manualshive.com logo in svg

Fujitsu PRIMERGY BX600, User Interface Description

The Fujitsu PRIMERGY BX600 is a high-performance server system that empowers businesses with its cutting-edge technologies. Unlock the full potential of this exceptional product by accessing the comprehensive User Manual, available for free download from our website. Discover the in-depth features and unleash the power of this incredible server system.

Share
Download
background image

PRIMERGY BX600 Blade Server Systems

Intelligent Blade Panel Module 30/12

User Interface Description

English

Summary of Contents for PRIMERGY BX600

Page 1: ...PRIMERGY BX600 Blade Server Systems Intelligent Blade Panel Module 30 12 User Interface Description English ...

Page 2: ...Edition March 2008 PRIMERGY BX600 Blade Server Systems Intelligent Blade Panel Module 30 12 ...

Page 3: ...e a consistently high quality standard and user friendliness this documentation was created to meet the regulations of a quality management system which complies with the requirements of the standard DIN EN ISO 9001 2000 cognitas Gesellschaft für Technik Dokumentation mbH www cognitas de Copyright and Trademarks Copyright Fujitsu Siemens Computers GmbH 2008 All rights reserved Delivery subject to ...

Page 4: ...lade Panel Module 3 Important Notes Introduction Networking Planning Making Network Connection Configuration the IBP Web Base Command Interface Command Reference Using SNMP System Defaulting Troubleshooting and Tips ...

Page 5: ...2 6 Technical Data 27 3 Network Planning 29 3 1 Introduction to IBP 29 4 Making Network Connections 30 4 1 Connecting to 1000BASE T Devices 30 4 2 1000BASE T Cable Requirements 31 4 3 1000BASE T Pin Assignments 32 5 Configuration the IBP Module 33 5 1 Overview 33 5 2 Connecting the IBP Module 34 5 3 Start up and Configuration the IBP Module 36 5 4 Configuring the Terminal 37 5 5 Booting Device 38 ...

Page 6: ...n Commands 140 7 4 1 Interface 140 7 4 2 L2 MAC Address and Multicast Forwarding Database Tables 153 7 4 3 IGMP Snooping 157 7 4 4 Port Channel 158 7 4 5 Uplink Sets 159 7 4 6 Port Group 160 7 4 7 Port Backup 162 7 4 8 Link State 164 7 4 9 VLAN Port Groups 165 7 4 10 Service LAN 168 7 4 11 Service VLAN 170 7 5 Management Commands 172 7 5 1 Network Commands 172 7 5 2 Serial Interface Commands 177 7...

Page 7: ... Show Commands 220 7 9 2 Configuration Commands 231 7 9 3 Dot1x Configuration Commands 234 7 9 4 Radius Configuration Commands 240 7 9 5 TACACS Configuration Commands 244 7 9 6 Port Security Configuration Commands 248 7 10 SNTP Commands 251 7 10 1 Show Commands 251 7 10 2 Configuration Commands 252 7 11 System Utilities 257 7 11 1 clear 257 7 11 2 copy 263 7 11 3 delete 266 7 11 4 dir 266 7 11 5 w...

Page 8: ... 8 Using SNMP 274 8 1 Supported MIBs 275 8 2 Accessing MIB Objects 277 8 3 Supported Traps 280 9 Default Settings 281 9 1 The overview system default settings 281 9 2 The default settings for all the configuration commands 282 10 Troubleshooting and Tips 286 10 1 Diagnosing IBP Indicators 286 10 2 Accessing the Management Interface 287 ...

Page 9: ...llation 1 1 Information About Boards To prevent damage to the device or the components and conductors on it please take great care when you insert or remove it Take great care to ensure that the board is slotted in straight without damaging components or conductors on it or any other components Be especially careful with the locking mechanisms catches centering pins etc when you replace the board ...

Page 10: ...from that to which the receiver is connected Consult the dealer or an experienced radio TV technician for help Fujitsu Siemens Computers is not responsible for any radio or television interference caused by unauthorized modifications of this equipment or the substitution or attachment of connecting cables and equipment other than those specified by Fujitsu Siemens Computers The correction of inter...

Page 11: ...o EN 55024 1998 Electrostatic Discharge according to EN 61000 4 2 1995 Contact Discharge 4 kV Air Discharge 8 kV Radio frequency electromagnetic field according to EN 61000 4 3 1996 80 1000 MHz with 1 kHz AM 80 Modulation 3 V m Electrical fast transient burst according to EN 61000 4 4 1995 AC DC power supply 1 kV Data Signal lines 0 5 kV Surge immunity test according to EN 61000 4 5 1995 AC DC Lin...

