Login
- Table of Contents
-
- H3C S3600 Series Ethernet Switches Command Manual-Release 1510(V1.04)
- 00-1Cover
- 01-CLI Command
- 02-Login Command
- 03-Configuration File Management Command
- 04-VLAN Command
- 05-IP Address and Performance Configuration Command
- 06-Management VLAN Command
- 07-Voice VLAN Command
- 08-GVRP Command
- 09-Port Basic Configuration Command
- 10-Link Aggregation Command
- 11-Port Isolation Command
- 12-Port Security-Port Binding Command
- 13-DLDP Command
- 14-MAC Address Table Command
- 15-Auto Detect Command
- 16-MSTP Command
- 17-Routing Protocol Command
- 18-Multicast Command
- 19-802.1x Command
- 20-AAA-RADIUS-HWTACACS-EAD Command
- 21-VRRP Command
- 22-Centralized MAC Address Authentication Command
- 23-ARP Command
- 24-DHCP Command
- 25-ACL Command
- 26-QoS-QoS Profile Command
- 27-Web Cache Redirection Command
- 28-Mirroring Command
- 29-IRF Fabric Command
- 30-Cluster Command
- 31-PoE-PoE Profile Command
- 32-UDP Helper Command
- 33-SNMP-RMON Command
- 34-NTP Command
- 35-SSH Terminal Service Command
- 36-File System Management Command
- 37-FTP and TFTP Command
- 38-Information Center Command
- 39-System Maintenance and Debugging Command
- 40-VLAN-VPN Command
- 41-HWPing Command
- 42-DNS Command
- 43-Access Management Command
- 44-Appendix
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 40-VLAN-VPN Command | 56 KB |
Chapter 1 VLAN-VPN Configuration Commands
1.1 VLAN-VPN Configuration Commands
1.1.3 vlan-vpn inner-cos-trust
Chapter 2 BPDU Tunnel Configuration Commands
2.1 BPDU TUNNEL Configuration Commands
Chapter 1 VLAN-VPN Configuration Commands
1.1 VLAN-VPN Configuration Commands
1.1.1 display port vlan-vpn
Syntax
display port vlan-vpn
View
Any view
Parameter
None
Description
Use the display port vlan-vpn command to display the information about VLAN VPN configuration of the current system, including current TPID value, VLAN-VPN ports, and whether or not the inner VLAN tag priority replication function is enabled.
Example
# Display the VLAN-VPN configuration of the current system.
<H3C> display port vlan-vpn
Ethernet1/0/1
VLAN-VPN TPID: 8100
Ethernet1/0/2
VLAN-VPN status: enabled
VLAN-VPN VLAN: 1
VLAN-VPN inner-cos-trust status: disable
VLAN-VPN TPID: 8100
Ethernet1/0/3
VLAN-VPN TPID: 8100
Ethernet1/0/4
VLAN-VPN TPID: 8100
(Omitted)
1.1.2 vlan-vpn enable
Syntax
vlan-vpn enable
undo vlan-vpn
View
Ethernet port view
Parameter
None
Description
Use the vlan-vpn enable command to enable the VLAN-VPN function for a port.
Use the undo vlan-vpn command to disable the VLAN-VPN function for a port.
By default, the VLAN-VPN function is disabled.
With the VLAN VPN function enabled, a received packet is tagged with the default VLAN tag of the receiving port no matter whether or not the packet already carries a VLAN tag. If the packet already carries a VLAN tag, the packet becomes a dual-tagged packet. Otherwise, the packet becomes a packet carrying the default VLAN tag of the port.
Caution:
l The VLAN-VPN function is unavailable if the port has any of the protocols among GARP VLAN registration protocol (GVRP), GARP multicast registration protocol (GMRP), spanning tree protocol (STP), intelligent resilient framework (IRF), neighbor topology discovery protocol (NTDP) , 802.1x and centralized MAC address authentication function enabled.
l After you enable the VLAN-VPN function for a port, you cannot change the attribute of the port to trunk or hybrid, or enable GVRP, GMRP, STP, IRF, NTDP, 802.1x and centralized MAC address authentication function for the port.
l If there is a port enabled with fabric function on a device, you cannot enable VLAN-VPN function for this port or for any other port on this device.
Example
# Enable the VLAN-VPN function for Ethernet1/0/1 port.
<H3C> system-view
System View: return to User View with Ctrl+Z.
[H3C]interface Ethernet 1/0/1
[H3C-Ethernet1/0/1] vlan-vpn enable
1.1.3 vlan-vpn inner-cos-trust
Syntax
vlan-vpn inner-cos-trust enable
undo vlan-vpn inner-cos-trust
View
Parameter
None
Description
Use the vlan-vpn inner-cos-trust enable command to enable the inner tag priority replication function.
