Change History

Course Code Product Product Version Course Issue No.

ODE303204 CE switches V100R003 1.00

Developer/Reviser Date Reviewed By New/Updated

Chenbin 2015/6/ Fengbangcheng New
Practice Guide for Configuring the VirtualSystem
Feature on CE Switches
 Practice Guide for Configuring the TRILL Feature on CE Switches INTERNAL

Contents

1. Lab Environment ...................................................................................................................... 4

1.1 About This Course ............................................................................................................................................ 4
1.2 Experimental Network ..................................................................................................................................... 4
1.3 Device Information .......................................................................................................................................... 4

2. Basic TRILL Configuration..................................................................................................... 5

2.1 Objectives......................................................................................................................................................... 5
2.2 Networking and Service Description ............................................................................................................... 5
2.3 Configuration Roadmap ................................................................................................................................... 5
2.4 Configuration Procedures (Task 1: Basic TRILL Configuration) .................................................................... 6
2.4.1 Enabling the TRILL Function and Configuring the Carrier VLAN and CE VLAN 错误!未定义书签。
2.4.2 Enabling the TRILL Function on Interfaces and Configuring the Link Type of Each Interface .. 错误!未
定义书签。
2.4.3 Configuring the Nickname, TRILL-name, and NET of Each Switch ...................... 错误!未定义书签。
2.4.4 Verifying the Configurations .................................................................................... 错误!未定义书签。
2.5 Configuration Procedures (Task 2: Route Selection Control) ........................................................................ 10
2.5.1 Configuring DVLANs to Specify Different Carrier VLANs for Links.................... 错误!未定义书签。
2.5.2 Controlling Route Selection by Changing the Maximum Number of Routes for Load Balancing .. 错误!
未定义书签。
2.5.3 Controlling Route Selection by Changing the Link Cost ......................................... 错误!未定义书签。
2.6 Configuration Procedures (Task 3: TRILL Security Authentication) ................................ 错误!未定义书签。
2.6.1 Configuring TRILL Packet Authentication .............................................................. 错误!未定义书签。
2.6.2 Configuring TRILL Interface Authentication .......................................................... 错误!未定义书签。
2.7 Checking Network Connectivity ....................................................................................... 错误!未定义书签。
2.7.1 Testing the Connectivity Between Server1 and Server3 .......................................... 错误!未定义书签。
2.7.2 (Optional) Testing the Multicast Function Between Server1 and Server3 ............................................ 10
2.8 Configuration Reference ................................................................................................................................ 10
2.8.1 RB1 Configuration ................................................................................................................................ 10
2.8.2 RB2 Configuration ................................................................................................... 错误!未定义书签。
2.8.3 RB3 Configuration ................................................................................................... 错误!未定义书签。
2.8.4 RB4 Configuration ................................................................................................... 错误!未定义书签。

2015-06-09 Huawei confidential. No spreading without permission. Page 2 of 11

 Practice Guide for Configuring the TRILL Feature on CE Switches INTERNAL

Figures
Figure 1-1 Experimental network .......................................................................................................................... 4
Figure 2-1 Networking diagram of TRILL configuration ..................................................................................... 5

2015-06-09 Huawei confidential. No spreading without permission. Page 3 of 11

 Practice Guide for Configuring the TRILL Feature on CE Switches INTERNAL

1. Lab Environment

1.1 About This Course

This practice guide describes the configurations of the VirtualSystem (VS) feature on Huawei CloudEngine
(CE) series switches. It includes the following experiments:
 Basic VS configuration
 VS Resources Allocation configuration
 VS Maintenance

1.2 Experimental Network

Experimental network

Internet

Layer 3 service L3 VS
Such as OSPF and VRRP Layer 2 service
L2 VS Such as VLAN and LACP

L2 network L2 network

1.3 Device Information

Device list

Device Name Device Type Version Information Remarks

SwitchA CE12804 V100R003C00SPC500

2015-06-09 Huawei confidential. No spreading without permission. Page 4 of 11

 Practice Guide for Configuring the TRILL Feature on CE Switches INTERNAL

2. Basic VS Configuration

2.1 Objectives
Upon completion of this experiment, you will be able to:
 Configure the VS feature on CE switches.
 Configure VS Resources Allocation on CE switches.
 Maintaining VS on CE switches.