Page 12: ...Compliance Statements Introduction Intelligent Blade Panel Module 11 Taiwan BSMI Class A Australia AS NZS 3548 1995 Class A ...

Page 13: ...meration starts from the internal ports g1 g30 connected to server blades and ports g31 g42 are the external ports connecting the IBP Module to the network through the internal ports 12 external RJ 45 connectors for 10 100 1000 Base T copper ports uplinks 30 internal ports connected to servers through PRIMERGY BX600 Blade Server mid plane connector of a VHDM type The terminal connection to the dev...

Page 14: ...so that it is unavailable for additional traffic Jumbo Frames Support Jumbo frames are frames with an MTU size of up to 9K bytes and better utilize the network by transporting the same data using less frames The main benefits of this facility are reduced transmission overhead and reduced host processing overhead Less frames leads to less I O interrupts This facility is typically used for server to...

Page 15: ...cast service is where a single frame is addressed to a specific Multicast address from where copies of the frame are transmitted to the relevant ports 2 1 2 Layer 2 Features IGMP Snooping IGMP Snooping examines IGMP frame contents when they are forwarded by the IBP Module from work stations to an upstream Multicast router From the frame the IBP Module identifies work stations configured for Multic...

Page 16: ... provide dedicated ports for handling specific VLAN tagged packets The packets with the same VLAN will be forwarded within the members Their operations are very similar but in Service LAN the tagged of packet egress on the uplink ports will be stripped and send as untagged packet The members of the Service LAN Service VLAN can be overlapped with the members of port group or VLAN Port group with di...

Page 17: ...nly one copy for BootRom Image Duplication of Management file The Intelligent Blade Panel can copy those three types of files in three different ways 1 Local file to local file copy The Intelligent Blade Panel can copy an existed local Configuration File to another local file Copy exited local Operation Code to another local file is not permitted 2 Remote TFTP Server to Local file copy The Intelli...

Page 18: ...n file The Configuration file includes both system wide and port specific IBP Module configuration The system can display configuration files in the form of a collection of CLI commands which are stored and manipulated as text files TFTP Trivial File Transfer Protocol The IBP Module supports boot image software and configuration upload download via TFTP Remote Monitoring Remote Monitoring RMON is ...

Page 19: ...ic MAC addresses These addresses are either manually defined or learned on that port When a frame is seen on a locked port and the frame source MAC address is not tied to that port the protection mechanism is invoked RADIUS Client RADIUS is a client server based protocol A RADIUS server maintains a user database which contains per user authentication information such as user name password and acco...

Page 20: ...net ports for connecting PRIMERGY BX600 Blade Server management MMB modules The 12 Gigabit Ethernet ports can operate at 10 100 or 1000 Mbps These ports support auto negotiation duplex mode Half or Full duplex and flow control The 30 Gigabit Ethernet ports that connect to server modules can only operate at 1000 Mbps full duplex These 30 ports also support flow control The following figure illustra...

Page 21: ...ny connection Note Auto negotiation must be enabled for automatic MDI MDI X pin out configuration Internal Ports The IBP also includes 30 internal 1000BASE X Gigabit Ethernet ports that connect to the server blades in the chassis These ports are fixed at 1000 Mbps full duplex The internal ports are named g1 g30 in the configuration interface The 30 internal ports connect with server blade as follo...

Page 22: ...Features of the IBP Module Introduction Intelligent Blade Panel Module 21 ...

Page 23: ...Net 2 Port 6 Blade No 7 Nic 6 Net 2 Port 21 Blade No 3 Nic 1 Net 1 Port 7 Blade No 8 Nic 1 Net 1 Port 22 Blade No 3 Nic 2 Net 2 Port 7 Blade No 8 Nic 2 Net 2 Port 22 Blade No 3 Nic 3 Net 1 Port 8 Blade No 8 Nic 3 Net 1 Port 23 Blade No 3 Nic 4 Net 2 Port 8 Blade No 8 Nic 4 Net 2 Port 23 Blade No 3 Nic 5 Net 1 Port 9 Blade No 8 Nic 5 Net 1 Port 24 Blade No 3 Nic 6 Net 2 Port 9 Blade No 8 Nic 6 Net ...

