12-39
User
Guide

for

the

Cisco

Application

Networking

Manager

5.2
OL-26572-01
Chapter
12






Configuring

Network

Access
Configuring
Port-Channel

Interfaces

for

the

ACE

Appliance
The
following

example

illustrates

the

CLI

commands

used

to

configure

a

port

channel

interface

for

the
Catalyst
6500

Series

switch:
Switch(config)#
port-channel

load-balance

src-dst-port
Switch(config)#
interface

port-channel

1
Switch(config-if)#
description

For

Connection

with

ACE

Appliance
Switch(config-if)#
switchport
Switch(config-if)#
switchport

mode

trunk
Switch(config-if)#
switchport

trunk

encapsulation

dot1q
Switch(config-if)#
switchport

trunk

native

vlan

10
Switch(config-if)#
switchport

trunk

allowed

vlan

10,20,30,31,

40,50
Switch(config-if)#
switchport

nonegotiate
Switch(config-if)#
mls

qos

trust

cos
After
you

configure

t

he

port

channel

on

the

Catalyst

6500

Series

switch,

you

can

then

add

i

t

t

o

the
configuration
of

the

four

interfaces

as

described

in

the

“Adding

Interfaces

to

the

Port

Channel”

section
on
page

12-39 .
Note
The
ACE

appliance
does
not

support

Por

t

Aggregation

Protocol

(PAgP)

or
Link
Aggregate

Control
Protocol
(LACP)

so

the

por

t-channel

i

nterface

i

s

configured

usi

ng

mode

on.
Adding
Interfaces

to

the

Port

Channel
The
following

example

illustrates

the

CLI

commands

used

to

configure

the

four

switch

ports

3/9

through
3/12
as

members

of

t

he

port

channel

on

t

he

Catalyst

6500

Ser

ies

switch:
Switch(config-if)#
int

range

Gig

3/9

-

12
Switch(config-if-range)#
channel-group

1

mode

on
Switch(config-if-range)#
speed

1000
Switch(config-if-range)#
spanning-tree

portfast

trunk
Switch(config-if-range)#
no

shut
On
the

ACE

appliance,

you

can

configure

the

Ethernet

port

speed

for

a

setting

of

10,

100,

or

1000

Mbps
by
configuring

the

Speed

field

for

a

Gigabit

Ethernet

physical

interface

attributes

(see

Ta

b

l

e


12-5 ).

The
default
for

the

ACE

appliance

is

the

auto-negotiate

interface

speed.

We

recommend

that

you

configure
the
speed

to

1000

on

both

the

Catalyst

6500

Series

switch

and

the

ACE

appliance

to

avoid

relying

on
auto
negotiation

of

the

interface

speed.

A

speed

setting

of

1000

helps

to

avoid

the

possibility

of

the
interface
operating

below

the

expected

Gigabit

speed

and

ensures

that

the

port-channel

interface

reaches
the
maximum

4

Gbps

throughput.
The
ACE

appliance

does

not

implement

Spanning-Tree

protocol

and

does

not

take

part

in

Spanning-Tree
root
bridge

election

process.

PortFast

is

configured

on

the

Catalyst

6500

Series

switch

to

reduce

the

time
required
for

spanning

tree

to

allow

traffic

on

the

port

connected

to

the

ACE

interface

by

immediately
moving
to

the

forwarding

state,

bypassing

the

block,

listening,

and

learning

states.

The

average

time

for
switch
por

t

moving

i

nto

a

for

ward

st

ate

is

approximately

30

se

conds.

Using

PortFast

reduces

t

his

time
to
approximately

5

seconds.
Note
In
virtual
partitions

operating
in
bridge
mode,
the

ACE

offers

an
option

to

bridge

Spanning-Tree

BPDUs
between
two

VLANs

to

prevent

the

possibility

of

a

loop.

Such

a

loop

may

occur

when

two

partitions
actively
forward

traffic.

This

should

not

happen

during

normal

operation;

however,

the

option

to

bridge
BPDUs
provides

a

safeguard

against

this

condition.

Upon

detecting

BPDUs,

the

switch

connected

to

the
ACE
appliance

immediately

blocks

the

por

t/VLAN

fr

om

which

the

loop

ori

ginated

from.

We
recommend
that

you

configure

an

ethertype

ACL

that

includes

the

BPDU

protocol

and

apply

the

ACL
to
Layer

2

interfaces

in

bridge

mode.