2.2 Networking and Service Description

Networking diagram of VS configuration

Internet

Layer 3 service L3 VS
Such as OSPF and VRRP Layer 2 service
L2 VS Such as VLAN and LACP

L2 network L2 network

On the network, all services need to be processed by the MBs of the PS. In such a case, when a service
failure on the PS causes a failure of the PS, other services running on the PS cannot be properly forwarded.
To prevent this problem, users require that Layer 2 and Layer 3 services deployed on the PS be isolated
from each other to improve network security.
Task 1: Create VS 1 and VS 2, and allocate physical interfaces and logical resources to them
Task 2: Configure management IP addresses and management accounts for VSs to facilitate VS
management.
Task 3: Maintaining a VS.
Task 4: Creating a Logical Resource Template(optional)

2.3 Configuration Roadmap

1. Create VS 1 and VS 2, and allocate physical interfaces and logical resources to them.
2. Configure management IP addresses and management accounts for VSs to facilitate VS management.
3. Maintaining a VS: saving vs configuration/restarting a vs/shutting down a vs/deleting a vs
4. Creating a Logical Resource Template(optional)

2015-06-09 Huawei confidential. No spreading without permission. Page 5 of 11

 Practice Guide for Configuring the TRILL Feature on CE Switches INTERNAL

2.4 Configuration Procedures (Task 1: Basic VS Configuration)

2.4.1 Create VSs and allocate resources to them
Create VS 1, configure the interface assignment mode for VS 1 as group, and configure VS 1 to use the
default logical resource specifications. Assign physical interfaces 10GE1/0/0 to 10G1/0/23 to VS 1.
<HUAWEI> system-view
[~HUAWEI] sysname SwitchA
[*HUAWEI] commit
[~SwitchA] admin
[~SwitchA-admin] virtual-system vs1
[*SwitchA-admin-vs:vs1] port-mode group
[*SwitchA-admin-vs:vs1] assign interface 10GE 1/0/0
Warning: All configurations of the interfaces will be deleted. All interfaces of the same group will
be assigned. Continue? [Y/N]: y
[*SwitchA-admin-vs:vs1] quit
[*SwitchA-admin] commit

Create VS 2, configure the interface assignment mode for VS 2 as group, and configure VS 2 to use the
default logical resource specifications. Assign physical interfaces 10GE1/0/24 to 10GE1/0/47 to VS 2
[~SwitchA-admin] virtual-system vs2
[*SwitchA-admin-vs:vs2] port-mode group
[*SwitchA-admin-vs:vs2] assign interface 10GE 1/0/24
Warning: All configurations of the interfaces will be deleted. All interfaces of the same group will
be assigned. Continue? [Y/N]: y
[*SwitchA-admin-vs:vs2] quit
[*SwitchA-admin] commit

NOTE：
Before assigning physical interfaces to a VS in port group mode, run the display device port-map [ slot
slot-id ] command in the user view or system view to view the mapping between forwarding chips and
interfaces to learn which interfaces will be assigned to the VS.

2.4.2 Verify the configuration.

Check detailed information about VS 1.
[~SwitchA-admin] display virtual-system name vs1 verbose
Name : vs1
Status : running
Description :
Create time : 2013-07-18 09:32:01
Port mode : group
System MAC : 000a-0b0c-0d04
Assigned slot(s)
pvmb : 9
pvmb : 10
CPU(s)
slot 9 : 0%
slot 10 : 0%
Memory(s)
slot 9 : 5%, 202632/3884636 (Used Kbytes/Max Kbytes)
slot 10 : 2%, 202628/8021592 (Used Kbytes/Max Kbytes)
Assigned interface(s)

