= fs.com Switches purchased in 2021 = Below is the commands used to configure the switches we purchased in 2021. The switches are installed as follows: || || '''Rack 1''' (Back) || '''Rack 2''' || '''Liebert''' ||'''Rack 4''' (Back) ||'''Rack 5''' (Back)|| || 01 || !R1S1:S58050-48T4Q (241) || !R2S1:S5860-20SQ (240)-Back || || !R4S1:S5800-48T4S (247)|| !R5S1:S5810-48TS-P (248)|| || 02 || !R1S2:S58000-48T4S (242) || !R2S2:S5800-48T4S (243)-Back || || || || || 03 || || !R2S3:S5800-48T4S (244)-Front|| || || || || 04 || || !R2S4:S5800-48T4S (245)-Front|| || || || || 04 || || !R2S5:S5800-48T4S (246)-Front|| || || || ||<-2>'''Firewall Ports''' || || !R2S2:4 U-Server VLAN || !R2S2:11 T-Firewalled || || !R2S2:3 U-Public || !R2S2: 10 T-13,14,100,116 || ||<-13>'''!R2S1:S5860-20SQ, 10.10.129.240'''|| ||!R1S2||!R2S2||!R2S3||!R2S4 ||!R2S5 ||!R4S1 ||!R5S1 || || || || || ||!R1S1|| ||INET1||INET2|| || || || || || || || || || || || ||<-26>'''!R2S2:5800, 10.10.129.243'''|| ||1/2||3/4||5/6 ||7/8 ||9/10 ||11/12 ||13/14 ||15/16 ||17/18 ||19/20 ||21/22 ||23/24 ||25/26 ||27/28 ||29/30 ||31/32 ||33/34 ||35/36 ||37/38 ||39/40 ||41/42 ||43/44 ||45/46 ||47/48 ||49/50 ||51/52 || ||10 ||20 ||116 ||20 ||Agg4-LACP ||1d,119 || || || || || || || || || || || || || || || || || || || || || ||10 ||10 ||1 ||Agg4-LACP ||1d,13,14,100,116 || || || || || || || || || || || || || || || || || || || || || || * Agg4: 10d,14,116,119 <> == Initial Setup Notes for 5800 Series Switches == SSH into the switch with the default user:pass = "admin:admin" '''First Change the password''', note that we are using local authentication mode, not "aaa" mode. What is aaa mode? That's for authenticating against a radius/TACACS+ server. {{{ Switch# configure terminal Switch(config)# username privilege 4 password Switch(config)# line vty 0 7 Switch(config-line)# login local Switch(config-line)# exit Switch(config)# exit }}} '''Set the time''' {{{ Switch# configure terminal Switch(config)# clock set datetime 11:30:00 10 26 2013 Switch(config)# clock set summer-time dst date 3 13 2022 02:00:00 11 6 2022 02:00:00 120 Switch(config)# exit }}} '''Configure Management IP''' {{{ Switch# configure terminal Switch(config)# management ip address 10.10.129.X/24 Switch(config)# exit Switch# show management ip address }}} '''Create VLANs''' {{{ Switch# configure terminal Switch (config)# vlan database Switch (config-vlan)# vlan 10 name Server Switch (config-vlan)# vlan 100 name Office Switch (config-vlan)# vlan 116 name Labs Switch (config-vlan)# vlan 119 name Firewalled Switch (config-vlan)# exit Switch (config)# end Switch# }}} '''Setup Management VLAN Interface''' Setup management on a vlan interface {{{ switch# configure terminal switch(config)# interface vlan 10 switch(config)# ip address 10.10.129.X/24 switch(config)# Ctrl+z Switch# show management ip address }}} '''Set the banner to show the name of the switch''' {{{ Switch# configure terminalThe // at the end of the line indicates the start of a comment: Switch# banner login # You are logged into RXSY # Switch# exit Switch# show running //validates that it worked }}} '''In the web interface''' * Configuration * Ethernet Status (Change eth-0-50 to trunk) * VLAN (Set VLANs for 10,100,116,119 as appropriate - default is 116; Make sure to change eth-0-50 default 10 allow 10,100,116,119) * Maintenance * System Configuration (file out page and save) * User Management (Add scot and vadmin; change password for admin) * Reboot/Save (save the configuration) * Network * IP Routing * IPv4 Static Route Information * New: * Destination = 0.0.0.0 * Mask = 0.0.0.0 * Nexthop = 10.10.129.1 * Distance = 1 == Common Commands and Quirks == The // at the end of the line indicates the start of a comment: === Show Port Status === {{{ Switch# show interface status //show status of all the ports Switch# show interface eth-0-49 //shows the status of eth-0-49 }}} === Show VLAN information for port === {{{ switch# show interface switchport interface eth-0-1 }}} === Backup and Restore the switch Configuration === To backup the configuration, ssh into the switch and perform the following: {{{ Switch# copy flash:/startup-config.conf mgmt-if scp://10.10.129.X/startup-config.conf }}} To download a configuration file: {{{ Switch# copy mgmt-if scp://10.10.10.163/startup-config.conf flash:/startup-config.conf }}} === LACP configuration on S5850 10 GIG Switch === {{{ Switch# configure terminal Switch(config)# port-channel 1 load-balance-mode dynamic Switch(config)# interface eth-0-47 Switch(config-if)# no shutdown Switch(config-if)# channel-group 1 mode active //active is the key word to get you LACP! Switch(config-if)# exit Switch(config)# [repeat previous 4 for each port] Switch(config)# end Switch# show channel-group summary }}} The final configuration was this: {{{ R2S2: Aggregator Name Mode Protocol Ports Purpose -----------------+---------+--------------+-----------------------------------------------------------+----------- agg1(SU) DLB LACP eth-0-47(B) eth-0-48(B) (Promise 64) agg2(SD) SLB LACP(Dynamic) eth-0-45(s) eth-0-46(s) eth-0-47(s) eth-0-48(s) (Promise 32) agg4(SU) SLB LACP(Dynamic) eth-0-8(B) eth-0-9(B) (Firewall) }}} Where agg2 is for Promise 32 and agg4 is for Promise 64. Note if load-balance-mode doesn't work, try LACP mode. === Trunk Quirk === IF you have something acting as a tagged port, then you cannot assign it as the default VLAN. Scenario: I have the firewall using tagged VLANs on the procurve: 13,14,100,116 All tagged - no default untagged VLAN assigned. On the new switch, you __cannot__ pick one of these to be the default VLAN, even though it was in the list of permitted (tagged) VLANs, it would not work. Choosing 1 (an unused VLAN) to be the default VLAN allowed it to start working again. Picky! Picky!