast-leave processing
MLD snooping, MCAST-68
IRF network topology, IRF-2
IRF setup, IRF-1, IRF-15
fast-reply (ARP), IPSER-18
N_Port-WWN to FC address binding, FCoE-38
fault
name set, FCoE-36
CFD basic configuration, HA-19
principal switch selection, FCoE-32
CFD configuration, HA-13, HA-18, HA-26
reconfiguration, FCoE-40
CFD functions, HA-16
reconfiguration (auto), FCoE-40
CFD maintenance domain, HA-13
FC
reconfiguration (manual), FCoE-40
RSCN aggregation configuration, FCoE-41
configuration, FCoE-13, FCoE-129
SCSI-FCP information autodiscovery, FCoE-43
fabric timer setting, FCoE-39
shortest path first. Use FSPF
FCoE enable, FCoE-17
switch domain ID, FCoE-38
FCoE frames, FCoE-7
switch priority, FCoE-36
forwarding display, FCoE-60
forwarding maintain, FCoE-60
factory-default
frame transmission over Ethernet, FCoE-7
restoring factory-default settings and states,
FM-161
merge control mode setting, FCoE-83
fail timer (RRPP), HA-50
mode feature support, FCoE-13
fail-permit feature (portal), SEC-134
overview, FCoE-1
fast
Pairwise configuration, FCoE-81
detection configuration (RRPP), HA-62, HA-93
routing display, FCoE-60
detection enabling (RRPP), HA-62
routing maintain, FCoE-60
detection mechanism (RRPP), HA-52
switch operation, FCoE-13
detection timer configuration (RRPP), HA-62
zone database structure, FCoE-70
fast-edge-hello RRPPDU type, HA-49
zone display, FCoE-88
fast-fail timer (RRPP), HA-50
zone distribution process, FCoE-73
fast-hello RRPPDU type, HA-49
zone maintain, FCoE-88
fast-hello timer (RRPP), HA-50
72
zone Pairwise, FCoE-73
fabric configuration enable/disable, FCoE-36
zoning mode, FCoE-70
fabric display, FCoE-44
zoning mode configuration, FCoE-80
fabric domain ID assignment, FCoE-33
fabric FC address assignment, FCoE-34
FC4
node default information, FCoE-43
fabric mode, FCoE-32
node information, FCoE-42
fabric N_Port-WWN to FC address binding,
FCoE-38
SCSI-FCP information autodiscovery, FCoE-43
fabric name, FCoE-36
FCF
fabric principal switch selection, FCoE-32
FCF priority, FCoE-20
fabric reconfiguration, FCoE-40
FCoE mode, FCoE-9, FCoE-10, FCoE-13
fabric reconfiguration (auto), FCoE-40
FIP snooping mode, FCoE-102
fabric reconfiguration (manual), FCoE-40
FIP snooping rule establishment, FCoE-103
fabric switch domain ID, FCoE-38
system priority, FCoE-20
fabric switch priority, FCoE-36
FC-MAP
FC access control, FCoE-79
FIP snooping FC-MAP value, FCoE-105
FC address, FCoE-2
value setting, FCoE-18
FC default zone policy, FCoE-83
FCoE
FC direct routes, FCoE-53
allowed domain ID list, FCoE-37
FC FIB table, FCoE-52
basic concepts, FCoE-2, FCoE-6
FC forwarding configuration, FCoE-52
communication flow, FCoE-4
FC forwarding display, FCoE-60
configuration, FCoE-13, FCoE-21, FCoE-129
configuration
FCoE-141
(VFC
interface)(IRF
FC forwarding maintain, FCoE-60
mode),
FC frame transmission over Ethernet, FCoE-7
FC FSPF configuration, FCoE-56
configuration (VFC interface)(standalone mode),
FCoE-129
FC FSPF enable, FCoE-56
description, FCoE-5
FC FSPF GR configuration, FCoE-59
display, FCoE-20
FC FSPF GR helper configuration, FCoE-60
enable, FCoE-17
FC FSPF GR restarter configuration, FCoE-60
fabric address assignment, FCoE-159
FC FSPF interface cost, FCoE-58
fabric build (dynamic), FCoE-35
FC FSPF interface dead interval, FCoE-58
fabric build (static), FCoE-35
FC FSPF interface disable, FCoE-59
fabric building, FCoE-32, FCoE-34
fabric building
FCoE-47
configuration
FC FSPF interface hello interval, FCoE-58
(dynamic),
FC FSPF interface LSR retransmission interval,
FCoE-59
fabric building configuration (static), FCoE-44
FC FSPF LSDB, FCoE-54
fabric configuration, FCoE-44
FC FSPF LSR, FCoE-54
73
FC FSPF LSR arrival interval min, FCoE-57
FC zone Pairwise, FCoE-73
FC FSPF LSR refresh interval min, FCoE-57
FC zone set, FCoE-82
FC FSPF packet types, FCoE-55
FC zone set activation, FCoE-85
FC FSPF routes, FCoE-54
FC zone set distribution trigger, FCoE-86
FC FSPF SPF calculation (shortest interval),
FCoE-57
FC zone set fabric distribution, FCoE-85
FC zone-related copy, FCoE-87
FC hard zoning enable, FCoE-84
FC zone-related renaming, FCoE-86
FC merge control mode setting, FCoE-83
FC zoning mode, FCoE-70
FC Pairwise configuration, FCoE-81
FC zoning mode configuration, FCoE-80
FC ping configuration, FCoE-118
FC4 node default information, FCoE-43
FC protocol, FCoE-2
FC4 node information, FCoE-42
FC routing configuration, FCoE-52, FCoE-61
FCF mode, FCoE-10
FC routing display, FCoE-60
FCF priority, FCoE-20
FC routing maintain, FCoE-60
FCF system priority, FCoE-20
FC routing table, FCoE-52
FCF VFC interface priority, FCoE-20
FC SAN, FCoE-1
FC-MAP value setting, FCoE-18
FC static route configuration, FCoE-55
FC static
FCoE-55
route
configuration
FCS configuration, FCoE-109, FCoE-112
restrictions,
FCS display, FCoE-112
FCS topology discovery, FCoE-111, FCoE-112
FC static routes, FCoE-54
FDMI configuration, FCoE-116
FC static routing configuration (VFC interface),
FCoE-61
FDMI display, FCoE-117
FC tracert configuration, FCoE-122, FCoE-123
FIP, FCoE-6
FC zone, FCoE-5
FIP operation, FCoE-8
FC zone alias, FCoE-81
FIP
snooping
configuration,
FCoE-104, FCoE-105
FC zone configuration, FCoE-70, FCoE-79,
FCoE-82, FCoE-88
FIP snooping Ethernet interface operating mode,
FCoE-104
FC zone database, FCoE-70
FIP snooping FC-MAP value, FCoE-105
FC zone database deletion, FCoE-87
FKA advertisement interval value, FCoE-18
FC zone distribution, FCoE-83
frames, FCoE-7
FC zone distribution (basic zoning), FCoE-73
FC zone
FCoE-75
distribution
(enhanced
FCoE-102,
FSPF configuration (VFC interface), FCoE-66
zoning),
how it works, FCoE-7
FC zone distribution process, FCoE-73
initialization protocol. Use FIP
FC zone merge (basic zoning), FCoE-76
Initialization
snooping
FC zone merge (enhanced zoning), FCoE-78
Protocol
Snooping.
See
FIP
LAN switching LLDP APP parameters, LSW-252
FC zone merge type, FCoE-83
74
VSAN zone SNMP notifications, FCoE-87
LAN switching LLDP DCBX configuration,
LSW-264
well-known fabric addresses, FCoE-159
mode, FCoE-9
WWN, FCoE-2
mode feature support, FCoE-13
FCS
NPV configuration, FCoE-93, FCoE-94, FCoE-97
configuration, FCoE-109, FCoE-112
NPV display, FCoE-96
topology discovery, FCoE-111, FCoE-112
NPV disruptive load balancing, FCoE-94,
FCoE-96
FDMI
configuration, FCoE-116
NPV downlink, FCoE-93, FCoE-95
display, FCoE-117
NPV downlink interface, FCoE-93
NPV downlink-uplink
FCoE-94, FCoE-96
interface
feature
mapping,
IRF fabric restrictions, IRF-13
NPV mode, FCoE-10
Federal Information Processing Standard. Use FIPS
NPV uplink, FCoE-94, FCoE-95
FIB
NPV uplink interface, FCoE-94, FCoE-95
FC FIB table, FCoE-52
overview, FCoE-1
FC routing table, FCoE-52
port modes, FCoE-3
IP forwarding, IPSER-113
protocols and standards, FCoE-12
IP forwarding load sharing, IPSER-115, IPSER-116
RSCN aggregation, FCoE-42
IP forwarding table entries, IPSER-113
RSCN aggregation configuration, FCoE-41
IP routing table, IPSER-113, IPR-1
SCSI-FCP information autodiscovery, FCoE-43
load sharing, IPSER-115
switch mode configuration, FCoE-13
FIB table contents, FCoE-53
switch operation, FCoE-13
Fibre Channel. Use FC
transit mode, FCoE-11
Fibre Channel over Ethernet. Use FCoE
trunk VSAN configuration, FCoE-27
file
VFC interface, FCoE-6
calculating digest, FM-89
VFC interface configuration, FCoE-15
compression, FM-87, FM-88
VFC interface RCF request rejection, FCoE-41
configuration file content, FM-96
VLAN-VSAN mapping restrictions, FCoE-17
configuration file format, FM-96
VN interface, FCoE-6
configuration file formats, FM-96
VSAN, FCoE-4
configuration file management, FM-94
VSAN configuration, FCoE-26, FCoE-28
copying, FM-87
VSAN creation, FCoE-27
decompression, FM-87, FM-88
VSAN display, FCoE-27
deleting from recycle bin, FM-88
VSAN fabric SNMP notifications, FCoE-41
deletion, FM-88
VSAN fundamentals, FCoE-26
device configuration startup file selection,
FM-96
75
FTP server files, FM-78
file management, FM-86
host public key export, SEC-208
file move, FM-87
information center
destination, NM-81
diagnostic
log
file name formats, FM-85
output
file rename, FM-87
information center log save (log file), NM-79
file restoration, FM-88
information center security log file management,
NM-81
file/folder operation mode, FM-92
IRF naming conventions, IRF-5
information center security log save (log file),
NM-80
management, FM-85
information display, FM-86
recycle bin file delete, FM-88
ISSU IPE file decompressing, FM-122
storage media CF card partition, FM-92
management, FM-86
storage media CF card partitioning restrictions,
FM-92
moving, FM-87
storage media formatting, FM-91
name format, FM-85
storage media management, FM-90
next-startup configuration file, FM-102
storage media mount, FM-91
peer host public key import from file, SEC-210
storage
media
restrictions, FM-91
public key import from file, SEC-213
renaming, FM-87
mounting/unmounting
storage media naming rules, FM-85
restoration, FM-88
storage media repair, FM-91
software upgrade file naming, FM-106
storage media unmount, FM-91
SSH SFTP, SEC-314
storage media USB disk partition, FM-92
system. See file system
text file content display, FM-87
text content display, FM-87
File Transfer Protocol. Use FTP
file system
filtering
current working directory change, FM-89
ACL packet fragments, QACL-3
current working directory display, FM-89
ARP packets, SEC-372, SEC-373
directory creation, FM-90
CLI display command output, FM-9
directory information display, FM-89
EVB VSI filter configuration, EVB-9
directory management, FM-89
IGMP snooping multicast source port filtering,
MCAST-28
directory removal, FM-90
MLD snooping IPv6 multicast source port,
MCAST-74
file compression, FM-87, FM-88
file copy, FM-87
MLD snooping IPv6 multicast unknown data
drop, MCAST-74
file decompression, FM-87, FM-88
file deletion, FM-88
file digest calculation, FM-89
NMM NETCONF data (conditional match),
NM-260
file information display, FM-86
NMM NETCONF data (regex match), NM-258
76
FIPS compliance
QoS traffic filtering configuration, QACL-62,
QACL-63
AAA, SEC-16
QoS traffic redirection configuration, QACL-75,
QACL-76
configuration file, FM-97
information center, NM-76
RIP received/redistributed route filtering, IPR-18
IPsec, SEC-254
RIPng received/redistributed route filtering,
IPR-38
IPsec IKE, SEC-283
FIN wait timer, IPSER-128
NETCONF, NM-239
FIP
password control, SEC-197
how it works, FCoE-8
PKI, SEC-218
VFC interface configuration, FCoE-15
public key, SEC-206
RBAC, FM-50
FIP snooping
configuration, FCoE-102, FCoE-104, FCoE-105
SSH, SEC-302
display, FCoE-105
SSL, SEC-343
fixed area
enable, FCoE-104
ENode mode, FCoE-102
data buffer configuration, QACL-91
Ethernet interface operating mode, FCoE-104
QoS data buffer max queue ratio, QACL-94
fixed ARP
FCF mode, FCoE-102
FC-MAP value, FCoE-105
configuration, SEC-370
frame forwarding control, FCoE-104
configuration restrictions, SEC-370
how it works, FCoE-103
FKA advertisement interval, FCoE-18
rule establishment, FCoE-103
flooding
disruptive fabric reconfiguration, FCoE-40
FIPS
configuration, SEC-384, SEC-390
fabric reconfiguration (auto), FCoE-40
configuration restrictions, SEC-384
fabric reconfiguration (manual), FCoE-40
display, SEC-389
non-disruptive fabric reconfiguration, FCoE-40
flow
mode configuration, SEC-385
mode entry, SEC-385
mirroring. See flow mirroring
mode entry (automatic reboot), SEC-390
Sampled Flow. Use sFlow
mode entry (manual reboot), SEC-391
sFlow configuration, NM-193, NM-196
flow control
mode exit, SEC-387
mode exit (automatic reboot), SEC-392
interface generic flow control (Ethernet), LSW-6
mode exit (manual reboot), SEC-393
interface PFC (Ethernet), LSW-6
flow entry
mode system changes, SEC-386
NMM SNMP FIPS compliance, NM-91
OpenFlow, OF-3
self-test, SEC-388
OpenFlow table-miss, OF-4
77
format
flow mirroring
configuration, NM-188, NM-191
802.1X EAP packet format, SEC-63
match criteria configuration, NM-188
802.1X EAPOL packet format, SEC-64
QoS policy application, NM-190
802.1X packet, SEC-63
QoS policy application (control plane), NM-190
AAA HWTACACS username, SEC-35
QoS policy application (global), NM-190
AAA RADIUS packet format, SEC-4
QoS policy application (interface), NM-190
AAA RADIUS username, SEC-25
QoS policy application (VLAN), NM-190
ARP message format, IPSER-1
QoS policy configuration, NM-189
configuration file, FM-96
traffic behavior configuration, NM-189
DHCP message, IPSER-27
DHCP server BOOTP response format, IPSER-46
flow table
OpenFlow flow table, OF-9
file name, FM-85
OpenFlow flow table modification message
restrictions, OF-21
file system storage media formatting, FM-91
information center system logs, NM-73
OpenFlow MAC-IP flow table cooperation,
OF-24
IPv6 addresses, IPSER-137
LAN switching LLDP frame encapsulated in
Ethernet II, LSW-236
OpenFlow MAC-IP flow table dynamic aware,
OF-24
LAN switching LLDP frame encapsulated in
SNAP format, LSW-236
OpenFlow MAC-IP flow table restrictions, OF-23
OpenFlow MAC-IP flow table table-miss entry,
OF-23
LAN switching LLDP frame encapsulation format,
LSW-248
OpenFlow max number flow entries, OF-10
LAN switching LLDP management address
encoding format, LSW-246
flush
MAC authentication user account, SEC-106
incremental flush for TRILL multicast routing
entries, TRILL-19
NMM NETCONF message, NM-237
flushing
QCN CNM format, QACL-96
Smart Link flush message, HA-99
QCN data flow format, QACL-95
Smart Link flush message reception, HA-104
QCN message, QACL-95
Smart Link flush message send, HA-103
TRILL control frame format, TRILL-1
Smart Link flush update, HA-100
TRILL data frame format, TRILL-1
forbidding
forwarding
OpenFlow MAC address learning, OF-11
ACL configuration, QACL-1, QACL-4, QACL-12
report the specified types of ports to controllers,
OF-11
ACL configuration (advanced), QACL-5
ACL configuration (basic), QACL-4
forcing
interface fiber port (Layer 2 Ethernet), LSW-11
ACL configuration (Ethernet frame header),
QACL-8
security portal authentication forced type,
SEC-118
ACL configuration (user-defined), QACL-9
78
ARP restricted forwarding, SEC-366, SEC-368
ND attack defense configuration, SEC-402
eIRF data forwarding, IRF-48
PIM snooping configuration,
MCAST-42, MCAST-43
FC forwarding configuration, FCoE-52
FIP snooping
FCoE-104
frame
IGMP snooping
MCAST-20
forwarding
forwarding
QoS token bucket, QACL-36
control,
entries
spanning tree forward delay timer, LSW-91
STP BPDU forwarding, LSW-75
max,
STP forward delay timer, LSW-76
IP multicast packets, MCAST-11
IP services fast
IPSER-118
forwarding
TRILL configuration, TRILL-1, TRILL-7, TRILL-25
configuration,
TRILL forwarding for EVB S-channel traffic,
TRILL-22
IP source guard (IPSG) configuration, SEC-346,
SEC-348, SEC-351
IPPO directed
IPSER-124
MCAST-41,
broadcast
TRILL frame formats, TRILL-1
TRILL GR configuration, TRILL-23
receive/forward,
TRILL mechanisms, TRILL-3
IPv4 source guard (IPv4SG) dynamic binding
configuration, SEC-352
TRILL SNMP configuration, TRILL-22
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
troubleshooting MLD snooping
forwarding, MCAST-85
TRILL VR configuration, TRILL-19
IPv4 source guard (IPv4SG) static binding
configuration, SEC-351
Layer
fragment
IPPO ICMP fragment forwarding, IPSER-130
IPv6 fast forwarding configuration, IPSER-204
IPsec packet DF bit, SEC-268
IPv6 multicast VLAN max forwarding entries,
MCAST-97
TCP fragment attack prevention, SEC-401
fragment filtering (ACL), QACL-3
IPv6 PIM snooping configuration, MCAST-86,
MCAST-87, MCAST-88
frame
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
FIP snooping
FCoE-104
frame
forwarding
control,
interface jumbo frame support (Ethernet), LSW-3
IPv6 source guard (IPv6SG) static binding
configuration, SEC-354
Layer 2 cut-through forwarding configuration,
LSW-270
Layer 2 cut-through forwarding configuration,
LSW-270
loop detection, LSW-120
loop detection
LSW-120
Layer 2 TRILL mechanisms, TRILL-3
Layer 3 TRILL mechanisms, TRILL-5
(Ethernet
frame
header),
loop detection (inner frame header), LSW-120
MAC address table unknown frame forwarding
rule, LSW-27
loop detection interval, LSW-121
MLD snooping entries max, MCAST-66
MAC address learning, LSW-20
MST forwarding port state, LSW-81
MAC address table blackhole entry, LSW-23
multicast VLAN
MCAST-52
max
forwarding
2
MAC address table configuration, LSW-20,
LSW-21, LSW-34
entries,
MAC address table entry configuration, LSW-22
79
LSR arrival interval min, FCoE-57
MAC address table multiport unicast entry,
LSW-23
LSR refresh interval min, FCoE-57
MAC address table unknown frame forwarding
rule, LSW-27
MAC Information
LSW-37
configuration,
SPF calculation (shortest interval), FCoE-57
FTP
LSW-36,
AAA RADIUS Login-Service attribute check
method, SEC-31
OpenFlow LLDP frame matching restrictions,
OF-21
automatic configuration (file server), FM-174
port security configuration, SEC-173, SEC-176
basic server parameters configuration, FM-74
port-based VLAN frame handling, LSW-132
client configuration (centralized IRF device),
FM-81
QinQ CVLAN Ethernet frame header tag,
LSW-203
client connection establishment, FM-77
QinQ implementation, LSW-204
command help information display, FM-80
QinQ SVLAN Ethernet frame header tag,
LSW-203
configuration, FM-73
TRILL control frame format, TRILL-1
connection termination, FM-80
TRILL data frame format, TRILL-1
device as client, FM-77
VLAN frame encapsulation, LSW-128
device as server, FM-73
connection maintenance, FM-80
FSPF
displaying client, FM-81
configuration, FCoE-56
displaying server, FM-75
configuration (VFC interface), FCoE-66
emergency shell server access, FM-140
enable, FCoE-56
FC FSPF hello packet type, FCoE-55
emergency shell system software image retrieval,
FM-139
FC FSPF LSA packet type, FCoE-55
IPv4 TFTP client configuration, FM-83
FC FSPF LSDB, FCoE-54
IPv6 TFTP client configuration, FM-84
FC FSPF LSR, FCoE-54
local host public key distribution, SEC-208
FC FSPF LSU packet type, FCoE-55
local server authentication, FM-74
FC FSPF routes, FCoE-54
local server authorization, FM-74
GR configuration, FCoE-59
manual server connection release, FM-75
GR helper configuration, FCoE-60
NQA, NM-117
GR restarter configuration, FCoE-60
NQA client FTP operation, NM-123
how it works, FCoE-55
NQA client template (FTP), NM-142
interface cost, FCoE-58
NQA FTP operation configuration, NM-149
interface dead interval, FCoE-58
NQA template configuration (FTP), NM-169
interface disable, FCoE-59
remote server authentication, FM-74
interface hello interval, FCoE-58
remote server authorization, FM-74
interface LSR retransmission interval, FCoE-59
server configuration (centralized IRF device),
FM-75
80
generating
server directory management, FM-78
information center interface link up/link down
log generation, NM-83
server files, FM-78
SSH SFTP client device, SEC-312
SSH local DSA key pair, SEC-303
SSH SFTP client publickey authentication,
SEC-334
SSH local ECDSA key pair, SEC-303
SSH local RSA key pair, SEC-303
SSH SFTP configuration, SEC-331
SSH SFTP directories, SEC-314
generic flow control (Ethernet interface), LSW-6
SSH SFTP files, SEC-314
Generic VLAN Registration Protocol. Use GVRP
SSH SFTP packet source IP address, SEC-312
get operation
NMM NETCONF get/get-bulk, NM-246
SSH SFTP server connection establishment,
SEC-312
SSH SFTP
SEC-315
server
connection
NMM NETCONF get-config/get-bulk-config,
NM-247
termination,
Get operation (SNMP), NM-90, NM-98
SSH SFTP server password authentication,
SEC-331
global
IPsec IKE global identity information, SEC-288
TFTP configuration, FM-83
QoS policy application (global), QACL-23
troubleshooting connection, FM-80
global CAR
user account change, FM-79
aggregate CAR configuration, QACL-79
full match NETCONF data filtering, NM-256
configuration, QACL-79
Fully Qualified Domain Name. Use FQDN
Graceful Restart (GR)
function
FC FSPF GR configuration, FCoE-59
RMON alarm function, NM-110
FC FSPF GR helper configuration, FCoE-60
RMON statistics function, NM-109
security
portal
functions, SEC-118
authentication
FC FSPF GR restarter configuration, FCoE-60
extended
RIP configuration, IPR-23
G RIP GR helper configuration, IPR-23
garbage-collect timer (RIP), IPR-19
RIP GR restarter configuration, IPR-23
GARP
RIPng configuration, IPR-41
TRILL configuration, TRILL-23
VLAN Registration Protocol. Use GVRP
TRILL GR helper, TRILL-23
gateway
TRILL GR restarter, TRILL-23
ARP gateway protection, SEC-371, SEC-372
automatic configuration, FM-177
grandmaster clock (PTP), NM-52
DHCP client gateway specification, IPSER-38
gratuitous ARP
configuration, IPSER-11, IPSER-12
MFF periodic gateway probe, SEC-378
IP conflict notification, IPSER-12
general query
packet learning, IPSER-11
MLD snooping, MCAST-62
periodic packet send, IPSER-11
General Traffic Shaping. Use GTS
81
RMON event, NM-108
green packet
RMON history, NM-107
drop precedence, QACL-64
RMON private alarm, NM-108
group
RMON private alarm group sample type,
NM-109
configuring RRPP ring, HA-63
Ethernet link aggregate group Selected ports
min/max, LSW-51
RRPP ring, HA-49, HA-52
Ethernet link aggregation, LSW-48
Smart Link group, HA-99
Ethernet link aggregation group, LSW-40
Smart Link group configuration (multiple group
load sharing), HA-110
Ethernet link aggregation group (dynamic),
LSW-49
Ethernet
LSW-48
link
aggregation
group
Smart Link group configuration (single group),
HA-105
(static),
Smart Link group member ports, HA-102
Ethernet link aggregation LACP, LSW-43
Smart Link group protected VLAN, HA-102
Ethernet link aggregation load sharing, LSW-53
Smart Link group role preemption, HA-103
Ethernet link aggregation load sharing mode,
LSW-47, LSW-54
VLAN group configuration, LSW-143
GTS
Ethernet link aggregation member port state,
LSW-40
IGMP snooping
MCAST-27
multicast
group
QoS ACL-based, QACL-41
QoS all-traffic, QACL-41
policy,
QoS display, QACL-42
Layer 2 Ethernet link aggregation group
(dynamic), LSW-49
QoS GTS configuration, QACL-36
Layer 2 Ethernet link aggregation group (static),
LSW-49
QoS non-MQC GTS, QACL-41
QoS MQC GTS, QACL-41
QoS queue-based, QACL-41
local port mirroring group monitor port, NM-175
QoS traffic policing, QACL-42
local port mirroring group source port, NM-174
QoS traffic shaping, QACL-38
MLD snooping IPv6 multicast group policy,
MCAST-73
guest VLAN
Monitor Link downlink interface switchover
delay, HA-122
802.1X assignment, SEC-93
Monitor Link group creation, HA-121
802.1X configuration, SEC-86
Monitor Link group member interface, HA-121
MAC authentication, SEC-102
OpenFlow group table, OF-5
MAC authentication configuration, SEC-109
802.1X authentication, SEC-73
port mirroring group, NM-171
GVRP
RBAC feature group configuration, FM-52
MVRP compatibility, LSW-191
RMON, NM-107
H RMON alarm, NM-108
handshake protocol (SSL), SEC-342
RMON alarm group sample type, NM-109
handshaking
RMON Ethernet statistics, NM-107
82
Ethernet OAM errored frame seconds event
detection, HA-7
802.1X online user handshake, SEC-83
hardware
Ethernet OAM errored symbol event detection,
HA-5
crypto engine configuration, SEC-383
HBA
Ethernet OAM link monitoring configuration,
HA-5
FDMI configuration, FCoE-116
health state (RRPP ring), HA-48
Ethernet OAM maintain, HA-10
hello
Ethernet OAM OAMPDUs, HA-1
FC FSPF hello packet type, FCoE-55
Ethernet OAM performance monitoring, HA-1
FC FSPF interface dead interval, FCoE-58
Ethernet OAM port action configuration, HA-8
FC FSPF interface hello interval, FCoE-58
Ethernet OAM protocols and standards, HA-3
RRPPDU type, HA-49
spanning tree timer, LSW-91
Ethernet OAM remote loopback configuration,
HA-9
STP timer, LSW-76
Ethernet OAM remote loopback on port, HA-10
timer (RRPP), HA-50
Ethernet OAM remote loopback on specific port,
HA-9
TRILL hello interval, TRILL-12
Ethernet OAM
rejection, HA-10
TRILL hello multiplier, TRILL-12
remote
loopback
request
hidden log (information center), NM-71
maintaining RRPP, HA-63
high availability
CFD configuration, HA-13, HA-18, HA-26
Monitor Link configuration, HA-120, HA-121,
HA-122
CFD display, HA-25
Monitor Link display, HA-122
configuring RRPP fast detection, HA-62
Monitor Link downlink interface switchover
delay, HA-122
displaying RRPP, HA-63
Monitor Link group creation, HA-121
DLDP automatic unidirectional link shutdown,
HA-39
Monitor Link group
configuration, HA-121
DLDP configuration, HA-32, HA-36, HA-39
NQA+Track+static
HA-128
DLDP manual unidirectional link shutdown,
HA-42
member
routing
interface
collaboration,
process placement 1:N process redundancy,
HA-138
Ethernet OAM. See Ethernet OAM
Ethernet OAM basic configuration, HA-4
process
HA-139
Ethernet OAM configuration, HA-4, HA-11
placement
configuration,
HA-138,
process placement configuration restrictions,
HA-139
Ethernet OAM connection detection timer, HA-4
Ethernet OAM display, HA-10
process placement display, HA-142
Ethernet OAM errored frame event detection,
HA-6
process
HA-141
Ethernet OAM errored frame period event
detection, HA-7
placement
optimization,
HA-138,
process placement policy, HA-138
process placement policy configuration, HA-140
83
Track+CFD association, HA-129
process placement policy location affinity,
HA-140
Track+detection module association, HA-129
process placement policy location-type affinity,
HA-140
Track+interface
HA-130
process placement policy process affinity,
HA-141
Track+Smart Link, HA-132
Track+static routing association, HA-131
RRPP configuration, HA-47, HA-56, HA-64
history
RRPP dual-homed rings configuration, HA-73
CLI history function, FM-7
RRPP fast detection configuration, HA-93
NQA client history record save, NM-137
RRPP intersecting rings configuration, HA-67
intersecting
association,
Track+NQA association, HA-129
process placement policy self affinity, HA-141
RRPP
load-balanced
configuration, HA-83
management
RMON alarm function configuration, NM-114
rings
RMON group, NM-107
RRPP single ring configuration, HA-64
RMON history control entry, NM-110
Smart Link associated device, HA-104
RMON history group configuration, NM-113
Smart Link collaboration, HA-100
security password history, SEC-196
host
Smart Link configuration, HA-98, HA-101,
HA-105
bus adapters. See HBA
Smart Link device, HA-101
Smart Link display, HA-105
IGMP snooping
MCAST-22
Smart Link flush message reception, HA-104
information center log output (log host), NM-78
Smart Link flush message send, HA-103
MLD snooping simulated member host port,
MCAST-68
Smart Link group, HA-99
member
host,
NMM SNMP agent host notification, NM-99
Smart Link group configuration (multiple group
load sharing), HA-110
voice VLAN host+IP phone connection (in
series), LSW-172
Smart Link group configuration (single group),
HA-105
voice VLAN IP phone connection (device),
LSW-172
Smart Link group member ports, HA-102
host route reception, IPR-17
Smart Link group protected VLAN, HA-102
hotkey (command), FM-5
Smart Link group role preemption, HA-103
HP
Smart Link maintain, HA-105
AAA RADIUS HP proprietary attributes, SEC-15
Smart Link+Track collaboration, HA-104, HA-114
HTTP
Smart Link+Track+CFD collaboration, HA-137
static
routing+Track+NQA
HA-132
simulated
automatic configuration (HTTP server+Python
script), FM-183
collaboration,
automatic configuration (HTTP server+Tcl script),
FM-182
Track configuration, HA-127, HA-128, HA-132
Track entry display, HA-132
automatic configuration (IRF setup), FM-184
Track+application module association, HA-131
84
outgoing packet source IP address, SEC-36
ISSU HTTP feature compatible upgrade (issu
series commands), FM-126
packet exchange process, SEC-7
ISSU HTTP feature incompatible upgrade (issu
series commands), FM-128
protocols and standards, SEC-13
RBAC temporary user role authorization, FM-64
ISSU HTTP feature rollback (install series
commands), FM-135
ISSU HTTP feature
commands), FM-130
rollback
(issu
real-time accounting timer, SEC-36
scheme configuration, SEC-32
series
scheme creation, SEC-32
ISSU HTTP feature upgrade (install series
commands), FM-132, FM-136
server quiet timer, SEC-36
server response timeout timer (response-timeout),
SEC-36
NMM NETCONF over SOAP (HTTP-based),
NM-239
shared keys, SEC-35
NMM NETCONF over SOAP (HTTPS-based),
NM-239
SSH user local authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
NQA, NM-117
traffic statistics units, SEC-35
NQA client HTTP operation, NM-124
troubleshooting, SEC-60
NQA client template (HTTP), NM-141
username format, SEC-35
NQA HTTP operation configuration, NM-150
hybrid
NQA template configuration (HTTP), NM-168
NMM PTP clock node (hybrid), NM-51
SSL configuration, SEC-342, SEC-343
NMM PTP TC+OC port type configuration,
NM-59
HTTPS
CWMP ACS HTTPS SSL client policy, NM-224
TRILL hybrid port link, TRILL-10
HW Terminal Access Controller Access Control
System. Use HWTACACS
hybrid port
port-based VLAN assignment (hybrid port),
LSW-134
HWTACACS
AAA configuration, SEC-1, SEC-16, SEC-48
Hypertext Transfer Protocol. Use HTTP
AAA for SSH user, SEC-48
I AAA implementation, SEC-7
IA (DHCPv6), IPSER-169
AAA local user configuration, SEC-18
IAID (DHCPv6), IPSER-169
AAA scheme, SEC-18
ICMP
accounting server, SEC-34
IP services IRDP configuration, IPSER-121
authentication server, SEC-33
IPPO ICMP error message rate limit, IPSER-130
authorization server, SEC-33
IPPO ICMP error message send, IPSER-128
display, SEC-38
HWTACACS/RADIUS differences, SEC-7
IPPO ICMP fragment forwarding disable,
IPSER-130
login management
FM-44, FM-45
IPPO ICMP packet source address specification,
IPSER-130
command
accounting,
IRDP configuration, IPSER-119, IPSER-120
maintain, SEC-38
85
voice VLAN IP phone identification method
(LLDP), LSW-171
NQA, NM-117
NQA client echo operation (ICMP), NM-121
voice VLAN IP phone identification method
(OUI address), LSW-170
NQA client template (ICMP), NM-139
NQA collaboration configuration, NM-163
identity
NQA echo operation configuration (ICMP),
NM-145
association. See IA
association ID. See IAID
NQA template configuration (ICMP), NM-165
IPsec IKE global identity information, SEC-288
ping command, NM-1
IGMP
Router Discovery Protocol. Use IRDP
multicast VLAN configuration,
MCAST-50, MCAST-53
ICMPv6
IP services destination unreachable message,
IPSER-156
port-based
MCAST-56
IP services error message rate limit, IPSER-155
multicast
VLAN
MCAST-48,
configuration,
snooping. See IGMP snooping
IP services packet source address, IPSER-157
sub-VLAN-based multicast VLAN configuration,
MCAST-53
IP services redirect message, IPSER-157
IP services time exceeded message, IPSER-156
IGMP snooping
IPv6 message send control, IPSER-155
basic concepts, MCAST-14
IPv6 ND duplicate address detection, IPSER-141
basic configuration, MCAST-18
IPv6 ND neighbor reachability detection,
IPSER-141
configuration,
MCAST-31
IPv6 ND protocol, IPSER-140
display, MCAST-30
IPv6 ND protocol address resolution, IPSER-140
drop unknown multicast data, MCAST-28
IPv6 ND redirection, IPSER-142
dynamic port
MCAST-20
IPv6 ND router/prefix discovery, IPSER-141
MCAST-14,
aging
timer,
MCAST-17,
MCAST-15,
dynamic router port change disable, MCAST-23
IPv6 ND stateless address autoconfiguration,
IPSER-141
enable, MCAST-18
ID
fast leave processing enable, MCAST-22
IP address class Host ID, IPSER-20
forwarding entries max, MCAST-20
IP address class Net ID, IPSER-20
general query, MCAST-16
IRF domain ID, IRF-3
IRF member ID, IRF-2
group policy+simulated joining configuration,
MCAST-31
OpenFlow datapath ID, OF-12
how it works, MCAST-16
TRILL RB system ID, TRILL-9
leave message, MCAST-16
maintain, MCAST-30
identifying
CLI user line, FM-17
membership report, MCAST-16
node failure with tracert, NM-4
message 802.1p priority, MCAST-26
message parameter configuration, MCAST-25
86
message source IP address, MCAST-26
configuration, SEC-281, SEC-283, SEC-292
multicast group policy configuration, MCAST-27
configuration (main mode/pre-shared
authentication), SEC-292
multicast group replacement, MCAST-29
DH algorithm, SEC-283
multicast groups on port max, MCAST-29
display, SEC-292
multicast source port filtering, MCAST-28
DPD configuration, SEC-290
policy configuration, MCAST-27
FIPS compliance, SEC-283
port feature configuration, MCAST-20
global identity information, SEC-288
protocols and standards, MCAST-17
identity authentication, SEC-282
querier configuration, MCAST-23, MCAST-36
invalid SPI recovery, SEC-291
querier enable, MCAST-24
query/response
MCAST-24
parameter
IPsec negotiation mode, SEC-252
configuration,
IPsec policy (IKE-based), SEC-260
related ports, MCAST-14
IPsec policy (IKE-based/direct), SEC-261
report suppression, MCAST-29
IPsec policy (IKE-based/template), SEC-262
simulated
MCAST-22
member
host
IPsec SA, SEC-252
configuration,
IPsec tunnel establishment, SEC-254
static port configuration, MCAST-21, MCAST-33
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
troubleshooting, MCAST-39
keepalive function, SEC-289
troubleshooting Layer 2 multicast forwarding,
MCAST-39
troubleshooting
MCAST-39
key
multicast
group
keychain configuration, SEC-287
policy,
maintain, SEC-292
NAT keepalive function, SEC-289
version specification, MCAST-19
negotiation, SEC-281
IGMPv1 snooping version specification, MCAST-19
PFS, SEC-283
IGMPv2 snooping version specification, MCAST-19
profile configuration, SEC-284
IGMPv3 snooping version specification, MCAST-19
proposal configuration, SEC-286
ignored VLAN
protocols and standards, SEC-283
Layer 2 aggregate interface, LSW-51
SA max number set, SEC-291
ignoring
security mechanism, SEC-282
DHCP server BOOTP requests, IPSER-45
SNMP notification, SEC-291
port security server authorization information,
SEC-182
troubleshoot negotiation failure (no proposal
match), SEC-295
IGP
troubleshoot negotiation failure (no proposal or
keychain referenced correctly), SEC-296
IP routing RIP configuration, IPR-24
RIP configuration, IPR-11, IPR-13
troubleshooting, SEC-295
RIP neighbor specification, IPR-22
image
IKE. See also ISAKMP
87
local port mirroring, NM-172
emergency shell system software image retrieval,
FM-139
M:1 VLAN mapping, LSW-216, LSW-217
ISSU inactive software image removal (install
series commands), FM-124
MSTP device implementation, LSW-82
port mirroring, NM-172
ISSU patch image (install series commands),
FM-123
QinQ, LSW-204
ISSU software image (install series commands),
FM-122
remote port mirroring, NM-172
ISSU software image upgrade (install series
commands), FM-122
security application-based IPsec, SEC-254
security ACL-based IPsec, SEC-253, SEC-255
Import
software upgrade Boot ROM image type,
FM-106
extended Pythond API, FM-168
importing
software upgrade Comware Boot image type,
FM-106
peer host public key from file, SEC-210
software upgrade Comware image loading,
FM-107
PKI certificate import/export, SEC-240
public key from file, SEC-213
software upgrade Comware image redundancy,
FM-107
troubleshooting PKI CA certificate import failure,
SEC-248
software upgrade Comware image type,
FM-106
troubleshooting PKI local certificate import
failure, SEC-248
software upgrade Comware system image type,
FM-106
inactive
high availability DLDP port state, HA-33
startup image file specification, FM-110, FM-112
startup image file specification (in bulk), FM-110
inband management VLAN, OF-10
startup image file specification (one by one),
FM-111
inbound
port mirroring, NM-171
IMC
incoming banner type, FM-147
AAA RADIUS session-control, SEC-46
information center
implementing
configuration, NM-6, NM-71, NM-76, NM-84
1:1 VLAN mapping, LSW-216, LSW-217
diagnostic log default output rules, NM-72
1:2 VLAN mapping, LSW-216, LSW-218
diagnostic log save (log file), NM-81
2:2 VLAN mapping, LSW-216, LSW-218
display, NM-84
802.1X MAC-based access control, SEC-71
duplicate log suppression, NM-83
802.1X port-based access control, SEC-71
FIPS compliance, NM-76
AAA HWTACACS, SEC-7
hidden log default output rules, NM-73
AAA LDAP, SEC-9
AAA on device, SEC-11
interface link up/link down log generation,
NM-83
AAA RADIUS, SEC-2
log default output rules, NM-72
IPsec, SEC-253
log minimum storage time, NM-84
88
installing. See also install series commands
log output (console), NM-77, NM-84
ISSU software images (install series commands),
FM-122
log output (Linux log host), NM-86
log output (log buffer), NM-78
instance
log output (log host), NM-78
OpenFlow instance, OF-2
log output (monitor terminal), NM-77
OpenFlow instance configuration, OF-8
log output (UNIX log host), NM-85
OpenFlow instance mode, OF-8
log save (log file), NM-79
OpenFlow instance port, OF-2
maintain, NM-84
interface. See also line
security log default output rules, NM-73
bulk configuration, LSW-18
security log file management, NM-81
Ethernet aggregate interface, LSW-50
security log management, NM-80
Ethernet
LSW-50
security log save (log file), NM-80
synchronous log output, NM-82
aggregate
interface
Ethernet link aggregate
settings, LSW-53
system information log types, NM-71
system log destinations, NM-72
(description),
interface
default
Ethernet link aggregate interface shutdown,
LSW-53
system log formats, NM-73
Ethernet link aggregation edge aggregate
interface, LSW-47, LSW-52
system log levels, NM-71
trace log default output rules, NM-73
inloopback configuration, LSW-15, LSW-16
trace log file max size, NM-82
IRF naming conventions, IRF-4
initial DLDP port state, HA-33
Layer 2 Ethernet aggregate interface (ignored
VLAN), LSW-51
initiating
802.1X authentication, SEC-65, SEC-66
loopback configuration, LSW-15
CWMP ACS connection initiation, NM-223
null configuration, LSW-15, LSW-16
NPV disruptive
FCoE-96
security portal authentication Web server
reference, SEC-126
load
balancing
process,
inloopback interface
internal
configuration, LSW-16
interface internal loopback test (Ethernet),
LSW-5
displaying, LSW-16
Internet
maintaining, LSW-16
In-Service Software Upgrade. Use ISSU
NMM SNMP basics, NM-91
install series commands
NMM SNMP configuration, NM-89, NM-107
ISSU feature uninstall, FM-123
NMM SNMP MIB, NM-89
ISSU patch image uninstall, FM-123
NMM SNMP MIB access control mode, NM-91
ISSU software configuration rollback, FM-123
NMM SNMP notification, NM-98
ISSU software image installation, FM-122
NMM SNMPv1 basics, NM-91
ISSU software image upgrade, FM-122
NMM SNMPv1 configuration, NM-101
89
intrusion protection
NMM SNMPv2c basics, NM-91
NMM SNMPv2c configuration, NM-101
port security blockmac mode, SEC-179
NMM SNMPv3 basics, NM-93
port security disableport mode, SEC-179
NMM SNMPv3 configuration (RBAC mode ),
NM-105
port security disableport-temporarily mode,
SEC-179
NMM SNMPv3 configuration (VACM mode ),
NM-103
port security feature, SEC-173
IntServ QoS service model, QACL-15
NQA configuration, NM-117, NM-119, NM-145
IP
SSL configuration, SEC-342, SEC-343
ARP attack protection (unresolvable IP attack),
SEC-357, SEC-359
Internet Key Exchange. Use IKE
ARP attack protection blackhole
(unresolvable IP attack), SEC-358
intersecting rings
RRPP load balancing, HA-55
routing
ARP attack protection source suppression
(unresolvable IP attack), SEC-358
RRPP network, HA-54
interval
ARP ip validity check, SEC-365
CWMP ACS periodic Inform feature, NM-223
FTP configuration, FM-73
FC FSPF interface dead interval, FCoE-58
security. Use IPsec
FC FSPF interface hello interval, FCoE-58
TFTP configuration, FM-83
FC FSPF interface LSR retransmission interval,
FCoE-59
IP addressing
AAA HWTACACS outgoing packet source IP
address, SEC-36
FC FSPF LSR arrival interval min, FCoE-57
FC FSPF LSR refresh interval min, FCoE-57
AAA LDAP server IP address, SEC-39
FC FSPF SPF calculation (shortest interval),
FCoE-57
AAA RADIUS outgoing packet source IP
address, SEC-28
FCoE FKA advertisement interval value, FCoE-18
AAA RADIUS security policy server IP address,
SEC-30
high availability DLDP advertisement packet
send interval, HA-37
ACL configuration, QACL-1, QACL-4, QACL-12
loop detection, LSW-121, LSW-124
ACL configuration (advanced), QACL-5
MAC change notification interval, LSW-37
ACL configuration (Ethernet frame header),
QACL-8
NMM PTP announce message send interval,
NM-60
ACL configuration (user-defined), QACL-9
NMM PTP announcement interval, NM-60
address classes, IPSER-20
NMM PTP Delay_Req message send interval,
NM-61
ARP attack protection configuration, SEC-357
ARP configuration, IPSER-1, IPSER-7
NMM PTP Pdelay_Req message send interval,
NM-61
ARP dynamic entry aging timer, IPSER-6
NMM PTP Sync message send interval, NM-61
ARP dynamic entry check enable, IPSER-6
TRILL CSNP interval, TRILL-12
ARP dynamic entry max (device), IPSER-5
TRILL hello interval, TRILL-12
ARP dynamic entry max (interface), IPSER-5
90
ARP dynamic table entry, IPSER-2
DHCP message format, IPSER-27
ARP fast-reply configuration, IPSER-18
DHCP relay agent IP address release, IPSER-60
ARP filtering configuration, SEC-373
DHCP server address pool IP address range,
IPSER-35
ARP gateway protection, SEC-372
DHCP server configuration, IPSER-47
ARP message format, IPSER-1
DHCP server IP address dynamic assignment,
IPSER-49
ARP multiport entry, IPSER-4
ARP multiport entry configuration, IPSER-8
ARP OpenFlow table entry, IPSER-3
DHCP server IP address static assignment,
IPSER-47
ARP operation, IPSER-1
DHCP server option customization, IPSER-53
ARP restricted forwarding, SEC-368
DHCP server subnet, IPSER-52
ARP snooping configuration, IPSER-17
DHCP server user class, IPSER-50
ARP static configuration, IPSER-7
DHCP snooping basic configuration, IPSER-72
ARP static entry, IPSER-3
DHCP snooping
IPSER-72, IPSER-78
ARP static table entry, IPSER-3
DHCPv6 client
IPSER-190
ARP table, IPSER-2
ARP user+packet validity check, SEC-367
DHCPv6 client
IPSER-187
common proxy ARP configuration, IPSER-15
configuration, IPSER-20, IPSER-23
DDNS client configuration, IPSER-106
configuration,
IPSER-70,
configuration,
IPv6
IPSER-187,
address
acquisition,
DHCPv6 client IPv6 address
configuration, IPSER-190
acquisition
DHCPv6 client
IPSER-188
IPv6
prefix
acquisition,
DDNS configuration, IPSER-105, IPSER-109
DHCPv6 client IPv6
configuration, IPSER-191
prefix
acquisition
DDNS configuration
IPSER-111
DHCPv6 client stateless DHCPv6, IPSER-188
DDNS client policy, IPSER-106
DDNS client policy application, IPSER-108
DDNS
configuration
IPSER-109
(PeanutHull
server),
DHCPv6 client stateless DHCPv6 configuration,
IPSER-193
(www.3322.org),
DHCPv6 configuration, IPSER-168
DHCP address allocation, IPSER-25, IPSER-26
DHCPv6 overview, IPSER-165
DHCP address allocation sequence, IPSER-34
DHCPv6 server
IPSER-177
DHCP address assignment, IPSER-32
DHCP address conflict detection, IPSER-44
configuration,
IPSER-171,
DHCP address pool, IPSER-32
DHCPv6 server configuration on interface,
IPSER-175
DHCP BOOTP client configuration, IPSER-81,
IPSER-82
DHCPv6 server dynamic
assignment, IPSER-179
DHCP BOOTP client dynamic IP address
acquisition, IPSER-81
DHCPv6 server dynamic IPv6 prefix assignment,
IPSER-177
DHCP client configuration, IPSER-65, IPSER-67
DHCPv6 server IPv6 address assignment,
IPSER-173
DHCP lease extension, IPSER-26
91
IPv6
address
DHCPv6 server
IPSER-172
IPv6
prefix
IPv6 ICMPv6 destination unreachable message,
IPSER-156
assignment,
IPv6 ICMPv6 error message rate limit, IPSER-155
DHCPv6 server network parameters assignment,
IPSER-174
IPv6 ICMPv6 message send, IPSER-155
DHCPv6 snooping configuration, IPSER-195,
IPSER-197, IPSER-202
IPv6 ICMPv6 redirect message, IPSER-157
IPv6 ICMPv6
IPSER-156
display, IPSER-22
DNS configuration, IPSER-83, IPSER-86
DNS dynamic
IPSER-83
domain
name
time
exceeded
message,
IPv6 interface address assignment, IPSER-144
resolution,
IPv6 interface MTU, IPSER-154
IPv6 link-local address configuration, IPSER-146
DNS packet source interface, IPSER-90
IPv6 max number NS message sent attempts,
IPSER-152
DNS spoofing, IPSER-85
DNS spoofing configuration, IPSER-90
IPv6 multicast echo request reply, IPSER-156
DNS static domain name resolution, IPSER-83
IPv6 ND configuration, IPSER-148
DNS trusted interface, IPSER-91
IPv6 ND duplicate address detection, IPSER-141
gratuitous ARP configuration, IPSER-11, IPSER-12
gratuitous ARP IP conflict notification, IPSER-12
IPv6 ND dynamic neighbor entries max number,
IPSER-148
gratuitous ARP packet learning, IPSER-11
IPv6 ND hop limit, IPSER-149
gratuitous ARP periodic packet send, IPSER-11
IPv6 ND link-local entry minimization, IPSER-149
IGMP snooping message source IP address,
MCAST-26
IPv6 ND neighbor reachability detection,
IPSER-141
interface IP address assignment, IPSER-22
IPv6 ND protocol, IPSER-140
IP multicast address, MCAST-6
IPv6 ND proxy, IPSER-152
IP multicast packet forwarding, MCAST-11
IPv6 ND redirection, IPSER-142
IP routing RIP configuration, IPR-24
IPv6 ND router/prefix discovery, IPSER-141
IP services Pv6 ND protocol address resolution,
IPSER-140
IPv6 ND stale state entry aging timer, IPSER-149
IPv6 address formats, IPSER-137
IPv6 ND stateless address autoconfiguration,
IPSER-141
IPv6 address type, IPSER-138
IPv6 ND static neighbor entry, IPSER-148
IPv6 addresses, IPSER-137
IPv6 path MTU discovery, IPSER-142, IPSER-154
IPv6 anycast address configuration, IPSER-147
IPv6 RA message parameter, IPSER-150
IPv6 basic settings configuration, IPSER-136,
IPSER-143
IPv6 static path MTU, IPSER-154
IPv6 transition technologies, IPSER-142
IPv6 basics configuration, IPSER-159
IPv6 tunneling technology, IPSER-143
IPv6 dual stack technology, IPSER-142
IPv6 dynamic path MTU aging timer, IPSER-155
IRDP configuration,
IPSER-121
IPSER-119,
IPv6 global unicast address, IPSER-144
IRDP primary IP address, IPSER-119
IPSER-120,
IRDP proxy-advertised IP address, IPSER-119
92
masking, IPSER-21
IGMP snooping basic concepts, MCAST-14
MFF server IP address, SEC-378
IGMP snooping basic configuration, MCAST-18
NMM PTP UDP packet source IP address,
NM-62
IGMP snooping configuration,
MCAST-17, MCAST-31
proxy ARP configuration, IPSER-14
IGMP snooping display, MCAST-30
QoS class-based accounting configuration,
QACL-82, QACL-83
IGMP snooping drop unknown multicast data,
MCAST-28
QoS traffic filtering configuration, QACL-62,
QACL-63
IGMP snooping dynamic router port change,
MCAST-23
RIP configuration, IPR-11, IPR-13
IGMP snooping
MCAST-22
RIP update source IP address check, IPR-21
IGMP snooping
MCAST-20
special IP addresses, IPSER-21
SSH packet source IP address, SEC-310
fast
MCAST-14,
leave
forwarding
processing,
entries
max,
IGMP snooping general query, MCAST-16
SSH SFTP packet source IP address, SEC-312
IGMP snooping group policy, MCAST-27
subnetting, IPSER-21
tracert, NM-3, NM-4
IGMP snooping group policy+simulated joining
configuration, MCAST-31
tracert node failure identification, NM-4
IGMP snooping groups on port max, MCAST-29
voice VLAN configuration, LSW-170, LSW-180
IGMP snooping leave message, MCAST-16
IP addressing IRDP
IGMP snooping maintain, MCAST-30
secondary IP address, IPSER-119
IGMP snooping membership report, MCAST-16
IP forwarding
IGMP snooping message 802.1p priority,
MCAST-26
configuring load sharing, IPSER-115
IGMP
snooping
MCAST-25
device, IPSER-113
FIB table, IPSER-113
message
parameters,
IGMP snooping message source IP address,
MCAST-26
FIB table entries, IPSER-113
load sharing, IPSER-115, IPSER-116
IGMP snooping multicast group replacement,
MCAST-29
optimal route selection, IPSER-113
IGMP snooping policy, MCAST-27
IP multicast
address, MCAST-6
IGMP snooping port feature, MCAST-20
architecture, MCAST-5
IGMP snooping protocols and standards,
MCAST-17
ASM model, MCAST-5
IGMP snooping querier, MCAST-23
broadcast transmission technique, MCAST-2
IGMP
snooping
MCAST-36
common notation, MCAST-4
data distribution, MCAST-4
querier
configuration,
Ethernet multicast MAC address, MCAST-8
IGMP snooping query/response parameters,
MCAST-24
features, MCAST-3
IGMP snooping report suppression, MCAST-29
IGMP snooping source port filtering, MCAST-28
93
troubleshooting IPv6 PIM snooping on Layer 2
device, MCAST-92
IGMP snooping static port, MCAST-21
IGMP snooping static port configuration,
MCAST-33
IGMP
snooping
MCAST-19
version
troubleshooting PIM snooping, MCAST-47
troubleshooting PIM snooping does not work,
MCAST-47
specification,
IP multicast address, MCAST-6
unicast transmission technique, MCAST-1
IPv6 multicast VLAN. See IPv6 multicast VLAN
VPN application, MCAST-12
IPv6 PIM snooping display, MCAST-88
VPN instance, MCAST-12
IPv6 PIM snooping maintain, MCAST-88
VPN support, MCAST-12
IP performance optimization. See IPPO
Layer 2 protocols and standards, MCAST-10
directed
broadcast
configuration, IPSER-125
Layer 3 protocols and standards, MCAST-9
MLD snooping
MCAST-72
802.1p
message
priority,
receive/forward
IP phone
MLD snooping query source IPv6 address,
MCAST-71
voice VLAN host+IP phone connection (in
series), LSW-172
MLD snooping query/response parameters,
MCAST-70
voice VLAN identification method (LLDP),
LSW-171
models, MCAST-5
voice VLAN identification
address), LSW-170
method
voice VLAN
LSW-171
advertisement,
notation rendezvous point tree (RPT), MCAST-4
notation shortest path tree (SPT), MCAST-4
overview, MCAST-1
voice VLAN IP phone access method, LSW-172
packet forwarding, MCAST-11
voice VLAN IP phone connection (device),
LSW-172
PIM snooping configuration, MCAST-41,
MCAST-42, MCAST-43, MCAST-86, MCAST-87,
MCAST-88
IP routing
configuration, IPR-1
PIM snooping display, MCAST-43
displaying IPv6 static routing, IPR-31
PIM snooping maintain, MCAST-43
displaying routing table, IPR-4
protocols and standards, MCAST-9
displaying static routes, IPR-7
SFM model, MCAST-5
FIB route max lifetime, IPR-4
SSM model, MCAST-5
IP forwarding load sharing, IPSER-115, IPSER-116
transmission technique, MCAST-2
IPv6 default route. See under IPv6 static routing
transmission techniques, MCAST-1
IPv6 static routing. See IPv6 static routing
troubleshooting IGMP snooping, MCAST-39
troubleshooting IGMP snooping
multicast forwarding, MCAST-39
information
(OUI
Layer
load sharing, IPR-2
2
maintaining routing table, IPR-4
RIB label max lifetime, IPR-3
troubleshooting IGMP snooping multicast group
policy, MCAST-39
RIB route max lifetime, IPR-3
troubleshooting IPv6 PIM snooping, MCAST-92
94
RIPng IPsec profile application, IPR-41
RIP additional routing metric configuration,
IPR-15
RIPng IPsec profile configuration, IPR-47
RIP basic configuration, IPR-13
RIPng maintain, IPR-42
RIP basics, IPR-24
RIPng network optimization, IPR-39
RIP configuration, IPR-11, IPR-13, IPR-24
RIPng network tuning, IPR-39
RIP default route advertisement, IPR-17
RIPng packet, IPR-35
RIP GR configuration, IPR-23
RIP host route reception disable, IPR-17
RIPng packet zero field check configuration,
IPR-40
RIP interface additional metric, IPR-29
RIPng poison reverse configuration, IPR-40
RIP interface advertisement control, IPR-14
RIPng preference, IPR-38
RIP interface reception control, IPR-14
RIPng protocols and standards, IPR-36
RIP neighbor specification, IPR-22
RIPng received/redistributed route filtering,
IPR-38
RIP network management configuration, IPR-22
RIPng route control, IPR-37
RIP network optimization, IPR-19
RIPng route entry, IPR-35
RIP network tuning, IPR-19
RIPng route redistribution, IPR-39, IPR-44
RIP operation, IPR-11
RIPng route summarization, IPR-37
RIP packet max length, IPR-23
RIPng routing metric configuration, IPR-37
RIP packet send rate configuration, IPR-23
RIPng split horizon configuration, IPR-40
RIP poison reverse configuration, IPR-20
RIPng timer configuration, IPR-39
RIP preference configuration, IPR-18
RIPv1 message zero field check, IPR-21
RIP received/redistributed route filtering, IPR-18
RIPv2 message authentication configuration,
IPR-21
RIP route control configuration, IPR-15
RIP route entries, IPR-11
RIPv2 route summarization configuration, IPR-16
RIP route redistribution, IPR-27
route backup, IPR-2
RIP route redistribution configuration, IPR-19
route preference, IPR-2
RIP routing loop prevention, IPR-11
route recursion, IPR-2
RIP split horizon configuration, IPR-20
route redistribution, IPR-3
RIP timer configuration, IPR-19
routing table, IPR-1
RIP update source IP address check, IPR-21
static route, IPR-7
RIP version configuration, IPR-15
static routing basic configuration, IPR-7
RIP versions, IPR-12
static routing configuration, IPR-6
RIPng basic configuration, IPR-36, IPR-42
static routing default route configuration, IPR-10
RIPng configuration, IPR-35, IPR-36, IPR-42
IP services
RIPng default route advertisement, IPR-38
ARP configuration, IPSER-1, IPSER-7
RIPng display, IPR-42
ARP display, IPSER-7
RIPng GR configuration, IPR-41
95
ARP dynamic entry aging timer, IPSER-6
DHCP client NetBIOS node type, IPSER-39
ARP dynamic entry check enable, IPSER-6
DHCP client server specification, IPSER-41
ARP dynamic entry max (device), IPSER-5
DHCP client WINS server, IPSER-39
ARP dynamic entry max (interface), IPSER-5
DHCP enable, IPSER-43
ARP fast-reply configuration, IPSER-18
DHCP IP address conflict detection, IPSER-44
ARP logging enable, IPSER-6
DHCP IP address lease extension, IPSER-26
ARP maintain, IPSER-7
DHCP message format, IPSER-27
ARP multiport entry, IPSER-4
DHCP Option 82 handling, IPSER-44
ARP snooping configuration, IPSER-17
DHCP option customization, IPSER-42
ARP snooping display, IPSER-17
DHCP options (common), IPSER-28
ARP snooping maintain, IPSER-17
DHCP options (custom), IPSER-28
ARP static entry, IPSER-3
DHCP overview, IPSER-25
common proxy ARP configuration, IPSER-15
DHCP protocols and standards, IPSER-30
DDNS client configuration, IPSER-106
DHCP relay agent, IPSER-62
DDNS client policy, IPSER-106
DHCP relay agent configuration, IPSER-55,
IPSER-56
DDNS client policy application, IPSER-108
DHCP relay agent enable on interface, IPSER-57
DDNS configuration, IPSER-105, IPSER-109
DDNS configuration
IPSER-111
DDNS
configuration
IPSER-109
(PeanutHull
DHCP relay agent entry periodic refresh,
IPSER-58
server),
DHCP relay agent IP address release, IPSER-60
(www.3322.org),
DHCP relay agent operation, IPSER-55
DDNS display, IPSER-109
DHCP relay agent Option 82, IPSER-63
DDNS outgoing packet DSCP value, IPSER-109
DHCP relay agent Option 82 configuration,
IPSER-60
DHCP address allocation, IPSER-25, IPSER-26
DHCP relay agent Option 82 support, IPSER-56
DHCP address allocation sequence, IPSER-34
DHCP relay agent relay entry recording,
IPSER-58
DHCP address pool, IPSER-32
DHCP address pool application on interface,
IPSER-44
DHCP relay agent security functions, IPSER-58
DHCP relay agent server, IPSER-57
DHCP BOOTP application, IPSER-81
DHCP relay agent starvation attack protection,
IPSER-59
DHCP BOOTP client address acquisition,
IPSER-82
DHCP server address pool, IPSER-34, IPSER-35
DHCP BOOTP client dynamic IP address
acquisition, IPSER-81
DHCP server address pool IP address range,
IPSER-35
DHCP client BIMS server information, IPSER-40
DHCP server
IPSER-45
DHCP client DNS server, IPSER-39
DHCP client domain name suffix, IPSER-39
compatibility
configuration,
DHCP server configuration, IPSER-32, IPSER-34,
IPSER-47
DHCP client gateway, IPSER-38
96
DHCPv6 client
IPSER-187
DHCP server display, IPSER-46
DHCP server enable on interface, IPSER-43
DHCPv6 client
IPSER-188
DHCP server IP address dynamic assignment,
IPSER-49
IPv6
IPv6
address
acquisition,
prefix
acquisition,
DHCPv6 client maintain, IPSER-190
DHCP server IP address static assignment,
IPSER-47
DHCPv6 client stateless DHCPv6, IPSER-188
DHCP server maintain, IPSER-46
DHCPv6 concepts, IPSER-169
DHCP server option customization, IPSER-53
DHCPv6 configuration, IPSER-168
DHCP server subnet, IPSER-52
DHCPv6 IPv6 address assignment, IPSER-168
DHCP server user class, IPSER-50
DHCPv6 IPv6 prefix assignment, IPSER-168
DHCP snooping basic configuration, IPSER-78
DHCPv6 overview, IPSER-165
DHCP snooping configuration, IPSER-70
DHCPv6 packet blocking port, IPSER-201
DHCP snooping display, IPSER-78
DHCPv6 protocols and standards, IPSER-167
DHCP snooping entry auto backup, IPSER-74
DHCPv6 relay agent configuration, IPSER-182,
IPSER-183, IPSER-185
DHCP snooping maintain, IPSER-78
DHCPv6 relay agent display, IPSER-184
DHCP snooping Option 82 configuration,
IPSER-73
DHCPv6 relay agent enable on interface,
IPSER-183
DHCP snooping Option 82 support, IPSER-71
DHCP
snooping
Option
configuration, IPSER-79
82
DHCPv6 relay agent maintain, IPSER-184
support
DHCPv6 relay agent server, IPSER-183
DHCPv6 server
IPSER-177
DHCP snooping packet blocking port, IPSER-77
DHCP snooping packet rate limit, IPSER-77
DHCPv6 server dynamic
assignment, IPSER-179
DHCP snooping trusted port, IPSER-70
DHCP voice client Option 184 parameter,
IPSER-41
address
DHCPv6 server IPv6 address assignment,
IPSER-173
DHCP-REQUEST message attack protection,
IPSER-76
DHCPv6 server
IPSER-172
DHCPv6 address pool, IPSER-170
IPv6
prefix
assignment,
DHCPv6 server maintain, IPSER-176
DHCPv6 address/prefix allocation sequence,
IPSER-171
DHCPv6 snooping basics, IPSER-197
DHCPv6 snooping configuration, IPSER-195,
IPSER-197, IPSER-202
DHCPv6 address/prefix assignment, IPSER-165
lease
IPv6
DHCPv6 server dynamic IPv6 prefix assignment,
IPSER-177
DHCP snooping untrusted port, IPSER-70
address/prefix
IPSER-171,
DHCPv6 server display, IPSER-176
DHCP snooping starvation attack protection,
IPSER-75
DHCPv6
IPSER-166
configuration,
renewal,
DHCPv6 snooping display, IPSER-201
DHCPv6 snooping
IPSER-199
DHCPv6 client configuration, IPSER-187
DHCPv6 client display, IPSER-190
entry
auto
backup,
DHCPv6 snooping entry max, IPSER-199
97
DHCPv6 snooping maintain, IPSER-201
IPv6 dynamic path MTU aging timer, IPSER-155
DHCPv6 snooping Option 18 configuration,
IPSER-198
IPv6 fast forwarding configuration, IPSER-204
IPv6 features, IPSER-136
DHCPv6 snooping Option 37 configuration,
IPSER-198
DHCPv6
snooping
packet
configuration, IPSER-200
rate
IPv6 ICMPv6 destination unreachable message,
IPSER-156
limit
IPv6 ICMPv6 message send, IPSER-155
IPv6
ICMPv6
packet
specification, IPSER-157
DHCPv6-REQUEST check, IPSER-200
displaying fast forwarding, IPSER-118
source
address
IPv6 ICMPv6 redirect message, IPSER-157
displaying IPv6 basics, IPSER-158
displaying IPv6 fast forwarding, IPSER-204
IPv6 ICMPv6
IPSER-156
DNS configuration, IPSER-83, IPSER-86
IPv6 interface address assignment, IPSER-144
DNS outgoing packet DSCP value, IPSER-91
IPv6 interface MTU, IPSER-154
DNS packet source interface, IPSER-90
IPv6 link-local address configuration, IPSER-146
DNS proxy, IPSER-84
IPv6 max number NS message sent attempts,
IPSER-152
DNS proxy configuration, IPSER-89
time
exceeded
message,
IPv6 multicast echo request reply, IPSER-156
DNS spoofing, IPSER-85
IPv6 ND configuration, IPSER-148
DNS spoofing configuration, IPSER-90
IPv6 ND dynamic neighbor entries max number,
IPSER-148
DNS trusted interface, IPSER-91
fast forwarding configuration, IPSER-118
IPv6 ND hop limit, IPSER-149
gratuitous ARP configuration, IPSER-11, IPSER-12
IPv6 ND link-local entry minimization, IPSER-149
gratuitous ARP IP conflict notification, IPSER-12
IPv6 ND protocol, IPSER-140
ICMPv6 error message rate limit, IPSER-155
IPv6 ND proxy enable, IPSER-152
IP address classes, IPSER-20
IPv6 ND stale state entry aging timer, IPSER-149
IP addressing
IPv6 ND static neighbor entry, IPSER-148
configuration, IPSER-20
IPv6 path MTU discovery, IPSER-142, IPSER-154
IP addressing configuration, IPSER-23
IPv6 protocols and standards, IPSER-143
IP addressing display, IPSER-22
IPv6 RA message parameter, IPSER-150
IP addressing interface address, IPSER-22
IPv6 static path MTU, IPSER-154
IP addressing subnetting, IPSER-21
IPv6 transition technologies, IPSER-142
IPv4 DNS configuration, IPSER-92
IPv6 addresses, IPSER-137
IRDP configuration,
IPSER-121
IPSER-119,
IPSER-120,
IPv6 anycast address configuration, IPSER-147
maintaining fast forwarding, IPSER-118
IPv6 basic settings configuration, IPSER-136,
IPSER-143
maintaining IPv6 basics, IPSER-158
maintaining IPv6 fast forwarding, IPSER-204
IPv6 basics configuration, IPSER-159
NQA client DHCP operation, NM-121
IPv6 DNS configuration, IPSER-97
98
NQA path jitter operation configuration,
NM-161
NQA client DLSw operation, NM-131
NQA client DNS operation, NM-122
NQA SNMP operation configuration, NM-154
NQA client echo operation (ICMP), NM-121
NQA TCP operation configuration, NM-155
NQA client echo operation (UDP), NM-128
NQA template configuration (DNS), NM-166
NQA client FTP operation, NM-123
NQA template configuration (FTP), NM-169
NQA client history record save, NM-137
NQA template configuration (HTTP), NM-168
NQA client HTTP operation, NM-124
NQA template configuration (ICMP), NM-165
NQA client operation optional parameters,
NM-132
NQA template configuration (TCP), NM-167
NQA UDP
NM-151
NQA client operation scheduling, NM-138
NQA client path jitter operation, NM-131
jitter
operation
configuration,
NQA voice operation configuration, NM-158
NQA client SNMP operation, NM-126
proxy ARP configuration, IPSER-14
NQA client statistics collection, NM-137
proxy ARP display, IPSER-14
NQA client TCP operation, NM-127
special IP addresses, IPSER-21
NQA client template (DNS), NM-139
stateless DHCPv6, IPSER-167
NQA client template (FTP), NM-142
troubleshooting DHCP relay agent configuration,
IPSER-63
NQA client template (HTTP), NM-141
NQA client template (ICMP), NM-139
NQA client template (TCP), NM-140
troubleshooting DHCP server configuration,
IPSER-54
NQA client template optional parameters,
NM-144
troubleshooting
IPSER-103
NQA client threshold monitoring, NM-134
troubleshooting IPv4 DNS incorrect IP address,
IPSER-103
NQA client
NM-133
Track
collaboration
function,
IPv4
DNS
configuration,
troubleshooting IPv6 address cannot be pinged,
IPSER-164
NQA client UDP jitter operation, NM-125
NQA client voice operation, NM-129
NQA collaboration configuration, NM-163
NQA configuration, NM-117, NM-119, NM-145
NQA DHCP operation configuration, NM-147
troubleshooting
IPSER-164
IPv6
basics
configuration,
troubleshooting
IPSER-103
IPv6
DNS
configuration,
NQA DLSw operation configuration, NM-160
troubleshooting IPv6 DNS incorrect IP address,
IPSER-103
NQA DNS operation configuration, NM-148
UDP helper configuration, IPSER-132, IPSER-134
NQA echo operation configuration (ICMP),
NM-145
UDP helper conversion (broadcast to multicast),
IPSER-133
NQA echo operation configuration (UDP),
NM-156
UDP helper conversion (broadcast to unicast),
IPSER-132
NQA FTP operation configuration, NM-149
UDP helper display, IPSER-134
NQA HTTP operation configuration, NM-150
UDP helper maintain, IPSER-134
99
ACL-based implementation, SEC-255
IP source guard
IPv4. See IPv4 source guard
ACL-based IPsec, SEC-253
IPv6. See IPv6 source guard
anti-replay redundancy, SEC-266
application-based IPsec, SEC-254
IP source guard (IPSG)
configuration, SEC-346, SEC-348, SEC-351
authentication, SEC-253
display, SEC-350
authentication algorithms, SEC-253
dynamic binding, SEC-347
configuration, SEC-250, SEC-272
maintain, SEC-350
display, SEC-271
static binding, SEC-347
encapsulation modes, SEC-251
encryption, SEC-253
IP subnet-based VLAN
encryption algorithms, SEC-253
configuration, LSW-140, LSW-147
IPE file (ISSU), FM-122
FIPS compliance, SEC-254
IPng. See also IPv6
IKE configuration, SEC-281, SEC-283, SEC-292
IPoE
IKE configuration (main mode/pre-shared key
