No relevant resource is found in the selected language.

Enterprise

Worldwide

- Türkçe

Search

History
Popular search
Switches Routers Servers Storage Data Center Energy Cloud Computing
Quick access
Recommended

Support

Documentation

S12700 V200R010C00 Configuration Guide - Ethernet Switching

This document describes the configuration of Ethernet services, including configuring link aggregation, VLANs, Voice VLAN, VLAN mapping, QinQ, GVRP, MAC table, STP/RSTP/MSTP, SEP, and so on.

About This Document
Ethernet Switching Overview
- Introduction to Ethernet Switching
- Basic Concepts of Ethernet
- Switching on the Ethernet
  - Layer 2 Switching
  - Layer 3 Switching
- Application Environment
  - Building an Enterprise Network
MAC Address Table Configuration
- Introduction to the MAC Address
- Principles
- Application
- Configuration Task Summary
- Licensing Requirements and Limitations for MAC Address Tables
- Default Configuration
- Configuring a MAC Address Table
- Configuring MAC Address Flapping Prevention
  - Configuring a MAC Address Learning Priority for an Interface
  - Preventing MAC Address Flapping Between Interfaces with the Same Priority
- Configuring MAC Address Flapping Detection
- Configuring the Switch to Discard Packets with an All-0 MAC Address
- Configuring the Switch to Discard Packets That Do Not Match Any MAC Address Entry
- Enabling MAC Address-Triggered ARP Entry Update
- Enabling Port Bridge
- Configuring Re-marking of Destination MAC Addresses
- Maintaining the MAC Address Table
- Configuration Examples
- Common Misconfigurations
  - MAC Address Entries Failed to Be Learned on an Interface
- FAQs
Link Aggregation Configuration
- Introduction to Link Aggregation
- Principles
- Applications
- Configuration Task Summary
- Licensing Requirements and Limitations for Link Aggregation
- Default Settings
- Configuring Link Aggregation in Manual Mode
- Configuring Link Aggregation in LACP Mode
- Configuring Preferential Forwarding of Local Traffic in a CSS
- Creating an Eth-Trunk Sub-interface
- Configuring an E-Trunk
- Maintaining Link Aggregation
- Configuration Examples
- Common Configuration Errors
  - Traffic Is Unevenly Load Balanced Among Eth-Trunk Member Interfaces Because the Load Balancing Mode Is Incorrect
  - Eth-Trunk at Both Ends Cannot Be Up Because the Lower Threshold for the Number of Active Interfaces Is Incorrect
- FAQ
VLAN Configuration
- VLAN Overview
- Principles
- Applications
- Configuration Task Summary
- Licensing Requirements and Limitations for VLANs
- Default Configuration
- Configuring VLAN Technology
- Maintaining VLANs
- Configuration Examples
- Common Misconfigurations
- FAQ
VLAN Aggregation Configuration
- Introduction to VLAN Aggregation
- Principles
- Application Scenario
- Licensing Requirements and Limitations for VLAN Aggregation
- Default Configuration
- Configuring VLAN Aggregation
- Configuration Examples
  - Example for Configuring VLAN Aggregation
- FAQ
  - How Do I Implement Communication Between Specific Sub-VLANs in a Super-VLAN
  - How Should a Traffic Policy Be Configured in a Super-VLAN or Sub-VLAN to Make the Traffic Policy Take Effect
VLAN Switch Configuration
- Introduction to VLAN Switch
- Application Scenario
- Licensing Requirements and Limitations for VLAN Switch
- Default Configuration
- Configuring VLAN Switch
- Maintaining VLAN Switch
- Configuration Examples
  - Example for Implementing Inter-VLAN Communication Using VLAN Switch
MUX VLAN Configuration
- Introduction to MUX VLAN
- Licensing Requirements and Limitations for MUX VLANs
- Default Configuration
- Configuring the MUX VLAN
- Configuration Examples