Page 24: ...or error status reporting and blade identification Different flashing frequencies are used to indicate the different functions There are two functions identification and error reporting with identification having a higher priority than error reporting NOTE If there is an error and the identification function is activated the LED still functions as an identification LED The LED can only be disabled...

Page 25: ...t compliance ensures compatibility with standards based network cards and switches from any vendor 2 3 2 Performance l Transparent bridging l Aggregate bandwidth up to 12 Gbps l Switching Table with 16K MAC address entries l Filtering and forwarding at line speed l Non blocking switching architecture 2 3 3 Management l Telnet SNMP RMON and Web based interface l Multicast Switching based on IGMP In...

Page 26: ...munity names Notational Conventions Introduction Intelligent Blade Panel Module 25 2 4 Notational Conventions The meanings of the symbols and fonts used in this manual are as follows CAUTION Pay particular attention to texts marked with this symbol Failure to observe this warning endangers your life destroys th system Quotation marks indicate names of chapters and terms that are being emphasized I...

Page 27: ...tion Intelligent Blade Panel Module 26 2 5 Target Group This manual is intended for those responsible for installing and configuring network connections This manual contains all the information required to configure the IBP ...

Page 28: ... 1950 CSA 22 2 No 950 Electromagnetic compatibility Interference emission Harmonic current flicker Interference immunity FCC class A Industry Canada class A EN60005 2 class A EN60005 3 VCCI class A AS NZS 3548 class A EN 55022 EN 6100 3 2 JEIDA EN 61000 3 3 EN 55024 EN 61000 4 2 3 4 5 6 8 11 CE certification to EU directives 73 23 EEC low voltage directive 89 336 EEC Electromagnetic Compatibility ...

Page 29: ... Panel Module 28 Environmental conditions Environment class 3K2 Environment class 2K2 DIN IEC 721 part 3 3 DIN IEC 721 part 3 2 Temperature Operating 3K2 Transport 2K2 0 C 50 C 40 C 70 C Humidity 10 90 Condensation while operating must be avoided ...

Page 30: ...ink Aggregation Group LAG or trunk group which is fully compatible with Cisco Ether Channel technology This configuration eliminates the need for Spanning Tree Protocol to prevent network loops since the uplink ports act as a single link The IBP provides improved network reliability All of the uplink ports in each Port Group participates in a static LAG so if a link fails the existing traffic is r...

Page 31: ...ta port on the IBP to any server or workstation or uplink to a network device such as another switch or a router The 1000BASE T standard uses four pairs of Category 5 twisted pair cable for connections up to a maximum length of 100 m 328 feet For 1000 Mbps operation you should first test the cable installation for IEEE 802 3ab 1000BASE T compliance See 1000BASE T Cable Requirements on page 34 for ...

Page 32: ...that all four wire pairs are connected However it is recommended that for all critical connections or any new cable installations Category 5e enhanced Category 5 cable should be used The Category 5e specification includes test parameters that are only recommenda tions for Category 5 Therefore the first step in preparing existing Category 5 cabling for running 1000BASE T is a simple test of the cab...

Page 33: ... the link 4 3 1000BASE T Pin Assignments 1000BASE T ports support automatic MDI MDI X operation so you can use straight through cables for all network connections to PCs or servers or to other switches Auto negotiation must be enabled to support auto MDI MDI X The table below shows the 1000BASE T MDI and MDI X port pinouts These ports require that all four pairs of wires be connected Note that for...

Page 34: ...the following items are included The IBP Module Documentation CD Unpacking the IBP Module To unpack the IBP Module NOTE Before unpacking the IBP Module inspect the package and report any evidence of damage immediately NOTE An ESD strap is not provided however it is recommended to wear one for the following procedure 1 Open the container 2 Carefully remove the IBP Module from the container and plac...

Page 35: ... console monitor the MMB application displays a login screen The IBP Module bootup screen is displayed Welcome to Management Blade 1 70D Username Console Menu 1 Management Agent 2 Emergency Management Port 3 Console Redirection 4 TFTP update 5 Logout 6 Reboot Management Blade 7 System Information Dump Enter selection 5 Logout ATE0 ATE0 2 Enter the provide and password The console menu is displayed...

