Comware Based
cancel
Showing results for 
Search instead for 
Did you mean: 

hp5700 management port and trunking

einjen
Occasional Visitor

hp5700 management port and trunking

Hello.

 

I've given the management port 0/0/0 an ip address

and I can ping it.

also, the web interface shows up when setting my browser to that address.

 

BUT: I'm not able to log in.

 

How do I configure a user and its access so that he/she may telnet/ssh/http?

There is also a "verify code" on the web login page for the switch. what does that mean?

 

 

alos: how may I configure trunking of two sfp+ links between the 5700 and a procurve 2910?

2 REPLIES
Oliver Wehrli
Valued Contributor

Re: hp5700 management port and trunking

Hi,

 

Let me first remind you, that you have access to all HP Networking product documentation through the HPN Support Lookup tool: https://h10145.www1.hpe.com/support/SupportLookUp.aspx

 

Enter the name and/or product number and search for the related documentation.

 

Essentially in a few steps:

  1. Configure a local user
    local-user USERNAME                                  #replace USERNAME with your user
     password simple YOURPASS                            #set your password here
     service-type ssh terminal https                     #define what services this user is allowed to use, https allows for web-interface access.
     authorization-attribute user-role network-admin     #define the user-role for this local user
  2. Configure user-lines like this:
    line vty 0 15
     authentication-mode scheme   #requires username/password, either local or RADIUS/TACACS. You could use a password only here.
     user-role network-admin      #defines the role of a user dialing in on these lines
     protocol inbound ssh         #defines the protocol, which is required to login

With this you should be able to login remotely through the IP configured on the management interface through SSH.

 

Reg. your Trunking question:

 

As long as you ensure that you configure a dynamic LACP link-aggregation on both sides of your connection you are perfectly fine (it is called a "trunk" on ProVision, the 2910). Important is that both sides are configured in the same manner and LACP is the least error-prone method.

 

On the 2910 the configuration could look something like this

 

trunk 1/A1,2/A1 trk1 lacp   #1/A1 and 2/A1 are the interfaces on the switch which you configure as a LACP trunk (or dynamic link-aggregation)

The Layer 2 - LAN Switching Configuration Guide discusses the configuration of link-aggregations on the 5700.

There you would configure a Bridge-Aggregation interface first:

 

interface Bridge-Aggregation1
 link-aggregation mode dynamic    #configures the link-aggregation to operate on LACP

Afterwards you add the individual interfaces to the bridge aggregation

 

interface Ten-GigabitEthernet1/0/1
 port link-mode bridge
 port link-aggregation group 1

interface Ten-GigabitEthernet1/0/2
 port link-mode bridge
 port link-aggregation group 1

The rest of the configuration for this link (VLANs, link-type, etc.) is then done through the Bridge-Aggregation interface context which is afterwards pushed to the individual member interfaces.

 

 

You can always check if the LACP is working properly on this link by running this command on the 5700 which will give you something like this output:

 

display link-aggregation verbose Bridge-Aggregation1
Loadsharing Type: Shar -- Loadsharing, NonS -- Non-Loadsharing
Port Status: S -- Selected, U -- Unselected, I -- Individual
Flags:  A -- LACP_Activity, B -- LACP_Timeout, C -- Aggregation,
        D -- Synchronization, E -- Collecting, F -- Distributing,
        G -- Defaulted, H -- Expired

Aggregate Interface: Bridge-Aggregation1
Aggregation Mode: Dynamic
Loadsharing Type: Shar
System ID: 0x8000, 4431-9277-08db
Local:
  Port             Status  Priority Oper-Key  Flag
--------------------------------------------------------------------------------
  XGE1/0/20        S       32768    7         {ACDEF}
  XGE2/0/20        S       32768    7         {ACDEF}
Remote:
  Actor            Partner Priority Oper-Key  SystemID               Flag
--------------------------------------------------------------------------------
  XGE1/0/20        120     32768    1         0x8000, 0023-895b-77f1 {ACDEF}
  XGE2/0/20        58      32768    1         0x8000, 0023-895b-77f1 {ACDEF}

 

All of this discussed in detail on the Layer 2 Configuration guide for the 5700:

http://h20565.www2.hpe.com/hpsc/doc/public/display?sp4ts.oid=7268889&docId=emr_na-c04406883

 

Regards

#I work for Hewlett Packard Enterprise
Einar Næss Jensen
Occasional Contributor

Re: hp5700 management port and trunking

Thank you for all your help.

This is very embarrasing: I was logged in to the wrong switch