The FASTPATH software has two purposes:
- To assist attached hardware in switching frames, based on layer 2, 3, or 4 information contained in the frames.
- To provide a complete device management portfolio to the network administrator.
The exact functionality provided by each switch on which the FASTPATH software base runs varies depending upon the platform and requirements of the FASTPATH software.
FASTPATH software encompasses both hardware and software support. FASTPATH is partitioned to run in the following processors:
- CPU: This code runs the networking device management portfolio and controls the overall networking device hardware. It also assists in frame forwarding, as needed and specified. This code is designed to run on multiple platforms with minimal changes from platform to platform.
- Networking device processor: This code does the majority of the packet switching, usually at wire speed. This code is platform dependent, and substantial changes might exist across products.
FASTPATH provides the network administrator with a set of comprehensive management functions for managing both FASTPATH and the network. The network administrator has a choice of these easy-to-use management methods:
- VT100 interface
- Simple Network Management Protocol (SNMP)
Note - When configuring a device by use of a configuration file, the maximum number of configuration file command lines is 2000.
|
Each of the FASTPATH management methods enables the network administrator to configure, manage, and control FASTPATH locally or remotely using in-band or out-of-band mechanisms. Management is standards-based, with configuration parameters and a private management information base (MIB) providing control for functions not completely specified in the MIBs.
This chapter includes the following topics:
FASTPATH On the Sun Netra CP3240 Switch
The FASTPATH software provides the following functionality:
- L2 switching with all the ports in VLAN 1
- SNMP management
- Telnet management
- Serial management
Sun Netra CP3240 Defaults
The Sun Netra CP3240 switches come configured with a default configuration. This configuration boots the board to Layer 2 switching. This configuration is very basic and should be updated for your environment. The default settings are:
- Switch is configured with all ports enabled, set to auto-negotiate, MTU of 1518, and MAC switching mode in layer 2
- All ports are in VLAN 1
- DHCP client is enabled on the Out-of-band management port.
- Telnet access enabled
- SNMP read only community “public”
- SNMP read write community “private”
Note - SNMPv3 traps are not supported on the Sun Netra CP3240 switches.
|
The Spanning Tree Protocol (STP) and Secure Shell (SSH) are not enabled in the default configuration.
Note - The Sun Netra CP3240 switch supports SSH for a secure CLI console but cannot generate its own keys. Keys must be generated on an external PC and uploaded to the Sun Netra CP3240 via TFTP. Once the keys are on the Sun Netra CP3240, SSH must be enabled to be used.
|
Protocol, RFC, and MIB Support
FASTPATH software provides support for the following protocols, RFCs, and MIBs.
Switching
- IEEE 802.3ac - VLAN Tagging
- IEEE 802.3ad - Link Aggregation
- IEEE 802.1S - Multiple Spanning Tree (MSTP)
- IEEE 802.1W - Rapid Spanning Tree (RSTP)
- IEEE 802.1D - Spanning Tree (STP)
- GARP - Generic Attribute Registration Protocol
- GMRP - Dynamic L2 Multicast Registration
- GVRP - Dynamic VLAN Registration
- IEEE 802.1Q - Virtual LANs with Port based VLANs
- IEEE 802.1v - Protocol-based VLANs
- IEEE 802.1p - Ethernet Priority with User Provisioning & Mapping
- IEEE 802.1X - Port Based Authentication
- IEEE 802.3x - Flow Control
Advanced Layer 2 Functionality
- Broadcast Storm Recovery
- Double VLAN/vMAN Tagging (Q-in-Q)
- IGMP Snooping
- Independent VLAN Learning (IVL) support
- IPv6 Classification APIs
- Jumbo Ethernet Frames
- Port Mirroring
- Static MAC Filtering
System Facilities
- Event and Error Logging Facility
- Run-time and Configuration Download Capability
- PING Utility
- XMODEM, YMODEM, & ZMODEM
- RFC 768 - UDP
- RFC 783 - TFTP
- RFC 791 - IP
- RFC 792 - ICMP
- RFC 793 - TCP
- RFC 826 - ARP
- RFC 951 - BootP
- RFC 1321 - Message Digest Algorithm
- RFC 1534 - Interoperation between BootP and DHCP
- RFC 2131 - DHCP Client/Server