  - Example for Configuring MUX VLAN on the Access Device
  - Example for Configuring MUX VLAN on the Aggregation Device
VLAN Termination Configuration
- Introduction to VLAN Termination
- Application Scenario
- Configuration Task Summary
- Licensing Requirements and Limitations for VLAN Termination
- Default Configuration
- Using a Dot1q Termination Sub-interface to Implement Inter-VLAN Communication
- Configuring a Dot1q Termination Sub-interface and Connecting It to an L2VPN
- Configuring a Dot1q Termination Sub-interface and Connecting It to an L3VPN
- Configuring a QinQ Termination Sub-interface and Connecting It to an L2VPN
- Configuring a QinQ Termination Sub-interface and Connecting It to an L3VPN
- Configuration Examples
Voice VLAN Configuration
- Introduction to Voice VLAN
- Typical Networking
- Principles
- Applicable Scenario
- Licensing Requirements and Limitations for Voice VLAN
- Default Configuration
- Configuring a MAC Address-based Voice VLAN
- Configuring a VLAN ID-based Voice VLAN
- Configuration Examples
  - Example for Configuring a MAC Address-based Voice VLAN (IP Phones Send Untagged Voice Packets)
  - Example for Configuring a VLAN ID-based Voice VLAN (IP Phones Send Tagged Voice Packets)
QinQ Configuration
- Introduction to QinQ
- Principles
- Applications
  - Public User Services on a Metro Ethernet Network
  - Enterprise Network Connection Through Private Lines
- Configuration Task Summary
- Licensing Requirements and Limitations for QinQ
- Configuring Basic QinQ
- Configuring Selective QinQ
- Configuring the TPID Value in an Outer VLAN Tag
- Configuring the Device to Add Double VLAN Tags to Untagged Packets
- Configuring QinQ Mapping
  - Configuring 1-to-1 QinQ Mapping
  - Configuring 2-to-1 QinQ Mapping
- Maintaining QinQ
  - Displaying VLAN Translation Resource Usage
- Configuration Examples
- Common Misconfigurations
  - QinQ Traffic Forwarding Fails Because the Outer VLAN Is Not Created
  - QinQ Traffic Forwarding Fails Because the Interface Does Not Transparently Transmit the Outer VLAN ID
- FAQ
VLAN Mapping Configuration
- Introduction to VLAN Mapping
- Principles
- Applications
- Licensing Requirements and Limitations for VLAN Mapping
- Configuring VLAN ID-based VLAN Mapping
- Configuring 802.1p Priority-based VLAN Mapping
- Configuring MQC-based VLAN Mapping
- Maintaining VLAN Mapping
  - Displaying VLAN Translation Resource Usage
- Configuration Examples
- Common Configuration Errors
  - Communication Failure After VLAN Mapping Configuration
GVRP Configuration
- Introduction to GVRP
- Principles
- Applications
- Licensing Requirements and Limitations for GVRP
- Default Configuration
- Configuring GVRP
- Maintaining GVRP
  - Clearing GVRP Statistics
- Configuration Examples
  - Example for Configuring GVRP
- FAQ
  - Why Is the CPU Usage High When VLANs Are Created or Deleted Through GVRP in Default Configuration?
VCMP Configuration
- Introduction to VCMP
- Principles
  - VCMP Concepts
  - Implementation
- Applicable Scenario
- Licensing Requirements and Limitations for VCMP
- Default Configuration
- Configuring VCMP
- Maintaining VCMP
  - Displaying VCMP Running Information
  - Clearing VCMP Running Information
- Configuration Examples
  - Example for Configuring VCMP to Implement Centralized VLAN Management
STP/RSTP Configuration
- Introduction to STP/RSTP
- Principles
- Applications
- Configuration Task Summary
- Licensing Requirements and Limitations for STP/RSTP
- Default Configuration
- Configuring Basic STP/RSTP Functions
- Setting STP Parameters that Affect STP Convergence
- Setting RSTP Parameters that Affect RSTP Convergence
- Configuring RSTP Protection Functions
