-
HP 5920 & 5900 Switch Series Network Management and
Monitoring Configuration Guide
Part number: 5998-5309a
Software version: Release 23xx
Document version: 6W101-20150320
-
Legal and notice information
© Copyright 2015 Hewlett-Packard Development Company, L.P.
No part of this documentation may be reproduced or transmitted
in any form or by any means without prior written consent of
Hewlett-Packard Development Company, L.P.
The information contained herein is subject to change without
notice.
HEWLETT-PACKARD COMPANY MAKES NO WARRANTY OF ANY KIND WITH
REGARD TO THIS MATERIAL, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
Hewlett-Packard shall not be liable for errors contained herein or
for incidental or consequential damages in connection with the
furnishing, performance, or use of this material.
The only warranties for HP products and services are set forth
in the express warranty statements accompanying such products and
services. Nothing herein should be construed as constituting an
additional warranty. HP shall not be liable for technical or
editorial errors or omissions contained herein.
-
i
Contents
Using ping, tracert, and system debugging
···············································································································
1 Ping
·····················································································································································································
1
Using a ping command to test network connectivity
····························································································
1 Ping example
····························································································································································
1
Tracert
················································································································································································
3 Prerequisites
······························································································································································
4 Using a tracert command to identify failed or all nodes in a
path
·····································································
4 Tracert example
························································································································································
4
System debugging
····························································································································································
6 Debugging information control
switches················································································································
6 Debugging a feature module
··································································································································
7
Configuring NTP
··························································································································································
8 Overview
············································································································································································
8
How NTP works
························································································································································
8 NTP architecture
·······················································································································································
9 Association modes
················································································································································
10 NTP security
···························································································································································
12 NTP for MPLS VPNs
··············································································································································
13 Protocols and standards
·······································································································································
13
Configuration restrictions and guidelines
····················································································································
13 Configuration task list
····················································································································································
14 Enabling the NTP service
··············································································································································
14 Configuring NTP association modes
····························································································································
14
Configuring NTP in client/server mode
··············································································································
14 Configuring NTP in symmetric active/passive mode
························································································
15 Configuring NTP in broadcast mode
··················································································································
16 Configuring NTP in multicast mode
·····················································································································
17
Configuring access control rights
·································································································································
18 Configuring NTP authentication
···································································································································
18
Configuring NTP authentication in client/server mode
·····················································································
18 Configuring NTP authentication in symmetric active/passive
mode
·······························································
20 Configuring NTP authentication in broadcast mode
·························································································
23 Configuring NTP authentication in multicast mode
···························································································
24
Configuring NTP optional parameters
·························································································································
27 Specifying the source interface for NTP messages
····························································································
27 Disabling an interface from processing NTP messages
····················································································
27 Configuring the maximum number of dynamic associations
············································································
28 Configuring a DSCP value for NTP packets
·······································································································
28
Configuring the local clock as a reference source
·····································································································
29 Displaying and maintaining NTP
·································································································································
29 NTP client/server mode configuration example
·········································································································
29 IPv6 NTP client/server mode configuration example
·································································································
31 NTP symmetric active/passive mode configuration example
···················································································
32 IPv6 NTP symmetric active/passive mode configuration
example
···········································································
34 NTP broadcast mode configuration example
·············································································································
36 NTP multicast mode configuration example
················································································································
37 IPv6 NTP multicast mode configuration example
·······································································································
40 Configuration example for NTP client/server mode with
authentication
·································································
43
-
ii
Configuration example for NTP broadcast mode with authentication
·····································································
45 Configuration example for MPLS VPN time synchronization in
client/server mode ··············································
48 Configuration example for MPLS VPN time synchronization in
symmetric active/passive mode ·························
49
Configuring SNTP
······················································································································································
52 Configuration restrictions and guidelines
····················································································································
52 Configuration task list
····················································································································································
52 Enabling the SNTP service
············································································································································
52 Specifying an NTP server for the device
·····················································································································
52 Configuring SNTP authentication
·································································································································
53 Displaying and maintaining SNTP
·······························································································································
54 SNTP configuration example
········································································································································
54
Configuring PTP
··························································································································································
56 Overview
·········································································································································································
56
Basic concepts
·······················································································································································
56 Synchronization mechanism
·································································································································
58 Protocols and standards
·······································································································································
61
Configuring clock nodes
···············································································································································
61 Configuration task list
···········································································································································
61 Specifying a PTP standard
····································································································································
62 Specifying the clock node type
····························································································································
62 Specifying a PTP domain
······································································································································
63 Configuring an OC to operate as only a member clock
··················································································
63 Configuring the role of a PTP port
·······················································································································
63 Configuring the mode for carrying timestamps
··································································································
64 Specifying a delay measurement mechanism for a BC or OC
········································································
64 Configuring the port type for a TC+OC
·············································································································
