1.

2.

1.
2.

1. Collision Domain
2.
UnitcastMulticastBroadcast
1. Cisco IP/TV IP Novell 5
2. IP ARPNetBIOS
IPXGet Nearest ServerGNS
3. IPX SAPRIP
IGRP

1.
2. VLAN

1.
2.
80/20 20/80
1. 80/20 80%
20%
2. 20/80 20% 80%

1. Web PC
2.
3
1.
2.
3.
OSI PDU

PDU

TCP

TCP

MLS-SE MLS

256 MLS Cache Entry

3 (on header only)

TTL

MIB

ASICApplication-Specified Integrated Circuits

Gbit

Cisco CEF
Cisco

Catalyst 19002820290040005000

Catalyst 50002926G
6000 Fast Gigabit 120 Gigabit

Catalyst 65008500multicast routing PIM

Less than 50

19xx, 2820, 29xx CAD/CAM IC 35xx

Less than 100

4xxx 36Gbit 96

More than 100

5xxxMultigigabit 10/100/1000Mbps


1. Switching Block
2. Core Block

1.
2. 2000

1.
2. Multicast Switch Router

1. Traffic Flow Blocking

2.

1. Collapsed


HSRP
2. Dual

Blocking

Blocking

OSPF

50

25

EIGRP

50

25

RIP

30

15

1. 5s~10s 50s
2.
3. Switching Blocking 100

_ Determine paths based on logical addressing

_ Run layer 3 checksums (on header only)
_ Use Time to Live (TTL)

_ Process and responds to any option information

_ Can update Simple Network Management Protocol (SNMP) managers with
Management Information Base (MIB) information
_ Provide Security

_ Hardware-based packet forwarding

_ High-performance packet switching
_ High-speed scalability
_ Low latency
_ Lower per-port cost
_ Flow accounting
_ Security
_ Quality of service (QoS)
Quality of Service
Messages are given more resources if they need it.

NetFlow

100BaseTX

EIA/TIA 5UTP

100m

2
100BaseT4

EIA/TIA 3,4,5UTP

100m

4
100BaseFX

MMF 62.5um 400m

125um 62.5/125

Gbit

1000BaseCX

25m

1000BaseT

EIA/TIA 5UTP

100m

4
1000BaseFX

62.5um 50um

260m

780nm
1000BaseLX

9um

3km Cisco

1300nm

10km

Catalyst OS
OS

Cisco IOS

Catalyst 1900/28002900XL

Set

Catalyst 29262926G1948G400050006000

100BaseTX

100BaseT4

100BaseTX

10BaseT

10BaseT

Token Ring
Method

Forwarding Decision

Transparent bridging

MAC address

Source-route

RIF

Frame Modification

N/A
RIF

bridging
Source-route

Ring numbers must be unique

among bridge ports.

MAC address or RIF

transparent bridging
Source-route

Ring Numbering

RIF

Ring numbers must be unique

among bridge ports.

Route descripto

Ring numbers can be same

5

switching

across switch ports (single

ring can be segmented on
several ports).

IOS 1900/28002900XL
Switchconfig-if#description description-string

Switchconfig-if#description description string

set Set port name
UTP 100m
1. Patch Panel 5m
2. Patch Panel Punch-down Block 90m
3. Punch-down Block Desktop 5m
CDP
Cisco Cisco 60s Multicast
MAC 0100.0ccc.cccc

 VLAN
VLAN Membership
1. VLAN VLAN
2. VLAN Ciscoworks 2000 CWSI MAC
Cisco IOS VLAN
Switch#vlan database
Switch(vlan)#vlan vlan-num name vlan-name
Switch(vlan)#exit
Switch#configure terminal
Switch(config)#interface interface module/number
Switch(config-if)#switchport mode access
Switch(config-if)#switchport access vlan vlan-num
Switch(config-if)#end
Set-based VLAN
Switch(enable)set vlan vlan-num [name name ]
Switch(enable)set vlan vlan-num mod-num/port-list
link
1. Access link VLAN A member of only one vlan
2. Trunk linkCapable of carring multiple vlans
Trunk link Access link
VLAN
Block VLAN VLAN
1. VLAN VLAN 80/20
80%
2. VLAN
20/80
VTP
1. VLAN Cisco VLAN
2. VLAN VLAN
3. VLAN
4. VLAN
5. VLAN
VTP
1. VLAN
VTP
2. VTP
VTP Version Number
7