- Setting Parameters for Interoperation Between Huawei and Non-Huawei Devices
- Maintaining STP/RSTP
  - Clearing STP/RSTP Statistics
  - Monitoring STP/RSTP Topology Change Statistics
- Configuration Examples
  - Example for Configuring Basic STP Functions
  - Example for Configuring Basic RSTP Functions
- FAQ
MSTP Configuration
- Introduction to MSTP
- MSTP Principles
- Application Environment
- Configuration Task Summary
- Licensing Requirements and Limitations for MSTP
- Default Configuration
- Configuring Basic MSTP Functions
- Configuring MSTP Multi-Process
- Configuring MSTP Parameters on an Interface
- Configuring MSTP Protection Functions
- Configuring MSTP Interoperability Between Huawei and Non-Huawei Devices
- Maintaining MSTP
  - Clearing MSTP Statistics
  - Monitoring the Statistics on MSTP Topology Changes
- Configuration Examples
- FAQ
VBST Configuration
- Introduction to VBST
- Principles
- Applicable Scenario
- Configuration Task Summary
- Licensing Requirements and Limitations for VBST
- Default Configuration
- Configuring Basic VBST Functions
- Setting VBST Parameters That Affect VBST Convergence
- Configuring Protection Functions of VBST
- Setting Parameters for Interworking Between a Huawei Datacom Device and a Non-Huawei Device
- Maintaining VBST
  - Displaying VBST Running Information and Statistics
  - Clearing VBST Statistics
- Configuration Examples
  - Example for Configuring VBST
SEP Configuration
- Introduction to SEP
- Principles
- Applications
- Configuration Task Summary
- Licensing Requirements and Limitations for SEP
- Configuring Basic SEP Functions
- Specifying an Interface to Block
- Configuring SEP Multi-Instance
- Configuring the Topology Change Notification Function
- Maintaining SEP
  - Clearing SEP Statistics
- Configuration Examples
RRPP Configuration
- Introduction to RRPP
- Principles
- Application Scenarios
- Configuration Task Summary
- Licensing Requirements and Limitations for RRPP
- Default Configuration
- Configuring RRPP
- Configuring RRPP Snooping
- Maintaining RRPP
  - Clearing RRPP Statistics
- Configuration Examples
- Common Configuration Errors
  - A Loop Occurs After the RRPP Configuration is Complete
  - After the Primary Port of a Transit Node on an RRPP Ring Network Becomes Down and Then Recovers, the Transit Node and Other Transit Nodes Cannot Register With the Master Node
- FAQ
ERPS (G.8032) Configuration
- Introduction to ERPS
- Principles
- Applicable Scenario
- Configuration Task Summary
- Licensing Requirements and Limitations for ERPS
- Default Settings
- Configuring ERPSv1
- Configuring ERPSv2
- Maintaining ERPS
  - Clearing ERPS Statistics
- Configuration Examples
  - Example for Configuring ERPS Multi-instance
  - Example for Configuring Intersecting ERPS Rings
- Common Configuration Errors
  - Traffic Forwarding Fails in an ERPS Ring
LDT and LBDT Configuration
- Introduction to LBDT and LDT
- Principles
- Applicable Scenario
- Licensing Requirements and Limitations for LDT and LBDT
- Default Configuration
- Configuring LDT to Detect Loops
- Configuring Automatic LBDT
- Configuring Manual LBDT
- Configuration Examples
Layer 2 Protocol Transparent Transmission Configuration
- Introduction to Layer 2 Protocol Transparent Transmission
- Principles
- Application Environment
- Configuration Task Summary
- Licensing Requirements and Limitations for Layer 2 Protocol Transparent Transmission
- Configuring Interface-based Layer 2 Protocol Transparent Transmission
- Configuring VLAN-based Layer 2 Protocol Transparent Transmission
- Configuring QinQ-based Layer 2 Protocol Transparent Transmission
- Configuration Examples
- FAQ

Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).

Configuration Task Summary

Configuration Task Summary

Table 2-5 Configuration task summary for a MAC address table

Scenario	Description	Task
Bind static MAC addresses and interfaces	Configure static MAC address entries to bind MAC addresses and interfaces, improving security of authorized users.	Configuring a Static MAC Address Entry
Filter out attack packets	Configure blackhole MAC address entries to filter out packets from unauthorized users, thereby protecting the system against attacks.	Configuring a Blackhole MAC Address Entry
Flexibly control aging of dynamic MAC address entries	For stable networks, set a long aging time or set the aging time as 0 to not age dynamic MAC address entries. For other scenarios, set a short aging time.	Setting the Aging Time of Dynamic MAC Address Entries
Control MAC address learning	Certain network attacks aim to exhaust MAC address entries. To protect against this kind of attack, disable MAC address learning or limit the number of MAC address entries that can be learned.	Disabling MAC Address Learning Configuring the MAC Address Limiting Function
Monitor the MAC address table	You can configure various alarm functions about MAC addresses to monitor the usage of MAC address entries. Alarm threshold for MAC address usage: When the MAC address usage exceeds the upper threshold, the switch generates an alarm. When the MAC address usage falls below the lower threshold, the switch reports a clear message. MAC address learning or aging alarm: When a MAC address entry is learned or aged out, the switch generates an alarm. MAC address hash conflict alarm: If the switch cannot learn MAC address entries even when its MAC address table is not full, the switch generates an alarm.	Enabling MAC Address Alarm Functions
Quickly update outbound interfaces in ARP entries	Configure the MAC address-triggered ARP entry update function. When the outbound interface in a MAC address entry changes, the device updates the outbound interface in the corresponding ARP entry before ARP probing. This function shortens service interruption time.	Enabling MAC Address-Triggered ARP Entry Update
Prevent MAC address flapping	MAC address flapping occurs on a network when the network has a loop or undergoes certain attacks. You can use the following methods to prevent MAC address flapping: Configure the MAC address learning priorities for interfaces. When the same MAC address is learned by two interfaces of different priorities, the MAC address entries learned by the interface with a higher priority override the MAC address entries learned by the other interface. Prevent MAC address entries from being overridden on interfaces with the same priority.	Configuring MAC Address Flapping Prevention
Detect MAC address flapping	MAC address flapping occurs when a MAC address is learned by two interfaces in the same VLAN and the MAC address entry learned later overrides the earlier one. MAC address flapping detection enables a switch to check whether any MAC address flaps exist between interfaces and determine whether a loop exists. When MAC address flapping occurs, the switch sends an alarm to the NMS. The network maintenance personnel can locate the loop based on the alarm information and historical records for MAC address flapping. This greatly simplifies network maintenance. If the network connected to the switch does not support loop prevention protocols, configure the switch to shut down the interfaces where MAC address flapping occurs to reduce the impact of MAC address flapping on the network.	Configuring MAC Address Flapping Detection
Discard packets with an all-0 source or destination MAC address	A faulty host or device may send packets with an all-0 source or destination MAC address to a switch. Configure the switch to discard such packets and send an alarm to the NMS to help the network administrator locate the faulty host or device.	Configuring the Switch to Discard Packets with an All-0 MAC Address
Discard packets in which destination MAC addresses do not match the MAC address table	After a DHCP user goes offline, the MAC address entry of the user ages out. If there are packets destined for this user, the system cannot find the MAC address entry. The system then broadcasts the packets to all interfaces in the VLAN. In this case, all users receive the packets, which brings security risks. After the switch is configured to discard packets that do not match any MAC address entry, the switch discards such packets. This function mitigates the burden on the switch and enhances security.	Configuring the Switch to Discard Packets That Do Not Match Any MAC Address Entry
Forward packets from an interface when the source and destination MAC addresses are the same	By default, an interface discards packets whose source and destination MAC addresses are the same. After the port bridge function is enabled on the interface, the interface forwards such packets. This function applies to a switch that connects to devices incapable of Layer 2 forwarding or functions as an access device in a data center.	Enabling Port Bridge

Translation

简体中文

Download

Updated: 2022-05-23

Document ID: EDOC1000142081

Views: 1063653

Downloads: 896

Average rating:

This Document Applies to these Products

Related Version

Related Documents

Digital Signature File

Digital Signature Authentication Mode