- RFC 2132 - DHCP Options and BootP Vendor Extensions
- RFC 2865 - RADIUS Client
- RFC 2866 - RADIUS Accounting
- RFC 2868 - RADIUS Attributes for Tunnel Protocol
- RFC 2869 - RADIUS Extensions
- RFC2869bis- RADIUS Support for Extensible Authentication Protocol (EAP)
- RFC 3580 - 802.lX RADIUS Usage Guidelines
Switching MIBs
- RFC 1213 - MIB-II
- RFC 1493 - Bridge MIB
- RFC 1643 - Ethernet-like MIB
- RFC 2674 - VLAN MIB
- RFC 2618 - RADIUS Authentication Client MIB
- RFC 2620 - RADIUS Accounting MIB
- RFC 2737 - Entity MIB version 2
- RFC 2819 - RMON Groups 1,2,3, & 9
- IEEE 802.1X (IEEE 802.1-PAE-MIB)
- FASTPATH Enterprise MIB
Routing
- RFC 826 - Ethernet ARP
- RFC 894 - Transmission of IP Datagrams over Ethernet Networks
- RFC 896 - Congestion Control in IP/TCP Networks
- RFC 1058 - RIP v1
- RFC 1256 - ICMP Router Discovery Messages
- RFC 1321 - Message Digest Algorithm
- RFC 1519 - CIDR
- RFC 1583 - OSPF v2
- RFC 1723 - RIP v2
- RFC 1765 - OSPF Database Overview
- RFC 1812 - Requirements for IP Version 4 Routers
- RFC 2082 - RIP-2 MD5 Authentication
- RFC 2328 - OSPF v2 w/ Equal Cost Multipath
- RFC 2338 - VRRP
- RFC 2453 - RIP v2
- RFC 3046 - DHCP/BootP Relay
- RFC 3101 - OSPF “Not So Stubby Area” (NSSA) Option Route Redistribution across RIP, OSPF, and BGP
Routing MIBS
- RFC 1724 - RIP v2 MIB Extension
- RFC 1850 - OSPF MIB
- RFC 2233 - The Interfaces Group MIN using SMI v2
- RFC 2787 - VRRP MIB
Quality of Service (QOS)
Differentiated Services (DiffServ)
- RFC 2474 - Definition of Differentiated Services Field (DS Field) in the IPv4 and IPv6 Headers
- RFC 2475 - An Architecture for Differentiated Services
- RFC 2597 - Assured Forwarding PHB Group
- RFC 3246 - An Expedited Forwarding PHB (Per-Hop Behavior)
- RFC 3260 - New Terminology and Clarifications for DiffServ
Access Control List (ACLs)
Permit/Deny actions for Inbound or Outbound traffic classification based on:
- Type of Service (ToS) or Differentiated Services DSCP
- Source IP Address
- Destination IP Address
- TCP/UDP Source Port
- TCP/UDP Destination Port
- IP Protocol Number
QoS MIBS
- RFC 3289 - Management Information Base for the Differentiated Services Architecture
- MIBs for full configuration of DiffServ, ACL and Bandwidth Provisioning functionality
Management
- RFC 854 - Telnet
- RFC 855 - Telnet Option
- RFC 1155 - SMI v1
- RFC 1157 - SNMP
- RFC 1212 - Concise MIB Definitions
- RFC 1867 - HTML/2.0 Forms with file upload extensions
- RFC 1901 - Community based SNMP v2
- RFC 1905 - Protocol Operations for SNMP v2
- RFC 1906 - Transport Mappings for SNMP v2
- RFC 1907 - Management Information Base for SNMP v2
- RFC 1908 - Coexistence between SNMP v1 and SNMP v2
- RFC 2068 - HTTP/1.1 protocol as updated by draft-ietf-http-v11-rev-03
- RFC 2271 - SNMP Framework MIB
- RFC 2295 - Transparent Content Negotiation
- RFC 2296 - Remote Variant Selection; RSVA/1.0 State Management “cookies” - draft-ietf-http-state-mgmt-05
- RFC 2570 - Introduction to SNMP v3
- RFC 2571 - Architecture for Describing SNMP Management Frameworks
- RFC 2572 - Message Processing and Dispatching for SNMP
- RFC 2573 - SNMP v3 Applications
- RFC 2574 - User Based Security Model for SNMP v3
- RFC 2575 - View based Access Control Model for SNMP
- RFC 2576 0 Coexistence between SNMP v1, V2, and v3
- RFC 2578 - SMI v2
- RFC 2579 - Textual Conventions for SMI v2
- RFC 2580 - Conformance statements for SMI v2 Configurable Management VLAN
- SSL 3.0 and TLS 1.0
- RFC 2246 - The TLS Protocol, Version 1.0
- RFC 2818 - HTTP over TLS
- RFC 2346 - AES Ciphersuites for Transport Layer Security
- SSH 1.5 and 2.0
- Draft-ietf-secsh-transport-16 - SSH Transport Layer Protocol
- Draft-ietf-secsh-userauth-17 - SSH Authentication Protocol
- Draft-ietf-secsh-connect-14 - SSH Protocol Architecture
- Draft-ietf-secsh-publickeyfile-03 - SECSH Public Key File Format
- Draft-ietf-sech-dh-group-exhange-04 - Diffie-Hellman Group Exchange for the SSH Transport Layer Protocol
- HTML 4.0 Specification - December, 1997
- Java and Java Script 1.3
Other
- Industry standard CLI
- scripting capability
- command completion
- context sensitive help
- User password encryption
- Multi-session Telnet Server
Sun Netra CP3240 Switch Software Reference Manual
|
820-3253-12
|
|
Copyright © 2009 Sun Microsystems, Inc. All rights reserved.