1. VTP VTP VLAN

2. VTP VTP Version Number 1

3. VTP VLAN
VLAN
4. VLAN
VTP VLAN
1. VTP
2.
3. VTP
VLAN Trunk link
1. Trunk link VLAN
VLAN
2. Trunk link VLAN Native VLAN Trunk link

3. Trunk link VLAN ISL IEEE 802.1Q

Cisco Trunk VLAN
1. ISLCisco 26 4 FCS
2. IEEE 802.1QIEEE VLAN 4 FCS
3. 802.10FDDI VLAN Cisco VLAN SAID

4. LANE ATM VLAN IEEE

ISL

1518/1548

802.1Q

1518/1522

802.10

FDDI

LANE

ATM

Baby Giant Frame

1518 802.1Q
1522
Catalyst

Trunk

4.2

DTP

ISL IEEE 802.1Q

4.1

DISL

ISL 802.1Q

4.1

ISL 802.1Q

DTP Cisco Trunk link

Trunk link Trunk link 30s DTP

Gbit Trunk
On Trunk
Off Trunk
Desirable Trunk OnDesirable
Auto Trunk
Auto Trunk OnDesirable
Trunk
Nonegotiate Trunk DTP
Trunk Trunk link
Trunk VLAN
VLAN1
VLAN2 VLAN
VLAN1002FDDI-Default
VLAN1003Token-Ring-Default
VLAN1004FDDInet-Default
VLAN1005TRnet-default
VTP
1. VLAN VLAN
Trunk VLAN
2. VLAN vlan z
vlan vtp vlan
3. VTP vtp v2 Trunk VTP

VLAN Vtp v1 vtp

vlan vlan

vtp
Summary advertisementsvtp 300s
Subset advertisementsvtp vlan vlan
Advertisement requests from clientsvtp vtp Summary advertisements
Subset advertisements vtp Subset advertisements
vtp Summary advertisements vtp version number
Vtp v2 v1
1. Version-dependent transparent modev1
v2
2. Consistency checks
3. Token Ring support v2
9

4. Unrecognized Type-Length-Value (TLV) support

Verify VTP status
Cisco IOSshow vtp status
Cisco set-basedshow vtp domain

10


ID 8
1. 2 32768 0x8000
Cisco
2. 6 MAC MAC MAC

Root Bridge
1. STP ID
2.

STP BPDU Field ID/ ID

1.
2. ID
ID
3. / ID 063 32
ID ID
BPDUBridge Protocol Data Unit
Root Port
Active Port BPDU BPDU
Root Port
Root Port
/ ID Root Port Forwarding
Blocking
EtherChannel
Fast EtherChannelGigabit EtherChannel

EtherChannel MAC MAC

0 link0 link 1 IP
PAgP Port Aggregation Protocol
EtherChannel
1. PAgP VLAN VLAN
VLAN
2. PAgP VLAN Trunk
3.

11

PortFast

STP 50s
PortFast
Listening Learning Forwarding
PortFast Forwarding
STP Forwarding Blocking
UplinkFast
STP

STP 50s
20sBlockingListening15sListeningLearning15sLearningForwarding
Blocking Forwarding Listening
Learning UplinkFast 2s4s
UplinkFast

UplinkFast
1. UplinkFast
2. Blocking
3. Root Port
UplinkFast

BackboneFast
Cisco IOS Set
Inferior BPDU BPDU
Inferior BPDU
Root Port Blocking BPDU
STP VLAN
1. PVST VLAN Cisco ISL
2. CST IEEE 802.1Q VLAN
3. PVST+ PVSTCisco CST PVST
PVST CST
PVST

VLAN

CST
VLAN BPDU
VLAN1

1.

1. BPDU

2.

2.

12

3.

1. VLAN

1.