2015-06-09 Huawei confidential. No spreading without permission. Page 6 of 11

 Practice Guide for Configuring the TRILL Feature on CE Switches INTERNAL

10GE1/0/0, slot 1
10GE1/0/1, slot 1
10GE1/0/2, slot 1
10GE1/0/3, slot 1
10GE1/0/4, slot 1
10GE1/0/5, slot 1
10GE1/0/6, slot 1
10GE1/0/7, slot 1
10GE1/0/8, slot 1
10GE1/0/9, slot 1
10GE1/0/10, slot 1
10GE1/0/11, slot 1
10GE1/0/12, slot 1
10GE1/0/13, slot 1
10GE1/0/14, slot 1
10GE1/0/15, slot 1
10GE1/0/16, slot 1
10GE1/0/17, slot 1
10GE1/0/18, slot 1
10GE1/0/19, slot 1
10GE1/0/20, slot 1
10GE1/0/21, slot 1
10GE1/0/22, slot 1
10GE1/0/23, slot 1
Assigned resource(s)
u4route : 60000(Max)
m4route : 1000(Max)
u6route : 16000(Max)
m6route : 100(Max)
vlan : 4063(Max)
vpn-instance : 4096(Max)
cpu : 5(weight)
memory : 100(ratio-threshold)
mpls : enable
trill : enable
mcast : enable

Check detailed information about VS 2

[~SwitchA-admin] display virtual-system name vs2 verbose
Name : vs2
Status : running
Description :
Create time : 2013-07-18 09:34:22
Port mode : group
System MAC : 000a-0b0c-0d05
Assigned slot(s)
pvmb : 9
pvmb : 10
CPU(s)
slot 9 : 0%
slot 10 : 0%
Memory(s)
slot 9 : 5%, 202632/3884636 (Used Kbytes/Max Kbytes)
slot 10 : 2%, 201272/8021592 (Used Kbytes/Max Kbytes)
Assigned interface(s)

2015-06-09 Huawei confidential. No spreading without permission. Page 7 of 11

 Practice Guide for Configuring the TRILL Feature on CE Switches INTERNAL

10GE1/0/24, slot 1
10GE1/0/25, slot 1
10GE1/0/26, slot 1
10GE1/0/27, slot 1
10GE1/0/28, slot 1
10GE1/0/29, slot 1
10GE1/0/30, slot 1
10GE1/0/31, slot 1
10GE1/0/32, slot 1
10GE1/0/33, slot 1
10GE1/0/34, slot 1
10GE1/0/35, slot 1
10GE1/0/36, slot 1
10GE1/0/37, slot 1
10GE1/0/38, slot 1
10GE1/0/39, slot 1
10GE1/0/40, slot 1
10GE1/0/41, slot 1
10GE1/0/42, slot 1
10GE1/0/43, slot 1
10GE1/0/44, slot 1
10GE1/0/45, slot 1
10GE1/0/46, slot 1
10GE1/0/47, slot 1
Assigned resource(s)
u4route : 60000(Max)
m4route : 1000(Max)
u6route : 16000(Max)
m6route : 100(Max)
vlan : 4063(Max)
vpn-instance : 4096(Max)
cpu : 5(weight)
memory : 100(ratio-threshold)
mpls : enable
trill : enable
mcast : enable

2.5 Configuration Procedures.( Task 2: Configure management IP

addresses and management accounts for VSs)
Switch from the Admin-VS to VS 1 and configure a management IP address and management account for
VS 1. Switch from the Admin-VS to VS 2 and configure a management IP address and management
account for VS 2
<SwitchA> switch virtual-system vs1
<SwitchA-vs1> system-view
[~SwitchA-vs1] interface MEth 0/0/0
[~SwitchA-vs1-MEth0/0/0] ip address 10.1.1.10 24
[*SwitchA-vs1-MEth0/0/0] quit
[*SwitchA-vs1] user-interface vty 0 4
[*SwitchA-vs1-vty0-4] authentication-mode aaa
[*SwitchA-vs1-vty0-4] user privilege level 15
[*SwitchA-vs1-vty0-4] quit
[*SwitchA-vs1] aaa