65 Configuring the interval for sending announce messages
················································································
65 Specifying the number of announcement intervals before the
receiving node stops receiving announce messages
································································································································································
66 Configuring the interval for sending Pdelay_Req messages
·············································································
66 Configuring the interval for sending Sync messages
························································································
66 Configuring the minimum interval for sending Delay_Req
messages
······························································
67 Configuring the MAC address for non-pdelay messages
·················································································
67 Specifying the protocol for encapsulating PTP messages as
UDP (IPv4)
·························································
68 Specifying the source IP address for UDP
packets·····························································································
68 Configuring the delay correction
value···············································································································
68 Configuring the cumulative offset between the UTC and TAI
···········································································
69 Configuring the correction date of the UTC
·······································································································
69 Configuring the parameters of the Bits
clock······································································································
69 Configuring a priority of the clock
······················································································································
70 Specifying the system time source as PTP
···········································································································
70 Enabling PTP on a port
·········································································································································
70
Displaying and maintaining PTP
···································································································································
71 PTP configuration example (IEEE 1588 Version 2)
····································································································
71 PTP configuration example (IEEE 802.1AS)
················································································································
73
Configuring the information center
···························································································································
77 Overview
·········································································································································································
77
Log types
································································································································································
77 Log levels
································································································································································
77 Log destinations
·····················································································································································
78 Default output rules for logs
··································································································································
78 Default output rules for diagnostic logs
···············································································································
78 Default output rules for security logs
···················································································································
79
-
iii
Default output rules for hidden
logs·····················································································································
79 Default output rules for trace logs
························································································································
79 Log formats
·····························································································································································
79
FIPS compliance
·····························································································································································
82 Information center configuration task list
·····················································································································
82 Outputting logs to the console
······································································································································
83 Outputting logs to the monitor terminal
·······················································································································
83 Outputting logs to a log host
········································································································································
84 Outputting logs to the log buffer
··································································································································
84 Saving logs to the log file
··············································································································································
85 Managing security logs
·················································································································································
86
Saving security logs into the security log file
······································································································
86 Managing the security log file
·····························································································································
87
Saving diagnostic logs to the diagnostic log file
········································································································
87 Configuring the maximum size of the trace log file
···································································································
88 Enabling synchronous information output
···················································································································
88 Enabling duplicate log suppression
·····························································································································
89 Disabling an interface from generating link up or link down
logs
···········································································
89 Displaying and maintaining information center
·········································································································
90 Configuration example for outputting logs to the console
·························································································
90 Configuration example for outputting logs to a UNIX log
host
·················································································
91 Configuration example for outputting logs to a Linux log
host
·················································································
92
Configuring SNMP
·····················································································································································
94 Overview
·········································································································································································
94 FIPS compliance
·····························································································································································
94
SNMP framework
··················································································································································
94 MIB and view-based MIB access control
············································································································
94 SNMP operations
··················································································································································
95 Protocol versions
····················································································································································
95
Configuring SNMP basic parameters
··························································································································
95 Configuring SNMPv1 or SNMPv2c basic parameters
······················································································
96 Configuring SNMPv3 basic parameters
·············································································································
97
Configuring SNMP logging
········································································································································
100 Configuring SNMP notifications
·································································································································
101
Enabling SNMP notifications
·····························································································································
101 Configuring the SNMP agent to send notifications to a host
·········································································
101
Displaying the SNMP settings
·····································································································································
104 SNMPv1/SNMPv2c configuration example
·············································································································
104 SNMPv3 configuration example
································································································································
106
Configuring RMON
················································································································································
109 Overview
·······································································································································································
109
RMON groups
·····················································································································································
109 Sample types for the alarm group and the private alarm
group
···································································
111 Protocols and standards
·····································································································································
111
Configuring the RMON statistics function
·················································································································
111 Creating an RMON Ethernet statistics entry
·····································································································
111 Creating an RMON history control
entry··········································································································
112
Configuring the RMON alarm function
·····················································································································
112 Displaying and maintaining RMON settings
············································································································
113 Ethernet statistics group configuration example
·······································································································
114
Network requirements
·········································································································································
114 Configuration procedure
····································································································································
114
History group configuration example
························································································································
115
-
iv
Network requirements
·········································································································································
115 Configuration procedure