authentication), SEC-292
security user profile configuration, SEC-395
IKE DPD, SEC-290
IPPO
IKE global identity information, SEC-288
configuration, IPSER-124
IKE identity authentication, SEC-282
directed broadcast receive/forward enable,
IPSER-124
IKE invalid SPI recovery, SEC-291
displaying, IPSER-131
IKE keepalive function, SEC-289
ICMP error message rate limit, IPSER-130
IKE keychain, SEC-287
ICMP error message send, IPSER-128
IKE NAT keepalive function, SEC-289
ICMP fragment forwarding disable, IPSER-130
IKE negotiation, SEC-281
ICMP packet source address, IPSER-130
IKE negotiation mode, SEC-252
interface MTU configuration, IPSER-125
IKE profile configuration, SEC-284
interface TCP MSS configuration, IPSER-126
IKE proposal, SEC-286
maintaining, IPSER-131
IKE SA max number, SEC-291
TCP buffer size, IPSER-128
IKE security mechanism, SEC-282
TCP path MTU discovery, IPSER-126
IKE SNMP notification, SEC-291
TCP SYN cookie, IPSER-127
implementation, SEC-253
TCP timer, IPSER-128
IPv6. See IPv6 IPsec
maintain, SEC-271
IPsec
ACL configuration, SEC-256
mirror image ACLs, SEC-256
ACL de-encapsulated packet check, SEC-264
non-mirror image ACLs, SEC-256
ACL IPsec anti-replay, SEC-265
packet DF bit, SEC-268
ACL rule keywords, SEC-256
packet logging enable, SEC-268
100
PKI configuration, SEC-216, SEC-218, SEC-230
ACL configuration (IPv4 advanced), QACL-6
policy application to interface, SEC-264
ACL configuration (IPv4 basic), QACL-4
policy configuration (IKE-based), SEC-260
ACL naming, QACL-2
policy
configuration
SEC-261
ACL numbering, QACL-2
policy configuration
SEC-262
(IKE-based/direct),
ACL packet filtering configuration, QACL-10
(IKE-based/template),
DNS client configuration, IPSER-87
DNS configuration, IPSER-92
policy configuration (manual), SEC-258
DNS proxy configuration, IPSER-89, IPSER-95
policy configuration restrictions, SEC-258
DNS spoofing configuration, IPSER-90
policy configuration restrictions (IKE-based),
SEC-260
emergency shell management Ethernet port
configuration, FM-139
protocols and standards, SEC-254
emergency shell server access, FM-140
QoS pre-classify enable, SEC-267
emergency shell server connectivity check,
FM-140
RIPng configuration, SEC-277
RIPng IPsec profile application, IPR-41
Ethernet multicast MAC address, MCAST-8
RIPng IPsec profile configuration, IPR-47
FTP client connection establishment, FM-77
SA, SEC-252
security protocols, SEC-251
IGMP snooping multicast source port filtering,
MCAST-28
SNMP notification configuration, SEC-270
IP address classes, IPSER-20
source interface policy bind, SEC-266
IP addressing configuration, IPSER-20, IPSER-23
transform set, SEC-257
IP addressing interface address, IPSER-22
troubleshoot IKE, SEC-295
IP addressing masking, IPSER-21
troubleshoot IKE negotiation
proposal match), SEC-295
failure
IP addressing subnetting, IPSER-21
(no
IP multicast address, MCAST-6
troubleshoot IKE negotiation failure (no
proposal or keychain referenced correctly),
SEC-296
IP routing FIB route max lifetime, IPR-4
IP routing RIB label max lifetime, IPR-3
IP routing RIB route max lifetime, IPR-3
troubleshoot SA negotiation failure (invalid
identity info), SEC-297
troubleshoot SA negotiation
transform set match), SEC-296
failure
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
(no
IPsec tunnel for IPv4 packets (manual), SEC-272
tunnel establishment, SEC-254
tunnel for IPv4 packets (IKE-based), SEC-274
NMM PTP message encapsulation protocol,
NM-62
tunnel for IPv4 packets (manual), SEC-272
source guard. See IPv4 source guard
special IP addresses, IPSER-21
IP-to-MAC
DHCP snooping
IPSER-72, IPSER-78
configuration,
SSH SCP client device, SEC-315
IPSER-70,
SSH Secure Telnet
establishment, SEC-310
IPv4
101
server
connection
emergency shell server access, FM-140
SSH SFTP server connection establishment,
SEC-312
emergency shell server connectivity check,
FM-140
TFTP client configuration, FM-83
Ethernet multicast MAC address, MCAST-8
IPv4 source guard (IPv4SG)
configuration, SEC-346, SEC-348, SEC-351
EUI-64 address configuration, IPSER-144
display, SEC-350
EUI-64 address-based
IPSER-139
dynamic binding configuration, SEC-352
interface
identifiers,
fast forwarding configuration, IPSER-204
dynamic binding+DHCP relay configuration,
SEC-353
features, IPSER-136
enable on interface, SEC-348
FTP client connection establishment, FM-77
maintain, SEC-350
global unicast address configuration, IPSER-144
static binding configuration, SEC-349, SEC-351
ICMPv6 destination unreachable message,
IPSER-156
IPv6. See also IPng
ICMPv6 error message rate limit, IPSER-155
ACL configuration (IPv6 advanced), QACL-7
ICMPv6 message send, IPSER-155
ACL configuration (IPv6 basic), QACL-5
ICMPv6 packet source address specification,
IPSER-157
ACL naming, QACL-2
ACL numbering, QACL-2
ICMPv6 redirect message, IPSER-157
ACL packet filtering configuration, QACL-10
ICMPv6 time exceeded message, IPSER-156
address formats, IPSER-137
interface address assignment, IPSER-144
address manual configuration, IPSER-145
interface
link-local
generation, IPSER-147
address type, IPSER-138
addresses, IPSER-137
configuration,
automatic
interface link-local address manual specification,
IPSER-147
anycast address configuration, IPSER-147
basic
settings
IPSER-143
address
interface MTU configuration, IPSER-154
IPSER-136,
IP multicast address, MCAST-6
basics configuration, IPSER-159
IP routing FIB route max lifetime, IPR-4
DHCPv6. See DHCPv6
IP routing RIB label max lifetime, IPR-3
displaying basics, IPSER-158
IP routing RIB route max lifetime, IPR-3
displaying fast forwarding, IPSER-204
IPsec. See IPv6 IPsec
DNS client configuration, IPSER-88
link-local address configuration, IPSER-146
DNS configuration, IPSER-97
maintaining basics, IPSER-158
DNS proxy configuration, IPSER-89, IPSER-102
maintaining fast forwarding, IPSER-204
DNS spoofing configuration, IPSER-90
max number NS message sent attempts,
IPSER-152
dual stack technology, IPSER-142
MLD snooping dynamic router port change,
MCAST-69
dynamic path MTU aging timer, IPSER-155
emergency shell management Ethernet port
configuration, FM-139
102
RIP. See also RIPng
MLD snooping simulated member host port,
MCAST-68
source guard. See IPv6 source guard
multicast address type, IPSER-139
SSH SCP client device, SEC-315
multicast echo request reply, IPSER-156
SSH Secure Telnet
establishment, SEC-310
multicast VLAN. See IPv6 multicast VLAN
server
connection
SSH SFTP server connection establishment,
SEC-312
ND attack defense. See IPv6 ND attack defense
ND configuration, IPSER-148
stateless address autoconfiguration, IPSER-145
ND duplicate address detection, IPSER-141
static path MTU configuration, IPSER-154
ND dynamic neighbor entries max number,
IPSER-148
static prefix configuration, IPSER-146
ND hop limit, IPSER-149
TFTP client configuration, FM-84
ND link-local entry minimization, IPSER-149
transition technologies, IPSER-142
ND neighbor reachability detection, IPSER-141
troubleshooting address cannot be pinged,
IPSER-164
ND protocol, IPSER-140
troubleshooting basics configuration, IPSER-164
ND protocol address resolution, IPSER-140
tunneling technology, IPSER-143
ND proxy enable, IPSER-152
IPv6 IPsec
ND redirection, IPSER-142
routing protocol profile (manual), SEC-269
ND router/prefix discovery, IPSER-141
routing protocols configuration, SEC-269
ND stale state entry aging timer, IPSER-149
ND stateless
IPSER-141
ND static
IPSER-148
address
neighbor
IPv6 multicast
autoconfiguration,
entry
MLD snooping basic configuration, MCAST-64
MLD snooping configuration,
MCAST-63, MCAST-77
configuration,
MCAST-60,
MLD snooping display, MCAST-76
NMM NTP client/server association mode,
NM-29
NMM NTP multicast association mode, NM-38
MLD snooping dynamic port aging timers,
MCAST-66
NMM
NTP
symmetric
association mode, NM-32
active/passive
MLD snooping dynamic router port change,
MCAST-69
packet (extension header) discard enable,
IPSER-158
MLD snooping fast-leave processing enable,
MCAST-68
path MTU discovery, IPSER-142
MLD snooping group policy, MCAST-73
path MTU discovery configuration, IPSER-154
MLD snooping group policy+simulated joining
configuration, MCAST-77
PIM snooping. See IPv6 PIM snooping
MLD snooping group replacement, MCAST-76
protocols and standards, IPSER-143
MLD snooping
MCAST-75
RA message parameter, IPSER-151
RA
message
IPSER-150
parameter
configuration,
groups
max
(on
portl),
MLD snooping maintain, MCAST-76
MLD snooping message parameters, MCAST-71
RA message send enable, IPSER-151
103
troubleshooting IPv6 PIM snooping on Layer 2
device, MCAST-92
MLD snooping policy, MCAST-73
MLD snooping port feature configuration,
MCAST-66
MLD snooping
MCAST-63
protocols
and
MLD
snooping
querier
MCAST-69, MCAST-82
IPv6 source guard (IPv6SG)
configuration, SEC-346, SEC-348, SEC-349,
SEC-351
standards,
display, SEC-350
configuration,
dynamic
binding+DHCPv6
configuration, SEC-355
MLD snooping report suppression, MCAST-75
enable on interface, SEC-349
MLD snooping simulated member host port,
MCAST-68
maintain, SEC-350
MLD snooping source port filtering, MCAST-74
MLD snooping static
MCAST-67, MCAST-79
port
static binding configuration, SEC-350, SEC-354
configuration,
IPv6 static routing
basic configuration, IPR-32
MLD snooping unknown data drop, MCAST-74
configuration, IPR-31, IPR-32
troubleshooting MLD snooping, MCAST-85
default route configuration, IPR-34
troubleshooting MLD snooping group filter,
MCAST-85
troubleshooting MLD snooping
forwarding, MCAST-85
Layer
displaying, IPR-31
route configuration, IPR-31
2
IRDP
IPv6 multicast VLAN
configuration,
MCAST-98
snooping
basic concepts, IPSER-119
MCAST-93,
MCAST-95,
configuration, IPSER-119, IPSER-120, IPSER-121
operation, IPSER-119
displaying, MCAST-98
protocols and standards, IPSER-120
maintaining, MCAST-98
RA (router advertisement), IPSER-119
max forwarding entries, MCAST-97
RS (router solicitation), IPSER-119
port -based, MCAST-94
IRF
port-based configuration, MCAST-96
10-GE grouped port restrictions, IRF-12
port-based user port assignment, MCAST-97
ARP MAD, IRF-9
port-based user port attribute configuration,
MCAST-96
ARP MAD configuration, IRF-24
sub-VLAN-based, MCAST-93
automatic configuration (IRF setup), FM-184
sub-VLAN-based configuration, MCAST-95
basic concepts, IRF-2
Boot ROM image preload, FM-110
IPv6 PIM snooping
configuration,
MCAST-88
MCAST-86,
bridge MAC persistence, IRF-20
MCAST-87,
collision handling, IRF-7
display, MCAST-88
configuration backup, IRF-14
maintain, MCAST-88
configuration restrictions, IRF-11
troubleshooting, MCAST-92
configuration synchronization, IRF-6
104
FTP client configuration (centralized IRF device),
FM-81
device member ID assignment, IRF-15
device member priority, IRF-16
FTP server configuration (centralized IRF device),
FM-75
DHCP overview, IPSER-25
domain ID, IRF-3
hardware compatibility, IRF-11
eIRF basic concepts, IRF-46
ISSU, FM-115
eIRF configuration management, IRF-48
ISSU (install series commands), FM-121
eIRF data forwarding, IRF-48
ISSU for multichassis IRF fabric, FM-118
eIRF device configuration as independent switch,
IRF-50
ISSU for single-chassis IRF fabric, FM-120
ISSU HTTP feature compatible upgrade (issu
series commands), FM-126
eIRF device configuration as PEX, IRF-50
eIRF device operating mode, IRF-49
ISSU HTTP feature incompatible upgrade (issu
series commands), FM-128
eIRF hardware compatibility, IRF-48
eIRF membership establishment, IRF-47
ISSU HTTP feature rollback (install series
commands), FM-135
eIRF operation, IRF-47
ISSU HTTP feature
commands), FM-130
eIRF PEX cabling restrictions, IRF-49
eIRF PEX physical interface, IRF-46
rollback
(issu
series
eIRF PEX physical interface restrictions, IRF-49
ISSU HTTP feature upgrade (install series
commands), FM-132, FM-136
eIRF PEX port, IRF-46
ISSU install series commands, FM-132
eIRF PEX virtual slot number, IRF-47
ISSU issu series commands, FM-126
eIRF roles, IRF-46
ISSU methods, FM-115
eIRF system configuration restrictions, IRF-49
ISSU overview, FM-115
eIRF system setup, IRF-44
ISSU performance by issu series commands,
FM-118
emergency shell device reboot, FM-142
ISSU software image verification (install series
commands), FM-124
emergency shell use, FM-138, FM-142
fabric access, IRF-19
LACP MAD, IRF-8
fabric ARP MAD configuration, IRF-34
LACP MAD configuration, IRF-24
fabric configuration, IRF-14, IRF-29
link down report delay, IRF-23
fabric display, IRF-29
link load sharing mode, IRF-19
fabric feature restrictions, IRF-13
link load sharing mode (global), IRF-20
fabric LACP MAD configuration, IRF-29
link load sharing mode (port-specific), IRF-20
fabric ND MAD configuration, IRF-38
MAD, IRF-3
fabric recovery, IRF-27
MAD configuration, IRF-23
fabric setup, IRF-1, IRF-15
MAD detection, IRF-7
failure recovery, IRF-7
MAD handling procedure, IRF-7
FCoE configuration (VFC interface)(IRF mode),
FCoE-141
MAD mechanism, IRF-8
105
transceiver modules+cables restrictions, IRF-12
master election, IRF-6
ISAKAMP
member device description, IRF-19
protocols and standards, SEC-283
member ID, IRF-2
ISAKMP. See also IKE
member priority, IRF-4
IPsec IKE configuration, SEC-281, SEC-283,
SEC-292
member role, IRF-2
merge, IRF-4
IPsec IKE configuration (main mode/pre-shared
key authentication), SEC-292
naming conventions (file system), IRF-5
naming conventions (interface), IRF-4
IS-IS
ND MAD, IRF-10
TRILL configuration, TRILL-1, TRILL-7, TRILL-25
ND MAD configuration, IRF-26
isolating
network topology, IRF-2
ports. See port isolation
non-ISSU software upgrade method, FM-113
ISP
physical interface, IRF-2
AAA device implementation, SEC-11
physical interface connection, IRF-16
AAA ISP domain accounting method, SEC-45
physical interface restrictions, IRF-12
AAA ISP domain attribute, SEC-42
physical interface+port bind, IRF-17
port, IRF-2
AAA ISP
SEC-43
port connection restrictions, IRF-13
AAA ISP domain authorization method, SEC-44
port shutdown exclusion, IRF-27
AAA ISP domain creation, SEC-42
QSFP+ port restrictions, IRF-12
AAA ISP domain method, SEC-41
SFP+ port restrictions, IRF-13
domain
authentication
method,
ISSU
SFP+
port
(5700-48G-4XG-2QSFP+), IRF-13
restrictions
Boot ROM image preload, FM-110
command series, FM-116
software auto-update enable, IRF-22
displaying, FM-125
software upgrade completion, FM-110
emergency shell use, FM-138, FM-142
software upgrade completion (in bulk), FM-110
feature uninstall (install series commands),
FM-123
software upgrade completion (one by one),
FM-111
HTTP feature compatible upgrade (issu series
commands), FM-126
software upgrade completion with a warm
reboot, FM-112
software
upgrade
startup
specification, FM-110, FM-112
image
file
HTTP feature incompatible upgrade (issu series
commands), FM-128
software
upgrade
startup
specification (in bulk), FM-110
image
file
HTTP feature rollback (install series commands),
FM-135
software
upgrade
startup
image
specification (one by one), FM-111
file
HTTP feature rollback (issu series commands),
FM-130
HTTP feature upgrade (install series commands),
FM-132, FM-136
split, IRF-3
106
keep-online feature (MAC authentication), SEC-110
inactive software image removal (install series
commands), FM-124
kernel thread
install series commands, FM-121, FM-132
displaying, NM-201
IPE file decompression (install series commands),
FM-122
Linux process, NM-199
maintaining, NM-201
issu series commands, FM-118, FM-126
PMM, NM-200
maintaining, FM-125
PMM deadloop detection, NM-200
methods, FM-115
PMM starvation detection, NM-201
multichassis IRF fabric, FM-118
key
non-ISSU software upgrade, FM-113
command hotkey, FM-5
overview, FM-115
Ethernet link aggregation operational key,
LSW-41
patch image uninstall (install series commands),
FM-123
IPsec IKE
SEC-282
single-chassis IRF fabric, FM-120
software activate/deactivate
commands), FM-124
(install
series
pre-shared
key
authentication,
PKI configuration, SEC-216, SEC-218, SEC-230
key pair
software configuration rollback (install series
commands), FM-123
SSH DSA host key pair, SEC-303
software image (install series commands),
FM-122
SSH ECDSA host key pair, SEC-303
software image upgrade
commands), FM-122
(install
series
SSH RSA server key pair, SEC-303
software image verification
commands), FM-124
(install
series
SSH RSA host key pair, SEC-303
keychain
IPsec IKE keychain, SEC-287
software upgrade Comware image method,
FM-108
keyword
software upgrade non-ISSU method, FM-108
keyword alias configuration, FM-5
software upgrade procedure, FM-109
L troubleshooting, FM-125
label
IPsec ACL rule keywords, SEC-256
troubleshooting failure to execute, FM-125
IP routing RIB label max lifetime, IPR-3
IST
LACP
MST region, LSW-79
Ethernet link aggregation, LSW-43
J MAD. See LACP MAD
jumbo frame support (Ethernet interface), LSW-3
LACP MAD
K IRF fabric LACP MAD configuration, IRF-29
keepalive
IRF LACP MAD, IRF-8
IPsec IKE function, SEC-289
IRF LACP MAD configuration, IRF-24
IPsec IKE NAT function, SEC-289
LAN
107
Ethernet link aggregation load sharing mode,
LSW-47
802.1X overview, SEC-62
device management, FM-145
Ethernet link aggregation local-first load sharing,
LSW-54
IPPO (IPPO), IPSER-124
LAN switching
Ethernet link aggregation maintain, LSW-56
displaying LLDP, LSW-257
Ethernet link aggregation static mode, LSW-42
Ethernet aggregate interface, LSW-50
Ethernet
LSW-50
aggregate
interface
Ethernet link aggregation traffic redirection,
LSW-56
(description),
IP subnet-based VLAN configuration, LSW-140,
LSW-147
Ethernet aggregate interface (ignored VLAN),
LSW-51
LLDP basic concepts, LSW-235
Ethernet link aggregate group Selected ports
min/max, LSW-51
LLDP basic configuration, LSW-242, LSW-258
LLDP CDP compatibility, LSW-248
Ethernet link aggregate interface (expected
bandwidth), LSW-52
Ethernet link aggregate
settings, LSW-53
interface
LLDP configuration,
LSW-258
default
LSW-241,
LLDP configuration (CDP-compatible), LSW-262
LLDP DCBX configuration, LSW-264
Ethernet link aggregate interface shutdown,
LSW-53
MAC-based VLAN configuration, LSW-135,
LSW-145
Ethernet link aggregation (dynamic), LSW-59
MAC-based VLAN
LSW-136, LSW-139
Ethernet link aggregation (static), LSW-57
Ethernet link aggregation basic concepts,
LSW-40
Ethernet link aggregation
LSW-40, LSW-47, LSW-57
LSW-235,
dynamic
assignment,
MAC-based VLAN server assignment, LSW-138,
LSW-140
configuration,
MAC-based VLAN static assignment, LSW-136,
LSW-139
Ethernet link aggregation display, LSW-56
MRP implementation, LSW-185
Ethernet link aggregation dynamic mode,
LSW-43
MVRP configuration,
LSW-192
Ethernet link aggregation edge aggregate
interface, LSW-47, LSW-52, LSW-63
LSW-185,
MVRP display, LSW-192
Ethernet link aggregation group, LSW-48
MVRP GVRP compatibility, LSW-191
Ethernet link aggregation group (dynamic),
LSW-49
MVRP maintain, LSW-192
Ethernet
LSW-48
link
aggregation
group
LSW-188,
MVRP protocols and standards, LSW-188
(static),
MVRP
registration
LSW-190
Ethernet link aggregation group load sharing
mode, LSW-54
mode
configuration,
MVRP timer configuration, LSW-190
port isolation configuration, LSW-65
Ethernet link aggregation LACP, LSW-43
port isolation configuration (multiple isolation
groups), LSW-66
Ethernet link aggregation load sharing, LSW-53,
LSW-61
port isolation display, LSW-65
108
VLAN protocols and standards, LSW-129
port isolation group assignment (multiple),
LSW-65
voice VLAN CDP advertisement configuration,
LSW-179
port-based VLAN assignment (access port),
LSW-132
voice VLAN display, LSW-180
port-based VLAN assignment (hybrid port),
LSW-134
voice VLAN LLDP advertisement configuration,
LSW-179
port-based VLAN assignment (trunk port),
LSW-133
voice VLAN LLDP enable, LSW-178
voice VLAN LLDP enable restrictions, LSW-179
port-based VLAN configuration, LSW-131
voice VLAN port operation configuration
(automatic assignment), LSW-176, LSW-180
private VLAN configuration, LSW-154, LSW-157
private VLAN display, LSW-157
voice VLAN port operation configuration
(manual assignment), LSW-177, LSW-182
private VLAN promiscuous port configuration,
LSW-157
private VLAN trunk
configuration, LSW-160
promiscuous
voice VLAN port operation configuration
restrictions (automatic assignment), LSW-176
port
voice VLAN port operation configuration
restrictions (manual assignment), LSW-177
private
VLAN
trunk
promiscuous+trunk
secondary port configuration, LSW-163
Layer 2
protocol-based VLAN configuration, LSW-141,
LSW-149
Ethernet OAM basic configuration, HA-4
Ethernet OAM configuration, HA-1, HA-4
QinQ basic configuration, LSW-209
interface configuration (Ethernet), LSW-1
QinQ configuration, LSW-203, LSW-209
interface storm suppression (Ethernet), LSW-9
QinQ configuration restrictions, LSW-205
IP multicast protocols and standards, MCAST-10
QinQ CVLAN tag TPID value, LSW-207
IPv6 PIM snooping configuration, MCAST-86,
MCAST-87, MCAST-88
QinQ implementation, LSW-204
QinQ protocols and standards, LSW-204
QinQ SVLAN tag 802.1p priority, LSW-207
LAN switching
LSW-258
QinQ SVLAN tag TPID value, LSW-207
LAN switching LLDP configuration, LSW-258
QinQ VLAN tag TPID value, LSW-206
LAN switching LLDP group-based WRR queuing,
LSW-255
QinQ
VLAN
transparent
configuration, LSW-211
transmission
LLDP
basic
configuration,
LAN switching LLDP trapping, LSW-256
secondary VLAN Layer 3 communication,
LSW-167
LAN switching LLDP+DCBX TLV advertisement,
LSW-251
VLAN basic configuration, LSW-129
LAN switching LLDP-MED trapping, LSW-256
VLAN configuration, LSW-128, LSW-144
loop detection configuration,
LSW-122, LSW-124
LSW-120,
MFF
configuration,
SEC-379
SEC-377,
VLAN display, LSW-143
VLAN group configuration, LSW-143
VLAN interface basics, LSW-130
SEC-375,
MFF manual-mode in ring network, SEC-380
VLAN maintain, LSW-143
MFF manual-mode in tree network, SEC-379
VLAN port-based configuration, LSW-144
109
VLAN mapping configuration (1:2), LSW-225,
LSW-232
multi-CND QCN configuration, QACL-105
PIM snooping configuration,
MCAST-42, MCAST-43
MCAST-41,
VLAN mapping configuration (2:2), LSW-226,
LSW-232
port mirroring configuration, NM-171, NM-182
VLAN mapping configuration (M:1), LSW-221,
LSW-227
QCN basic configuration, QACL-102
QCN configuration, QACL-95, QACL-100,
QACL-102
Layer 3
DHCP BOOTP client configuration, IPSER-81,
IPSER-82
remote port mirroring, NM-184
remote port mirroring configuration, NM-177
DHCP client configuration, IPSER-65, IPSER-67
TRILL configuration, TRILL-1, TRILL-7, TRILL-25
DHCP overview, IPSER-25
TRILL forwarding mechanisms, TRILL-3
troubleshooting IGMP snooping
multicast forwarding, MCAST-39
Layer
2
troubleshooting MLD snooping
forwarding, MCAST-85
Layer
2
DHCP relay agent, IPSER-62
DHCP relay agent configuration, IPSER-55,
IPSER-56
DHCP relay agent Option 82, IPSER-63
DHCP server configuration, IPSER-32, IPSER-34,
IPSER-47
voice VLAN configuration, LSW-170, LSW-180
Layer 2 Ethernet interface
DHCP server IP address dynamic assignment,
IPSER-49
cable connection, LSW-13
fiber port, LSW-11
MDIX mode, LSW-12
DHCP server IP address static assignment,
IPSER-47
storm control configuration, LSW-10
DHCP server option customization, IPSER-53
DHCP server subnet, IPSER-52
Layer 2 LAN switching
cut-through forwarding configuration, LSW-270
DHCP server user class, IPSER-50
displaying spanning tree, LSW-112
DHCP snooping basic configuration, IPSER-78
Ethernet
LSW-49
link
aggregation
group
DHCPv6 client
IPSER-190
(static),
maintaining spanning tree, LSW-112
MST region, LSW-87
MSTP configuration, LSW-112
private VLAN configuration, LSW-153
configuration,
IPSER-187,
DHCPv6 client IPv6 address
configuration, IPSER-190
acquisition
DHCPv6 client IPv6
configuration, IPSER-191
acquisition
prefix
PVST configuration, LSW-116
DHCPv6 client stateless DHCPv6 configuration,
IPSER-193
spanning tree configuration, LSW-68, LSW-112
DHCPv6 relay agent configuration, IPSER-183
spanning tree Digest Snooping, LSW-102,
LSW-103
DHCPv6 snooping configuration, IPSER-195,
IPSER-197, IPSER-202
VLAN mapping
LSW-219, LSW-227
Ethernet aggregate interface, LSW-50
configuration,
LSW-214,
Ethernet
LSW-50
VLAN mapping configuration (1:1), LSW-220,
LSW-227
110
aggregate
interface
(description),
MAC-based VLAN configuration, LSW-145
Ethernet link aggregate group Selected ports
min/max, LSW-51
port mirroring configuration, NM-171, NM-182
Ethernet link aggregate interface (expected
bandwidth), LSW-52
Ethernet link aggregate
settings, LSW-53
interface
port-based VLAN assignment (access port),
LSW-132
default
port-based VLAN assignment (hybrid port),
LSW-134
Ethernet link aggregate interface shutdown,
LSW-53
Ethernet link aggregation
LSW-40, LSW-47, LSW-57
port-based VLAN assignment (trunk port),
LSW-133
configuration,
port-based VLAN configuration, LSW-131
private VLAN configuration, LSW-157
Ethernet link aggregation edge aggregate
interface, LSW-47, LSW-52
private VLAN promiscuous port configuration,
LSW-157
Ethernet link aggregation group, LSW-48
private VLAN trunk
configuration, LSW-160
Ethernet link aggregation group (dynamic),
LSW-49
Ethernet
LSW-48
link
aggregation
group
promiscuous
port
private
VLAN
trunk
promiscuous+trunk
secondary port configuration, LSW-163
(static),
protocol-based VLAN configuration, LSW-141,
LSW-149
Ethernet link aggregation group load sharing
mode, LSW-54
Ethernet link aggregation load sharing, LSW-53
secondary VLAN Layer 3 communication,
LSW-167
Ethernet link aggregation local-first load sharing,
LSW-54
tracert, NM-3, NM-4
tracert node failure identification, NM-4
Ethernet link aggregation traffic redirection,
LSW-56
TRILL forwarding mechanisms, TRILL-5
interface configuration (Ethernet), LSW-1
TRILL VR configuration, TRILL-19
IP multicast protocols and standards, MCAST-9
UDP helper configuration, IPSER-132, IPSER-134
IP subnet-based VLAN configuration, LSW-140,
LSW-147
UDP helper conversion (broadcast to multicast),
IPSER-133
IPsec configuration, SEC-250, SEC-272
UDP helper conversion (broadcast to unicast),
IPSER-132
IPsec RIPng configuration, SEC-277
VLAN configuration, LSW-144
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
VLAN port-based configuration, LSW-144
voice VLAN configuration, LSW-170, LSW-180
IPsec tunnel for IPv4 packets (manual), SEC-272
LDAP
LAN switching LAN switching VLAN interface
basics, LSW-130
LAN switching
LSW-258
LLDP
basic
AAA configuration, SEC-1, SEC-16, SEC-48
configuration,
AAA implementation, SEC-9
AAA local user configuration, SEC-18
LAN switching LLDP configuration, LSW-258
AAA scheme, SEC-18
LAN switching LLDP trapping, LSW-256
administrator attribute, SEC-39
LAN switching LLDP-MED trapping, LSW-256
authentication, SEC-9
111
level
authentication server, SEC-41
information center system logs, NM-71
authorization, SEC-9
directory service, SEC-9
Lightweight Directory Access Protocol. Use LDAP
display, SEC-41
limiting
packet exchange process, SEC-10
ARP packet rate limit, SEC-360
protocols and standards, SEC-13
DHCP snooping packet rate limit, IPSER-77
scheme configuration, SEC-38
DHCPv6 snooping packet rate limit, IPSER-200
scheme creation, SEC-41
IPPO ICMP error message rate limit, IPSER-130
server creation, SEC-38
IPv6 ICMPv6 error message rate limit, IPSER-155
server IP address, SEC-39
port security secure MAC addresses, SEC-177
server SSH user authentication, SEC-54
QoS rate limit, QACL-42
line
server timeout period, SEC-39
troubleshooting
SEC-60
user
authentication
CLI user line assignment, FM-17
fails,
high availability DLDP DelayDown line failure
timer, HA-37
user attribute, SEC-40
login management CLI console/AUX common
user line settings, FM-21
versions, SEC-39
learning
login management CLI user line, FM-17
IPv6 ND dynamic neighbor entries max number,
IPSER-148
login management CLI user line identification,
FM-17
loop detection no-learning action, LSW-121
login management VTY common line settings,
FM-27
MAC address, LSW-20
MAC address learning disable, LSW-25
link
MAC address table learning priority, LSW-28
aggregation. See Ethernet link aggregation
MST learning port state, LSW-81
Ethernet OAM basic configuration, HA-4
lease
Ethernet OAM configuration, HA-1, HA-4, HA-11
DHCPv6 PD, IPSER-170
Ethernet OAM link monitoring configuration,
HA-5
leasing
DHCP IP address lease extension, IPSER-26
Ethernet OAM monitoring, HA-2
DHCPv6
IPSER-166
Ethernet OAM performance monitoring, HA-1
address/prefix
lease
renewal,
Ethernet OAM port action configuration, HA-8
leave message
FC configuration, FCoE-13
IGMP snooping, MCAST-16
FC FSPF interface LSR retransmission interval,
FCoE-59
legacy
spanning tree port mode, LSW-99
FC FSPF LSA packet type, FCoE-55
spanning tree port path cost calculation,
LSW-94
FC FSPF LSDB, FCoE-54
FC FSPF LSR, FCoE-54
legal banner type, FM-147
112
FC FSPF LSR arrival interval min, FCoE-57
link-down RRPPDU type, HA-49
FC FSPF LSR refresh interval min, FCoE-57
linktrace
FCoE configuration, FCoE-13
CFD function, HA-16
high availability DLDP automatic unidirectional
link shutdown, HA-39
CFD functions, HA-16
CFD linktrace configuration, HA-22
high availability DLDP configuration, HA-32,
HA-36, HA-39
Linux
displaying kernel thread (PMM), NM-201
high availability DLDP manual unidirectional
link shutdown, HA-42
information center log host output, NM-86
kernel thread, NM-199
information center interface link up/link down
log generation, NM-83
IRF fabric recovery, IRF-27
kernel thread deadloop detection (PMM),
NM-200
IRF link down report delay, IRF-23
kernel thread PMM, NM-200
IRF link load sharing mode, IRF-19
kernel thread starvation detection (PMM),
NM-201
link layer discovery protocol. Use LLDP
maintaining kernel thread (PMM), NM-201
Monitor Link configuration, HA-120, HA-121,
HA-122
PMM, NM-199
LLDP
MSTP configuration, LSW-112
PVST configuration, LSW-116
802.1p-to-local priority mapping, LSW-254
RRPP link down mechanism, HA-51
advertisable TLV configuration, LSW-244
Smart Link backup, HA-100
agent, LSW-235
Smart Link configuration, HA-98, HA-101,
HA-105
APP parameter configuration, LSW-252
Smart Link group configuration (multiple group
load sharing), HA-110
basic configuration, LSW-242, LSW-258
Smart Link group configuration (single group),
HA-105
CDP compatibility configuration, LSW-248
basic concepts, LSW-235
bridge mode configuration, LSW-243
Smart Link links, HA-99
CDP-compatible configuration, LSW-262
Smart Link+Track collaboration, HA-114
configuration, LSW-235, LSW-241, LSW-258
spanning tree configuration, LSW-68, LSW-82,
LSW-112
DCBX configuration, LSW-250, LSW-264
spanning tree hello time, LSW-91
enable, LSW-242
spanning tree port link type configuration,
LSW-98
ETS parameter configuration, LSW-254
displaying, LSW-257
EVB LLDP configuration, EVB-4
TRILL configuration, TRILL-1, TRILL-7, TRILL-25
group-based WRR queuing, LSW-255
TRILL link cost configuration, TRILL-11
how it works, LSW-240
TRILL link state database, TRILL-1
LAN switching LLDP+DCBX TLV advertisement,
LSW-251
TRILL link state protocol data unit, TRILL-1
TRILL port link type, TRILL-10
113
receiving, LSW-241
LAN switching LLDP-MED trapping configuration,
LSW-256
transmitting, LSW-241
LLDP frame encapsulation format, LSW-248
LLDPDU
LLDP frame format, LSW-236
LAN switching
LSW-258
LLDP frame reception, LSW-241
LLDPDU management address TLV, LSW-240
LLDP configuration, LSW-235
LLDPDU TLVs, LSW-237
LLDP parameters, LSW-247
management address configuration, LSW-246
encoding
configuration,
LLDP basic configuration, LSW-242
LLDPDU TLV types, LSW-237
address
basic
LAN switching LLDP configuration, LSW-241,
LSW-258
LLDP frame transmission, LSW-241
management
LSW-246
LLDP
management address configuration, LSW-246
format,
management
LSW-246
OpenFlow LLDP frame matching restrictions,
OF-21
address
encoding
format,
management address TLV, LSW-240
operating mode (disable), LSW-240
TLV basic management types, LSW-237
operating mode (Rx), LSW-240
TLV LLDP-MED types, LSW-237
operating mode (Tx), LSW-240
TLV organization-specific types, LSW-237
LM
operating mode (TxRx), LSW-240
operating mode set, LSW-243
CFD function, HA-16
parameter set, LSW-247
CFD functions, HA-16
PFC parameter configuration, LSW-255
CFD LM configuration, HA-23
load
polling enable, LSW-244
protocols and standards, LSW-241
balancing (RRPP intersecting rings), HA-55
reinitialization delay, LSW-244
balancing (RRPP single ring), HA-54
trapping configuration, LSW-256
balancing (RRPP), HA-51
load balancing
voice VLAN CDP advertisement configuration,
LSW-179
load balancing over TRILL distribution trees,
TRILL-17
voice VLAN information advertisement to IP
phones, LSW-171
NPV disruptive load balancing, FCoE-94,
FCoE-96
voice VLAN IP phone identification method,
LSW-170, LSW-171
load sharing
voice VLAN LLDP advertisement configuration,
LSW-179
Ethernet
LSW-53
voice VLAN LLDP enable, LSW-178
link
aggregation
configuration,
Ethernet link aggregation group load sharing,
LSW-47
LLDP frame
Ethernet link aggregation load sharing mode,
LSW-54
encapsulated in Ethernet II format, LSW-236
encapsulated in SNAP format, LSW-236
encapsulation format, LSW-248
114
IRF fabric access local login, IRF-19
Ethernet link aggregation local-first load sharing,
LSW-54
key pair creation, SEC-207
Ethernet link aggregation packet type-based
load sharing, LSW-47
key pair destruction, SEC-209
MAC authentication, SEC-101
Ethernet link aggregation per-flow load sharing,
LSW-47
MAC authentication (local), SEC-111
Ethernet link aggregation per-flow load sharing
algorithm settings, LSW-55
NMM PTP clock priority, NM-64
Ethernet link aggregation per-packet load
sharing, LSW-47
PKI digital certificate, SEC-216
NMM PTP clock source type, NM-53
port mirroring, NM-172
IP routing load sharing, IPR-2
port mirroring configuration, NM-173
IRF mode configuration, IRF-19
port mirroring group creation, NM-174
IRF mode configuration (global), IRF-20
port mirroring group monitor port, NM-175
IRF mode configuration (port-specific), IRF-20
port mirroring group source port, NM-174
Layer 2 Ethernet link aggregation configuration,
LSW-61
QoS priority mapping local precedence,
QACL-26
Smart Link, HA-100
RBAC local AAA
configuration, FM-59
Smart Link group configuration (multiple group
load sharing), HA-110
emergency shell system software image, FM-141
configuration,
user
RBAC user role local AAA authentication,
FM-55
loading
NMM NETCONF
NM-254
authentication
security password control local user parameters,
SEC-200
NM-253,
troubleshooting PKI certificate obtain failure,
SEC-245
local
troubleshooting PKI certificate request failure,
SEC-246
802.1X authorization VLAN, SEC-71
AAA local accounting method, SEC-12
troubleshooting PKI local certificate import
failure, SEC-248
AAA local authentication, SEC-12
AAA local authentication configuration, SEC-16
local 802.1X authentication
AAA local authorization method, SEC-12
QoS, SEC-396
AAA
SSH
user
local
authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
user profile configuration, SEC-396
local 802.1X authentication configuration
QoS, SEC-396
Ethernet link aggregation local-first load sharing,
LSW-54
local 802.1X authorization
Ethernet link aggregation per-flow load sharing
algorithm settings, LSW-55
QoS, SEC-396
user profile configuration, SEC-396
host public key display, SEC-209
local 802.1X authorization configuration
host public key distribution, SEC-208
QoS, SEC-396
host public key export, SEC-208
local clock as reference source, NM-27
115
information center log output (UNIX log host),
NM-85
local port mirroring
configuration, NM-186
information center log save (log file), NM-79
local precedence
information center security log file management,
NM-81
priority marking configuration, QACL-65
local precedence marking
information center security log management,
NM-80
configuration, QACL-66
local QoS ID marking, QACL-68
information center security log save (log file),
NM-80
location
process
HA-140
placement
affinity
information center security logs, NM-71
configuration,
information center synchronous log output,
NM-82
locking
NMM NETCONF
NM-245
configuration,
information center system log destinations,
NM-72
NM-243,
information center system log formats, NM-73
logging
ACL packet filtering log interval, QACL-11
information center system log levels, NM-71
ARP logging enable, IPSER-6
information center trace log file max size,
NM-82
information center common logs, NM-71
IPsec packet logging enable, SEC-268
information center configuration, NM-6, NM-71,
NM-76, NM-84
loop detection configuration,
LSW-122, LSW-124
information center custom logs, NM-71
LSW-120,
NMM SNMP configuration, NM-98
information center diagnostic log save (log file),
NM-81
security password events, SEC-197
system information diagnostic log default output
rules, NM-72
information center diagnostic logs, NM-71
information center duplicate log suppression,
NM-83
system information hidden log default output
rules, NM-73
information center hidden logs, NM-71
system information security log default output
rules, NM-73
information center interface link up/link down
log generation, NM-83
system information trace log default output rules,
NM-73
information center log default output rules,
NM-72
TRILL neighbor change logging, TRILL-21
information center log output (console), NM-77,
NM-84
logging in
AAA concurrent login user max, SEC-47
information center log output (Linux log host),
NM-86
login management CLI console/AUX common
user line settings, FM-21
information center log output (log buffer),
NM-78
information center log output (log host), NM-78
login management CLI console/AUX none
authentication, FM-19
information center log output (monitor terminal),
NM-77
login management CLI console/AUX password
authentication, FM-20
116
security password user login control, SEC-196
login management CLI console/AUX scheme
authentication, FM-21
login management
login management CLI local console/AUX port
login, FM-19
CLI access, FM-17
login management CLI login, FM-17
CLI console/AUX common user line settings,
FM-21
login management CLI login authentication
modes, FM-18
CLI console/AUX none authentication, FM-19
CLI console/AUX password authentication,
FM-20
login management CLI user lines, FM-17
login management CLI user roles, FM-18
CLI console/AUX scheme authentication, FM-21
login management console port login, FM-15
CLI local console/AUX port login, FM-19
login management modem login, FM-32
CLI login authentication modes, FM-18
login management SSH login, FM-30
CLI user line assignment, FM-17
login management SSH login configuration on
device, FM-30
CLI user line identification, FM-17
CLI user roles, FM-18
login management SSH server login, FM-32
console port access, FM-15
login management Telnet login, FM-23
login management
configuration, FM-24
Telnet
login
displaying CLI login, FM-35
device
DSCP value for outgoing Telnet packet, FM-27
login management Telnet login max number
concurrent users, FM-27
maintaining CLI login, FM-35
login management
authentication, FM-24
overview, FM-14
Telnet
login
modem login, FM-32
none
SNMP access control, FM-40
login management Telnet login password
authentication, FM-25
login management Telnet
authentication, FM-26
login
SNMP device access, FM-37
SSH login, FM-30
scheme
SSH login control, FM-38
login management Telnet server login, FM-29
SSH login on device, FM-30
login management VTY common line settings,
FM-27
SSH server login, FM-32
Telnet login, FM-23
logging out
Telnet login control, FM-38, FM-39
security portal authentication users, SEC-136
Telnet login device configuration, FM-24
logical
Telnet login max number concurrent users,
FM-27
OpenFlow port type, OF-2
login
Telnet login none authentication, FM-24
device banner login type, FM-147
Telnet login password authentication, FM-25
security password expired login, SEC-195
Telnet login scheme authentication, FM-26
security password user first login, SEC-196
Telnet server login, FM-29
security password user login attempt limit,
SEC-196
user access control, FM-38
117
user lines, FM-17
CFD functions, HA-16
VTY common line settings, FM-27
Ethernet OAM remote loopback, HA-1, HA-3
interface loopback test (Ethernet), LSW-5
Login-Service attribute (RADIUS), SEC-31
loopback interface
loop
MSTP configuration, LSW-112
configuration, LSW-15
PVST configuration, LSW-116
displaying, LSW-16
RIP routing loop prevention, IPR-11
maintaining, LSW-16
LSA
Smart Link configuration, HA-98, HA-101,
HA-105
FC FSPF LSA packet type, FCoE-55
Smart Link group configuration (multiple group
load sharing), HA-110
LSDB
FC FSPF LSDB, FCoE-54
Smart Link group configuration (single group),
HA-105
TRILL LSP parameter, TRILL-13
LSP
Smart Link+Track collaboration, HA-114
spanning tree configuration, LSW-68, LSW-82,
LSW-112
TRILL LSP fast advertisement, TRILL-15
spanning tree loop guard, LSW-109
TRILL LSP parameter and feature, TRILL-13
TRILL LSP parameter, TRILL-13
loop detection
LSR
configuration, LSW-120, LSW-122, LSW-124
displaying, LSW-124
FC FSPF interface LSR retransmission interval,
FCoE-59
enable, LSW-122
FC FSPF LSR, FCoE-54
enable (global), LSW-122
FC FSPF LSR arrival interval min, FCoE-57
enable (port-specific), LSW-123
FC FSPF LSR refresh interval min, FCoE-57
LSU
interval, LSW-121
FC FSPF LSU packet type, FCoE-55
interval setting, LSW-124
mechanisms, LSW-120
M port status auto recovery, LSW-122
M:1 VLAN mapping
protection action configuration, LSW-123
application scenario, LSW-214
protection
LSW-123
ARP detection (dynamic IP address assignment),
LSW-221
action
configuration
protection action configuration
aggregate interface), LSW-124
(global),
(Layer
ARP snooping (static IP address assignment),
LSW-223
2
configuration, LSW-221, LSW-227
protection action configuration (Layer 2 Ethernet
interface), LSW-123
configuration (dynamic IP address assignment),
LSW-221
protection actions, LSW-121
configuration (static IP address assignment),
LSW-223
loopback
CFD configuration, HA-22
CFD function, HA-16
118
customer-side port (dynamic
assignment), LSW-222
IP
entry configuration, LSW-22
address
entry creation, LSW-20
customer-side port (static IP address assignment),
LSW-224
DHCP snooping (dynamic
assignment), LSW-221
IP
entry types, LSW-21
learning priority assignment, LSW-28
address
MAC address learning disable, LSW-25
MAC address move notification, LSW-30
implementation, LSW-216, LSW-217
network-side port (dynamic
assignment), LSW-222
IP
manual entries, LSW-20
address
multiport unicast entry, LSW-23
network-side port (static IP address assignment),
LSW-224
static source check disable, LSW-32
unknown frame forwarding rule, LSW-27
MAC
MAC address table learning limit on interface
802.1X MAC-based access control, SEC-71
setting, LSW-27
address. See MAC addressing
MAC addressing
ARP attack detection (source MAC-based),
SEC-361
ARP attack detection (source MAC-based),
SEC-362
authentication. See MAC authentication
ARP attack protection configuration, SEC-357
SSL services, SEC-342
ARP configuration, IPSER-1, IPSER-7
MAC address
ARP dynamic entry check enable, IPSER-6
MAC address retaining on TRILL port, TRILL-21
ARP fast-reply configuration, IPSER-18
MAC address
ARP multiport entry configuration, IPSER-8
TRILL VR MAC address learning for non-TRILL
device, TRILL-20
ARP packet source MAC consistency check,
SEC-363
MAC address
ARP snooping configuration, IPSER-17
802.1X authentication (client-initiated), SEC-65
ARP static configuration, IPSER-7
MAC address
common proxy ARP configuration, IPSER-15
802.1X authentication (access device initiated),
SEC-65
DHCP BOOTP client configuration, IPSER-81,
IPSER-82
MAC address move
DHCP client configuration, IPSER-65, IPSER-67
ARP fast update enabling, LSW-32
Ethernet multicast MAC address, MCAST-8
MAC address table
address learning, LSW-20
EVB S-channel MAC
configuration, EVB-8
address synchronization, LSW-29
FCoE frame transmission, FCoE-7
blackhole entry, LSW-23
gratuitous ARP configuration, IPSER-11
configuration, LSW-20, LSW-21, LSW-34
gratuitous ARP packet learning, IPSER-11
displaying, LSW-33
gratuitous ARP periodic packet send, IPSER-11
dynamic aging timer, LSW-26
IP source guard (IPSG) configuration, SEC-346,
SEC-348, SEC-351
enabling SNMP notification, LSW-33
119
address
learning
IPv4 source guard (IPv4SG) dynamic binding
configuration, SEC-352
OpenFlow dynamic MAC address support,
OF-14
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
port
security
client
macAddressElseUserLoginSecure, SEC-189
IPv4 source guard (IPv4SG) static binding
configuration, SEC-351
port security MAC address autoLearn, SEC-184
port security macAddressWithRadius, SEC-176
IPv6 EUI-64 address-based interface identifiers,
IPSER-139
port security secure MAC address, SEC-180
port security secure MAC address port limit,
SEC-177
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
proxy ARP configuration, IPSER-14
IPv6 source guard (IPv6SG) static binding
configuration, SEC-354
troubleshooting port security secure MAC
addresses, SEC-193
IRF bridge MAC persistence, IRF-20
VLAN frame encapsulation, LSW-128
MAC authentication
MAC authentication, SEC-105, SEC-111
MAC authentication (local), SEC-111
ACL assignment, SEC-104, SEC-115
MAC authentication (RADIUS-based), SEC-113
authorization VLAN, SEC-102
MAC authentication configuration, SEC-101
concurrent port users max, SEC-107
MAC-based VLAN configuration, LSW-135
configuration, SEC-101, SEC-105, SEC-111
MAC-based VLAN
LSW-136, LSW-139
critical VLAN, SEC-103
dynamic
assignment,
critical VLAN configuration, SEC-109
MAC-based VLAN server assignment, LSW-138,
LSW-140
delay configuration, SEC-108
MAC-based VLAN static assignment, LSW-136,
LSW-139
domain specification, SEC-106
MFF
configuration,
SEC-379
SEC-375,
display, SEC-111
enable, SEC-105
SEC-377,
guest VLAN, SEC-102
MFF manual-mode in ring network, SEC-380
guest VLAN configuration, SEC-109
MFF manual-mode in tree network, SEC-379
keep-online, SEC-110
MLD snooping basic configuration, MCAST-64
local authentication, SEC-101, SEC-111
MLD snooping configuration,
MCAST-63, MCAST-77
maintain, SEC-111
MCAST-60,
multi-VLAN mode configuration, SEC-108
MLD snooping group policy+simulated joining
configuration, MCAST-77
periodic reauthentication, SEC-104
configuration,
port security authentication control mode,
SEC-173
NMM PTP non-Pdelay message MAC address,
NM-62
port
security
client
macAddressElseUserLoginSecure, SEC-189
OpenFlow, OF-11
port security client userLoginWithOUI, SEC-186
MLD snooping
MCAST-79
static
port
port security configuration, SEC-173, SEC-176,
SEC-184
120
port security features, SEC-179
flow table dynamic aware, OF-24
port security intrusion protection, SEC-179
flow table restrictions, OF-23
port security MAC address autoLearn, SEC-184
flow table table-miss entry, OF-23
MAC-IP flow table
port security MAC move, SEC-182
port security
SEC-176
MAC+802.1X
support capabilities, OF-22
authentication,
MAD
port security mode, SEC-178
ARP. See ARP MAD
port security NTK, SEC-179
IRF fabric recovery, IRF-27
RADIUS-based, SEC-101, SEC-113
IRF MAD, IRF-3
timer setting, SEC-107
IRF MAD configuration, IRF-23
user account format, SEC-106
IRF MAD detection, IRF-7
user account policies, SEC-101
LACP. See LACP MAD
user profile assignment, SEC-104
ND. See ND MAD
VLAN assignment, SEC-102
main
MAC Information
software upgrade image set, FM-107
change notification interval, LSW-37
main next-startup configuration file, FM-103
configuration, LSW-36, LSW-37
maintaining
enable, LSW-36
802.1X, SEC-90
mode setting, LSW-36
AAA HWTACACS, SEC-38
queue length setting, LSW-37
AAA RADIUS, SEC-32
MAC learning
ACL, QACL-12
port security autoLearn MAC learning control,
SEC-175
ARP, IPSER-7
ARP detection, SEC-366
port security MAC learning control modes,
SEC-173
ARP snooping, IPSER-17
CLI login, FM-35
port security secure MAC learning control,
SEC-175
crypto engine, SEC-383
MAC relay (LLDP agent), LSW-235
device management configuration, FM-162
MAC-based VLAN
DHCP relay agent, IPSER-61
configuration, LSW-135, LSW-145
DHCP server, IPSER-46
dynamic assignment, LSW-136, LSW-139
DHCP snooping, IPSER-78
dynamic assignment restrictions, LSW-138
DHCPv6 client, IPSER-190
server assignment, LSW-138, LSW-140
DHCPv6 relay agent, IPSER-184
static assignment, LSW-136, LSW-139
DHCPv6 server, IPSER-176
MAC-forced forwarding. Use MFF
DHCPv6 snooping, IPSER-201
MAC-IP
Ethernet link aggregation, LSW-56
flow table cooperation, OF-24
121
Ethernet OAM, HA-10
QCN, QACL-102
EVB, EVB-11
QoS aggregate CAR, QACL-79
FC forwarding, FCoE-60
QoS policies, QACL-24
FC routing, FCoE-60
RIP, IPR-24
FC zones, FCoE-88
RIPng, IPR-42
FTP connection, FM-80
RRPP, HA-63
high availability DLDP, HA-39
security password control, SEC-202
IGMP snooping, MCAST-30
security portal authentication, SEC-136
information center, NM-84
Smart Link, HA-105
interface, LSW-16
software upgrade image settings, FM-112
interface (Ethernet), LSW-14
spanning tree, LSW-112
IP routing table, IPR-4
TRILL, TRILL-24
IP services fast forwarding, IPSER-118
UDP helper, IPSER-134
IP source guard (IPSG), SEC-350
VFC interface, FCoE-16
IPPO, IPSER-131
VLAN, LSW-143
maintenance
IPsec, SEC-271
IPsec IKE, SEC-292
association end point. See MEP
IPv4 DNS, IPSER-91
association intermediate point. See MIP
IPv4 source guard (IPv4SG), SEC-350
CFD 1-way DM configuration, HA-23
IPv6 basics, IPSER-158
CFD 2-way DM configuration, HA-24
IPv6 fast forwarding, IPSER-204
CFD AIS configuration, HA-23
IPv6 multicast VLAN, MCAST-98
CFD continuity check, HA-21
IPv6 PIM snooping, MCAST-88
CFD EAIS configuration, HA-24
IPv6 source guard (IPv6SG), SEC-350
CFD linktrace configuration, HA-22
ISSU, FM-125
CFD LM configuration, HA-23
MAC authentication, SEC-111
CFD loopback configuration, HA-22
MLD snooping, MCAST-76
CFD maintenance point, HA-14
multicast VLAN, MCAST-53
CFD MEP configuration, HA-19
MVRP, LSW-192
CFD MEP list, HA-15
NMM PTP, NM-65
CFD MIP auto-generation rule, HA-20
PIM snooping, MCAST-43
CFD service instance configuration, HA-19
PMM, NM-199
CFD TST configuration, HA-24
PMM kernel threads, NM-201
major-fault RRPPDU type, HA-49
PMM Linux, NM-199
management address
LAN switching LLDP encoding format, LSW-246
process monitoring and maintenance. See
PMM
122
management Ethernet port configuration, FM-139
M:1 VLAN mapping, LSW-214
Management Information Base. Use MIB
MLD snooping basic configuration, MCAST-64
managing
MLD snooping configuration,
MCAST-63, MCAST-77
CLI display command output, FM-13
MCAST-60,
MLD snooping group policy+simulated joining
configuration, MCAST-77
configuration files, FM-94
device, FM-145, See device management, See
device management
MLD snooping
MCAST-79
emergency shell file system, FM-138
static
port
configuration,
MSTP VLAN-to-instance mapping table, LSW-79
file system, FM-85
file system directories, FM-89
NPV downlink-uplink
FCoE-94, FCoE-96
file system files, FM-86
QCN CND priority mapping, QACL-99
file system storage media, FM-90
interface
mapping,
masking
FTP server directories, FM-78
IP addressing, IPSER-21
information center security log file, NM-81
master
information center security logs, NM-80
IRF master election, IRF-6
public keys, SEC-206, SEC-211
MSTP master port, LSW-80
manual
fabric reconfiguration (manual), FCoE-40
NMM
PTP
master-member/subordinate
relationship, NM-52
FIPS mode (manual reboot), SEC-385
RRPP node specification, HA-60
FIPS mode entry (manual reboot), SEC-391
RRPP node type, HA-48
match order
FIPS mode exit (manual reboot), SEC-387,
SEC-393
ACL auto, QACL-2
FTP server connection release, FM-75
ACL config, QACL-2
IPsec IPv6 routing protocol profile (manual),
SEC-269
matching
flow mirroring match criteria, NM-188
IPv6 address configuration, IPSER-145
NMM NETCONF data filtering (conditional
match), NM-256, NM-260
MFF manual-mode in ring network, SEC-380
MFF manual-mode in tree network, SEC-379
voice VLAN assignment mode, LSW-173
NMM NETCONF data filtering (full match),
NM-256
voice VLAN port operation configuration,
LSW-177, LSW-182
NMM NETCONF data filtering (regex match),
NM-256, NM-258
OpenFlow LLDP frame matching restrictions,
OF-21
mapping
1:1 VLAN mapping, LSW-214
OpenFlow matching restrictions, OF-18
1:2 VLAN mapping, LSW-216
max age timer (STP), LSW-76
2:2 VLAN mapping, LSW-216
maximum segment size. Use MSS
FC-MAP value, FCoE-18
mCheck
FCoE VLAN-VSAN mapping, FCoE-17
123
device memory usage threshold, FM-158
spanning tree, LSW-101
process
HA-139
MD5
high availability DLDP authentication, HA-38
placement
configuration,
HA-138,
MEP
high availability DLDP authentication mode,
HA-34
CFD, HA-14
CFD 1-way DM configuration, HA-23
MDC
CFD 2-way DM configuration, HA-24
login management overview, FM-14
MDI mode (Ethernet interface), LSW-12
CFD AIS configuration, HA-23
MDIX mode (Ethernet interface), LSW-12
CFD continuity check, HA-21
mechanism
CFD EAIS configuration, HA-24
RRPP broadcast storm suppression, HA-52
CFD linktrace configuration, HA-22
RRPP fast detection, HA-52
CFD LM configuration, HA-23
RRPP link down, HA-51
CFD loopback configuration, HA-22
RRPP polling, HA-51
CFD MEP configuration, HA-19
MED (LLDP-MED trapping), LSW-256
CFD MEP list, HA-15
member
CFD TST configuration, HA-24
merge
eIRF membership establishment, IRF-47
IGMP snooping member port, MCAST-14
IRF master election, IRF-6
IRF device member ID assignment, IRF-15
IRF merge, IRF-4
message
IRF device member priority, IRF-16
IRF fabric access, IRF-19
ARP attack protection configuration, SEC-357
IRF member device description, IRF-19
ARP configuration, IPSER-1, IPSER-7
IRF member ID, IRF-2
ARP fast-reply configuration, IPSER-18
IRF member priority, IRF-4
ARP message format, IPSER-1
IRF member role, IRF-2
ARP multiport entry configuration, IPSER-8
IRF physical interface connection, IRF-16
ARP snooping configuration, IPSER-17
IRF physical interface+port bind, IRF-17
ARP static configuration, IPSER-7
MLD snooping member port, MCAST-60
CLI command line error message, FM-7
common proxy ARP configuration, IPSER-15
member clock
DHCP format, IPSER-27
OC configuration, NM-58
DHCP-REQUEST message attack protection,
IPSER-76
member port
Smart Link group member ports, HA-102
DHCPv6 assignment (4 messages), IPSER-165
membership report
DHCPv6 rapid assignment (2 messages),
IPSER-165
IGMP snooping, MCAST-16
MLD snooping, MCAST-62
gratuitous ARP configuration, IPSER-11
memory
124
gratuitous ARP packet learning, IPSER-11
OpenFlow asynchronous, OF-7
gratuitous ARP periodic packet send, IPSER-11
OpenFlow controller-to-switch, OF-6
IGMP snooping leave, MCAST-16
OpenFlow flow table modification message
restrictions, OF-21
IGMP snooping message 802.1p priority,
MCAST-26
OpenFlow packet-in message restrictions, OF-21
OpenFlow packet-out message restrictions,
OF-20
IPPO ICMP error message rate limit, IPSER-130
IPPO ICMP error message sending, IPSER-128
OpenFlow symmetric, OF-7
IPv6 ICMPv6 error message rate limit, IPSER-155
proxy ARP configuration, IPSER-14
IPv6 ICMPv6 message send, IPSER-155
QCN CNM format, QACL-96
IPv6 ND protocol, IPSER-140
MLD snooping
MCAST-72
802.1p
message
QCN data flow format, QACL-95
priority,
QCN format, QACL-95
MLD snooping basic configuration, MCAST-64
RIPv1 message zero field check enable, IPR-21
MLD snooping configuration,
MCAST-63, MCAST-77
RIPv2 message authentication configuration,
IPR-21
MCAST-60,
Smart Link flush, HA-99
MLD snooping done, MCAST-62
Message Authentication Code. Use MAC
MLD snooping fast-leave processing enable,
MCAST-68
message-of-the-day (MOTD) banner type, FM-147
MLD snooping group policy+simulated joining
configuration, MCAST-77
MLD snooping
MCAST-79
static
port
messgae
Smart Link flush message reception, HA-104
configuration,
Smart Link flush message send, HA-103
metadata
MRP JoinEmpty, LSW-185
OpenFlow matching restrictions, OF-18
MRP JoinIn, LSW-185
meter
MRP Leave, LSW-185
OpenFlow meter table, OF-5
MRP LeaveAll, LSW-185
metric
MRP New, LSW-185
MRP timers, LSW-187
IP routing RIP interface additional metric, IPR-29
NMM NETCONF format, NM-237
RIP additional routing metric configuration,
IPR-15
NMM NTP
NM-26
message processing disable,
RIPng routing metric configuration, IPR-37
MFF
NMM NTP message source interface, NM-26
NMM PTP announce message send interval,
NM-60
basic concepts, SEC-376
NMM PTP announcement interval, NM-60
display, SEC-379
NMM PTP Delay_Req message send interval,
NM-61
enable, SEC-377
NMM PTP message encapsulation protocol,
NM-62
manual-mode in ring network, SEC-380
configuration, SEC-375, SEC-377, SEC-379
how it works, SEC-377
125
manual-mode in tree network, SEC-379
basic concepts, MCAST-60
network port, SEC-376, SEC-377
basic configuration, MCAST-64
operation modes, SEC-376
configuration,
MCAST-77
periodic gateway probe enable, SEC-378
configuring
MCAST-69
protocols and standards, SEC-377
server IP address, SEC-378
the
MLD
MCAST-63,
snooping
querier,
display, MCAST-76
user port, SEC-376
done message, MCAST-62
MIB
LAN switching LLDP
LSW-242, LSW-258
MCAST-60,
basic
dynamic port aging timer, MCAST-61
configuration,
dynamic port aging timers, MCAST-66
dynamic router port change disable, MCAST-69
LAN switching LLDP configuration, LSW-235,
LSW-241, LSW-258
enable, MCAST-64
fast-leave processing enable, MCAST-68
login management SNMP device access,
FM-37
forwarding entries max, MCAST-66
NMM role-based access control, NM-91
general query, MCAST-62
NMM SNMP, NM-89
how it works, MCAST-62
NMM SNMP access control mode, NM-91
NMM SNMP Get operation, NM-90
IPv6
group
policy+simulated
configuration, MCAST-77
joining
NMM SNMP Set operation, NM-90
IPv6 multicast group policy, MCAST-73
NMM view-based access control, NM-89,
NM-91
IPv6 multicast group replacement, MCAST-76
IPv6 multicast groups max (on portl), MCAST-75
minimizing IPv6 ND link-local entries, IPSER-149
IPv6 multicast source port filtering, MCAST-74
minimum password length, SEC-194
IPv6 multicast unknown data drop, MCAST-74
MIP
maintain, MCAST-76
CFD, HA-14
message parameter configuration, MCAST-71
CFD MIP auto-generation rule, HA-20
MLD report, MCAST-62
mirroring
policy configuration, MCAST-73
flow. See flow mirroring
port feature configuration, MCAST-66
IPsec mirror image ACLs, SEC-256
protocols and standards, MCAST-63
IPsec non-mirror image ACLs, SEC-256
querier configuration, MCAST-82
port. See port mirroring
querier enable, MCAST-70
MLD
query source IPv6 address, MCAST-71
IPv6 multicast VLAN configuration, MCAST-93,
MCAST-95, MCAST-98
query/response
MCAST-70
snooping. See MLD snooping
parameter
configuration,
related ports, MCAST-60
MLD snooping
report suppression, MCAST-75
802.1p message priority, MCAST-72
simulated member host port, MCAST-68
126
static port configuration, MCAST-67, MCAST-79
FCoE VFC interface F, FCoE-6
troubleshooting, MCAST-85
FCoE VFC interface NP, FCoE-6
troubleshooting IPv6 multicast group policy,
MCAST-85
file system file/folder alert operation mode,
FM-92
troubleshooting MLD snooping
forwarding, MCAST-85
file system file/folder quiet operation mode,
FM-92
Layer
2
FIP snooping ENode, FCoE-102
version specification, MCAST-65
FIP snooping Ethernet interface operation,
FCoE-104
MLDv1 snooping version specification, MCAST-65
MLDv2 snooping version specification, MCAST-65
FIP snooping FCF, FCoE-102
mode
FIPS, SEC-385
802.1X EAP relay/termination comparison,
SEC-67
FTP active (PORT) operating mode, FM-73
802.1X multicast trigger, SEC-83
FTP ASCII transfer mode, FM-73
802.1X multicast trigger mode, SEC-65
FTP binary transfer mode, FM-73
802.1X unicast trigger, SEC-83
FTP passive (PASV) operating mode, FM-73
802.1X unicast trigger mode, SEC-65
high availability DLDP MD5 authentication,
HA-34
device system operating mode, FM-149
high availability
HA-34
Ethernet link aggregation dynamic, LSW-42,
LSW-43
Ethernet link aggregation static, LSW-42
high availability DLDP port shutdown auto mode,
HA-38
EVB S-channel RR mode, EVB-7
configuration
non-authentication,
high availability DLDP plaintext authentication,
HA-34
Ethernet link aggregation load sharing, LSW-47
fabric building
FCoE-47
DLDP
(dynamic),
high availability DLDP port shutdown manual
mode, HA-38
fabric building configuration (static), FCoE-44
FC advanced zoning, FCoE-80
interface Auto MDIX mode (Layer 2 Ethernet),
LSW-12
FC basic zoning, FCoE-80
interface MDI mode (Layer 2 Ethernet), LSW-12
FC feature support, FCoE-13
interface MDIX mode (Layer 2 Ethernet), LSW-12
FCF, FCoE-9, FCoE-10
IPsec ACL-based implementation aggregation,
SEC-253
FCoE fabric dynamic, FCoE-32
IPsec ACL-based
SEC-253
FCoE fabric static, FCoE-32
FCoE feature support, FCoE-13
implementation
per-host,
IPsec ACL-based implementation standard,
SEC-253
FCoE non-FCoE, FCoE-9
IPsec
application-based
SEC-254
FCoE port, FCoE-3
FCoE switch mode configuration, FCoE-13
implementation,
IPsec encapsulation transport, SEC-251
FCoE transit, FCoE-9, FCoE-11
IPsec encapsulation tunnel, SEC-251
FCoE VFC interface E, FCoE-6
IPsec IKE negotiation, SEC-252
127
PKI offline, SEC-222
IPsec IKE negotiation (time-based lifetime),
SEC-252
PKI online, SEC-222
IPsec IKE negotiation (traffic-based lifetime),
SEC-252
port security, SEC-178
port security authentication control, SEC-173
LAN switching LLDP customer bridge mode,
LSW-243
LAN switching
LSW-243
LLDP
disable,
port security autoLearn MAC learning control,
SEC-175
LSW-240,
port security MAC learning control, SEC-173
port security MAC learning control autoLearn,
SEC-173
LAN switching LLDP Rx, LSW-240, LSW-243
LAN switching LLDP service bridge mode,
LSW-243
port security MAC learning control secure,
SEC-173
LAN switching LLDP Tx, LSW-240, LSW-243
port
security
macAddressWithRadius
authentication, SEC-176
LAN switching LLDP TxRx, LSW-240, LSW-243
login management none CLI authentication,
FM-18
port security secure MAC learning control,
SEC-175
login management password CLI authentication,
FM-18
QCN CND defense disabled, QACL-99
QCN CND defense edge, QACL-99
login management scheme CLI authentication,
FM-18
QCN CND defense interior, QACL-99
MAC authentication multi-VLAN, SEC-108
QCN CND defense interiorReady, QACL-99
MAC Information syslog, LSW-36
security portal authentication, SEC-120
MAC Information trap, LSW-36
security portal authentication (cross-subnet),
SEC-121
MVRP registration, LSW-190
security portal authentication (direct), SEC-120
MVRP registration fixed, LSW-188
security portal
SEC-120
MVRP registration forbidden, LSW-188
MVRP registration normal, LSW-188
(re-DHCP),
spanning tree mCheck, LSW-101
NMM NTP broadcast association mode, NM-10
spanning tree MSTP, LSW-86
NMM NTP client/server association mode,
NM-10
spanning tree PVST, LSW-86
spanning tree RSTP, LSW-86
NMM NTP multicast association mode, NM-10
NMM
NTP
symmetric
association mode, NM-10
authentication
spanning tree STP, LSW-86
active/passive
table capacity mode, FM-163
NMM PTP timestamp single-step, NM-58
userLogin 802.1X authentication, SEC-175
NMM PTP timestamp two-step, NM-58
userLoginSecure
SEC-175
NPV, FCoE-9, FCoE-10
802.1X
authentication,
userLoginSecureExt
SEC-175
802.1X
authentication,
userLoginWithOUI
SEC-175
802.1X
authentication,
OpenFlow controller single, OF-10
OpenFlow instance, OF-8
voice VLAN assignment, LSW-173
OpenFlow connection interruption, OF-13