2. Trunk link VLAN BPDU

2.

13

 VLAN

1. NFFC NFFC II Catalyst 5000

I. ISL
II. MLSP Cisco IOS 11.3.4
2.
I. 5000

RSM 5000 NFFC

RSFC Supervisor Engine IIG IIIG

II. 6000/6500

MSM

MSFC
VLAN
1. VLAN 0 1 RSM 256 VLAN ISL

VLAN0 RSM 5000 Channel 0

VLAN1 5000 VLAN Channel 1
VLAN

2. IP no shutdown

interface vlan 11 5000 VLAN

ip address 172.16.41.141 255.255.255.0
VLAN
1.
2. VLAN
3. IP

interface fastethernet 0/1.2 VLAN

VLAN
encapsulation isl 20
ip address 172.16.20.3 255.255.255.0

Cisco IOSip default-gateway ip-address

Setset ip route destination gateway metric

Cisco IOSshow ip
Setshow ip route

14

1. sc0 IP
2. vlan vlan1
3.
sc0 Switch management interface

set interface sc0 202.121.48.2 255.255.255.192

set interface sc0 vlan1
set ip route default 202.121.48.63
set interface sc0 up

set interface sc0 1 202.121.48.2 255.255.255.192 202.121.48.63

set interface sc0 up
sc0 sl0
show interface
sl1 console port slip ip ip
console port slipaux

15

 IP
Cisco
1. MLS-SE Catalyst 2926G NFFC NFFC II Catalyst
5000 NFFC Supervisor Engine Supervisor Engine ASIC 3

2. MLS-RP RSMRouter Switch Module

75007200450047008500
3. MLSP MLS-SE MLS-RP
MLS-RP Hello 15s MLS-SE
I. VLAN MAC
II. /

MLS-SEMultilayer Switching-Switching Engine

MLS-RPMultilayer Switching-Route Processor
MLSPMultilayer Switching Protocol
NFFCNetFlow Feature Card
MLS
1. mls rp [ip|ipx]Cisco IOS 12.0 MLS IPX
2. MLS-RP MLS
3.
MLS
1. no ip routing
2. ip security
3. ip tcp compression-connections
4. clear ip-route
MLS
1. 5000 RSFC Route Switch Feature Card RSM Route
Switch Module Supervisor Engine NFFC NFFC II MLS Multi-Layer
Switch
2. 6000 MSFCMultilayer Switch Feature Card MSMMultilayer
Switch Module MLSMulti-Layer Switch
MSFCMultilayer Switch Feature Card
Catalyst6000

(MSFC)

IPRIPRIP2OSPFEIGRPPIMHSRP, IPX IP-multicast AppleTalk,

DecNet, Vines Cache Engine
MLS Cache
1. MLS-SE Cache
2. MLS Cache 5s MLS-SE Cache
MLS-RP
16

3. MLS Cache 256s

8 82032
4. RP MLS Access list MLS Cache
Flow Mask
MLS MLS
MLS-SE
1. IP The least specific flow mask
mode
2. - IP
3. IP The most specific flow mask mode
mls-se set mls flow [destination|destination-source|full]
The MLS-SE supports only one flow mask for all MLS-RP's connected to the MLS-SE. If the MLSSE receives messages indicating different flow masks from different MLS-RP's the MLS-SE will set
it's flow mask to the most specific flow mask.
MLS-RP's running IOS 11.3 or later do not automatically support input access lists. To incorporate
input access-lists the global configuration command 'mls rp ip input-acl' must be configured.

