Differences between revisions 12 and 40 (spanning 28 versions)
Revision 12 as of 2022-01-06 16:57:29
Size: 2835
Editor: scot
Comment:
Revision 40 as of 2022-01-25 16:30:24
Size: 5626
Editor: scot
Comment:
Deletions are marked like this. Additions are marked like this.
Line 5: Line 5:
|| || '''Rack 1''' || '''Rack 2''' || '''Liebert''' ||'''Rack 4''' ||'''Rack 5''' ||
|| 01 || R1S1:S58050-48T4Q || R2S1:S5860-20SQ || || R4S1:S5800-48T4S || R5S1:S5810-48TS-P ||
|| 02 || R1S2:S58000-48T4S || R2S2:S5800-48T4S || || || ||
|| 02 || R1S2:S58000-48T4S || R2S3:S5800-48T4S || || || ||
|| 02 || R1S2:S58000-48T4S || R2S4:S5800-48T4S || || || ||
|| 02 || R1S2:S58000-48T4S || R2S5:S5800-48T4S || || || ||		 || || '''Rack 1''' || '''Rack 2''' || '''Liebert''' ||'''Rack 4''' ||'''Rack 5''' ||
|| 01 || !R1S1:S58050-48T4Q (241) || !R2S1:S5860-20SQ (240) || || !R4S1:S5800-48T4S (247)|| !R5S1:S5810-48TS-P (248)||
|| 02 || !R1S2:S58000-48T4S (242) || !R2S2:S5800-48T4S (243) || || || ||
|| 03 || || !R2S3:S5800-48T4S (244) || || || ||
|| 04 || || !R2S4:S5800-48T4S (245) || || || ||
|| 04 || || !R2S5:S5800-48T4S (246) || || || ||

||<-2>Firewall Ports ||
|| R2S2:4 U-Server VLAN || R2S2:11 T-Firewalled ||
|| R2S2:3 U-Public || R2S2: 10 T-13,14,100,116 ||



||<-13>!R2S1:S5860-20SQ, 10.10.129.240 ||
||!R1S2||!R2S2||!R2S3||!R2S4 ||!R2S5 ||!R4S1 ||!R5S1 || || || || || ||!R1S1||
||INET1||INET2|| || || || || || || || || || || ||

||<-26>!R2S2:5800, 10.10.129.243||
||1/2||3/4||5/6 ||7/8 ||9/10 ||11/12 ||13/14 ||15/16 ||17/18 ||19/20 ||21/22 ||23/24 ||25/26 ||27/28 ||29/30 ||31/32 ||33/34 ||35/36 ||37/38 ||39/40 ||41/42 ||43/44 ||45/46 ||47/48 ||49/50 ||51/52 ||
|| || || || || || || || || || || || || || || || || || || || || || || || || || ||
|| || || || || || || || || || || || || || || || || || || || || || || || || || ||

<<TableOfContents()>>
Line 17: Line 34:
Line 20: Line 36:
Switch(config)# username <username> privilege 4 password <password>
Line 21: Line 38:
Switch(config-line)# login
Switch(config-line)# line-password abc		 Switch(config-line)# login local
Switch(config-line)# exit
Line 24: Line 41:
}}} }}}   
Line 35: Line 52:
'''Set the banner to show the name of the switch''' '''Configure Management IP'''
Line 37: Line 54:
Switch# configure terminalThe // at the end of the line indicates the start of a comment:
Switch# banner login # You are logged into RXSY #
Switch# exit
Switch# show running //validates that it worked		 Switch# configure terminal
Switch(config)# management ip address 10.10.129.X/24
Switch(config)# exit
Switch# show management ip address
Line 42: Line 59:

{{{
Switch# show interface status //show status of all the ports
Switch# show interface eth-0-49 //shows the status of eth-0-49
}}}
Line 52: Line 63:
Switch (config)# vlan database
Switch (config-vlan)# vlan 10 name Server
Switch (config-vlan)# vlan 100 name Office
Switch (config-vlan)# vlan 116 name Labs
Switch (config-vlan)# vlan 119 name Firewalled
Switch (config-vlan)# exit
Switch (config)# end
Line 55: Line 73:

