Create a New Port Type

Create or modify a port type.

Use this task to create ports in bulk.

  1. Either under Create Ports in Bulk, select one or more ports and select Assign > Create New or select Add (next to Port Type under Configure Ports Individually).
  2. If this template applies to a 5570 or 5520 switch, define the VIM Port Channelization ports; otherwise, proceed to Step 3.
    1. Under Configure Ports in Bulk, choose Select VIM.
    2. For a 5570 switch, select VIM-6YE or VIM-2CE.
    3. For a 5520 switch, select VIM-4X, VIM-4XE, or VIM-4YE.
      Note

      Note

      If different templates for the same switch SKU are required to be created with different VIMs, then a classification rule can be created to assign the same template SKU with different VIM options to different devices. See Configure Classification Rules for a Device Template for more information about classification rules.
    4. Select one or more of these VIM ports and continue to Step 3.
  3. Type a Name.
  4. Optional: Edit the associated Description.
  5. Toggle the port ON or OFF.
  6. In the Port Usage Settings section, select one of the following port types:
    • Access Port: Ports connected to individual hosts such as printers, servers, and end-user computers.
    • Phone with a data port: Ports connected to IP phones, and optionally, to computers cabled to the phones.
    • Trunk port: Ports connected to network forwarding devices, such as switches and APs that support multiple VLANs on trunk ports.
  7. Select Next.
  8. Select an existing VLAN or select the add icon to add a new one.
    To add a new VLAN, see Configure VLAN Settings.
  9. Select Next.
  10. Set authentication options for switches with Instant Secure Port enabled. By default User Authentication (802.1x) and MAC authentication will set the reauthentication period to 3600 seconds. Instant Secure Port Profile must be enabled within the network policy and switch template. For Instant Secure Port Authentication Settings:
    • User Authentication: Turn On for wired devices, such as printers, servers, and end-user computers.
    • MAC Authentication: Turn On for legacy devices that use MAC addresses as the user name and password to authenticate clients.
      • Authentication Protocol: Select the authentication protocol that determines how the port forwards requests to the RADIUS or Active Directory server. Valid values are PAP, CHAP, and MS Chap V2.

        With PAP, the port sends an unencrypted password to the RADIUS server. With CHAP or MS CHAP V2, instead of sending a password, the port and the authentication server perform the same operation on the password, the server compares the results to determine if the results match.

  11. Select Next.
  12. Add RADIUS Servers under RADIUS Settings to use this form of user authentication.
    Either select an existing RADIUS Server Group or select the add icon to add a new one. See Configure an External RADIUS Server.
  13. For Authentication Method Priority, use the up or down arrows to determine the authentication method use order.
  14. For QoS Settings, toggle On to create custom settings.
    Select the 802.1p classification system (marked in the L2 frame header in Ethernet frames) or the DiffServ codepoint marking system (marked in the L3 packet header) on outgoing packets from the drop-down list. See Configure Marker Maps.
  15. Select Next.
  16. For Transmission Settings, configure the following:
    • Transmission Type: Select Auto, Half-Duplex, or Full-Duplex. Auto causes the switch to negotiate the best possible duplex mode possible with the connected device. Full-Duplex forces the switch to communicate with the connected device using full-duplex communication. Half-Duplex forces the switch to use half-duplex communication.
    • Transmission Speed: Choose the speed the switch port uses to communicate with the connected device.
    • Debounce Timer: Select the amount of time the switch does not register another input.
    • CDP Receive: Enables the switch to receive and parse the information within Cisco CDP frames.
    • Auto MDIX: Automatically detects the required cable connection type (straight through or crossover) and configures the connection appropriately.
    • LLDP Transmit: Enables the switch to transmit LLDPDU frames.
    • LLDP Receive: Enables the switch to receive LLDPDU frames.
  17. Select Next.
  18. For STP:
    • STP Enabled: Toggle ON to enable STP for the port.
    • Edge Port: Connects to a user terminal or server, instead of other switches or shared network segments. A port configured as an Edge port does not cause a loop upon network topology changes.
    • BPDU Protection: Use the drop-down list to change BPDU protection to guard or filter status.
      • Guard - Controls whether a port explicitly configured as Edge disables itself upon reception of a BPDU. The port enters the error-disabled state, and is removed from the active topology.
      • Filter - Controls whether a port explicitly configured as Edge transmits and receive BPDUs. You must select this option for Fabric Engine switches.
      • Disabled - Turns off BPDU Protection.
    • Priority: When this port is an STP edge port, select a port priority for STP from the drop-down list.
  19. Select Next.
  20. For Storm Control:
    • Broadcast: Select to include traffic that is forwarded to all destinations simultaneously.
    • Unknown Unicast: Select to include traffic whose destination address does not appear in the forwarding database.
    • Multicast: Select to include traffic whose destination is a multicast address.
    • TCP-SYN: Select to include TCP-SYN flood traffic.
    • Thresholds: Select Byte Based or Packet Based.
    • Rate Limit Type: Select Kbps (kilobytes per second) or Percentage if you selected Byte Based and PPS (packets per second) if you selected Packet Based.
    • Rate Limit Value: Enter when the switch should discard traffic of the selected types.
  21. For MAC Locking, enable the per port type with the option to specify Maximum First Arrival Limit and specify the Link Down Action.
    By default, Link Down Action it is set to clear first arrival MACs, with the option to retain MAC's. We also have the option to take action when MACs are aged out.
  22. Select general ELRP Settings and configure the settings:
    • Toggle Enable ELRP.
    • Select the Enable ELRP for dynamically created VLAN(s) check box.
    • Toggle Configure ELRP Port Duration and enter the duration in seconds.
  23. Select SAVE.
  24. For device-level ELRP interface options, select the specific interface check box and toggle ELRP Enabled to enable ELRP per port or toggle ELRP Exclude to exclude ELRP.
  25. For PSE, select an existing profile or select the plus sign to add a new one.
    See Configure PSE Settings.
  26. Review all the port settings in the Summary section and select Save when complete.
9038986-00 Rev AA