Documente Academic
Documente Profesional
Documente Cultură
Introduction
This page is based on the notes I took when managing Alcatel Omniswitchs 6600, 6800
in 2007 and later 6850. The full documentation can be found on Alcatel-Lucent
website.
Managing the configuration files
Alcatel Omniswitchs can operate in two modes: working and certified (show running-
directory to know in which mode the switch is). In working mode, the configuration
can be modified, while it is no possible in certified mode (well, actually, it is).
When booting, if working and certified configuration files are different, the
switch will boot in certified mode. Configuration files are stored in
certifed/boot.cfg and working/boot.cfg (they can be directly edited with "vi").
A layer 2 VLAN is created with vlan <vlan_number> enable name "vlan name" and
removed with no vlan <vlan_number>. show vlan lists all VLANs, show vlan
<vlan_number> shows vlan <vlan_number> details.
Depending on the microcode version (show microcode), a layer 3 VLAN is created
using:
Port association:
Interfaces
Global status: Show interfaces status
Info about an interface (admin status, MAC, speed, duplex, errors, ...): show
interfaces [port|status|<slot>/<port>|...]
Summary of interfaces errors: show interfaces counters errors
To clear counters: interfaces <slot>[/port1-port2] no l2 statistics
To change an interface: interface <slot>/<port> [speed <10_100_1000>|duplex
<half_full>|autoneg <state>|flood rate <rate>]
To switch from autonegociation to 100FD, set
autoneg off
speed 100 and duplex full
If forced in 100FD while autoneg is on, the port will stay down
To disable an interface: interface <slot>/<port> admin down
Link Aggregation
Dynamic LAG (LACP)
When stacking is operational, one switch is primary, one other secondary, the
others idle. If the primary disappears, the secondary becomes primary and the first
idle becomes secondary.
Get info about the chassis: show chassis and about the stack: show stack topology.
The default prompt is "->". session prompt default "sw1->" changes it to "sw1->".
You can get the other session parameters with show session config
When a command outputs to many lines on the screen, it is possible to use "more" to
see page by page. Use more to activate the mode and more size <size> to set the
number of lines shown. Cancel this mode with no more.
To change the timeout of the telnet/ssh sessions: session timeout cli <timeout>
NTP
Set a server: ntp server <server_ip>. Even if the DNS is configured, you cannot
specify a name for the NTP server. Then activate NTP: ntp client enable.
Get NTP info:
show ntp client: tells if NTP is on or off, when was the last updated, ...
show ntp server-list: get the list of servers and with which server the swich
is synchronized
Logs
STP
STP can operates in two modes: flat and 1x1. In flat mode, there is only one
instance for the whole switch whereas in 1x1 mode, there is one instance per VLAN
(like pvst on Cisco switches or vstp on Juniper ones). I recommend the 1x1 mode if
you do not want to go the MSTP way. Change STP mode: bridge mode (flat|1x1)
Change STP algorithm: bridge protocol (802.1D|STP|RTSP). (In 2007), I did not
manage to set rstp for all vlan as a global config, I had to set it vlan per vlan
using:bridge 1x1 <vlan_number> protocol (802.1D|STP|RTSP).
DNS
DHCP relay
ip service udp-relay
DHCP relay only for specified vlans: ip helper per-vlan only
DHCP server address: ip helper address <dhcp_server> vlan <vlan_number>
Enable DHCP relay: ip udp relay BOOTP
Services
First, you have to create a user and give it the right to do SNMP:
To configure the SNMP trap server: snmp station <server_ip> [<port>] <"user">
(v1|v2c|v3) enable
snmp authentification trap (enable|disable)
To filter the traps sent by the switch: snmp trap filter <server_ip>
<filter_code>
Port mirroring
POE
To stop the POE, use the symmetric commande lanpower stop (<slot>/<port>|<slot>)
To limit the power available for a given port: lanpower <slot>/<port> power
<milliwatts>
To limit the power available for a slot: lanpower <slot> maxpower <watts>
A power of 230W is enough for a full slot equipped with IP Phones (note: TBC).
It has been noticed that a switch may prove instable with POE if too many
equipments are connected and its PSU is not enough powerfull.
QOS & ACL
In AOS, ACL and QoS are configured in the same "qos" section.
Apply QoS when modified: qos apply
Disable QoS (useful for troubleshooting): qos disable
By default, QOS is not trusted in access ports and all tags are set to 0. It is
trusted on trunked ports. To trust everywhere: qos trust ports
To trust on one given port: qos port <slot>/<port> trusted