OpenFlow controller multiple, OF-10
128
Track+application
HA-128
voice VLAN assignment (automatic), LSW-173
voice VLAN assignment (manual), LSW-173
module
collaboration,
Track+detection module association, HA-129
voice VLAN port normal, LSW-174
Track+detection module collaboration, HA-127
voice VLAN port security, LSW-174
Track+interface
HA-130
model
IP multicast, MCAST-5
management
association,
Track+Smart Link association, HA-132
IP multicast ASM, MCAST-5
Track+static routing association, HA-131
IP multicast SFM, MCAST-5
Monitor Link
IP multicast SSM, MCAST-5
configuration, HA-120, HA-121, HA-122
modem
display, HA-122
login, FM-32
downlink
interface
configuration, HA-122
login management overview, FM-14
modifying
switchover
delay
group creation, HA-121
MAC address table blackhole entry, LSW-23
group member interface configuration, HA-121
MAC address table multiport unicast entry,
LSW-23
Smart Link collaboration, HA-100
monitor terminal
OpenFlow flow table modification message
restrictions, OF-21
information center log output, NM-77
monitoring
modular QoS. Use MQC
configuring local mirroring to support multiple
monitor ports, NM-176
module
device transceiver module diagnosis, FM-161
device CPU usage, FM-157
device transceiver module verification, FM-161
Ethernet OAM link, HA-2
feature module debug, NM-6
Ethernet OAM link monitoring configuration,
HA-5
information center configuration, NM-6, NM-71,
NM-76, NM-84
Ethernet OAM link performance, HA-1
NMM NETCONF configuration data retrieval
(all modules), NM-249
kernel thread PMM, NM-200
Monitor Link configuration, HA-120, HA-121,
HA-122
NMM NETCONF configuration data retrieval
(Syslog module), NM-250
NMM EAA configuration, NM-203, NM-211
NMM NETCONF data entry retrieval (interface
table), NM-251
NQA+Track+static
HA-128
routing
NMM EAA environment variable configuration
(user-defined), NM-206
collaboration,
NMM EAA event monitor, NM-203
NMM EAA event monitor policy element,
NM-204
Smart Link+Track+CFD collaboration, HA-137
static
routing+Track+NQA
HA-132
collaboration,
NMM EAA event monitor policy environment
variable, NM-205
Track configuration, HA-127, HA-128, HA-132
NMM EAA monitor policy, NM-204
Track+application module association, HA-131
129
IPPO interface
IPSER-126
NMM EAA monitor policy configuration,
NM-207
TCP
MSS
MST
NMM EAA monitor policy configuration (CLI),
NM-207, NM-211
region max hops, LSW-90
NMM EAA monitor policy configuration
(CLI-defined with environment variables),
NM-212
MSTI
calculation, LSW-82
NMM EAA monitor policy configuration (Tcl),
NM-209, NM-213
MRP, LSW-185
NMM EAA monitor policy suspension, NM-210
MSTP. See also STP
MST instance, LSW-79
NQA client threshold monitoring, NM-134
basic concepts, LSW-78
NQA threshold monitoring, NM-118
CIST, LSW-79
PMM Linux, NM-199
CIST calculation, LSW-81
process monitoring and maintenance. See
PMM
common root bridge, LSW-80
configuration, LSW-86, LSW-112
mounting
CST, LSW-79
file system storage media, FM-91
device implementation, LSW-82
moving
feature enable, LSW-100
file, FM-87
features, LSW-77
MPU
how it works, LSW-81
emergency shell device reboot, FM-142
IST, LSW-79
emergency shell use, FM-138, FM-142
mode set, LSW-86
ISSU, FM-115
MST region, LSW-79
ISSU (install series commands), FM-121
MST region configuration, LSW-87
ISSU (issu series commands), FM-118
MSTI, LSW-79
ISSU methods, FM-115
MSTI calculation, LSW-82
ISSU overview, FM-115
port roles, LSW-80
MQC
port states, LSW-81
QoS GTS, QACL-41
protocols and standards, LSW-82
MQC QoS
regional root, LSW-80
traffic policing, QACL-40
relationships, LSW-77
MRP
spanning tree max age timer, LSW-91
implementation, LSW-185
spanning tree port mode configuration, LSW-99
messages, LSW-185
MVRP configuration,
LSW-192
configuration,
LSW-185,
VLAN-to-instance mapping table, LSW-79
LSW-188,
MTU
IPPO interface MTU configuration, IPSER-125
timers, LSW-187
IPPO TCP path MTU discovery, IPSER-126
MSS
130
port-based
MCAST-51
IPv6 dynamic path MTU aging timer, IPSER-155
IPv6 interface MTU configuration, IPSER-154
MTU
discovery
VLAN
configuration,
port-based multicast VLAN user port assignment,
MCAST-52
IPv6 path MTU discovery, IPSER-142
IPv6 path
IPSER-154
multicast
configuration,
port-based multicast VLAN user port attribute,
MCAST-51
IPv6 static path MTU configuration, IPSER-154
sub-VLAN-based configuration, MCAST-53
multi-active detection. Use MAD
sub-VLAN-based multicast VLAN configuration,
MCAST-50
multicast
802.1X multicast trigger mode, SEC-65, SEC-83
multi-CND QCN, QACL-105
DHCPv6 address, IPSER-169
multiple
IPv6 address, IPSER-139
registration protocol. Use MRP
IPv6 address type, IPSER-138
VLAN registration protocol. Use MVRP
IPv6 multicast echo request reply, IPSER-156
multiple neighbors detection (DLDP), HA-36
NMM IPv6 NTP multicast association mode,
NM-38
Multiple Spanning Tree Protocol. Use MSTP
multiple-line banner input mode, FM-147
NMM NTP multicast association mode, NM-10,
NM-16, NM-35
multiport
ARP multiport entry configuration, IPSER-8
NMM NTP multicast client configuration, NM-16
multiport ARP entry, IPSER-4
NMM NTP multicast mode authentication,
NM-23
multiport unicast entry (MAC address table), LSW-21,
LSW-23
NMM NTP multicast mode max number
dynamic associations, NM-27
MVRP
configuration, LSW-185, LSW-188, LSW-192
NMM NTP multicast server configuration,
NM-17
configuration restrictions, LSW-189
RIPng basic configuration, IPR-36
display, LSW-192
RIPng configuration, IPR-35, IPR-36
enable, LSW-189
UDP helper configuration, IPSER-134
GVRP compatibility, LSW-191
UDP helper conversion (broadcast to multicast),
IPSER-133
maintain, LSW-192
MRP implementation, LSW-185
multicast VLAN
configuration,
MCAST-53
MCAST-48,
protocols and standards, LSW-188
MCAST-50,
registration mode configuration, LSW-190
displaying, MCAST-53
registration modes, LSW-188
IPv6 multicast VLAN. See IPv6 multicast VLAN
timer configuration, LSW-190
maintaining, MCAST-53
N max forwarding entries, MCAST-52
N Port Virtualizer. Use NPV
port-based configuration, MCAST-56
N_Port-WWN to FC address binding, FCoE-38
name
131
DDNS client configuration, IPSER-106
IRF naming conventions (interface), IRF-4
DDNS configuration, IPSER-105, IPSER-109
software upgrade files, FM-106
DDNS configuration
IPSER-111
storage media naming rules, FM-85
(PeanutHull
server),
TRILL RB nickname, TRILL-9
DDNS
configuration
IPSER-109
(www.3322.org),
NAS
AAA configuration, SEC-16
DNS configuration, IPSER-83, IPSER-86
DNS dynamic
IPSER-83
domain
name
AAA device implementation, SEC-11
resolution,
AAA HWTACACS implementation, SEC-7
DNS proxy configuration, IPSER-89
AAA LDAP implementation, SEC-9
DNS spoofing configuration, IPSER-90
AAA NAS-ID profile configuration, SEC-47
DNS static domain name resolution, IPSER-83
AAA RADIUS implementation, SEC-2
IPv4 DNS client configuration, IPSER-87
AAA RADIUS security policy server IP address,
SEC-30
IPv4 DNS client dynamic domain name
resolution, IPSER-87, IPSER-93
applying interface NAS-ID profile (RADIUS),
SEC-135
IPv4 DNS client static domain name resolution,
IPSER-87, IPSER-92
NAT
IPv4 DNS configuration, IPSER-92
CWMP CPE NAT traversal, NM-224
IPv4 DNS proxy configuration, IPSER-95
IPsec IKE keepalive function, SEC-289
ND
IPv6 DNS client configuration, IPSER-88
MAD. See ND MAD
IPv6 DNS client dynamic domain name
resolution, IPSER-88, IPSER-98
ND attack defense
IPv6 DNS client static domain name resolution,
IPSER-88, IPSER-97
configuration, SEC-402
IPv6 DNS configuration, IPSER-97
configuring source MAC consistency check,
SEC-402
IPv6 DNS proxy configuration, IPSER-102
IPv6. See IPv6 ND attack defense
naming
ND MAD
ACL, QACL-2
IRF fabric ND MAD configuration, IRF-38
ACL copy, QACL-10
IRF ND MAD, IRF-10
device name configuration, FM-145
IRF ND MAD configuration, IRF-26
DHCP client domain name suffix, IPSER-39
need to know. Use NTK
fabric name, FCoE-36
negative (repulse) affinity, HA-139
FC zone alias rename, FCoE-86
negotiating
FC zone rename, FCoE-86
IPsec IKE negotiation, SEC-281
FC zone set rename, FCoE-86
IPsec IKE negotiation mode, SEC-252
file name formats, FM-85
neighbor
file rename, FM-87
high availability DLDP multiple neighbors
detection, HA-36
IRF naming conventions (file system), IRF-5
132
high availability DLDP neighbor state, HA-33
configuration save, NM-253, NM-254, NM-255
high availability DLDP single neighbor detection,
HA-34
data entry retrieval (interface table), NM-251
data filtering, NM-256
RIP neighbor specification, IPR-22
data filtering (conditional match), NM-260
TRILL neighbor change logging, TRILL-21
data filtering (regex match), NM-258
neighbor discovery
edit-config operation, NM-248
IPv6 duplicate address detection, IPSER-141
IPv6 ND address resolution, IPSER-140
event notification
NM-242
IPv6 ND configuration, IPSER-148
FIPS compliance, NM-239
IPv6 ND dynamic neighbor entries max number,
IPSER-148
get/get-bulk operation, NM-246
message format, NM-237
IPv6 ND link-local entry minimization, IPSER-149
NETCONF over SSH enable, NM-240
IPv6 ND protocol, IPSER-140
over SOAP, NM-237
IPv6 ND stale state entry aging timer, IPSER-149
over SOAP enable, NM-239
IPv6 ND static neighbor entry, IPSER-148
parameter value change, NM-253
IPv6 neighbor reachability detection, IPSER-141
protocols and standards, NM-238
IPv6 redirection, IPSER-142
Secure Telnet client user line configuration,
SEC-305
IPv6 router/prefix discovery, IPSER-141
address
NM-241,
get-config/get-bulk-config operation, NM-247
IPv6 ND hop limit, IPSER-149
IPv6 stateless
IPSER-141
subscription,
service operations, NM-246
autoconfiguration,
session establishment, NM-240
nesting
session information retrieval, NM-262
QoS configuration, QACL-72, QACL-73
session termination, NM-264
NetBIOS
SSH client user line configuration, SEC-305
DHCP client node type, IPSER-39
SSH+password authentication configuration,
SEC-337, SEC-339
NETCONF
capability exchange, NM-240
supported operations, NM-265
CLI operations, NM-261
xml view, NM-240
network
CLI return, NM-265
configuration, NM-236, NM-239
802.1X access control method, SEC-81
configuration data retrieval (all modules),
NM-249
802.1X architecture, SEC-62
802.1X authentication request attempts max
number, SEC-82
configuration data retrieval (Syslog module),
NM-250
configuration load, NM-253, NM-254
802.1X authentication server timeout timer,
SEC-82
configuration lock/unlock, NM-243, NM-245
802.1X authentication trigger, SEC-83
configuration rollback, NM-253, NM-254
802.1X Auth-Fail VLAN, SEC-87
133
802.1X authorization state, SEC-81
ACL configuration (basic), QACL-4
802.1X critical VLAN, SEC-88
ACL configuration (Ethernet frame header),
QACL-8
802.1X EAD assistant, SEC-89
ACL configuration (user-defined), QACL-9
802.1X EAP relay authentication, SEC-67
ACL copy, QACL-10
802.1X EAP relay enable, SEC-80
ACL packet filtering applicable scope (VLAN
interface), QACL-11
802.1X EAP termination enable, SEC-80
802.1X guest VLAN, SEC-86
ACL packet filtering application (interface),
QACL-11
802.1X online user handshake, SEC-83
802.1X periodic online user reauthentication,
SEC-85
ACL packet filtering configuration, QACL-10
ACL packet filtering default action, QACL-12
802.1X port users max number, SEC-81
ACL packet filtering log interval, QACL-11
AAA device implementation, SEC-11
ACL packet fragment filtering, QACL-3
AAA HWTACACS implementation, SEC-7
ACL switch applications, QACL-1
AAA HWTACACS scheme, SEC-32
activating RRPP domain, HA-61
AAA HWTACACS server SSH user, SEC-48
applying interface NAS-ID profile, SEC-135
AAA ISP domain accounting method, SEC-45
ARP active acknowledgement, SEC-363
AAA ISP domain attribute, SEC-42
method,
ARP attack detection (source MAC-based),
SEC-361, SEC-362
AAA ISP domain authorization method, SEC-44
ARP attack protection (unresolvable IP attack),
SEC-357, SEC-359
AAA ISP
SEC-43
domain
authentication
AAA ISP domain creation, SEC-42
ARP attack protection blackhole
(unresolvable IP attack), SEC-358
AAA ISP domain method, SEC-41
routing
ARP attack protection source suppression
(unresolvable IP attack), SEC-358
AAA LDAP implementation, SEC-9
AAA LDAP scheme, SEC-38
ARP detection configuration, SEC-364
AAA LDAP server SSH user authentication,
SEC-54
ARP dynamic entry aging timer, IPSER-6
AAA local user, SEC-18
ARP dynamic entry check enable, IPSER-6
AAA NAS-ID profile configuration, SEC-47
ARP dynamic entry max (device), IPSER-5
AAA network access user, SEC-18
ARP dynamic entry max (interface), IPSER-5
AAA RADIUS implementation, SEC-2
ARP dynamic table entry, IPSER-2
AAA RADIUS scheme, SEC-22
ARP filtering, SEC-372, SEC-373
AAA
RADIUS
server
SSH
authentication+authorization, SEC-51
ARP gateway protection, SEC-371, SEC-372
user
ARP logging enable, IPSER-6
AAA scheme, SEC-18
ARP message format, IPSER-1
AAA
SSH
user
local
authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
ARP multiport entry, IPSER-4
ARP multiport entry configuration, IPSER-8
ARP OpenFlow table entry, IPSER-3
134
ARP operation, IPSER-1
CFD maintenance association, HA-13
ARP packet rate limit, SEC-360
CFD maintenance point, HA-14
ARP packet source MAC consistency check,
SEC-363
CFD MEP configuration, HA-19
CFD MEP list, HA-15
ARP packet validity check, SEC-365
CFD MIP auto-generation rule, HA-20
ARP restricted forwarding, SEC-366, SEC-368
CFD service instance configuration, HA-19
ARP scanning, SEC-370
CFD TST configuration, HA-24
ARP static entry, IPSER-3
command help information display, FM-80
ARP static table entry, IPSER-3
configuring RRPP control VLAN, HA-57
ARP table, IPSER-2
configuring RRPP node, HA-59
ARP user validity check, SEC-364
configuring RRPP port, HA-59
ARP user+packet validity check, SEC-367
configuring RRPP protected VLAN, HA-57
authorized ARP configuration, SEC-364
configuring RRPP ring, HA-59
automatic configuration (DHCP server), FM-175
data buffer burst function, QACL-92
automatic configuration (DNS server), FM-176
data buffer configuration application, QACL-94
automatic configuration (HTTP server+Python
script), FM-183
DDNS client configuration, IPSER-106
DDNS client policy, IPSER-106
automatic configuration (HTTP server+Tcl script),
FM-182
DDNS client policy application, IPSER-108
DDNS configuration
IPSER-111
automatic configuration (IRF setup), FM-184
automatic configuration (TFTP server), FM-177
automatic
FM-174
configuration
file
(PeanutHull
DDNS
configuration
IPSER-109
preparation,
server),
(www.3322.org),
DDNS outgoing packet DSCP value, IPSER-109
automatic configuration gateway, FM-177
device airflow direction configuration, FM-157
automatic configuration start, FM-177
device as FTP client, FM-77
CFD 1-way DM configuration, HA-23
device as FTP server, FM-73
CFD 2-way DM configuration, HA-24
device banner configuration, FM-147
CFD AIS configuration, HA-23
device banner input modes, FM-147
CFD configuration, HA-26
device banner types, FM-147
CFD continuity check, HA-21
device copyright statement display, FM-147
CFD EAIS configuration, HA-24
device CPU usage monitoring, FM-157
CFD enable, HA-19
device factory-default settings and states,
FM-161
CFD function configuration, HA-20
CFD functions, HA-16
CFD linktrace configuration, HA-22
device management task scheduling, FM-151,
FM-153
CFD LM configuration, HA-23
device memory usage threshold, FM-158
CFD loopback configuration, HA-22
device name configuration, FM-145
135
DHCP server response broadcast, IPSER-45
device password recovery capability disable,
FM-156
DHCP server subnet, IPSER-52
device port status detection timer, FM-157
DHCP server user class, IPSER-50
device reboot, FM-150
DHCP snooping basic configuration, IPSER-72,
IPSER-78
device reboot (immediate), FM-150
DHCP snooping Option 82 configuration,
IPSER-79
device reboot (scheduled), FM-150
device system operating mode, FM-149
DHCP snooping trusted port, IPSER-70
device system time set, FM-146
DHCP snooping untrusted port, IPSER-70
device system time source set, FM-146
DHCPv6 address allocation, IPSER-170
device temperature alarm threshold, FM-159
DHCPv6 address pool, IPSER-170
device transceiver module diagnosis, FM-161
DHCPv6 address pool selection, IPSER-170
device transceiver module verification, FM-161
DHCPv6 address/prefix assignment, IPSER-165
device USB interface disable, FM-160
DHCPv6 client DUID, IPSER-189
DHCP address pool, IPSER-32
DHCPv6 client
IPSER-187
DHCP BOOTP client address acquisition,
IPSER-82
DHCP client DNS server, IPSER-39
DHCP client gateway, IPSER-38
IPv6
address
acquisition,
DHCPv6 client IPv6 address
configuration, IPSER-190
acquisition
DHCPv6 client
IPSER-188
IPv6
prefix
acquisition,
DHCP client packet DSCP value, IPSER-66
DHCPv6 client IPv6
configuration, IPSER-191
prefix
acquisition
DHCP client server specification, IPSER-41
DHCPv6 client packet DSCP value, IPSER-189
DHCP relay agent enable on interface, IPSER-57
DHCPv6 client stateless DHCPv6, IPSER-188
DHCP relay agent packet DSCP value, IPSER-61
DHCP relay agent security functions, IPSER-58
DHCPv6 client stateless DHCPv6 configuration,
IPSER-193
DHCP relay agent server, IPSER-57
DHCPv6 IPv6 address assignment, IPSER-168
DHCP server address pool, IPSER-34
DHCPv6 IPv6 address/prefix
sequence, IPSER-171
DHCP client
IPSER-65
ID
configuration
(interface),
DHCP server address pool IP address range,
IPSER-35
allocation
DHCPv6 IPv6 prefix assignment, IPSER-168
DHCP server BOOTP request ignore, IPSER-45
DHCPv6 packet blocking port, IPSER-201
DHCP server
IPSER-45
DHCPv6 packet DSCP value, IPSER-176
compatibility
configuration,
DHCPv6 prefix allocation, IPSER-170
DHCP server IP address dynamic assignment,
IPSER-49
DHCPv6 relay agent enable on interface,
IPSER-183
DHCP server IP address static assignment,
IPSER-47
DHCPv6 relay agent packet DSCP value,
IPSER-184
DHCP server option customization, IPSER-53
DHCPv6 relay agent server, IPSER-183
DHCP server packet DSCP value, IPSER-46
136
DHCPv6 server configuration on interface,
IPSER-175
emergency shell system software image load,
FM-141
DHCPv6 server dynamic
assignment, IPSER-179
Ethernet link aggregation configuration types,
LSW-41
IPv6
address
DHCPv6 server dynamic IPv6 prefix assignment,
IPSER-177
Ethernet link aggregation dynamic mode,
LSW-43
DHCPv6 server IPv6 address assignment,
IPSER-173
Ethernet link aggregation edge aggregate
interface, LSW-47
DHCPv6 server
IPSER-172
Ethernet link aggregation LACP, LSW-43
IPv6
prefix
assignment,
Ethernet link aggregation member port state,
LSW-42, LSW-45
DHCPv6 server network parameters assignment,
IPSER-174
DHCPv6 snooping
IPSER-199
entry
auto
Ethernet link aggregation modes, LSW-42
backup,
Ethernet link aggregation operational key,
LSW-41
DHCPv6 snooping entry max, IPSER-199
Ethernet
LSW-45
DHCPv6 snooping Option 18 configuration,
IPSER-198
rate
aggregation
reference
port,
Ethernet link aggregation reference port choice,
LSW-42
DHCPv6 snooping Option 37 configuration,
IPSER-198
DHCPv6
snooping
packet
configuration, IPSER-200
link
Ethernet link aggregation static mode, LSW-42
limit
Ethernet multicast MAC address, MCAST-8
Ethernet OAM connection detection timer, HA-4
DHCPv6-REQUEST check, IPSER-200
Ethernet OAM errored frame event detection,
HA-6
DNS outgoing packet DSCP value, IPSER-91
DNS packet source interface, IPSER-90
Ethernet OAM errored frame period event
detection, HA-7
DNS proxy, IPSER-84
Ethernet OAM errored frame seconds event
detection, HA-7
DNS proxy configuration, IPSER-89
DNS spoofing, IPSER-85
Ethernet OAM errored symbol event detection,
HA-5
DNS spoofing configuration, IPSER-90
DNS suffixes, IPSER-84
DNS trusted interface, IPSER-91
Ethernet OAM link monitoring configuration,
HA-5
eIRF operation, IRF-47
Ethernet OAM port action configuration, HA-8
eIRF PEX physical interface, IRF-46
eIRF PEX port, IRF-46
Ethernet OAM remote loopback configuration,
HA-9
eIRF PEX virtual slot number, IRF-47
Ethernet OAM remote loopback on port, HA-10
eIRF roles, IRF-46
Ethernet OAM remote loopback on specific port,
HA-9
emergency shell device reboot, FM-142
Ethernet OAM
rejection, HA-10
emergency shell management Ethernet port
configuration, FM-139
remote
loopback
request
EVB default VSI manager specification, EVB-4
emergency shell server access, FM-140
137
EVB LLDP configuration, EVB-4
FC FSPF interface dead interval, FCoE-58
EVB S-channel aggregate interface, EVB-7
FC FSPF interface disable, FCoE-59
EVB S-channel configuration, EVB-6
FC FSPF interface hello interval, FCoE-58
EVB S-channel interface, EVB-7
FC FSPF interface LSR retransmission interval,
FCoE-59
EVB S-channel MAC
configuration, EVB-8
address
learning
FC FSPF LSR arrival interval min, FCoE-57
EVB S-channel RR mode configuration, EVB-7
FC FSPF LSR refresh interval min, FCoE-57
EVB S-channel VSI
configuration, EVB-8
FC FSPF routes, FCoE-54
aggregate
interface
FC FSPF SPF calculation (shortest interval),
FCoE-57
EVB S-channel VSI interface configuration,
EVB-8
FC hard zoning enable, FCoE-84
EVB VDP negotiation parameters, EVB-5
FC SAN, FCoE-1
EVB VSI aggregate filter activation, EVB-10
FC static route configuration, FCoE-55
EVB VSI filter activation, EVB-10
FC static routes, FCoE-54
EVB VSI filter configuration, EVB-9
FC zone, FCoE-5, FCoE-82
fabric build (dynamic), FCoE-35
FC zone access control, FCoE-79
fabric build (static), FCoE-35
fabric building
FCoE-47
configuration
FC zone alias, FCoE-81
(dynamic),
FC zone database, FCoE-70
FC zone database deletion, FCoE-87
fabric building configuration (static), FCoE-44
FC zone distribution, FCoE-83
fabric configuration enable/disable, FCoE-36
FC zone distribution (basic zoning), FCoE-73
fabric domain ID assignment, FCoE-33
fabric FC address assignment, FCoE-34
FC zone
FCoE-75
distribution
(enhanced
fabric N_Port-WWN to FC address binding,
FCoE-38
FC zone merge type, FCoE-83
zoning),
FC zone set, FCoE-82
fabric name, FCoE-36
FC zone set activation, FCoE-85
fabric principal switch selection, FCoE-32
FC zone set distribution trigger, FCoE-86
fabric reconfiguration, FCoE-40
FC zone set fabric distribution, FCoE-85
fabric switch domain ID, FCoE-38
FC zone-related copy, FCoE-87
fabric switch priority, FCoE-36
FC zone-related renaming, FCoE-86
FC default zone policy, FCoE-83
FC4 node information, FCoE-42
FC direct routes, FCoE-53
FCF priority, FCoE-20
FC fabric timer, FCoE-39
FC-MAP value, FCoE-18
FC FSPF configuration, FCoE-56
FCoE communication flow, FCoE-4
FC FSPF enable, FCoE-56
FCoE configuration (VFC interface)(IRF mode),
FCoE-141
FC FSPF GR configuration, FCoE-59
FC FSPF interface cost, FCoE-58
138
FCoE configuration (VFC interface)(standalone
mode), FCoE-129
FTP basic server parameters configuration,
FM-74
FCoE description, FCoE-5
FTP client configuration (centralized IRF device),
FM-81
FCoE fabric address assignment, FCoE-159
FTP client connection establishment, FM-77
FCoE FCF system priority, FCoE-20
FTP connection termination, FM-80
FCoE FCF VFC interface priority, FCoE-20
FTP connection troubleshooting, FM-80
FCoE FKA advertisement interval value, FCoE-18
FTP manual server connection release, FM-75
FCoE for VLAN enable, FCoE-17
FTP server authentication, FM-74
FCoE frames, FCoE-7
FTP server authorization, FM-74
FCoE switch mode configuration, FCoE-13
FTP server configuration (centralized IRF device),
FM-75
FCoE VFC interface, FCoE-6
FCoE VLAN-VSAN mapping, FCoE-17
FTP server directory management, FM-78
FCoE VN interface, FCoE-6
FTP server files, FM-78
FCoE VSAN, FCoE-4
FTP user account change, FM-79
FCoE well-known fabric addresses, FCoE-159
gratuitous ARP configuration, IPSER-12
FCS topology discovery, FCoE-111, FCoE-112
gratuitous ARP IP conflict notification, IPSER-12
feature module debug, NM-6
gratuitous ARP packet learning, IPSER-11
file system directory management, FM-89
gratuitous ARP periodic packet send, IPSER-11
file system file management, FM-86
high availability DLDP authentication, HA-38
file system storage media management, FM-90
high availability DLDP authentication modes,
HA-34
FIPS mode entry (automatic reboot), SEC-390
FIPS mode entry (manual reboot), SEC-391
high availability DLDP multiple neighbors
detection, HA-36
FIPS mode exit (automatic reboot), SEC-392
high availability DLDP single neighbor detection,
HA-34
FIPS mode exit (manual reboot), SEC-393
fixed ARP configuration, SEC-370
IGMP snooping basic configuration, MCAST-18
flow mirroring match criteria, NM-188
IGMP snooping multicast source port filtering,
MCAST-28
flow mirroring QoS policy, NM-189
flow mirroring QoS policy application, NM-190
incremental flush for TRILL multicast routing
entries, TRILL-19
flow mirroring QoS policy application (control
plane), NM-190
information center diagnostic log save (log file),
NM-81
flow mirroring QoS policy application (global),
NM-190
flow mirroring QoS
(interface), NM-190
policy
information center duplicate log suppression,
NM-83
application
information center interface link up/link down
log generation, NM-83
flow mirroring QoS policy application (VLAN),
NM-190
information center log minimum storage time,
NM-84
flow mirroring traffic behavior, NM-189
139
interfaces combine (Ethernet 10-GE into 40-GE),
LSW-2
information center log output (console), NM-84
information center log output (Linux log host),
NM-86
IP address classes, IPSER-20
IP addressing interface address, IPSER-22
information center log output (UNIX log host),
NM-85
IP addressing masking, IPSER-21
information center security log file management,
NM-81
IP addressing subnetting, IPSER-21
IP forwarding load sharing, IPSER-115, IPSER-116
information center security log save (log file),
NM-80
IP multicast address, MCAST-6
information center synchronous log output,
NM-82
IP multicast architecture, MCAST-5
information center system log types, NM-71
IP multicast VPN application, MCAST-12
information center trace log file max size,
NM-82
IP multicast VPN instance, MCAST-12
IP multicast packet forwarding, MCAST-11
inloopback interface configuration, LSW-16
IP performance optimization directed broadcast
receive/forward configuration, IPSER-125
interface auto power-down (Ethernet), LSW-8
IP routing FIB route max lifetime, IPR-4
interface basic settings (Ethernet), LSW-3
IP routing load sharing, IPR-2
interface bridging (Ethernet), LSW-14
IP routing RIB label max lifetime, IPR-3
interface cable connection (Layer 2 Ethernet),
LSW-13
IP routing RIB route max lifetime, IPR-3
interface common
(Ethernet), LSW-2
IP routing RIP interface additional metric, IPR-29
settings
IP routing RIP basics, IPR-24
configuration
interface EEE energy saving, LSW-8
IP routing RIP route redistribution, IPR-27
interface energy-saving features (Ethernet),
LSW-8
IP routing route backup, IPR-2
interface fiber port (Layer 2 Ethernet), LSW-11
IP routing route recursion, IPR-2
interface generic flow control (Ethernet), LSW-6
IP routing route redistribution, IPR-3
interface jumbo frame support (Ethernet), LSW-3
interface loopback test (Ethernet), LSW-5
IP source guard (IPSG) dynamic binding,
SEC-347
interface MDIX mode (Layer 2 Ethernet), LSW-12
IP source guard (IPSG) static binding, SEC-347
interface PFC (Ethernet), LSW-6
IP subnet-based VLAN configuration, LSW-140,
LSW-147
IP routing route preference, IPR-2
interface physical state change suppression
(Ethernet), LSW-4
IPPO directed
IPSER-124
interface split (Ethernet 40-GE), LSW-2
broadcast
receive/forward,
IPPO ICMP error message rate limit, IPSER-130
interface statistics polling interval (Ethernet),
LSW-9
IPPO ICMP error message send, IPSER-128
interface storm control (Layer 2 Ethernet),
LSW-10
IPPO ICMP fragment forwarding disable,
IPSER-130
interface storm suppression (Layer 2 Ethernet),
LSW-9
IPPO interface MTU configuration, IPSER-125
140
IPPO interface
IPSER-126
TCP
MSS
IPv4 DNS client configuration, IPSER-87
configuration,
IPv4 DNS proxy configuration, IPSER-95
IPPO TCP buffer size, IPSER-128
IPv4 source guard (IPv4SG) configuration,
SEC-348
IPPO TCP path MTU discovery, IPSER-126
IPv4 source guard (IPv4SG) dynamic binding
configuration, SEC-352
IPPO TCP SYN cookie, IPSER-127
IPPO TCP timer, IPSER-128
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
IPsec ACL, SEC-256
IPsec ACL de-encapsulated packet check,
SEC-264
IPv4 source guard (IPv4SG) enable on interface,
SEC-348
IPsec ACL-based implementation, SEC-253,
SEC-255
IPv4 source guard (IPv4SG) static binding
configuration, SEC-349, SEC-351
IPsec anti-replay, SEC-265
IPv4 TFTP client configuration, FM-83
IPsec anti-replay redundancy, SEC-266
IPsec
application-based
SEC-254
IPv6 addresses, IPSER-137
implementation,
IPv6 anycast address configuration, IPSER-147
IPv6 DNS client configuration, IPSER-88
IPsec IKE configuration (main mode/pre-shared
key authentication), SEC-292
IPv6 DNS proxy configuration, IPSER-102
IPsec IKE SNMP notification, SEC-291
IPv6 dual stack technology, IPSER-142
IPsec implementation, SEC-253
IPv6 dynamic path MTU aging timer, IPSER-155
IPsec IPv6 routing protocol profile (manual),
SEC-269
IPv6 global unicast address, IPSER-144
IPsec IPv6 routing protocols, SEC-269
IPv6 ICMPv6 destination unreachable message,
IPSER-156
IPsec packet DF bit, SEC-268
IPv6 ICMPv6 error message rate limit, IPSER-155
IPsec packet logging enable, SEC-268
IPv6 ICMPv6 message send, IPSER-155
IPsec policy (IKE-based), SEC-260
IPv6 ICMPv6 redirect message, IPSER-157
IPsec policy (IKE-based/direct), SEC-261
IPv6 ICMPv6
IPSER-156
IPsec policy (IKE-based/template), SEC-262
time
exceeded
message,
IPv6 interface address assignment, IPSER-144
IPsec policy (manual), SEC-258
IPv6 interface MTU, IPSER-154
IPsec policy application to interface, SEC-264
IPv6 link-local address configuration, IPSER-146
IPsec QoS pre-classify enable, SEC-267
IPv6 max number NS message sent attempts,
IPSER-152
IPsec RIPng configuration, SEC-277
IPsec SNMP notification, SEC-270
IPv6 multicast echo request reply, IPSER-156
IPsec source interface policy bind, SEC-266
IPv6 multicast port-based VLAN user port
assignment, MCAST-97
IPsec transform set, SEC-257
IPsec tunnel establishment, SEC-254
IPv6 multicast port-based VLAN user port
attribute configuration, MCAST-96
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
IPv6 ND configuration, IPSER-148
IPsec tunnel for IPv4 packets (manual), SEC-272
IPv6 ND duplicate address detection, IPSER-141
141
IRF fabric ND MAD configuration, IRF-38
IPv6 ND dynamic neighbor entries max number,
IPSER-148
IRF fabric recovery, IRF-27
IPv6 ND hop limit, IPSER-149
IRF fabric setup, IRF-15
IPv6 ND link-local entry minimization, IPSER-149
IRF LACP MAD, IRF-8
IPv6 ND neighbor reachability detection,
IPSER-141
IRF LACP MAD configuration, IRF-24
IRF link down report delay, IRF-23
IPv6 ND protocol, IPSER-140
IRF MAD configuration, IRF-23
IPv6 ND protocol address resolution, IPSER-140
IRF MAD handling procedure, IRF-7
IPv6 ND redirection, IPSER-142
IRF MAD mechanism, IRF-8
IPv6 ND router/prefix discovery, IPSER-141
IRF master election, IRF-6
IPv6 ND stale state entry aging timer, IPSER-149
IRF naming conventions (file system), IRF-5
IPv6 ND stateless address autoconfiguration,
IPSER-141
IRF naming conventions (interface), IRF-4
IPv6 ND static neighbor entry, IPSER-148
IRF ND MAD, IRF-10
IPv6 packet
IPSER-158
IRF ND MAD configuration, IRF-26
(extension
header)
discard,
IRF port shutdown exclusion, IRF-27
IPv6 path MTU discovery, IPSER-142, IPSER-154
IRF software auto-update enable, IRF-22
IPv6 RA message parameter, IPSER-150
ISSU command series, FM-116
IPv6 source guard (IPv6SG) configuration,
SEC-349
ISSU feature (install series commands), FM-123
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
ISSU for single-chassis IRF fabric, FM-120
ISSU for multichassis IRF fabric, FM-118
ISSU inactive software image removal (install
series commands), FM-124
IPv6 source guard (IPv6SG) enable on interface,
SEC-349
ISSU IPE file decompressing (install series
commands), FM-122
IPv6 source guard (IPv6SG) static binding
configuration, SEC-350, SEC-354
ISSU patch image (install series commands),
FM-123
IPv6 static path MTU, IPSER-154
ISSU software activate/deactivate (install series
commands), FM-124
IPv6 static route configuration, IPR-31
IPv6 TFTP client configuration, FM-84
ISSU software changes commit (install series
commands), FM-124
IPv6 transition technologies, IPSER-142
IPv6 tunneling technology, IPSER-143
ISSU software configuration rollback (install
series commands), FM-123
IRF ARP MAD, IRF-9
ISSU software image (install series commands),
FM-122
IRF ARP MAD configuration, IRF-24
IRF configuration synchronization, IRF-6
ISSU software image upgrade (install series
commands), FM-122
IRF fabric ARP MAD configuration, IRF-34
IRF fabric configuration, IRF-14
ISSU software image verification (install series
commands), FM-124
IRF fabric LACP MAD configuration, IRF-29
142
LAN switching
LSW-242
LLDP
basic
MAC address table address synchronization,
LSW-29
configuration,
MAC address table blackhole entry, LSW-23
Layer 2 Ethernet link aggregation (dynamic),
LSW-59
MAC address table dynamic aging timer,
LSW-26
Layer 2 Ethernet link aggregation (static),
LSW-57
MAC address table entry configuration, LSW-22
Layer 2 Ethernet link aggregation edge
aggregate interface, LSW-63
MAC address table entry types, LSW-21
MAC address table learning priority, LSW-28
Layer 2 Ethernet link aggregation load sharing,
LSW-61
MAC address table multiport unicast entry,
LSW-23
Layer 2 remote port mirroring, NM-184
MAC authentication (local), SEC-111
Layer 2 remote port mirroring configuration,
NM-177
MAC authentication (RADIUS-based), SEC-113
MAC authentication ACL assignment, SEC-104,
SEC-115
Layer 2 TRILL forwarding mechanisms, TRILL-3
Layer 3 TRILL forwarding mechanisms, TRILL-5
MAC authentication
SEC-102
load balancing over TRILL distribution trees,
TRILL-17
local port mirroring configuration, NM-173
MAC authentication critical VLAN, SEC-103,
SEC-109
local port mirroring configuration with multiple
monitor ports, NM-186
MAC authentication delay, SEC-108
local port mirroring group monitor port, NM-175
MAC authentication domain, SEC-106
local port mirroring group source port, NM-174
command
VLAN,
MAC authentication concurrent port users max,
SEC-107
local port mirroring, NM-182
login management
FM-44, FM-45
authorization
MAC authentication guest VLAN, SEC-102,
SEC-109
accounting,
MAC authentication keep-online, SEC-110
login management command authorization,
FM-41, FM-42
MAC authentication methods, SEC-101
MAC authentication multi-VLAN mode, SEC-108
login management SNMP access control,
FM-39, FM-40
MAC authentication timer, SEC-107
MAC authentication user account format,
SEC-106
login management SSH login control, FM-38
login management Telnet login control, FM-38,
FM-39
MAC authentication user profile assignment,
SEC-104
loop detection interval, LSW-121, LSW-124
MAC authentication
SEC-102
loop detection protection action configuration,
LSW-123
VLAN
assignment,
MAC-based VLAN configuration, LSW-135,
LSW-145
loop protection actions, LSW-121
loopback interface configuration, LSW-15
MAC-based VLAN
LSW-136, LSW-139
MAC address move notification, LSW-30
dynamic
assignment,
MAC-based VLAN server assignment, LSW-138,
LSW-140
MAC address retaining on TRILL port, TRILL-21
143
MAC-based VLAN static assignment, LSW-136,
LSW-139
NMM NTP local clock as reference source,
NM-27
management interface configuration, LSW-1
NMM NTP max number dynamic associations,
NM-27
MFF basic concepts, SEC-376
NMM NTP
NM-26
MFF configuration, SEC-377
MFF manual-mode in ring network, SEC-380
message processing disable,
NMM NTP message source interface, NM-26
MFF manual-mode in tree network, SEC-379
NMM NTP multicast association mode, NM-16
MFF network port, SEC-376, SEC-377
MFF periodic gateway probe, SEC-378
NMM NTP multicast mode authentication,
NM-23
MLD snooping IPv6 multicast source port
filtering, MCAST-74
NMM NTP optional parameter configuration,
NM-25
Monitor Link downlink interface switchover
delay, HA-122
NMM NTP packet DSCP value, NM-27
NMM
NTP
symmetric
association mode, NM-15
Monitor Link group creation, HA-121
Monitor Link group member interface, HA-121
active/passive
MRP timers, LSW-187
NMM NTP symmetric active/passive mode
authentication, NM-19
MST region configuration, LSW-87
NMM PTP clock mode, NM-55
multicast VLAN
MCAST-52
max
forwarding
NMM SNMPv1 basics, NM-91
entries,
NMM SNMPv2c basics, NM-91
multi-CND QCN configuration, QACL-105
NMM SNMPv3 basics, NM-93
MVRP timer configuration, LSW-190
NMM SNTP authentication, NM-48
NETCONF-over-SSH client user line, SEC-305
NMM SNTP NTP server specification, NM-48
NETCONF-over-SSH configuration, SEC-305
NPV disruptive load balancing, FCoE-94,
FCoE-96
NETCONF-over-SSH+password authentication
configuration, SEC-337, SEC-339
Network
Configuration
NETCONF
Protocol.
NPV downlink, FCoE-93
Use
NPV downlink interface, FCoE-93, FCoE-95
NPV downlink-uplink
FCoE-94
interface
mapping,
interface
mapping
NMM NTP association mode, NM-14
NPV downlink-uplink
interface, FCoE-96
NMM NTP authentication, NM-18
NPV uplink, FCoE-94
NMM NTP broadcast association mode, NM-16
NPV uplink interface, FCoE-94, FCoE-95
NMM NTP broadcast mode authentication,
NM-22
NQA client DHCP operation, NM-121
NMM NTP client/server association mode,
NM-14
NQA client DNS operation, NM-122
NMM NTP access control rights, NM-17
NMM NTP architecture, NM-9
NQA client DLSw operation, NM-131
NQA client echo operation (ICMP), NM-121
NMM NTP client/server mode authentication,
NM-18
NQA client echo operation (UDP), NM-128
NQA client FTP operation, NM-123
144
NQA UDP
NM-151
NQA client history record save, NM-137
NQA client HTTP operation, NM-124
NQA+Track+static
HA-128
NQA client operation optional parameters,
NM-132
routing
collaboration,
OpenFlow controller mode set, OF-10
NQA client path jitter operation, NM-131
OpenFlow
controller+main
configuration, OF-13
NQA client SNMP operation, NM-126
NQA client statistics collection, NM-137
connection
OpenFlow flow table, OF-9
NQA client TCP operation, NM-127
OpenFlow inband management VLAN, OF-10
NQA client template, NM-138
OpenFlow MAC address learning, OF-11
NQA client threshold monitoring, NM-134
collaboration
configuration,
null interface configuration, LSW-16
NQA client operation scheduling, NM-138
Track
operation
NQA voice operation configuration, NM-158
NQA client operation, NM-120
NQA client
NM-133
jitter
OpenFlow
OF-13
function,
switch
controller
configuration,
OpenFlow timer setting, OF-14
NQA client UDP jitter operation, NM-125
peer public key entry, SEC-211
NQA client voice operation, NM-129
periodic MAC reauthentication, SEC-104
NQA configuration, NM-117, NM-119
ping connectivity test, NM-1
NQA DHCP operation configuration, NM-147
PKI applications, SEC-218
NQA DLSw operation configuration, NM-160
PKI architecture, SEC-217
NQA DNS operation configuration, NM-148
PKI CA policy, SEC-217
NQA echo operation configuration (ICMP),
NM-145
PKI CA storage path, SEC-227
PKI certificate import/export, SEC-240
NQA echo operation configuration (UDP),
NM-156
PKI certificate request, SEC-222
NQA FTP operation configuration, NM-149
PKI CRL, SEC-217
NQA HTTP operation configuration, NM-150
PKI digital certificate, SEC-216
NQA path jitter operation configuration,
NM-161
PKI domain configuration, SEC-220
PKI entity configuration, SEC-219
NQA server, NM-119
PKI OpenCA server certificate request, SEC-236
NQA SNMP operation configuration, NM-154
PKI operation, SEC-218
NQA TCP operation configuration, NM-155
PKI RSA Keon CA server certificate request,
SEC-230
NQA template configuration (DNS), NM-166
PKI Windows 2003 CA server certificate
request, SEC-233
NQA template configuration (FTP), NM-169
NQA template configuration (HTTP), NM-168
port isolation group assignment (multiple),
LSW-65
NQA template configuration (ICMP), NM-165
NQA template configuration (TCP), NM-167
port mirroring
NM-178
145
remote
destination
group,
private
VLAN
trunk
promiscuous+trunk
secondary port configuration, LSW-163
port mirroring remote source group, NM-180
port mirroring remote source group egress port,
NM-181
process
HA-141
port mirroring remote source group remote
probe VLAN, NM-182
placement
optimization,
HA-138,
process placement policy, HA-138
process placement policy configuration, HA-140
port mirroring remote source group source ports,
NM-180
port security authorization-fail-offline, SEC-184
process placement policy location affinity,
HA-140
port
security
client
macAddressElseUserLoginSecure, SEC-189
process placement policy location-type affinity,
HA-140
port security client userLoginWithOUI, SEC-186
process placement policy process affinity,
HA-141
port security features, SEC-173, SEC-179
process placement policy self affinity, HA-141
port security intrusion protection, SEC-179
protocol-based VLAN configuration, LSW-141,
LSW-149
port security MAC address autoLearn, SEC-184
port security MAC address learning control,
SEC-175
pseudonode bypass, TRILL-16
QCN basic configuration, QACL-102
port security mode, SEC-173, SEC-178
QinQ basic configuration, LSW-209
port security NAS-ID profile, SEC-183
QinQ CVLAN tag TPID value, LSW-207
port security NTK, SEC-179
QinQ SVLAN tag TPID value, LSW-207
port security secure MAC address, SEC-180
QinQ VLAN tag TPID value, LSW-206
port security secure MAC address port limit,
SEC-177
port-based
MCAST-51
multicast
VLAN
QinQ VLAN transparent transmission, LSW-205
QinQ
VLAN
transparent
configuration, LSW-211
configuration,
QoS aggregate CAR configuration, QACL-79
port-based multicast VLAN user port assignment,
MCAST-52
QoS class-based accounting configuration,
QACL-82, QACL-83
port-based multicast VLAN user port attribute,
MCAST-51
QoS congestion
QACL-58
port-based VLAN assignment (access port),
LSW-132
configuration,
WRED
QoS congestion avoidance+ECN, QACL-59
port-based VLAN assignment (trunk port),
LSW-133
QoS congestion management configuration,
QACL-46
port-based VLAN configuration, LSW-131
QoS
congestion
scheduling profile,
QACL-88
private VLAN configuration, LSW-154
private VLAN promiscuous port configuration,
LSW-157
promiscuous
avoidance
QoS
congestion
avoidance
queue-based table, QACL-59
port-based VLAN assignment (hybrid port),
LSW-134
private VLAN trunk
configuration, LSW-160
transmission
QoS congestion
QACL-50
port
146
management
queue
QACL-55, QACL-57,
management
queuing,
QoS congestion management SP queuing,
QACL-50
QoS traffic filtering configuration, QACL-62,
QACL-63
QoS congestion management
queuing configuration, QACL-53
SP+WFQ
QoS traffic policing, QACL-37, QACL-40,
QACL-42
QoS congestion management
queuing configuration, QACL-52
SP+WRR
QoS traffic policing configuration, QACL-36
QoS traffic redirection configuration, QACL-75,
QACL-76
QoS congestion management WFQ queuing,
QACL-51
quality analyzer. See NQA
QoS congestion management WRR queuing,
QACL-50
RBAC default user role, FM-54
RBAC feature group configuration, FM-52
QoS data buffer fixed-area max queue ratio,
QACL-94
RBAC local AAA
configuration, FM-59
QoS data buffer shared-area max queue ratio,
QACL-93
authentication
user
RBAC permission assignment, FM-47
QoS data buffer total shared-area ratio,
QACL-93
RBAC RADIUS authentication user configuration,
FM-61
QoS GTS, QACL-38, QACL-41
RBAC resource access policies, FM-53
QoS GTS configuration, QACL-36
RBAC temporary user role authorization, FM-56,
FM-58
QoS MQC, QACL-18
RBAC temporary user role authorization
(HWTACACS authentication), FM-64
QoS nesting configuration, QACL-72, QACL-73
QoS non-MQC, QACL-18
QoS policy application, QACL-21
RBAC temporary user role authorization
(RADIUS authentication), FM-68
QoS policy configuration, QACL-18
RBAC user role assignment, FM-49, FM-54
QoS policy definition, QACL-21
RBAC user role authentication, FM-58
QoS priority mapping configuration, QACL-26,
QACL-29
RBAC user role creation, FM-50
RBAC user role interface policy, FM-53
QoS priority mapping drop priority, QACL-26
RBAC user role local AAA authentication,
FM-55
QoS priority mapping interface port priority,
QACL-31
RBAC user role non-AAA authentication, FM-55
QoS priority mapping map, QACL-30
RBAC user role remote AAA authentication,
FM-54
QoS priority mapping trusted port packet
priority, QACL-30
RBAC user role rule configuration, FM-51
QoS priority marking configuration, QACL-64
RBAC user role VLAN policy, FM-53
QoS rate limit, QACL-39, QACL-42
QoS rate limit configuration, QACL-36
RIP additional routing metric configuration,
IPR-15
QoS traffic behavior definition, QACL-20
RIP basic configuration, IPR-13
QoS traffic class definition, QACL-19
RIP default route advertisement, IPR-17
QoS traffic evaluation, QACL-36
RIP GR configuration, IPR-23
RIP host route reception disable, IPR-17
147
RIP interface advertisement control, IPR-14
RIPng routing metric configuration, IPR-37
RIP interface reception control, IPR-14
RIPng split horizon, IPR-40
RIP network management configuration, IPR-22
RIPng timer configuration, IPR-39
RIP network optimization, IPR-19
RIPv1 message zero field check, IPR-21
RIP network tuning, IPR-19
RIPv2 message authentication configuration,
IPR-21
RIP operation, IPR-11
RIPv2 route summarization configuration, IPR-16
RIP packet max length, IPR-23
RRPP control VLAN, HA-48
RIP packet send rate configuration, IPR-23
RRPP data VLAN, HA-48
RIP poison reverse configuration, IPR-20
RRPP domain, HA-47
RIP preference configuration, IPR-18
RRPP load balancing, HA-51
RIP received/redistributed route filtering, IPR-18
RRPP ring group, HA-52
RIP route control configuration, IPR-15
RSCN aggregation, FCoE-42
RIP route entries, IPR-11
RSCN aggregation configuration, FCoE-41
RIP route redistribution configuration, IPR-19
RSTP network convergence, LSW-76
RIP routing loop prevention, IPR-11
secondary VLAN Layer 3 communication,
LSW-167
RIP split horizon configuration, IPR-20
RIP timer configuration, IPR-19
Secure Telnet client user line, SEC-305
RIP update source IP address check, IPR-21
security password control global parameters,
SEC-198
RIP version configuration, IPR-15
RIP versions, IPR-12
security password control local user parameters,
SEC-200
RIPng basic configuration, IPR-36
security password
parameters, SEC-199
RIPng default route advertisement, IPR-38
RIPng GR configuration, IPR-41
control
user
group
RIPng IPsec profile application, IPR-41
security portal authentication AAA server,
SEC-119
RIPng network optimization, IPR-39
security portal authentication client, SEC-119
RIPng network tuning, IPR-39
security portal authentication domain, SEC-129
RIPng packet, IPR-35
security
portal
authentication
components, SEC-118
RIPng packet zero field check, IPR-40
system
security super password control parameters,
SEC-201
RIPng poison reverse, IPR-40
RIPng preference, IPR-38
sFlow counter sampling configuration, NM-195
RIPng received/redistributed route filtering,
IPR-38
sFlow flow sampling configuration, NM-194
RIPng route control, IPR-37
Smart Link associated device, HA-104
RIPng route entry, IPR-35
Smart Link device, HA-101
RIPng route redistribution, IPR-39
Smart Link flush message reception, HA-104
RIPng route summarization, IPR-37
Smart Link flush message send, HA-103
148
Smart Link group member ports, HA-102
spanning tree TC-BPDU guard, LSW-111
Smart Link group protected VLAN, HA-102
spanning tree TC-BPDU transmission restriction,
LSW-110
Smart Link group role preemption, HA-103
special IP addresses, IPSER-21
Smart Link links, HA-99
SSH client host public key configuration,
SEC-306
Smart Link load sharing, HA-100
Smart Link ports, HA-99
SSH management parameters, SEC-308
Smart Link+Track collaboration, HA-104
SSH packet source IP address, SEC-310
Smart Link+Track+CFD collaboration, HA-137
SSH SCP client device, SEC-315
SNMP notification for MAC address table,
LSW-33
SSH SCP server enable, SEC-305
SSH Secure Telnet client device, SEC-310
source MAC consistency check, SEC-402
spanning tree BPDU drop, LSW-111
spanning tree BPDU guard, LSW-108
spanning tree BPDU transmission rate, LSW-93
spanning tree Digest Snooping, LSW-102,
LSW-103
SSH
Secure
Telnet
authentication, SEC-325
client
password
SSH
Secure
Telnet
authentication, SEC-329
client
publickey
SSH Secure Telnet configuration, SEC-317
SSH Secure Telnet
establishment, SEC-310
spanning tree edge port, LSW-93
spanning tree loop guard, LSW-109
server
connection
server
password
spanning tree mode set, LSW-86
SSH
Secure
Telnet
authentication, SEC-317
spanning tree No Agreement Check, LSW-104,
LSW-106
SSH
Secure
Telnet
authentication, SEC-320
server
publickey
spanning tree port link type, LSW-98
SSH server configuration, SEC-303
spanning tree port mode, LSW-99
SSH SFTP client device, SEC-312
spanning tree port path cost, LSW-94, LSW-97
SSH SFTP client publickey authentication,
SEC-334
spanning tree port priority, LSW-97
SSH SFTP configuration, SEC-331
spanning tree port role restriction, LSW-110
SSH SFTP directories, SEC-314
spanning tree port state transition, LSW-99
SSH SFTP files, SEC-314
spanning tree priority, LSW-89
SSH SFTP packet source IP address, SEC-312
spanning tree protection functions, LSW-108
SSH SFTP server connection establishment,
SEC-312
spanning tree root bridge, LSW-88
spanning tree root bridge (device), LSW-89
SSH SFTP
SEC-315
spanning tree root guard, LSW-108
server
connection
termination,
SSH SFTP server enable, SEC-304
spanning tree secondary root bridge (device),
LSW-89
SSH SFTP server password authentication,
SEC-331
spanning tree switched network diameter,
LSW-90
SSH user configuration, SEC-307
spanning tree TC Snooping, LSW-106
SSL client policy configuration, SEC-344
149
SSL protocol stack, SEC-342
TRILL LSP fast advertisement, TRILL-15
SSL server policy configuration, SEC-343
TRILL LSP parameter, TRILL-13
static routing configuration, IPR-6
TRILL LSP parameter and feature, TRILL-13
static
routing+Track+NQA
HA-132
TRILL neighbor change logging, TRILL-21
collaboration,
TRILL port DRB priority, TRILL-11
Stelnet server enable, SEC-304
TRILL port link type, TRILL-10
STP algorithm calculation, LSW-70
TRILL RB nickname, TRILL-9
STP designated bridge, LSW-69
TRILL RB system ID, TRILL-9
STP designated port, LSW-69
TRILL routing bridge network, TRILL-1
STP path cost, LSW-70
TRILL SNMP configuration, TRILL-22
STP root bridge, LSW-69
TRILL SPF algorithm parameter, TRILL-16
STP root port, LSW-69
TRILL timer configuration, TRILL-12
sub-VLAN-based multicast VLAN configuration,
MCAST-50
TRILL VR configuration, TRILL-19
TRILL VR MAC address learning for non-TRILL
device, TRILL-20
table capacity adjust, FM-163
tracert node failure identification, NM-4
TRILL VR-Track entry association, TRILL-20
Track+application module association, HA-131
trunk VSAN configuration, FCoE-27
Track+CFD association, HA-129
trunk VSAN in FC network, FCoE-26
Track+detection module association, HA-129
Track+interface
HA-130
management
trunk VSAN in FCoE network, FCoE-26
association,
UDP helper conversion (broadcast to multicast),
IPSER-133
Track+NQA association, HA-129
Track+Smart Link association, HA-132
UDP helper conversion (broadcast to unicast),
IPSER-132
Track+static routing association, HA-131
VFC interface configuration, FCoE-15
TRILL announcing VLAN, TRILL-12
VFC interface RCF request rejection, FCoE-41
TRILL designated VLAN, TRILL-12
VLAN basic configuration, LSW-129
TRILL distribution tree, TRILL-16
VLAN group configuration, LSW-143
TRILL distribution tree basics, TRILL-16
VLAN interface basics, LSW-130
TRILL distribution tree multithread calculation,
TRILL-17
VLAN mapping 1:1 implementation, LSW-217
VLAN mapping 1:2 implementation, LSW-218
TRILL ECMP route configuration, TRILL-18
VLAN mapping 2:2 implementation, LSW-218
TRILL enable, TRILL-8
VLAN mapping configuration (1:1), LSW-220
TRILL forwarding for EVB S-channel traffic,
TRILL-22
VLAN mapping configuration (1:2), LSW-225
VLAN mapping configuration (2:2), LSW-226
TRILL forwarding mechanisms, TRILL-3
VLAN mapping configuration (M:1), LSW-221
TRILL frame formats, TRILL-1
VLAN mapping configuration (M:1) (dynamic IP
address assignment), LSW-221
TRILL GR configuration, TRILL-23
150
VLAN mapping configuration (M:1) (static IP
address assignment), LSW-223
802.1X
SEC-93
authorization
VLAN mapping M:1 customer-side port
(dynamic IP address assignment), LSW-222
802.1X basics, SEC-90
VLAN
assignment,
802.1X configuration, SEC-71, SEC-79
VLAN mapping M:1 customer-side port (static IP
address assignment), LSW-224
802.1X EAD assistant, SEC-97
802.1X guest VLAN assignment, SEC-93
VLAN mapping M:1 implementation, LSW-217
802.1X overview, SEC-62
VLAN mapping M:1 network-side port (dynamic
IP address assignment), LSW-222
AAA configuration, SEC-1, SEC-16, SEC-48
VLAN mapping M:1 network-side port (static IP
address assignment), LSW-224
AAA HWTACACS/RADIUS differences, SEC-7
VLAN port-based configuration, LSW-144
ACL configuration (advanced), QACL-5
voice VLAN assignment mode, LSW-173
ARP attack protection configuration, SEC-357
voice VLAN CDP advertisement configuration,
LSW-179
ARP configuration, IPSER-1, IPSER-7
voice VLAN host+IP phone connection (in
series), LSW-172
ARP snooping configuration, IPSER-17
ACL configuration, QACL-1, QACL-4, QACL-12
ARP fast-reply configuration, IPSER-18
voice VLAN information advertisement to IP
phones, LSW-171
ARP static configuration, IPSER-7
voice VLAN IP phone access method, LSW-172
automatic configuration, FM-173
voice VLAN IP phone connection (device),
LSW-172
automatic configuration (server-based), FM-177
voice VLAN IP phone identification method
(LLDP), LSW-171
CFD basic configuration, HA-19
attack D&P configuration, SEC-401
CFD basic concepts, HA-13
voice VLAN IP phone identification method
(OUI address), LSW-170
CFD configuration, HA-13, HA-18
voice VLAN LLDP advertisement configuration,
LSW-179
common proxy ARP configuration, IPSER-15
CLI use, FM-1
configuration file management, FM-94
voice VLAN LLDP enable, LSW-178
crypto engine configuration, SEC-383
voice VLAN port mode, LSW-174
CWMP basic functions, NM-216
voice VLAN port operation configuration
(automatic assignment), LSW-176, LSW-180
CWMP configuration,
NM-225
voice VLAN port operation configuration
(manual assignment), LSW-177, LSW-182
NM-215,
NM-218,
data buffer configuration, QACL-91
voice VLAN QoS priority setting configuration,
LSW-175
DDNS configuration, IPSER-105, IPSER-109
VSAN creation, FCoE-27
DHCP BOOTP client configuration, IPSER-81,
IPSER-82
device management, FM-145
network management
802.1X ACL assignment, SEC-95
DHCP client configuration, IPSER-65, IPSER-67
802.1X authentication, SEC-90
DHCP overview, IPSER-25
151
DHCP relay agent, IPSER-62
FC overview, FCoE-1
DHCP relay agent configuration, IPSER-55,
IPSER-56
FC ping configuration, FCoE-118
FC routing configuration, FCoE-52, FCoE-61
DHCP relay agent Option 82, IPSER-63
FC static routing configuration (VFC interface),
FCoE-61
DHCP server configuration, IPSER-32, IPSER-34,
IPSER-47
DHCP snooping
IPSER-72, IPSER-78
DHCPv6 client
IPSER-190
configuration,
FC tracert configuration, FCoE-122, FCoE-123
IPSER-70,
configuration,
FC zone configuration, FCoE-70, FCoE-79,
FCoE-88
IPSER-187,
FCoE basic concepts, FCoE-2
FCoE
configuration,
FCoE-129
DHCPv6 concepts, IPSER-169
DHCPv6 overview, IPSER-165
DHCPv6 server configuration,
IPSER-171, IPSER-177
snooping
basic
FCoE overview, FCoE-1
FCS configuration, FCoE-109, FCoE-112
IPSER-168,
FDMI configuration, FCoE-116
file system management, FM-85
configuration,
FIPS configuration, SEC-384, SEC-390
DHCPv6 snooping configuration, IPSER-195,
IPSER-197, IPSER-202
flow mirroring configuration, NM-188, NM-191
FSPF configuration (VFC interface), FCoE-66
DNS configuration, IPSER-83, IPSER-86
FTP configuration, FM-73
EAA configuration, NM-203, NM-211
gratuitous ARP configuration, IPSER-11
eIRF basic concepts, IRF-46
high availability DLDP automatic unidirectional
link shutdown, HA-39
eIRF system setup, IRF-44
emergency shell use, FM-138, FM-142
Ethernet link aggregation
LSW-40, LSW-47, LSW-57
FCoE-21,
FCoE enable, FCoE-17
DHCPv6 relay agent configuration, IPSER-182,
IPSER-183, IPSER-185
DHCPv6
IPSER-197
FCoE-13,
high availability DLDP configuration, HA-32,
HA-36, HA-39
configuration,
high availability DLDP manual unidirectional
link shutdown, HA-42
Ethernet OAM basic configuration, HA-4
IGMP snooping configuration,
MCAST-17, MCAST-31
Ethernet OAM configuration, HA-1, HA-4, HA-11
EVB configuration, EVB-1, EVB-3, EVB-11
MCAST-14,
IGMP snooping group policy+simulated joining
configuration, MCAST-31
extended Python API, FM-168
extended Python API functions, FM-168
IGMP
snooping
MCAST-36
extended Python API import, FM-168
querier
configuration,
IGMP snooping static port configuration,
MCAST-33
extended Python API use, FM-168
fabric building, FCoE-32, FCoE-34
information center configuration, NM-6, NM-71,
NM-76, NM-84
fabric configuration, FCoE-44
FC configuration, FCoE-13, FCoE-129
inloopback interface configuration, LSW-15
FC forwarding configuration, FCoE-52
interface bulk configuration, LSW-18
152
interface configuration (Ethernet), LSW-1
ISSU, FM-115
IP addressing configuration, IPSER-20, IPSER-23
ISSU (install series commands), FM-121
IP forwarding, IPSER-113
ISSU HTTP feature compatible upgrade (issu
series commands), FM-126
IP multicast overview, MCAST-1
ISSU HTTP feature incompatible upgrade (issu
series commands), FM-128
IP multicast VPN support, MCAST-12
IP routing configuration, IPR-1
ISSU HTTP feature rollback (install series
commands), FM-135
IP routing RIP configuration, IPR-24
IP routing static route, IPR-7
IP services fast
IPSER-118
forwarding
ISSU HTTP feature
commands), FM-130
configuration,
IP services IRDP configuration,
IPSER-120, IPSER-121
(issu
series
ISSU HTTP feature upgrade (install series
commands), FM-132, FM-136
IPSER-119,
ISSU install series commands, FM-132
IP source guard (IPSG) configuration, SEC-346,
SEC-348, SEC-351
ISSU issu series commands, FM-126
ISSU methods, FM-115
IPPO (IPPO), IPSER-124
ISSU overview, FM-115
IPsec configuration, SEC-250, SEC-272
ISSU performance by issu series commands,
FM-118
IPsec IKE configuration, SEC-281, SEC-283,
SEC-292
LAN switching LLDP basic concepts, LSW-235
IPv4 DNS configuration, IPSER-92
LAN switching
LSW-258
IPv6 basic settings configuration, IPSER-136,
IPSER-143
LLDP
basic
configuration,
LAN switching LLDP configuration, LSW-235,
LSW-241, LSW-258
IPv6 basics configuration, IPSER-159
IPv6 default route configuration, IPR-34
LAN
switching
LLDP
(CDP-compatible), LSW-262
IPv6 DNS configuration, IPSER-97
configuration
LAN switching LLDP DCBX configuration,
LSW-250, LSW-264
IPv6 fast forwarding configuration, IPSER-204
IPv6 multicast port-based VLAN configuration,
MCAST-96
IPv6
multicast
sub-VLAN-based
configuration, MCAST-95
rollback
Layer 2 cut-through forwarding configuration,
LSW-270
VLAN
load sharing, IPSER-115
IPv6 multicast VLAN configuration, MCAST-93,
MCAST-95, MCAST-98
local precedence
QACL-66
marking
IPv6 PIM snooping configuration, MCAST-86,
MCAST-87, MCAST-88
local QoS ID marking, QACL-68
configuration,
IPv6 static routing basic configuration, IPR-32
login management SNMP device access,
FM-37
IPv6 static routing configuration, IPR-31, IPR-32
login management user access control, FM-38
IRF fabric configuration, IRF-29
loop detection, LSW-120
IRF fabric setup, IRF-1
loop detection configuration, LSW-122, LSW-124
IRF network topology, IRF-2
loopback interface configuration, LSW-15
153
NMM NTP multicast association mode, NM-35
MAC address table configuration, LSW-20,
LSW-21, LSW-34
MAC authentication, SEC-105, SEC-111
NMM
NTP
symmetric
association mode, NM-31
MAC authentication configuration, SEC-101
NMM PTP configuration, NM-51
MAC Information
LSW-37
NMM PTP configuration (IEEE 1588 v2),
NM-65
configuration,
LSW-36,
NMM PTP configuration (IEEE 802.1AS),
NM-68
MFF configuration, SEC-375, SEC-379
MLD snooping basic configuration, MCAST-64
MLD snooping configuration,
MCAST-63, MCAST-77
NMM SNMP configuration, NM-89, NM-107
MCAST-60,
NMM SNMPv1 configuration, NM-101
NMM SNMPv2c configuration, NM-101
MLD snooping group policy+simulated joining
configuration, MCAST-77
MLD
snooping
MCAST-82
MLD snooping
MCAST-79
querier
static
port
configuration,
NMM SNMPv3 configuration (RBAC mode ),
NM-105
configuration,
NMM SNMPv3 configuration (VACM mode ),
NM-103
NMM SNTP configuration, NM-47, NM-49
Monitor Link configuration, HA-120, HA-121,
HA-122
non-ISSU software upgrade, FM-113
NPV configuration, FCoE-93, FCoE-94, FCoE-97
MSTP configuration, LSW-112
multicast VLAN configuration,
MCAST-50, MCAST-53
active/passive
NQA collaboration configuration, NM-163
MCAST-48,
NQA configuration, NM-145
MVRP, LSW-185, LSW-188, LSW-192
null interface configuration, LSW-15
ND attack defense configuration, SEC-402
OpenFlow configuration, OF-1, OF-8, OF-16
NMM IPv6 NTP client/server association mode,
NM-29
PIM snooping configuration,
MCAST-42, MCAST-43
NMM IPv6 NTP multicast association mode,
NM-38
PKI configuration, SEC-216, SEC-218, SEC-230
NMM IPv6 NTP symmetric active/passive
association mode, NM-32
port isolation configuration, LSW-65
MCAST-41,
PMM Linux network, NM-199
NMM NETCONF configuration, NM-236
port isolation configuration (multiple isolation
groups), LSW-66
NMM NTP broadcast association mode,
NM-33
port mirroring configuration, NM-171, NM-182
port security configuration, SEC-173, SEC-176,
SEC-184
NMM NTP broadcast mode with authentication,
NM-43
port-based IPv6 multicast VLAN configuration,
MCAST-101
NMM NTP client/server association mode,
NM-28
NMM
NTP
client/server
authentication, NM-41
mode
port-based
MCAST-56
with
multicast
VLAN
configuration,
private VLAN configuration, LSW-153, LSW-157
NMM NTP configuration, NM-8, NM-14,
NM-51
process placement 1:N process redundancy,
HA-138
154
process
HA-139
placement
configuration,
RRPP single ring configuration, HA-64
HA-138,
security password control, SEC-197, SEC-202
proxy ARP configuration, IPSER-14
public key import from file, SEC-213
security
SEC-194
public key management, SEC-206, SEC-211
security portal authentication, SEC-123
PVST configuration, LSW-116
security portal authentication configuration,
SEC-118
Python use, FM-166
password
control
configuration,
security user profile configuration, SEC-395
QCN configuration, QACL-95, QACL-100,
QACL-102
Smart Link configuration, HA-98, HA-101,
HA-105
QinQ configuration, LSW-203, LSW-209
Smart Link group configuration (multiple group
load sharing), HA-110
QoS global CAR configuration, QACL-79
QoS overview, QACL-15
Smart Link group configuration (single group),
HA-105
QoS priority mapping priority trust mode,
QACL-31
Smart Link+Track collaboration, HA-114
QoS priority mapping table+priority marking,
QACL-32
software upgrade, FM-106
software upgrade with a warm reboot, FM-114
QoS priority marking configuration, QACL-66
spanning tree configuration, LSW-68, LSW-82,
LSW-112
QoS service models, QACL-15
QoS techniques, QACL-16
SSH configuration, SEC-300
RBAC configuration, FM-47, FM-50, FM-59
SSL configuration, SEC-342, SEC-343
RIP configuration, IPR-11, IPR-13
SSL services, SEC-342