····································································································································
115
Alarm function configuration example
·······················································································································
116 Network requirements
·········································································································································
116 Configuration procedure
····································································································································
117
Configuring NQA
···················································································································································
119 Overview
·······································································································································································
119
NQA operation
···················································································································································
119 Collaboration
·······················································································································································
120 Threshold monitoring
··········································································································································
120
NQA configuration task list
········································································································································
121 Configuring the NQA server
······································································································································
121 Enabling the NQA client
·············································································································································
122 Configuring NQA operations on the NQA client
····································································································
122
NQA operation configuration task list
··············································································································
122 Configuring the ICMP echo operation
··············································································································
123 Configuring the DHCP
operation·······················································································································
124 Configuring the DNS operation
·························································································································
124 Configuring the FTP operation
···························································································································
125 Configuring the HTTP operation
························································································································
126 Configuring the UDP jitter operation
·················································································································
127 Configuring the SNMP operation
······················································································································
128 Configuring the TCP operation
··························································································································
129 Configuring the UDP echo operation
················································································································
130 Configuring the voice operation
························································································································
131 Configuring the DLSw operation
·······················································································································
132 Configuring the path jitter operation
·················································································································
133 Configuring optional parameters for the NQA operation
··············································································
134 Configuring the collaboration function
·············································································································
135 Configuring threshold monitoring
······················································································································
136 Configuring the NQA statistics collection function
··························································································
139 Configuring the saving of NQA history records
······························································································
139
Scheduling the NQA operation on the NQA client
·································································································
140 Configuring NQA templates on the NQA client
······································································································
140
Configuring the ICMP template
·························································································································
141 Configuring the DNS template
···························································································································
141 Configuring the TCP template
····························································································································
142 Configuring the HTTP template
··························································································································
143 Configuring the FTP template
·····························································································································
145 Configuring optional parameters for the NQA template
················································································
145
Displaying and maintaining NQA
·····························································································································
146 NQA configuration examples
····································································································································
147
ICMP echo operation configuration example
··································································································
147 DHCP operation configuration example
···········································································································
148 DNS operation configuration example
·············································································································
149 FTP operation configuration example
···············································································································
151 HTTP operation configuration example
·············································································································
152 UDP jitter operation configuration example
·····································································································
153 SNMP operation configuration example
··········································································································
156 TCP operation configuration example
··············································································································
157 UDP echo operation configuration example
····································································································
158 Voice operation configuration example
···········································································································
159 DLSw operation configuration example
············································································································
162 Path jitter operation configuration example
·····································································································
163
-
v
NQA collaboration configuration
example······································································································
165 ICMP template configuration example
··············································································································
167 DNS template configuration example
···············································································································
168 TCP template configuration example
················································································································
169 HTTP template configuration example
···············································································································
170 FTP template configuration example
·················································································································
170
Configuring port mirroring
·····································································································································
172 Overview
·······································································································································································
172
Terminology
·························································································································································
172 Port mirroring classification and implementation
·····························································································
173
Configuring local port mirroring
································································································································
175 Local port mirroring configuration task list
·······································································································
175 Creating a local mirroring group
······················································································································
175 Configuring source ports for the local mirroring group
··················································································
175 Configuring the monitor port for the local mirroring group
············································································
176 Configure local port mirroring with multiple monitor ports
·············································································
177
Configuring Layer 2 remote port mirroring
···············································································································
178 Configuring a remote destination group on the destination
device
······························································
179 Configuring a remote source group on the source device
·············································································
181
Configuring Layer 3 remote port mirroring
···············································································································
183 Layer 3 remote port mirroring configuration task list
······················································································
183 Configuration prerequisites
································································································································
184 Configuring local mirroring groups
···················································································································
184 Configuring source ports for a local mirroring group
·····················································································
184 Configuring the monitor port for a local mirroring group
···············································································
185
Displaying and maintaining port mirroring
···············································································································
186 Local port mirroring configuration example
··············································································································
186
Network requirements
·········································································································································
186 Configuration procedure
····································································································································
186 Verifying the configuration
·································································································································
