Configuring BNT/IBM G8264

SNMP

The MIBs can be downloaded here for the 8264. In terms of documentation, typically, the SNMP tool would take care of the basics.

http://www-933.ibm.com/support/fixcentral/swg/selectFixes?parent=Ethernet+Switches&product=ibm/Systems_Networking/IBM+BNT+RackSwitch+G8264&release=7.4.1&platform=All&function=all

NETCONF

Netconf is the preferred way of interacting with the G8264. It must first be enabled in order for the switch to respond.

8264.renci.xo(config)#show access
Current System Access settings: 

IP Management currently allowed from *ALL* IP addresses


Usernames:
  user     - enabled    - offline   
  oper     - disabled   - offline   
  admin    - Always Enabled - online     1 session.
Current User ID table:
Current strong password settings:
  strong password status: enabled
  password validity: 60 days
  warning before expiry: 15 days
  failed logins until security notification: 3


HTTP access currently enabled on TCP port 80
HTTPS server access currently enabled on TCP port 443
NETCONF access currently enabled
  NETCONF session timeout: 300 seconds
  NETCONF via SSH currently enabled on TCP port 830
SNMP access currently read-write
User configuration from BBI currently disabled
Telnet/SSH access configuration from BBI currently disabled
Telnet access currently enabled on TCP port 23
TFTP occurs over port 69
8264.renci.xo(config)#
8264.renci.xo(config)#no access user strong-
8264.renci.xo(config)#no access user strong-password enable
8264.renci.xo(config)#
8264.renci.xo(config)#show access                          
Current System Access settings: 

IP Management currently allowed from *ALL* IP addresses


Usernames:
  user     - enabled    - offline   
  oper     - disabled   - offline   
  admin    - Always Enabled - online     1 session.
Current User ID table:
Current strong password settings:
  strong password status: disabled

HTTP access currently enabled on TCP port 80
HTTPS server access currently enabled on TCP port 443
NETCONF access currently enabled
  NETCONF session timeout: 300 seconds
  NETCONF via SSH currently enabled on TCP port 830
SNMP access currently read-write
User configuration from BBI currently disabled
Telnet/SSH access configuration from BBI currently disabled
Telnet access currently enabled on TCP port 23
TFTP occurs over port 69
8264.renci.xo(config)#

Using NETCONF

Links

This example shows the common stanzas and the commands (in text) required by the switch to enable the vlans and QoS. Several things to remember:

  • Unlike Juniper switches, the IBM switch does not terminate its response with a trailing \n
  • Unlike Juniper switches, the IBM can only accept commands in text (not XML)
  • There can only be 128 VMAPs and they must be identified by a number [1-128]
ssh noradius@192.168.106.4 -p 830 -s netconf

<hello> <capabilities>
<capability>urn:ietf:params:netconf:base:1.0</capability> </capabilities>
</hello> ]]>]]>

<rpc message-id="101" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
        <edit-config>
                <target>
                        <running/>
                </target>
                <config-text xmlns="http://www.bladenetwork.net/netconf/1.0/config-text">
                        <configuration-text>


                             /* create Vlan */
                             vlan 1234
                             name "Test Vlan-1234"
                             exit

                             /* add trunk port */
                             interface port 17
                             switchport mode trunk
                             switchport trunk allowed vlan add 1234
                             exit

                             /* add access port */
                             interface port 17
                             switchport mode access
                             switchport access vlan 1234
                             exit

                             /* remove trunk port */
                             interface port 17
                             switchport trunk allowed vlan remove 1234
                             exit

                             /* remove access port (set back to default 1) */
                             interface port 17
                             switchport access vlan 1
                             exit

                             /* delete Vlan */
                             no vlan 1234


                             /* qos - policing */
                             access-control vmap 1 meter committed-rate 1000000 
                             access-control vmap 1 meter maximum-burst-size 1024 
                             access-control vmap 1 meter action drop 
                             access-control vmap 1 meter enable 
                             access-control vmap 1 action permit
                             access-control vmap 1 ethernet ethernet-type any
                             exit
                        
                             vlan 1234
                             vmap 1 serverports


                             /* delete qos - policing */
                             no access-control vmap 1

			</configuration-text>
                </config-text>
        </edit-config>
</rpc> ]]>]]>

/* Close session */

<rpc message-id="101"> <close-session/>
</rpc> ]]>]]>