2015-06-09 Huawei confidential. No spreading without permission. Page 8 of 11

 Practice Guide for Configuring the TRILL Feature on CE Switches INTERNAL

[*SwitchA-vs1-aaa] local-user vs1_user password irreversible-cipher VS1_password

[*SwitchA-vs1-aaa] local-user vs1_user service-type telnet
[*SwitchA-vs1-aaa] local-user vs1_user level 3
[*SwitchA-vs1-aaa] quit
[*SwitchA-vs1] undo telnet server disable
[*SwitchA-vs1] commit

<SwitchA> switch virtual-system vs2

<SwitchA-vs2> system-view
[~SwitchA-vs2] interface MEth 0/0/0
[~SwitchA-vs2-MEth0/0/0] ip address 10.1.2.10 24
[*SwitchA-vs2-MEth0/0/0] quit
[*SwitchA-vs1] user-interface vty 0 4
[*SwitchA-vs2-vty0-4] authentication-mode aaa
[*SwitchA-vs2-vty0-4] user privilege level 15
[*SwitchA-vs2-vty0-4] quit
[*SwitchA-vs2] aaa
[*SwitchA-vs2-aaa] local-user vs1_user password irreversible-cipher VS2_password
[*SwitchA-vs2-aaa] local-user vs1_user service-type telnet
[*SwitchA-vs2-aaa] local-user vs1_user level 3
[*SwitchA-vs2-aaa] quit
[*SwitchA-vs2] undo telnet server disable
[*SwitchA-vs2] commit

2.5.1 Log in to the VSs through a client to verify the configurations.

Use the configured IP address, user name, and password to log in to the VSs through Telnet. Use the PC as
an example to log in to the VSs.
C:\Documents and Settings\Administrator> telnet 10.1.1.10

Press Enter, and enter the configured user name and password in the login window. If authentication is
successful, the command-line prompt of the user view is displayed, the user has successfully logged in to
the VS.
Username:vs1_user
Password:
Warning: Please change the original password.
The password needs to be changed. Change now? [Y/N]: n
Info: The max number of VTY users is 5, the number of current VTY users online is 1, and total number
of terminal users online is 1.
The current login time is 2015-05-22 19:06:41.
First login successfully.
<vs1>

Use the configured IP address, user name, and password to log in to the VSs through Telnet. Use the PC as
an example to log in to the VSs.
C:\Documents and Settings\Administrator> telnet 10.1.2.10

Press Enter, and enter the configured user name and password in the login window. If authentication is
successful, the command-line prompt of the user view is displayed, the user has successfully logged in to
the VS.
Username:vs2_user
Password:
Warning: Please change the original password.
The password needs to be changed. Change now? [Y/N]: n

2015-06-09 Huawei confidential. No spreading without permission. Page 9 of 11

 Practice Guide for Configuring the TRILL Feature on CE Switches INTERNAL

Info: The max number of VTY users is 5, the number of current VTY users online is 1, and total number
of terminal users online is 1.
The current login time is 2015-05-22 19:06:41.
First login successfully.
<vs2>

2.6 Configuration Procedures (Task 3: Maintaining a VS)

2.6.1 Saving VS Configurations
A VS has independent configuration files as the PS does. When the VS is restarted or shut down,
configurations on the VS may be lost. To prevent this situation, save the configurations after services are
configured.
The PS administrator can run commands in the Admin-VS to save configurations of all VSs, but the VS
administrator can only save configurations of the local VS.
<switchA> save all virtual-systems

<SwitchA> switch virtual-system vs1

2.6.2 Restarting a VS
sdsd

2.6.3 Shutting Down a VS

Flags: D-Downloaded

2.6.4 Deleting a VS
sdad

2.7 Configuration Procedures (Task 4: Creating a Logical Resource

Template)(Optional)
Test whether Server3 can receive the multicast data sent by Server1. Check the multicast routing tables on
the switches. Analyze the establishment of the multicast distribution tree.

2.8 Configuration Reference

2.8.1 SwitchA Configuration

2015-06-09 Huawei confidential. No spreading without permission. Page 10 of 11