Page 36: ...ole Redirect Switch Blade 3 Set Return Hotkey Ctrl a character Q Enter selection or type 0 to quit 2 Console Redirect Switch Blade Enter selection or type 0 to quit 0 4 Select 2 Console Redirection Switch Blade Console Redirection Table 1 Console Redirect Server Blade 2 Console Redirect Switch Blade 3 Set Return Hotkey Ctrl a character Q Enter selection or type 0 to quit 2 Console Redirect Switch ...

Page 37: ... Blade Server to the network The IBP Module module is connected to PRIMERGY BX600 Blade Server Management Board MMB through 30 internal ports called the Internal Ports The maximum link speed through the Internal Ports is 1 Gigabit per port The port configuration ID s are g1 to g30 To connect the IBP Module to the network there are 12 PHY based ports called the External ports The external 12 ports ...

Page 38: ...ect PRIMERGY BX600 Blade Server serial port to the IBP Module NOTE 1 The default data rate is 9600 No other data rate is required for initial configuration 2 Sets the data format to 9600 baudrate 9600 8 data bits 1 stop bit and no parity 3 Sets Flow Control to none 4 Under Properties select VT100 for Emulation mode 5 Select Terminal keys for Function Arrow and Ctrl keys Ensure that the setting is ...

Page 39: ...emory availability and then continues to boot The following screen is an example of the displayed POST Performing Power On Self Tests POST System SDRAM Test PASS CPU Self Test PASS UART Loopback Test PASS Flash Memory Initialize PASS Flash Memory Checksum Test PASS PCI Bus Initialize and Test PASS System Timer Test PASS Power On Self Test Completed The boot process runs approximately 60 seconds Th...

Page 40: ...ant to delete configuration filename y n 2 Press Y The following message is displayed Updating partition table please wait Done Image file configuration filename deleted 3 Repeat the device initial configuration Boot Image Download Loading a new boot image using xmodem protocol and programming it into the flash updates the boot image The boot image is loaded when the device is powered on A user ha...

Page 41: ...em image copy On the next boot the device will decompress and run the currently active system image unless chosen otherwise To download a system image through the TFTP server 1 Ensure that an IP address is configured on one of the device ports and pings can be sent to a TFTP server 2 Make sure that the file to be downloaded is saved on the TFTP server the img file 3 Enter vty 0 show version comman...

Page 42: ... transfer starting Verifying CRC of file in Flash File System TFTP receive complete storing in Flash File System File transfer operation completed successfully 7 Select the image for the next boot by entering the boot system command After this command Enter vty 0 whichboot command to verify that the copy indicated as a parameter in the boot system command is selected for the next boot The followin...

Page 43: ...Software Download Configuration the IBP Module Intelligent Blade Panel Module 42 vty 0 reload Are you sure you would like to reset the system y n y System will now restart 9 Enter y The device reboots ...

Page 44: ...rowser to manage the IBP module from any remote PC station just as if you were directly connected to the IBP s console port The four menu options available are Group Administration Panel Settings Security and Extended Configuration 1 Group Administration Menu This section provides information for configuring Port Groups Link State IGMP snooping Management VLAN and Port Backup etc 2 Panel Settings ...

Page 45: ...se this pull down menu to select one of the existing uplink set Configurable Data Uplink Set Name Input the uplink set name to create a new group It can be up to 32 alphanumeric characters including blanks Link State Use this pull down menu to configure link state Port Backup Use this pull down menu to configure port backup IGMP snooping Use this pull down menu to configure IGMP snooping Participa...

Page 46: ...ink set 6 2 1 1 2 View Uplink Set Information Page This page displays the status of all currently configured uplink set Non Configurable Data Uplink Set Name The group name of the uplink set External Active Ports List the external active port group members External Backup Ports List the external backup port group members Link State The status of the link state of that port group Port Backup The st...

Page 47: ...lect one of the existing groups Configurable Data Group Name Input the group name to create a new port group It can be up to 32 alphanumeric characters including blanks Uplink Set Name Use the pull down menu to configure external connection for this port group Participation Use the pull down menu to configure a interface to participate in this port group The factory default is Exclude The possible...

Page 48: ...nt Blade Panel Module 47 Command Buttons Submit Update the IBP the values on this screen If you want the IBP to retain the new values across a power cycle you have to perform a save Delete Delete the port group You are not allowed to delete the default port group ...

Page 49: ...g Port Group Information Page This page displays the status of all currently configured port group Non Configurable Data Port Group Name The group name of the port group Internal Ports List the internal port members Uplink Set Name The name of the uplink set External Ports List the external port members ...