Use the undo vlan-vpn inner-cos-trust command to disable the inner tag priority replication function.
By default, the inner tag priority replication function is disabled.
Example
# Enable the inner tag priority replication function for the Ethernet 1/0/2 port.
<H3C> system-view
System View: return to User View with Ctrl+Z.
[H3C] interface Ethernet 1/0/2
[H3C-Ethernet1/0/2] vlan-vpn inner-cos-trust enable
1.1.4 vlan-vpn tpid
Syntax
vlan-vpn tpid value
undo vlan-vpn tpid
View
Ethernet port view
Parameter
value: User-defined TPID value (in hexadecimal format), in the range 1 to 0xFFFF.
Description
Use the vlan-vpn tpid command to set a TPID value for a port.
Use the undo vlan-vpn tpid command to restore the default TPID value.
The default TPID value is 0x8100.
The position of the TPID field in an Ethernet packet is the same as the position of the protocol type field in a packet without VLAN Tag. Thus, to avoid confusion happening when the switch forwards or receives a packet, do not configure the protocol type values listed in Table 1-1 as the TPID value.
Table 1-1 Common Ethernet frame protocol type values
|
Protocol type |
Value |
|
ARP |
0x0806 |
|
IP |
0x0800 |
|
MPLS |
0x8847/0x8848 |
|
IPX |
0x8137 |
|
IS-IS |
0x8000 |
|
LACP |
0x8809 |
|
802.1x |
0x888E |
Example
# Set the TPID value to 0x12 for Ethernet1/0/2 port.
<H3C> system-view
System View: return to User View with Ctrl+Z.
[H3C] interface Ethernet 1/0/2
[H3C-Ethernet1/0/2] vlan-vpn tpid 12
Chapter 2 BPDU Tunnel Configuration Commands
2.1 BPDU TUNNEL Configuration Commands
2.1.1 bpdu-tunnel
Syntax
bpdu-tunnel { lacp | ndp | cdp | vtp }
undo bpdu-tunnel { lacp | ndp | cdp | vtp | all }
View
Ethernet port view
Parameter
lacp: Enables/Disables BPDU Tunnel function for LACP (link aggregation control protocol) packets.
ndp: Enables/Disables BPDU Tunnel function for NDP (neighbor discovery protocol) packets.
cdp: Enables/Disables BPDU Tunnel function for CDP (Cisco discovery protocol) packets.
vtp: Enables/Disables BPDU Tunnel function for VTP (virtual terminal protocol) packets.
all: Disables the BPDU Tunnel function for the packets of all the above-mentioned protocols.
Description
Use the bpdu-tunnel command to enable the BPDU Tunnel function for the packets of a specific protocol. You can enable the function for the packets of these protocols: LACP, NDP, CDP, and VTP.
Use the undo bpdu-tunnel command to disable the BPDU Tunnel function for the packets of a specified protocol or all the above-mentioned protocols.
Caution:
l If you enable the BPDU Tunnel function for packets of a protocol on a port, don’t enable the protocol on port. For example, with the bpdu-tunnel lacp command executed, do not execute the lacp enable command on the same port.
l To ensure BPDU packets travel across a tunnel properly, specify the same keyword for the bpdu-tunnel command when executing the command on the both sides of the tunnel.
l The BPDU Tunnel function is unavailable to all the ports of a device if a port of the device has the fabric function enabled.
Example
# Enable the BPDU Tunnel function for LACP packets.
<H3C> system-view
System View: return to User View with Ctrl+Z.
[H3C-Ethernet1/0/1] bpdu-tunnel lacp
2.1.2 bpdu-tunnel uplink
Syntax
bpdu-tunnel uplink [ interface interface-list ]
View
System view, Ethernet port view
Parameter
interface interface-list: Specifies lists of Ethernet ports. To specify multiple Ethernet ports, you need to provide the interface-list argument in the form of interface-list = { interface-type interface-number [ to interface-type interface-number ] }&<1-10>, where &<1-10> means that you can specify up to ten port indexes/port index lists at one time. This argument is unavailable in Ethernet port view.
Description
Use the bpdu-tunnel uplink command to configure an Ethernet port or multiple Ethernet ports as uplink BPDU Tunnel ports. A device listens to its uplink BPDU Tunnel ports and picks out the Layer 2 protocol packets that reach the ports.
Example
# Configure Ethernet1/0/1 through Ethernet1/0/5 ports as uplink BPDU Tunnel ports.
<H3C> system-view
System View: return to User View with Ctrl+Z.
[H3C] bpdu-tunnel uplink Ethernet 1/0/1 to Ethernet 1/0/5