RIPng basic configuration, IPR-42
static routing basic configuration, IPR-7
RIPng configuration, IPR-35, IPR-36, IPR-42
static routing configuration, IPR-6
RIPng IPsec profile configuration, IPR-47
static routing default route configuration, IPR-10
RIPng route redistribution, IPR-44
sub-VLAN-based
IPv6
configuration, MCAST-98
RMON alarm function configuration, NM-114
RMON configuration, NM-107, NM-112
multicast
VLAN
sub-VLAN-based multicast VLAN configuration,
MCAST-53
RMON Ethernet statistics group configuration,
NM-112
Tcl use, FM-164
RMON history group configuration, NM-113
TFTP configuration, FM-83
RRPP configuration, HA-47, HA-56, HA-64
time range configuration, QACL-89
RRPP dual-homed rings configuration, HA-73
Track configuration, HA-127, HA-128, HA-132
RRPP fast detection configuration, HA-93
transmission techniques, MCAST-1
RRPP intersecting rings configuration, HA-67
TRILL basic concepts, TRILL-1
RRPP
load-balanced
configuration, HA-83
TRILL configuration, TRILL-1, TRILL-7, TRILL-25
intersecting
rings
UDP helper configuration, IPSER-132, IPSER-134
RRPP networking, HA-53
VFC interface configuration, FCoE-15
155
VLAN configuration, LSW-128, LSW-144
displaying PTP, NM-65
VLAN mapping
LSW-219, LSW-227
displaying SNMP settings, NM-101
configuration,
LSW-214,
displaying SNTP, NM-49
VLAN mapping configuration (1:1), LSW-227
EAA configuration, NM-203, NM-211
VLAN mapping configuration (1:2), LSW-232
VLAN mapping configuration (2:2), LSW-232
EAA environment variable
(user-defined), NM-206
VLAN mapping configuration (M:1), LSW-227
EAA event monitor, NM-203
voice VLAN configuration, LSW-170, LSW-180
EAA event monitor policy element, NM-204
VSAN configuration, FCoE-26, FCoE-28
EAA event monitor policy environment variable,
NM-205
Network Time Protocol. Use NTP, Use NTP
configuration
EAA event source, NM-203
networking
EAA monitor policy, NM-204
RRPP intersecting rings load balancing, HA-55
EAA monitor policy configuration, NM-207
RRPP intersecting rings topology, HA-54
EAA monitor policy configuration (CLI), NM-207,
NM-211
RRPP single ring load balancing, HA-54
RRPP single ring topology, HA-53
EAA monitor policy configuration (CLI-defined
with environment variables), NM-212
RRPP tangent rings topology, HA-53
next-startup configuration file, FM-104
nickname (TRILL), TRILL-1, TRILL-9
EAA monitor policy configuration (Tcl), NM-209,
NM-213
NMM
EAA monitor policy suspension, NM-210
CWMP ACS attributes, NM-220
EAA RTM, NM-204
CWMP ACS attributes (default)(CLI), NM-221
feature module debug, NM-6
CWMP ACS attributes (preferred), NM-220
flow mirroring configuration, NM-188, NM-191
CWMP ACS autoconnect parameters, NM-223
flow mirroring match criteria, NM-188
CWMP ACS HTTPS SSL client policy, NM-224
flow mirroring QoS policy, NM-189
CWMP basic functions, NM-216
flow mirroring QoS policy application, NM-190
NM-218,
flow mirroring QoS policy application (control
plane), NM-190
CWMP CPE ACS authentication parameters,
NM-222
flow mirroring QoS policy application (global),
NM-190
CWMP CPE
NM-222
flow mirroring QoS
(interface), NM-190
CWMP configuration,
NM-225
ACS
NM-215,
connection
interface,
policy
application
flow mirroring QoS policy application (VLAN),
NM-190
CWMP CPE ACS provision code, NM-222
CWMP CPE attributes, NM-221
flow mirroring traffic behavior, NM-189
CWMP CPE NAT traversal, NM-224
information center configuration, NM-6, NM-71,
NM-76, NM-84
CWMP framework, NM-215
CWMP settings display, NM-225
information center diagnostic log save (log file),
NM-81
displaying NTP, NM-28
156
IPv6 NTP symmetric active/passive association
mode configuration, NM-32
information center display, NM-84
information center duplicate log suppression,
NM-83
Layer 2 remote port mirroring, NM-184
information center interface link up/link down
log generation, NM-83
Layer 2 remote port mirroring configuration,
NM-177
information center log default output rules,
NM-72
local port mirroring, NM-182
local port mirroring configuration, NM-173
information center log destinations, NM-72
local port mirroring group, NM-174
information center log formats, NM-73
local port mirroring group monitor port, NM-175
information center log levels, NM-71
local port mirroring group source port, NM-174
information center log minimum storage time,
NM-84
maintaining PTP, NM-65
NETCONF capability exchange, NM-240
information center log output (console), NM-77,
NM-84
NETCONF CLI operations, NM-261
information center log output (Linux log host),
NM-86
NETCONF CLI return, NM-265
information center log output (log buffer),
NM-78
NETCONF configuration data retrieval (all
modules), NM-249
information center log output (log host), NM-78
NETCONF configuration data retrieval (Syslog
module), NM-250
NETCONF configuration, NM-236, NM-239
information center log output (monitor terminal),
NM-77
NETCONF configuration load, NM-253
information center log output (UNIX log host),
NM-85
NETCONF configuration lock/unlock, NM-243,
NM-245
information center log save (log file), NM-79
NETCONF configuration rollback, NM-253
information center maintain, NM-84
NETCONF configuration save, NM-253
information center security log file management,
NM-81
NETCONF data entry retrieval (interface table),
NM-251
information center security log management,
NM-80
NETCONF data filtering, NM-256
NETCONF edit-config operation, NM-248
information center security log save (log file),
NM-80
NETCONF event
NM-241, NM-242
information center synchronous log output,
NM-82
NETCONF get-config/get-bulk-config operation,
NM-247
information center trace log file max size,
NM-82
IPv6 NTP multicast
configuration, NM-38
association
subscription,
NETCONF get/get-bulk operation, NM-246
information center system log types, NM-71
IPv6 NTP client/server
configuration, NM-29
notification
NETCONF over SOAP enable, NM-239
NETCONF parameter value change, NM-253
mode
NETCONF service operations, NM-246
association
mode
NETCONF session establishment, NM-240
157
NETCONF
NM-262
session
information
NQA DLSw operation configuration, NM-160
retrieval,
NQA DNS operation configuration, NM-148
NETCONF session termination, NM-264
NETCONF supported operations, NM-265
NQA echo operation configuration (ICMP),
NM-145
NQA client DHCP operation, NM-121
NQA FTP operation configuration, NM-149
NQA client DLSw operation, NM-131
NQA HTTP operation configuration, NM-150
NQA client DNS operation, NM-122
NQA operation, NM-117
NQA client echo operation (ICMP), NM-121
NQA operation configuration (UDP), NM-156
NQA client echo operation (UDP), NM-128
NQA path jitter operation configuration,
NM-161
NQA client FTP operation, NM-123
NQA server, NM-119
NQA client history record save, NM-137
NQA SNMP operation configuration, NM-154
NQA client HTTP operation, NM-124
NQA TCP operation configuration, NM-155
NQA client operation, NM-120
NQA template configuration (DNS), NM-166
NQA client operation optional parameters,
NM-132
NQA template configuration (FTP), NM-169
NQA client operation scheduling, NM-138
NQA template configuration (HTTP), NM-168
NQA client path jitter operation, NM-131
NQA template configuration (ICMP), NM-165
NQA client SNMP operation, NM-126
NQA template configuration (TCP), NM-167
NQA client statistics collection, NM-137
NQA threshold monitoring, NM-118
NQA client TCP operation, NM-127
NQA UDP
NM-151
NQA client template, NM-138
NTP access control rights, NM-17
NQA client template (HTTP), NM-141
NTP architecture, NM-9
NQA client template (ICMP), NM-139
NTP association mode, NM-14
NQA client template (TCP), NM-140
NTP authentication configuration, NM-18
NQA client template optional parameters,
NM-144
NTP broadcast association mode configuration,
NM-16, NM-33
NQA client threshold monitoring, NM-134
collaboration
configuration,
NQA+Track collaboration, NM-118
NQA client template (FTP), NM-142
Track
operation
NQA voice operation configuration, NM-158
NQA client template (DNS), NM-139
NQA client
NM-133
jitter
NTP
broadcast
mode
configuration, NM-22
function,
authentication
NTP broadcast mode with authentication,
NM-43
NQA client UDP jitter operation, NM-125
NQA client voice operation, NM-129
NTP
client/server
configuration, NM-28
NQA collaboration configuration, NM-163
NQA configuration, NM-117, NM-119, NM-145
NTP
client/server
configuration, NM-18
NQA DHCP operation configuration, NM-147
NQA display, NM-144
158
association
mode
mode
authentication
PTP clock node, NM-51
NTP client/server mode with authentication,
NM-41
PTP clock node type, NM-57
NTP configuration, NM-8, NM-14, NM-51
PTP clock priority, NM-64
NTP enable, NM-14
PTP clock source type, NM-53
NTP local clock as reference source, NM-27
PTP cumulative offset, NM-63
NTP max number dynamic associations, NM-27
PTP delay correction value, NM-63
NTP message processing disable, NM-26
PTP Delay_Req message send interval, NM-61
NTP message source interface specification,
NM-26
PTP domain, NM-51, NM-57
PTP grandmaster clock, NM-52
NTP multicast association mode, NM-16
PTP master-member/subordinate relationship,
NM-52
NTP multicast association mode configuration,
NM-35
NTP
multicast
mode
configuration, NM-23
PTP message encapsulation protocol, NM-62
authentication
PTP non-Pdelay message MAC address, NM-62
NTP optional parameter configuration, NM-25
PTP OC, NM-58
NTP packet DSCP value configuration, NM-27
PTP OC delay measurement, NM-59
NTP protocols and standards, NM-13
PTP Pdelay_Req message send interval, NM-61
NTP security, NM-12
PTP port role, NM-58
NTP symmetric active/passive
mode configuration, NM-31
PTP profile, NM-51
association
NTP
symmetric
active/passive
authentication configuration, NM-19
PTP protocols and standards, NM-55
mode
PTP standard, NM-57
PTP Sync message send interval, NM-61
ping address reachability determination, NM-1
PTP synchronization mechanism, NM-53
ping command, NM-1
PTP system time source, NM-64
ping connectivity test, NM-1
PTP TC+OC port type configuration, NM-59
port mirroring classification, NM-172
PTP timestamp, NM-58
port mirroring configuration, NM-171, NM-182
PTP UDP packet source IP address, NM-62
port mirroring display, NM-182
PTP UTC correction date, NM-63
port mirroring implementation, NM-172
port mirroring
NM-178
remote
destination
PTPconfiguration, NM-51
group,
PTPconfiguration (IEEE 1588 v2), NM-65
port mirroring remote source group, NM-180
PTPconfiguration (IEEE 802.1AS), NM-68
PTP announce message interval, NM-60
RMON alarm function configuration, NM-114
PTP announcement interval, NM-60
RMON alarm group sample type, NM-109
PTP basic concepts, NM-51
RMON configuration, NM-107, NM-112
PTP BC delay measurement, NM-59
RMON Ethernet statistics group configuration,
NM-112
PTP BITS clock parameter, NM-64
RMON group, NM-107
PTP clock mode, NM-55
159
system information diagnostic log default output
rules, NM-72
RMON history group configuration, NM-113
RMON private alarm group sample type,
NM-109
system information hidden log default output
rules, NM-73
RMON protocols and standards, NM-109
system information security log default output
rules, NM-73
RMON settings display, NM-111
sFlow agent configuration, NM-194
sFlow collector
NM-194
information
system information trace log default output rules,
NM-73
configuration,
system maintenance, NM-1
sFlow configuration, NM-193, NM-196
tracert, NM-3, NM-4
sFlow counter sampling configuration, NM-195
tracert node failure identification, NM-4
sFlow display, NM-195
troubleshooting sFlow, NM-197
sFlow flow sampling configuration, NM-194
troubleshooting sFlow remote collector cannot
receive packets, NM-197
sFlow protocols and standards, NM-193
SNMP agent host notification, NM-99
NMS
SNMP basics, NM-91
SNMP configuration, NM-89, NM-107
login management SNMP device access,
FM-37
SNMP framework, NM-89
NMM SNMP Get operation, NM-90
SNMP Get operation, NM-90
NMM SNMP Notification operation, NM-90
SNMP logging configuration, NM-98
NMM SNMP protocol versions, NM-90
SNMP MIB, NM-89
NMM SNMP Set operation, NM-90
SNMP MIB access control mode, NM-91
RMON configuration, NM-107, NM-112
SNMP MIB role-based access control, NM-91
TRILL SNMP configuration, TRILL-22
no
SNMP MIB view-based access control, NM-91
SNMP notification, NM-98
AAA no accounting method, SEC-12
SNMP protocol versions, NM-90
AAA no authentication, SEC-12
SNMP view-based MIB access control, NM-89
AAA no authorization, SEC-12
No Agreement Check (spanning tree), LSW-104,
LSW-106
SNMPv1 configuration, NM-101
SNMPv2c configuration, NM-101
node
SNMPv3 configuration (RBAC mode ), NM-105
SNMPv3
NM-103
configuration
(VACM
mode
configuring RRPP node, HA-59
),
DHCP client NetBIOS node b (broadcast) type,
IPSER-39
SNTP authentication, NM-48
DHCP client NetBIOS node h (hybrid) type,
IPSER-39
SNTP configuration, NM-47, NM-49
SNTP enable, NM-47
DHCP client NetBIOS node m (mixed) type,
IPSER-39
SNTP NTP server specification, NM-48
DHCP client NetBIOS node p (peer-to-peer) type,
IPSER-39
system debugging, NM-1, NM-6
160
voice VLAN mode, LSW-174
FC4 default information, FCoE-43
notification
FCoE VFC interface, FCoE-6
FCoE VN interface, FCoE-6
MAC address move, LSW-30
NMM PTP clock node type, NM-57
SNMP notification for MAC address table,
LSW-33
RRPP assistant edge type, HA-48
notifying
RRPP edge type, HA-48
AAA RADIUS SNMP notification, SEC-31
RRPP master type, HA-48
FCoE VSAN
FCoE-41
RRPP transit type, HA-48
specifying RRPP assistant edge node, HA-60
fabric
SNMP
notifications,
IPsec IKE SNMP notification, SEC-291
specifying RRPP edge node, HA-60
IPsec SNMP notification, SEC-270
specifying RRPP master node, HA-60
multi-CND QCN configuration, QACL-105
specifying RRPP transit node, HA-60
no-learning action (loop detection), LSW-121
NMM NETCONF event notification subscription,
NM-241, NM-242
non-AAA authentication (RBAC), FM-55
NMM SNMP agent host notification, NM-99
non-AAA authorization (RBAC), FM-49
NMM SNMP configuration, NM-89, NM-107
non-authentication mode (DLDP), HA-34
NMM SNMP notification, NM-98
non-default MDC login management, FM-14
NMM SNMP Notification operation, NM-90
non-disruptive fabric reconfiguration, FCoE-40
NQA client SNMP operation, NM-126
none
QCN basic configuration, QACL-102
login management CLI authentication mode,
FM-18
QCN configuration, QACL-95, QACL-100,
QACL-102
login management CLI console/AUX none
authentication, FM-19
QoS congestion avoidance+ECN, QACL-59
login management
authentication, FM-24
Telnet
login
TRILL SNMP configuration, TRILL-22
none
NPV
configuration, FCoE-93, FCoE-94, FCoE-97
non-FCoE mode (FCoE), FCoE-9
display, FCoE-96
non-modular QoS. Use non-MQC
disruptive load balancing, FCoE-94
non-MQC
disruptive load balancing process initiation,
FCoE-96
QoS GTS, QACL-41
QoS traffic policing, QACL-40
downlink, FCoE-93
non-Pdelay message, NM-62
downlink interface, FCoE-93
non-temporary
downlink interface configuration, FCoE-95
DHCPv6 non-temporary address assignment,
IPSER-173
DHCPv6
IPSER-168
non-temporary
IPv6
downlink-uplink interface mapping, FCoE-94
downlink-uplink interface mapping interface
configuration, FCoE-96
address,
FCoE mode, FCoE-9, FCoE-10, FCoE-13
normal
161
uplink, FCoE-94
DLSw operation configuration, NM-160
uplink interface, FCoE-94
DNS operation configuration, NM-148
uplink interface configuration, FCoE-95
echo operation configuration (ICMP), NM-145
echo operation configuration (UDP), NM-156
NQA
client DHCP operation, NM-121
FTP operation configuration, NM-149
client DLSw operation, NM-131
HTTP operation configuration, NM-150
client DNS operation, NM-122
operation, NM-117
client echo operation (ICMP), NM-121
path jitter operation configuration, NM-161
client echo operation (UDP), NM-128
server configuration, NM-119
client enable, NM-120
SNMP operation configuration, NM-154
client FTP operation, NM-123
static
routing+Track+NQA
HA-132
client history record save, NM-137
collaboration,
TCP operation configuration, NM-155
client HTTP operation, NM-124
template configuration (DNS), NM-166
client operation, NM-120
template configuration (FTP), NM-169
client operation optional parameters, NM-132
template configuration (HTTP), NM-168
client operation scheduling, NM-138
template configuration (ICMP), NM-165
client path jitter operation, NM-131
template configuration (TCP), NM-167
client SNMP operation, NM-126
threshold monitoring, NM-118
client statistics collection, NM-137
Track collaboration function, NM-118
client TCP operation, NM-127
Track NQA+Track+static routing collaboration,
HA-128
client template (DNS), NM-139
client template (FTP), NM-142
Track+NQA association, HA-129
client template (HTTP), NM-141
UDP jitter operation configuration, NM-151
client template (ICMP), NM-139
voice operation configuration, NM-158
client template (TCP), NM-140
NTK
client template configuration, NM-138
ntkonly mode, SEC-179
client template optional parameters, NM-144
ntk-withbroadcasts mode, SEC-179
client threshold monitoring, NM-134
ntk-withmulticasts mode, SEC-179
client Track collaboration function, NM-133
port security feature, SEC-173
client UDP jitter operation, NM-125
NTP
client voice operation, NM-129
access control, NM-12
collaboration configuration, NM-163
access control rights configuration, NM-17
configuration, NM-117, NM-119, NM-145
architecture, NM-9
DHCP operation configuration, NM-147
association mode configuration, NM-14
display, NM-144
authentication, NM-13
162
multicast mode max
associations, NM-27
authentication configuration, NM-18
broadcast association mode, NM-10
number
dynamic
multicast server configuration, NM-17
broadcast association mode configuration,
NM-16, NM-33
optional parameter configuration, NM-25
broadcast client configuration, NM-16
packet DSCP value configuration, NM-27
broadcast mode authentication configuration,
NM-22
protocols and standards, NM-13
broadcast mode max
associations, NM-27
number
security, NM-12
dynamic
SNTP authentication, NM-48
SNTP configuration, NM-47, NM-49
broadcast mode with authentication, NM-43
SNTP server specification, NM-48
broadcast server configuration, NM-16
symmetric active/passive association mode,
NM-10
client/server association mode, NM-10
client/server association mode configuration,
NM-14, NM-28
symmetric active/passive association mode
configuration, NM-15, NM-31
client/server mode authentication configuration,
NM-18
symmetric active/passive mode authentication
configuration, NM-19
client/server mode max number dynamic
associations, NM-27
symmetric active/passive mode max number
dynamic associations, NM-27
client/server mode with authentication, NM-41
null interface
configuration, NM-8, NM-14, NM-51
configuration, LSW-15, LSW-16
configuration restrictions, NM-13
displaying, LSW-16
displaying, NM-28
maintaining, LSW-16
enable, NM-14
numbering
how it works, NM-8
IPv6
client/server
configuration, NM-29
ACL, QACL-2
association
mode
ACL automatic rule numbering, QACL-3
ACL automatic rule renumbering, QACL-3
IPv6 multicast association mode configuration,
NM-38
IPv6 symmetric active/passive
mode configuration, NM-32
ACL copy, QACL-10
ACL rule numbering, QACL-3
association
ACL rule numbering step, QACL-3
local clock as reference source, NM-27
CLI display command output lines, FM-9
message processing disable, NM-26
IPsec IKE SA max number set, SEC-291
message source interface specification, NM-26
O multicast association mode, NM-10
OAM
multicast association
NM-16, NM-35
mode
configuration,
CFD basic configuration, HA-19
CFD configuration, HA-13, HA-18, HA-26
multicast client configuration, NM-16
OAMPDU, HA-1
multicast mode authentication configuration,
NM-23
object
163
FCS interconnect, FCoE-109, FCoE-112
flow entry, OF-3
FCS port, FCoE-109, FCoE-112
flow table, OF-3
flow table creation, OF-9
obtaining
flow table modification message restrictions,
OF-21
emergency shell system software image, FM-139
PKI certificate, SEC-224
group table, OF-5
RBAC temporary user role authorization, FM-58
inband management VLAN, OF-10
offline
instance, OF-2
MAC authentication offline detect, SEC-107
instance activation/reactivation, OF-12
PKI offline mode, SEC-222
instance configuration, OF-8
port security authorization-fail-offline feature,
SEC-184
instance creation, OF-8
instance mode, OF-8
online
CLI online help access, FM-2
instance port, OF-2
MAC authentication keep-online, SEC-110
instruction restrictions, OF-19
PKI online mode, SEC-222
LLDP frame matching restrictions, OF-21
security portal authentication
detection, SEC-130
user
MAC address learning, OF-11
online
MAC-IP flow table cooperation, OF-24
OpenCA
MAC-IP flow table dynamic aware, OF-24
PKI CA server certificate request, SEC-236
MAC-IP flow table restrictions, OF-23
OpenFlow
MAC-IP flow table table-miss entry, OF-23
action list/action set merge restrictions, OF-19
matching restrictions, OF-18
activation/reactivation, OF-2
max flow entries, OF-10
Appendix A, Application restrictions, OF-18
message (asynchronous), OF-7
Appendix B, MAC-IP flow table, OF-22
message (controller-to-switch), OF-6
ARP OpenFlow table entry, IPSER-3
message (symmetric), OF-7
associated VLAN, OF-2
meter table, OF-5
channel, OF-6
packet loss prevention, OF-15
configuration, OF-1, OF-8, OF-16
packet-in message restrictions, OF-21
connection interruption mode, OF-13
packet-out message restrictions, OF-20
controller mode set, OF-10
controller+main
OF-13
connection
pipeline, OF-4
configuration,
port types, OF-2, OF-11
protocols and standards, OF-7
datapath ID, OF-12
switch controller configuration, OF-13
default action of table-miss flow entries, OF-12
switch types, OF-1
displaying, OF-15
table-miss flow entry, OF-4
dynamic MAC address support configuration,
OF-14
timer setting, OF-14
164
Option 43 (DHCP), IPSER-28
OpenFlow forwarding
Option 51 (DHCP), IPSER-28
packet loss prevention, OF-15
Option 53 (DHCP), IPSER-28
operation
Option 55 (DHCP), IPSER-28
IP services IRDP, IPSER-119
Option 60 (DHCP), IPSER-28
operation, administration and maintenance. Use
OAM
Option 66 (DHCP), IPSER-28
operational key (Ethernet link aggregation), LSW-41
Option 67 (DHCP), IPSER-28
optimal
Option 82 (DHCP)
IP forwarding optimal route selection, IPSER-113
handling enable, IPSER-44
IP routing FIB table optimal routes, IPR-1
relay agent, IPSER-28, IPSER-30, IPSER-63
optimizing
relay agent configuration, IPSER-60
IP performance, IPSER-124
relay agent support, IPSER-56
IPPO directed broadcasts, IPSER-124
snooping configuration, IPSER-73, IPSER-79
IPPO ICMP error message rate limit, IPSER-130
snooping support, IPSER-71
IPPO ICMP error messages, IPSER-128
Option 121 (DHCP), IPSER-28
IPPO ICMP fragment forwarding, IPSER-130
Option 150 (DHCP), IPSER-28
IPPO interface MTU, IPSER-125
Option 184 (DHCP)
IPPO interface TCP MSS, IPSER-126
reserved option, IPSER-28, IPSER-30
IPPO TCP path MTU discovery, IPSER-126
voice client parameters, IPSER-41
IPPO TCP SYN cookie, IPSER-127
ordinary
IPPO TCP timers, IPSER-128
NMM PTP clock node (OC), NM-51
process placement, HA-141
organization-specific LLDPDU TLV types, LSW-237
process placement optimization, HA-138
OUI address
RIP networks, IPR-19
voice VLAN IP phone identification method,
LSW-170
RIPng network, IPR-39
outbound
option
port mirroring, NM-171
DHCP field, IPSER-28
outputting
DHCP option customization, IPSER-42
CLI display command output filtering, FM-9
DHCP server option customization, IPSER-53
CLI display command output management,
FM-13
Option 3 (DHCP), IPSER-28
Option 6 (DHCP), IPSER-28
CLI display command output view, FM-13
Option 18
CLI display comment output to file, FM-12
DHCPv6 snooping, IPSER-196
CLI output control, FM-8
Option 33 (DHCP), IPSER-28
CLI output control keys, FM-9
Option 37
CLI output line numbering, FM-9
DHCPv6 snooping, IPSER-196
165
ARP filtering, SEC-372, SEC-373
information center log default output rules,
NM-72
ARP packet rate limit, SEC-360
information center logs (Linux log host), NM-86
information center logs (log buffer), NM-78
ARP packet source MAC consistency check,
SEC-363
information center logs (UNIX log host), NM-85
ARP packet validity check, SEC-365
information center synchronous log output,
NM-82
ARP user+packet validity check, SEC-367
data buffer burst function, QACL-92
information logs (console), NM-77, NM-84
data buffer configuration, QACL-91
information logs (log host), NM-78
DDNS outgoing packet DSCP value, IPSER-109
information logs (monitor terminal), NM-77
DHCP client packet DSCP value, IPSER-66
OpenFlow MAC-IP flow table table-miss entry,
OF-23
DHCP server packet DSCP value, IPSER-46
DHCP snooping packet rate limit, IPSER-77
spanning tree port state transition information,
LSW-99
DHCPv6 client packet DSCP value, IPSER-189
P DHCPv6 packet DSCP value, IPSER-176
packet
DHCPv6 snooping packet rate limit, IPSER-200
802.1X EAP format, SEC-63
DNS packet source interface, IPSER-90
802.1X EAPOL format, SEC-64
Ethernet link aggregation packet type-based
load sharing, LSW-47
802.1X format, SEC-63
FC FSPF hello packet type, FCoE-55
AAA HWTACACS outgoing packet source IP
address, SEC-36
FC FSPF interface dead interval, FCoE-58
AAA HWTACACS packet exchange process,
SEC-7
FC FSPF interface hello interval, FCoE-58
AAA LDAP packet exchange process, SEC-10
FC FSPF LSU packet type, FCoE-55
AAA RADIUS outgoing packet source IP
address, SEC-28
flow mirroring configuration, NM-188, NM-191
FC FSPF LSA packet type, FCoE-55
flow mirroring match criteria, NM-188
AAA RADIUS packet exchange process, SEC-3
flow mirroring QoS policy, NM-189
AAA RADIUS packet format, SEC-4
flow mirroring QoS policy application, NM-190
ACL configuration, QACL-4, QACL-12
flow mirroring QoS policy application (control
plane), NM-190
ACL filtering application (interface), QACL-11
ACL packet fragment filtering, QACL-3
flow mirroring QoS policy application (global),
NM-190
ACL switch applications, QACL-1
flow mirroring QoS
(interface), NM-190
ARP active acknowledgement, SEC-363
ARP attack protection (unresolvable IP attack),
SEC-357, SEC-359
ARP attack protection blackhole
(unresolvable IP attack), SEC-358
policy
application
flow mirroring QoS policy application (VLAN),
NM-190
routing
flow mirroring traffic behavior, NM-189
gratuitous ARP packet learning, IPSER-11
ARP attack protection source suppression
(unresolvable IP attack), SEC-358
166
IPv6 ICMPv6
IPSER-156
gratuitous ARP periodic packet send, IPSER-11
high availability DLDP advertisement packet
send interval, HA-37
time
exceeded
message,
IPv6 interface address assignment, IPSER-144
IP addressing configuration, IPSER-20, IPSER-23
IPv6 interface MTU, IPSER-154
IP forwarding, IPSER-113
IPv6 link-local address configuration, IPSER-146
IP multicast forwarding, MCAST-11
IPv6 max number NS message sent attempts,
IPSER-152
IP performance optimization, IPSER-124
IPv6 multicast echo request reply, IPSER-156
IP routing configuration, IPR-1
IPv6 ND configuration, IPSER-148
IP routing load sharing, IPR-2
IPv6 ND duplicate address detection, IPSER-141
IP routing route backup, IPR-2
IPv6 ND dynamic neighbor entries max number,
IPSER-148
IP routing route preference, IPR-2
IP routing route recursion, IPR-2
IPv6 ND hop limit, IPSER-149
IP routing route redistribution, IPR-3
IPv6 ND link-local entry minimization, IPSER-149
IPPO ICMP error message rate limit, IPSER-130
IPv6 ND neighbor reachability detection,
IPSER-141
IPPO ICMP fragment forwarding disable,
IPSER-130
IPv6 ND protocol address resolution, IPSER-140
IPPO ICMP packet source address, IPSER-130
IPv6 ND redirection, IPSER-142
IPsec ACL de-encapsulated packet check,
SEC-264
IPv6 ND router/prefix discovery, IPSER-141
IPv6 ND stale state entry aging timer, IPSER-149
IPsec anti-replay, SEC-265
IPv6 ND stateless address autoconfiguration,
IPSER-141
IPsec implementation, SEC-253
IPsec packet DF bit, SEC-268
IPv6 ND static neighbor entry, IPSER-148
IPsec packet logging enable, SEC-268
IPv6 path MTU discovery, IPSER-142, IPSER-154
IPsec QoS pre-classify enable, SEC-267
IPv6 addresses, IPSER-137
IPv6 PIM snooping configuration, MCAST-86,
MCAST-87, MCAST-88
IPv6 anycast address configuration, IPSER-147
IPv6 RA message parameter, IPSER-150
IPv6 basic settings configuration, IPSER-136,
IPSER-143
IPv6 static path MTU, IPSER-154
IPv6 transition technologies, IPSER-142
IPv6 basics configuration, IPSER-159
IPv6 tunneling technology, IPSER-143
IPv6 dual stack technology, IPSER-142
LAN switching
LSW-248
IPv6 dynamic path MTU aging timer, IPSER-155
IPv6 global unicast address, IPSER-144
LLDP
CDP
compatibility,
LAN switching LLDP DCBX configuration,
LSW-264
IPv6 ICMPv6 destination unreachable message,
IPSER-156
LAN switching LLDP PFC parameters, LSW-255
IPv6 ICMPv6 error message rate limit, IPSER-155
IPv6 ICMPv6 packet source address, IPSER-157
local precedence
QACL-66
IPv6 ICMPv6 redirect message, IPSER-157
multi-CND QCN configuration, QACL-105
167
marking
configuration,
QoS traffic redirection configuration, QACL-75,
QACL-76
NMM NTP DSCP value configuration, NM-27
NMM PTP UDP packet source IP address,
NM-62
QoS trusted port packet priority, QACL-30
NMM SNTP configuration, NM-47, NM-49
RIP network management configuration, IPR-22
OpenFlow matching restrictions, OF-18
RIP packet max length, IPR-23
OpenFlow packet-in message restrictions, OF-21
RIP packet send rate configuration, IPR-23
OpenFlow packet-out message restrictions,
OF-20
RIPng, IPR-35
PIM snooping configuration,
MCAST-42, MCAST-43
RIPng packet zero field check, IPR-40
MCAST-41,
security portal authentication BAS-IP
unsolicited portal packets, SEC-134
port mirroring configuration, NM-171, NM-182
spanning tree port mode configuration, LSW-99
QCN basic configuration, QACL-102
STP BPDU protocol packets, LSW-68
QCN configuration, QACL-95, QACL-100,
QACL-102
STP TCN BPDU protocol packets, LSW-68
TCP fragment attack prevention, SEC-401
QoS aggregate CAR configuration, QACL-79
UDP helper configuration, IPSER-132
QoS class-based accounting configuration,
QACL-82, QACL-83
QoS congestion
QACL-58
avoidance
for
UDP helper conversion (broadcast to multicast),
IPSER-133
configuration,
UDP helper conversion (broadcast to unicast),
IPSER-132
QoS congestion avoidance+ECN, QACL-59
VLAN mapping
LSW-219, LSW-227
QoS global CAR configuration, QACL-79
QoS GTS, QACL-38
configuration,
LSW-214,
VLAN mapping configuration (1:1), LSW-220,
LSW-227
QoS nesting configuration, QACL-72, QACL-73
VLAN mapping configuration (1:2), LSW-225,
LSW-232
QoS overview, QACL-15
QoS policy configuration, QACL-18
VLAN mapping configuration (2:2), LSW-226,
LSW-232
QoS priority mapping configuration, QACL-26,
QACL-29
VLAN mapping configuration (M:1), LSW-221,
LSW-227
QoS priority mapping priority trust mode,
QACL-31
VLAN mapping configuration (M:1) (dynamic IP
address assignment), LSW-221
QoS priority mapping table+priority marking,
QACL-32
VLAN mapping configuration (M:1) (static IP
address assignment), LSW-223
QoS priority marking configuration, QACL-64,
QACL-66
packet coloring
QoS rate limit, QACL-39
drop precedence, QACL-64
QoS traffic evaluation, QACL-36
traffic policing, QACL-64
QoS traffic filtering configuration, QACL-62,
QACL-63
packet filtering
ACL applicable
QACL-11
QoS traffic policing, QACL-37
168
scope
(VLAN
interface),
IGMP snooping query/response parameters,
MCAST-24
ACL configuration, QACL-1, QACL-10
ACL configuration (advanced), QACL-5
IPv6 RA
IPSER-151
ACL configuration (Ethernet frame header),
QACL-8
LAN switching
LSW-252
ACL configuration (user-defined), QACL-9
ACL default action, QACL-12
LAN switching
LSW-255
IP source guard (IPSG) configuration, SEC-346,
SEC-348, SEC-351
LLDP
APP
IPSER-150,
configuration,
LLDP
PFC
configuration,
NMM NETCONF parameter value change,
NM-253
IPv4 source guard (IPv4SG) dynamic binding
configuration, SEC-352
NMM NTP local clock as reference source,
NM-27
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
NMM NTP max number dynamic associations,
NM-27
IPv4 source guard (IPv4SG) static binding
configuration, SEC-351
NMM NTP
NM-26
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
message processing disable,
NMM NTP message source interface, NM-26
NMM NTP optional parameter configuration,
NM-25
IPv6 source guard (IPv6SG) static binding
configuration, SEC-354
NMM SNMP basics, NM-91
ND attack defense configuration, SEC-402
NMM SNMPv1 basics, NM-91
packet loss prevention
NMM SNMPv2c basics, NM-91
OpenFlow forwarding, OF-15
NMM SNMPv3 basics, NM-93
Pairwise
NQA client history record save, NM-137
configuration, FCoE-81
NQA client operation optional parameters,
NM-132
zone member role, FCoE-73
parameter
NQA client template optional parameters,
NM-144
AAA RADIUS accounting server parameters,
SEC-24
QCN CND congestion detection, QACL-102
configuration archive parameters, FM-100
QoS MQC, QACL-18
configuring SSH management parameters,
SEC-308
QoS non-MQC, QACL-18
security password control global parameters,
SEC-198
device management, FM-145
DHCPv6 server network parameters assignment,
IPSER-174
security password control local user parameters,
SEC-200
EVB VDP negotiation parameters, EVB-5
security password
parameters, SEC-199
FTP basic server parameters configuration,
FM-74
message
parameter,
LAN switching LLDP ETS configuration, LSW-254
ACL log generation+output interval, QACL-11
IGMP
snooping
MCAST-25
message
control
user
group
security super password control parameters,
SEC-201
parameters,
169
spanning tree timeout factor, LSW-92
FIPS compliance, SEC-197
stateless DHCPv6, IPSER-167
global parameters, SEC-198
TRILL LSP max age parameter, TRILL-13
local user parameters, SEC-200
TRILL LSP max number transmitted, TRILL-13
maintaining, SEC-202
TRILL LSP min interval, TRILL-13
max user account idle time, SEC-197
TRILL LSP refresh interval, TRILL-13
password complexity checking, SEC-195
password composition checking, SEC-194
partitioning
storage media CF card partition, FM-92
password expiration, SEC-195
storage media USB disk, FM-92
password history, SEC-196
password minimum length, SEC-194
passive
password not displayed, SEC-197
FTP passive (PASV) operating mode, FM-73
password setting, SEC-194
password
password updating, SEC-195
device password recovery capability disable,
FM-156
super parameters, SEC-201
high availability DLDP authentication, HA-38
user first login, SEC-196
login management CLI authentication mode,
FM-18
user group parameters, SEC-199
user login attempt limit, SEC-196
login management CLI console/AUX password
authentication, FM-20
user login control, SEC-196
patch
login management Telnet login password
authentication, FM-25
login management Telnet
authentication, FM-26
login
ISSU patch image, FM-123
scheme
software upgrade Comware patch image,
FM-106
SSH password authentication, SEC-301
SSH
password-publickey
SEC-301
path
authentication,
SSH
Secure
Telnet
authentication, SEC-325
client
password
SSH
Secure
Telnet
authentication, SEC-317
server
password
NQA client path jitter operation, NM-131
NQA path jitter, NM-117
NQA path jitter operation configuration,
NM-161
troubleshooting PKI storage path set failure,
SEC-249
SSH SFTP server password authentication,
SEC-331
pausing between CLI output screens, FM-8
PBR
password control
Track+application
HA-128
configuration, SEC-194, SEC-197, SEC-202
displaying, SEC-202
module
PD (DHCPv6), IPSER-170
enable, SEC-198
Pdelay_Req message, NM-61
event logging, SEC-197
peer
expired password login, SEC-195
IPsec implementation, SEC-253
170
collaboration,
IPsec SA, SEC-252
periodic gratuitous ARP packet send, IPSER-11
IPsec source interface policy bind, SEC-266
periodic MAC reauthentication, SEC-104
peer host public key entry, SEC-210
periodic time range (ACL), QACL-89
peer host public key import from file, SEC-210
permitting
PKI digital certificate, SEC-216
RBAC permission assignment, FM-47
PTP Peer Delay mechanism, NM-54
RBAC user role assignment, FM-49
public key peer configuration, SEC-210
TRILL VR MAC address learning for non-TRILL
device, TRILL-20
Perfect Forward Secrecy. See PFS
per-packet load sharing, LSW-47
per-flow load sharing, LSW-47, LSW-55
Per-VLAN Spanning Tree Protocol. Use PVST
performing
PEX
interface loopback test (Ethernet), LSW-5
eIRF device configuration as PEX, IRF-50
ISSU, FM-115
eIRF device operating mode, IRF-49
ISSU (install series commands), FM-121
eIRF hardware compatibility, IRF-48
ISSU by issu series commands, FM-118
eIRF PEX physical interface, IRF-46
ISSU for multichassis IRF fabric, FM-118
eIRF PEX port, IRF-46
ISSU for single-chassis IRF fabric, FM-120
eIRF PEX virtual slot number, IRF-47
ISSU HTTP feature compatible upgrade (issu
series commands), FM-126
PFC (Ethernet interface), LSW-6
PFC priority (LLDP), LSW-255
ISSU HTTP feature incompatible upgrade (issu
series commands), FM-128
PFS (IKE), SEC-283
ISSU HTTP feature rollback (install series
commands), FM-135
ISSU HTTP feature
commands), FM-130
rollback
(issu
physical
eIRF PEX physical interface, IRF-46
series
interface physical state change suppression
(Ethernet), LSW-4
ISSU HTTP feature upgrade (install series
commands), FM-132, FM-136
IRF physical interface, IRF-2
ISSU install series commands, FM-132
IRF physical interface connection, IRF-16
ISSU issu series commands, FM-126
IRF physical interface+port bind, IRF-17
NMM NETCONF CLI operations, NM-261
OpenFlow port type, OF-2
NMM NETCONF
NM-248
edit-config
operation,
NMM NETCONF
NM-246
get/get-bulk
operation,
physical interface
IRF 10-GE grouped port restrictions, IRF-12
IRF QSFP+ port restrictions, IRF-12
IRF restrictions, IRF-12
NMM NETCONF get-config/get-bulk-config
operation, NM-247
IRF SFP+ port restrictions, IRF-13
IRF
SFP+
port
(5700-48G-4XG-2QSFP+), IRF-13
NMM NETCONF service operations, NM-246
spanning tree mCheck, LSW-101
restrictions
IRF transceiver modules+cables restrictions,
IRF-12
periodic gateway probe (MFF), SEC-378
171
configuration, SEC-216, SEC-218, SEC-230
PIM
CRL, SEC-217
snooping. See PIM snooping
display, SEC-229
PIM snooping
configuration,
MCAST-43
MCAST-41,
domain configuration, SEC-220
MCAST-42,
entity configuration, SEC-219
display, MCAST-43
FIPS compliance, SEC-218
maintain, MCAST-43
local digital certificate, SEC-216
troubleshooting, MCAST-47
OpenCA server certificate request, SEC-236
troubleshooting PIM snooping does not work,
MCAST-47
operation, SEC-218
peer digital certificate, SEC-216
ping
public key management, SEC-206, SEC-211
address reachability determination, NM-1
RA digital certificate, SEC-216
FC ping configuration, FCoE-118
RSA Keon CA server certificate request,
SEC-230
network connectivity test, NM-1
system maintenance, NM-1
terminology, SEC-216
pipeline
troubleshoot CA certificate import failure,
SEC-248
OpenFlow, OF-4
troubleshoot CA certificate obtain failure,
SEC-245
PKI
applications, SEC-218
troubleshoot certificate export failure, SEC-249
architecture, SEC-217
troubleshoot configuration, SEC-245
CA digital certificate, SEC-216
troubleshoot CRL obtain failure, SEC-247
CA policy, SEC-217
troubleshoot local certificate import failure,
SEC-248
CA storage path, SEC-227
certificate export, SEC-227
troubleshoot local certificate obtain failure,
SEC-245
certificate import/export, SEC-240
certificate obtain, SEC-224
certificate removal, SEC-228
troubleshoot local certificate request failure,
SEC-246
certificate request, SEC-222
troubleshoot storage path set failure, SEC-249
certificate request (automatic), SEC-223
Windows 2003 CA server certificate request
configuration, SEC-233
certificate request (manual), SEC-223
plaintext
certificate request abort, SEC-224
high availability DLDP authentication, HA-38
certificate verification, SEC-225
high availability DLDP authentication mode,
HA-34
certificate verification (CRL checking), SEC-226
certificate verification (w/o CRL checking),
SEC-226
planning
IRF fabric setup, IRF-15
certificate-based access control policy, SEC-228
PMM
172
displaying, NM-199
IGMP snooping policy, MCAST-27
kernel thread deadloop detection, NM-200
IPsec (manual), SEC-258
kernel thread monitoring, NM-200
IPsec application to interface, SEC-264
kernel thread starvation detection, NM-201
IPsec policy (IKE-based), SEC-260
Linux kernel thread, NM-199
IPsec policy (IKE-based/direct), SEC-261
Linux network, NM-199
IPsec policy (IKE-based/template), SEC-262
Linux user, NM-199
IPsec QoS pre-classify enable, SEC-267
maintaining, NM-199
IPsec source interface policy bind, SEC-266
user PMM display, NM-199
IPsec transform set, SEC-257
MAC authentication user account policies,
SEC-101
point
CFD maintenance point, HA-14
MLD snooping group policy+simulated joining
configuration, MCAST-77
CFD MEP, HA-14
CFD MEP configuration, HA-19
MLD snooping policy, MCAST-73
CFD MEP list, HA-15
NMM EAA configuration, NM-203, NM-211
CFD MIP, HA-14
NMM EAA environment variable configuration
(user-defined), NM-206
poison reverse, IPR-20
RIPng configuration, IPR-40
NMM EAA event monitor policy element,
NM-204
policy
AAA RADIUS security policy server IP address,
SEC-30
NMM EAA event monitor policy environment
variable, NM-205
CWMP ACS HTTPS SSL client policy, NM-224
NMM EAA monitor policy, NM-204
DDNS client, IPSER-106
NMM EAA monitor policy configuration,
NM-207
DDNS client application, IPSER-108
NMM EAA monitor policy configuration (CLI),
NM-207, NM-211
FC default zone policy, FCoE-83
flow mirroring QoS policy, NM-189
NMM EAA monitor policy configuration
(CLI-defined with environment variables),
NM-212
flow mirroring QoS policy application, NM-190
flow mirroring QoS policy application (control
plane), NM-190
NMM EAA monitor policy configuration (Tcl),
NM-209, NM-213
flow mirroring QoS policy application (global),
NM-190
flow mirroring QoS
(interface), NM-190
policy
NMM EAA monitor policy suspension, NM-210
PKI CA policy, SEC-217
application
PKI certificate-based access control policy,
SEC-228
flow mirroring QoS policy application (VLAN),
NM-190
process placement configuration, HA-140
IGMP snooping drop unknown multicast data,
MCAST-28
process placement location affinity, HA-140
process
HA-140
IGMP snooping group policy+simulated joining
configuration, MCAST-31
173
placement
location-type
affinity,
MLD snooping IPv6 multicast group policy,
MCAST-73
process placement policy, HA-138
process placement process affinity, HA-141
polling
process placement self affinity, HA-141
interface statistics polling interval (Ethernet),
LSW-9
QoS application, QACL-21
QoS application (control plane), QACL-23
LAN switching LLDP enable, LSW-244
QoS application (global), QACL-23
polling mechanism (RRPP), HA-51
QoS application (user profile), QACL-24
pool
QoS application (VLAN), QACL-22
DHCPv6 address pool, IPSER-170
QoS definition, QACL-21
DHCPv6 address pool selection, IPSER-170
QoS interface application, QACL-22
port
QoS MQC, QACL-18
802.1X Auth-Fail VLAN, SEC-87
QoS non-MQC, QACL-18
802.1X critical VLAN, SEC-88
QoS policy configuration, QACL-18
802.1X guest VLAN, SEC-86
RBAC interface access policy, FM-48
applying interface NAS-ID profile, SEC-135
RBAC resource access policies, FM-53
RBAC user role assignment, FM-54
configuring local mirroring to support multiple
monitor ports, NM-176
RBAC user role interface policy, FM-53
configuring RRPP port, HA-59
RBAC user role local AAA authentication,
FM-55
device status detection timer, FM-157
DHCP snooping packet blocking port, IPSER-77
RBAC user role non-AAA authentication, FM-55
DHCP snooping trusted port, IPSER-70
RBAC user role remote AAA authentication,
FM-54
DHCP snooping untrusted port, IPSER-70
DHCPv6
IPSER-197
RBAC user role VLAN policy, FM-53
RBAC VLAN access policy, FM-48
security password control, SEC-197, SEC-202
password
security
portal
functions, SEC-118
control
DHCPv6 snooping Option 37 configuration,
IPSER-198
extended
DHCPv6 snooping trusted port, IPSER-195
security portal authentication policy server,
SEC-119
DHCPv6 snooping untrusted port, IPSER-195
eIRF PEX port, IRF-46
SSL client policy configuration, SEC-344
emergency shell management Ethernet port
configuration, FM-139
SSL server policy configuration, SEC-343
policying
IGMP snooping
MCAST-27
configuration,
DHCPv6 snooping Option 18 configuration,
IPSER-198
configuration,
authentication
basic
DHCPv6 snooping configuration, IPSER-195,
IPSER-197, IPSER-202
RBAC VPN instance access policy, FM-48
security
SEC-194
snooping
Ethernet aggregate interface, LSW-50
multicast
group
policy,
Ethernet
LSW-50
174
aggregate
interface
(description),
Ethernet link aggregate group Selected ports
min/max, LSW-51
Ethernet link aggregation traffic redirection,
LSW-56
Ethernet link aggregate interface (expected
bandwidth), LSW-52
Ethernet OAM port action configuration, HA-8
Ethernet link aggregate
settings, LSW-53
interface
Ethernet OAM remote loopback configuration,
HA-9
default
Ethernet OAM remote loopback on port, HA-10
Ethernet link aggregate interface shutdown,
LSW-53
Ethernet link aggregation
LSW-40, LSW-47, LSW-57
Ethernet OAM remote loopback on specific port,
HA-9
configuration,
Ethernet OAM
rejection, HA-10
Ethernet link aggregation configuration types,
LSW-41
remote
loopback
request
EVB configuration, EVB-1, EVB-3, EVB-11
FC direct routes, FCoE-53
Ethernet link aggregation dynamic mode,
LSW-43
FC zone database, FCoE-70
FCoE port modes, FCoE-3
Ethernet link aggregation edge aggregate
interface, LSW-47, LSW-52
Ethernet link aggregation group, LSW-48
high availability DLDP automatic unidirectional
link shutdown, HA-39
Ethernet link aggregation group (dynamic),
LSW-49
high availability DLDP configuration, HA-32,
HA-36, HA-39
Ethernet
LSW-48
high availability DLDP DelayDown timer, HA-37
link
aggregation
group
(static),
high availability DLDP manual unidirectional
link shutdown, HA-42
Ethernet link aggregation LACP, LSW-43
high availability DLDP port shutdown mode,
HA-38
Ethernet link aggregation load sharing, LSW-53
Ethernet link aggregation load sharing mode,
LSW-47
high availability DLDP port state, HA-33
IGMP snooping basic configuration, MCAST-18
Ethernet link aggregation local-first load sharing,
LSW-54
Ethernet link aggregation member port, LSW-40
IGMP snooping configuration,
MCAST-17, MCAST-31
Ethernet link aggregation member port state,
LSW-40, LSW-42, LSW-45
IGMP snooping dynamic port aging timer,
MCAST-15, MCAST-20
Ethernet link aggregation modes, LSW-42
IGMP snooping dynamic router port change,
MCAST-23
Ethernet link aggregation operational key,
LSW-41
IGMP snooping
MCAST-22
Ethernet link aggregation per-flow load sharing
algorithm settings, LSW-55
Ethernet
LSW-45
link
aggregation
reference
fast
leave
MCAST-14,
processing,
IGMP snooping group policy+simulated joining
configuration, MCAST-31
port,
IGMP snooping member port, MCAST-14
Ethernet link aggregation reference port choice,
LSW-42
IGMP snooping multicast group replacement,
MCAST-29
Ethernet link aggregation static mode, LSW-42
IGMP snooping multicast groups on port max,
MCAST-29
175
IGMP snooping multicast source port filtering,
MCAST-28
LAN switching
LSW-241
IGMP snooping port feature, MCAST-20
LAN switching LLDP operating mode, LSW-243
IGMP snooping related ports, MCAST-14
LAN switching LLDP polling, LSW-244
IGMP snooping router port, MCAST-14
LAN switching LLDP reinitialization delay,
LSW-244
IGMP snooping
MCAST-22
simulated
member
host,
LLDP
frame
transmission,
LAN switching LLDP Rx operating mode,
LSW-240
IGMP snooping static port, MCAST-21
LAN switching LLDP Tx operating mode,
LSW-240
IGMP snooping static port configuration,
MCAST-33
LAN switching LLDP TxRx operating mode,
LSW-240
interface fiber port (Layer 2 Ethernet), LSW-11
IP multicast port-based IPv6 multicast VLAN,
MCAST-94
Layer 2 aggregate interface (ignored VLAN),
LSW-51
IPv6 PIM snooping configuration, MCAST-86,
MCAST-87, MCAST-88
Layer 2 Ethernet link aggregation (dynamic),
LSW-59
IRF 10-GE grouped port restrictions, IRF-12
IRF connection restrictions, IRF-13
Layer 2 Ethernet link aggregation (static),
LSW-57
IRF link load sharing mode (port-specific),
IRF-20
Layer 2 Ethernet link aggregation edge
aggregate interface, LSW-63
IRF physical interface connection, IRF-16
Layer 2 Ethernet link aggregation group
(dynamic), LSW-49
IRF physical interface+port bind, IRF-17
Layer 2 Ethernet link aggregation group (static),
LSW-49
IRF port, IRF-2
IRF port shutdown exclusion, IRF-27
Layer 2 Ethernet link aggregation load sharing,
LSW-61
IRF QSFP+ port restrictions, IRF-12
IRF SFP+ port restrictions, IRF-13
IRF
SFP+
port
(5700-48G-4XG-2QSFP+), IRF-13
loop detection configuration,
LSW-122, LSW-124
restrictions
loop detection interval, LSW-121, LSW-124
isolation. See port isolation
LAN switching LLDP
LSW-242, LSW-258
basic
LSW-120,
loop detection protection action configuration,
LSW-123
configuration,
loop detection protection actions, LSW-121
LAN switching LLDP configuration, LSW-235,
LSW-241, LSW-258
loop detection status auto recovery, LSW-122
LAN switching LLDP disable operating mode,
LSW-240
MAC address table blackhole entry, LSW-23
MAC address learning, LSW-20
MAC address table configuration, LSW-20,
LSW-21, LSW-34
LAN switching LLDP enable, LSW-242
LAN switching LLDP frame encapsulation format,
LSW-248
MAC address table entry configuration, LSW-22
MAC address table multiport unicast entry,
LSW-23
LAN switching LLDP frame reception, LSW-241
176
MAC authentication, SEC-105, SEC-111
MLD snooping member port, MCAST-60
MAC authentication (local), SEC-111
MLD snooping policy, MCAST-73
MAC authentication (RADIUS-based), SEC-113
MLD snooping port feature configuration,
MCAST-66
MAC authentication concurrent port users max,
SEC-107
MLD snooping router port, MCAST-60
MLD snooping simulated member host port,
MCAST-68
MAC authentication configuration, SEC-101
MAC authentication critical VLAN, SEC-109
MLD snooping static
MCAST-67, MCAST-79
MAC authentication delay, SEC-108
MAC authentication guest VLAN, SEC-109
configuration,
configuration,
MST port roles, LSW-80
MAC authentication multi-VLAN mode, SEC-108
MAC Information
LSW-37
port
MST port states, LSW-81
LSW-36,
MVRP
application,
LSW-192
MFF network port, SEC-376, SEC-377
LSW-185,
LSW-188,
MVRP timer configuration, LSW-190
MFF user port, SEC-376
NMM IPv6 NTP client/server association mode,
NM-29
mirroring. See port mirroring
MLD snooping basic configuration, MCAST-64
MLD snooping configuration,
MCAST-63, MCAST-77
NMM IPv6 NTP multicast association mode,
NM-38
MCAST-60,
NMM IPv6 NTP symmetric active/passive
association mode, NM-32
MLD snooping dynamic port aging timer,
MCAST-61
NMM NTP association mode, NM-14
MLD snooping dynamic port aging timers,
MCAST-66
NMM NTP broadcast association mode,
NM-33
MLD snooping dynamic router port change,
MCAST-69
NMM NTP broadcast mode with authentication,
NM-43
MLD snooping fast-leave processing enable,
MCAST-68
NMM NTP client/server association mode,
NM-28
MLD snooping group policy+simulated joining
configuration, MCAST-77
NMM
NTP
client/server
authentication, NM-41
MLD snooping IPv6 multicast group policy,
MCAST-73
NMM NTP configuration, NM-8, NM-14,
NM-51
MLD
snooping
IPv6
replacement, MCAST-76
NMM NTP multicast association mode, NM-35
multicast
group
NMM
NTP
symmetric
association mode, NM-31
MLD snooping IPv6 multicast groups max (on
portl), MCAST-75
mode
with
active/passive
NMM PTP clock mode, NM-55
MLD snooping IPv6 multicast source port
filtering, MCAST-74
NMM PTP configuration, NM-51
NMM PTP configuration (IEEE 1588 v2),
NM-65
MLD snooping IPv6 multicast source port
filtering (on port), MCAST-74
NMM PTP configuration (IEEE 802.1AS),
NM-68
MLD snooping IPv6 multicast unknown data
drop, MCAST-74
177
security
portal
authentication
server
detection+user synchronization, SEC-162
NMM PTP port enable, NM-65
NMM PTP port role, NM-58
Smart Link, HA-99
NMM PTP TC+OC port type configuration,
NM-59
Smart Link configuration, HA-98, HA-101,
HA-105
NMM SNTP configuration, NM-47, NM-49
Smart Link group configuration (multiple group
load sharing), HA-110
OpenFlow instance port, OF-2
OpenFlow types, OF-2, OF-11
PIM snooping configuration,
MCAST-42, MCAST-43
Smart Link group configuration (single group),
HA-105
MCAST-41,
Smart Link group member ports, HA-102
port-based multicast VLAN user port assignment,
MCAST-52
Smart Link load sharing, HA-100
Smart Link+Track collaboration, HA-114
port-based multicast VLAN user port attribute,
MCAST-51
spanning tree BPDU drop, LSW-111
QinQ implementation, LSW-204
spanning tree BPDU guard, LSW-108
QoS priority mapping interface port priority,
QACL-31
spanning tree BPDU transmission rate, LSW-93
spanning tree edge port configuration, LSW-93
QoS trusted port packet priority, QACL-30
spanning tree forward delay timer, LSW-91
RRPP common, HA-49
spanning tree loop guard, LSW-109
RRPP edge, HA-49
spanning tree path cost calculation standard,
LSW-94
RRPP primary master, HA-49
spanning tree path cost configuration, LSW-94,
LSW-97
RRPP primary transit, HA-49
RRPP secondary master, HA-49
spanning tree port link type configuration,
LSW-98
RRPP secondary transit, HA-49
RSTP network convergence, LSW-76
spanning tree port mode configuration, LSW-99
security. See port security
spanning tree port priority configuration,
LSW-97
security portal authentication, SEC-123
security portal authentication configuration,
SEC-118, SEC-137
security portal
SEC-149
authentication
spanning tree port role restriction, LSW-110
spanning tree port state transition output,
LSW-99
cross-subnet,
spanning tree root guard, LSW-108
security portal authentication direct, SEC-137
security
portal
authentication
cross-subnet, SEC-159
spanning tree TC-BPDU guard, LSW-111
extended
spanning tree TC-BPDU transmission restriction,
LSW-110
security portal authentication extended direct,
SEC-152
STP designated port, LSW-69
STP root port, LSW-69
security portal authentication extended re-DHCP,
SEC-155
TRILL link cost configuration, TRILL-11
TRILL port DRB priority, TRILL-11
security portal authentication re-DHCP, SEC-145
TRILL port link type, TRILL-10
178
Layer 2 remote port mirroring configuration,
NM-184
trunk VSAN configuration, FCoE-27
trunk VSAN in FC network, FCoE-26
local, NM-172
trunk VSAN in FCoE network, FCoE-26
local configuration, NM-173
VLAN mapping M:1 customer-side port
(dynamic IP address assignment), LSW-222
local group creation, NM-174
local group monitor port, NM-175
VLAN mapping M:1 customer-side port (static IP
address assignment), LSW-224
local group monitor
restrictions, NM-175
VLAN mapping M:1 network-side port (dynamic
IP address assignment), LSW-222
local group source
restrictions, NM-174
VLAN port link type, LSW-131
port
configuration
local mirroring configuration, NM-182
voice VLAN port mode, LSW-174
local mirroring configuration with multiple
monitor ports, NM-186
voice VLAN port operation configuration
(automatic assignment), LSW-176, LSW-180
local mirroring supporting multiple monitors
configuration restrictions, NM-176
voice VLAN port operation configuration
(manual assignment), LSW-177, LSW-182
mirroring group, NM-171
port isolation
monitor port to remote probe VLAN assignment,
NM-179
configuration, LSW-65
(multiple
configuration
local group source port, NM-174
VLAN mapping M:1 network-side port (static IP
address assignment), LSW-224
configuration
LSW-66
port
isolation
reflector port, NM-172
groups),
remote, NM-172
display, LSW-65
remote destination
NM-178
port assignment to group (multiple), LSW-65
group
configuration,
remote destination group creation, NM-178
port mirroring
classification, NM-172
remote destination group monitor port, NM-178
configuration, NM-171, NM-182
remote destination group remote probe VLAN,
NM-179
configuring local mirroring to support multiple
monitor ports, NM-176
remote probe VLAN, NM-172
destination, NM-171
remote source group configuration, NM-180
destination device, NM-171
source, NM-171
direction (bidirectional), NM-171
source device, NM-171
direction (inbound), NM-171
terminology, NM-171
port security
direction (outbound), NM-171
display, NM-182
802.1X access control method, SEC-81
egress port, NM-172
802.1X authentication, SEC-90, SEC-175
implementation, NM-172
802.1X authorization state, SEC-81
Layer 2 remote configuration, NM-177
802.1X authorization status, SEC-62
802.1X basics, SEC-90
179
portal authentication
802.1X configuration, SEC-71, SEC-79
802.1X controlled/uncontrolled, SEC-62
AAA server, SEC-119
802.1X mandatory port authentication domain,
SEC-84
access device, SEC-119
authentication destination subnet, SEC-128
802.1X overview, SEC-62
authentication modes, SEC-120
802.1X port users max number, SEC-81
authentication process, SEC-121
authentication modes, SEC-173
authentication server, SEC-119
authorization-fail-offline, SEC-184
client
SEC-189
authentication source subnet, SEC-127
macAddressElseUserLoginSecure,
BAS-IP, SEC-134
client, SEC-119
client userLoginWithOUI, SEC-186
configuration, SEC-118, SEC-123, SEC-137
configuration, SEC-173, SEC-176, SEC-184
configuration restrictions, SEC-125
display, SEC-184
cross-subnet, SEC-149
enable, SEC-177
detection features, SEC-130
feature configuration, SEC-179
direct configuration, SEC-137
features, SEC-173
direct/cross-subnet authentication process (with
CHAP/PAP authentication), SEC-121
intrusion protection, SEC-179
intrusion protection feature, SEC-173
displaying, SEC-136
MAC address autoLearn, SEC-184
domain specification, SEC-129
MAC address learning control, SEC-175
enabling, SEC-125
MAC authentication, SEC-176
extended cross-subnet, SEC-159
MAC move enable, SEC-182
extended direct, SEC-152
MAC+802.1X authentication, SEC-176
extended functions, SEC-118
mode set, SEC-178
extended re-DHCP, SEC-155
NAS-ID profile application, SEC-183
fail-permit configuration, SEC-134
NTK configuration, SEC-179
maintaining, SEC-136
NTK feature, SEC-173
max number users, SEC-129
secure MAC address, SEC-180
portal-free rule, SEC-126
secure MAC address port limit, SEC-177
re-DHCP, SEC-145
server authorization information, SEC-182
roaming enable, SEC-136
troubleshooting, SEC-193
security policy server, SEC-119
troubleshooting mode cannot be set, SEC-193
troubleshooting
SEC-193
secure
MAC
server configuration, SEC-124
addresses,
server detection, SEC-131
server detection+user synchronization, SEC-162
portal
system component interaction, SEC-120
security user profile configuration, SEC-395
system components, SEC-118
180
troubleshooting, SEC-170
configuration, LSW-131, LSW-144
troubleshooting cannot log out users (access
device), SEC-170
port frame handling, LSW-132
port link type, LSW-131
troubleshooting cannot log out users (RADIUS
server), SEC-171
PVID, LSW-131
positive (attract) affinity, HA-139
troubleshooting no page pushed for users,
SEC-170
power
troubleshooting users logged out still exist on
server, SEC-171
interface auto power-down (Ethernet), LSW-8
types, SEC-118
interface energy-saving features (Ethernet),
LSW-8
interface EEE energy saving, LSW-8
user access control, SEC-126
user logout, SEC-136
power-up self-test, SEC-388
user online detection, SEC-130
PPPoE
security user profile configuration, SEC-395
user synchronization configuration, SEC-133
precedence
users cannot log in (re-DHCP), SEC-172
QoS priority mapping configuration, QACL-26,
QACL-29
Web server, SEC-119
Web server configuration, SEC-125
QoS priority mapping local precedence,
QACL-26
Web server detection configuration, SEC-132
Web server reference, SEC-126
QoS priority mapping priority trust mode,
QACL-31
port-based IPv6 multicast VLAN
QoS priority mapping table+priority marking,
QACL-32
configuration, MCAST-96, MCAST-101
implementation, MCAST-94
Precision Time Protocol. Use PTP
user port assignment, MCAST-97
preempting
user port attribute configuration, MCAST-96
Smart Link group role preemption, HA-103
port-based multicast VLAN
configuration,
MCAST-56
MCAST-51,
Smart Link role preemption, HA-100
MCAST-53,
preference
implementation, MCAST-49
IP routing route preference, IPR-2
user port assignment, MCAST-52
RIP configuration, IPR-18
user port attribute, MCAST-51
RIPng preference, IPR-38
prefix
port-based VLAN
access port
LSW-132
assignment
(interface
delegation. See PD
view),
DHCPv6 address/prefix assignment, IPSER-165
access port assignment (VLAN view), LSW-132
DHCPv6
IPSER-166
assignment (access port), LSW-132
address/prefix
DHCPv6 client
IPSER-188
assignment (hybrid port), LSW-134
assignment (trunk port), LSW-133
IPv6
lease
prefix
renewal,
acquisition,
DHCPv6 dynamic prefix allocation, IPSER-170
181
QoS packet IP precedence and DSCP values,
QACL-86
DHCPv6 IPv6 address assignment, IPSER-168
DHCPv6 IPv6 address/prefix
sequence, IPSER-171
allocation
spanning tree device priority, LSW-89
spanning tree port priority configuration,
LSW-97
DHCPv6 IPv6 prefix assignment, IPSER-168
DHCPv6 server dynamic IPv6 prefix assignment,
IPSER-177
DHCPv6 server
IPSER-172
IPv6
prefix
TRILL distribution tree, TRILL-16
TRILL port DRB priority, TRILL-11
assignment,
priority mapping
DHCPv6 static prefix allocation, IPSER-170
configuration, QACL-26, QACL-29
IPv6 static prefix configuration, IPSER-146
drop priority, QACL-26
stateless DHCPv6, IPSER-167
interface port priority, QACL-31
preloading
local precedence, QACL-26
Boot ROM image, FM-110
map, QACL-26
preparing
map configuration, QACL-30
software upgrade (non-ISSU), FM-109
mapping table+priority marking, QACL-32
preventing
priority trust mode, QACL-27, QACL-31
detection and prevention. See attack D&P
process, QACL-28
primary
trusted port packet priority, QACL-30
RRPP master port, HA-49
user priority, QACL-26
RRPP transit port, HA-49
priority mapping table
priority
drop precedence, QACL-64
802.1p-to-local priority mapping, LSW-254
priority marking
Ethernet link aggregation LACP, LSW-43
configuration, QACL-64, QACL-66
fabric switch priority, FCoE-36
priority-based flow control. Use PFC
FCF priority, FCoE-20
private
FCoE FCF system priority, FCoE-20
RMON private alarm group, NM-108
FCoE FCF VFC interface priority, FCoE-20
RMON private alarm group sample type,
NM-109
IRF device member priority, IRF-16
private VLAN
IRF member priority, IRF-4
configuration, LSW-153, LSW-154, LSW-157
LAN switching LLDP PFC 802.1p priority,
LSW-255
display, LSW-157
MAC address table learning priority, LSW-28
promiscuous port configuration, LSW-157
mapping. See priority mapping
marking. See priority marking
secondary VLAN Layer 3 communication,
LSW-167
QCN CND priority mapping, QACL-99
trunk promiscuous port configuration, LSW-160
QinQ SVLAN tag 802.1p priority, LSW-207
trunk promiscuous+trunk
configuration, LSW-163
QoS packet 802.1p priority, QACL-87
182
secondary
port
probe timer (DLDP), HA-33
applying port security NAS-ID profile, SEC-183
procedure
applying
QoS
congestion
avoidance
queue-based WRED table, QACL-59
abbreviating CLI command, FM-4
applying QoS policy, QACL-21
aborting ISSU software activate/deactivate
(install series commands), FM-124
applying QoS policy (control plane), QACL-23
accessing CLI online help, FM-2
applying QoS policy (global), QACL-23
accessing IRF fabric, IRF-19
applying QoS policy (user profile), QACL-24
accessing server with emergency shell, FM-140
applying QoS policy (VLAN), QACL-22
activating EVB VSI aggregate filter, EVB-10