Page 50: ...LAN Port Group The range of the VLAN ID is from 1 to 4094 Uplink Set Name Specify the uplink set for the external connection If the pulldown menu shows it means that there is no available uplink set Participation Use the pull down menu to configure a interface to participate in this VLAN port group The factory default is Exclude The possible values are Include This interface is the member of the V...

Page 51: ...ation Web Based Management Interface Intelligent Blade Panel Module 50 6 2 1 3 2 Viewing VLAN Port Group Information Page This page displays the status of all currently configured VLAN port group Non Configurable Data ...

Page 52: ...e The group name of the VLAN port group VLAN ID The VLAN Identifier of the VLAN Port Group Internal Ports Internal interface member of that VLAN Port Group Uplink Set Name The Uplink Set for the external connection of that VLAN Port Group External Ports External interface member of the specified Uplink Set ...

Page 53: ...f the VLAN ID is from 1 to 4094 Uplink Set Name Specify the uplink set for the external connection If the pulldown menu shows it means that there is no available uplink set Participation Use the pull down menu to configure a interface to participate in this Service LAN The factory default is Exclude The possible values are Include This interface is the member of the Service LAN Exclude This interf...

Page 54: ...ement Interface Intelligent Blade Panel Module 53 6 2 1 4 2 Viewing Service LAN Information Page This page displays the status of all currently configured Service LAN Non Configurable Data Service LAN Name The group name of the Service LAN ...

Page 55: ...rface Intelligent Blade Panel Module 54 Internal Ports Internal interface member of that Service LAN Uplink Set Name The Uplink Set for the external connection of that Service LAN External Ports External interface member of the specified Uplink Set ...

Page 56: ...you are creating a new Service VLAN The range of the VLAN ID is from 1 to 4094 Uplink Set Name Specify the uplink set for the external connection If the pulldown menu shows it means that there is no available uplink set Participation Use the pull down menu to configure a interface to participate in this Service VLAN The factory default is Exclude The possible values are Include This interface is t...

Page 57: ...stration Web Based Management Interface Intelligent Blade Panel Module 56 6 2 1 5 2 Viewing Service VLAN Information Page This page displays the status of all currently configured Service VLANs Non Configurable Data ...

Page 58: ...me The group name of the Service VLAN Service VLAN ID The VLAN Identifier of the Service VLAN Internal Ports Internal interface member of that Service VLAN Uplink Set Name The Uplink Set for the external connection of that Service VLAN External Ports External interface member of the specified Uplink Set ...

Page 59: ... no traffic could be sent or received Otherwise if active aggregation group is link down all members of the active aggregation group are link down the backup aggregation group will be activated As the active aggregation group is link up again the backup one will be deactivated Configurable Data Active Backup Select field to set the interface to be in active aggregation group or backup aggregation ...

Page 60: ...n Configurable Data Uplink Set Name The name of the Uplink Set External Active Ports The configured external active ports External Backup Ports The configured external backup ports Port Backup Current port backup setting for the Uplink Set Failback Time The time delay for activating the active port if the link of active port is resumed Current Activated Port Current activated port for the Uplink S...

Page 61: ...Groups Administration Web Based Management Interface Intelligent Blade Panel Module 60 ...

Page 62: ...esents the minor version Loader Version The release version maintenance number of the loader code currently running on the IBP module For example if the major version was 2 and the minor version was 4 the format would be 2 4 Boot Rom Version The release version maintenance number of the boot rom code currently running on the IBP module For example if the major version was 2 and the minor version w...

Page 63: ...Panel Settings Menu Web Based Management Interface Intelligent Blade Panel Module 62 ...

Page 64: ...t is blank System Contact Enter the contact person for this IBP module You may use up to 31 alpha numeric characters The factory default is blank Non Configurable Data System Description The product name of this IBP module System Object ID The base object ID for the IBP s enterprise MIB System IP Address The IP Address assigned to the network interface System Up time The time in days hours and min...

Page 65: ... the IBP module should do following power up transmit a Bootp request transmit a DHCP request or do nothing none The factory default is None You cannot make this choice for both the network configuration protocol and the service port You will only be given the choices for Bootp or DHCP here if the service port protocol is configured to None Inband Administration VLAN ID Specifies the inband admini...

