|
Title: First 8600 Post by: stauftm on February 24, 2010, 03:00:41 PM Hi all, let me first apologize for this very long post!
I have my first 8600 coming in next week. This will replace a stack of 5500 series switches as my core. I have been reading nortel docs, blogs and posts from this site so I can better ready myself for this new piece of hardware (this will be my first experience with an 8600). I am trying to get familiar with the cli syntax and since it is different than the 5500 series I would like to get a vote of confidence on what I'm doing. I'm basically trying to translate what I'm doing on my 5500 series to the 8600. In this scenario I have a single 8600 and I am going to MLT with an edge closet. Obviously I'll have more edge closets to do this with, but I'll just replicate this on other edge closets. -Enable IP Forwarding config ip forwarding enable -Create Vlans config vlan 34 create byport 1 name "DataVLAN" config vlan 40 create byport 1 name "VoiceVLAN" -Ip for Vlans config vlan 34 ip create 192.168.254.1/255.255.255.0 config vlan 40 ip create 192.168.253.1/255.255.255.0 -Ethernet Ports config ethernet 1/1 name mltToEdge1-47 config ethernet 1/1 perform-tagging enable config vlan 34 add port 1/1 config vlan 40 add port 1/1 config ethernet 2/1 name mltToEdge1-48 config ethernet 2/1 perform-tagging enable config vlan 34 add port 2/1 config vlan 40 add port 2/1 -Discard Untagged Frames config ethernet 1/1,2/1 untagged-frames-discard enable -MLT config mlt 1 create config mlt 1 name "EdgeCloset" config mlt 1 add ports 1/1,2/1 config mlt 1 perform-tagging enable config vlan 34 add-mlt 1 config vlan 40 add-mlt 1 -QOS Trust Ports for UpLinks config ethernet 1/1,2/1 access-diffserv false (Still not sure what this does!?) config ethernet 1/1,2/1 enable-diffserv true -DHCP Relay config vlan 34 ip dhcp enable config ip dhcp-relay create-fwd-path agent 192.168.254.1 server x.x.x.x mode bootP-dhcp state enable -Enable Rate-Limiting config sys ext-cp-limit extcplimit enable config ethernet 1/1,2/1 ext-cp-limit SoftDown threshold-util-rate 40 (From Nortel Large Campus recommendation) -Contact Info config sys set contact Name config sys set location CIS Data Center config sys set name Core-8600 -NTP Server config ntp server create a.b.c.d config ntp enable true I am still trying to figure out what I would do for the following: 1. Time Zone Setting (I'm Central Standard Time) 2. On the 5500 I would configure SNMP with a public and private community and with ipmgr I would restrict which ip's could communicate with the device. Not sure how to do this on the 8600 3. syslog, on the 5500 series i would enable logging remotely to a syslog server and log critical and serious events. Lots to digest here, but if anyone has any advice or recommendations I'm all ears! Todd Title: Re: First 8600 Post by: Michael McNamara on February 24, 2010, 04:27:34 PM That looks like a great start to me...
You might want to check out the following blog posts; How to configure SNMPv3 on a Nortel Ethernet Routing Switch (http://blog.michaelfmcnamara.com/2009/10/how-to-configure-snmp-v3-on-nortel-ethernet-routing-switches/) How to restrict SNMP community strings on the ERS8600 (http://blog.michaelfmcnamara.com/2009/10/how-to-restrict-snmp-community-strings-ers8600/) ERS8600 Access Policy (http://blog.michaelfmcnamara.com/2008/01/ers-8600-access-policy/) ERS8600 Usernames and Passwords (http://blog.michaelfmcnamara.com/2007/12/ers-8600-users-and-passwords/) ERS8600 Boot Configuration Sequence (http://blog.michaelfmcnamara.com/2008/08/ers-8600-boot-configuration-sequence/) Here are the commands for setting up a SYSLOG host; config sys syslog host 1 create config sys syslog host 1 address xxx.xxx.xxx.xxx config sys syslog host 1 host enable config sys syslog ip-header-type circuitless-ip Just be ware that in the above config I'm using the source IP address as the circuitless-ip interface? If you don't have an circuitless-ip interface configured you can just leave off that command. Good Luck! |