applying QoS policy to interface, QACL-22
activating EVB VSI filter, EVB-10
applying RIPng IPsec profile, IPR-41
activating FC zone set, FCoE-85
archiving
FM-101
activating OpenFlow instance, OF-12
running
configuration
(manual),
assigning CWMP ACS attribute (preferred)(CLI),
NM-221
activating RRPP domain, HA-61
adding MAC address table blackhole entry,
LSW-23
assigning
CWMP
ACS
(preferred)(DHCP server), NM-220
adding MAC address table multiport unicast
entry, LSW-23
attribute
assigning IP addressing interface address,
IPSER-22
adjusting table capacities, FM-163
assigning IPv6 interface addresses, IPSER-144
advertising RIP default route, IPR-17
advertising RIPng default route, IPR-38
assigning IPv6 multicast port-based VLAN user
port, MCAST-97
advertising RIPv2 summary route, IPR-16
assigning IRF device member IDs, IRF-15
applying
QACL-11
assigning MAC address table learning priority
to interface, LSW-28
ACL
packet
filtering
(interface),
applying data buffer configuration, QACL-94
applying DDNS client policy to interface,
IPSER-108
assigning
LSW-65
port
isolation
assigning
LSW-132
port-based
group
(multiple),
VLAN
access
port,
access
port
applying flow mirroring QoS policy, NM-190
assigning port-based VLAN
(interface view), LSW-132
applying flow mirroring QoS policy (control
plane), NM-190
assigning port-based VLAN access port (VLAN
view), LSW-132
applying flow mirroring QoS policy (global),
NM-190
assigning
LSW-134
applying flow mirroring QoS policy (interface),
NM-190
assigning port-based VLAN trunk port, LSW-133
applying DHCP address pool on interface,
IPSER-44
port-based
VLAN
hybrid
port,
assigning RBAC local AAA authentication user
role, FM-55
applying flow mirroring QoS policy (VLAN),
NM-190
assigning RBAC non-AAA authentication user
role, FM-55
applying interface NAS-ID profile, SEC-135
applying IPsec policy to interface, SEC-264
183
completing software upgrade (in bulk), FM-110
assigning RBAC remote AAA authentication
user role, FM-54
completing software upgrade (one by one),
FM-111
assigning RBAC user role, FM-54
completing software upgrade with a warm
reboot, FM-112
associating Track+application module, HA-131
associating Track+CFD, HA-129
compressing file, FM-87, FM-88
associating Track+detection modules, HA-129
associating
HA-130
Track+interface
configuring
management,
MAC authentication guest VLAN, SEC-109
associating Track+NQA, HA-129
configuring 802.1X, SEC-79
associating Track+Smart Link, HA-132
configuring 802.1X ACL assignment, SEC-95
associating Track+static routing, HA-131
configuring 802.1X authentication, SEC-90
associating TRILL port+track entry, TRILL-23
configuring
SEC-83
associating TRILL VR-Track entry, TRILL-20
802.1X
authentication
trigger,
configuring 802.1X Auth-Fail VLAN, SEC-87
authenticating with 802.1X EAP relay, SEC-67
configuring 802.1X
assignment, SEC-93
authenticating with 802.1X EAP termination,
SEC-69
authorization
VLAN
configuring 802.1X basics, SEC-90
backing up main next-startup configuration file,
FM-103
configuring 802.1X critical VLAN, SEC-88
binding IPsec source interface to policy,
SEC-266
configuring 802.1X EAD assistant, SEC-89,
SEC-97
binding IRF physical interface+port, IRF-17
configuring 802.1X guest VLAN, SEC-86
building fabric, FCoE-34
configuring 802.1X guest VLAN assignment,
SEC-93
building fabric dynamically, FCoE-35
configuring 802.1X online user handshake,
SEC-83
building fabric statically, FCoE-35
bulk configuring interfaces, LSW-18
configuring 802.1X quiet timer, SEC-85
calculating file digest, FM-89
configuring AAA, SEC-16
changing current working directory, FM-89
changing FTP user accounts, FM-79
configuring
SEC-32
AAA
HWTACACS
schemes,
changing NMM NETCONF parameter value,
NM-253
configuring AAA HWTACACS server SSH user,
SEC-48
changing QoS priority mapping interface port
priority, QACL-31
configuring AAA ISP domain accounting
method, SEC-45
checking emergency shell server connectivity
with emergency shell, FM-140
configuring AAA ISP domain attribute, SEC-42
configuring AAA ISP domain authentication
method, SEC-43
combining interfaces (Ethernet 10-GE into
40-GE), LSW-2
configuring AAA ISP domain authorization
method, SEC-44
committing ISSU software changes (install series
commands), FM-124
configuring AAA ISP domain method, SEC-41
completing software upgrade, FM-110
184
configuring ARP, IPSER-7
configuring AAA LDAP administrator attributes,
SEC-39
configuring ARP (static), IPSER-7
configuring AAA LDAP scheme, SEC-38
configuring
SEC-363
configuring AAA LDAP server IP address,
SEC-39
configuring ARP attack protection blackhole
routing (unresolvable IP attack), SEC-358
configuring AAA local user attributes, SEC-19
configuring AAA NAS-ID profile, SEC-47
configuring ARP attack protection source
suppression (unresolvable IP attack), SEC-358
accounting-on,
configuring AAA RADIUS
attribute check method, SEC-31
(source
configuring ARP attack protection (unresolvable
IP attack), SEC-357, SEC-359
configuring AAA local user, SEC-18
RADIUS
acknowledgement,
configuring ARP attack protection, SEC-357
configuring AAA LDAP user attributes, SEC-40
AAA
active
configuring ARP attack detection
MAC-based), SEC-361, SEC-362
configuring AAA LDAP server SSH user
authentication, SEC-54
configuring
SEC-30
ARP
configuring ARP detection, SEC-364
Login-Service
configuring ARP dynamic entry aging timer,
IPSER-6
configuring AAA RADIUS scheme, SEC-22
configuring ARP fast-reply, IPSER-18
configuring AAA RADIUS security policy server
IP address, SEC-30
configuring ARP filtering, SEC-372, SEC-373
configuring AAA RADIUS server SSH user
authentication+authorization, SEC-51
configuring ARP gateway protection, SEC-371,
SEC-372
configuring AAA scheme, SEC-18
configuring
IPSER-8
configuring
AAA
SSH
user
local
authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
ARP
multiport
entry,
IPSER-4,
configuring ARP packet rate limit, SEC-360
configuring AAA user group attributes, SEC-21
configuring ARP packet
consistency check, SEC-363
configuring ACL, QACL-4, QACL-12
configuring ARP packet validity check, SEC-365
configuring ACL (advanced), QACL-5
configuring ARP restricted forwarding, SEC-366,
SEC-368
configuring ACL (basic), QACL-4
source
MAC
configuring ARP scanning, SEC-370
configuring ACL (Ethernet frame header),
QACL-8
configuring ARP snooping, IPSER-17
configuring ACL (IPv4 advanced), QACL-6
configuring ARP static entry, IPSER-3
configuring ACL (IPv4 basic), QACL-4
configuring ARP user validity check, SEC-364
configuring ACL (IPv6 advanced), QACL-7
configuring ARP user+packet validity check,
SEC-367
configuring ACL (IPv6 basic), QACL-5
configuring
SEC-364
configuring ACL (user-defined), QACL-9
configuring ACL packet filtering, QACL-10
authorized
ARP
configuration,
configuring automatic configuration (DHCP
server), FM-175
configuring ACL packet filtering applicable
scope (VLAN interface), QACL-11
configuring automatic
server), FM-176
configuring allowed domain ID list, FCoE-37
185
configuration
(DNS
configuring automatic configuration gateway,
FM-177
configuring CWMP ACS periodic Inform feature,
NM-223
configuring CFD, HA-18, HA-26
configuring CWMP CPE ACS authentication
parameters, NM-222
configuring CFD 1-way DM, HA-23
configuring CWMP CPE ACS connection
interface, NM-222
configuring CFD 2-way DM, HA-24
configuring CFD AIS, HA-23
configuring CFD basic settings, HA-19
configuring CWMP CPE ACS provision code,
NM-222
configuring CFD continuity check, HA-21
configuring CWMP CPE attribute, NM-221
configuring CFD EAIS, HA-24
configuring CFD functions, HA-20
configuring
NM-224
configuring CFD linktrace, HA-22
configuring data buffer, QACL-91
configuring CFD LM, HA-23
configuring data buffers manually, QACL-92
configuring CFD loopback, HA-22
configuring DDNS (PeanutHull server), IPSER-111
configuring CFD MEPs, HA-19
configuring DDNS client, IPSER-106
configuring CFD MIP auto-generation rules,
HA-20
configuring DDNS client policy, IPSER-106
configuring CFD service instance, HA-19
configuring device as IPv4 TFTP client, FM-83
configuring CFD TST, HA-24
configuring device as IPv6 TFTP client, FM-84
configuring CLI command hotkey, FM-5
configuring device banner, FM-147, FM-148
configuring CLI command keyword alias, FM-5
configuring device CPU usage monitoring,
FM-157
configuring
QACL-65
color-based
priority
CWMP
CPE
NAT
traversal,
configuring device airflow direction, FM-157
marking,
configuring device name, FM-145
configuring common proxy ARP, IPSER-15
configuring device temperature alarm threshold,
FM-159
configuring configuration archive parameters,
FM-100
configuring DHCP BOOTP client, IPSER-82
configuring configuration rollback, FM-99
configuring CWMP, NM-218, NM-225
configuring DHCP BOOTP client address
acquisition, IPSER-82
configuring CWMP ACS attribute, NM-220
configuring DHCP client, IPSER-67
configuring CWMP ACS attribute (default)(CLI),
NM-221
configuring DHCP client ID (interface), IPSER-65
configuring DHCP IP address conflict detection,
IPSER-44
configuring CWMP ACS attribute (preferred),
NM-220
configuring
CWMP
parameters, NM-223
ACS
configuring DHCP relay agent, IPSER-56,
IPSER-62
autoconnect
configuring DHCP relay agent IP address
release, IPSER-60
configuring CWMP ACS close-wait timer,
NM-224
configuring DHCP relay agent Option 82,
IPSER-60, IPSER-63
configuring CWMP ACS connection retry max
number, NM-223
configuring DHCP relay agent security functions,
IPSER-58
186
configuring DHCPv6 packet blocking port,
IPSER-201
configuring DHCP server, IPSER-34, IPSER-47
configuring
IPSER-34
DHCP
server
address
pool,
configuring DHCPv6 relay agent, IPSER-183,
IPSER-185
configuring DHCP server BOOTP response
format, IPSER-46
configuring
IPSER-45
DHCP
server
configuring
IPSER-177
compatibility,
configuring DHCPv6 server IPv6 address
assignment, IPSER-173
configuring DHCP server option customization,
IPSER-53
configuring DHCPv6
assignment, IPSER-172
configuring DHCP server response broadcast,
IPSER-45
configuring DHCP server to ignore BOOTP
requests, IPSER-45
configuring DHCP server user class, IPSER-50
configuring DHCP snooping, IPSER-72, IPSER-78
prefix
DHCPv6
server
on
interface,
configuring
IPSER-202
DHCPv6
snooping,
IPSER-197,
DHCPv6
snooping
basics,
configuring DHCPv6 snooping entry auto
backup, IPSER-199
configuring DHCP snooping entry auto backup,
IPSER-74
configuring DHCPv6 snooping Option 18,
IPSER-198
82,
configuring DHCPv6 snooping Option 37,
IPSER-198
configuring DHCP snooping packet blocking
port, IPSER-77
configuring DHCPv6 snooping packet rate limit,
IPSER-200
configuring DHCP snooping packet rate limit,
IPSER-77
configuring DNS, IPSER-86
configuring DHCP voice client Option 184
parameters, IPSER-41
configuring DNS proxy, IPSER-89
configuring DNS spoofing, IPSER-90
configuring DHCPv6 client, IPSER-187, IPSER-190
configuring DNS trusted interface, IPSER-91
configuring DHCPv6 client DUID, IPSER-189
configuring DHCPv6 client IPv6
acquisition, IPSER-188, IPSER-191
IPv6
configuring
IPSER-175
configuring
IPSER-197
configuring DHCP snooping basics, IPSER-72,
IPSER-78
configuring DHCPv6 client IPv6
acquisition, IPSER-187, IPSER-190
server
configuring DHCPv6 server network parameters
assignment, IPSER-174
configuring DHCP server subnet, IPSER-52
Option
IPSER-171,
configuring DHCPv6 server dynamic IPv6 prefix
assignment, IPSER-177
configuring DHCP server IP address static
assignment, IPSER-47
snooping
server,
configuring DHCPv6 server dynamic IPv6
address assignment, IPSER-179
configuring DHCP server IP address dynamic
assignment, IPSER-49
configuring DHCP
IPSER-73, IPSER-79
DHCPv6
configuring eIRF device as independent switch,
IRF-50
address
configuring eIRF device as PEX, IRF-50
prefix
configuring eIRF device operating mode, IRF-49
configuring emergency
Ethernet port, FM-139
configuring DHCPv6 client stateless DHCPv6,
IPSER-188, IPSER-193
187
shell
management
configuring
LSW-50
Ethernet
aggregate
configuring EVB S-channel aggregate interface,
EVB-7
interface,
configuring Ethernet link aggregation, LSW-47
configuring EVB S-channel interface, EVB-7
configuring Ethernet link aggregation edge
aggregate interface, LSW-52
configuring EVB S-channel MAC address
learning, EVB-8
configuring Ethernet link aggregation group,
LSW-48
configuring EVB S-channel RR mode, EVB-7
configuring EVB S-channel VSI aggregate
interface, EVB-8
configuring Ethernet link aggregation group
(dynamic), LSW-49
configuring EVB S-channel VSI interface, EVB-8
configuring Ethernet link aggregation group
(static), LSW-48
configuring EVB VDP negotiation parameter,
EVB-5
configuring Ethernet link aggregation group
load sharing mode, LSW-54
configuring EVB VSI filter, EVB-9
configuring fabric, FCoE-44
configuring Ethernet link aggregation load
sharing, LSW-53
configuring fabric building (dynamic), FCoE-47
configuring fabric building (static), FCoE-44
configuring Ethernet link aggregation load
sharing mode (global), LSW-54
configuring fabric N_Port-WWN to FC address
binding, FCoE-38
configuring Ethernet link aggregation load
sharing mode (group-specific), LSW-54
configuring fabric reconfiguration, FCoE-40
configuring Ethernet link aggregation per-flow
load sharing algorithm settings, LSW-55
configuring fabric reconfiguration (manual),
FCoE-40
configuring Ethernet OAM, HA-11
configuring fabric switch domain IDs, FCoE-38
configuring Ethernet OAM basics, HA-4
configuring FC default zone policy, FCoE-83
configuring Ethernet OAM connection detection
timer, HA-4
configuring FC FSPF, FCoE-56
configuring Ethernet OAM errored frame event
detection, HA-6
configuring FC FSPF GR helper, FCoE-60
configuring FC FSPF GR, FCoE-59
configuring Ethernet OAM errored frame period
event detection, HA-7
configuring FC FSPF GR restarter, FCoE-60
configuring Ethernet OAM errored frame
seconds event detection, HA-7
configuring FC ping, FCoE-118
configuring Ethernet OAM errored symbol event
detection, HA-5
configuring FC static route, FCoE-55
configuring FC Pairwise, FCoE-81
configuring FC routing, FCoE-61
configuring Ethernet OAM link monitoring,
HA-5
configuring FC static routing (VFC interface),
FCoE-61
configuring Ethernet OAM port action, HA-8
configuring FC tracert, FCoE-122, FCoE-123
configuring Ethernet OAM remote loopback,
HA-9
configuring FC zone aliases, FCoE-81
configuring EVB, EVB-3, EVB-11
configuring FC zone sets, FCoE-82
configuring EVB LLDP, EVB-4
configuring FC zones, FCoE-79, FCoE-82,
FCoE-88
configuring FC zone distribution, FCoE-83
configuring EVB S-channel, EVB-6
188
configuring FC4 node default information,
FCoE-43
configuring FTP server remote authentication,
FM-74
configuring FC4 node information, FCoE-42
configuring FTP server remote authorization,
FM-74
configuring FCoE, FCoE-21
configuring gratuitous ARP, IPSER-12
configuring FCoE (VFC interface)(IRF mode),
FCoE-141
configuring high availability DLDP, HA-36,
HA-39
configuring FCoE (VFC interface)(standalone
mode), FCoE-129
configuring
high
authentication, HA-38
configuring FCoE mode for switch, FCoE-13
availability
DLDP
configuring high availability DLDP automatic
unidirectional link shutdown, HA-39
configuring FCS, FCoE-112
configuring FIP snooping, FCoE-104, FCoE-105
configuring high availability Ethernet OAM,
HA-4
configuring FIP snooping Ethernet interface
operating mode, FCoE-104
configuring FIPS mode, SEC-385
configuring
MCAST-31
configuring FIPS mode entry (automatic reboot),
SEC-390
configuring IGMP snooping basic features,
MCAST-18
configuring FIPS mode entry (manual reboot),
SEC-391
configuring IGMP snooping fast
processing configuration, MCAST-22
leave
configuring FIPS mode exit (automatic reboot),
SEC-392
configuring
IGMP
snooping
policy+simulated joining, MCAST-31
group
configuring FIPS mode exit (manual reboot),
SEC-393
configuring
IGMP
snooping
parameters, MCAST-25
configuring fixed ARP, SEC-370
configuring flow mirroring, NM-188, NM-191
configuring IGMP snooping message source IP
address, MCAST-26
configuring flow mirroring match criteria,
NM-188
configuring IGMP snooping multicast group
policy, MCAST-27
configuring flow mirroring QoS policy, NM-189
configuring IGMP snooping multicast group
policy (global), MCAST-27
configuring flow mirroring traffic behavior,
NM-189
IGMP
snooping,
MCAST-17,
message
configuring IGMP snooping multicast group
policy (on port), MCAST-28
configuring FSPF (VFC interface), FCoE-66
configuring FTP basic server parameters, FM-74
configuring IGMP snooping multicast groups on
port max, MCAST-29
configuring FTP client (centralized IRF device),
FM-81
configuring IGMP snooping multicast source
port filtering, MCAST-28
configuring FTP server (centralized IRF device),
FM-75
configuring IGMP snooping multicast source
port filtering (global), MCAST-28
configuring FTP server local authentication,
FM-74
configuring IGMP snooping multicast source
port filtering (on port), MCAST-28
configuring FTP server local authorization,
FM-74
configuring IGMP snooping policy, MCAST-27
configuring IGMP snooping port feature,
MCAST-20
189
configuring IGMP snooping querier, MCAST-23,
MCAST-36
configuring IP performance optimization
directed broadcast receive/forward, IPSER-125
configuring IGMP snooping query/response
parameters, MCAST-24
configuring IP routing FIB route max lifetime,
IPR-4
configuring IGMP snooping query/response
parameters (global), MCAST-25
configuring IP routing RIB label max lifetime,
IPR-3
configuring IGMP snooping query/response
parameters (VLAN), MCAST-25
configuring IP routing RIB route max lifetime,
IPR-3
configuring IGMP snooping simulated member
host, MCAST-22
configuring IP routing RIP, IPR-24
configuring IGMP snooping
MCAST-21, MCAST-33
static
configuring IP routing RIP basics, IPR-24
port,
configuring IP routing RIP interface additional
metric, IPR-29
configuring information center, NM-76, NM-84
configuring IP routing RIP route redistribution,
IPR-27
configuring information center trace log file max
size, NM-82
configuring IP routing static route, IPR-7
configuring interface (inloopback), LSW-16
configuring interface (loopback), LSW-15
configuring interface (null), LSW-16
configuring
interface
(Ethernet), LSW-8
auto
power-down
configuring
IPSER-118
IP
services
fast
forwarding,
configuring
IPSER-121
IP
services
IRDP,
IPSER-120,
configuring IP source guard (IPSG), SEC-348
configuring interface basic settings (Ethernet),
LSW-3
configuring IP subnet-based VLAN, LSW-140,
LSW-147
configuring
interface
(Ethernet), LSW-2
configuring IPPO ICMP error message rate limit,
IPSER-130
common
settings
configuring interface EEE energy saving, LSW-8
configuring IPPO interface MTU, IPSER-125
configuring interface energy-saving features
(Ethernet), LSW-8
configuring IPPO interface TCP MSS, IPSER-126
configuring IPPO TCP buffer size, IPSER-128
configuring interface generic flow control
(Ethernet), LSW-6
configuring IPPO TCP path MTU discovery,
IPSER-126
configuring interface jumbo frame support
(Ethernet), LSW-3
configuring IPPO TCP timer, IPSER-128
configuring IPsec ACL, SEC-256
configuring interface PFC (Ethernet), LSW-6
configuring IPsec ACL anti-replay function,
SEC-265
configuring interface physical state change
suppression (Ethernet), LSW-4
configuring
SEC-266
configuring interface storm control (Layer 2
Ethernet), LSW-10
redundancy,
configuring IPsec IKE (main mode/pre-shared
key authentication), SEC-292
configuring IP addressing, IPSER-23
load
anti-replay
configuring IPsec IKE, SEC-283
configuring interface storm suppression (Layer 2
Ethernet), LSW-9
configuring IP forwarding
IPSER-115, IPSER-116
IPsec
configuring IPsec IKE DPD, SEC-290
sharing,
190
configuring IPsec IKE global identity information,
SEC-288
configuring IPv4 source
dynamic binding, SEC-352
configuring
SEC-289
configuring IPv4 source guard (IPv4SG)
dynamic binding+DHCP relay, SEC-353
IPsec
IKE
keepalive
function,
guard
(IPv4SG)
configuring IPv4 source guard (IPv4SG) static
binding, SEC-349, SEC-351
configuring IPsec IKE keychain, SEC-287
configuring IPsec IKE NAT keepalive function,
SEC-289
configuring IPv6 anycast address, IPSER-147
configuring IPsec IKE profile, SEC-284
configuring IPv6 basic settings, IPSER-143
configuring IPsec IKE proposal, SEC-286
configuring IPv6 basics, IPSER-159
configuring IPsec IKE SA max number, SEC-291
configuring IPv6 DNS, IPSER-97
configuring
SEC-291
configuring IPv6 DNS client, IPSER-88
IPsec
IKE
SNMP
notification,
configuring IPv6 DNS client dynamic domain
name resolution, IPSER-88, IPSER-98
configuring IPsec IPv6 routing protocol profile
(manual), SEC-269
configuring
SEC-269
IPsec
IPv6
routing
configuring IPv6 DNS client static domain name
resolution, IPSER-88, IPSER-97
protocols,
configuring IPv6 DNS proxy, IPSER-102
configuring IPsec packet DF bit, SEC-268
configuring IPv6 dynamic path MTU aging timer,
IPSER-155
configuring IPsec policy (IKE-based), SEC-260
configuring IPv6 EUI-64 address, IPSER-144
configuring IPsec policy (IKE-based/direct),
SEC-261
configuring IPv6 fast forwarding, IPSER-204
configuring IPsec policy (IKE-based/template),
SEC-262
configuring
IPSER-144
configuring IPsec policy (manual), SEC-258
IPv6
global
unicast
address,
configuring IPv6 ICMPv6 error message rate
limit, IPSER-155
configuring IPsec RIPng, SEC-277
configuring IPv6 interface link-local address
automatic generation, IPSER-147
configuring IPsec SNMP notification, SEC-270
configuring IPsec transform set, SEC-257
configuring IPv6 interface MTU, IPSER-154
configuring IPsec tunnel for IPv4 packets
(IKE-based), SEC-274
configuring IPv6 link-local address, IPSER-146
configuring IPsec tunnel for IPv4 packets
(manual), SEC-272
configuring IPv6 max number NS message sent
attempts, IPSER-152
configuring IPv4 DNS, IPSER-92
configuring IPv6 multicast port-based VLAN,
MCAST-96
configuring IPv4 DNS client, IPSER-87
configuring IPv6 multicast port-based VLAN
user port attribute, MCAST-96
configuring IPv4 DNS client dynamic domain
name resolution, IPSER-87, IPSER-93
configuring IPv6 multicast sub-VLAN-based
VLAN, MCAST-95
configuring IPv4 DNS client static domain name
resolution, IPSER-87, IPSER-92
configuring IPv6 multicast VLAN, MCAST-95,
MCAST-98
configuring IPv4 DNS proxy, IPSER-95
configuring
SEC-348
IPv4
source
guard
(IPv4SG),
configuring IPv6 ND, IPSER-148
191
configuring IRF ND MAD, IRF-26
configuring IPv6 ND dynamic neighbor entries
max number, IPSER-148
configuring LAN switching LLDP, LSW-241,
LSW-258
configuring IPv6 ND stale state entry aging
timer, IPSER-149
configuring
LAN
switching
(CDP-compatible), LSW-262
configuring IPv6 ND static neighbor entry,
IPSER-148
LLDP
configuring IPv6 path MTU discovery, IPSER-154
configuring LAN switching LLDP 802.1p-to-local
priority mapping, LSW-254
configuring IPv6 PIM snooping, MCAST-87,
MCAST-88
configuring LAN switching LLDP advertisable
TLVs, LSW-244
configuring IPv6 RA message parameters,
IPSER-150, IPSER-151
configuring LAN switching
parameters, LSW-252
configuring
SEC-349
configuring LAN switching
LSW-242, LSW-258
IPv6
source
guard
(IPv6SG),
LLDP
LLDP
APP
basics,
configuring IPv6 source guard (IPv6SG)
dynamic binding+DHCPv6 snooping, SEC-355
configuring LAN switching LLDP bridge mode,
LSW-243
configuring IPv6 source guard (IPv6SG) static
binding, SEC-350, SEC-354
configuring LAN switching
compatibility, LSW-248
configuring IPv6 stateless
autoconfiguration, IPSER-145
configuring LAN switching
LSW-250, LSW-264
address
with
configuring IPv6 static prefix, IPSER-146
configuring IPv6 static routing, IPR-32
configuring LAN switching LLDP management
address, LSW-246
configuring IPv6 static routing basics, IPR-32
configuring IRF ARP MAD, IRF-24
configuring LAN switching LLDP management
address encoding format, LSW-246
configuring IRF bridge MAC persistence, IRF-20
configuring LAN switching
parameters, LSW-255
configuring IRF fabric, IRF-14, IRF-29
configuring IRF fabric ARP MAD, IRF-34
LLDP
PFC
configuring LAN switching LLDP trapping,
LSW-256
configuring IRF fabric LACP MAD, IRF-29
configuring IRF fabric ND MAD, IRF-38
configuring LAN switching LLDP-MED trapping,
LSW-256
configuring IRF LACP MAD, IRF-24
configuring LAN switching QinQ CVLAN tag
TPID value, LSW-207
configuring IRF link load sharing mode, IRF-19
configuring IRF link load sharing mode (global),
IRF-20
sharing
DCBX,
configuring LAN switching LLDP group-based
WRR queuing, LSW-255
configuring IPv6 static route, IPR-31
load
LLDP
CDP
configuring LAN switching LLDP ETS parameters,
LSW-254
configuring IPv6 static path MTU, IPSER-154
configuring IRF link
(port-specific), IRF-20
LLDP
configuring LAN switching QinQ SVLAN tag
TPID value, LSW-207
mode
configuring LAN switching QinQ VLAN tag
TPID value, LSW-206
configuring IRF MAD, IRF-23
configuring LAN switching spanning tree Digest
Snooping, LSW-103
configuring IRF member device description,
IRF-19
192
configuring Layer 2 cut-through forwarding,
LSW-270
configuring
login
management
CLI
console/AUX scheme authentication, FM-21
configuring Layer 2 Ethernet link aggregation
(dynamic), LSW-59
configuring login management
console/AUX port login, FM-19
CLI
configuring Layer 2 Ethernet link aggregation
(static), LSW-57
configuring login management
accounting, FM-44, FM-45
command
configuring Layer 2 Ethernet link aggregation
edge aggregate interface, LSW-63
configuring login management
authorization, FM-41, FM-42
command
configuring Layer 2 Ethernet link aggregation
group (dynamic), LSW-49
configuring login management SNMP access
control, FM-40
configuring Layer 2 Ethernet link aggregation
group (static), LSW-49
configuring login management SSH login,
FM-30
configuring Layer 2 Ethernet link aggregation
load sharing, LSW-61
configuring login management SSH login on
device, FM-30
configuring Layer 2 remote port mirroring,
NM-177, NM-184
configuring login management Telnet login,
FM-23
configuring load sharing, IPSER-115
configuring login management Telnet login on
device, FM-24
configuring local mirroring to support multiple
monitor ports, NM-176
local
configuring login management Telnet login
password authentication, FM-25
configuring local port mirroring, NM-173,
NM-182
configuring login management Telnet login
scheme authentication, FM-26
configuring local port mirroring group monitor
port, NM-175
configuring login management VTY common
line settings, FM-27
configuring local port mirroring group monitor
port (interface view), NM-175
configuring loop detection, LSW-122, LSW-124
configuring local port mirroring group monitor
port (system view), NM-175
configuring loop detection protection action,
LSW-123
configuring local port mirroring group source
ports, NM-174
configuring loop detection protection action
(global), LSW-123
configuring local port mirroring group source
ports (interface view), NM-175
configuring loop detection protection action
(Layer 2 aggregate interface), LSW-124
configuring local port mirroring group source
ports (system view), NM-174
configuring loop detection protection action
(Layer 2 Ethernet interface), LSW-123
configuring local port mirroring with multiple
monitor ports, NM-186
configuring MAC address table, LSW-34
configuring
QACL-66
local
precedence
configuring MAC address table entry, LSW-22
marking,
configuring MAC address table unknown frame
forwarding rule, LSW-27
configuring
login
management
CLI
console/AUX common user line settings, FM-21
configuring MAC authentication, SEC-105
configuring MAC authentication (local), SEC-111
configuring
login
management
CLI
console/AUX password authentication, FM-20
configuring
MAC
(RADIUS-based), SEC-113
193
authentication
ACL
configuring MLD snooping IPv6 multicast source
port filtering (global), MCAST-74
configuring MAC authentication critical VLAN,
SEC-109
configuring MLD snooping IPv6 multicast source
port filtering (on port), MCAST-74
configuring MAC authentication delay, SEC-108
configuring MLD snooping message parameters,
MCAST-71
configuring
MAC
assignment, SEC-115
authentication
configuring MAC authentication keep-online,
SEC-110
configuring MLD snooping policy, MCAST-73
configuring MAC authentication multi-VLAN
mode, SEC-108
configuring
MCAST-66
MLD
snooping
port
features,
configuring MAC authentication user account
format, SEC-106
configuring MLD snooping querier, MCAST-82
configuring MAC Information, LSW-37
configuring MLD snooping query source IPv6
address, MCAST-71
configuring
LSW-145
MAC-based
VLAN,
LSW-135,
configuring MLD snooping query/response
parameters, MCAST-70
configuring MAC-based
assignment, LSW-139
VLAN
dynamic
configuring MLD snooping query/response
parameters (global), MCAST-71
configuring MLD snooping query/response
parameters (VLAN), MCAST-71
configuring
MAC-based
assignment, LSW-140
VLAN
server
configuring
MAC-based
assignment, LSW-139
VLAN
static
configuring MLD snooping qurier, MCAST-69
configuring MLD snooping report suppression,
MCAST-75
configuring management interface, LSW-1
configuring MLD snooping simulated member
host port, MCAST-68
configuring MFF, SEC-377
configuring MFF manual-mode in ring network,
SEC-380
configuring MFF manual-mode in tree network,
SEC-379
configuring MFF network port, SEC-377
configuring
MCAST-77
MLD
snooping,
MLD
snooping
configuring MLD snooping
(global), MCAST-73
group
MLD
snooping
configuring
MCAST-67
MLD
snooping
static
static
port,
ports,
configuring Monitor Link, HA-121, HA-122
MCAST-63,
configuring Monitor Link downlink interface
switchover delay, HA-122
configuring MLD snooping basic features,
MCAST-64
configuring
MCAST-73
configuring
MCAST-79
configuring MST region, LSW-87
configuring MST region max hops, LSW-90
policy,
configuring MSTP, LSW-86, LSW-112
group
policy
configuring
MCAST-53
configuring MLD snooping group policy (on
portl), MCAST-74
configuring
MLD
snooping
policy+simulated joining, MCAST-77
multicast
VLAN,
MCAST-50,
configuring multi-CND QCN, QACL-105
configuring MVRP, LSW-188, LSW-192
group
configuring MVRP registration mode, LSW-190
configuring MVRP timer, LSW-190
configuring MLD snooping IPv6 multicast source
port filtering, MCAST-74
configuring NETCONF-over-SSH, SEC-305
194
configuring NETCONF-over-SSH client user line,
SEC-305
configuring NMM NTP client/server mode with
authentication, NM-41
configuring
NETCONF-over-SSH+password
authentication, SEC-337, SEC-339
configuring NMM NTP local clock as reference
source, NM-27
configuring NMM EAA environment variable
(user-defined), NM-206
configuring NMM NTP max number dynamic
associations, NM-27
configuring NMM EAA monitor policy, NM-207
configuring NMM NTP multicast association
mode, NM-16, NM-35
configuring NMM EAA monitor policy (CLI),
NM-207, NM-211
configuring
(CLI-defined
NM-212
configuring NMM NTP multicast client, NM-16
configuring NMM NTP
authentication, NM-23
NMM EAA monitor policy
with environment variables),
multicast
mode
configuring NMM NTP multicast server, NM-17
configuring NMM EAA monitor policy (Tcl),
NM-209, NM-213
configuring NMM NTP optional parameters,
NM-25
configuring NMM IPv6 NTP client/server
association mode, NM-29
configuring NMM IPv6
association mode, NM-38
NTP
configuring NMM NTP packet DSCP value,
NM-27
multicast
configuring
NMM
NTP
symmetric
active/passive association mode, NM-15,
NM-31
configuring NMM IPv6 NTP symmetric
active/passive association mode, NM-32
configuring NMM NETCONF, NM-239
configuring
NMM
NTP
symmetric
active/passive mode authentication, NM-19
configuring NMM NTP, NM-14
configuring NMM PTP, NM-55
configuring NMM NTP access control rights,
NM-17
configuring NMM PTP (IEEE 1588 v2), NM-65
configuring NMM PTP (IEEE 802.1AS), NM-68
configuring NMM NTP association mode,
NM-14
configuring NMM PTP announce message send
interval, NM-60
configuring NMM NTP authentication, NM-18
configuring NMM PTP announcement interval,
NM-60
configuring NMM NTP broadcast association
mode, NM-16, NM-33
configuring NMM PTP BITS clock parameter,
NM-64
configuring NMM NTP broadcast client, NM-16
configuring NMM NTP
authentication, NM-22
broadcast
configuring NMM PTP clock priority, NM-64
mode
configuring NMM PTP cumulative offset, NM-63
configuring NMM NTP broadcast mode with
authentication, NM-43
configuring NMM PTP delay correction value,
NM-63
configuring NMM NTP broadcast server,
NM-16
configuring NMM PTP delay measurement
mechanism, NM-59
configuring
NMM
NTP
client/server
association mode, NM-14, NM-28
configuring NMM PTP Delay_Req message
send interval, NM-61
configuring NMM NTP client/server mode
authentication, NM-18
configuring NMM PTP non-Pdelay message
MAC address, NM-62
195
configuring NPV downlink interface, FCoE-95
configuring NMM PTP OC as member clock,
NM-58
configuring NPV downlink-uplink
mapping, FCoE-96
configuring NMM PTP Pdelay_Req message
send interval, NM-61
configuring NPV uplink interface, FCoE-95
configuring NMM PTP port role, NM-58
configuring NQA, NM-119, NM-145
configuring NMM PTP Sync message send
interval, NM-61
configuring NQA client DHCP operation,
NM-121
configuring NMM PTP system time source,
NM-64
configuring NMM PTP TC+OC port type,
NM-59
configuring NMM PTP timestamp carry mode,
NM-58
NQA
client
operation,
DNS
NQA
client
HTTP
operation,
configuring NQA client operation, NM-120
configuring NMM SNMPv1, NM-101
configuring NQA client operation optional
parameters, NM-132
host
configuring NQA client path jitter operation,
NM-131
configuring NMM SNMPv1 basics, NM-91
configuring NQA client SNMP operation,
NM-126
configuring NMM SNMPv2c, NM-101
agent
configuring
NM-122
configuring
NM-124
configuring NMM SNMP notification, NM-98
SNMPv2c
operation,
configuring NQA client history record save,
NM-137
configuring NMM SNMP logging, NM-98
configuring NMM
notification, NM-99
client DLSw
configuring NQA client FTP operation, NM-123
configuring NMM SNMP basic parameters,
NM-91
agent
NQA
configuring NQA client echo operation (UDP),
NM-128
configuring NMM PTP UTC correction date,
NM-63
SNMPv1
configuring
NM-131
configuring NQA client echo operation (ICMP),
NM-121
configuring NMM PTP UDP packet source IP
address, NM-62
configuring NMM
notification, NM-99
interface
host
configuring NQA client statistics collection,
NM-137
configuring NMM SNMPv2c basics, NM-91
configuring NQA client TCP operation, NM-127
configuring NMM SNMPv3 (RBAC mode ),
NM-105
configuring NQA client template, NM-138
configuring NMM SNMPv3 (VACM mode ),
NM-103
configuring
NM-139
configuring NMM
notification, NM-99
configuring NQA client template (FTP), NM-142
SNMPv3
agent
host
configuring
NM-141
configuring NMM SNMPv3 basic parameters,
NM-93
NQA
NQA
client
template
client template
(DNS),
(HTTP),
configuring NQA client template (ICMP),
NM-139
configuring NMM SNTP, NM-47, NM-49
configuring
NM-140
configuring NMM SNTP authentication, NM-48
configuring NPV, FCoE-94, FCoE-97
196
NQA
client
template
(TCP),
configuring NQA client template optional
parameters, NM-144
configuring OpenFlow MAC address learning,
OF-11
configuring NQA client threshold monitoring,
NM-134
configuring OpenFlow switch controller, OF-13
configuring
MCAST-43
configuring NQA client Track collaboration
function, NM-133
NQA
client
voice
configuring
SEC-240
operation,
PKI
certificate
import/export,
configuring PKI certificate request (manual),
SEC-223
configuring NQA DHCP operation, NM-147
configuring
SEC-224
configuring NQA DLSw operation, NM-160
configuring NQA DNS operation, NM-148
PKI
certificate
request
abort,
configuring PKI certificate-based access control
policy, SEC-228
configuring NQA echo operation (ICMP),
NM-145
configuring PKI domain, SEC-220
echo operation (UDP),
configuring PKI entity, SEC-219
configuring PKI OpenCA server certificate
request, SEC-236
configuring NQA FTP operation, NM-149
configuring NQA HTTP operation, NM-150
configuring PKI RSA Keon CA server certificate
request, SEC-230
configuring NQA path jitter operation, NM-161
configuring NQA server, NM-119
configuring PKI Windows 2003 CA server
certificate request, SEC-233
configuring NQA SNMP operation, NM-154
configuring NQA TCP, NM-155
configuring PMM kernel thread deadloop
detection, NM-200
configuring NQA template (DNS), NM-166
configuring PMM kernel thread starvation
detection, NM-201
configuring NQA template (FTP), NM-169
configuring NQA template (HTTP), NM-168
configuring port isolation (multiple isolation
groups), LSW-66
configuring NQA template (ICMP), NM-165
configuring NQA template (TCP), NM-167
configuring port mirroring monitor port to
remote probe VLAN assignment, NM-179
configuring NQA UDP jitter operation, NM-151
configuring port mirroring remote destination
group monitor port, NM-178
configuring NQA voice operation, NM-158
configuring OpenFlow, OF-8, OF-16
configuring
OpenFlow
connection, OF-13
MCAST-42,
configuring PKI certificate request (automatic),
SEC-223
configuring NQA collaboration, NM-163
configuring NQA
NM-156
snooping,
configuring PKI, SEC-218, SEC-230
configuring NQA client UDP jitter operation,
NM-125
configuring
NM-129
PIM
configuring port mirroring remote destination
group on the destination device, NM-178
controller+main
configuring port mirroring remote destination
group remote probe VLAN, NM-179
configuring OpenFlow dynamic MAC address
support, OF-14
configuring port mirroring remote source group
egress port, NM-181
configuring OpenFlow inband management
VLAN, OF-10
configuring OpenFlow instance, OF-8
197
configuring process placement, HA-139
configuring port mirroring remote source group
on source device, NM-180
configuring process placement policy, HA-140
configuring port mirroring remote source group
remote probe VLAN, NM-182
configuring process placement policy location
affinity, HA-140
configuring port mirroring remote source group
source ports, NM-180
configuring
process
placement
location-type affinity, HA-140
configuring port security, SEC-176
configuring process placement policy process
affinity, HA-141
configuring
port
security
client
macAddressElseUserLoginSecure, SEC-189
configuring
port
security
userLoginWithOUI, SEC-186
configuring process placement policy self
affinity, HA-141
client
configuring protocol-based VLAN, LSW-141,
LSW-149
configuring port security features, SEC-179
configuring public peer key, SEC-210
configuring port security intrusion protection,
SEC-179
configuring port security
autoLearn, SEC-184
MAC
configuring PVST, LSW-85, LSW-116
address
configuring QCN, QACL-100
configuring QCN basics, QACL-102
configuring port security NTK, SEC-179
configuring QCN CND congestion detection
parameter, QACL-102
configuring port security secure MAC addresses,
SEC-180
configuring QCN CND settings, QACL-100
configuring port-based IPv6 multicast VLAN,
MCAST-101
configuring port-based
MCAST-51, MCAST-56
multicast
configuring QCN CND settings (global),
QACL-101
VLAN,
configuring QCN CND settings (interface),
QACL-101
configuring port-based multicast VLAN user port
assignment, MCAST-52
configuring QinQ, LSW-209
configuring QinQ basics, LSW-209
configuring port-based multicast VLAN user port
attribute, MCAST-51
configuring
LSW-144
port-based
VLAN,
policy
configuring
QinQ
VLAN
transmission, LSW-205, LSW-211
LSW-131,
transparent
configuring QoS aggregate CAR, QACL-79
configuring priority marking based on colors
obtained through mapping drop precedence,
QACL-65
configuring QoS class-based
QACL-82, QACL-83
accounting,
configuring QoS congestion avoidance
queue-based WRED table, QACL-59
configuring priority marking based on colors
obtained through traffic policing, QACL-65
configuring private VLAN, LSW-154, LSW-157
configuring QoS congestion avoidance WRED,
QACL-60
configuring private VLAN promiscuous port,
LSW-157
configuring QoS congestion management,
QACL-50
configuring private VLAN trunk promiscuous
port, LSW-160
configuring QoS congestion management
queue scheduling profile, QACL-55, QACL-57,
QACL-88
configuring
private
VLAN
trunk
promiscuous+trunk secondary port, LSW-163
198
configuring QoS congestion
queuing, QACL-50
configuring RBAC local AAA authentication user,
FM-59
management
configuring QoS congestion management SP
queuing, QACL-50
configuring RBAC resource access policies,
FM-53
configuring QoS congestion
SP+WFQ queuing, QACL-53
management
configuring RBAC temporary
authorization, FM-56
configuring QoS congestion
SP+WRR queuing, QACL-52
management
configuring QoS congestion
WFQ queuing, QACL-51
management
configuring RBAC temporary user role
authorization (HWTACACS authentication),
FM-64
configuring RBAC user role authentication,
FM-58
configuring QoS data buffer total shared-area
ratio, QACL-93
configuring RBAC user role interface policy,
FM-53
configuring QoS global CAR, QACL-79
configuring RBAC user role rules, FM-51
configuring QoS GTS, QACL-41
configuring RBAC user role VLAN policy, FM-53
configuring QoS nesting, QACL-72, QACL-73
configuring RIP, IPR-13
configuring QoS or CAR parameters, SEC-396
configuring RIP additional routing metric, IPR-15
configuring QoS priority mapping, QACL-29
QoS
priority
mapping
configuring RIP basics, IPR-13
map,
configuring RIP GR, IPR-23
configuring RIP network management, IPR-22
configuring QoS priority mapping priority trust
mode, QACL-31
configuring
QoS
priority
table+priority marking, QACL-32
role
configuring RBAC temporary user role
authorization (RADIUS authentication), FM-68
configuring QoS congestion management WRR
queuing, QACL-50
configuring
QACL-30
user
configuring RIP packet send rate, IPR-23
mapping
configuring RIP poison reverse, IPR-20
configuring RIP preference, IPR-18
configuring QoS priority mapping trusted port
packet priority, QACL-30
configuring RIP received/redistributed route
filtering, IPR-18
configuring QoS priority marking, QACL-64,
QACL-66
configuring RIP route control, IPR-15
configuring QoS rate limit, QACL-42
configuring RIP route redistribution, IPR-19
configuring QoS traffic filtering, QACL-62,
QACL-63
configuring RIP split horizon, IPR-20
configuring QoS traffic policing, QACL-40,
QACL-42
configuring RIP version, IPR-15
configuring QoS traffic redirection, QACL-75,
QACL-76
configuring RIPng basics, IPR-36, IPR-42
configuring RIP timers, IPR-19
configuring RIPng, IPR-36, IPR-42
configuring RBAC, FM-50, FM-59
configuring RIPng GR, IPR-41
configuring RBAC feature group, FM-52
configuring RIPng IPsec profile configuration,
IPR-47
configuring RBAC for RADIUS authentication
user, FM-61
configuring RIPng packet zero field check,
IPR-40
199
configuring RIPng poison reverse, IPR-40
configuring RSTP, LSW-84
configuring RIPng preference, IPR-38
configuring secondary
communication, LSW-167
configuring RIPng received/redistributed route
filtering, IPR-38
VLAN
Layer
3
configuring Secure Telnet client user line,
SEC-305
configuring RIPng route control, IPR-37
configuring security password control, SEC-197,
SEC-202
configuring RIPng route redistribution, IPR-39,
IPR-44
configuring security
SEC-123, SEC-137
configuring RIPng route summarization, IPR-37
configuring RIPng routing metric, IPR-37
configuring RIPng split horizon, IPR-40
configuring RIPng timer, IPR-39
configuring RIPv2 message authentication,
IPR-21
portal
authentication,
configuring security portal
destination subnet, SEC-128
authentication
configuring security portal
detection features, SEC-130
authentication
configuring security portal authentication direct,
SEC-137
configuring RIPv2 route summarization, IPR-16
configuring RMON, NM-112
configuring RMON alarm function, NM-110,
NM-114
configuring RMON Ethernet statistics group,
NM-112
configuring RMON history group, NM-113
configuring security portal
extended direct, SEC-152
authentication
configuring security
fail-permit, SEC-134
portal
authentication
configuring security portal
portal-free rule, SEC-126
authentication
configuring security portal authentication server,
SEC-124
configuring RMON statistics function, NM-109
configuring RRPP control VLAN, HA-57
configuring security portal authentication server
BAS-IP, SEC-134
configuring RRPP dual-homed rings, HA-73
configuring security portal authentication server
detection, SEC-131
configuring RRPP fail timer, HA-61
configuring RRPP fast detection, HA-62, HA-93
configuring security portal authentication source
subnet, SEC-127
configuring RRPP fast detection timer, HA-62
configuring RRPP hello timer, HA-61
configuring RRPP intersecting rings, HA-67
configuring security portal authentication user
online detection, SEC-130
configuring RRPP load-balanced intersecting
rings, HA-83
configuring security portal authentication user
synchronization, SEC-133
configuring RRPP node, HA-59
configuring security portal authentication Web
server, SEC-125
configuring RRPP port, HA-59
configuring RRPP protected VLAN, HA-57
configuring security portal authentication Web
server detection, SEC-132
configuring RRPP ring, HA-59
configuring security user profile, SEC-395
configuring RRPP ring group, HA-63
configuring sFlow, NM-193, NM-196
configuring RRPP single ring, HA-64
configuring sFlow agent, NM-194
configuring RSCN aggregation, FCoE-41
200
configuring
NM-194
sFlow
collector
configuring spanning tree port mode for MSTP
packets, LSW-99
information,
configuring spanning tree port path cost,
LSW-94, LSW-97
configuring sFlow counter sampling, NM-195
configuring sFlow flow sampling, NM-194
configuring spanning tree port priority, LSW-97
configuring Smart Link, HA-101, HA-105
configuring spanning tree port role restriction,
LSW-110
configuring Smart Link associated device,
HA-104
configuring spanning tree protection functions,
LSW-108
configuring Smart Link device, HA-101
configuring Smart Link group (multiple group
load sharing), HA-110
configuring spanning tree root bridge, LSW-88
configuring spanning tree root bridge (device),
LSW-89
configuring Smart Link group (single group),
HA-105
configuring spanning tree secondary root
bridge, LSW-88
configuring Smart Link group member port,
HA-102
configuring spanning tree secondary root
bridge (device), LSW-89
configuring Smart Link group member port
(group view), HA-102
configuring spanning tree switched network
diameter, LSW-90
configuring Smart Link group member port
(interface view), HA-103
configuring
LSW-106
configuring Smart Link group protected VLAN,
HA-102
configuring Smart Link group role preemption,
HA-103
configuring
Smart
collaboration, HA-137
TC
Snooping,
configuring
spanning
tree
transmission restriction, LSW-110
TC-BPDU
configuring
LSW-92
configuring Smart Link+Track collaboration,
HA-104, HA-114
spanning
spanning
tree
tree
timeout
factor,
configuring spanning tree timer, LSW-91
Link+Track+CFD
configuring SSH client host public key, SEC-306
configuring source MAC consistency check,
SEC-402
configuring SSH device as Secure Telnet client,
SEC-310
configuring spanning tree, LSW-82, LSW-112
configuring SSH device as server, SEC-303
configuring spanning tree BPDU transmission
rate, LSW-93
configuring SSH device as SFTP client, SEC-312
configuring SSH management parameters,
SEC-308
configuring spanning tree device priority,
LSW-89
configuring SSH SCP client device, SEC-315
configuring spanning tree Digest Snooping,
LSW-102
configuring SSH Secure Telnet, SEC-317
configuring SSH Secure Telnet client password
authentication, SEC-325
configuring spanning tree edge port, LSW-93
configuring spanning tree No Agreement Check,
LSW-104, LSW-106
configuring SSH Secure Telnet client publickey
authentication, SEC-329
configuring spanning tree port link type,
LSW-98
configuring SSH Secure Telnet server password
authentication, SEC-317
201
configuring TRILL port link type, TRILL-10
configuring SSH Secure Telnet server publickey
authentication, SEC-320
configuring SSH SFTP
authentication, SEC-334
client
publickey
configuring SSH SFTP
authentication, SEC-331
server
password
configuring TRILL RB nickname, TRILL-9
configuring TRILL RB system ID, TRILL-9
configuring TRILL SNMP, TRILL-22
configuring TRILL timers, TRILL-12
configuring SSH user, SEC-307
configuring TRILL VR, TRILL-19
configuring SSL, SEC-343
configuring trunk VSAN, FCoE-27
configuring SSL client policy, SEC-344
configuring UDP helper, IPSER-134
configuring SSL server policy, SEC-343
configuring UDP helper conversion (broadcast
to multicast), IPSER-133
configuring static route, IPR-6
configuring UDP helper conversion (broadcast
to unicast), IPSER-132
configuring static routing basics, IPR-7
configuring static routing default route, IPR-10
configuring
static
collaboration, HA-132
configuring user profile, SEC-396
routing+Track+NQA
configuring user profile parameters, SEC-396
configuring VFC interface, FCoE-15
configuring STP, LSW-83
configuring VFC interface RCF request rejection,
FCoE-41
configuring sub-VLAN-based IPv6 multicast
VLAN, MCAST-98
configuring VLAN, LSW-144
configuring sub-VLAN-based multicast VLAN,
MCAST-50, MCAST-53
configuring VLAN basic settings, LSW-129
configuring TCP fragment attack prevention,
SEC-401
configuring VLAN group, LSW-143
configuring the default action of table-miss flow
entries, OF-12
configuring VLAN mapping, LSW-219, LSW-227
configuring VLAN interface basics, LSW-130
configuring VLAN mapping (1:1), LSW-220,
LSW-227
configuring the OpenFlow instance mode, OF-8
configuring time range, QACL-89
configuring VLAN mapping (1:2), LSW-225,
LSW-232
configuring Track, HA-128, HA-132
configuring VLAN mapping (2:2), LSW-226,
LSW-232
configuring TRILL, TRILL-7, TRILL-25
configuring TRILL announcing VLAN, TRILL-12
configuring VLAN mapping (M:1), LSW-221,
LSW-227
configuring TRILL designated VLAN, TRILL-12
configuring TRILL distribution tree, TRILL-16
configuring
TRILL-16
TRILL
distribution
tree
configuring VLAN mapping (M:1) (dynamic IP
address assignment), LSW-221
basics,
configuring VLAN mapping (M:1) (static IP
address assignment), LSW-223
configuring TRILL ECMP routes, TRILL-18
configuring VLAN mapping M:1 customer-side
port (dynamic IP address assignment), LSW-222
configuring TRILL GR, TRILL-23
configuring TRILL LSP parameter and feature,
TRILL-13
configuring VLAN mapping M:1 customer-side
port (static IP address assignment), LSW-224
configuring TRILL port DRB priority, TRILL-11
configuring TRILL port link cost, TRILL-11
202
creating AAA LDAP server, SEC-38
configuring VLAN mapping M:1 network-side
port (dynamic IP address assignment), LSW-222
creating AAA RADIUS scheme, SEC-23
configuring VLAN mapping M:1 network-side
port (static IP address assignment), LSW-224
creating DHCP server address pool, IPSER-35
creating directory, FM-90
configuring voice VLAN, LSW-180
creating EVB S-channel, EVB-6
configuring voice VLAN CDP advertisement,
LSW-179
creating EVB VSI aggregate interface, EVB-8
configuring voice VLAN LLDP advertisement,
LSW-179
creating EVB VSI interface, EVB-8
configuring voice VLAN port operation
(automatic assignment), LSW-176, LSW-180
creating local port mirroring group, NM-174
configuring voice VLAN port operation (manual
assignment), LSW-177, LSW-182
creating OpenFlow flow table, OF-9
creating local key pair, SEC-207
creating Monitor Link group, HA-121
creating OpenFlow instance, OF-8
configuring voice VLAN QoS priority settings,
LSW-175
creating port mirroring remote destination
group, NM-178
configuring VSAN, FCoE-28
creating port mirroring remote source group,
NM-180
configuring zoning mode, FCoE-80
connecting IRF physical interface, IRF-16
creating RBAC user role, FM-50
controlling CLI output, FM-8, FM-9
controlling
IPSER-155
IPv6
ICMPv6
message
creating
NM-109
send,
RMON
Ethernet
statistics
entry,
creating RMON history control entry, NM-110
controlling login management SNMP access,
FM-39
creating RRPP domain, HA-56
controlling login management SSH logins,
FM-38
creating TRILL VR, TRILL-19
controlling login management Telnet logins,
FM-38, FM-39
creating VSAN, FCoE-27
creating user profile, SEC-395
customizing DHCP options, IPSER-42
controlling RIP interface advertisement, IPR-14
debugging feature module, NM-6
controlling RIP interface reception, IPR-14
decompressing file, FM-87, FM-88
controlling security portal authentication user
access, SEC-126
decompressing ISSU IPE file (install series
commands), FM-122
copying ACL, QACL-10
defining QoS policy, QACL-21
copying FC zone, FCoE-87
defining QoS traffic behavior, QACL-20
copying FC zone alias, FCoE-87
defining QoS traffic class, QACL-19
copying FC zone set, FCoE-87
deleting FC zone database, FCoE-87
copying file, FM-87
deleting file, FM-88
creating AAA HWTACACS scheme, SEC-32
deleting file from recycle bin, FM-88
creating AAA ISP domain, SEC-42
deleting next-startup configuration file, FM-104
creating AAA LDAP scheme, SEC-41
destroying local key pair, SEC-209
203
displaying ARP, IPSER-7
determining address reachability with ping,
NM-1
displaying ARP attack
MAC-based), SEC-361
diagnosing device transceiver module, FM-161
detection
(source
displaying ARP attack protection (unresolvable
IP attack), SEC-358
disabling device USB interface, FM-160
disabling CLI console/AUX authentication,
FM-19
displaying ARP detection, SEC-366
disabling CLI output screen pausing, FM-9
displaying ARP snooping, IPSER-17
disabling device password recovery capability,
FM-156
displaying bulk interface configuration, LSW-19
displaying CFD, HA-25
disabling fabric configuration, FCoE-36
displaying CLI login, FM-35
disabling FC FSPF for interface, FCoE-59
disabling
LSW-25
global
MAC
address
displaying command help information, FM-80
learning,
displaying configuration files, FM-104
displaying crypto engine, SEC-383
disabling IGMP snooping dynamic router port
change, MCAST-23
displaying current working directory, FM-89
disabling information center interface link
up/link down log generation, NM-83
displaying CWMP settings, NM-225
disabling IPPO ICMP fragment forwarding,
IPSER-130
displaying DDNS, IPSER-109
displaying data buffer, QACL-94
displaying device management configuration,
FM-162
disabling login management Telnet login
authentication, FM-24
displaying DHCP BOOTP client, IPSER-82
disabling MAC address learning, LSW-25
displaying DHCP client, IPSER-67
disabling MAC address learning on interface,
LSW-25
displaying DHCP relay agent, IPSER-61
disabling MAC address learning on VLAN,
LSW-26
displaying DHCP server, IPSER-46
disabling MLD snooping dynamic router port
change, MCAST-69
displaying DHCPv6 client, IPSER-190
disabling NMM NTP
processing, NM-26
displaying DHCPv6 snooping, IPSER-201
message
displaying DHCP snooping, IPSER-78
displaying DHCPv6 server, IPSER-176
interface
disabling RIP host route reception, IPR-17
displaying directory information, FM-89
disabling static source check, LSW-32
displaying emergency shell mode device
information, FM-142
displaying 802.1X, SEC-90
displaying Ethernet link aggregation, LSW-56
displaying AAA, SEC-48
displaying Ethernet OAM, HA-10
displaying AAA HWTACACS, SEC-38
displaying EVB, EVB-11
displaying AAA LDAP, SEC-41
displaying fabric, FCoE-44
displaying AAA local users/user groups,
SEC-22
displaying FC forwarding, FCoE-60
displaying AAA RADIUS, SEC-32
displaying FC routing, FCoE-60
displaying ACL, QACL-12
displaying FC zones, FCoE-88
204
displaying FCoE, FCoE-20
displaying LAN switching LLDP, LSW-257
displaying FCS, FCoE-112
displaying loop detection, LSW-124
displaying FDMI, FCoE-117
displaying MAC address table, LSW-33
displaying file information, FM-86
displaying MAC authentication, SEC-111
displaying FIP snooping, FCoE-105
displaying MFF, SEC-379
displaying FIPS, SEC-389
displaying MLD snooping, MCAST-76
displaying FTP client, FM-81
displaying Monitor Link, HA-122
displaying FTP server, FM-75
displaying multicast VLAN, MCAST-53
displaying high availability DLDP, HA-39
displaying MVRP, LSW-192
displaying host public key, SEC-209
displaying NMM EAA settings, NM-210
displaying IGMP snooping, MCAST-30
displaying NMM NTP, NM-28
displaying information center, NM-84
displaying NMM PTP, NM-65
displaying interface, LSW-16
displaying NMM sFlow, NM-195
displaying interface (Ethernet), LSW-14
displaying NMM SNMP settings, NM-101
displaying IP addressing, IPSER-22
displaying NMM SNTP, NM-49
displaying IP forwarding FIB table entries,
IPSER-113
displaying NPV, FCoE-96
displaying NQA, NM-144
displaying IP routing table, IPR-4
displaying OpenFlow, OF-15
displaying IP services DHCPv6 relay agent,
IPSER-184
displaying PIM snooping, MCAST-43
displaying PMM, NM-199
displaying IP services fast forwarding, IPSER-118
displaying PMM kernel threads, NM-201
displaying IP source guard (IPSG), SEC-350
displaying port isolation, LSW-65
displaying IPPO, IPSER-131
displaying port mirroring, NM-182
displaying IPsec, SEC-271
displaying port security, SEC-184
displaying IPsec IKE, SEC-292
displaying private VLAN, LSW-157
displaying IPv4 DNS, IPSER-91
displaying
SEC-350
IPv4
source
guard
displaying process placement, HA-142
(IPv4SG),
displaying proxy ARP, IPSER-14
displaying IPv6 basics, IPSER-158
displaying public key, SEC-211
displaying IPv6 fast forwarding, IPSER-204
displaying QCN, QACL-102
displaying IPv6 multicast VLAN, MCAST-98
displaying QinQ, LSW-209
displaying IPv6 PIM snooping, MCAST-88
displaying QoS aggregate CAR, QACL-79
displaying
SEC-350
displaying QoS congestion avoidance WRED,
QACL-61
IPv6
source
guard
(IPv6SG),
displaying QoS congestion management queue
scheduling profile, QACL-56
displaying IPv6 static routing, IPR-31
displaying IRF fabric, IRF-29
displaying ISSU, FM-125
205
displaying QoS congestion
queuing, QACL-55
distributing local host public key, SEC-208
management
DSCP, QACL-65
displaying QoS GTS, QACL-42
editing CLI command line, FM-4
displaying QoS policies, QACL-24
enabling 802.1X, SEC-79
displaying QoS priority mapping, QACL-31
enabling 802.1X EAP relay, SEC-80
displaying QoS rate limit, QACL-42
enabling 802.1X EAP termination, SEC-80
displaying QoS traffic policing, QACL-42
displaying RBAC settings, FM-59
enabling 802.1X periodic
reauthentication, SEC-85
displaying RIP, IPR-24
enabling AAA RADIUS session-control, SEC-46
displaying RIPng, IPR-42
enabling AAA RADIUS SNMP notification,
SEC-31
displaying RMON settings, NM-111
enabling ARP fast update for MAC address
move, LSW-32
displaying security PKI, SEC-229
security
portal
user
enabling ARP dynamic entry check, IPSER-6
displaying security password control, SEC-202
displaying
SEC-136
online
authentication,
enabling ARP logging, IPSER-6
enabling ARP snooping, IPSER-12
displaying security SSL, SEC-345
enabling CFD, HA-19
displaying security user profile, SEC-396
enabling
CLI
redisplay
entered-but-not-submitted command, FM-6
displaying Smart Link, HA-105
displaying software upgrade image settings,
FM-112
of
enabling common proxy ARP, IPSER-14
enabling configuration archiving (automatic),
FM-100
displaying spanning tree, LSW-112
displaying SSH, SEC-317
enabling configuration encryption, FM-97
displaying SSH SFTP help information, SEC-314
enabling CWMP, NM-219
displaying static routing, IPR-7
enabling data buffer burst function, QACL-92
displaying text file content, FM-87
displaying time range, QACL-89
enabling device copyright statement display,
FM-147
displaying Track entries, HA-132
enabling DHCP, IPSER-43
displaying TRILL, TRILL-24
enabling DHCP client (interface), IPSER-65
displaying UDP helper, IPSER-134
displaying user PMM, NM-199
enabling DHCP client duplicated address
detection, IPSER-66
displaying VFC interface, FCoE-16
enabling DHCP Option 82 handling, IPSER-44
displaying VLAN, LSW-143
enabling DHCP relay agent entry periodic
refresh, IPSER-58
displaying VLAN mapping, LSW-226
enabling DHCP relay agent on interface,
IPSER-57
displaying voice VLAN, LSW-180
displaying VSAN, FCoE-27
enabling DHCP relay agent relay entry
recording, IPSER-58
distributing FC zone set to fabric, FCoE-85
206
enabling DHCP relay agent starvation attack
protection, IPSER-59
enabling IGMP snooping fast-leave processing
(global), MCAST-22
enabling DHCP server on interface, IPSER-43
enabling IGMP snooping fast-leave processing
(on port), MCAST-23
enabling DHCP snooping starvation attack
protection, IPSER-75
enabling DHCP-REQUEST
protection, IPSER-76
message
enabling IGMP snooping multicast group
replacement, MCAST-29
attack
enabling IGMP snooping multicast group
replacement (global), MCAST-29
enabling DHCPv6 relay agent on interface,
IPSER-183
enabling IGMP snooping multicast group
replacement (on port), MCAST-29
enabling DHCPv6-REQUEST check, IPSER-200
enabling IGMP snooping querier, MCAST-24
enabling Ethernet link aggregation local-first
load sharing, LSW-54
enabling IGMP snooping report suppression,
MCAST-29
enabling Ethernet link aggregation traffic
redirection, LSW-56
enabling incremental flush for TRILL multicast
routing entries, TRILL-19
enabling Ethernet OAM remote loopback on
port, HA-10
enabling information center duplicate log
suppression, NM-83
enabling Ethernet OAM remote loopback on
specific port, HA-9
enabling information center synchronous log
output, NM-82
enabling EVB, EVB-3
enabling interface bridging (Ethernet), LSW-14
enabling fabric configuration, FCoE-36
enabling IP routing RIP (interface), IPR-14
enabling fabric reconfiguration (auto), FCoE-40
enabling IP routing RIP (network), IPR-14
enabling FC FSPF, FCoE-56
enabling
IPPO
directed
receive/forward, IPSER-124
enabling FC hard zoning, FCoE-84
enabling FCoE, FCoE-17
broadcast
enabling IPPO ICMP error message send,
IPSER-128
enabling FCoE for VLAN, FCoE-17
enabling FCoE VSAN fabric SNMP notifications,
FCoE-41
enabling IPPO TCP SYN cookie, IPSER-127
enabling IPsec ACL de-encapsulated packet
check, SEC-264
enabling FCoE VSAN zone SNMP notifications,
FCoE-87
enabling IPsec IKE invalid SPI recovery, SEC-291
enabling FIP snooping, FCoE-104
enabling IPsec packet logging, SEC-268
enabling gratuitous ARP IP conflict notification,
IPSER-12
enabling IPsec QoS pre-classify, SEC-267
enabling IPv4 source guard (IPv4SG) on
interface, SEC-348
enabling high availability DLDP, HA-37
enabling IGMP snooping, MCAST-18
drop
unknown
enabling IPv6 ICMPv6 destination unreachable
message send, IPSER-156
enabling IGMP snooping drop
multicast data (global), MCAST-28
unknown
enabling IPv6 ICMPv6 redirect message send,
IPSER-157
enabling IGMP snooping drop
multicast data (VLAN), MCAST-28
unknown
enabling IPv6 ICMPv6 time exceeded message
send, IPSER-156
enabling IGMP snooping
multicast data, MCAST-28
207
enabling IPv6 multicast echo request reply,
IPSER-156
enabling MLD snooping fast-leave processing
(on port), MCAST-68
enabling IPv6 ND proxy, IPSER-152
enabling MLD snooping IPv6 multicast group
replacement, MCAST-76
enabling IPv6 packet
discard, IPSER-158
(extension
header)
enabling MLD snooping IPv6 multicast group
replacement (global), MCAST-76
enabling IPv6 RA message send, IPSER-151
enabling MLD snooping IPv6 multicast group
replacement (on port), MCAST-76
enabling IPv6 source guard (IPv6SG) on
interface, SEC-349
enabling MLD snooping IPv6 multicast unknown
data drop, MCAST-74
enabling IRF software auto-update, IRF-22
enabling LAN switching LLDP, LSW-242
enabling LAN switching LLDP polling, LSW-244
enabling MLD snooping IPv6 multicast unknown
data drop (global), MCAST-74
enabling LAN switching
advertisement, LSW-251
enabling MLD snooping IPv6 multicast unknown