17

 HSRP

1.
2. ARP ARP

3. RIP
4. ICMP IRDP Cisco ip irdp
HSRP
Win 9X Proxy ARP IP

1. Active Hello Virtual

2. Standby Hello HSRP
3. Virtual IP MAC
4. Other Hello Active Standby
Active Standby MAC Active

HSRP
HSRP UDP UDP 1985
HSRP 224.0.0.2 TTL 1

1. Hello 3 Active Standby

2. Coup Active
3. Resign Active

Hellotime Hello 3 1255

Holdtime Hello Hellotime 3 10
1255
standby group-number timers hellotime holdtime
HSRP
1. HSRP 255

2. VLAN HSRP
3. HSRP 0
4. HSRP 100
5. IP ARP Active
Virtual MAC
IP MAC
1. show ip arp
2. show standby
Ethernet3 - Group 1
18

Local state is Standby, priority 100

Hellotime 3 holdtime 10
Next hello sent in 00:00:00.898
Hot standby IP address is 202.121.49.251 configured
Active router is 202.121.49.250 expires in 00:00:08
Standby router is local
Standby virtual mac address is 0000.0c07.ac01
shtu-4500#
MAC
1. ID MAC 3 Cisco 0000.0c
2. HSRP HSRP MAC 07.ac
3. IDHSRP 0~255 HSRP 01
HSRP
interface Ethernet3
standby 1 ip 202.121.49.251
Trunk link HSRP
ISL HSRP VLAN

1.
2. IP IP
3. HSRP
HSRP 6
1. Initial HSRP
2. Learn Active
3. Listen Active Standby
4. Speak Hello Active Standby
5. StandbyHSRP
6. ActiveHSRP Active
Active Standby
1. Active Standby
2. IP
3. Active Standby Active
4. Standby Active

5. Active Active
preempt
HSRP Tracking
HSRP HSRP Tracking
19

 Active
Route Processor 32650

20


Well-known D
224.0.0.0~239.255.255.255
D

224.0.0.1

224.0.0.2

224.0.0.4

DVMRP

224.0.0.5

OSPF

224.0.0.6

OSPF Designated Router

224.0.0.9

RIP2

224.0.0.13

PIM

IGMP
IGMP
VLAN VLAN
Multicast Stream
IGMP IP Packet Multicast Packet 20 IP Header
8 IGMP
CGMP
1. Cisco IGMP Multicast
Stream
2. CGMP IP IGMP
2 Well-known

3. CGMP Client/Server CGMP

Client
IGMPv1 IGMPv2 Messages
1. Host Membership Report Message Multicast

2. Group Specific Query

Multicast IP Message
0
60s ip igmp query-interval
3. Group Leave MessageIGMPv1

Multicast
IGMPv1Report Suppression
10s 0 TTL=1
IGMPv2 Message Maximum Response Time 10

21


MRT
TTL=1
Distribution Tree
Multicast
DR

1. Source-specific RPF
2. Center-specific
Multicast Stream
Dense-mode

1. Internet Mbone

DVMRP

2. RPFReserve Path Flooding

1.

MOSPF

2. OSPF
OSPF
3. Cisco MOSPF

1. DVMRP

PIM DM

2.

Sparse-mode

1.

CBT Core-based Tree

2.

3.

1. RPRendezvous Point

PIM SM

2.
Hop

PIM DM
1. Source and receivers close together
2. Few sources and many receivers
3. Multicast High volume of multicast traffic
4. Multicast Constant multicast data streams

22

PIM SM
1. Multicast Few receivers in each group
2. Intermittent multicast traffic
Scoping Multicast

Unicast Multicast TTLIP

255TTL
TTL

15

63

127

191

255

23

 IP
Multicast Routing
1. ip multicast-routing Multicast Routing
2. ip pim dense-mode/sparse-mde/sparse-dense-mode
PIM

Dense-mode

1. Multicast Multicast
Multicast PIM
Prune Multicast

2. Multicast Dense-mode

Sparse-mode

Multicast Multicast

Sparse-dense-mode

RP Dense-mode RP
Sparse-mode

PIMProtocol Independent Multicast

OIlist Outgoing Interface List
Multicast Oilist Multicast

PIM Oilist
Dense-mode

1. PIM Oilist
2. Multicast
3.

Sparse-mode

1. Oilist
2.

Multicast
shtu-4500>sh ip mroute
IP Multicast Routing Table
Flags: D - Dense, S - Sparse, C - Connected, L - Local, P - Pruned
R - RP-bit set, F - Register flag, T - SPT-bit set, J - Join SPT
X - Proxy Join Timer Running

interface FastEthernet0.21
description LGyanjiusheng
encapsulation isl 21
ip address 202.121.60.225 255.255.255.224
ip access-group 160 in
no ip redirects
no ip directed-broadcast
ip pim dense-mode
ip igmp version 1
ip cgmp
no ip mroute-cache