'''Setup Management Interface'''		 '''Setup Management VLAN Interface'''
Line 67: Line 84:
'''Set the banner to show the name of the switch'''
{{{
Switch# configure terminalThe // at the end of the line indicates the start of a comment:
Switch# banner login # You are logged into RXSY #
Switch# exit
Switch# show running //validates that it worked
}}}
Line 68: Line 92:
'''In the web interface'''
Line 69: Line 94:
== Common Commands ==  * Configuration
   * Ethernet Status (Change eth-0-50 to trunk)
   * VLAN (Set VLANs for 10,100,116,119 as appropriate - default is 116; Make sure to change eth-0-50 default 10 allow 10,100,116,119)

 * Maintenance
   * System Configuration (file out page and save)
   * User Management (Add scot and vadmin; change password for admin)
   * Reboot/Save (save the configuration)

 * Network
   * IP Routing
     * IPv4 Static Route Information
       * New:
       * Destination = 0.0.0.0
       * Mask = 0.0.0.0
       * Nexthop = 10.10.129.1
       * Distance = 1

== Common Commands and Quirks ==
Line 73: Line 116:
'''Show Port Status''' === Show Port Status ===
Line 81: Line 124:
'''Show VLAN information for port''' === Show VLAN information for port ===
Line 86: Line 129:
== Backup and Restore the switch Configuration == === Backup and Restore the switch Configuration ===
Line 99: Line 142:

=== LACP configuration on S5850 10 GIG Switch ===

{{{
Switch# configure terminal
Switch(config)# port-channel 1 load-balance-mode dynamic
Switch(config)# interface eth-0-47
Switch(config-if)# no shutdown
Switch(config-if)# channel-group 1 mode active //active is the key word to get you LACP!
Switch(config-if)# edit
Switch(config)# [repeat previous 4 for each port]
Switch(config)# end
Switch# show channel-group summary
}}}

=== Trunk Quirk ===

IF you have something acting as a tagged port, then you cannot assign it as the default VLAN.

Scenario: I have the firewall using tagged VLANs on the procurve: 13,14,100,116 All tagged - no default untagged VLAN assigned.

On the new switch, you __cannot__ pick one of these to be the default VLAN, even though it was in the list of permitted (tagged) VLANs, it would not work. Choosing 1 (an unused VLAN) to be the default VLAN allowed it to start working again. Picky! Picky!

fs.com Switches purchased in 2021

Below is the commands used to configure the switches we purchased in 2021. The switches are installed as follows:

Rack 1

Rack 2

Liebert

Rack 4

Rack 5

01

R1S1:S58050-48T4Q (241)

R2S1:S5860-20SQ (240)

R4S1:S5800-48T4S (247)

R5S1:S5810-48TS-P (248)

02

R1S2:S58000-48T4S (242)

R2S2:S5800-48T4S (243)

03

R2S3:S5800-48T4S (244)

04

R2S4:S5800-48T4S (245)

04

R2S5:S5800-48T4S (246)

Firewall Ports

R2S2:4 U-Server VLAN

R2S2:11 T-Firewalled

R2S2:3 U-Public

R2S2: 10 T-13,14,100,116

R2S1:S5860-20SQ, 10.10.129.240

R1S2

R2S2

R2S3

R2S4

R2S5

R4S1

R5S1

R1S1

INET1

INET2

R2S2:5800, 10.10.129.243

1/2

3/4

5/6

7/8

9/10

11/12

13/14

15/16

17/18

19/20

21/22

23/24

25/26

27/28

29/30

31/32

33/34

35/36

37/38

39/40

41/42

43/44

45/46

47/48

49/50

51/52

Contents

  1. fs.com Switches purchased in 2021
    1. Initial Setup Notes for 5800 Series Switches
    2. Common Commands and Quirks
      1. Show Port Status
      2. Show VLAN information for port
      3. Backup and Restore the switch Configuration
      4. LACP configuration on S5850 10 GIG Switch
      5. Trunk Quirk

Initial Setup Notes for 5800 Series Switches

SSH into the switch with the default user:pass = "admin:admin"

First Change the password, note that we are using local authentication mode, not "aaa" mode. What is aaa mode? That's for authenticating against a radius/TACACS+ server. 