data drop (VLAN), MCAST-74
LLDP+DCBX TLV
enabling load balancing over TRILL distribution
trees, TRILL-17
enabling MLD snooping querier, MCAST-70
enabling MVRP, LSW-189
enabling local proxy ARP, IPSER-14
enabling MVRP GVRP compatibility, LSW-191
enabling loop detection, LSW-122
enabling NETCONF over SSH, NM-240
enabling loop detection (global), LSW-122
enabling
NM-239
enabling loop detection (port-specific), LSW-123
enabling MAC address move notification,
LSW-30
address
NETCONF
over
SOAP,
enabling NMM NTP, NM-14
enabling NMM PTP on port, NM-65
enabling MAC address retaining on TRILL port,
TRILL-21
enabling MAC
globally, LSW-29
NMM
enabling NMM SNMP notification, NM-99
enabling NMM SNTP, NM-47
synchronization
enabling NQA client, NM-120
enabling MAC authentication, SEC-105
enabling packet loss prevention, OF-15
enabling MAC Information, LSW-36
enabling port security, SEC-177
enabling MFF, SEC-377
enabling port security authorization-fail-offline,
SEC-184
enabling
SEC-378
MFF
periodic
gateway
probe,
enabling port security MAC move, SEC-182
enabling MLD snooping, MCAST-64
enabling QCN, QACL-100
enabling MLD snooping (MLD snooping view,
MCAST-64
enabling QinQ, LSW-205
enabling MLD
MCAST-64
snooping
(VLAN
enabling RBAC default user role, FM-54
view),
enabling RIP, IPR-13
enabling RIP poison reverse, IPR-20
enabling MLD snooping fast-leave processing,
MCAST-68
enabling RIP split horizon, IPR-20
enabling RIP update source IP address check,
IPR-21
enabling MLD snooping fast-leave processing
(global), MCAST-68
enabling RIPv1 message zero field check, IPR-21
208
enabling RIPv2 automatic route summarization,
IPR-16
enabling VLAN mapping M:1 DHCP snooping
(dynamic IP address assignment), LSW-221
enabling RRPP fast detection, HA-62
enabling voice VLAN LLDP, LSW-178
enabling SCSI-FCP information autodiscovery,
FCoE-43
entering CLI command, FM-3
entering CLI string/text type argument value,
FM-4
enabling security password control, SEC-198
entering FIPS
SEC-385
enabling security portal authentication, SEC-125
enabling security portal authentication roaming,
SEC-136
mode
(automatic
reboot),
entering FIPS mode (manual reboot), SEC-385
entering NMM NETCONF xml view, NM-240
enabling Smart Link flush message receiving,
HA-104
entering peer host public key, SEC-210
enabling Smart Link flush message sending,
HA-103
entering peer public key, SEC-211
entering Python shell, FM-166
enabling SNMP notification for MAC address
table, LSW-33
entering system view from user view, FM-2
enabling spanning tree BPDU drop, LSW-111
entering Tcl configuration view, FM-164
enabling spanning tree BPDU guard, LSW-108
establishing FTP client connection, FM-77
enabling spanning tree feature, LSW-100
establishing NMM NETCONF session, NM-240
enabling spanning tree loop guard, LSW-109
establishing SSH Secure
connection, SEC-310
enabling spanning tree port state transition
information output, LSW-99
spanning
tree
TC-BPDU
server
establishing SSH SFTP server connection,
SEC-312
enabling spanning tree root guard, LSW-108
enabling
LSW-111
Telnet
exchanging NMM NETCONF capabilities,
NM-240
guard,
excluding IRF port from shutdown action, IRF-27
enabling SSH SCP server, SEC-305
executing Comware commands
configuration view, FM-165
enabling SSH SFTP server, SEC-304
enabling Stelnet server, SEC-304
in
Tcl
executing Python script, FM-166
enabling TRILL, TRILL-8
exiting FIPS mode, SEC-387
enabling TRILL distribution tree multithread
calculation, TRILL-17
exiting FIPS mode (automatic reboot), SEC-387
exiting FIPS mode (manual reboot), SEC-387
enabling TRILL forwarding for EVB S-channel
traffic, TRILL-22
exporting host public key, SEC-208
enabling TRILL LSP fast advertisement, TRILL-15
exporting PKI certificate, SEC-227
enabling TRILL neighbor change logging,
TRILL-21
filtering CLI display command output, FM-9
enabling TRILL pseudonode bypass, TRILL-16
filtering NMM NETCONF data (conditional
match), NM-260
filtering NMM NETCONF data, NM-256
enabling VLAN mapping M:1 ARP detection
(dynamic IP address assignment), LSW-221
filtering NMM NETCONF data (regex match),
NM-258
enabling VLAN mapping M:1 ARP snooping
(static IP address assignment), LSW-223
209
maintaining ARP snooping, IPSER-17
forbidding an OpenFlow instance to report the
specified types of ports to controllers, OF-11
maintaining CLI login, FM-35
forcing interface fiber port (Layer 2 Ethernet),
LSW-11
maintaining crypto engine, SEC-383
maintaining device management configuration,
FM-162
formatting file system storage media, FM-91
generating SSH local DSA key pair, SEC-303
maintaining DHCP relay agent, IPSER-61
generating SSH local ECDSA key pair, SEC-303
maintaining DHCP server, IPSER-46
generating SSH local RSA key pair, SEC-303
maintaining DHCP snooping, IPSER-78
identifying node failure with tracert, NM-4
maintaining DHCPv6 client, IPSER-190
ignoring port security server authorization
information, SEC-182
implementing
SEC-255
security
ACL-based
maintaining DHCPv6 server, IPSER-176
maintaining DHCPv6 snooping, IPSER-201
IPsec,
maintaining Ethernet link aggregation, LSW-56
importing peer host public key from file,
SEC-210
maintaining Ethernet OAM, HA-10
importing public key from file, SEC-213
maintaining FC forwarding, FCoE-60
initiating NPV disruptive
process, FCoE-96
maintaining FC routing, FCoE-60
load
maintaining EVB, EVB-11
balancing
maintaining FC zones, FCoE-88
installing ISSU software images (install series
commands), FM-122
maintaining FTP connection, FM-80
limiting port security secure MAC addresses,
SEC-177
maintaining high availability DLDP, HA-39
loading emergency shell system software image,
FM-141
maintaining information center, NM-84
loading NMM NETCONF
NM-253, NM-254
configuration,
maintaining interface (Ethernet), LSW-14
locking NMM NETCONF
NM-243, NM-245
configuration,
maintaining IGMP snooping, MCAST-30
maintaining interface, LSW-16
maintaining IP routing table, IPR-4
maintaining IP services DHCPv6 relay agent,
IPSER-184
logging in through modems, FM-32
maintaining
IPSER-118
logging in to SSH server (device login), FM-32
logging in to Telnet server (device login), FM-29
IP
services
fast
forwarding,
maintaining IP source guard (IPSG), SEC-350
logging out security portal authentication users,
SEC-136
maintaining IPPO, IPSER-131
maintaining 802.1X, SEC-90
maintaining IPsec, SEC-271
maintaining AAA HWTACACS, SEC-38
maintaining IPsec IKE, SEC-292
maintaining AAA RADIUS, SEC-32
maintaining IPv4 DNS, IPSER-91
maintaining ACL, QACL-12
maintaining IPv4 source guard (IPv4SG),
SEC-350
maintaining ARP, IPSER-7
maintaining IPv6 basics, IPSER-158
maintaining ARP detection, SEC-366
maintaining IPv6 fast forwarding, IPSER-204
210
managing information center security log file,
NM-81
maintaining IPv6 multicast VLAN, MCAST-98
maintaining IPv6 PIM snooping, MCAST-88
manually configuring IPv6 address, IPSER-145
maintaining IPv6 source guard (IPv6SG),
SEC-350
manually releasing FTP server connection,
FM-75
maintaining ISSU, FM-125
mapping FCoE VLAN-VSAN, FCoE-17
maintaining MAC authentication, SEC-111
minimizing IPv6 ND link-local entry, IPSER-149
maintaining MLD snooping, MCAST-76
modifying MAC address table blackhole entry,
LSW-23
maintaining multicast VLAN, MCAST-53
maintaining MVRP, LSW-192
maintaining NMM PTP, NM-65
modifying MAC address table multiport unicast
entry, LSW-23
maintaining PIM snooping, MCAST-43
monitoring kernel thread (PMM), NM-200
maintaining PMM, NM-199
mounting file system storage media, FM-91
maintaining PMM kernel threads, NM-201
moving file, FM-87
maintaining QCN, QACL-102
NQA+Track+static
HA-128
maintaining QoS aggregate CAR, QACL-79
routing
collaboration,
numbering CLI display command output lines,
FM-9
maintaining QoS policies, QACL-24
maintaining RIP, IPR-24
maintaining RIPng, IPR-42
obtaining emergency shell system software
image, FM-139
maintaining security password control, SEC-202
obtaining PKI certificate, SEC-224
maintaining
SEC-136
obtaining RBAC temporary
authorization, FM-58
security
portal
authentication,
user
maintaining Smart Link, HA-105
optimizing process placement, HA-141
maintaining software upgrade image settings,
FM-112
optimizing RIP networks, IPR-19
role
optimizing RIPng network, IPR-39
maintaining spanning tree, LSW-112
outputting information center logs (console),
NM-77, NM-84
maintaining TRILL, TRILL-24
maintaining UDP helper, IPSER-134
outputting information center logs (Linux log
host), NM-86
maintaining VFC interfaces, FCoE-16
outputting information center logs (log buffer),
NM-78
maintaining VLAN, LSW-143
managing CLI display command output, FM-13
outputting information center logs (log host),
NM-78
managing file system (emergency shell), FM-138
managing file system directories, FM-89
outputting information center logs (monitor
terminal), NM-77
managing file system files, FM-86
outputting information center logs (UNIX log
host), NM-85
managing file system storage media, FM-90
managing FTP server directories, FM-78
partitioning CF card, FM-92
managing information center security log,
NM-80
partitioning USB disk, FM-92
211
pausing between CLI output screens, FM-8
reactivating OpenFlow instance, OF-12
performing interface loopback test (Ethernet),
LSW-5
rebooting device, FM-150
rebooting device (immediate), FM-150
performing ISSU, FM-115
rebooting device (scheduled), FM-150
performing ISSU (install series commands),
FM-121
rebooting device with emergency shell, FM-142
recovering IRF fabric, IRF-27
performing ISSU for multichassis IRF fabric,
FM-118
referencing security portal authentication Web
server, SEC-126
performing ISSU for single-chassis IRF fabric,
FM-120
rejecting Ethernet OAM remote loopback
request, HA-10
performing ISSU HTTP feature compatible
upgrade (issu series commands), FM-126
removing directory, FM-90
performing ISSU HTTP feature incompatible
upgrade (issu series commands), FM-128
removing ISSU inactive software image (install
series commands), FM-124
performing ISSU HTTP feature rollback (install
series commands), FM-135
removing PKI certificate, SEC-228
performing ISSU HTTP feature rollback (issu
series commands), FM-130
renaming FC zone sets, FCoE-86
performing ISSU HTTP feature upgrade (install
series commands), FM-132, FM-136
renaming file, FM-87
renaming FC zone aliases, FCoE-86
renaming FC zones, FCoE-86
performing ISSU install series commands,
FM-132
repairing file system storage media, FM-91
performing ISSU issu series commands, FM-126
restoring Ethernet link aggregate interface
default settings, LSW-53
requesting PKI certificate request, SEC-222
performing NMM NETCONF CLI operations,
NM-261
performing NMM
operation, NM-248
NETCONF
restoring factory-default settings and states,
FM-161
edit-config
restoring file, FM-88
performing NMM NETCONF get/get-bulk
operation, NM-246
restoring main next-startup configuration file,
FM-103
performing
NMM
NETCONF
get-config/get-bulk-config operation, NM-247
retrieving NMM NETCONF configuration data
(all modules), NM-249
performing
NMM
operations, NM-246
retrieving NMM NETCONF configuration data
(Syslog module), NM-250
NETCONF
service
performing spanning tree mCheck, LSW-101
retrieving NMM NETCONF
(interface table), NM-251
permitting TRILL VR MAC address learning for
non-TRILL device, TRILL-20
data
entry
planning IRF fabric setup, IRF-15
retrieving NMM NETCONF session information,
NM-262
preloading Boot ROM image, FM-110
returning to NMM NETCONF CLI, NM-265
preparing automatic configuration files, FM-174
returning to Tcl user view, FM-164
preparing for software upgrade (non-ISSU),
FM-109
returning to upper-level view from any view,
FM-2
212
setting AAA RADIUS request transmission
attempts max, SEC-26
returning to user view, FM-2
rolling back configuration, FM-101
setting AAA RADIUS server status, SEC-26
rolling back ISSU software configuration (install
series commands), FM-123
setting AAA RADIUS timer, SEC-29
rolling back NMM NETCONF configuration,
NM-253, NM-254
setting AAA RADIUS traffic statistics unit,
SEC-25
saving CLI display command output to file,
FM-12
setting AAA RADIUS username format, SEC-25
saving CLI running configuration, FM-13
setting ACL packet filtering default action,
QACL-12
saving information center diagnostic logs (log
file), NM-81
setting
ACL
packet
filtering
generation+output interval, QACL-11
saving information center log (log file), NM-79
setting ARP dynamic entry max (device),
IPSER-5
saving information center security logs (log file),
NM-80
saving NMM NETCONF
NM-253, NM-254, NM-255
log
setting ARP dynamic entry max (interface),
IPSER-5
configuration,
setting DDNS outgoing packet DSCP value,
IPSER-109
saving running configuration, FM-98
setting device memory usage threshold, FM-158
scheduling CWMP ACS connection initiation,
NM-223
setting device port status detection timer,
FM-157
scheduling device management task, FM-151,
FM-153
setting device system operating mode, FM-149
scheduling NQA client operation, NM-138
setting device system time, FM-146
selecting automatic configuration interface,
FM-177
setting DHCP client packet DSCP value,
IPSER-66
setting 802.1X authentication request attempts
max number, SEC-82
setting DHCP relay agent packet DSCP value,
IPSER-61
setting 802.1X authentication timeout timers,
SEC-82
setting DHCP server packet DSCP value,
IPSER-46
setting 802.1X concurrent port users max
number, SEC-81
setting DHCP snooping entry max, IPSER-76
setting 802.1X port authorization state, SEC-81
setting DHCPv6 client packet DSCP value,
IPSER-189
setting AAA concurrent login user max, SEC-47
setting DHCPv6 packet DSCP value, IPSER-176
setting AAA HWTACACS timer, SEC-36
setting DHCPv6 relay agent packet DSCP value,
IPSER-184
setting AAA HWTACACS traffic statistics unit,
SEC-35
setting DHCPv6 snooping entry max, IPSER-199
setting AAA HWTACACS username format,
SEC-35
setting DNS outgoing packet DSCP value,
IPSER-91
setting AAA LDAP server timeout period,
SEC-39
setting DSCP value for outgoing Telnet packet,
FM-27
213
interface
setting IGMP snooping dynamic port aging
timer, MCAST-20
setting Ethernet link aggregate group Selected
ports min/max, LSW-51
setting IGMP snooping dynamic port aging
timer (global), MCAST-20
setting Ethernet link aggregate
(expected bandwidth), LSW-52
setting IGMP snooping dynamic port aging
timer (VLAN), MCAST-21
setting
Ethernet
aggregate
(description), LSW-50
interface
setting IGMP snooping forwarding entries max,
MCAST-20
setting fabric name, FCoE-36
setting fabric switch priority, FCoE-36
setting IGMP snooping message 802.1 priority
(global), MCAST-27
setting FC fabric timer, FCoE-39
setting FC fabric timer (system view), FCoE-39
setting IGMP snooping message 802.1p priority,
MCAST-26
setting FC fabric timer (VSAN view), FCoE-39
setting FC FSPF interface cost, FCoE-58
setting IGMP snooping message 802.1p priority
(VLAN), MCAST-27
setting FC FSPF interface dead interval,
FCoE-58
setting FC FSPF interface hello interval, FCoE-58
setting interface MDIX mode (Layer 2 Ethernet),
LSW-12
setting FC FSPF interface LSR retransmission
interval, FCoE-59
setting interface
(Ethernet), LSW-9
setting FC FSPF LSR arrival interval min,
FCoE-57
setting IPv6 multicast VLAN max forwarding
entries, MCAST-97
setting FC FSPF LSR refresh interval min,
FCoE-57
setting IPv6 ND hop limit, IPSER-149
setting FC FSPF SPF calculation (shortest
interval), FCoE-57
setting LAN switching LLDP frame encapsulation
format, LSW-248
setting FC zone merge type, FCoE-83
setting LAN switching LLDP operating mode,
LSW-243
statistics
polling
interval
setting IRF link down report delay, IRF-23
setting FCoE FCF priority, FCoE-20
setting LAN
LSW-247
setting FCoE FCF system priority, FCoE-20
setting FCoE FCF VFC interface priority,
FCoE-20
switching
LLDP
parameters,
setting LAN switching LLDP reinitialization delay,
LSW-244
setting FCoE FC-MAP value, FCoE-18
setting log minimum storage time, NM-84
setting FCoE FKA advertisement interval value,
FCoE-18
setting login management Telnet login max
number concurrent users, FM-27
setting file/folder operation mode, FM-92
setting loop detection interval, LSW-124
setting FIP snooping FC-MAP value, FCoE-105
setting MAC address table dynamic aging timer,
LSW-26
setting high availability DLDP advertisement
packet send interval, HA-37
setting MAC address table learning limit on
interface, LSW-27
setting high availability DLDP DelayDown timer,
HA-37
setting MAC authentication concurrent port
users max, SEC-107
setting high availability DLDP port shutdown
mode, HA-38
setting MAC authentication timer, SEC-107
214
setting MAC change notification interval,
LSW-37
setting security password
parameters, SEC-198
setting MAC Information mode, LSW-36
setting security password control local user
parameters, SEC-200
setting MAC Information queue length, LSW-37
control
global
setting security password control user group
parameters, SEC-199
setting merge control mode, FCoE-83
setting MLD snooping 802.1p message priority,
MCAST-72
setting security portal authentication max
number users, SEC-129
setting MLD snooping 802.1p message priority
(global), MCAST-73
setting security super
parameters, SEC-201
setting MLD snooping 802.1p message priority
(VLANl), MCAST-73
password
control
setting spanning tree mode, LSW-86
setting TRILL LSP parameters, TRILL-13
setting MLD snooping dynamic port aging
timers, MCAST-66
setting TRILL SPF algorithm parameters, TRILL-16
setting MLD snooping dynamic port aging
timers (global), MCAST-66
shutting down Ethernet link aggregate interface,
LSW-53
setting MLD snooping dynamic port aging
timers (VLANl), MCAST-67
shutting down high availability
unidirectional link manually, HA-42
setting MLD snooping forwarding entries max,
MCAST-66
specifying 802.1X access control method,
SEC-81
setting MLD snooping IPv6 multicast groups
max (on portl), MCAST-75
specifying
802.1X
mandatory
authentication domain, SEC-84
setting multicast VLAN max forwarding entries,
MCAST-52
specifying 802.1X supported domain name
delimiters, SEC-89
setting OpenFlow connection interruption mode,
OF-13
specifying AAA HWTACACS accounting server,
SEC-34
setting OpenFlow controller mode, OF-10
specifying AAA HWTACACS authentication
server, SEC-33
setting OpenFlow datapath ID, OF-12
DLDP
port
specifying AAA HWTACACS authorization
server, SEC-33
setting OpenFlow max number flow entries,
OF-10
specifying AAA HWTACACS outgoing packet
source IP address, SEC-36
setting OpenFlow timer, OF-14
setting port security mode, SEC-178
specifying AAA HWTACACS shared keys,
SEC-35
setting QinQ SVLAN tag 802.1p priority,
LSW-207
specifying AAA LDAP authentication server,
SEC-41
setting QoS congestion management queuing,
QACL-57
specifying AAA LDAP version, SEC-39
setting QoS data buffer fixed-area max queue
ratio, QACL-94
specifying AAA RADIUS accounting server
parameters, SEC-24
setting QoS data buffer shared-area max queue
ratio, QACL-93
specifying AAA RADIUS authentication server,
SEC-23
setting RIP packet max length, IPR-23
215
specifying AAA RADIUS outgoing packet
source IP address, SEC-28
specifying MLD snooping
snooping view), MCAST-65
specifying AAA RADIUS shared keys, SEC-25
specifying MLD snooping version (VLAN view),
MCAST-65
specifying CWMP ACS HTTPS SSL client policy,
NM-224
specifying
FM-102
specifying device system time source, FM-146
next-startup
version
(MLD
configuration
file,
specifying NMM NTP message source interface,
NM-26
specifying DHCP client auto-configuration file,
IPSER-40
specifying NMM PTP clock node type, NM-57
specifying DHCP client BIMS server information,
IPSER-40
specifying NMM PTP domain, NM-57
specifying NMM PTP message encapsulation
protocol, NM-62
specifying DHCP client DNS server, IPSER-39
specifying DHCP client domain name suffix,
IPSER-39
specifying NMM PTP standard, NM-57
specifying DHCP client gateway, IPSER-38
specifying NMM SNTP NTP server, NM-48
specifying DHCP client NetBIOS node type,
IPSER-39
specifying PKI CA storage path, SEC-227
specifying RIP neighbor, IPR-22
specifying DHCP client server, IPSER-41
specifying RRPP assistant edge node, HA-60
specifying DHCP client WINS server, IPSER-39
specifying RRPP edge node, HA-60
specifying DHCP relay agent server, IPSER-57
specifying RRPP master node, HA-60
specifying DHCP server address pool IP address
range, IPSER-35
specifying
IPSER-183
DHCPv6
specifying
IPSER-90
DNS
relay
packet
agent
source
specifying RRPP transit node, HA-60
server,
specifying security portal authentication domain,
SEC-129
interface,
specifying spanning tree port path cost
calculation standard, LSW-94
specifying SSH packet source IP address,
SEC-310
specifying EVB default VSI manager, EVB-4
specifying IGMP snooping version, MCAST-19
specifying SSH SFTP packet source IP address,
SEC-312
specifying IPPO ICMP packet source address,
IPSER-130
specifying startup image file, FM-110, FM-112
specifying IPv6 ICMPv6 packet source address,
IPSER-157
specifying startup image file (in bulk), FM-110
specifying startup image file (one by one),
FM-111
specifying IPv6 interface link-local address
manually, IPSER-147
splitting interface (Ethernet 40-GE), LSW-2
specifying IRF device member priority, IRF-16
starting FCS topology discovery, FCoE-111
specifying Layer 2 aggregate interface (ignored
VLAN), LSW-51
stopping FCS topology discovery, FCoE-112
specifying
SEC-106
subscribing to NMM NETCONF
notifications, NM-241, NM-242
MAC
authentication
domain,
event
specifying MFF server IP address, SEC-378
suspending NMM EAA monitor policy, NM-210
specifying MLD snooping version, MCAST-65
terminating FTP connection, FM-80
216
troubleshooting IPv6 PIM snooping on Layer 2
device, MCAST-92
terminating NMM NETCONF session, NM-264
terminating
SEC-315
SSH
SFTP
server
connection,
troubleshooting ISSU, FM-125
troubleshooting ISSU failure to execute, FM-125
testing interface cable connection (Layer 2
Ethernet), LSW-13
troubleshooting MLD snooping group filter,
MCAST-85
testing network connectivity with ping, NM-1
troubleshooting MLD snooping
forwarding, MCAST-85
triggering FC zone distribution, FCoE-86
triggering FIPS self-test, SEC-389
troubleshooting PKI CA certificate import failure,
SEC-248
troubleshooting AAA LDAP user authentication
fails, SEC-60
troubleshooting PKI CA certificate obtain failure,
SEC-245
troubleshooting AAA RADIUS accounting error,
SEC-60
troubleshooting PKI certificate export failure,
SEC-249
troubleshooting AAA RADIUS authentication
failure, SEC-59
troubleshooting PKI CRL obtain failure, SEC-247
troubleshooting AAA RADIUS packet delivery
failure, SEC-59
DHCP
address
troubleshooting PKI local certificate import
failure, SEC-248
conflict,
troubleshooting PKI local certificate obtain
failure, SEC-245
troubleshooting FTP connection, FM-80
troubleshooting IGMP
forwarding, MCAST-39
snooping
Layer
2
troubleshooting PIM snooping does not work,
MCAST-47
troubleshooting 802.1X EAD assistant Web
browser users, SEC-100
troubleshooting
IPSER-54
Layer
troubleshooting PKI local certificate request
failure, SEC-246
2
troubleshooting PKI storage path set failure,
SEC-249
troubleshooting IGMP snooping multicast group
policy, MCAST-39
troubleshooting port security mode cannot be
set, SEC-193
troubleshooting IPsec IKE negotiation failure (no
proposal match), SEC-295
troubleshooting port security secure MAC
addresses, SEC-193
troubleshooting IPsec IKE negotiation failure (no
proposal or keychain referenced correctly),
SEC-296
troubleshooting RBAC
permissions, FM-71
troubleshooting IPsec SA negotiation failure
(invalid identity info), SEC-297
local
troubleshooting RBAC login
RADIUS users fail, FM-71
troubleshooting IPsec SA negotiation failure (no
transform set match), SEC-296
user
access
attempts
by
troubleshooting security portal authentication
cannot log out users (access device), SEC-170
troubleshooting IPv4 DNS incorrect IP address,
IPSER-103
troubleshooting security portal authentication
cannot log out users (RADIUS server), SEC-171
troubleshooting IPv6 address cannot be pinged,
IPSER-164
troubleshooting security portal authentication
no page pushed for users, SEC-170
troubleshooting IPv6 DNS incorrect IP address,
IPSER-103
troubleshooting security portal authentication
users cannot log in (re-DHCP), SEC-172
217
process
troubleshooting security portal authentication
users logged out still exist on server, SEC-171
monitoring and maintenance. See PMM
troubleshooting sFlow remote collector cannot
receive packets, NM-197
process placement
1:N process redundancy, HA-138
tuning IP routing RIP networks, IPR-19
configuration, HA-138, HA-139
tuning RIPng network, IPR-39
configuration restrictions, HA-139
understanding CLI command-line error message,
FM-7
uninstalling ISSU feature
commands), FM-123
(install
display, HA-142
optimization, HA-138, HA-141
series
policy, HA-138
uninstalling ISSU patch images (install series
commands), FM-123
policy configuration, HA-140
unlocking NMM NETCONF configuration,
NM-243, NM-245
policy location-type affinity, HA-140
policy location affinity configuration, HA-140
unmounting file system storage media, FM-91
policy process affinity, HA-141
upgrading ISSU software images (install series
commands), FM-122
policy self affinity, HA-141
profile
upgrading software, FM-109
AAA NAS-ID profile configuration, SEC-47
upgrading software with a warm reboot, FM-114
IPsec IKE configuration, SEC-284
upgrading software with non-ISSU method,
FM-113
IPsec IPv6 routing protocol profile (manual),
SEC-269
using CLI command history function, FM-7
NMM PTP profile, NM-51
using CLI command hotkey, FM-5
QoS policy application (user profile), QACL-24
using CLI command keyword alias, FM-5
promiscuous
using CLI undo command form, FM-3
private VLAN promiscuous port configuration,
LSW-157
using emergency shell, FM-142
private VLAN trunk
configuration, LSW-160
using Python, FM-166
verifying device transceiver module, FM-161
proposal
verifying PKI certificate, SEC-225
verification
port
private
VLAN
trunk
promiscuous+trunk
secondary port configuration, LSW-163
verifying ISSU software image (install series
commands), FM-124
verifying PKI certificate
checking), SEC-226
promiscuous
IPsec IKE proposal, SEC-286
(CRL
protected VLAN
verifying PKI certificate verification (w/o CRL
checking), SEC-226
RRPP configuration, HA-57
viewing CLI display command output, FM-13
Smart Link group protected VLAN, HA-102
working with FTP server files, FM-78
Smart Link load sharing, HA-100
Smart Link, HA-99
working with SSH SFTP directories, SEC-314
protecting
working with SSH SFTP files, SEC-314
ARP attack protection configuration, SEC-357
218
ARP gateway protection, SEC-372
IPsec security protocol 51 (AH), SEC-251
DHCP relay agent starvation attack protection,
IPSER-59
IPv6, IPSER-143
IRDP configuration, IPSER-119, IPSER-120
DHCP snooping starvation attack protection,
IPSER-75
LAN switching LLDP, LSW-241
Layer 2 multicast, MCAST-10
DHCP-REQUEST message attack protection,
IPSER-76
Layer 3 multicast, MCAST-9
MFF, SEC-377
spanning tree protection functions, LSW-108
MLD snooping, MCAST-63
protocol-based VLAN
MSTP, LSW-82
configuration, LSW-141, LSW-149
MVRP, LSW-188
protocols and standards
802.1X overview, SEC-62
NMM NETCONF, NM-236, NM-238
802.1X related protocols, SEC-63
NMM NTP, NM-13
AAA, SEC-13
NMM PTP, NM-55
AAA HWTACACS, SEC-7, SEC-13
NMM PTP message encapsulation protocol,
NM-62
AAA LDAP, SEC-9, SEC-13
NMM SNMP configuration, NM-89, NM-107
AAA RADIUS, SEC-2, SEC-13
NMM SNMP versions, NM-90
BOOTP, IPSER-81
OpenFlow, OF-7
CFD, HA-17
OpenFlow protocol packet matching restrictions,
OF-18
DHCP, IPSER-30
DHCP overview, IPSER-25
QCN, QACL-99
DHCPv6, IPSER-167
QinQ, LSW-204
Ethernet link aggregation protocol configuration,
LSW-41
RIP, IPR-12
RIPng, IPR-36
Ethernet OAM, HA-3
RMON, NM-109
EVB, EVB-3
RRPP, HA-56
FC protocol, FCoE-2
RRPP configuration, HA-47, HA-56, HA-64
FCoE, FCoE-12
sFlow, NM-193
FIP (FCoE initialization protocol), FCoE-6
SSL configuration, SEC-342, SEC-343
IGMP snooping, MCAST-17
SSL protocol stack, SEC-342
IP multicast, MCAST-9
STP protocol packets, LSW-68
IP services IRDP, IPSER-120
triggered RIP (TRIP), IPR-12
IPsec, SEC-254
TRILL, TRILL-6
IPsec IKE, SEC-283
VLAN, LSW-129
IPsec IPv6 routing protocols configuration,
SEC-269
provision code (ACS), NM-222
IPsec security protocol 50 (ESP), SEC-251
proxy ARP
219
common proxy ARP configuration, IPSER-15
domain specification, NM-57
common proxy ARP enable, IPSER-14
grandmaster clock, NM-52
configuration, IPSER-14
IEEE 1588 v2 profile, NM-51
display, IPSER-14
IEEE 802.1AS profile, NM-51
local proxy ARP enable, IPSER-14
maintaining, NM-65
master-member/subordinate
NM-52
proxying
DNS proxy, IPSER-84
relationship,
message encapsulation protocol configuration,
NM-62
DNS proxy configuration, IPSER-89
DNS spoofing, IPSER-85
non-Pdelay message MAC address, NM-62
DNS spoofing configuration, IPSER-90
OC configuration, NM-58
IP services IRDP proxy-advertised IP address,
IPSER-119
OC delay measurement, NM-59
Pdelay_Req message send interval, NM-61
IPv4 DNS proxy configuration, IPSER-95
Peer Delay mechanism, NM-54
IPv6 DNS proxy configuration, IPSER-102
port enable, NM-65
IPv6 ND proxy enable, IPSER-152
port role configuration, NM-58
pseudonode
protocols and standards, NM-55
TRILL pseudonode bypass, TRILL-16
Request_Response mechanism, NM-53
PTP
standard specification, NM-57
announce message send interval, NM-60
Sync message send interval configuration,
NM-61
announcement interval, NM-60
basic concepts, NM-51
synchronization mechanism, NM-53
BC delay measurement, NM-59
system time source, NM-64
BITS clock parameters, NM-64
TC+OC port type configuration, NM-59
clock mode configuration, NM-55
timestamp mode configuration, NM-58
clock node, NM-51
clock node type, NM-57
UDP packet source IP address configuration,
NM-62
clock priority, NM-64
UTC correction date, NM-63
clock source type, NM-53
public key
configuration, NM-51
display, SEC-211
configuration (IEEE 1588 v2), NM-65
file import, SEC-213
configuration (IEEE 802.1AS), NM-68
FIPS compliance, SEC-206
cumulative offset, NM-63
host public key display, SEC-209
delay correction value, NM-63
host public key export, SEC-208
Delay_Req message send interval, NM-61
local host public key distribution, SEC-208
displaying, NM-65
local key pair creation, SEC-207
domain, NM-51
local key pair destruction, SEC-209
220
management, SEC-206, SEC-211
algorithm (RP), QACL-98
peer configuration, SEC-210
basic concepts, QACL-95
peer host public key entry, SEC-210
basic configuration, QACL-102
peer host public key import from file, SEC-210
CND, QACL-99
peer public key entry, SEC-211
CND
congestion
QACL-102
SSH client host public key configuration,
SEC-306
SSH
password-publickey
SEC-301
detection
parameter,
CND defense mode, QACL-99
CND priority mapping, QACL-99
authentication,
CND settings configuration, QACL-100
SSH publickey authentication, SEC-301
SSH
Secure
Telnet
authentication, SEC-329
client
publickey
SSH
Secure
Telnet
authentication, SEC-320
server
publickey
CNM format, QACL-96
configuration, QACL-95, QACL-100, QACL-102
data flow format, QACL-95
display, QACL-102
SSH SFTP client publickey authentication,
SEC-334
enabling, QACL-100
SSH user configuration, SEC-307
maintain, QACL-102
how it works, QACL-97
Public Key Infrastructure. Use PKI
message format, QACL-95
PVID (port-based VLAN), LSW-131
multi-CND configuration, QACL-105
PVST. See also STP
protocols and standards, QACL-99
configuration, LSW-85, LSW-116
QinQ
feature enable, LSW-100
basic configuration, LSW-209
mode set, LSW-86
configuration, LSW-203, LSW-209
port links, LSW-77
configuration restrictions, LSW-205
Python
CVLAN tag, LSW-203
automatic configuration (HTTP server+Python
script), FM-183
CVLAN tag TPID value, LSW-207
display, LSW-209
automatic configuration (IRF setup), FM-184
enable, LSW-205
extended API, FM-168
how it works, LSW-203
extended API functions, FM-168
implementation, LSW-204
script, FM-166
shell, FM-166
loop detection configuration,
LSW-122, LSW-124
use, FM-166
protocols and standards, LSW-204
Q SVLAN tag, LSW-203
QCN
SVLAN tag 802.1p priority, LSW-207
algorithm, QACL-98
SVLAN tag TPID value, LSW-207
algorithm (CP), QACL-98
VLAN tag TPID value, LSW-206
221
LSW-120,
VLAN transparent transmission, LSW-205
VLAN transparent transmission configuration,
LSW-211
QoS
congestion management
QACL-49, QACL-51
WFQ
queuing,
congestion management
QACL-47, QACL-50
WRR
queuing,
data buffer burst function, QACL-92
ACL configuration, QACL-1, QACL-4, QACL-12
data buffer configuration, QACL-91
ACL configuration (advanced), QACL-5
data buffer configuration (manual), QACL-92
ACL configuration (Ethernet frame header),
QACL-8
data buffer configuration application, QACL-94
ACL configuration (user-defined), QACL-9
data buffer display, QACL-94
ACL switch applications, QACL-1
data buffer fixed-area max queue ratio,
QACL-94
aggregate CAR configuration, QACL-79
data buffer shared-area max queue ratio,
QACL-93
Appendix A (Default priority maps), QACL-85
Appendix B (Packet precedence), QACL-86
data buffer total shared-area ratio, QACL-93
best-effort service model, QACL-15
DiffServ service model, QACL-15
class-based accounting configuration, QACL-82,
QACL-83
displaying aggregate CAR, QACL-79
displaying congestion management queue
scheduling profile, QACL-56
complicated traffic evaluation with token bucket,
QACL-36
displaying congestion management queuing,
QACL-55
congestion avoidance configuration, QACL-58
congestion avoidance RED, QACL-58
flow mirroring configuration, NM-188, NM-191
congestion avoidance tail drop, QACL-58
flow mirroring match criteria, NM-188
congestion avoidance WRED, QACL-58
flow mirroring QoS policy, NM-189
congestion avoidance WRED configuration,
QACL-60
flow mirroring QoS policy application, NM-190
flow mirroring QoS policy application (control
plane), NM-190
congestion avoidance WRED display, QACL-61
congestion avoidance WRED queue-based
table, QACL-59
flow mirroring QoS policy application (global),
NM-190
congestion avoidance+ECN, QACL-59
congestion
management
QACL-46, QACL-50
flow mirroring QoS
(interface), NM-190
configuration,
policy
application
flow mirroring QoS policy application (VLAN),
NM-190
congestion management queue scheduling
profile, QACL-55, QACL-57, QACL-88
flow mirroring traffic behavior, NM-189
congestion management queuing, QACL-50
global CAR configuration, QACL-79
congestion management SP queuing, QACL-46,
QACL-50
GTS, QACL-38
GTS configuration, QACL-36, QACL-41
congestion management SP+WFQ queuing
configuration, QACL-53
GTS display, QACL-42
IntServ service model, QACL-15
congestion management SP+WRR queuing
configuration, QACL-52
IPsec QoS pre-classify enable, SEC-267
222
LAN switching LLDP 802.1p-to-local priority
mapping, LSW-254
priority mapping
QACL-32
LAN switching LLDP APP parameters, LSW-252
priority mapping trusted port packet priority,
QACL-30
LAN switching LLDP ETS parameters, LSW-254
priority marking
QACL-66
LAN switching LLDP PFC parameters, LSW-255
marking
marking,
priority mapping user priority, QACL-26
LAN switching LLDP group-based WRR queuing,
LSW-255
local precedence
QACL-66
table+priority
configuration,
QACL-64,
priority trust mode, QACL-27
configuration,
QCN algorithm, QACL-98
local QoS ID marking, QACL-68
QCN basic concepts, QACL-95
maintaining aggregate CAR, QACL-79
QCN basic configuration, QACL-102
MQC configuration, QACL-18
QCN CND, QACL-99
multi-CND QCN configuration, QACL-105
QCN CND congestion detection parameter,
QACL-102
nesting configuration, QACL-72, QACL-73
QCN CND settings, QACL-100
non-MQC, QACL-18
QCN CNM format, QACL-96
overview, QACL-15
QCN configuration, QACL-95, QACL-100,
QACL-102
policy application, QACL-21
policy application (control plane), QACL-23
QCN data flow format, QACL-95
policy application (global), QACL-23
QCN display, QACL-102
policy application (user profile), QACL-24
QCN enable, QACL-100
policy application (VLAN), QACL-22
QCN maintain, QACL-102
policy configuration, QACL-18
QCN message format, QACL-95
policy definition, QACL-21
QCN protocols and standards, QACL-99
policy display, QACL-24
QinQ SVLAN tag 802.1p priority, LSW-207
policy interface application, QACL-22
queue aging time setting, QACL-57
policy maintain, QACL-24
priority mapping
QACL-29
configuration,
rate limit, QACL-39, QACL-42
QACL-26,
rate limit configuration, QACL-36
rate limit display, QACL-42
priority mapping display, QACL-31
service models, QACL-15
priority mapping drop priority, QACL-26
priority mapping
QACL-31
interface
port
SP+WFQ queuing, QACL-49
priority,
SP+WRR queuing, QACL-49
priority mapping local precedence, QACL-26
techniques, QACL-16
priority mapping map, QACL-26, QACL-30
token bucket, QACL-36
priority mapping priority trust mode, QACL-31
traffic behavior definition, QACL-20
priority mapping process, QACL-28
traffic class definition, QACL-19
traffic evaluation, QACL-36
223
MLD
snooping
querier
MCAST-69, MCAST-82
traffic evaluation with token bucket, QACL-36
traffic
filtering
QACL-63
configuration,
QACL-62,
MLD snooping query source IPv6 address,
MCAST-71
traffic policing, QACL-37, QACL-40, QACL-42
MLD snooping query/response parameters,
MCAST-70
traffic policing configuration, QACL-36
traffic policing display, QACL-42
traffic redirection
QACL-76
configuration,
configuration,
NMM NTP query ACL, NM-12
QACL-75,
queuing
configuration, QACL-50
user profile configuration, SEC-396
data buffer burst function, QACL-92
voice VLAN QoS priority setting configuration,
LSW-175
data buffer configuration, QACL-91
MAC Information queue length, LSW-37
QoS or CAR parameters
QoS congestion avoidance RED, QACL-58
configuring, SEC-396
QoS congestion avoidance WRED, QACL-58
QoS policy
QoS congestion management scheduling
profile, QACL-55, QACL-57, QACL-88
priority marking configuration, QACL-65
QSFP+
QoS congestion management SP queuing,
QACL-46, QACL-50
IRF QSFP+ port restrictions, IRF-12
Quality of Service. Use QoS
QoS congestion management
queuing configuration, QACL-53
SP+WFQ
SP+WRR
IGMP snooping querier, MCAST-23
QoS congestion management
queuing configuration, QACL-52
IGMP
snooping
MCAST-36
Quantized Congestion Notification. Use QCN
querier
querier
configuration,
QoS congestion management WFQ queuing,
QACL-49, QACL-51
MLD
snooping
querier
MCAST-69, MCAST-82
configuration,
QoS congestion management WRR queuing,
QACL-47, QACL-50
QoS data buffer fixed-area max queue ratio,
QACL-94
querying
IGMP snooping general query, MCAST-16
IGMP
snooping
MCAST-25
message
QoS data buffer shared-area max queue ratio,
QACL-93
parameters,
queue aging time setting, QACL-57
IGMP snooping querier, MCAST-23
IGMP
snooping
MCAST-36
querier
SP+WFQ queuing, QACL-49
configuration,
SP+WRR queuing, QACL-49
IGMP snooping query/response parameters,
MCAST-24
quiet
MLD snooping general query, MCAST-62
quiet timer
MAC authentication quiet timer, SEC-107
MLD snooping membership report, MCAST-62
802.1X, SEC-85
MLD snooping message parameters, MCAST-71
R RA
224
PKI architecture, SEC-217
protocols and standards, SEC-13
PKI certificate, SEC-216
RBAC RADIUS authentication user configuration,
FM-61
RADIUS
RBAC temporary user role authorization, FM-68
802.1X EAP over RADIUS, SEC-64
real-time accounting timer, SEC-29
802.1X EAP relay enable, SEC-80
request transmission attempts max, SEC-26
802.1X EAP termination enable, SEC-80
scheme configuration, SEC-22
802.1X RADIUS EAP-Message attribute, SEC-65
802.1X
RADIUS
attribute, SEC-65
scheme creation, SEC-23
Message-Authentication
security policy server IP address, SEC-30
AAA configuration, SEC-1, SEC-16, SEC-48
server quiet timer, SEC-29
AAA implementation, SEC-2
server response timeout timer, SEC-29
AAA local user configuration, SEC-18
server status, SEC-26
AAA scheme, SEC-18
session-control, SEC-46
accounting server parameters, SEC-24
shared keys, SEC-25
accounting-on configuration, SEC-30
SNMP notification enable, SEC-31
applying interface NAS-ID profile, SEC-135
SSH user authentication+authorization, SEC-51
attributes, SEC-13
SSH user local authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
authentication server, SEC-23
traffic statistics units, SEC-25
client/server model, SEC-2
troubleshooting, SEC-59
common standard attributes, SEC-13
troubleshooting accounting error, SEC-60
display, SEC-32
troubleshooting authentication failure, SEC-59
extended attributes, SEC-6
troubleshooting packet delivery failure, SEC-59
HP proprietary attributes, SEC-15
troubleshooting security portal authentication
cannot log out users (RADIUS server), SEC-171
HWTACACS/RADIUS differences, SEC-7
information exchange security, SEC-2
user authentication methods, SEC-3
Login-Service attribute check method, SEC-31
username format, SEC-25
MAC authentication, SEC-101
random early detection. Use RED
MAC authentication (RADIUS-based), SEC-113
MAC authentication
SEC-102
authorization
rapid assignment (2 messages), IPSER-165
VLAN,
Rapid Ring Protection Protocol. See RRPP
Rapid Spanning Tree Protocol. Use RSTP
maintain, SEC-32
rate
outgoing packet source IP address, SEC-28
ARP packet rate limit, SEC-360
packet exchange process, SEC-3
DHCPv6 snooping packet rate limit, IPSER-200
packet format, SEC-4
spanning tree BPDU transmission rate, LSW-93
port security macAddressWithRadius, SEC-176
rate limit
port security NAS-ID profile, SEC-183
225
troubleshoot login attempts by RADIUS users fail,
FM-71
IPPO ICMP error message rate limit, IPSER-130
rate limiting
user role assignment, FM-49, FM-54
DHCP snooping rate limit, IPSER-77
user role authentication, FM-58
IPv6 ICMPv6 error message rate limit, IPSER-155
user role creation, FM-50
QoS rate limit, QACL-42
user role interface policy, FM-53
QoS rate limit display, QACL-42
user role local AAA authentication, FM-55
QoS rate limiting, QACL-39
user role non-AAA authentication, FM-55
QoS rate limiting configuration, QACL-36
user role remote AAA authentication, FM-54
RB
user role rule configuration, FM-51
TRILL nickname, TRILL-9
user role rules, FM-47
TRILL system ID, TRILL-9
user role VLAN policy, FM-53
RBAC
RCF
AAA authorization, FM-49
VFC interface request rejection, FCoE-41
configuration, FM-47, FM-50, FM-59
reactivating
default user role, FM-54
OpenFlow instance, OF-12
feature group configuration, FM-52
real-time
FIPS compliance, FM-50
AAA HWTACACS real-time accounting timer,
SEC-36
local AAA authentication user configuration,
FM-59
AAA RADIUS real-time accounting timer,
SEC-29
non-AAA authorization, FM-49
permission assignment, FM-47
event manager. See RTM
predefined user roles, FM-48
RADIUS
FM-61
authentication
user
rebooting
configuration,
device, FM-150
device (immediate), FM-150
resource access policies, FM-48, FM-53
device (scheduled), FM-150
rule configuration restrictions, FM-51
emergency shell device reboot, FM-142
settings display, FM-59
FIPS mode (automatic reboot), SEC-392
temporary user role authorization, FM-58
FIPS mode (manual reboot), SEC-393
temporary user role authorization (HWTACACS
authentication), FM-64
FIPS mode entry (manual reboot), SEC-391
receive control VLAN
temporary user role authorization (RADIUS
authentication), FM-68
Smart Link, HA-99
temporary user role authorization configuration,
FM-56
receiving
troubleshoot, FM-71
IPPO directed
IPSER-124
troubleshoot local user access permissions,
FM-71
LAN switching LLDP frames, LSW-241
226
broadcast
receive/forward,
referencing
RIPng received/redistributed route filtering,
IPR-38
security portal authentication Web server,
SEC-126
Smart Link flush message reception, HA-104
reflective relay
Smart Link receive control VLAN, HA-99
record protocol (SSL), SEC-342
EVB RR, EVB-2
recovering
EVB S-channel RR mode configuration, EVB-7
reflector port
IRF fabric, IRF-27
Layer 2 remote port mirroring, NM-172
IRF failure recovery, IRF-7
regex match NETCONF data filtering, NM-256,
NM-258
loop detection port status auto recovery,
LSW-122
region
recovering RRPP ring, HA-51
MST, LSW-79
recoverinng
MST region configuration, LSW-87
IPsec IKE invalid SPI recovery, SEC-291
recoverprobe timer (DLDP), HA-33
MST region max hops, LSW-90
recursion
MST regional root, LSW-80
registering
IP routing route recursion, IPR-2
MVRP registration fixed mode, LSW-188
re-DHCP portal authentication mode, SEC-120,
SEC-122
MVRP registration forbidden mode, LSW-188
redirecting
MVRP registration mode, LSW-190
IPv6 ND, IPSER-142
MVRP registration normal mode, LSW-188
QoS traffic redirection to CPU, QACL-75,
QACL-76
Registered State Change Notification. Use
RSCN
QoS traffic redirection to interface, QACL-75,
QACL-76
registration authority. Use RA
regular expression. Use regex
redistributing
reinitialization delay (LLDP), LSW-244
IP routing RIP route redistribution, IPR-27
rejecting
IP routing route redistribution, IPR-3
Ethernet OAM remote loopback request, HA-10
RIP received/redistributed route filtering, IPR-18
VFC interface RCF request rejection, FCoE-41
RIP routes, IPR-19
relay agent
RIPng received/redistributed route filtering,
IPR-38
802.1X EAD assistant, SEC-97
DHCP configuration, IPSER-55, IPSER-56
RIPng route redistribution, IPR-39, IPR-44
DHCP enable, IPSER-57
redundancy
IPsec anti-replay redundancy, SEC-266
DHCP enable on interface, IPSER-57
process placement 1:N process redundancy,
HA-138
DHCP IP address release, IPSER-60
DHCP operation, IPSER-55
reference port (Ethernet link aggregation), LSW-42,
LSW-45
DHCP Option 82, IPSER-28, IPSER-30
227
DHCP Option 82 configuration, IPSER-60
Ethernet OAM remote loopback, HA-3
DHCP Option 82 support, IPSER-56
Ethernet OAM remote loopback on port, HA-10
DHCP overview, IPSER-25
Ethernet OAM remote loopback on specific port,
HA-9
DHCP relay agent configuration, IPSER-62
Ethernet OAM
rejection, HA-10
DHCP relay agent Option 82, IPSER-63
DHCP relay agent packet DSCP value, IPSER-61
request
Layer 2 remote port mirroring, NM-177
DHCP relay entry recording, IPSER-58
port mirroring, NM-172
DHCP security functions, IPSER-58
port mirroring destination group, NM-178
DHCP server specification on relay agent,
IPSER-57
configuration,
loopback
IRF fabric access remote login, IRF-19
DHCP relay entry periodic refresh, IPSER-58
DHCP snooping
IPSER-72, IPSER-78
remote
port mirroring destination group creation,
NM-178
IPSER-70,
port mirroring destination group monitor port,
NM-178
DHCP starvation attack protection, IPSER-59
port mirroring destination group remote probe
VLAN, NM-179
DHCPv6 configuration, IPSER-182, IPSER-183,
IPSER-185
DHCPv6 DUID, IPSER-169
port mirroring monitor port to remote probe
VLAN assignment, NM-179
DHCPv6 enable on interface, IPSER-183
port mirroring source group, NM-180
DHCPv6 relay agent packet DSCP value,
IPSER-184
port mirroring source group creation, NM-180
port mirroring source group egress port,
NM-181
DHCPv6 relay agent server, IPSER-183
DHCPv6 snooping Option 18, IPSER-196
port mirroring source group remote probe VLAN,
NM-182
display, IPSER-61, IPSER-184
port mirroring source group source ports,
NM-180
maintain, IPSER-61, IPSER-184
troubleshooting DHCP configuration, IPSER-63
RBAC user role AAA authentication, FM-54
releasing
Remote Authentication Dial-In User Service. Use
RADIUS
DHCP relay agent IP address release, IPSER-60
remote
Remote Network Monitoring. Use RMON
802.1X authorization VLAN, SEC-71
remote probe VLAN
AAA remote accounting method, SEC-12
Layer 2 remote port mirroring, NM-172
AAA remote authentication, SEC-12
port mirroring monitor port to remote probe
VLAN assignment, NM-179
AAA remote
SEC-16
authentication
configuration,
port mirroring
NM-179
AAA remote authorization method, SEC-12
remote
destination
group,
port mirroring remote source group remote
probe VLAN, NM-182
Ethernet OAM configuration, HA-9
Ethernet OAM fault detection, HA-3
removing
Ethernet OAM loopback, HA-1
file system directory, FM-90
228
ISSU inactive software image (install series
commands), FM-124
IPv4 DNS client static domain name resolution,
IPSER-87, IPSER-92
PKI certificate, SEC-228
IPv4 DNS configuration, IPSER-92
IPv6 DNS client dynamic domain name
resolution, IPSER-88, IPSER-98
renaming
FC zone aliases, FCoE-86
IPv6 DNS client static domain name resolution,
IPSER-88, IPSER-97
FC zone sets, FCoE-86
FC zones, FCoE-86
IPv6 DNS configuration, IPSER-97
file, FM-87
resource
rendezvous point tree. Use RPT
FC resource allocation timeout timer, FCoE-39
repairing
RBAC resource access policies, FM-53
file system storage media, FM-91
resource access restriction (portal authentication),
SEC-118
reporting
IGMP snooping membership, MCAST-16
restoring
IGMP snooping report suppression, MCAST-29
MLD snooping membership report, MCAST-62
Ethernet link aggregate
settings, LSW-53
interface
default
MLD snooping report suppression, MCAST-75
factory-default settings and states, FM-161
file, FM-88
request
main next-startup configuration file, FM-103
PKI certificate request abort, SEC-224
restrictions
Request_Response mechanism (PTP), NM-53
ARP restricted forwarding, SEC-366, SEC-368
requesting
ARP scanning configuration, SEC-370
PKI certificate request, SEC-222
bulk interface configuration, LSW-18
reserved
DHCPv6 client configuration, IPSER-187
OpenFlow port type, OF-2
reserved DHCP Option 184, IPSER-28, IPSER-30
eIRF PEX cabling, IRF-49
resolving
eIRF PEX physical interface, IRF-49
DDNS client configuration, IPSER-106
eIRF system configuration, IRF-49
DDNS configuration, IPSER-105, IPSER-109
Ethernet link aggregation group, LSW-48
DDNS configuration
IPSER-111
Ethernet link aggregation traffic redirection,
LSW-56
(PeanutHull
DDNS
configuration
IPSER-109
server),
FC static route configuration, FCoE-55
(www.3322.org),
FCoE VLAN-VSAN mapping, FCoE-17
DNS configuration, IPSER-83, IPSER-86
FIPS configuration, SEC-384
DNS dynamic
IPSER-83
fixed ARP configuration, SEC-370
domain
name
resolution,
high availability DLDP configuration, HA-36
DNS static domain name resolution, IPSER-83
interface dampening (Ethernet), LSW-5
IPv4 DNS client dynamic domain name
resolution, IPSER-87, IPSER-93
interface fiber port (Layer 2 Ethernet), LSW-5
229
OpenFlow flow table modification message,
OF-21
interface loopback test (Ethernet), LSW-5
interface PFC configuration (Ethernet), LSW-5
OpenFlow instruction restrictions, OF-19
interface storm control (Layer 2 Ethernet), LSW-5
OpenFlow LLDP frame matching, OF-21
interface storm suppression (Layer 2 Ethernet),
LSW-5
OpenFlow MAC-IP flow table, OF-23
IPsec policy configuration (IKE-based), SEC-260
OpenFlow matching restrictions, OF-18
IPsec policy configuration restrictions, SEC-258
OpenFlow packet-in message, OF-21
IRF 10-GE grouped port, IRF-12
OpenFlow packet-out message, OF-20
IRF fabric configuration, IRF-11
paritioning storage media CF cards, FM-92
IRF fabric features, IRF-13
paritioning storage media USB disks, FM-92
IRF physical interface, IRF-12
process placement configuration, HA-139
IRF port connection, IRF-13
QinQ configuration, LSW-205
IRF QSFP+ port, IRF-12
RBAC rule configuration, FM-51
IRF SFP+ port, IRF-13
security portal authentication, SEC-125
IRF SFP+ port (5700-48G-4XG-2QSFP+), IRF-13
security user profile configuration, SEC-395
IRF transceiver modules+cables, IRF-12
spanning tree port role restriction, LSW-110
LAN
switching
STP
configuration, LSW-102
spanning tree TC-BPDU transmission restriction,
LSW-110
Digest
Snooping
Tcl, FM-164
LAN switching STP edge port configuration,
LSW-93
TRILL configuration, TRILL-7
LAN switching STP mCheck configuration,
LSW-101
TRILL port link type configuration, TRILL-10
TRILL VR creation restrictions, TRILL-19
LAN switching STP port link type configuration,
LSW-98
UDP helper configuration, IPSER-132
LAN switching STP TC Snooping configuration,
LSW-107
unmounting file system storage media, FM-91
LAN switching STP timer configuration, LSW-91
voice VLAN port operation configuration
restrictions (automatic assignment), LSW-176
voice VLAN LLDP enable, LSW-179
local mirroring supporting multiple monitor
ports configuration, NM-176
voice VLAN port operation configuration
restrictions (manual assignment), LSW-177
local port mirroring group monitor port
configuration, NM-175
local port mirroring
configuration, NM-174
MAC-based
LSW-138
VLAN
group
dynamic
source
retrieving
port
NMM NETCONF configuration data (all
modules), NM-249
assignment,
NMM NETCONF configuration data (Syslog
module), NM-250
MVRP configuration, LSW-189
NMM NTP configuration, NM-13
NMM NETCONF data entry (interface table),
NM-251
OpenFlow action list/action set merge, OF-19
NMM NETCONF session information, NM-262
returning
230
NMM NETCONF CLI return, NM-265
operation, IPR-11
to upper-level view from any view, FM-2
packet max length, IPR-23
to user view, FM-2
packet send rate configuration, IPR-23
Revest-Shamir-Adleman Algorithm. Use RSA
poison reverse configuration, IPR-20
RIB
poison reverse enable, IPR-20
IP routing FIB route max lifetime, IPR-4
preference configuration, IPR-18
IP routing RIB label max lifetime, IPR-3
protocols and standards, IPR-12
IP routing RIB route max lifetime, IPR-3
received/redistributed route filtering, IPR-18
RIPv1 message zero field check enable, IPR-21
ring
RIPv2 message authentication configuration,
IPR-21
configuring (RRPP), HA-59
configuring RRPP group, HA-63
RIPv2 route summarization configuration, IPR-16
disconnect state (RRPP), HA-48
route control configuration, IPR-15
health state (RRPP), HA-48
route entries, IPR-11
recovery (RRPP), HA-51
route redistribution, IPR-27
RRPP group, HA-49, HA-52
route redistribution configuration, IPR-19
RIP. See also RIPng
routing loop prevention, IPR-11
additional routing metric configuration, IPR-15
split horizon configuration, IPR-20
basic configuration, IPR-13, IPR-24
split horizon enable, IPR-20
configuration, IPR-11, IPR-13, IPR-24
timer configuration, IPR-19
default route advertisement, IPR-17
update source IP address check, IPR-21
displaying, IPR-24
version configuration, IPR-15
enabling, IPR-13
versions, IPR-12
GR configuration, IPR-23
RIPng. See also RIP
GR helper configuration, IPR-23
basic configuration, IPR-36, IPR-42
GR restarter configuration, IPR-23
configuration, IPR-35, IPR-36, IPR-42
host route reception disable, IPR-17
default route advertisement, IPR-38
interface additional metric configuration, IPR-29
display, IPR-42
interface advertisement control, IPR-14
GR configuration, IPR-41
interface reception control, IPR-14
IPsec profile application, IPR-41
IPv6. See RIPng
IPsec profile configuration, IPR-47
maintaining, IPR-24
IPsec RIPng configuration, SEC-277
neighbor specification, IPR-22
maintain, IPR-42
network management configuration, IPR-22
network optimization, IPR-39
network optimization, IPR-19
network tuning, IPR-39
network tuning, IPR-19
packet, IPR-35
231
packet zero field check, IPR-40
Ethernet statistics entry creation, NM-109
poison reverse configuration, IPR-40
Ethernet statistics group, NM-107
preference configuration, IPR-38
Ethernet statistics group configuration, NM-112
protocols and standards, IPR-36
event group, NM-108
received/redistributed route filtering, IPR-38
group, NM-107
route control, IPR-37
history control entry creation, NM-110
route entry, IPR-35
history group, NM-107
route redistribution, IPR-44
history group configuration, NM-113
route redistribution configuration, IPR-39
private alarm group, NM-108
route summarization, IPR-37
private alarm group sample type, NM-109
routing metric configuration, IPR-37
protocols and standards, NM-109
split horizon configuration, IPR-40
settings display, NM-111
timer configuration, IPR-39
statistics function configuration, NM-109
roaming
RIPv1
security portal authentication roaming, SEC-136
message zero field check enable, IPR-21
role
protocols and standards, IPR-12
RIP basic configuration, IPR-13
eIRF system, IRF-46
RIP configuration, IPR-11, IPR-13, IPR-24
IRF member role, IRF-2
RIP versions, IPR-12
NMM PTP port, NM-58
version configuration, IPR-15
RBAC default user role, FM-54
RBAC predefined user roles, FM-48
RIPv2
RBAC temporary user role authorization, FM-56,
FM-58
automatic route summarization enable, IPR-16
message authentication configuration, IPR-21
RBAC user role assignment, FM-49, FM-54
protocols and standards, IPR-12
RBAC user role authentication, FM-58
RIP basic configuration, IPR-13
RBAC user role creation, FM-50
RIP configuration, IPR-11, IPR-13, IPR-24
RBAC user role interface policy, FM-53
RIP versions, IPR-12
RBAC user role local AAA authentication,
FM-55
route summarization configuration, IPR-16
summary route advertisement, IPR-16
RBAC user role non-AAA authentication, FM-55
version configuration, IPR-15
RBAC user role remote AAA authentication,
FM-54
RMON
alarm function configuration, NM-110, NM-114
RBAC user role rule configuration, FM-51
alarm group, NM-108
RBAC user role VLAN policy, FM-53
alarm group sample type, NM-109
Smart Link group role preemption, HA-103
configuration, NM-107, NM-112
Smart Link preemption, HA-100
232
role-based access control. Use RBAC
IPv6 default route configuration, IPR-34
role-based MIB access control, NM-91
IPv6 static route configuration, IPR-31
rolling back
IPv6 static routing basic configuration, IPR-32
configuration, FM-99, FM-101
IPv6 static routing configuration, IPR-31, IPR-32
ISSU HTTP feature rollback (install series
commands), FM-135
RIP default route advertisement, IPR-17
ISSU HTTP feature
commands), FM-130
rollback
(issu
RIP host route reception disable, IPR-17
series
RIP poison reverse configuration, IPR-20
RIP preference configuration, IPR-18
ISSU software configuration (install series
commands), FM-123
NMM NETCONF
NM-254
configuration,
RIP received/redistributed route filtering, IPR-18
RIP route control configuration, IPR-15
NM-253,
RIP route entries, IPR-11
root
RIP route redistribution configuration, IPR-19
MST common root bridge, LSW-80
RIP split horizon configuration, IPR-20
MST regional root, LSW-80
RIP update source IP address check, IPR-21
MST root port role, LSW-80
RIPng default route advertisement, IPR-38
spanning tree root bridge, LSW-88
RIPng preference, IPR-38
spanning tree root bridge (device), LSW-89
RIPng received/redistributed route filtering,
IPR-38
spanning tree root guard, LSW-108
spanning tree secondary root bridge (device),
LSW-89
RIPng route control, IPR-37
STP algorithm calculation, LSW-70
RIPng route redistribution, IPR-39, IPR-44
STP root bridge, LSW-69
RIPng route summarization, IPR-37
STP root port, LSW-69
RIPv1 message zero field check, IPR-21
RIPng route entry, IPR-35
route
RIPv2 summary route advertisement, IPR-16
IP forwarding optimal route selection, IPSER-113
static routing basic configuration, IPR-7
IP routing FIB route max lifetime, IPR-4
static routing configuration, IPR-6
IP routing FIB table optimal routes, IPR-1
static routing default route configuration, IPR-10
IP routing load sharing, IPR-2
TRILL ECMP route configuration, TRILL-18
IP routing RIB label max lifetime, IPR-3
router
IP routing RIB route max lifetime, IPR-3
IGMP snooping router port, MCAST-14
IP routing RIP route redistribution, IPR-27
IPv6 ND router/prefix discovery, IPSER-141
IP routing route backup, IPR-2
MLD snooping router port, MCAST-60
IP routing route preference, IPR-2
routing
IP routing route recursion, IPR-2
802.1X authentication, SEC-90
IP routing route redistribution, IPR-3
802.1X basics, SEC-90
IP routing static route, IPR-7
802.1X configuration, SEC-71, SEC-79
233
ACL configuration, QACL-1, QACL-4, QACL-12
FC default zone policy, FCoE-83
ACL configuration (advanced), QACL-5
FC direct routes, FCoE-52, FCoE-53
ACL configuration (basic), QACL-4
FC FIB table, FCoE-52
ACL configuration (Ethernet frame header),
QACL-8
FC FIB table contents, FCoE-53
FC forwarding configuration, FCoE-52
ACL configuration (user-defined), QACL-9
FC FSPF configuration, FCoE-56
DDNS client configuration, IPSER-106
FC FSPF routes, FCoE-52, FCoE-54
DDNS client policy, IPSER-106
DDNS client policy application, IPSER-108
FC FSPF SPF calculation (shortest interval),
FCoE-57
DDNS configuration, IPSER-105, IPSER-109
FC ping configuration, FCoE-118
DDNS configuration
IPSER-111
FC routing configuration, FCoE-52, FCoE-61
DDNS
configuration
IPSER-109
(PeanutHull
server),
FC routing table, FCoE-52
(www.3322.org),
FC routing table contents, FCoE-52
FC static route configuration, FCoE-55
DDNS outgoing packet DSCP value, IPSER-109
FC static routes, FCoE-54
DHCP snooping configuration, IPSER-70
FC static routing configuration (VFC interface),
FCoE-61
DHCP snooping trusted port, IPSER-70
DHCP snooping untrusted port, IPSER-70
FC tracert configuration, FCoE-122, FCoE-123
DHCPv6 snooping configuration, IPSER-195,
IPSER-202
FC zone, FCoE-82
FC zone alias, FCoE-81
DHCPv6snooping configuration, IPSER-197
FC zone configuration, FCoE-70, FCoE-79,
FCoE-88
DNS configuration, IPSER-83, IPSER-86
DNS outgoing packet DSCP value, IPSER-91
FC zone database, FCoE-70
DNS packet source interface, IPSER-90
FC zone database deletion, FCoE-87
DNS proxy, IPSER-84
FC zone distribution, FCoE-83
DNS proxy configuration, IPSER-89
FC zone distribution (basic zoning), FCoE-73
DNS spoofing configuration, IPSER-90
DNS trusted interface, IPSER-91
FC zone
FCoE-75
Ethernet multicast MAC address, MCAST-8
FC zone merge type, FCoE-83
Ethernet OAM port action configuration, HA-8
FC zone set, FCoE-82
Ethernet OAM remote loopback configuration,
HA-9
FC zone set activation, FCoE-85
loopback
zoning),
FC zone set fabric distribution, FCoE-85
Ethernet OAM remote loopback on specific port,
HA-9
remote
(enhanced
FC zone set distribution trigger, FCoE-86
Ethernet OAM remote loopback on port, HA-10
Ethernet OAM
rejection, HA-10
distribution
FC zone-related copy, FCoE-87
FC zone-related renaming, FCoE-86
request
FSPF configuration (VFC interface), FCoE-66
FTP configuration, FM-73
EVB configuration, EVB-1, EVB-3, EVB-11
234
IP addressing masking, IPSER-21
high availability DLDP automatic unidirectional
link shutdown, HA-39
IP addressing subnetting, IPSER-21
high availability DLDP configuration, HA-32,
HA-36, HA-39
IP forwarding, IPSER-113
IP forwarding optimal route selection, IPSER-113
high availability DLDP manual unidirectional
link shutdown, HA-42
IP multicast address, MCAST-6
IGMP snooping basic configuration, MCAST-18
IP multicast overview, MCAST-1
IGMP snooping configuration,
MCAST-17, MCAST-31
IP multicast packet forwarding, MCAST-11
MCAST-14,
IP multicast transmission techniques, MCAST-1
IGMP snooping dynamic router port change,
MCAST-23
IP multicast VPN application, MCAST-12
IGMP snooping
MCAST-20
IP multicast VPN support, MCAST-12
forwarding
entries
IP multicast VPN instance, MCAST-12
max,
IGMP snooping group policy+simulated joining
configuration, MCAST-31
IP performance optimization directed broadcast
receive/forward configuration, IPSER-125
IGMP snooping message 802.1p priority,
MCAST-26
IP services fast
IPSER-118
IGMP
snooping
MCAST-25
IP services IRDP configuration,
IPSER-120, IPSER-121
message
parameters,
forwarding
configuration,
IPSER-119,
IGMP snooping message source IP address,
MCAST-26
IP subnet-based VLAN configuration, LSW-140,