Page 66: ...rom this interface Non Configurable Data Burned in MAC Address The burned in MAC address used for in band connectivity if you choose not to configure a locally administered address Status The status of the interface Grant or Deny Slot Port The interface Type The interface type Type could be Internal or External Command Buttons Submit Update the IBP module with the values on the screen If you want ...

Page 67: ...maximum is 5 which is also the factory default Allow New Telnet Sessions If you set this to no new telnet sessions will not be allowed The factory default is yes Password Threshold When the logon attempt threshold is reached on the console port the system interface becomes silent for a specified amount of time before allowing the next logon attempt Use the silent time command to set this interval ...

Page 68: ... service is Enabled or Disabled Default value is Enabled Maximum Sessions Specifies the maximum number of Outbound Telnet Sessions allowed Default value is 5 Valid Range is 0 to 5 Session Timeout Specifies the Outbound Telnet login inactivity timeout Default value is 5 Valid Range is 1 to 160 Command Buttons Submit Sends the updated configuration to the IBP module Configuration changes take effect...

Page 69: ...ified amount of time before allowing the next logon attempt Use the silent time command to set this interval When this threshold is reached for Telnet the Telnet logon interface closes The default value is 3 Silent Time Sec Use this command to set the amount of time the management console is inaccessible after the number of unsuccessful logon attempts exceeds the threshold set by the password thre...

Page 70: ... account It will not display as it is typed only asterisks will show Passwords are up to eight alpha numeric characters in length and are case sensitive Confirm Password Enter the password again to confirm that you entered it correctly This field will not display but will show asterisks Authentication Protocol Specify the SNMPv3 Authentication Protocol setting for the selected user account The val...

Page 71: ...you want the IBP module to retain the new values across a power cycle you must perform a save Delete Delete the currently selected user account If you want the IBP module to retain the new values across a power cycle you must perform a save This button is only visible when you have selected a user account with Read Only access You cannot delete the Read Write user ...

Page 72: ...ttons Reset Send the updated screen to the IBP to restart the DHCP client Configuring DHCP Client identifier Page Specify the DCHP client identifier for the IBP The DCHP client identifier is used to include a client identifier in all communications with the DHCP server The identifier type depends on the requirements of your DHCP server Non Configurable Data Current DHCP Identifier Hex Text Shows t...

Page 73: ...xample if the Client IP Address and Client IP Mask parameters are 192 168 1 0 255 255 255 0 then any client whose IP address is 192 168 1 0 through 192 168 1 255 inclusive will be allowed access To allow access from only one station use a Client IP Mask value of 255 255 255 255 and use that machine s IP address for Client IP Address Client IP Mask Taken together the Client IP Address and Client IP...

Page 74: ...ver from the pull down menu SNMP v1 Uses SNMP v1 to send traps to the receiver SNMP v2 Uses SNMP v2 to send traps to the receiver IP Address Enter the IP address to receive SNMP traps from this device Enter 4 numbers between 0 and 255 separated by periods Status Select the receiver s status from the pulldown menu Enable send traps to the receiver Disable do not send traps to the receiver Command B...

Page 75: ...anel Module 74 Viewing SNMP supported MIBs Page This is a list of all the MIBs supported by the IBP module Non configurable Data Name The RFC number if applicable and the name of the MIB Description The RFC title or MIB description Command Buttons Refresh Update the data ...

Page 76: ...Panel Settings Menu Web Based Management Interface Intelligent Blade Panel Module 75 ...

Page 77: ...Default value is Disable Port Specifies the local UDP port to listen for responses broadcasts Allowed range is 1 to 65535 Default value is 123 Unicast Poll Interval Specifies the number of seconds between unicast poll requests expressed as a power of two when configured in unicast mode Allowed range is 6 to 10 Default value is 6 Broadcast Poll Interval Specifies the number of seconds between broad...

Page 78: ... appropriate for all operational modes Other None of the following enumeration values SuccessThe SNTP operation was successful and the system time was updated Request Timed Out A directed SNTP request timed out without receiving a response from the SNTP server Bad Date Encoded The time provided by the SNTP server is not valid Version Not Supported TheSNTP version supported by the server is not com...

Page 79: ...Entries Specifies the number of current valid unicast server entries configured for this client Broadcast Count Specifies the number of unsolicited broadcast SNTP messages that have been received and processed by the SNTP client since last reboot Configuring SNTP Server Configuration Page Configurable Data Server Specifies all the existing Server Addresses along with an additional option Create Wh...