Switch# configure terminal
Switch(config)# username  <username> privilege 4 password <password>
Switch(config)# line vty 0 7
Switch(config-line)# login local
Switch(config-line)# exit
Switch(config)# exit

Set the time 

Switch# configure terminal
Switch(config)# clock set datetime 11:30:00 10 26 2013
Switch(config)# clock set summer-time dst date 3 13 2022 02:00:00 11 6 2022 02:00:00 120
Switch(config)# exit

Configure Management IP 

Switch# configure terminal
Switch(config)# management ip address 10.10.129.X/24
Switch(config)# exit
Switch# show management ip address

Create VLANs 

Switch# configure terminal
Switch (config)# vlan database
Switch (config-vlan)# vlan 10 name Server
Switch (config-vlan)# vlan 100 name Office
Switch (config-vlan)# vlan 116 name Labs
Switch (config-vlan)# vlan 119 name Firewalled
Switch (config-vlan)# exit
Switch (config)# end
Switch#

Setup Management VLAN Interface

Setup management on a vlan interface 

switch# configure terminal
switch(config)# interface vlan 10
switch(config)# ip address 10.10.129.X/24
switch(config)# Ctrl+z
Switch# show management ip address

Set the banner to show the name of the switch 

Switch# configure terminalThe // at the end of the line indicates the start of a comment:
Switch# banner login # You are logged into RXSY #
Switch# exit
Switch# show running //validates that it worked

In the web interface

  • Configuration
    • Ethernet Status (Change eth-0-50 to trunk)
    • VLAN (Set VLANs for 10,100,116,119 as appropriate - default is 116; Make sure to change eth-0-50 default 10 allow 10,100,116,119)
  • Maintenance
    • System Configuration (file out page and save)
    • User Management (Add scot and vadmin; change password for admin)
    • Reboot/Save (save the configuration)
  • Network
    • IP Routing
      • IPv4 Static Route Information
        • New:
        • Destination = 0.0.0.0
        • Mask = 0.0.0.0
        • Nexthop = 10.10.129.1
        • Distance = 1

Common Commands and Quirks

The // at the end of the line indicates the start of a comment:

Show Port Status

Switch# show interface status //show status of all the ports
Switch# show interface eth-0-49 //shows the status of eth-0-49

Show VLAN information for port

switch# show interface switchport interface eth-0-1

Backup and Restore the switch Configuration

To backup the configuration, ssh into the switch and perform the following: 

Switch# copy flash:/startup-config.conf mgmt-if scp://10.10.129.X/startup-config.conf

To download a configuration file: 

Switch# copy mgmt-if scp://10.10.10.163/startup-config.conf flash:/startup-config.conf

LACP configuration on S5850 10 GIG Switch

Switch# configure terminal
Switch(config)# port-channel 1 load-balance-mode dynamic
Switch(config)# interface eth-0-47
Switch(config-if)# no shutdown
Switch(config-if)# channel-group 1 mode active //active is the key word to get you LACP!
Switch(config-if)# edit
Switch(config)# [repeat previous 4 for each port]
Switch(config)# end
Switch# show channel-group summary

Trunk Quirk

IF you have something acting as a tagged port, then you cannot assign it as the default VLAN.

Scenario: I have the firewall using tagged VLANs on the procurve: 13,14,100,116 All tagged - no default untagged VLAN assigned.

On the new switch, you cannot pick one of these to be the default VLAN, even though it was in the list of permitted (tagged) VLANs, it would not work. Choosing 1 (an unused VLAN) to be the default VLAN allowed it to start working again. Picky! Picky!

NetworkConfiguration/FsComSwitchConfiguration (last edited 2022-02-16 23:32:03 by scot)