LSW-147
IGMP snooping
MCAST-27
IPPO (IPPO), IPSER-124
multicast
group
policy,
IPPO directed
IPSER-124
IGMP snooping multicast source port filtering,
MCAST-28
IPPO ICMP fragment forwarding disable,
IPSER-130
IGMP snooping port feature, MCAST-20
querier
IPPO interface MTU configuration, IPSER-125
configuration,
IPPO interface
IPSER-126
IGMP snooping query/response parameters,
MCAST-24
IGMP snooping
MCAST-22
simulated
member
host,
MSS
configuration,
IPPO TCP path MTU discovery, IPSER-126
IPPO TCP SYN cookie, IPSER-127
IPPO TCP timer, IPSER-128
IGMP snooping static port configuration,
MCAST-33
version
TCP
IPPO TCP buffer size, IPSER-128
IGMP snooping static port, MCAST-21
IGMP
snooping
MCAST-19
receive/forward,
IPPO ICMP error message send, IPSER-128
IGMP snooping policy, MCAST-27
IGMP
snooping
MCAST-36
broadcast
IPsec IPv6 routing protocol profile (manual),
SEC-269
specification,
IPsec IPv6 routing protocols configuration,
SEC-269
IP address classes, IPSER-20
IPv4 DNS client configuration, IPSER-87
IP addressing configuration, IPSER-20, IPSER-23
IPv4 DNS configuration, IPSER-92
IP addressing interface address, IPSER-22
235
MLD snooping group policy+simulated joining
configuration, MCAST-77
IPv4 DNS proxy configuration, IPSER-95
IPv6 default route. See under IPv6 static routing
MLD snooping message parameters, MCAST-71
IPv6 DNS client configuration, IPSER-88
MLD snooping port feature configuration,
MCAST-66
IPv6 DNS configuration, IPSER-97
IPv6 DNS proxy configuration, IPSER-102
MLD
snooping
MCAST-82
IPv6 multicast port-based VLAN configuration,
MCAST-96
MLD snooping query/response parameters,
MCAST-70
IPv6 multicast port-based VLAN user port
attribute configuration, MCAST-96
MLD snooping simulated member host port,
MCAST-68
VLAN
MLD snooping
MCAST-79
IPv6 multicast VLAN configuration, MCAST-93,
MCAST-95, MCAST-98
load sharing, IPSER-115
configuration,
NMM IPv6 NTP multicast association mode,
NM-38
MAC-based VLAN configuration, LSW-135,
LSW-145
dynamic
port
NMM IPv6 NTP client/server association mode,
NM-29
IPv6 static routing. See IPv6 static routing
VLAN
static
Monitor Link configuration, HA-120, HA-121,
HA-122
IPv6 PIM snooping configuration, MCAST-86,
MCAST-87, MCAST-88
MAC-based
LSW-139
configuration,
MLD snooping query source IPv6 address,
MCAST-71
IPv6 multicast port-based VLAN user port
assignment, MCAST-97
IPv6
multicast
sub-VLAN-based
configuration, MCAST-95
querier
NMM IPv6 NTP symmetric active/passive
association mode, NM-32
assignment,
NMM NTP association mode, NM-14
MAC-based VLAN server assignment, LSW-140
MAC-based VLAN static assignment, LSW-139
NMM NTP broadcast association mode,
NM-33
MFF
configuration,
SEC-379
NMM NTP broadcast mode with authentication,
NM-43
SEC-375,
SEC-377,
NMM NTP client/server association mode,
NM-28
MFF manual-mode in ring network, SEC-380
MFF manual-mode in tree network, SEC-379
NMM
NTP
client/server
authentication, NM-41
MFF periodic gateway probe, SEC-378
MLD snooping
MCAST-72
802.1p
message
mode
with
priority,
NMM NTP configuration, NM-8, NM-14,
NM-51
MLD snooping basic configuration, MCAST-64
NMM NTP multicast association mode, NM-35
MLD snooping configuration,
MCAST-63, MCAST-77
NMM
NTP
symmetric
association mode, NM-31
MCAST-60,
MLD snooping dynamic router port change,
MCAST-69
MLD snooping
MCAST-66
forwarding
entries
active/passive
NMM PTP clock mode, NM-55
NMM PTP configuration, NM-51
max,
NMM PTP configuration (IEEE 1588 v2),
NM-65
236
RPT
NMM PTP configuration (IEEE 802.1AS),
NM-68
IP multicast notation, MCAST-4
NMM SNTP configuration, NM-47, NM-49
PIM snooping configuration,
MCAST-42, MCAST-43
RRPP
MCAST-41,
activating domain, HA-61
assistant edge node type, HA-48
port-based IPv6 multicast VLAN configuration,
MCAST-101
basic concepts, HA-47
protocol-based VLAN configuration, LSW-141,
LSW-149
broadcast storm suppression, HA-52
QoS congestion management configuration,
QACL-50
common-flush-FDB RRPPDU, HA-49
common port, HA-49
complete-flush-FDB RRPPDU, HA-49
QoS GTS configuration, QACL-36
configuration, HA-47, HA-56, HA-64
QoS priority mapping configuration, QACL-26,
QACL-29
configuring control VLAN, HA-57
QoS priority mapping priority trust mode,
QACL-31
configuring fail timer, HA-61
QoS priority mapping table+priority marking,
QACL-32
configuring fast detection timer, HA-62
configuring fast detection, HA-62
configuring hello timer, HA-61
QoS rate limit configuration, QACL-36
configuring node, HA-59
QoS traffic policing, QACL-42
configuring port, HA-59
QoS traffic policing configuration, QACL-36
configuring protected VLAN, HA-57
special IP addresses, IPSER-21
configuring ring, HA-59
SSH configuration, SEC-300
configuring ring group, HA-63
SSH server configuration, SEC-303
static
routing+Track+NQA
HA-132
sub-VLAN-based
IPv6
configuration, MCAST-98
control VLAN, HA-48
collaboration,
multicast
creating domain, HA-56
data VLAN, HA-48
VLAN
displaying, HA-63
TFTP configuration, FM-83
Track+policy-based
HA-128
routing
domain, HA-47
collaboration,
dual-homed rings configuration, HA-73
edge node type, HA-48
Track+static routing collaboration, HA-128
edge port, HA-49
voice VLAN configuration, LSW-170, LSW-180
edge-hello RRPPDU, HA-49
voice VLAN IP phone access method, LSW-172
enabling fast detection, HA-62
routing bridge
fail timer, HA-50
TRILL, TRILL-1
fast detection configuration, HA-93
TRILL distribution tree, TRILL-16
fast detection mechanism, HA-52
TRILL distribution tree basics, TRILL-16
fast-edge-hello RRPPDU, HA-49
Routing Information Protocol. Use RIP
237
fast-fail timer, HA-50
transit node type, HA-48
fast-hello RRPPDU, HA-49
troubleshooting, HA-97
RRPPDU, HA-48
fast-hello timer, HA-50
hello RRPPDU, HA-49
common-flush-FDB type, HA-49
hello timer, HA-50
complete-flush-FDB type, HA-49
how it works, HA-51
edge-hello type, HA-49
intersecting rings configuration, HA-67
fast-edge-hello type, HA-49
intersecting rings load balancing, HA-55
fast-hello type, HA-49
intersecting rings networking, HA-54
hello type, HA-49
link down mechanism, HA-51
link-down type, HA-49
link-down RRPPDU, HA-49
major-fault type, HA-49
RSA
load balancing, HA-51
IPsec IKE signature authentication, SEC-282
load-balanced intersecting rings configuration,
HA-83
PKI certificate export, SEC-227
maintaining, HA-63
PKI OpenCA server certificate request, SEC-236
major-fault RRPPDU, HA-49
PKI RSA Keon CA server certificate request,
SEC-230
master node type, HA-48
PKI Windows 2003 CA server certificate
request, SEC-233
networking, HA-53
node types, HA-48
public key management, SEC-206, SEC-211
polling mechanism, HA-51
SSH client host public key configuration,
SEC-306
primary master port, HA-49
primary transit port, HA-49
SSH management parameters, SEC-308
protocols and standards, HA-56
SSH RSA host key pair, SEC-303
ring group, HA-49, HA-52
SSH RSA server key pair, SEC-303
ring recovery, HA-51
SSH
Secure
Telnet
authentication, SEC-320
ring topology, HA-48
secondary master port, HA-49
server
publickey
SSH SFTP client publickey authentication,
SEC-334
secondary transit port, HA-49
RSCN
single ring configuration, HA-64
single ring load balancing, HA-54
aggregation, FCoE-42
single ring networking, HA-53
aggregation configuration, FCoE-41
RSTP. See also STP
specifying assistant edge node, HA-60
specifying edge node, HA-60
configuration, LSW-84
specifying master node, HA-60
feature enable, LSW-100
specifying transit node, HA-60
mode set, LSW-86
tangent rings networking, HA-53
MSTP device implementation, LSW-82
238
system information default hidden log output,
NM-73
network convergence, LSW-76
RTM
system information default security log output,
NM-73
NMM EAA, NM-204
NMM EAA configuration, NM-203, NM-211
system information default trace log output,
NM-73
rule
ACL auto match order sort, QACL-2
running configuration
ACL automatic rule numbering, QACL-3
archiving, FM-99
ACL automatic rule renumbering, QACL-3
archiving (manual), FM-101
ACL config match order sort, QACL-2
CLI save, FM-13
ACL naming, QACL-2
device, FM-94
ACL numbering, QACL-2
encryption, FM-97
ACL numbering step, QACL-3
rollback, FM-99
ACL rule numbering, QACL-3
saving (fast mode), FM-98
CFD MIP auto-generation rule, HA-20
saving (safe mode), FM-98
CFD MIP default rule, HA-14
runtime
CFD MIP explicit rule, HA-14
NMM EAA event monitor policy runtime,
NM-205
FCFC zone merge rules, FCoE-78
file system storage media naming, FM-85
S FIP snooping establishment, FCoE-103
S/MIME (PKI secure email), SEC-218
information center log default output rules,
NM-72
SA
IPsec transform set, SEC-257
IPsec ACL rule keywords, SEC-256
security IKE SA max number set, SEC-291
MAC address table unknown frame forwarding
rule, LSW-27
troubleshooting IPsec SA negotiation failure
(invalid identity info), SEC-297
RBAC command rule, FM-47
troubleshooting IPsec SA negotiation failure (no
transform set match), SEC-296
RBAC feature execute rule, FM-47
RBAC feature group rule, FM-47
safe saving running configuration, FM-98
RBAC feature read rule, FM-47
sampling
RBAC feature write rule, FM-47
RMON alarm group sample type, NM-109
RBAC OID rule, FM-47
RMON private alarm group sample type,
NM-109
RBAC user role rule configuration, FM-51
Sampled Flow. Use sFlow
RBAC Web menu rule, FM-47
sFlow counter sampling, NM-195
RBAC XML element rule, FM-47
sFlow flow sampling configuration, NM-194
security portal authentication portal-free rule,
SEC-126
SAN
fabric building, FCoE-32, FCoE-34
system information default diagnostic log output
rules, NM-72
239
fabric building
FCoE-47
configuration
NPV downlink-uplink
FCoE-94
(dynamic),
interface
mapping,
fabric building configuration (static), FCoE-44
NPV uplink, FCoE-94
fabric configuration, FCoE-44
NPV uplink interface, FCoE-94
FC configuration, FCoE-13, FCoE-129
trunk VSAN configuration, FCoE-27
FC forwarding configuration, FCoE-52
trunk VSAN in FC network, FCoE-26
FC overview, FCoE-1
trunk VSAN in FCoE network, FCoE-26
FC ping configuration, FCoE-118
VSAN configuration, FCoE-26, FCoE-28
FC routing configuration, FCoE-52, FCoE-61
VSAN creation, FCoE-27
saving
FC SAN, FCoE-1
CLI display command output to file, FM-12
FC static routing configuration (VFC interface),
FCoE-61
CLI running configuration, FM-13
FC tracert configuration, FCoE-122, FCoE-123
FC zone, FCoE-5
information center diagnostic logs (log file),
NM-81
FC zone alias, FCoE-81
information center log (log file), NM-79
FC zone configuration, FCoE-70, FCoE-79,
FCoE-88
information center security logs (log file),
NM-80
FCoE configuration, FCoE-13, FCoE-129
NMM NETCONF
NM-254, NM-255
FCoE configuration (VFC interface)(IRF mode),
FCoE-141
NM-253,
NQA client history records, NM-137
running configuration, FM-98
FCoE configuration (VFC interface)(standalone
mode), FCoE-129
S-channel
FCoE overview, FCoE-1
EVB, EVB-2
FCoE VSAN, FCoE-4
EVB configuration, EVB-6
FCoE WWN, FCoE-2
EVB creation, EVB-6
FCS configuration, FCoE-109, FCoE-112
EVB interface configuration, EVB-7
FDMI configuration, FCoE-116
FIP
snooping
configuration,
FCoE-104, FCoE-105
configuration,
EVB MAC address learning configuration,
EVB-8
FCoE-102,
EVB RR mode configuration, EVB-7
FIP snooping Ethernet interface operating mode,
FCoE-104
EVB VSI aggregate filter activation, EVB-10
EVB VSI aggregate interface configuration,
EVB-8
FIP snooping FC-MAP value, FCoE-105
FSPF configuration (VFC interface), FCoE-66
EVB VSI filter activation, EVB-10
NPV configuration, FCoE-93, FCoE-94, FCoE-97
EVB VSI filter configuration, EVB-9
NPV disruptive load balancing, FCoE-94
EVB VSI interface configuration, EVB-8
NPV downlink, FCoE-93
scheduling
NPV downlink interface, FCoE-93
CWMP ACS connection initiation, NM-223
240
device management task, FM-151, FM-153
client device configuration, SEC-310
device reboot (scheduled), FM-150
client password authentication, SEC-325
NQA client operation, NM-138
client publickey authentication, SEC-329
QoS
congestion
scheduling profile,
QACL-88
configuration, SEC-317
management
queue
QACL-55, QACL-57,
server connection establishment, SEC-310
server password authentication, SEC-317
scheme
server publickey authentication, SEC-320
AAA, SEC-18
SSH application, SEC-300
AAA HWTACACS, SEC-32
SSH packet source IP address, SEC-310
AAA LDAP, SEC-38
security
AAA LDAP scheme creation, SEC-41
802.1X access control method, SEC-81
AAA RADIUS, SEC-22
802.1X ACL assignment, SEC-95
login management CLI authentication mode,
FM-18
802.1X authentication, SEC-90
login management CLI console/AUX common
user line settings, FM-21
802.1X authentication request attempts max
number, SEC-82
login management CLI console/AUX scheme
authentication, FM-21
802.1X authentication server timeout timer,
SEC-82
802.1X authentication trigger, SEC-83
SCP
client device configuration, SEC-315
802.1X Auth-Fail VLAN, SEC-74, SEC-87
server enable, SEC-305
802.1X authorization VLAN, SEC-71
SSH application, SEC-300
802.1X
SEC-93
script
authorization
VLAN
assignment,
802.1X basics, SEC-90
extended Python API, FM-168
802.1X critical VLAN, SEC-76, SEC-88
extended Python API functions, FM-168
802.1X display, SEC-90
Python, FM-166
802.1X EAD assistant, SEC-89, SEC-97
scripting
802.1X EAP relay enable, SEC-80
automatic configuration (HTTP server+Python
script), FM-183
802.1X EAP termination enable, SEC-80
802.1X enable, SEC-79
automatic configuration (HTTP server+Tcl script),
FM-182
802.1X guest VLAN, SEC-73, SEC-86
SCSI-FCP information autodiscovery, FCoE-43
802.1X guest VLAN assignment, SEC-93
secondary
802.1X maintain, SEC-90
RRPP master port, HA-49
802.1X mandatory port authentication domain,
SEC-84
RRPP transit port, HA-49
secure shell. Use SSH
802.1X online user handshake, SEC-83
Secure Sockets Layer. Use SSL
802.1X overview, SEC-62
Secure Telnet
241
AAA
SSH
user
local
authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
802.1X periodic online user reauthentication,
SEC-85
802.1X port authorization state, SEC-81
ACL configuration, QACL-1, QACL-4, QACL-12
802.1X port users max number, SEC-81
ACL configuration (advanced), QACL-5
802.1X supported domain name delimiters,
SEC-89
ACL configuration (basic), QACL-4
ACL configuration (Ethernet frame header),
QACL-8
AAA concurrent login user max, SEC-47
AAA configuration, SEC-1, SEC-16, SEC-48
ACL configuration (IPv4 advanced), QACL-6
AAA device implementation, SEC-11
ACL configuration (IPv4 basic), QACL-4
AAA display, SEC-48
ACL configuration (IPv6 advanced), QACL-7
AAA HWTACACS implementation, SEC-7
ACL configuration (IPv6 basic), QACL-5
AAA HWTACACS scheme, SEC-32
ACL configuration (user-defined), QACL-9
AAA HWTACACS server SSH user, SEC-48
ARP active acknowledgement, SEC-363
AAA ISP domain accounting method, SEC-45
ARP attack detection (source MAC-based),
SEC-361, SEC-362
AAA ISP domain attribute, SEC-42
AAA ISP
SEC-43
domain
authentication
method,
ARP attack protection (unresolvable IP attack),
SEC-357, SEC-359
AAA ISP domain authorization method, SEC-44
AAA ISP domain creation, SEC-42
ARP attack protection blackhole
(unresolvable IP attack), SEC-358
AAA ISP domain method, SEC-41
ARP attack protection configuration, SEC-357
AAA LDAP implementation, SEC-9
ARP attack protection source suppression
(unresolvable IP attack), SEC-358
AAA LDAP scheme, SEC-38
routing
AAA LDAP server SSH user authentication,
SEC-54
ARP detection configuration, SEC-364
AAA local user, SEC-18
ARP detection maintain, SEC-366
AAA protocols and standards, SEC-13
ARP filtering, SEC-372, SEC-373
AAA RADIUS attributes, SEC-13
ARP gateway protection, SEC-371, SEC-372
AAA RADIUS implementation, SEC-2
ARP packet rate limit, SEC-360
AAA RADIUS information exchange security
mechanism, SEC-2
ARP packet source MAC consistency check,
SEC-363
AAA RADIUS scheme, SEC-22
ARP packet validity check, SEC-365
AAA RADIUS security policy server IP address,
SEC-30
ARP restricted forwarding, SEC-366, SEC-368
AAA
RADIUS
server
SSH
authentication+authorization, SEC-51
ARP detection display, SEC-366
ARP scanning, SEC-370
user
ARP scanning
SEC-370
AAA RADIUS session-control, SEC-46
configuration
restrictions,
ARP user validity check configuration, SEC-364
AAA scheme, SEC-18
ARP user+packet validity check, SEC-367
242
association. See SA
expired password login, SEC-195
attack D&P configuration, SEC-401
FIPS configuration, SEC-384, SEC-390
authorized ARP configuration, SEC-364
FIPS display, SEC-389
configuration encryption, FM-97
FIPS mode configuration, SEC-385
crypto engine configuration, SEC-383
FIPS mode entry, SEC-385
crypto engine display, SEC-383
FIPS mode entry (automatic reboot), SEC-390
crypto engine maintain, SEC-383
FIPS mode entry (manual reboot), SEC-391
device USB interface disable, FM-160
FIPS mode exit, SEC-387
DHCP relay agent entry periodic refresh,
IPSER-58
FIPS mode exit (automatic reboot), SEC-392
FIPS mode exit (manual reboot), SEC-393
DHCP relay agent IP address release, IPSER-60
FIPS mode system changes, SEC-386
DHCP relay agent relay entry recording,
IPSER-58
FIPS self-test, SEC-388
fixed ARP configuration, SEC-370
DHCP relay agent security functions, IPSER-58
fixed ARP configuration restrictions, SEC-370
DHCP relay agent starvation attack protection,
IPSER-59
high availability DLDP authentication, HA-38
high availability DLDP authentication modes,
HA-34
DHCP snooping basic configuration, IPSER-72
DHCP snooping
IPSER-72, IPSER-78
configuration,
IPSER-70,
host public key export, SEC-208
DHCP snooping entry auto backup, IPSER-74
HWTACACS protocols and standards, SEC-13
DHCP snooping packet rate limit, IPSER-77
information center security log file management,
NM-81
DHCP snooping starvation attack protection,
IPSER-75
information center security log management,
NM-80
DHCP-REQUEST message attack protection,
IPSER-76
DHCPv6
IPSER-197
snooping
basic
information center security log save (log file),
NM-80
configuration,
information center security logs, NM-71
IP. See also IPsec
DHCPv6 snooping configuration, IPSER-195,
IPSER-197, IPSER-202
DHCPv6 snooping
IPSER-199
entry
auto
IP source guard (IPSG) configuration, SEC-346,
SEC-348, SEC-351
backup,
IP source guard (IPSG) dynamic binding,
SEC-347
DHCPv6 snooping entry max, IPSER-199
DHCPv6 snooping Option 18 configuration,
IPSER-198
IP source guard (IPSG) static binding, SEC-347
DHCPv6 snooping Option 37 configuration,
IPSER-198
IPsec configuration, SEC-272
IPsec ACL-based implementation, SEC-255
IPsec display, SEC-271
DHCPv6 snooping packet rate limit, IPSER-200
IPsec encapsulation modes, SEC-251
DHCPv6-REQUEST check, IPSER-200
IPsec IKE configuration, SEC-281, SEC-283,
SEC-292
displaying password control, SEC-202
243
login management command authorization,
FM-41, FM-42
IPsec IKE display, SEC-292
IPsec IKE maintain, SEC-292
login management SNMP access control,
FM-39, FM-40
IPsec IKE mechanism, SEC-282
IPsec IKE profile configuration, SEC-284
login management SSH login control, FM-38
IPsec IKE protocols and standards, SEC-283
IPsec IPv6 routing protocols, SEC-269
login management Telnet login control, FM-38,
FM-39
IPsec maintain, SEC-271
login management user access control, FM-38
IPsec packet DF bit, SEC-268
MAC authentication, SEC-105, SEC-111
IPsec packet logging enable, SEC-268
MAC authentication (local), SEC-111
IPsec protocols, SEC-251
MAC authentication (RADIUS-based), SEC-113
IPsec protocols and standards, SEC-254
MAC authentication ACL assignment, SEC-104,
SEC-115
IPsec QoS pre-classify enable, SEC-267
MAC authentication concurrent port users max,
SEC-107
IPsec SNMP notification, SEC-270
IPv4 source guard (IPv4SG) configuration,
SEC-348
MAC authentication configuration, SEC-101
IPv4 source guard (IPv4SG) dynamic binding
configuration, SEC-352
MAC authentication critical VLAN, SEC-109
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
MAC authentication display, SEC-111
MAC authentication delay, SEC-108
MAC authentication domain, SEC-106
IPv4 source guard (IPv4SG) enable on interface,
SEC-348
MAC authentication enable, SEC-105
MAC authentication guest VLAN, SEC-109
IPv4 source guard (IPv4SG) static binding
configuration, SEC-349, SEC-351
MAC authentication keep-online, SEC-110
MAC authentication maintain, SEC-111
IPv6 source guard (IPv6SG) configuration,
SEC-349
MAC authentication methods, SEC-101
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
MAC authentication multi-VLAN mode, SEC-108
MAC
authentication
configuration, SEC-108
IPv6 source guard (IPv6SG) enable on interface,
SEC-349
multi-VLAN
mode
MAC authentication timer, SEC-107
IPv6 source guard (IPv6SG) static binding
configuration, SEC-350, SEC-354
MAC authentication user account format,
SEC-106
LDAP protocols and standards, SEC-13
MAC authentication user account policies,
SEC-101
local host public key distribution, SEC-208
MAC authentication user profile assignment,
SEC-104
local key pair creation, SEC-207
local key pair destruction, SEC-209
login management
FM-44, FM-45
command
MAC authentication
SEC-102
accounting,
VLAN
assignment,
maintaining password control, SEC-202
MFF basic concepts, SEC-376
244
MFF
configuration,
SEC-379
SEC-375,
password history, SEC-196
SEC-377,
password not displayed, SEC-197
MFF display, SEC-379
password setting, SEC-194
MFF manual-mode in ring network, SEC-380
password updating, SEC-195
MFF manual-mode in tree network, SEC-379
password user first login, SEC-196
MFF network port, SEC-376, SEC-377
password user login control, SEC-196
MFF operation modes, SEC-376
peer host public key entry, SEC-210
MFF periodic gateway probe, SEC-378
peer host public key import from file, SEC-210
MFF protocols and standards, SEC-377
peer public key entry, SEC-211
MFF server IP address, SEC-378
periodic MAC reauthentication, SEC-104
MFF user port, SEC-376
PKI applications, SEC-218
ND attack defense configuration, SEC-402
PKI architecture, SEC-217
NETCONF-over-SSH client user line, SEC-305
PKI CA policy, SEC-217
NETCONF-over-SSH configuration, SEC-305
PKI CA storage path, SEC-227
NETCONF-over-SSH+password authentication
configuration, SEC-337, SEC-339
PKI certificate export, SEC-227
PKI certificate import/export, SEC-240
NMM NTP, NM-12
PKI certificate obtain, SEC-224
NMM NTP access control rights, NM-17
PKI certificate removal, SEC-228
NMM NTP authentication, NM-13, NM-18
PKI certificate request, SEC-222
NMM NTP broadcast mode authentication,
NM-22
PKI certificate request (automatic), SEC-223
NMM NTP client/server mode authentication,
NM-18
PKI certificate request (manual), SEC-223
NMM NTP multicast mode authentication,
NM-23
PKI certificate verification, SEC-225
PKI certificate request abort, SEC-224
PKI certificate verification (CRL checking),
SEC-226
NMM NTP symmetric active/passive mode
authentication, NM-19
PKI certificate verification (w/o CRL checking),
SEC-226
NMM SNTP authentication, NM-48
password control, SEC-197, SEC-202
password control configuration, SEC-194
PKI certificate-based access control policy,
SEC-228
password control enable, SEC-198
PKI configuration, SEC-216, SEC-218, SEC-230
password control global parameters, SEC-198
PKI CRL, SEC-217
password
SEC-200
PKI digital certificate, SEC-216
control
local
user
parameters,
PKI display, SEC-229
password control user group parameters,
SEC-199
PKI domain configuration, SEC-220
PKI entity configuration, SEC-219
password event logging, SEC-197
PKI OpenCA server certificate request, SEC-236
password expiration, SEC-195
245
PKI operation, SEC-218
portal authentication types, SEC-118
PKI RSA Keon CA server certificate request,
SEC-230
portal authentication user access, SEC-126
PKI terminology, SEC-216
portal authentication user online detection,
SEC-130
PKI Windows 2003 CA server certificate
request, SEC-233
portal authentication
SEC-133
port. See port security
portal authentication Web server detection,
SEC-132
port security display, SEC-184
user
synchronization,
public key display, SEC-211
portal authentication, SEC-123
public key import from file, SEC-213
portal authentication BAS-IP, SEC-134
public key management, SEC-206, SEC-211
portal authentication configuration, SEC-118,
SEC-137
public key peer configuration, SEC-210
portal authentication cross-subnet, SEC-149
RADIUS protocols and standards, SEC-13
portal authentication
SEC-130
RBAC configuration, FM-47, FM-50, FM-59
detection
features,
RBAC default user role, FM-54
portal authentication direct, SEC-137
RBAC feature group configuration, FM-52
portal authentication domain, SEC-129
RBAC local AAA
configuration, FM-59
portal authentication extended cross-subnet,
SEC-159
extended
RBAC RADIUS authentication user configuration,
FM-61
re-DHCP,
RBAC resource access policies, FM-53
portal authentication fail-permit, SEC-134
RBAC temporary user role authorization, FM-56,
FM-58
portal authentication logout, SEC-136
portal authentication
SEC-129
user
RBAC permission assignment, FM-47
portal authentication extended direct, SEC-152
portal authentication
SEC-155
authentication
max
number
RBAC temporary user role authorization
(HWTACACS authentication), FM-64
users,
RBAC temporary user role authorization
(RADIUS authentication), FM-68
portal authentication policy server, SEC-119
portal authentication re-DHCP, SEC-145
RBAC user role assignment, FM-49, FM-54
portal authentication roaming, SEC-136
RBAC user role authentication, FM-58
portal authentication security check function,
SEC-118
RBAC user role creation, FM-50
portal authentication server, SEC-124
RBAC user role interface policy, FM-53
portal authentication server detection, SEC-131
RBAC user role local AAA authentication,
FM-55
portal authentication server detection+user
synchronization, SEC-162
RBAC user role non-AAA authentication, FM-55
RBAC user role remote AAA authentication,
FM-54
portal authentication source subnet, SEC-127
portal authentication subnet, SEC-128
RBAC user role rule configuration, FM-51
portal authentication troubleshooting, SEC-170
RBAC user role VLAN policy, FM-53
246
SSH SFTP
SEC-315
RIPng IPsec profile application, IPR-41
RIPng IPsec profile configuration, IPR-47
connection
termination,
SSH SFTP server enable, SEC-304
Secure Telnet client user line, SEC-305
SSH SFTP server password authentication,
SEC-331
SSH authentication methods, SEC-301
SSH client host public key configuration,
SEC-306
SSH user configuration, SEC-307
SSL client policy configuration, SEC-344
SSH configuration, SEC-300
SSL configuration, SEC-342, SEC-343
SSH display, SEC-317
SSL display, SEC-345
SSH local DSA key pair generation, SEC-303
SSL security services, SEC-342
SSH local ECDSA key pair generation, SEC-303
SSL server policy configuration, SEC-343
SSH local RSA key pair generation, SEC-303
Stelnet server enable, SEC-304
SSH management parameters, SEC-308
super password control parameters, SEC-201
SSH packet source IP address, SEC-310
troubleshooting 802.1X EAD assistant Web
browser users, SEC-100
SSH SCP client device, SEC-315
SSH SCP server enable, SEC-305
troubleshooting AAA HWTACACS, SEC-60
SSH Secure Telnet client device, SEC-310
SSH
Secure
Telnet
authentication, SEC-325
client
password
SSH
Secure
Telnet
authentication, SEC-329
client
publickey
troubleshooting AAA LDAP user authentication
fails, SEC-60
troubleshooting AAA RADIUS, SEC-59
troubleshooting AAA RADIUS accounting error,
SEC-60
SSH Secure Telnet configuration, SEC-317
SSH Secure Telnet
establishment, SEC-310
server
server
connection
troubleshooting AAA RADIUS authentication
failure, SEC-59
troubleshooting AAA RADIUS packet delivery
failure, SEC-59
SSH
Secure
Telnet
authentication, SEC-317
server
password
SSH
Secure
Telnet
authentication, SEC-320
server
publickey
troubleshooting IPsec IKE, SEC-295
troubleshooting PKI CA certificate failure,
SEC-245
SSH server configuration, SEC-303
SSH SFTP client device, SEC-312
troubleshooting PKI CA certificate import failure,
SEC-248
SSH SFTP client publickey authentication,
SEC-334
troubleshooting PKI certificate export failure,
SEC-249
SSH SFTP configuration, SEC-331
troubleshooting PKI configuration, SEC-245
SSH SFTP directories, SEC-314
troubleshooting PKI CRL obtain failure, SEC-247
SSH SFTP files, SEC-314
troubleshooting PKI local certificate failure,
SEC-245
SSH SFTP help information display, SEC-314
troubleshooting PKI local certificate import
failure, SEC-248
SSH SFTP packet source IP address, SEC-312
SSH SFTP server connection establishment,
SEC-312
troubleshooting PKI local certificate request
failure, SEC-246
247
AAA RADIUS quiet timer, SEC-29
troubleshooting PKI storage path set failure,
SEC-249
AAA RADIUS response timeout timer, SEC-29
voice VLAN mode, LSW-174
automatic configuration (DHCP server), FM-175
selecting
automatic configuration (DNS server), FM-176
automatic configuration interface, FM-177
automatic configuration (file server), FM-174
DHCP address pool, IPSER-33
DHCPv6 address pool selection, IPSER-170
automatic configuration (HTTP server+Python
script), FM-183
Ethernet link aggregation
min/max, LSW-51
Selected
ports
automatic configuration (HTTP server+Tcl script),
FM-182
Ethernet
LSW-40
selected
state,
automatic configuration (IRF setup), FM-184
link
aggregation
automatic configuration (server-based), FM-177
Ethernet link aggregation unselected state,
LSW-40
automatic configuration (TFTP server), FM-177
automatic
FM-174
fabric principal switch, FCoE-32
IP forwarding optimal route selection, IPSER-113
configuration
file
preparation,
automatic configuration gateway, FM-177
self affinity (process placement), HA-141
automatic configuration start, FM-177
sending
DHCP address pool, IPSER-34
DHCP server BOOTP response format, IPSER-46
DHCP address pool creation, IPSER-35
NMM PTP announce message send interval,
NM-60
DHCP address pool IP address range, IPSER-35
DHCP client auto-configuration file, IPSER-40
NMM PTP Delay_Req message send interval,
NM-61
DHCP client BIMS server information, IPSER-40
NMM PTP Pdelay_Req message send interval,
NM-61
DHCP client gateway specification, IPSER-38
NMM PTP Sync message send interval, NM-61
DHCP client server specification, IPSER-41
Smart Link flush message send, HA-103
DHCP client WINS server, IPSER-39
DHCP client NetBIOS node type, IPSER-39
series
DHCP compatibility configuration, IPSER-45
voice VLAN host+IP phone connection (in
series), LSW-172
DHCP configuration, IPSER-32, IPSER-34
DHCP relay agent server, IPSER-57
server
DHCP server BOOTP request ignore, IPSER-45
802.1X authentication, SEC-90
DHCP server BOOTP response format, IPSER-46
802.1X authentication server timeout timer,
SEC-82
DHCP server configuration, IPSER-47
DHCP server IP address dynamic assignment,
IPSER-49
802.1X basics, SEC-90
802.1X configuration, SEC-71, SEC-79
AAA HWTACACS quiet timer, SEC-36
DHCP server IP address static assignment,
IPSER-47
AAA HWTACACS response timeout timer,
SEC-36
DHCP server option customization, IPSER-53
DHCP server packet DSCP value, IPSER-46
AAA LDAP timeout period, SEC-39
248
DHCP server response broadcast, IPSER-45
port security authorization information, SEC-182
DHCP server subnet, IPSER-52
security portal authentication AAA server,
SEC-119
DHCP server user class, IPSER-50
security
SEC-134
DHCP voice client Option 184 parameters,
IPSER-41
portal
authentication
fail-permit,
security portal authentication policy server,
SEC-119
DHCPv6 address pool, IPSER-170
DHCPv6 configuration, IPSER-168, IPSER-171,
IPSER-177
security portal authentication server, SEC-119,
SEC-124
DHCPv6 configuration on interface, IPSER-175
DHCPv6 DUID, IPSER-169
security portal authentication server detection,
SEC-131
DHCPv6 dynamic IPv6 address assignment,
IPSER-179
security
portal
authentication
components, SEC-118
DHCPv6 dynamic IPv6 prefix assignment,
IPSER-177
security portal authentication Web server,
SEC-119, SEC-125
DHCPv6 IPv6 address assignment, IPSER-173
DHCPv6 IPv6 prefix assignment, IPSER-172
security portal authentication Web server
detection, SEC-132
DHCPv6 network
IPSER-174
security portal authentication Web server
reference, SEC-126
parameters
assignment,
system
SSL server policy configuration, SEC-343
DHCPv6 packet DSCP value, IPSER-176
service
DHCPv6 PD, IPSER-170
DHCPv6 relay agent server, IPSER-183
CFD service instance, HA-19
emergency shell server connectivity check,
FM-140
LAN switching LLDP service bridge mode,
LSW-243
FTP server directory management, FM-78
local precedence
QACL-66
MAC authentication server timeout timer,
SEC-107
marking
configuration,
NMM NETCONF configuration data retrieval
(all modules), NM-249
MAC-based VLAN server assignment, LSW-138,
LSW-140
NMM NETCONF configuration data retrieval
(Syslog module), NM-250
MFF server IP address, SEC-378
NMM NETCONF configuration load, NM-253
NMM NTP broadcast server configuration,
NM-16
NMM NETCONF
NM-253
NMM NTP multicast server configuration,
NM-17
configuration
rollback,
NMM NETCONF configuration save, NM-253
NMM NETCONF data entry retrieval (interface
table), NM-251
NMM SNTP configuration, NM-47, NM-49
NMM SNTP NTP server specification, NM-48
NQA, NM-119
PKI OpenCA server certificate request, SEC-236
PKI Windows 2003 CA server certificate
request, SEC-233
249
NMM NETCONF
NM-248
edit-config
operation,
NMM NETCONF
NM-246
get/get-bulk
operation,
802.1X port users max number, SEC-81
NMM NETCONF get-config/get-bulk-config
operation, NM-247
AAA concurrent login user max, SEC-47
NMM NETCONF operations, NM-246
AAA HWTACACS timer, SEC-36
NMM NETCONF parameter value change,
NM-253
AAA HWTACACS traffic statistics unit, SEC-35
AAA HWTACACS username format, SEC-35
QoS best-effort service model, QACL-15
QoS congestion
QACL-58
avoidance
AAA LDAP server timeout period, SEC-39
configuration,
AAA RADIUS request transmission attempts
max, SEC-26
QoS congestion management configuration,
QACL-46
AAA RADIUS server status, SEC-26
QoS DiffServ service model, QACL-15
AAA RADIUS timer, SEC-29
QoS global CAR configuration, QACL-79
AAA RADIUS traffic statistics unit, SEC-25
QoS IntServ service model, QACL-15
AAA RADIUS username format, SEC-25
QoS models, QACL-15
ACL packet filtering default action, QACL-12
QoS nesting configuration, QACL-72, QACL-73
ACL packet filtering log interval, QACL-11
QoS overview, QACL-15
ARP dynamic entry max (device), IPSER-5
QoS policy configuration, QACL-18
ARP dynamic entry max (interface), IPSER-5
QoS priority marking configuration, QACL-64,
QACL-66
DDNS packet DSCP value, IPSER-109
QoS techniques, QACL-16
device port status detection timer, FM-157
QoS traffic filtering configuration, QACL-62,
QACL-63
device system operating mode, FM-149
device memory usage threshold, FM-158
device system time, FM-146
services
DHCP client packet DSCP value, IPSER-66
DHCP snooping entry max, IPSER-76
DHCP relay agent packet DSCP value, IPSER-61
session
DHCP server packet DSCP value, IPSER-46
AAA RADIUS session-control, SEC-46
NMM NETCONF
NM-240
session
DHCP snooping entry max, IPSER-76
establishment,
DHCPv6 client packet DSCP value, IPSER-189
DHCPv6 packet DSCP value, IPSER-176
NMM NETCONF session information retrieval,
NM-262
NMM NETCONF session termination, NM-264
DHCPv6 relay agent packet DSCP value,
IPSER-184
SSH DSA or RSA key pairs, SEC-303
DHCPv6 snooping entry max, IPSER-199
Set operation (SNMP), NM-90, NM-98
DNS outgoing packet DSCP value, IPSER-91
setting
DSCP value for outgoing Telnet packet, FM-27
eIRF system, IRF-44
802.1X authentication request attempts max
number, SEC-82
Ethernet
LSW-50
802.1X authentication timeout timers, SEC-82
aggregate
interface
(description),
Ethernet link aggregate group Selected ports
min/max, LSW-51
802.1X port authorization state, SEC-81
250
Ethernet link aggregate interface (expected
bandwidth), LSW-52
IGMP snooping message 802.1p priority,
MCAST-26
Ethernet link aggregation member port state,
LSW-42, LSW-45
IGMP snooping message 802.1p priority
(global), MCAST-27
fabric name, FCoE-36
IGMP snooping message 802.1p priority
(VLAN), MCAST-27
fabric switch priority, FCoE-36
interface MDIX mode (Layer 2 Ethernet), LSW-12
FC fabric timer, FCoE-39
interface statistics polling interval (Ethernet),
LSW-9
FC fabric timer (system view), FCoE-39
FC fabric timer (VSAN view), FCoE-39
IPsec IKE SA max number, SEC-291
FC FSPF interface cost, FCoE-58
IPsec packet DF bit set, SEC-268
FC FSPF interface dead interval, FCoE-58
FC FSPF interface hello interval, FCoE-58
IPv6 multicast VLAN max forwarding entries,
MCAST-97
FC FSPF interface LSR retransmission interval,
FCoE-59
IPv6 ND dynamic neighbor entries max number,
IPSER-148
FC FSPF LSR arrival interval min, FCoE-57
IPv6 ND hop limit, IPSER-149
FC FSPF LSR refresh interval min, FCoE-57
IPv6 ND stale state entry aging timer, IPSER-149
FC FSPF SPF calculation (shortest interval),
FCoE-57
IRF link down report delay, IRF-23
FC zone merge types, FCoE-83
LAN switching LLDP frame encapsulation format,
LSW-248
FCF priority, FCoE-20
LAN switching LLDP operating mode, LSW-243
FC-MAP value, FCoE-18
LAN switching LLDP parameters, LSW-247
FCoE FCF system priority, FCoE-20
FCoE FCF VFC interface priority, FCoE-20
LAN switching LLDP reinitialization delay,
LSW-244
FCoE FKA advertisement interval value, FCoE-18
log minimum storage time, NM-84
file/folder operation mode, FM-92
login management Telnet login max number
concurrent users, FM-27
FIP snooping FC-MAP value, FCoE-105
loop detection interval, LSW-124
high availability DLDP advertisement packet
send interval, HA-37
MAC address table dynamic aging timer,
LSW-26
high availability DLDP DelayDown timer, HA-37
MAC address table learning limit on interface,
LSW-27
high availability DLDP port shutdown mode,
HA-38
MAC authentication concurrent port users max,
SEC-107
IGMP snooping dynamic port aging timer,
MCAST-20
MAC authentication timer, SEC-107
IGMP snooping dynamic port aging timer
(global), MCAST-20
MAC change notification interval, LSW-37
IGMP snooping dynamic port aging timer
(VLAN), MCAST-21
MAC Information mode, LSW-36
IGMP snooping
MCAST-20
merge control mode, FCoE-83
forwarding
entries
MAC Information queue length, LSW-37
max,
251
MLD snooping
MCAST-72
802.1p
message
security portal authentication max number users,
SEC-129
priority,
MLD snooping 802.1p message priority (global),
MCAST-73
security super password control parameters,
SEC-201
MLD snooping 802.1p
(VLANl), MCAST-73
spanning tree mode, LSW-86
message
priority
TRILL distribution tree basics, TRILL-16
MLD snooping dynamic port aging timers,
MCAST-66
TRILL LSP parameters, TRILL-13
TRILL SPF algorithm parameters, TRILL-16
MLD snooping dynamic port aging timers
(global), MCAST-66
setting up
IRF fabric, IRF-1
MLD snooping dynamic port aging timers
(VLANl), MCAST-67
MLD snooping
MCAST-66
forwarding
entries
severity level (system information), NM-71
max,
sFlow
agent configuration, NM-194
MLD snooping IPv6 multicast groups max (on
portl), MCAST-75
multicast VLAN
MCAST-52
max
forwarding
collector information configuration, NM-194
configuration, NM-193, NM-196
entries,
counter sampling configuration, NM-195
OpenFlow connection interruption mode, OF-13
display, NM-195
OpenFlow controller mode, OF-10
flow sampling configuration, NM-194
OpenFlow datapath ID, OF-12
protocols and standards, NM-193
OpenFlow max flow entries, OF-10
troubleshoot, NM-197
OpenFlow timer, OF-14
troubleshoot remote collector cannot receive
packets, NM-197
port security mode, SEC-178
SFM
QinQ SVLAN tag 802.1p priority, LSW-207
IP multicast model, MCAST-5
QoS congestion management queue aging time,
QACL-57
SFP+
QoS data buffer fixed-area max queue ratio,
QACL-94
IRF SFP+ port restrictions, IRF-13
IRF
SFP+
port
(5700-48G-4XG-2QSFP+), IRF-13
QoS data buffer shared-area max queue ratio,
QACL-93
SFTP
RIP packet max length, IPR-23
client device configuration, SEC-312
security password, SEC-194
client publickey authentication, SEC-334
security password control global parameters,
SEC-198
configuration, SEC-331
security password control local user parameters,
SEC-200
directories, SEC-314
security password
parameters, SEC-199
help information display, SEC-314
control
restrictions
user
files, SEC-314
group
server connection establishment, SEC-312
server connection termination, SEC-315
252
server enable, SEC-304
collaboration, HA-100
server password authentication, SEC-331
configuration, HA-98, HA-101, HA-105
SFTP packet source IP address, SEC-312
device configuration, HA-101
SSH application, SEC-300
display, HA-105
SSH management parameters, SEC-308
flush message, HA-99
flush message reception enable, HA-104
shared area
data buffer configuration, QACL-91
flush message send enable, HA-103
QoS data buffer max queue ratio, QACL-93
group, HA-99
QoS data buffer total ratio, QACL-93
group configuration (multiple group load
sharing), HA-110
shared key
group configuration (single group), HA-105
AAA HWTACACS, SEC-35
group member port configuration, HA-102
AAA RADIUS, SEC-25
group member port configuration (group view),
HA-102
shell
Python, FM-166
shell banner type, FM-147
group member port configuration (interface
view), HA-103
shortest path tree. Use SPT
group protected VLAN configuration, HA-102
shutting down
group role preemption configuration, HA-103
Ethernet link aggregate interface, LSW-53
how it works, HA-100
high availability DLDP automatic unidirectional
link shutdown, HA-39
link backup, HA-100
links, HA-99
high availability DLDP port shutdown mode,
HA-38
high availability
manually, HA-42
DLDP
unidirectional
load sharing, HA-100
maintain, HA-105
link
Monitor Link collaboration, HA-100
IRF port shutdown exclusion, IRF-27
ports, HA-99
loop detection shutdown action, LSW-121
protected VLAN, HA-99
signature authentication (IKE), SEC-282
receive control VLAN, HA-99
Simple Network Management Protocol. Use SNMP,
Use SNMP
role preemption, HA-100
Smart Link+Track+CFD collaboration, HA-137
Simplified NTP. See SNTP
terminology, HA-99
single
toplogy change, HA-100
RRPP ring network, HA-53
Track collaboration, HA-101, HA-114
RRPP ring network load balancing, HA-54
Track collaboration configuration, HA-104
single neighbor detection (DLDP), HA-34
Track+Smart Link association, HA-132
single-line banner input mode, FM-147
transmt control VLAN, HA-99
Smart Link
SNAP
associated device configuration, HA-104
253
RMON configuration, NM-107, NM-112
LAN switching LLDP frame encapsulated in
SNAP format, LSW-236
Set operation, NM-90, NM-98
LAN switching LLDP frame encapsulation format,
LSW-248
SNMPv1
NM-91
SNMP
basic
parameter
configuration,
SNMPv1 configuration, NM-101
AAA RADIUS notifications, SEC-31
access control, FM-39, FM-40
SNMPv2c
NM-91
access management overview, FM-14
SNMPv2c configuration, NM-101
ACL switch applications, QACL-1
SNMPv3
NM-93
agent, NM-89
basic
basic
parameter
parameter
configuration,
configuration,
SNMPv3 configuration (RBAC mode ), NM-105
agent notification, NM-98
SNMPv3
NM-103
basic parameter configuration, NM-91
configuration, NM-89, NM-107
configuration
(VACM
mode
),
TRILL SNMP configuration, TRILL-22
device access, FM-37
SNMPv1
displaying settings, NM-101
agent host notification, NM-99
FCoE VSAN fabric notifications, FCoE-41
basic parameter configuration, NM-91
FCoE VSAN zone SNMP notifications, FCoE-87
configuration, NM-101
FIPS compliance, NM-91
framework, NM-89
login management SNMP device access,
FM-37
Get operation, NM-90, NM-98
Notification operation, NM-90
IPsec IKE SNMP notification, SEC-291
protocol version, NM-90
IPsec SNMP notification, SEC-270
SNMPv2
logging configuration, NM-98
MAC Information
LSW-37
configuration,
login management SNMP device access,
FM-37
LSW-36,
SNMPv2c
manager, NM-89
agent host notification, NM-99
MIB, NM-89
basic parameter configuration, NM-91
MIB access control mode, NM-91
configuration, NM-101
MIB view-based access control, NM-89, NM-91
Notification operation, NM-90
notification configuration, NM-98
protocol version, NM-90
notification enable, NM-99
SNMPv3
Notification operation, NM-90
agent host notification, NM-99
NQA, NM-117
basic parameter configuration, NM-93
NQA client SNMP operation, NM-126
configuration (RBAC mode ), NM-105
NQA SNMP operation configuration, NM-154
configuration (VACM mode ), NM-103
protocol versions, NM-90
login management SNMP device access,
FM-37
254
Notification operation, NM-90
IRF software auto-update, IRF-22
protocol version, NM-90
upgrade. See software upgrade
software upgrade
snooping
Boot ROM image preload, FM-110
ARP snooping configuration, IPSER-17
DHCP snooping
IPSER-72, IPSER-78
configuration,
Boot ROM image type, FM-106
IPSER-70,
CLI method, FM-106
DHCP snooping Option 82 configuration,
IPSER-79
completion, FM-110
completion (in bulk), FM-110
DHCP snooping Option 82 support, IPSER-71
completion (one by one), FM-111
DHCPv6 snooping configuration, IPSER-195,
IPSER-202
completion with a warm reboot, FM-112
DHCPv6snooping configuration, IPSER-197
Comware Boot image type, FM-106
FIP
snooping
configuration,
FCoE-104, FCoE-105
Comware feature image, FM-106
FCoE-102,
Comware image loading, FM-107
IGMP. See IGMP snooping
Comware image redundancy, FM-107
IPv6 PIM. See IPv6 PIM snooping
Comware image type, FM-106
MLD. See MLD snooping
Comware patch image, FM-106
PIM. See PIM snooping
Comware system image type, FM-106
spanning tree Digest Snooping, LSW-102,
LSW-103
file naming, FM-106
image settings display, FM-112
spanning tree TC Snooping, LSW-106
image settings maintain, FM-112
SNTP
ISSU, FM-115
authentication, NM-48
ISSU (install series commands), FM-121
configuration, NM-47, NM-49
ISSU HTTP feature compatible upgrade (issu
series commands), FM-126
configuration restrictions, NM-47
displaying, NM-49
ISSU HTTP feature incompatible upgrade (issu
series commands), FM-128
enable, NM-47
ISSU HTTP feature rollback (install series
commands), FM-135
NTP server specification, NM-48
SOAP
ISSU HTTP feature
commands), FM-130
NMM NETCONF message format, NM-237
NMM NETCONF over SOAP enable, NM-239
rollback
(issu
series
ISSU HTTP feature upgrade (install series
commands), FM-132, FM-136
software
ISSU inactive software image removal (install
series commands), FM-124
crypto engine configuration, SEC-383
emergency shell system software image load,
FM-141
ISSU install series commands, FM-132
emergency shell system software image retrieval,
FM-139
ISSU IPE file decompressing (install series
commands), FM-122
emergency shell use, FM-138, FM-142
ISSU issu series commands, FM-126
255
source MAC consistency check
ISSU overview, FM-115
configuration, SEC-402
ISSU performance by issu series commands,
FM-118
SP queuing
ISSU software configuration rollback (install
series commands), FM-123
classifications, QACL-46
configuration, QACL-50
ISSU software image (install series commands),
FM-122
SP+WFQ queuing
configuration, QACL-53
ISSU software image upgrade (install series
commands), FM-122
SP+WRR queuing
methods, FM-108
configuration, QACL-52
non-ISSU upgrade, FM-113
spanning tree. See also STP, RSTP, PVST, MSTP
non-ISSU upgrade preparation, FM-109
BPDU drop, LSW-111
overview, FM-106
BPDU guard enable, LSW-108
procedure, FM-109
BPDU transmission rate configuration, LSW-93
startup image file specification, FM-110, FM-112
configuration, LSW-68, LSW-82, LSW-112
startup image file specification (in bulk), FM-110
device priority configuration, LSW-89
startup image file specification (one by one),
FM-111
Digest Snooping, LSW-102, LSW-103
displaying, LSW-112
system startup, FM-107
edge port configuration, LSW-93
upgrade with a warm reboot, FM-114
feature enable, LSW-100
solicited discovery advertisement (FCoE FIP), FCoE-8
loop guard enable, LSW-109
soliciting
maintaining, LSW-112
IP services IRDP router solicitation (RS), IPSER-119
mCheck, LSW-101
sorting
mode set, LSW-86
ACL auto match order sort, QACL-2
MST region max hops, LSW-90
ACL config match order sort, QACL-2
MSTP. See also MSTP
source
No Agreement Check, LSW-104, LSW-106
ARP attack detection (source MAC-based),
SEC-361, SEC-362
port link type configuration, LSW-98
ARP src-mac validity check, SEC-365
port mode configuration, LSW-99
IPPO ICMP packet source address, IPSER-130
port path cost calculation standard, LSW-94
IPv6 ICMPv6 packet source address, IPSER-157
port path cost configuration, LSW-94, LSW-97
port mirroring, NM-171
port priority configuration, LSW-97
RIP source IP address check, IPR-21
port role restriction, LSW-110
security portal authentication portal-free rule,
SEC-126
port state transition output, LSW-99
security portal authentication subnet, SEC-127
PVST. See also PVST
protection functions, LSW-108
source device, NM-171
256
root bridge configuration, LSW-88
DHCP client DNS server, IPSER-39
root bridge configuration (device), LSW-89
DHCP client domain name suffix, IPSER-39
root guard enable, LSW-108
DHCP client gateway, IPSER-38
RSTP. See also RSTP
DHCP client NetBIOS node type, IPSER-39
secondary root bridge configuration (device),
LSW-89
DHCP client server, IPSER-41
DHCP client WINS server, IPSER-39
switched network diameter, LSW-90
DHCP relay agent server, IPSER-57
TC Snooping, LSW-106
TC-BPDU guard, LSW-111
DHCP server address pool IP address range,
IPSER-35
TC-BPDU transmission restriction, LSW-110
DHCPv6 relay agent server, IPSER-183
timeout factor configuration, LSW-92
DNS packet source interface, IPSER-90
timer configuration, LSW-91
EVB default VSI manager, EVB-4
special IP addresses, IPSER-21
IGMP snooping version, MCAST-19
specifying
IPPO ICMP packet source address, IPSER-130
802.1X access control method, SEC-81
IPv6 ICMPv6 packet source address, IPSER-157
802.1X mandatory port authentication domain,
SEC-84
IPv6 interface link-local address manually,
IPSER-147
802.1X supported domain name delimiters,
SEC-89
IRF device member priority, IRF-16
Layer 2 aggregate interface (ignored VLAN),
LSW-51
AAA HWTACACS accounting server, SEC-34
AAA HWTACACS
SEC-33
authentication
MAC authentication domain, SEC-106
server,
MFF server IP address, SEC-378
AAA HWTACACS authorization server, SEC-33
MLD snooping version, MCAST-65
AAA HWTACACS outgoing packet source IP
address, SEC-36
MLD snooping version (MLD snooping view),
MCAST-65
AAA HWTACACS shared keys, SEC-35
MLD snooping version (VLAN view), MCAST-65
AAA LDAP authentication server, SEC-41
next-startup configuration file, FM-102
AAA LDAP version, SEC-39
NMM NTP message source interface, NM-26
AAA RADIUS accounting server parameters,
SEC-24
NMM PTP BC delay measurement, NM-59
NMM PTP clock node type, NM-57
AAA RADIUS authentication server, SEC-23
NMM PTP domain, NM-57
AAA RADIUS outgoing packet source IP
address, SEC-28
NMM PTP message encapsulation protocol,
NM-62
AAA RADIUS shared keys, SEC-25
NMM PTP OC delay measurement, NM-59
CWMP ACS HTTPS SSL client policy, NM-224
NMM PTP standard, NM-57
device system time source, FM-146
NMM PTP UDP packet source IP address,
NM-62
DHCP client auto-configuration file, IPSER-40
DHCP client BIMS server information, IPSER-40
257
AAA LDAP server SSH user authentication,
SEC-54
NMM SNTP NTP server, NM-48
PKI CA storage path, SEC-227
AAA RADIUS Login-Service attribute check
method, SEC-31
RIP neighbor, IPR-22
RRPP assistant edge node, HA-60
AAA
RADIUS
server
SSH
authentication+authorization, SEC-51
RRPP edge node, HA-60
RRPP master node, HA-60
user
AAA
SSH
user
local
authentication+HWTACACS
authorization+RADIUS accounting, SEC-49
RRPP transit node, HA-60
security portal authentication domain, SEC-129
authentication methods, SEC-301
spanning tree port path cost calculation
standard, LSW-94
client host public key configuration, SEC-306
SSH packet source IP address, SEC-310
configuration, SEC-300
SSH SFTP packet source IP address, SEC-312
display, SEC-317
FIPS compliance, SEC-302
SPF
how it works, SEC-300
TRILL SPF algorithm parameter, TRILL-16
login, FM-30
SPI
login configuration on device, FM-30
IPsec IKE invalid SPI recovery, SEC-291
login control, FM-38
split
IRF ARP MAD, IRF-9
login management overview, FM-14
IRF fabric recovery, IRF-27
management parameters, SEC-308
IRF LACP MAD, IRF-8
NETCONF over SSH enable, NM-240
IRF master election, IRF-6
NETCONF-over-SSH client user line, SEC-305
IRF ND MAD, IRF-10
NETCONF-over-SSH configuration, SEC-305
IRF split, IRF-3
NETCONF-over-SSH+password authentication
configuration, SEC-337, SEC-339
split horizon, IPR-20
packet source IP address, SEC-310, SEC-312
RIPng configuration, IPR-40
public key management, SEC-206, SEC-211
splitting
SCP, SEC-300
interface (Ethernet 40-GE), LSW-2
SCP client device, SEC-315
spoofing
SCP server enable, SEC-305
DNS, IPSER-85
Secure Copy. Use SCP
DNS spoofing configuration, IPSER-90
Secure FTP. Use SFTP
SPT
Secure Telnet, SEC-300
IP multicast notation, MCAST-4
Secure Telnet client device, SEC-310
SRPT (RRPP broadcast storm suppression mechanism),
HA-52
Secure Telnet client password authentication,
SEC-325
SSH
Secure Telnet client publickey authentication,
SEC-329
AAA HWTACACS server SSH user, SEC-48
258
SSM
Secure Telnet client user line, SEC-305
IP multicast model, MCAST-5
Secure Telnet configuration, SEC-317
standard
Secure Telnet server connection establishment,
SEC-310
NMM PTP standard, NM-57
Secure Telnet server password authentication,
SEC-317
starting
automatic configuration, FM-177
Secure Telnet server publickey authentication,
SEC-320
FCS topology discovery, FCoE-111
starting up
server configuration, SEC-303
server login, FM-32
Boot ROM image preload, FM-110
SFTP, SEC-300
software upgrade procedure, FM-109
SFTP client device, SEC-312
software upgrade system startup, FM-107
SFTP client publickey authentication, SEC-334
software upgrade with a warm reboot, FM-114
SFTP configuration, SEC-331
software upgrade with non-ISSU method,
FM-113
SFTP directories, SEC-314
startup image file specification, FM-110, FM-112
SFTP files, SEC-314
startup image file specification (in bulk), FM-110
SFTP help information display, SEC-314
startup image file specification (one by one),
FM-111
SFTP server connection establishment, SEC-312
SFTP server connection termination, SEC-315
startup
SFTP server enable, SEC-304
configuration loading, FM-95
SFTP server password authentication, SEC-331
Stelnet server enable, SEC-304
device configuration startup file selection,
FM-96
user configuration, SEC-307
device configuration), FM-94
versions, SEC-300
next-startup configuration file, FM-102
starvation attack
SSL
client policy configuration, SEC-344
DHCP relay agent protection, IPSER-59
configuration, SEC-342, SEC-343
DHCP snooping protection, IPSER-75
starvation detection (Linux kernel thread PMM),
NM-201
CWMP ACS HTTPS SSL client policy, NM-224
display, SEC-345
state
FIPS compliance, SEC-343
Ethernet link aggregation member port state,
LSW-40, LSW-42, LSW-45
PKI configuration, SEC-216, SEC-218, SEC-230
PKI Web application, SEC-218
high availability DLDP neighbor state, HA-33
protocol stack, SEC-342
high availability DLDP port state, HA-33
public key management, SEC-206, SEC-211
security services, SEC-342
interface state change suppression (Ethernet),
LSW-4
server policy configuration, SEC-343
RRPP ring disconnect state, HA-48
259
MLD snooping
MCAST-67
RRPP ring health state, HA-48
stateless DHCPv6, IPSER-167
static
port
configuration,
port security static secure MAC address,
SEC-180
DHCPv6 client, IPSER-188
static
routing. See static routing
ARP static configuration, IPSER-7
static MAC address entry
ARP table entry, IPSER-3
static source check disable, LSW-32
DHCP address allocation, IPSER-25, IPSER-32
static routing
DHCP server IP address assignment, IPSER-47
basic configuration, IPR-7
DHCPv6 static address allocation, IPSER-170
configuration, IPR-6, IPR-7
DHCPv6 static prefix allocation, IPSER-170
default route configuration, IPR-10
DNS domain name resolution, IPSER-83
display, IPR-7
Ethernet link aggregation group, LSW-48
IPv6. See IPv6 static routing
Ethernet link aggregation mode, LSW-42
Ethernet link aggregation static mode, LSW-42
NQA+Track+static
HA-128
fabric building configuration, FCoE-44
routing configuration, IPR-6
FC static route configuration, FCoE-55
static
routing+Track+NQA
HA-132
collaboration,
Track+application
HA-128
collaboration,
FC static routes, FCoE-54
FCoE fabric mode, FCoE-32
IGMP snooping static port, MCAST-21
routing
module
collaboration,
Track+static routing association, HA-131
IGMP snooping static port configuration,
MCAST-33
statistics
IP source guard (IPSG) static binding, SEC-347
AAA HWTACACS traffic statistics units, SEC-35
IPv4 DNS client static domain name resolution,
IPSER-87, IPSER-92
AAA RADIUS traffic statistics units, SEC-25
interface statistics polling interval (Ethernet),
LSW-9
IPv4 source guard (IPv4SG) static binding
configuration, SEC-349, SEC-351
NQA client statistics collection, NM-137
IPv6 DNS client static domain name resolution,
IPSER-88, IPSER-97
QoS class-based accounting configuration,
QACL-82, QACL-83
IPv6 ND static neighbor entry, IPSER-148
RMON configuration, NM-107, NM-112
IPv6 source guard (IPv6SG) static binding
configuration, SEC-350, SEC-354
RMON Ethernet statistics entry, NM-109
RMON Ethernet statistics group, NM-107
IPv6 static path MTU, IPSER-154
RMON Ethernet statistics group configuration,
NM-112
Layer 2 Ethernet link aggregation, LSW-57
Layer 2 Ethernet link aggregation group,
LSW-49
RMON history control entry, NM-110
RMON statistics function, NM-109
MAC address table entry, LSW-21
sFlow agent configuration, NM-194
MAC-based VLAN static assignment, LSW-136,
LSW-139
260
sFlow collector
NM-194
information
designated port, LSW-69
configuration,
sFlow configuration, NM-193, NM-196
Digest Snooping
LSW-102
configuration
restrictions,
sFlow counter sampling configuration, NM-195
edge port configuration restrictions, LSW-93
sFlow flow sampling configuration, NM-194
feature enable, LSW-100
loop detection, LSW-68
Stelnet
mCheck configuration restrictions, LSW-101
server enable, SEC-304
mode set, LSW-86
sticky
MSTP device implementation, LSW-82
port security secure MAC address, SEC-180
path cost, LSW-70
stopping
port link type configuration restrictions, LSW-98
FCS topology discovery, FCoE-112
protocol packets, LSW-68
storage
area network. See SAN, VSAN
root bridge, LSW-69
PKI CA storage path, SEC-227
root port, LSW-69
troubleshooting PKI storage path set failure,
SEC-249
TC Snooping configuration restrictions, LSW-107
timer configuration restrictions, LSW-91
storage media
timers, LSW-76
CF card partition, FM-92
string type argument value, FM-4
file system management, FM-85
subinterface. See Ethernet subinterface
file system storage media naming rules, FM-85
subnetting
formatting, FM-91
DHCP server subnet, IPSER-52
management, FM-90
mounting, FM-91
DHCPv6 relay agent configuration, IPSER-182,
IPSER-185
repair, FM-91
IP addressing, IPSER-21
unmounting, FM-91
IP subnet-based VLAN configuration, LSW-140,
LSW-147
USB disk partition, FM-92
security portal authentication
configuration, SEC-149
storm
interface storm control (Layer 2 Ethernet),
LSW-10
cross-subnet
security portal authentication destination subnet,
SEC-128
interface storm suppression (Layer 2 Ethernet),
LSW-9
security
portal
authentication
cross-subnet, SEC-159
STP
extended
security portal authentication source subnet,
SEC-127
algorithm calculation, LSW-70
basic concepts, LSW-69
subordinate
BPDU forwarding, LSW-75
NMM
PTP
master-member/subordinate
relationship, NM-52
configuration, LSW-83
subscribing
designated bridge, LSW-69
261
QinQ basic configuration, LSW-209
NMM NETCONF event notification subscription,
NM-241, NM-242
QinQ configuration, LSW-203, LSW-209
sub-VLAN-based IPv6 multicast VLAN
QinQ SVLAN tag 802.1p priority, LSW-207
configuration, MCAST-95, MCAST-98
QinQ
VLAN
transparent
configuration, LSW-211
implementation, MCAST-93
VLAN mapping
LSW-219, LSW-227
sub-VLAN-based multicast VLAN
configuration, MCAST-50, MCAST-53
transmission
configuration,
LSW-214,
VLAN mapping implementation, LSW-216
implementation, MCAST-48
switch
suffix
ACL applications, QACL-1
DHCP client domain name suffix, IPSER-39
allowed domain ID list, FCoE-37
DNS client, IPSER-84
eIRF device configuration as independent switch,
IRF-50
DNS trusted interface, IPSER-91
summarizing
eIRF device operating mode, IRF-49
RIPng route summarization, IPR-37
fabric switch domain ID, FCoE-38
RIPv2 automatic route summarization enable,
IPR-16
FC zone distribution (basic zoning), FCoE-73
FC zone
FCoE-75
RIPv2 route summarization configuration, IPR-16
RIPv2 summary route advertisement, IPR-16
distribution
(enhanced
zoning),
module debug, NM-6
super password control parameters, SEC-201
OpenFlow connection interruption mode, OF-13
support capabilities
OpenFlow
controller+main
configuration, OF-13
MAC-IP flow table, OF-22
suppressing
connection
OpenFlow dynamic MAC address support,
OF-14
ARP attack protection source suppression
(unresolvable IP attack), SEC-358
OpenFlow instance configuration, OF-8
IGMP snooping report suppression, MCAST-29
OpenFlow
OF-13
information center duplicate log suppression,
NM-83
switch
controller
configuration,
OpenFlow timer setting, OF-14
interface physical state change suppression
(Ethernet), LSW-4
OpenFlow-hybrid type, OF-1
OpenFlow-only type, OF-1
interface storm control configuration (Layer 2
Ethernet), LSW-10
screen output, NM-6
switching
interface storm suppression (Layer 2 Ethernet),
LSW-9
fabric building, FCoE-32, FCoE-34
fabric building
FCoE-47
MLD snooping report suppression, MCAST-75
RIP suppress timer, IPR-19
configuration
(dynamic),
fabric building configuration (static), FCoE-44
suspending
fabric configuration, FCoE-44
NMM EAA monitor policy, NM-210
fabric principal switch selection, FCoE-32
SVLAN
262
NPV downlink-uplink
FCoE-94, FCoE-96
fabric switch priority, FCoE-36
FC configuration, FCoE-13, FCoE-129
NPV uplink interface, FCoE-94, FCoE-95
FC ping configuration, FCoE-118
null interface configuration, LSW-15, LSW-16
FC SAN, FCoE-1
OpenFlow configuration, OF-1, OF-8, OF-16
FC tracert configuration, FCoE-122, FCoE-123
port-based IPv6 multicast VLAN configuration,
MCAST-101
FC zone alias, FCoE-81
FC zone configuration, FCoE-70, FCoE-79,
FCoE-88
FCoE-13,
mapping,
NPV uplink, FCoE-94
FC overview, FCoE-1
FCoE
configuration,
FCoE-129
interface
QoS congestion management configuration,
QACL-46
FCoE-21,
spanning tree switched network diameter,
LSW-90
FCoE configuration (VFC interface)(IRF mode),
FCoE-141
sub-VLAN-based
IPv6
configuration, MCAST-98
FCoE configuration (VFC interface)(standalone
mode), FCoE-129
multicast
VLAN
VFC interface configuration, FCoE-15
VSAN configuration, FCoE-26, FCoE-28
FCoE fabric address assignment, FCoE-159
switchover
FCoE overview, FCoE-1
Monitor Link downlink interface switchover
delay, HA-122
FCoE VSAN, FCoE-4
FCoE well-known fabric addresses, FCoE-159
symmetric
FCS configuration, FCoE-109, FCoE-112
NMM IPv6 NTP symmetric active/passive
association mode, NM-32
FDMI configuration, FCoE-116
inloopback interface configuration, LSW-15,
LSW-16
NMM
NTP
symmetric
active/passive
association mode, NM-10, NM-15, NM-19,
NM-31
interface configuration (Ethernet), LSW-1
NMM NTP symmetric active/passive mode max
number dynamic associations, NM-27
IP multicast overview, MCAST-1
IP multicast transmission techniques, MCAST-1
OpenFlow message (symmetric), OF-7