187
Layer 2 remote port mirroring configuration example
·····························································································
187 Network requirements
·········································································································································
187 Configuration procedure
····································································································································
187 Verifying the configuration
·································································································································
189
Local port mirroring with multiple monitor ports configuration
example
·······························································
189 Network requirements
·········································································································································
189 Configuration procedure
····································································································································
190
Layer 3 remote port mirroring configuration example
·····························································································
191 Network requirements
·········································································································································
191 Configuration procedure
····································································································································
191 Verifying the configuration
·································································································································
193
Configuring flow mirroring
·····································································································································
194 Flow mirroring configuration task list
·························································································································
194 Configuring match criteria
··········································································································································
194 Configuring a traffic behavior
····································································································································
195 Configuring a QoS policy
···········································································································································
195 Applying a QoS policy
···············································································································································
196
Applying a QoS policy to an interface
·············································································································
196 Applying a QoS policy to a VLAN
····················································································································
196 Applying a QoS policy globally
························································································································
196 Applying a QoS policy to the control plane
····································································································
196
Flow mirroring configuration example
·······················································································································
197 Network requirements
·········································································································································
197
-
vi
Configuration procedure
····································································································································
197 Verifying the configuration
·································································································································
198
Configuring sFlow
···················································································································································
199 Protocols and standards
··············································································································································
199 sFlow configuration task list
········································································································································
199 Configuring the sFlow agent and sFlow collector
information
················································································
200 Configuring flow sampling
··········································································································································
200 Configuring counter sampling
····································································································································
201 Displaying and maintaining sFlow
·····························································································································
201 sFlow configuration example
······································································································································
202
Network requirements
·········································································································································
202 Configuration procedure
····································································································································
202 Verifying the configuration
·································································································································
203
Troubleshooting sFlow configuration
·························································································································
203 The remote sFlow collector cannot receive sFlow packets
··············································································
203
Monitoring and maintaining processes
·················································································································
205 Displaying and maintaining processes
······················································································································
205 Displaying and maintaining user processes
··············································································································
205 Monitoring kernel threads
···········································································································································
206
Configuring kernel thread deadloop detection
································································································
206 Configuring kernel thread starvation detection
································································································
207 Displaying and maintaining kernel threads
······································································································
207
Configuring EAA
·····················································································································································
209 Overview
·······································································································································································
209
EAA framework
···················································································································································
209 Elements in a monitor policy
······························································································································
210 EAA environment variables
································································································································
211
Configuring a user-defined EAA environment variable
···························································································
212 Configuring a monitor policy
······································································································································
213
Configuration restrictions and guidelines
·········································································································
213 Configuring a monitor policy from the CLI
·······································································································
213 Configuring a monitor policy by using Tcl
·······································································································
215
Suspending monitor policies
·······································································································································
216 Displaying and maintaining EAA settings
·················································································································
216 Configuration examples
··············································································································································
216
CLI-defined policy configuration example
········································································································
216 Tcl-defined policy configuration example
·········································································································
218
Configuring CWMP
················································································································································
219 Overview
·······································································································································································
219
CWMP network framework
································································································································
219 Basic CWMP functions
·······································································································································
220 How CWMP works
·············································································································································
221
Configuration task list
··················································································································································
222 Enabling CWMP from the CLI
····································································································································
223 Configuring ACS attributes
·········································································································································
224
Configuring the preferred ACS attributes
·········································································································
224 Configuring the default ACS attributes from the CLI
························································································
225
Configuring CPE attributes
··········································································································································
225 Configuring ACS authentication parameters
···································································································
226 Configuring the provision code
·························································································································
226 Configuring the CWMP connection interface
··································································································
226 Configuring autoconnect parameters
················································································································
227
-
vii
Enabling NAT traversal for the CPE
··················································································································
228 Specifying an SSL client policy for HTTPS connection to
ACS
·······································································
228
Displaying and maintaining CWMP
··························································································································
229 CWMP configuration example
···································································································································
229
Network requirements
·········································································································································
229 Configuration proced