Page 80: ...ty of 2 and so forth If more than one server has the same priority then the requesting order will follow the lexicographical ordering of the entries in this table Allowed range is 1 to 3 Default value is 1 Version Specifies the NTP Version running on the server Allowed range is 1 to 4 Default value is 4 Command Buttons Submit Sends the updated configuration to the IBP Configuration changes take ef...

Page 81: ...TP server Bad Date Encoded The time provided by the SNTP server is not valid Version Not Supported TheSNTP version supported by the server is not compatible with the version supported by the client Server UnsychronizedThe SNTP server is not synchronized with its peers This is indicated via the leap indicator field on the SNTP message Server Kiss Of Death The SNTP server indicated that no further q...

Page 82: ...supports or is configured including Ethernet header CRC and payload 1518 to 9216 The default maximum frame size is 1518 Notes If you configure an external port the other external members of the same port group will be changed together Flow Control Used to enable or disable flow control feature on the selected interface Capability You could advertise the port capabilities of a given interface durin...

Page 83: ...ning port it will place that port into the broken state The possible states are Disabled Blocking and Manual Forwarding Admin Mode The Port control administration state The port must be enabled in order for it to be allowed into the network The factory default is enabled Physical Mode Indicates the port speed and duplex mode In auto negotiation mode the duplex mode and speed are set from the auto ...

Page 84: ...Panel Settings Menu Web Based Management Interface Intelligent Blade Panel Module 83 Refresh Refresh the configuration value again ...

Page 85: ...ill be lost You will be shown a confirmation screen after you select the button 6 2 2 3 2 Reset All Configuration to Defaults Page Command Buttons Reset Clicking the Reset button will reset all of the system login passwords to their default values If you want the IBP to retain the new values across a power cycle you must perform a save 6 2 2 3 3 Reset the Passwords to Defaults Page Command Buttons...

Page 86: ...e SSL Diffie Hellman Weak Encryption Parameter File PEM Encoded SSL DH Strong Encryption Parameter PEM File SSL Diffie Hellman Strong Encryption Parameter File PEM Encoded The factory default is code Note that to download SSH key files SSH must be administratively disabled and there can be no active SSH sessions TFTP Server IP Address Enter the IP address of the TFTP server The factory default is ...

Page 87: ...he path on the TFTP server where you want to put the file being uploaded You may enter up to 32 characters The factory default is blank TFTP File Name Target Enter the name you want to give the file being uploaded You may enter up to 32 characters The factory default is blank TFTP File Name Source Specify the file which you want to upload from the IBP Start File Transfer To initiate the upload you...

Page 88: ...ime operation codes Command Buttons Submit Send the updated screen to the IBP and specify the file start up 6 2 2 3 7 Removing Specific File Page Delete files in flash If the file type is used for system startup then this file cannot be deleted Configurable Data Configuration File Configuration files Runtime File Run time operation codes Script File Configuration script files Command Buttons Remov...

Page 89: ...Buttons Copy to File Send the updated screen to the IBP perform the file copy 6 2 2 3 9 Defining Ping Function Page Use this screen to tell the IBP to send a Ping request to a specified IP address You can use this to check whether the IBP can communicate with a particular IP station Once you click the Submit button the IBP will send three pings and the results will be displayed below the configura...

Page 90: ...Panel Settings Menu Web Based Management Interface Intelligent Blade Panel Module 89 Command Buttons Submit This will initiate the ping ...

Page 91: ...e valid range is 1 30 Consideration to maximum delay time should be given when configuring RADIUS maxretransmit and RADIUS timeout If multiple RADIUS servers are configured the max retransmit value on each will be exhausted before the next server is attempted A retransmit will not occur until the configured timeout value on that server has passed without a response from the RADIUS server Therefore...

Page 92: ...ured Select add to add a server Configurable Data IP Address The IP address of the server being added Port The UDP port used by this server The valid range is 0 65535 Secret The shared secret for this server This is an input field only Apply The Secret will only be applied if this box is checked If the box is not checked anything entered in the Secret field will have no affect and will not be reta...

Page 93: ...e Data Round Trip Time secs The time interval in hundredths of a second between the most recent Access Reply Access Challenge and the Access Request that matched it from this RADIUS authentication server Access Requests The number of RADIUS Access Request packets sent to this server This number does not include retransmissions Access Retransmissions The number of RADIUS Access Request packets retr...

