Best Practice Document
Produced by CESNET led working group on Network monitoring (CBPD111) Authors: Tomas Podermanski, Vladimir Zahorik March 2010
© TERENA 2010. All rights reserved. Document No: Version / date: Original language : Original title: Original version / date: Contact: GN3-NA3-T4-CBPD111 March 2010 Czech “Configuration of HP ProCurve Devices in a Campus Environment” Version 1.2 of 3 December 2009 firstname.lastname@example.org, email@example.com
CESNET bears responsibility for the content of this document. The work has been carried out by a CESNET led working group on Network monitoring as part of a joint-venture project within the HE sector in the Czech Republic. Parts of the report may be freely copied, unaltered, provided that the original source is acknowledged and copyright preserved. The research leading to these results has received funding from the European Community's Seventh Framework Programme (FP7/2007-2013) under grant agreement n° 23 8875, relating to the project 'Multi-Gigabit European Research and Education Network and Associated Services (GN3)'.
Table of Contents
Table of Contents Executive Summary 1 Basic Settings and Operations 1.1 Switch Access 1.2 Resetting to Factory Default 1.3 Firmware Upgrade 1.4 Setting Hostname 1.5 Setting Passwords 1.6 Time Zone 1.7 Time Servers 1.8 Default Gateway 1.9 Switch Management Access Addresses 1.10 Remote Logging 1.11 Basic SNMP Configuration 1.12 Authentication by Radius Servers 1.13 SSH to Access the Switch Management 1.14 Limiting Access via Insecure Protocols 2 L2 Configuration 2.1 Setting the Communication Parameters of the Switch Port 2.1.1 Speed and Communication Parameters 2.1.2 Port Trunking, LACP 2.1.3 Broadcast Limit 2.1.4 Spanning Tree 2.1.5 Discovery of Physical Topology (LLDP, CDP) 2.2 VLAN Configuration 2.2.1 Assigning Ports to VLAN 2.2.2 GVRP - Automatic VLAN Broadcasting 2.2.3 IGMP Configuration 2.2.4 MLD Snooping 2.2.5 DHCP Snooping 2.2.6 Access Lists 3 Basic L3 Configuration 3.1 Configuring IP Addresses on VLAN 3.2 Configuring Routing 3.3 Static Routing 3.4 Assigning to OSPF 3 5 6 6 6 7 8 9 9 9 9 10 10 10 11 12 12 14 14 14 14 15 16 17 19 19 20 22 23 23 24 25 25 25 25 26
DHCP Relay Multicast Routing 3.6.1 PIM Dense Mode 3.6.2 PIM - Rendezvous Point (RP) 3.6.3 PIM Sparse Mode 3.6.4 Displaying Information about the PIM protocol 3.6.5 Securing the Multicasting Operation Auxiliary Tools 4.1 Automated Configuration Download 4.2 Tech Information Download 4.3 Monitoring Devices
26 26 26 27 27 27 29 30 30 30 30
This document describes the basic configuration of HP switches in a campus environment. Switches have a fairly large number of configuration options. Only a subset of these options is usually used for an ordinary configuration. This document attempts to summarise the most common settings of the ProCurve switches as they are used in campus networks. The individual configuration examples are arranged to let you cut and paste them while configuring a real switch.
Basic Settings and Operations
The switches in the HP ProCurve series feature several configuration interfaces - web interface, console command line, and interactive menu. The command line and interactive menu are accessible through: • • • console port (RS 232 line), telnet protocol ssh protocol
The command line which can configure all switch parameters is used in all examples below. In many ways management is similar to the Cisco IOS configuration, although there are significant differences.
Resetting to Factory Default
The first three steps are needed only if you do not know the switch access console password. If you want to cancel the current configuration only and you know the access password, you may omit these steps. Find the Clear and Reset buttons on the switch. Press and hold both buttons...