Timers: Uptime/Expires
Interface state: Interface, Next-Hop or VCD, State/Mode

(*, 239.255.255.254), 02:34:52/00:02:20, RP 0.0.0.0, flags: DJC

Incoming interface: Null, RPF nbr 0.0.0.0
Outgoing interface list: OILIST
FastEthernet0.21, Forward/Dense, 02:34:52/00:00:00

24

(*, 224.2.160.103), 2w0d/00:02:59, RP 0.0.0.0, flags: DJC

Incoming interface: Null, RPF nbr 0.0.0.0
Outgoing interface list:
FastEthernet0.10, Forward/Dense, 08:44:15/00:00:00

(202.121.49.199, 224.2.160.103), 00:00:36/00:02:23, flags: PCT202.121.49.199 tv.shtu.edu.cn

Incoming interface: FastEthernet0.10, RPF nbr 0.0.0.0
Outgoing interface list: Null

(*, 224.0.1.40), 2w0d/00:00:00, RP 0.0.0.0, flags: DJCL

Incoming interface: Null, RPF nbr 0.0.0.0
Outgoing interface list:
FastEthernet0.7, Forward/Dense, 3d03h/00:00:00

(*, 224.2.246.201), 08:51:44/00:02:59, RP 0.0.0.0, flags: DJC

Incoming interface: Null, RPF nbr 0.0.0.0
Outgoing interface list:
FastEthernet0.10, Forward/Dense, 08:51:44/00:00:00

(202.121.49.199, 224.2.246.201), 00:02:00/00:00:59, flags: PCT

Incoming interface: FastEthernet0.10, RPF nbr 0.0.0.0
Outgoing interface list: Null

(*, 224.0.1.24), 2w0d/00:02:17, RP 0.0.0.0, flags: DJC

Incoming interface: Null, RPF nbr 0.0.0.0
Outgoing interface list:
FastEthernet0.10, Forward/Dense, 3d03h/00:00:00

Designated Router
1.
2. PIM SM PIM DM
3. IGMP
4. PIM PIM
IP PIM DR
DR PIM DR
CGMP
1. PIM
2. CGMP ip cgmp CGMP
3. show running CGMP
4. CGMP Multicast
RP
25

1. PIM Sparse-mode
2. IP Leaf Router
Multicast Multicast

26

1. Route Summarization

2. Distribution List

1. Protocol access-groupprotocol
ip
2. Access-class
3. Distribute-list

4. Ipx output-sap-filter
In Out
ip access-groupIn
Out

Access-classIn Telnet Out

Telnet

1. Set/CLI set port security mod_num/port_num enable mac_address

show port mod_num/port_num
2. IOS port secure [max-mac-count maxinum_mac_count]
show mac-address-table security [type module/port]
maxinum_mac_count 132 1132
MAC
1. MAC
2. MAC MAC MAC
console
Cisco IOSexec-timeout minutes seconds
Set-basedtime-out

27

switch led

1. Red
2. Orange
3. Green
Link LED
1. Green
2. Orange VLAN
3. Orange and Glint
4. Off
/

Red STP Blocking

5000 10/100 SP LED
100Mbps 10Mbps SP LED
SPAN
Cisco switches have a Switched Port Analyzer (SPAN) feature enables you to
monitor traffic on any port for analysis by a network analyzer device or RMON
probe.
SPAN
show span
by default,the catalyst switch software sends error messages to the console terminal
enter the command you would use to check for error message if they are redirected to
another destination.
Cisco IOS Cisco 2924XL Cisco 4500
terminal monitor
Cisco 4000
Show ip cef [sum]
Show buffer
Show traffic
Sh int fa0 stat
Ip route-cache
Cisco 5000
show multicast route
show test
sh mbuff
28

Cisco 5000RSM NFFC

RSFC
Cisco 6000/6500MSM MSFC
Cisco IOS
CEF FIB adject

29