IP multicast VPN application, MCAST-12
SYN
IP multicast VPN instance, MCAST-12
IPPO TCP SYN cookie enable, IPSER-127
IP multicast VPN support, MCAST-12
IPPO wait timer, IPSER-128
loopback interface configuration, LSW-15
Sync message, NM-61
MAC address table configuration, LSW-20,
LSW-21, LSW-34
synchronizing
information center synchronous log output,
NM-82
NPV configuration, FCoE-93, FCoE-94, FCoE-97
NPV disruptive load balancing, FCoE-94,
FCoE-96
IRF
software
auto-update
synchronization, IRF-22
NPV downlink, FCoE-93
for
IRF synchronization configuration, IRF-6
NPV downlink interface, FCoE-93, FCoE-95
MAC addresses, LSW-29
263
image
information center log destinations, NM-72
NMM NTP configuration, NM-8, NM-14,
NM-51
information center log levels, NM-71
NMM NTP synchronization ACL, NM-12
NMM PTP configuration, NM-51
information center log output (console), NM-77,
NM-84
NMM PTP configuration (IEEE 1588 v2),
NM-65
information center log output (Linux log host),
NM-86
NMM PTP configuration (IEEE 802.1AS),
NM-68
information center log output (log buffer),
NM-78
NMM PTP domain, NM-51
information center log output (log host), NM-78
NMM PTP frequency synchronization, NM-51
information center log output (monitor terminal),
NM-77
NMM PTP mechanism, NM-53
information center log output (UNIX log host),
NM-85
NMM PTP phase synchronization, NM-51
NMM SNTP configuration, NM-47, NM-49
information center log save (log file), NM-79
security
portal
authentication
server
detection+user synchronization, SEC-162
security
portal
authentication
synchronization, SEC-133
information center log types, NM-71
information center security log file management,
NM-81
user
information center security log management,
NM-80
Syslog
NMM NETCONF configuration data retrieval
(Syslog module), NM-250
information center security log save (log file),
NM-80
system
diagnostic log default output rules, NM-72
information center synchronous log output,
NM-82
eIRF basic concepts, IRF-46
information log formats, NM-73
eIRF configuration management, IRF-48
interface bulk configuration, LSW-18
eIRF data forwarding, IRF-48
log default output rules, NM-72
eIRF device operating mode, IRF-49
NMM PTP system time source, NM-64
eIRF membership establishment, IRF-47
security log default output rules, NM-73
eIRF operation, IRF-47
software upgrade Comware feature image,
FM-106
eIRF PEX physical interface, IRF-46
software upgrade Comware image loading,
FM-107
eIRF PEX port, IRF-46
eIRF PEX virtual slot number, IRF-47
software upgrade Comware image redundancy,
FM-107
eIRF roles, IRF-46
eIRF system setup, IRF-44
hidden log default output rules, NM-73
software upgrade Comware patch image,
FM-106
information center duplicate log suppression,
NM-83
software upgrade Comware system image type,
FM-106
information center interface link up/link down
log generation, NM-83
software upgrade startup process, FM-107
trace log default output rules, NM-73
264
TRILL RB nickname, TRILL-9
CLI online help access, FM-2
TRILL RB system ID, TRILL-9
CLI output control, FM-8, FM-9
CLI running configuration save, FM-13
system administration
attack D&P configuration, SEC-401
CLI string/text type argument value, FM-4
automatic configuration, FM-173
CLI undo command form, FM-3
automatic configuration (DHCP server), FM-175
CLI use, FM-1
automatic configuration (DNS server), FM-176
CLI view hierarchy, FM-1
automatic configuration (HTTP server+Python
script), FM-183
configuration archive parameters, FM-100
configuration archiving (automatic), FM-100
automatic configuration (HTTP server+Tcl script),
FM-182
configuration file encryption, FM-97
configuration file formats, FM-96
automatic configuration (IRF setup), FM-184
configuration file main next-startup file backup,
FM-103
automatic configuration (server-based), FM-177
automatic configuration (TFTP server), FM-177
automatic
FM-174
configuration
file
configuration file main next-startup file restore,
FM-103
preparation,
configuration file management, FM-94
automatic configuration gateway, FM-177
configuration file next-startup file delete, FM-104
automatic configuration interface selection,
FM-177
configuration rollback, FM-99, FM-101
debugging, NM-1
automatic configuration start, FM-177
device airflow direction configuration, FM-157
CLI command abbreviation, FM-4
device banner configuration, FM-147, FM-148
CLI command entry, FM-3
device banner input modes, FM-147
CLI command history function use, FM-7
device banner types, FM-147
CLI command hotkey configuration, FM-5
CLI command hotkey use, FM-5
device configuration startup file selection,
FM-96
CLI command keyword alias configuration,
FM-5
device copyright statement display, FM-147
device CPU usage monitoring, FM-157
CLI command keyword alias use, FM-5
device factory-default settings and states,
FM-161
CLI command line editing, FM-4
CLI command redisplay, FM-6
device management, FM-145
CLI command-line error message, FM-7
device management task scheduling, FM-151,
FM-153
CLI display command output filtering, FM-9
device memory usage threshold, FM-158
CLI display command output line numbering,
FM-9
device name configuration, FM-145
CLI display command output management,
FM-13
device password recovery capability disable,
FM-156
CLI display command output save to file, FM-12
device port status detection timer, FM-157
CLI display command output viewing, FM-13
265
device reboot, FM-150
FIPS mode system changes, SEC-386
device reboot (immediate), FM-150
FTP configuration, FM-73
device reboot (scheduled), FM-150
IPsec authentication, SEC-253
device system operating mode, FM-149
IPsec configuration, SEC-250
device system time set, FM-146
IPsec encryption, SEC-253
device system time source set, FM-146
IPsec IKE configuration, SEC-281, SEC-283,
SEC-292
device temperature alarm threshold, FM-159
IPsec IKE global identity information, SEC-288
device transceiver module diagnosis, FM-161
IPsec IKE invalid SPI recovery, SEC-291
device transceiver module verification, FM-161
IPsec IKE keychain, SEC-287
device USB interface disable, FM-160
IPsec IKE proposal, SEC-286
emergency shell file system management,
FM-138
IPsec IKE SA max number set, SEC-291
IPsec IKE SNMP notification, SEC-291
emergency shell server connectivity check,
FM-140
ISSU command series, FM-116
emergency shell system software image retrieval,
FM-139
ISSU feature (install series commands), FM-123
ISSU for multichassis IRF fabric, FM-118
emergency shell use, FM-138, FM-142
ISSU for single-chassis IRF fabric, FM-120
enter system view from user view, FM-2
ISSU HTTP feature compatible upgrade (issu
series commands), FM-126
executing Comware commands, FM-165
extended Python API, FM-168
ISSU HTTP feature incompatible upgrade (issu
series commands), FM-128
extended Python API functions, FM-168
ISSU HTTP feature rollback (install series
commands), FM-135
extended Python API import, FM-168
extended Python API use, FM-168
ISSU HTTP feature
commands), FM-130
feature module debug, NM-6
file system directory management, FM-89
rollback
(issu
series
ISSU HTTP feature upgrade (install series
commands), FM-132, FM-136
file system file management, FM-86
file system file name formats, FM-85
file system management, FM-85
ISSU inactive software image removal (install
series commands), FM-124
file system storage media management, FM-90
ISSU install series commands, FM-132
file system storage media naming rules, FM-85
ISSU issu series commands, FM-126
FIPS configuration, SEC-384, SEC-390
ISSU overview, FM-115
FIPS mode configuration, SEC-385
ISSU patch image (install series commands),
FM-123
FIPS mode entry (automatic reboot), SEC-390
ISSU performance by issu series commands,
FM-118
FIPS mode entry (manual reboot), SEC-391
FIPS mode exit (automatic reboot), SEC-392
ISSU software activate/deactivate (install series
commands), FM-124
FIPS mode exit (manual reboot), SEC-393
266
ISSU software changes commit (install series
commands), FM-124
login management
configuration, FM-24
ISSU software configuration rollback (install
series commands), FM-123
login management Telnet login max number
concurrent users, FM-27
ISSU software image verification (install series
commands), FM-124
login management
authentication, FM-24
login management CLI console/AUX common
user line settings, FM-21
login management Telnet login password
authentication, FM-25
login management CLI console/AUX none
authentication, FM-19
login management Telnet
authentication, FM-26
login management CLI console/AUX password
authentication, FM-20
login management Telnet packet DSCP value,
FM-27
login management CLI console/AUX scheme
authentication, FM-21
login management Telnet server login, FM-29
scheme
ping address reachability, NM-1
login management CLI user roles, FM-18
ping command, NM-1
accounting,
ping connectivity test, NM-1
Python script execute, FM-166
login management command authorization,
FM-41, FM-42
port
login
none
ping, NM-1
login management CLI user lines, FM-17
console
login
next-startup configuration file specification,
FM-102
login management CLI login authentication
modes, FM-18
login management
procedure, FM-15
Telnet
device
login management VTY common line settings,
FM-27
login management CLI login, FM-17
command
login
login management user access control, FM-38
login management CLI local console/AUX port
login, FM-19
login management
FM-44, FM-45
Telnet
Python shell, FM-166
Python use, FM-166
login
return to upper-level view from any view, FM-2
login management modem login, FM-32
return to user view, FM-2
login management overview, FM-14
running
FM-101
login management SNMP access control,
FM-39, FM-40
configuration
archiving
(manual),
running configuration save, FM-98
login management SSH login, FM-30
software upgrade, FM-106
login management SSH login configuration on
device, FM-30
software upgrade completion, FM-110
software upgrade completion (in bulk), FM-110
login management SSH login control, FM-38
software upgrade completion (one by one),
FM-111
login management SSH server login, FM-32
login management Telnet login, FM-23
software upgrade completion with a warm
reboot, FM-112
login management Telnet login control, FM-38,
FM-39
SSH authentication methods, SEC-301
SSH configuration, SEC-300
267
SSH local key pair generation, SEC-303
OpenFlow max number flow entries, OF-10
system debugging, NM-6
OpenFlow meter table, OF-5
table capacity adjust, FM-163
OpenFlow table-miss flow entry, OF-4
tag
Tcl configuration view, FM-164
Tcl use, FM-164
QinQ CVLAN, LSW-203
Tcl user view, FM-164
QinQ CVLAN tag TPID value, LSW-207
TCP fragment attack prevention, SEC-401
QinQ SVLAN, LSW-203
TFTP configuration, FM-83
QinQ SVLAN tag 802.1p priority, LSW-207
tracert, NM-1, NM-3, NM-4
QinQ SVLAN tag TPID value, LSW-207
tracert node failure identification, NM-4
QinQ VLAN tag TPID value, LSW-206
VLAN mapping
LSW-219, LSW-227
system information
information center configuration, NM-6, NM-71,
NM-76, NM-84
configuration,
LSW-214,
VLAN mapping configuration (1:1), LSW-220,
LSW-227
T VLAN mapping configuration (1:2), LSW-225,
LSW-232
table
ARP multiport entry, IPSER-4
VLAN mapping configuration (2:2), LSW-226,
LSW-232
ARP static entry, IPSER-3
FC cost routing table entry, FCoE-52
VLAN mapping configuration (M:1), LSW-221,
LSW-227
FC destination FIB table entry, FCoE-53
VLAN mapping configuration (M:1) (dynamic IP
address assignment), LSW-221
FC destination routing table entry, FCoE-52
FC FIB table, FCoE-52
VLAN mapping configuration (M:1) (static IP
address assignment), LSW-223
FC FIB table contents, FCoE-53
FC interface FIB table entry, FCoE-53
TAI
FC interface routing table entry, FCoE-52
NMM PTP cumulative offset, NM-63
FC mask FIB table entry, FCoE-53
tail drop (QoS), QACL-58
FC mask routing table entry, FCoE-52
tangent rings (RRPP network), HA-53
FC preference routing table entry, FCoE-52
FC routing table, FCoE-52
task scheduling (device management), FM-151,
FM-153
IP forwarding FIB table entries, IPSER-113
TC Snooping (spanning tree), LSW-106
IP routing, IPR-1
TC-BPDU
spanning tree TC-BPDU guard, LSW-111
LAN switching LLDP priority mapping table,
LSW-254
spanning tree TC-BPDU transmission restriction,
LSW-110
MAC address, LSW-20, LSW-21, LSW-34
Tcl
MSTP VLAN-to-instance mapping table, LSW-79
automatic configuration (HTTP server+Tcl script),
FM-182
OpenFlow, OF-3
OpenFlow group table, OF-5
configuration view, FM-164
268
DDNS
configuration
IPSER-109
executing Comware commands, FM-165
NMM EAA configuration, NM-203, NM-211
(www.3322.org),
DNS configuration, IPSER-83, IPSER-86
NMM EAA monitor policy configuration,
NM-209, NM-213
IPv4 DNS configuration, IPSER-92
IPv6 DNS configuration, IPSER-97
restrictions, FM-164
Telnet
use, FM-164
ACL switch applications, QACL-1
user view, FM-164
DSCP value for outgoing packet, FM-27
TCP
AAA HWTACACS implementation, SEC-7
login, FM-23
device as FTP client, FM-77
login control, FM-38, FM-39
device as FTP server, FM-73
login device configuration, FM-24
fragment
SEC-401
attack
prevention
login management overview, FM-14
configuration,
login max number concurrent users, FM-27
FTP client connection establishment, FM-77
login none authentication, FM-24
FTP configuration, FM-73
login password authentication, FM-25
IPPO buffer size, IPSER-128
IPPO interface
IPSER-126
TCP
MSS
login scheme authentication, FM-26
configuration,
server login, FM-29
SSH packet source IP address, SEC-310
IPPO TCP path MTU discovery, IPSER-126
SSH Secure Telnet client device, SEC-310
IPPO TCP SYN cookie, IPSER-127
SSH
Secure
Telnet
authentication, SEC-325
client
password
client
publickey
IPv6 TFTP client configuration, FM-84
SSH
Secure
Telnet
authentication, SEC-329
NQA, NM-117
SSH Secure Telnet configuration, SEC-317
NQA client TCP operation, NM-127
SSH Secure Telnet
establishment, SEC-310
IPPO TCP timer configuration, IPSER-128
IPv4 TFTP client configuration, FM-83
NQA client template (TCP), NM-140
server
connection
SSH
Secure
Telnet
configuration, SEC-317
server
password
QoS congestion avoidance RED, QACL-58
SSH
Secure
Telnet
authentication, SEC-320
server
publickey
QoS congestion avoidance tail drop, QACL-58
VTY common line settings, FM-27
NQA TCP operation configuration, NM-155
NQA template configuration (TCP), NM-167
SSL configuration, SEC-342, SEC-343
temperature
TFTP configuration, FM-83
device temperature alarm threshold, FM-159
TCP/IP
template
DDNS client configuration, IPSER-106
NQA client template, NM-138
DDNS configuration, IPSER-105, IPSER-109
NQA client template (DNS), NM-139
DDNS configuration
IPSER-111
NQA client template (FTP), NM-142
(PeanutHull
server),
269
NQA client template (HTTP), NM-141
emergency shell server access, FM-140
NQA client template (ICMP), NM-139
emergency shell system software image retrieval,
FM-139
NQA client template (TCP), NM-140
IPv4 client configuration, FM-83
NQA client template optional parameters,
NM-144
IPv6 client configuration, FM-84
NQA template configuration (DNS), NM-166
local host public key distribution, SEC-208
NQA template configuration (FTP), NM-169
main next-startup configuration file, FM-103
threshold
NQA template configuration (HTTP), NM-168
NQA template configuration (ICMP), NM-165
device memory usage, FM-158
NQA template configuration (TCP), NM-167
device temperature threshold alarm, FM-159
NQA client threshold monitoring, NM-118,
NM-134
temporary
DHCPv6 temporary
IPSER-173
address
assignment,
NQA operation reaction entry, NM-134
NQA operation support accumulate type,
NM-134
DHCPv6 temporary IPv6 address, IPSER-168
terminal
NQA operation support average type, NM-134
AAA RADIUS Login-Service attribute check
method, SEC-31
NQA operation support consecutive type,
NM-134
terminating
NQA operation triggered action none, NM-134
FTP connection, FM-80
NQA operation triggered action trap-only,
NM-134
NMM NETCONF session, NM-264
SSH SFTP server connection, SEC-315
NQA operation triggered action trigger-only,
NM-134
testing
FIPS conditional self-test, SEC-388
time
FIPS power-up self-test, SEC-388
device system time set, FM-146
FIPS triggered self-test, SEC-388
device system time source set, FM-146
interface cable connection (Layer 2 Ethernet),
LSW-13
Ethernet link aggregation LACP timeout interval,
LSW-43
ping network connectivity test, NM-1
IP services ICMPv6 time exceeded message,
IPSER-156
text file content display, FM-87
IPsec IKE negotiation (time-based lifetime),
SEC-252
text type argument value, FM-4
TFTP. See also FTP
NMM NTP configuration, NM-8, NM-14,
NM-51
automatic configuration, FM-173
automatic configuration (file server), FM-174
automatic configuration (server-based), FM-177
NMM NTP local clock as reference source,
NM-27
automatic configuration (TFTP server), FM-177
NMM PTP BITS clock parameter, NM-64
automatic configuration start, FM-177
NMM PTP clock priority, NM-64
configuration, FM-83
NMM PTP configuration, NM-51
270
high availability DLDP advertisement, HA-33
NMM PTP configuration (IEEE 1588 v2),
NM-65
high availability DLDP DelayDown, HA-33,
HA-37
NMM PTP configuration (IEEE 802.1AS),
NM-68
high availability DLDP echo, HA-33
NMM PTP cumulative offset, NM-63
high availability DLDP enhanced, HA-33
NMM PTP system time source, NM-64
high availability DLDP entry, HA-33
NMM PTP UTC correction date, NM-63
high availability DLDP probe, HA-33
NMM SNTP configuration, NM-47, NM-49
high availability DLDP recoverprobe, HA-33
time range configuration, QACL-89
IGMP snooping dynamic port aging, MCAST-15
time range
configuration, QACL-89
IGMP snooping dynamic port aging timer,
MCAST-20
display, QACL-89
IPPO TCP FIN wait timer, IPSER-128
IPPO TCP SYN wait timer, IPSER-128
timeout
MAC authentication server timeout, SEC-107
IPv6 dynamic path MTU aging timer, IPSER-155
RIP timeout timer, IPR-19
IPv6 ND stale state entry aging timer, IPSER-149
spanning tree timeout factor, LSW-92
LAN switching LLDP reinitialization delay,
LSW-244
timer
MAC address table dynamic aging timer,
LSW-26
802.1X authentication timeout timers, SEC-82
802.1X quiet, SEC-85
AAA HWTACACS
SEC-36
real-time
MAC authentication offline detect, SEC-107
accounting,
MAC authentication quiet, SEC-107
MAC authentication server timeout, SEC-107
AAA HWTACACS server quiet, SEC-36
MLD snooping dynamic port aging timer,
MCAST-61
AAA HWTACACS server response timeout,
SEC-36
MLD snooping dynamic port aging timers,
MCAST-66
AAA RADIUS real-time accounting, SEC-29
AAA RADIUS server quiet, SEC-29
MRP Join, LSW-187
AAA RADIUS server response timeout, SEC-29
MRP Leave, LSW-187
ARP dynamic entry aging timer, IPSER-6
MRP LeaveAll, LSW-187
configuring RRPP fail, HA-61
MRP Periodic, LSW-187
configuring RRPP fast detection timer, HA-62
MVRP configuration, LSW-190
configuring RRPP hello, HA-61
OpenFlow connection detection interval, OF-14
CWMP ACS close-wait timer, NM-224
OpenFlow reconnection interval, OF-14
device port status detection, FM-157
RIP garbage-collect timer, IPR-19
Ethernet OAM connection detection, HA-4
RIP suppress timer, IPR-19
FC fabric distributed service timeout, FCoE-39
RIP timeout timer, IPR-19
FC fabric error detection timeout, FCoE-39
RIP update timer, IPR-19
FC fabric resource allocation timeout, FCoE-39
271
RIPng timer configuration, IPR-39
QoS traffic evaluation, QACL-36
RRPP fail, HA-50
QoS traffic forwarding, QACL-36
RRPP fast-fail, HA-50
tool command language. Use Tcl
RRPP fast-hello, HA-50
topology
RRPP hello, HA-50
configuring RRPP port, HA-59
spanning tree forward delay, LSW-91
configuring RRPP ring, HA-59
spanning tree hello, LSW-91
eIRF system setup, IRF-44
spanning tree max age, LSW-91
FCS configuration, FCoE-109, FCoE-112
STP forward delay, LSW-76
FCS topology discovery, FCoE-111, FCoE-112
STP hello, LSW-76
FDMI configuration, FCoE-116
STP max age, LSW-76
IPv6 default route configuration, IPR-34
TRILL AVF inhibition time, TRILL-12
IPv6 static route configuration, IPR-31
TRILL configuration, TRILL-12
IPv6 static routing basic configuration, IPR-32
TRILL CSNP interval, TRILL-12
IPv6 static routing configuration, IPR-31, IPR-32
TRILL hello interval, TRILL-12
IRF fabric ARP MAD configuration, IRF-34
TRILL hello multiplier, TRILL-12
IRF fabric configuration, IRF-14, IRF-29
IRF fabric LACP MAD configuration, IRF-29
TLV
EVB default VSI manager specification, EVB-4
IRF fabric ND MAD configuration, IRF-38
EVB LLDP configuration, EVB-4
IRF fabric setup, IRF-1
LAN switching LLDP
configuration, LSW-244
advertisable
IRF master election, IRF-6
TLV
IRF network topology, IRF-2
LAN switching LLDP management address
configuration, LSW-246
MFF manual-mode in ring network, SEC-380
MFF manual-mode in tree network, SEC-379
LAN switching LLDP management address
encoding format, LSW-246
RRPP configuration, HA-47, HA-56, HA-64
LAN switching LLDP parameters, LSW-247
RRPP domain, HA-47
LAN switching LLDP+DCBX TLV advertisement,
LSW-251
RRPP dual-homed rings configuration, HA-73
LAN switching LLDPDU basic management
types, LSW-237
RRPP intersecting rings, HA-54
LAN switching
LSW-237
LLDPDU
LLDP-MED
RRPP fast detection configuration, HA-93
RRPP intersecting rings configuration, HA-67
types,
RRPP
load-balanced
configuration, HA-83
LAN switching LLDPDU management address
TLV, LSW-240
intersecting
RRPP networking, HA-53
RRPP ring group, HA-52
LAN switching LLDPDU organization-specific
types, LSW-237
RRPP single ring, HA-53
token bucket
RRPP single ring configuration, HA-64
QoS complicated traffic evaluation, QACL-36
RRPP tangent rings, HA-53
272
rings
Smart
Link+Track+CFD
configuration, HA-137
Smart Link change, HA-100
Smart Link configuration, HA-98, HA-101,
HA-105
collaboration
static routing association, HA-131
static routing configuration, IPR-6
Smart Link group configuration (multiple group
load sharing), HA-110
static
routing+Track+NQA
configuration, HA-132
Smart Link group configuration (single group),
HA-105
collaboration
TRILL VR-Track entry association, TRILL-20
Smart Link+Track collaboration, HA-114
traffic
STP TCN BPDU protocol packets, LSW-68
AAA HWTACACS traffic statistics units, SEC-35
traceroute. See tracert
AAA RADIUS traffic statistics units, SEC-25
tracert
ACL configuration, QACL-1, QACL-4, QACL-12
FC tracert configuration, FCoE-122, FCoE-123
ACL configuration (advanced), QACL-5
IP address retrieval, NM-3
node failure detection, NM-3, NM-4
ACL configuration (Ethernet frame header),
QACL-8
node failure identification, NM-4
ACL configuration (user-defined), QACL-9
system maintenance, NM-1
ACL switch applications, QACL-1
Ethernet link aggregation traffic redirection,
LSW-56
tracing
information center trace log file max size,
NM-82
IPsec configuration, SEC-250, SEC-272
IPsec IKE negotiation (traffic-based lifetime),
SEC-252
Track
application module association, HA-131
IPsec RIPng configuration, SEC-277
application module collaboration, HA-128
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
CFD association, HA-129
configuration, HA-127, HA-128, HA-132
IPsec tunnel for IPv4 packets (manual), SEC-272
detection module association, HA-129
detection module collaboration, HA-127
local precedence
QACL-66
entry display, HA-132
local QoS ID marking, QACL-68
interface management association, HA-130
QoS aggregate CAR configuration, QACL-79
NQA association, HA-129
QoS class-based accounting configuration,
QACL-82, QACL-83
NQA client
NM-133
Track
collaboration
function,
QoS congestion
QACL-58
NQA collaboration, NM-118
routing
avoidance
configuration,
configuration,
QoS
congestion
avoidance
queue-based table, QACL-59
NQA collaboration configuration, NM-163
NQA+Track+static
HA-128
marking
collaboration,
WRED
QoS congestion avoidance+ECN, QACL-59
QoS congestion management.
congestion management
Smart Link association, HA-132
Smart Link collaboration, HA-101, HA-104,
HA-114
273
See
also
QoS priority mapping process, QACL-28
QoS congestion management configuration,
QACL-50
QoS
congestion
scheduling profile,
QACL-88
QoS congestion
QACL-50
QoS priority mapping table+priority marking,
QACL-32
management
queue
QACL-55, QACL-57,
management
QoS priority mapping trusted port packet
priority, QACL-30
queuing,
QoS priority marking configuration, QACL-64,
QACL-66
QoS congestion management SP queuing,
QACL-50
QoS congestion management
queuing configuration, QACL-53
SP+WFQ
QoS congestion management
queuing configuration, QACL-52
SP+WRR
QoS priority trust mode, QACL-27
QoS rate limit, QACL-39, QACL-42
QoS rate limit configuration, QACL-36
QoS token bucket, QACL-36
QoS traffic behavior definition, QACL-20
QoS congestion management WFQ queuing,
QACL-51
QoS traffic class definition, QACL-19
QoS traffic evaluation, QACL-36
QoS congestion management WRR queuing,
QACL-50
QoS traffic filtering configuration, QACL-62,
QACL-63
QoS global CAR configuration, QACL-79
QoS GTS, QACL-38, QACL-41
QoS traffic policing, QACL-37, QACL-40,
QACL-42
QoS GTS configuration, QACL-36
QoS traffic policing configuration, QACL-36
QoS MQC, QACL-18
QoS nesting configuration, QACL-72, QACL-73
QoS traffic redirection configuration, QACL-75,
QACL-76
QoS non-MQC, QACL-18
RMON configuration, NM-107, NM-112
QoS overview, QACL-15
RRPP load balancing, HA-51
QoS policy application, QACL-21
sFlow agent configuration, NM-194
QoS policy
QACL-23
application
(control
sFlow collector
NM-194
plane),
information
configuration,
QoS policy application (global), QACL-23
sFlow configuration, NM-193, NM-196
QoS policy application (user profile), QACL-24
sFlow counter sampling configuration, NM-195
QoS policy application (VLAN), QACL-22
sFlow flow sampling configuration, NM-194
QoS policy configuration, QACL-18
Smart Link load sharing, HA-100
QoS policy definition, QACL-21
voice VLAN QoS priority setting configuration,
LSW-175
QoS policy interface application, QACL-22
traffic behavior
QoS priority map, QACL-26
priority marking configuration, QACL-65
QoS priority mapping interface port priority,
QACL-31
traffic management
QoS priority mapping map, QACL-30
EVB VSI aggregate filter, EVB-10
QoS priority mapping priority trust mode,
QACL-31
EVB VSI filter, EVB-9, EVB-10
274
Track+application
HA-128
module
QinQ VLAN transparent transmission, LSW-205,
LSW-211
collaboration,
Smart Link transmit control VLAN, HA-99
traffic monitoring
MFF
configuration,
SEC-379
SEC-375,
spanning tree TC-BPDU transmission restriction,
LSW-110
SEC-377,
transparency
MFF manual-mode in ring network, SEC-380
NMM PTP clock node (TC), NM-51
MFF manual-mode in tree network, SEC-379
TRansparent Interconnection of Lots of Links. Use TRILL
traffic policing
transparent transmission (QinQ for VLAN), LSW-205,
LSW-211
drop precedence, QACL-64
drop precedence mapping, QACL-64
transporting
priority marking configuration, QACL-65
IPsec encapsulation transport mode, SEC-251
QoS display, QACL-42
trapping
transceiver
LAN switching LLDP configuration, LSW-256
device module diagnosis, FM-161
LAN switching
LSW-256
device module verification, FM-161
transform set (IPsec), SEC-257
LLDP-MED
configuration,
transit mode (FCoE), FCoE-9, FCoE-11, FCoE-13
MAC Information
LSW-37
transit node
MAC Information mode setting, LSW-36
RRPP type, HA-48
configuration,
LSW-36,
NMM SNMP notification, NM-98
specifying RRPP, HA-60
triggered RIP
transition technologies, IPSER-142
protocols and standards, IPR-12
Transmission Control Protocol. Use TCP
triggering
transmit control VLAN
802.1X authentication trigger, SEC-83
Smart Link, HA-99
FC zone set distribution, FCoE-86
transmitting
FIPS self-test, SEC-389
FC frames over Ethernet, FCoE-7
NQA operation threshold triggered action none,
NM-134
IP multicast, MCAST-2
NQA operation threshold triggered action
trap-only, NM-134
IP multicast broadcast, MCAST-2
IP multicast overview, MCAST-1
NQA operation threshold triggered action
trigger-only, NM-134
IP multicast transmission techniques, MCAST-1
IP multicast unicast, MCAST-1
TRILL
IP multicast VPN application, MCAST-12
basic concepts, TRILL-1
IP multicast VPN instance, MCAST-12
basic distribution tree configuration, TRILL-16
IP multicast VPN support, MCAST-12
configuration, TRILL-1, TRILL-7, TRILL-25
LAN switching LLDP frames, LSW-241
configuration restrictions, TRILL-7
displaying, TRILL-24
275
distribution tree configuration, TRILL-16
VR configuration, TRILL-19
distribution tree multithread calculation, TRILL-17
VR creation, TRILL-19
ECMP route configuration, TRILL-18
VR creation restrictions, TRILL-19
enable, TRILL-8
VR-Track entry association, TRILL-20
EVB S-channel traffic forwarding, TRILL-22
Trivial File Transfer Protocol. Use TFTP
forwarding mechanisms, TRILL-3
troubleshooting
802.1X EAD assistant Web browser users,
SEC-100
frame formats, TRILL-1
GR configuration, TRILL-23
AAA HWTACACS, SEC-60
how it works, TRILL-3
AAA LDAP user authentication fails, SEC-60
incremental flush for TRILL multicast routing
entries, TRILL-19
AAA RADIUS, SEC-59
Layer 2 forwarding mechanisms, TRILL-3
AAA RADIUS accounting error, SEC-60
Layer 3 forwarding mechanisms, TRILL-5
AAA RADIUS authentication failure, SEC-59
load balancing over TRILL distribution trees,
TRILL-17
AAA RADIUS packet delivery failure, SEC-59
DHCP relay agent configuration, IPSER-63
LSP fast advertisement, TRILL-15
DHCP server configuration, IPSER-54
LSP parameter, TRILL-13
FTP connection, FM-80
LSP parameter and feature, TRILL-13
IGMP snooping, MCAST-39
MAC address retaining on TRILL port, TRILL-21
IGMP snooping Layer 2 multicast forwarding,
MCAST-39
maintaining, TRILL-24
IGMP snooping
MCAST-39
neighbor change logging, TRILL-21
port DRB priority configuration, TRILL-11
multicast
group
policy,
IPsec IKE, SEC-295
port link cost configuration, TRILL-11
IPsec IKE negotiation failure (no proposal
match), SEC-295
port link type configuration, TRILL-10
port link type configuration restrictions, TRILL-10
IPsec IKE negotiation failure (no proposal or
keychain referenced correctly), SEC-296
protocols and standards, TRILL-6
pseudonode bypass, TRILL-16
IPsec SA negotiation failure (invalid identity
info), SEC-297
RB nickname configuration, TRILL-9
IPsec SA negotiation failure (no transform set
match), SEC-296
RB system ID configuration, TRILL-9
SNMP configuration, TRILL-22
IPv4 DNS configuration, IPSER-103
SPF algorithm parameter, TRILL-16
IPv4 DNS incorrect IP address, IPSER-103
timer configuration, TRILL-12
IPv6 address cannot be pinged, IPSER-164
TRILL port+track entry association, TRILL-23
IPv6 basics configuration, IPSER-164
TRILL VR MAC address learning for non-TRILL
device, TRILL-20
IPv6 DNS configuration, IPSER-103
IPv6 DNS incorrect IP address, IPSER-103
VLAN configuration, TRILL-12
IPv6 PIM snooping, MCAST-92
276
sFlow, NM-197
IPv6 PIM snooping on Layer 2 device,
MCAST-92
sFlow remote collector cannot receive packets,
NM-197
ISSU, FM-125
trunk
ISSU failure to execute, FM-125
TRILL trunk port link, TRILL-10
MLD snooping, MCAST-85
trunk port
MLD snooping IPv6 multicast group policy,
MCAST-85
port-based VLAN assignment (trunk port),
LSW-133
MLD snooping Layer 2 forwarding, MCAST-85
trunk VSAN
PIM snooping, MCAST-47
PIM snooping does not work, MCAST-47
configuration, FCoE-27
PKI CA certificate import failure, SEC-248
FC network, FCoE-26
PKI CA certificate obtain failure, SEC-245
FCoE network, FCoE-26
trusted
PKI certificate export failure, SEC-249
PKI configuration, SEC-245
DHCP snooping trusted port, IPSER-70
PKI CRL obtain failure, SEC-247
DHCPv6 snooping trusted port, IPSER-195
PKI local certificate import failure, SEC-248
trusted port packet priority (QoS), QACL-30
PKI local certificate obtain failure, SEC-245
TST
PKI local certificate request failure, SEC-246
CFD function, HA-16
PKI storage path set failure, SEC-249
CFD functions, HA-17
port security, SEC-193
CFD TST configuration, HA-24
tuning
port security mode cannot be set, SEC-193
port security secure MAC addresses, SEC-193
RIP networks, IPR-19
RBAC, FM-71
RIPng network, IPR-39
tunneling
RBAC local user access permissions, FM-71
IPsec configuration, SEC-250, SEC-272
RBAC login attempts by RADIUS users fail,
FM-71
IPsec encapsulation tunnel mode, SEC-251
RRPP master node, HA-97
IPsec RIPng configuration, SEC-277
security portal authentication, SEC-170
IPsec tunnel establishment, SEC-254
security portal authentication cannot log out
users (access device), SEC-170
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
security portal authentication cannot log out
users (RADIUS server), SEC-171
IPsec tunnel for IPv4 packets (manual), SEC-272
IPv6 tunneling technology, IPSER-143
security portal authentication no page pushed
for users, SEC-170
U UDP
security portal authentication users cannot log
in (re-DHCP), SEC-172
AAA RADIUS implementation, SEC-2
security portal authentication users logged out
still exist on server, SEC-171
AAA RADIUS packet format, SEC-4
277
AAA RADIUS request transmission attempts
max, SEC-26
NQA UDP
NM-151
jitter
operation
configuration,
AAA RADIUS session-control, SEC-46
RIP configuration, IPR-11, IPR-13
IP routing RIP configuration, IPR-24
RIPng basic configuration, IPR-36, IPR-42
NMM IPv6 NTP client/server association mode,
NM-29
RIPng configuration, IPR-35, IPR-36, IPR-42
RIPng GR configuration, IPR-41
NMM IPv6 NTP multicast association mode,
NM-38
RIPng IPsec profile configuration, IPR-47
RIPng route redistribution, IPR-44
NMM IPv6 NTP symmetric active/passive
association mode, NM-32
sFlow configuration, NM-193, NM-196
UDP helper
NMM NTP association mode, NM-14
NMM NTP broadcast association mode,
NM-33
configuration, IPSER-132, IPSER-134
NMM NTP broadcast mode with authentication,
NM-43
conversion (broadcast to multicast), IPSER-133
NMM NTP client/server association mode,
NM-28
display, IPSER-134
NMM
NTP
client/server
authentication, NM-41
mode
configuration restrictions, IPSER-132
conversion (broadcast to unicast), IPSER-132
IPPO (IPPO), IPSER-124
with
maintain, IPSER-134
NMM NTP configuration, NM-8, NM-14,
NM-51
unconfirmed DLDP neighbor state, HA-33
uncontrolled port (802.1X), SEC-62
NMM NTP multicast association mode, NM-35
NMM
NTP
symmetric
association mode, NM-31
undo command form, FM-3
active/passive
unicast
NMM PTP clock mode, NM-55
802.1X unicast trigger mode, SEC-65, SEC-83
NMM PTP configuration, NM-51
IP multicast transmission technique, MCAST-1
NMM PTP configuration (IEEE 1588 v2),
NM-65
IP routing configuration, IPR-1
NMM PTP configuration (IEEE 802.1AS),
NM-68
IP routing route backup, IPR-2
NMM PTP message encapsulation protocol,
NM-62
IP routing route recursion, IPR-2
IP routing load sharing, IPR-2
IP routing route preference, IPR-2
NMM PTP UDP packet source IP address,
NM-62
IP routing route redistribution, IPR-3
NQA, NM-117
IPv6 address (link-local), IPSER-138
NQA client echo operation (UDP), NM-128
IPv6 address (loopback), IPSER-138
NQA client UDP jitter operation, NM-125
IPv6 address (unspecified), IPSER-138
NQA echo operation configuration (UDP),
NM-156
IPv6 address global unicast configuration,
IPSER-144
IPv6 address (global), IPSER-138
IPv6 address type, IPSER-138
278
MAC address table configuration, LSW-20,
LSW-21, LSW-34
ISSU HTTP feature compatible upgrade (issu
series commands), FM-126
MAC address table multiport unicast entry,
LSW-21
ISSU HTTP feature incompatible upgrade (issu
series commands), FM-128
UDP helper conversion (broadcast to unicast),
IPSER-132
ISSU HTTP feature upgrade (install series
commands), FM-132, FM-136
ISSU software images (install series commands),
FM-122
unidirectional
high availability DLDP automatic unidirectional
link shutdown, HA-39
software. See software upgrade
uplink
high availability DLDP manual unidirectional
link shutdown, HA-42
NPV downlink-uplink
FCoE-94, FCoE-96
high availability DLDP port state, HA-33
mapping,
NPV uplink interface configuration, FCoE-95
uninstalling
Smart Link uplink traffic triggered MAC address
learning, HA-100
ISSU feature (install series commands), FM-123
ISSU patch images (install series commands),
FM-123
USB
device USB interface disable, FM-160
UNIX
disk partitioning, FM-92
information center log host output, NM-85
user
unlocking
NMM NETCONF
NM-245
interface
configuration,
802.1X periodic online user reauthentication,
SEC-85
NM-243,
802.1X port users max number, SEC-81
unmounting
AAA concurrent login user max, SEC-47
file system storage media, FM-91
ARP user validity check, SEC-364
unsolicited discovery advertisement (FCoE FIP),
FCoE-8
ARP user+packet validity check, SEC-367
untrusted
interface. See also user line
DHCP snooping untrusted port, IPSER-70
interface login management VTY common line
settings, FM-27
untrusted port
PMM Linux user, NM-199
DHCPv6 snooping untrusted port, IPSER-195
QoS policy application (user profile), QACL-24
updating
IRF software auto-update, IRF-22
QoS priority mapping user priority, QACL-26
RIP source IP address check, IPR-21
security portal authentication logout, SEC-136
RIP update timer, IPR-19
security portal authentication max number users,
SEC-129
security passwords, SEC-195
security portal authentication roaming, SEC-136
Smart Link flush update, HA-100
security portal authentication user access,
SEC-126
Smart Link uplink traffic triggered MAC address
learning, HA-100
security portal authentication
detection, SEC-130
upgrading
279
user
online
security
portal
authentication
synchronization, SEC-133
RBAC user role authentication, FM-58
user
RBAC user role creation, FM-50
SSH user configuration, SEC-307
RBAC user role interface policy, FM-53
userLogin 802.1X authentication mode, SEC-175
RBAC user role local AAA authentication,
FM-55
userLoginSecure 802.1X authentication mode,
SEC-175
userLoginSecureExt
mode, SEC-175
802.1X
RBAC user role non-AAA authentication, FM-55
authentication
RBAC user role remote AAA authentication,
FM-54
userLoginWithOUI 802.1X authentication mode,
SEC-175
RBAC user role rule configuration, FM-51
RBAC user role rules, FM-47
user access
RBAC user role VLAN policy, FM-53
IP source guard (IPSG) configuration, SEC-346,
SEC-348, SEC-351
user access control
login control, FM-38
IPv4 source guard (IPv4SG) dynamic binding
configuration, SEC-352
login management
FM-44, FM-45
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
login management SNMP access control,
FM-39, FM-40
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
login management SSH login control, FM-38
login management Telnet login control, FM-38,
FM-39
IPv6 source guard (IPv6SG) static binding
configuration, SEC-354
user account
RBAC configuration, FM-47, FM-50, FM-59
MAC authentication user account format,
SEC-106
RBAC feature group configuration, FM-52
authentication
accounting,
login management command authorization,
FM-41, FM-42
IPv4 source guard (IPv4SG) static binding
configuration, SEC-351
RBAC local AAA
configuration, FM-59
command
user
MAC authentication user account policies,
SEC-101
RBAC permission assignment, FM-47
user authentication
RBAC predefined user roles, FM-48
security password control, SEC-197, SEC-202
RBAC RADIUS authentication user configuration,
FM-61
security
SEC-194
RBAC resource access policies, FM-53
security password control global parameters,
SEC-198
RBAC temporary user role authorization, FM-56,
FM-58
password
control
configuration,
security password control local user parameters,
SEC-200
RBAC temporary user role authorization
(HWTACACS authentication), FM-64
security password
parameters, SEC-199
RBAC temporary user role authorization
(RADIUS authentication), FM-68
control
user
group
security password event logging, SEC-197
RBAC user role assignment, FM-49, FM-54
security password expiration, SEC-195
280
security password expired login, SEC-195
command history function, FM-7
security password history, SEC-196
command hotkey, FM-5
security password max user account idle time,
SEC-197
command keyword alias, FM-5
device as FTP client, FM-77
security password not displayed, SEC-197
device as FTP server, FM-73
security password setting, SEC-194
Extended Python API, FM-168
security password updating, SEC-195
Python, FM-166
security password user first login, SEC-196
Tcl, FM-164
security password user login attempt limit,
SEC-196
undo command form, FM-3
UTC
security password user login control, SEC-196
NMM PTP correction date, NM-63
security super password control parameters,
SEC-201
NMM PTP cumulative offset, NM-63
User Datagram Protocol. Use UDP
V user management
validity check
AAA management by ISP domains, SEC-11
ARP packet, SEC-365
AAA management by user access types, SEC-11
ARP user, SEC-364
AAA user role authentication, SEC-12
ARP user+packet, SEC-367
value
user profile
802.1X user profile assignment, SEC-78
FIP snooping FC-MAP value, FCoE-105
configuration, SEC-395
NMM NETCONF parameter value change,
NM-253
configuration restrictions, SEC-395
NMM PTP delay correction value, NM-63
creating, SEC-395
variable
displaying, SEC-396
NMM EAA environment variable configuration
(user-defined), NM-206
MAC authentication user profile assignment,
SEC-104
NMM EAA event monitor policy environment
system-defined, NM-205
user profile parameters
configuring, SEC-396
NMM EAA event monitor policy environment
system-defined (event-specific), NM-205
user-defined ACL
NMM EAA event monitor policy environment
system-defined (public), NM-205
category, QACL-1
userLoginWithOUI, SEC-186
NMM EAA event monitor policy environment
user-defined, NM-206
username
AAA HWTACACS format, SEC-35
NMM EAA event monitor policy environment
variable, NM-205
AAA RADIUS format, SEC-25
using
VDP
automatic configuration, FM-173
EVB negotiation parameters, EVB-5
CLI, FM-1
vendor
281
IRF ARP MAD, IRF-9
DHCP Option 43 vendor-specific, IPSER-28
IRF ARP MAD configuration, IRF-24
verifying
device transceiver modules, FM-161
IRF basic concepts, IRF-2
ISSU software image (install series commands),
FM-124
IRF bridge MAC persistence, IRF-20
IRF configuration synchronization, IRF-6
PKI certificate, SEC-225
IRF device member ID assignment, IRF-15
PKI certificate verification (w/o CRL checking),
SEC-226
IRF device member priority, IRF-16
IRF fabric access CLI login, IRF-19
PKI certificate with CRL checking, SEC-226
IRF fabric ARP MAD configuration, IRF-34
version
IRF fabric configuration, IRF-29
AAA LDAP, SEC-39
IRF fabric display, IRF-29
IGMP snooping specification, MCAST-19
IRF fabric LACP MAD configuration, IRF-29
IGMPv1 snooping, MCAST-19
IRF fabric ND MAD configuration, IRF-38
IGMPv2 snooping, MCAST-19
IRF fabric recovery, IRF-27
IGMPv3 snooping, MCAST-19
IRF fabric setup, IRF-1, IRF-15
MLD snooping, MCAST-65
IRF hardware compatibility, IRF-11
VFC
IRF LACP MAD, IRF-8
FCF priority, FCoE-20
IRF LACP MAD configuration, IRF-24
FCoE interface, FCoE-6
IRF link down report delay, IRF-23
interface configuration, FCoE-15
IRF link load sharing mode, IRF-19
interface display, FCoE-16
IRF MAD configuration, IRF-23
interface FCF priority, FCoE-20
IRF MAD handling procedure, IRF-7
interface maintain, FCoE-16
IRF MAD mechanism, IRF-8
view-based MIB access control, NM-89, NM-91
IRF master election, IRF-6
viewing
IRF member device description, IRF-19
CLI display command output, FM-13
IRF naming conventions (file system), IRF-5
virtual
IRF naming conventions (interface), IRF-4
eIRF PEX virtual slot number, IRF-47
IRF ND MAD, IRF-10
EVB virtual station interface. See VSI
IRF ND MAD configuration, IRF-26
fibre channel. Use VFC
IRF network topology, IRF-2
node. Use VN
IRF physical interface connection, IRF-16
storage area network. See VSAN
IRF physical interface+port bind, IRF-17
Virtual Ethernet Bridge. Use VEB
IRF port shutdown exclusion, IRF-27
Virtual Local Area Network. Use VLAN
IRF software auto-update, IRF-22
virtual technologies
virtualizing
eIRF system setup, IRF-44
282
CFD configuration, HA-13, HA-18, HA-26
fabric building, FCoE-32, FCoE-34
fabric building
FCoE-47
configuration
CFD function configuration, HA-20
(dynamic),
CFD functions, HA-16
fabric building configuration (static), FCoE-44
CFD maintenance association, HA-13
fabric configuration, FCoE-44
CFD maintenance point, HA-14
FC configuration, FCoE-13, FCoE-129
CFD MIP auto-generation rule, HA-20
FC overview, FCoE-1
CFD service instance configuration, HA-19
FC ping configuration, FCoE-118
configuration, LSW-128, LSW-144
FC tracert configuration, FCoE-122, FCoE-123
configuring IGMP snooping drop unknown
multicast data, MCAST-28
FC zone configuration, FCoE-70, FCoE-79,
FCoE-88
FCoE
configuration,
FCoE-129
FCoE-13,
configuring RRPP control VLAN, HA-57
FCoE-21,
configuring RRPP port, HA-59
configuring RRPP protected VLAN, HA-57
FCoE configuration (VFC interface)(IRF mode),
FCoE-141
control (RRPP), HA-48
data (RRPP), HA-48
FCoE configuration (VFC interface)(standalone
mode), FCoE-129
FCoE fabric address assignment, FCoE-159
DHCP BOOTP client configuration, IPSER-81,
IPSER-82
FCoE overview, FCoE-1
DHCP client configuration, IPSER-65, IPSER-67
FCoE well-known fabric addresses, FCoE-159
DHCP relay agent, IPSER-62
FCS configuration, FCoE-109, FCoE-112
DHCP relay agent configuration, IPSER-55,
IPSER-56
FDMI configuration, FCoE-116
DHCP relay agent Option 82, IPSER-63
NPV configuration, FCoE-93, FCoE-94, FCoE-97
DHCP server configuration, IPSER-32, IPSER-34,
IPSER-47
VFC interface configuration, FCoE-15
VSAN configuration, FCoE-26, FCoE-28
DHCP server IP address dynamic assignment,
IPSER-49
VLAN
DHCP server IP address static assignment,
IPSER-47
802.1X Auth-Fail VLAN, SEC-74, SEC-87
802.1X authorization VLAN, SEC-71
802.1X
SEC-93
authorization
VLAN
DHCP server option customization, IPSER-53
assignment,
DHCP server user class, IPSER-50
802.1X critical VLAN, SEC-76, SEC-88
DHCP snooping basic configuration, IPSER-78
802.1X guest VLAN, SEC-73, SEC-86
DHCPv6 client
IPSER-190
802.1X guest VLAN assignment, SEC-93
802.1X VLAN manipulation, SEC-71
ACL packet filtering applicable scope (VLAN
interface), QACL-11
basic configuration, LSW-129
configuration,
IPSER-187,
DHCPv6 client IPv6 address
configuration, IPSER-190
acquisition
DHCPv6 client IPv6
configuration, IPSER-191
acquisition
prefix
DHCPv6 client stateless DHCPv6 configuration,
IPSER-193
CFD basic configuration, HA-19
283
IGMP snooping
MCAST-22
DHCPv6 relay agent configuration, IPSER-183
DHCPv6 snooping configuration, IPSER-195,
IPSER-197, IPSER-202
member
host,
IGMP snooping static port, MCAST-21
IGMP snooping static port configuration,
MCAST-33
display, LSW-143
FCoE enable, FCoE-17
IGMP
snooping
MCAST-19
FCoE for VLAN enable, FCoE-17
FCoE VLAN-VSAN mapping, FCoE-17
specification,
IP multicast MLD snooping querier enable,
MCAST-70
flow mirroring QoS policy application, NM-190
frame encapsulation, LSW-128
IP source guard (IPSG) configuration, SEC-346,
SEC-348, SEC-351
group configuration, LSW-143
IP subnet-based
LSW-147
IGMP snooping basic configuration, MCAST-18
IGMP snooping configuration,
MCAST-17, MCAST-31
MCAST-14,
LSW-140,
IPv4 source guard (IPv4SG) dynamic
binding+DHCP relay configuration, SEC-353
IGMP snooping dynamic port aging timer,
MCAST-20, MCAST-21
leave
configuration,
IPv4 source guard (IPv4SG) dynamic binding
configuration, SEC-352
IGMP snooping drop unknown multicast data,
MCAST-28
fast
version
interface basics configuration, LSW-130
flow mirroring configuration, NM-188, NM-191
IGMP snooping
MCAST-22
simulated
IPv4 source guard (IPv4SG) static binding
configuration, SEC-351
processing,
IPv6 multicast VLAN. See IPv6 multicast VLAN
IPv6 PIM snooping configuration, MCAST-88
IGMP snooping group policy+simulated joining
configuration, MCAST-31
IGMP snooping message 802.1p priority,
MCAST-26
IPv6 source guard (IPv6SG) dynamic
binding+DHCPv6 snooping configuration,
SEC-355
IGMP
snooping
MCAST-25
IPv6 source guard (IPv6SG) static binding
configuration, SEC-354
message
parameters,
IGMP snooping message source IP address,
MCAST-26
IRF ARP MAD configuration, IRF-24
IGMP snooping multicast group replacement,
MCAST-29
IRF port shutdown exclusion, IRF-27
IRF ND MAD configuration, IRF-26
LAN switching
LSW-248
IGMP snooping multicast groups on port max,
MCAST-29
LLDP
CDP
LAN
switching
LLDP
(CDP-compatible), LSW-262
IGMP snooping policy, MCAST-27
IGMP snooping port feature, MCAST-20
compatibility,
configuration
IGMP snooping querier, MCAST-23
Layer 2 Ethernet aggregate interface (ignored
VLAN), LSW-51
IGMP
snooping
MCAST-36
Layer 2 remote port mirroring configuration,
NM-177
querier
configuration,
IGMP snooping querier enable, MCAST-24
local port mirroring configuration, NM-173
IGMP snooping query/response parameters,
MCAST-24
local port mirroring group monitor port, NM-175
284
local port mirroring group source port, NM-174
MLD snooping policy, MCAST-73
loop detection configuration,
LSW-122, LSW-124
MLD snooping port feature configuration,
MCAST-66
MAC authentication
SEC-102
LSW-120,
authorization
MLD
snooping
MCAST-82
VLAN,
MAC authentication critical VLAN configuration,
SEC-109
MLD snooping query/response
configuration (VLAN), MCAST-71
MAC authentication guest VLAN, SEC-102,
SEC-109
VLAN
assignment,
MLD snooping static
MCAST-67, MCAST-79
MSTP VLAN-to-instance mapping table, LSW-79
MAC-based static assignment, LSW-139
multicast VLAN configuration,
MCAST-50, MCAST-53
MAC-based VLAN configuration, LSW-135
assignment,
MVRP configuration,
LSW-192
MAC-based VLAN server assignment, LSW-138
OpenFlow matching restrictions, OF-18
SEC-377,
PIM snooping configuration, MCAST-43
port isolation configuration, LSW-65
MFF manual-mode in ring network, SEC-380
port link type, LSW-131
MFF manual-mode in tree network, SEC-379
802.1p
message
LSW-188,
OpenFlow inband management VLAN, OF-10
mapping. See VLAN mapping
MLD snooping
MCAST-72
LSW-185,
OpenFlow associated VLAN, OF-2
maintain, LSW-143
SEC-375,
MCAST-48,
MVRP GVRP compatibility, LSW-191
MAC-based VLAN static assignment, LSW-136
MFF
configuration,
SEC-379
configuration,
MRP implementation, LSW-185
MAC-based server assignment, LSW-140
dynamic
port
MLD snooping version, MCAST-65
MAC-based dynamic assignment, LSW-139
VLAN
parameter
MLD snooping query/response parameters,
MCAST-70
MAC-based configuration, LSW-145
MAC-based
LSW-136
configuration,
MLD snooping query source IPv6 address,
MCAST-71
MAC authentication critical VLAN, SEC-103
MAC authentication
SEC-102
querier
port mirroring configuration, NM-171, NM-182
priority,
port mirroring remote probe VLAN, NM-172
port mirroring remote source group remote
probe VLAN, NM-182
MLD snooping basic configuration, MCAST-64
MLD snooping configuration, MCAST-77
port security secure MAC address, SEC-180
MLD snooping dynamic port aging timers,
MCAST-66
port-based configuration, LSW-131, LSW-144
MLD snooping dynamic port aging timers
setting, MCAST-67
port-based
MCAST-56
MLD snooping enable, MCAST-64
port-based VLAN assignment (access port),
LSW-132
MLD snooping fast-leave processing enable,
MCAST-68
multicast
VLAN
configuration,
port-based VLAN assignment (hybrid port),
LSW-134
MLD snooping message parameters, MCAST-71
285
Smart Link load sharing, HA-100
port-based VLAN assignment (trunk port),
LSW-133
Smart Link protected VLAN, HA-99
port-based VLAN frame handling, LSW-132
Smart Link receive control VLAN, HA-99
private VLAN configuration, LSW-153, LSW-154
protocol-based
LSW-149
configuration,
Smart Link transmit control VLAN, HA-99
LSW-141,
Smart Link+Track collaboration, HA-114
sub-VLAN-based multicast VLAN configuration,
MCAST-53
protocols and standards, LSW-129
PVID, LSW-131
TRILL announcing VLAN, TRILL-12
PVST, LSW-77
TRILL appointed VLAN-x forwarder, TRILL-1
QinQ basic configuration, LSW-209
TRILL appointed VLAN-x port, TRILL-1
QinQ configuration, LSW-203, LSW-209
TRILL designated VLAN, TRILL-12
QinQ CVLAN tag, LSW-203
TRILL VR-Track entry association, TRILL-20
QinQ CVLAN tag TPID value, LSW-207
UDP helper configuration, IPSER-132, IPSER-134
QinQ implementation, LSW-204
UDP helper conversion (broadcast to multicast),
IPSER-133
QinQ SVLAN tag, LSW-203
UDP helper conversion (broadcast to unicast),
IPSER-132
QinQ SVLAN tag 802.1p priority, LSW-207
QinQ SVLAN tag TPID value, LSW-207
voice VLAN assignment mode, LSW-173
QinQ transparent transmission, LSW-205
voice VLAN CDP advertisement configuration,
LSW-179
QinQ VLAN tag TPID value, LSW-206
QinQ
VLAN
transparent
configuration, LSW-211
transmission
voice VLAN configuration, LSW-170, LSW-180
voice VLAN host+IP phone connection (in
series), LSW-172
QoS nesting configuration, QACL-72, QACL-73
QoS policy application, QACL-21
voice VLAN IP phone access method, LSW-172
QoS policy application (VLAN), QACL-22
voice VLAN IP phone connection (device),
LSW-172
RBAC user role VLAN policy, FM-53
RBAC VLAN access policy, FM-48
RRPP domain, HA-47
voice VLAN LLDP advertisement configuration,
LSW-179
RRPP load balancing, HA-51
voice VLAN LLDP enable, LSW-178
security portal authentication portal-free rule,
SEC-126
voice VLAN LLDP enable restrictions, LSW-179
security portal authentication roaming, SEC-136
voice VLAN port operation configuration
(automatic assignment), LSW-176, LSW-180
voice VLAN port mode, LSW-174
Smart Link configuration, HA-98, HA-101,
HA-105
voice VLAN port operation configuration
(manual assignment), LSW-177, LSW-182
Smart Link group configuration (multiple group
load sharing), HA-110
voice VLAN port operation configuration
restrictions (automatic assignment), LSW-176
Smart Link group configuration (single group),
HA-105
voice VLAN port operation configuration
restrictions (manual assignment), LSW-177
Smart Link group protected VLAN, HA-102
286
NQA client voice operation, NM-129
voice VLAN QoS priority setting configuration,
LSW-175
NQA voice operation configuration, NM-158
VLAN mapping
voice traffic
1:1 application scenario, LSW-214
LAN switching
LSW-248
1:1 configuration, LSW-220, LSW-227
1:2 application scenario, LSW-216
configuration
assignment mode, LSW-173
1:2 implementation, LSW-216, LSW-218
assignment mode (automatic), LSW-173
2:2 application scenario, LSW-216
assignment mode (manual), LSW-173
2:2 configuration, LSW-226, LSW-232
assignment
LSW-173
2:2 implementation, LSW-216, LSW-218
ARP detection (M:1) (dynamic IP address
assignment), LSW-221
IP
compatibility,
voice VLAN
1:2 configuration, LSW-225, LSW-232
(static
CDP
LAN
switching
LLDP
(CDP-compatible), LSW-262
1:1 implementation, LSW-216, LSW-217
ARP snooping (M:1)
assignment), LSW-223
LLDP
mode+IP
phone
cooperation,
CDP advertisement configuration, LSW-179
configuration, LSW-170, LSW-180
address
display, LSW-180
configuration, LSW-214, LSW-219, LSW-227
host+IP phone connection (in series), LSW-172
DHCP snooping (M:1) (dynamic IP address
assignment), LSW-221
information advertisement to IP phone, LSW-171
IP phone access method, LSW-172
displaying, LSW-226
IP phone connection (device), LSW-172
M:1 application scenario, LSW-214
IP phone identification method, LSW-170
M:1 configuration, LSW-221, LSW-227
M:1 configuration (dynamic
assignment), LSW-221
IP
IP phone identification method (LLDP), LSW-171
address
IP phone identification method (OUI address),
LSW-170
M:1 configuration (static IP address assignment),
LSW-223
LLDP advertisement configuration, LSW-179
LLDP enable, LSW-178
M:1 customer-side port (dynamic IP address
assignment), LSW-222
LLDP enable restrictions, LSW-179
port mode, LSW-174
M:1 customer-side port (static IP address
assignment), LSW-224
M:1 implementation, LSW-216, LSW-217
port operation configuration
assignment), LSW-176, LSW-180
M:1 network-side port (dynamic IP address
assignment), LSW-222
port
operation
configuration
assignment), LSW-177, LSW-182
M:1 network-side port (static IP address
assignment), LSW-224
port operation configuration
(automatic assignment), LSW-176
restrictions
port operation configuration
(manual assignment), LSW-177
restrictions
VN
FCoE interface, FCoE-6
(automatic
(manual
QoS priority setting configuration, LSW-175
voice
VoIP
NQA, NM-117
287
voice VLAN configuration, LSW-170, LSW-180
fabric SNMP notifications, FCoE-41
voice VLAN information advertisement to IP
phones, LSW-171
FC configuration, FCoE-13, FCoE-129
FC default zone policy, FCoE-83
voice VLAN IP phone access method, LSW-172
FC forwarding configuration, FCoE-52
voice VLAN IP phone identification method
(LLDP), LSW-171
FC FSPF interface cost, FCoE-58
FC FSPF LSR arrival interval min, FCoE-57
voice VLAN IP phone identification method
(OUI address), LSW-170
FC FSPF LSR refresh interval min, FCoE-57
FC overview, FCoE-1
VPN
IP multicast application, MCAST-12
FC ping configuration, FCoE-118
IP multicast instance, MCAST-12
FC routing configuration, FCoE-52, FCoE-61
IP multicast support, MCAST-12
FC SAN, FCoE-1
IPsec configuration, SEC-250, SEC-272
FC static routing configuration (VFC interface),
FCoE-61
IPsec RIPng configuration, SEC-277
FC tracert configuration, FCoE-122, FCoE-123
IPsec tunnel for IPv4 packets (IKE-based),
SEC-274
FC zone, FCoE-5, FCoE-82
IPsec tunnel for IPv4 packets (manual), SEC-272
FC zone alias, FCoE-81
PKI application, SEC-218
FC zone configuration, FCoE-70, FCoE-79,
FCoE-88
QinQ basic configuration, LSW-209
FC zone database, FCoE-70
QinQ configuration, LSW-203, LSW-209
QinQ
VLAN
transparent
configuration, LSW-211
FC zone database active zone set, FCoE-71
transmission
FC zone database default zone, FCoE-72
FC zone database deletion, FCoE-87
RBAC VPN instance access policy, FM-48
FC zone distribution, FCoE-83
VRRP
Track+application
HA-128
module
FC zone distribution (basic zoning), FCoE-73
collaboration,
FC zone
FCoE-75
VSAN
distribution
(enhanced
allowed domain ID list, FCoE-37
FC zone distribution methods, FCoE-73
configuration, FCoE-26, FCoE-28
FC zone distribution process, FCoE-73
creation, FCoE-27
FC zone merge type, FCoE-83
display, FCoE-27
FC zone set, FCoE-82
fabric building, FCoE-32, FCoE-34
FC zone set activation, FCoE-85
fabric building
FCoE-47
configuration
zoning),
FC zone set distribution trigger, FCoE-86
(dynamic),
FC zone set fabric distribution, FCoE-85
fabric building configuration (static), FCoE-44
FC zone-related copy, FCoE-87
fabric configuration, FCoE-44
FC zone-related renaming, FCoE-86
fabric reconfiguration (auto), FCoE-40
FCFC zone merge (basic zoning), FCoE-76
fabric reconfiguration (manual), FCoE-40
288
FCFC zone merge (enhanced zoning), FCoE-78
configuration, EVB-8
FCFC zone merge process, FCoE-76
creation, EVB-8
FCFC zone merge rules, FCoE-78
VTY line settings, FM-27
FCoE, FCoE-4
W FCoE configuration, FCoE-13, FCoE-129
WAPI
PKI configuration, SEC-216, SEC-218, SEC-230
FCoE configuration (VFC interface)(IRF mode),
FCoE-141
Web
FCoE configuration (VFC interface)(standalone
mode), FCoE-129
ACL switch applications, QACL-1
PKI, SEC-218
FCoE enable, FCoE-17
security portal authentication, SEC-123
FCoE for VLAN enable, FCoE-17
security portal authentication configuration,
SEC-118, SEC-137
FCoE overview, FCoE-1
FCoE VLAN-VSAN mapping, FCoE-17
FCoE WWN, FCoE-2
security portal
SEC-149
FCS configuration, FCoE-109, FCoE-112
security portal authentication direct, SEC-137
FDMI configuration, FCoE-116
security
portal
authentication
cross-subnet, SEC-159
FSPF configuration (VFC interface), FCoE-66
authentication
cross-subnet,
extended
security portal authentication extended direct,
SEC-152
fundamentals, FCoE-26
NPV configuration, FCoE-93, FCoE-94, FCoE-97
security
portal
functions, SEC-118
trunk VSAN configuration, FCoE-27
trunk VSAN in FC network, FCoE-26
authentication
extended
trunk VSAN in FCoE network, FCoE-26
security portal authentication extended re-DHCP,
SEC-155
zone database, FCoE-70
security portal authentication re-DHCP, SEC-145
zone SNMP notifications, FCoE-87
security
portal
authentication
server
detection+user synchronization, SEC-162
aggregate filter activation, EVB-10
security
portal
authentication
components, SEC-118
VSI
Discovery Configuration Protocol. See see VDP
security portal authentication Web server,
SEC-119, SEC-125
EVB default VSI manager, EVB-4
security portal authentication Web server
detection, SEC-132
EVB virtual station interface, EVB-2
filter activation, EVB-10
security portal authentication Web server
reference, SEC-126
filter configuration, EVB-9
VDP negotiation
EVB-5
parameter
system
configuration,
troubleshooting 802.1X EAD assistant browser
users, SEC-100
VSI interface
weighted
aggregate configuration, EVB-8
random early detection. Use WRED
aggregate creation, EVB-8
well-known fabric addresses (FCoE), FCoE-159
289
LAN switching LLDP group-based WRR queuing,
LSW-255
WFQ queuing
bandwidth, QACL-49
WWN
configuration, QACL-51
FCoE, FCoE-2
Windows
N_Port-WWN to FC address binding, FCoE-38
DHCP BOOTP client configuration, IPSER-81,
IPSER-82
X DHCP client configuration, IPSER-65, IPSER-67
X.500
AAA LDAP implementation, SEC-9
DHCP client WINS server, IPSER-39
XML
Internet Naming Service. Use WINS
Windows 2000
PKI CA server SCEP add-on, SEC-219
PKI entity configuration, SEC-219
Windows 2003
NMM NETCONF
NM-240
capability
exchange,
NMM NETCONF
NM-239
configuration,
NM-236,
NMM NETCONF data filtering, NM-256
PKI CA server certificate request, SEC-233
NMM NETCONF data filtering (conditional
match), NM-260
WLAN
802.1X overview, SEC-62
NMM NETCONF data filtering (regex match),
NM-258
port
security
client
macAddressElseUserLoginSecure, SEC-189
NMM NETCONF message format, NM-237
port security client userLoginWithOUI, SEC-186
NMM NETCONF structure, NM-236
port security configuration, SEC-173, SEC-176,
SEC-184
NMM NETCONF xml view, NM-240
XML Schema
port security MAC address autoLearn, SEC-184
NMM NETCONF message format, NM-237
working with
Y FTP server files, FM-78
yellow packet
SSH SFTP directories, SEC-314
drop precedence, QACL-64
SSH SFTP files, SEC-314
Z World Wide Name. Use WWN
zero field check
WRED
RIPng packet, IPR-40
configuration, QACL-60
zero field check (RIPv1), IPR-21
congestion avoidance+ECN, QACL-59
zone
display, QACL-61
FC access control, FCoE-79
queue-based WRED table, QACL-59
FC default zone policy, FCoE-83
WRR queuing
FC hard zoning enable, FCoE-84
basic queuing, QACL-47
FC Pairwise configuration, FCoE-81
configuration, QACL-50
FC zone, FCoE-5, FCoE-82
group-based queuing, QACL-47
FC zone alias, FCoE-81
290
FCdatabase, FCoE-70
FC zone configuration, FCoE-70, FCoE-79,
FCoE-88
FCdatabase structure, FCoE-70
FC zone database deletion, FCoE-87
FCdistribution (basic zoning), FCoE-73
FC zone database structure active zone set,
FCoE-71
FCdistribution (enhanced zoning), FCoE-75
FCdistribution methods, FCoE-73
FC zone database structure default zone,
FCoE-72
FCdistribution process, FCoE-73
FC zone distribution, FCoE-83
FCincomplete merge (basic zoning), FCoE-76
FC zone merge type, FCoE-83
FCincomplete
FCoE-78
FC zone set, FCoE-82
FCmerge rules, FCoE-78
FC zone set distribution trigger, FCoE-86
zoning mode
FC zone set fabric distribution, FCoE-85
basic zoning, FCoE-70
FC zone-related copy, FCoE-87
configuration, FCoE-80
FC zone-related renaming, FCoE-86
enhanced zoning, FCoE-70
FCcomplete merge (basic zoning), FCoE-76
merge
(enhanced
(enhanced
FCmerge process, FCoE-76
FC zone set activation, FCoE-85
FCcomplete
FCoE-78
merge
zoning),
291
zoning),

advertisement

Was this manual useful for you? Yes No
Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

Related manuals

Download PDF

advertisement