Page 94: ...cation port Packets Dropped The number of RADIUS packets received from this server on the authentication port and dropped for some other reason Command Buttons Refresh Update the information on the page 6 2 3 1 5 Defining RADIUS Accounting Server Configuration Page Selection Criteria Accounting Server IP Address Selects the accounting server for which data is to be displayed or configured If the a...

Page 95: ... a save is performed Refresh Update the information on the page 6 2 3 1 6 Viewing RADIUS Accounting Server Statistics Page Non Configurable Statistics Accounting Server IP Address Identifies the accounting server associated with the statistics Round Trip Time secs Displays the time interval in hundredths of a second between the most recent Accounting Response and the Accounting Request that matche...

Page 96: ...ing timeouts to this server Unknown Types Displays the number of RADIUS packets of unknown type that were received from this server on the accounting port Packets Dropped Displays the number of RADIUS packets that were received from this server on the accounting port and dropped for some other reason Command Buttons Refresh Update the information on the page 6 2 3 1 7 Resetting All RADIUS Statisti...

Page 97: ...de which are Enable and Disable Server ID The TACACS server index which are 1 2 and 3 Authen Server TACACS server IP address Authen Port The TCP port number of TACACS Server Time Out Timeout value of TACACS packet transmit Retry Count Retry count after transmit timeout Status The TACACS server status which are disable master and slave Share Secret The key only transmit between TACACS client and se...

Page 98: ...is enabled SSL Version 3 This field is used to enable or disable Secure Sockets Layer Version 3 0 The currently configured value is shown when the web page is displayed The default value is enabled HTTPS Port Number This field is used to set the HTTPS Port Number The value must be in the range of 1 to 65535 Port 443 is the default value The currently configured value is shown when the web page is ...

Page 99: ...lue is Enable Maximum Number of SSH Sessions Allowed This select field is used to configure the maximum number of inbound SSH sessions allowed on the IBP The currently configured value is shown when the web page is displayed The range of acceptable values for this field is 0 5 SSH Session Timeout Minutes This text field is used to configure the inactivity timeout value for incoming SSH sessions to...

Page 100: ...Security Menu Web Based Management Interface Intelligent Blade Panel Module 99 ...

Page 101: ...s Enable or Disable logging by selecting the corresponding line on the pulldown entry field Behavior Indicates the behavior of the log when it is full It can either wrap around or stop when the log space is filled Command Buttons Submit Update the IBP module with the values you entered 6 2 4 1 2 Viewing Buffered Log Page This help message applies to the format of all logged messages which are disp...

Page 102: ... log Number of log messages displayed For the buffered log only the latest 128 entries are displayed on the webpage Command Buttons Refresh Refresh the page with the latest log entries Clear Log Clear all entries in the log 6 2 4 1 3 Configuring Command Logger Page Configurable Data Admin Mode Enable Disable the operation of the CLI Command logging by selecting the corresponding pulldown field and...

Page 103: ...al to or above a configured severity threshold Select the severity option by selecting the corresponding line on the pulldown entry field These severity levels have been enumerated below Emergency 0 system is unusable Alert 1 action must be taken immediately Critical 2 critical conditions Error 3 error conditions Warning 4 warning conditions Notice 5 normal but significant conditions Informational...

Page 104: ...the event occurred measured from the previous reset Command Buttons Refresh Update the information on the page Clear Log Remove all log information 6 2 4 1 6 Configuring Hosts configuration Page Configurable Data Host This is a list of the hosts that have been configured for syslog Select a host for changing the configuration or choose to add a new hosts from the drop down list IP Address This is ...

Page 105: ...ing this to disable stops logging to all syslog hosts Disable means no messages will be sent to any collector relay Enable means messages will be sent to configured collector relays using the values configured for each collector relay Enable Disable the operation of the syslog function by selecting the corresponding line on the pulldown entry field Local UDP Port This is the port on the local host...

Page 106: ...Extended Configuration Menu Web Based Management Interface Intelligent Blade Panel Module 105 ...

Page 107: ...Identifies the ID of this row User Name Shows the user name of user who made the session Connection From Shows the IP from which machine the user is connected Idle Time Shows the idle session time Session Time Shows the total session time Session Type Shows the type of session telnet serial or SSH Command Buttons Refresh Update the information on the page ...

Page 108: ...icast packets Receive Packets Discarded The number of inbound packets which were chosen to be discarded even though no errors had been detected to prevent their being deliverable to a higher layer protocol A possible reason for discarding a packet could be to free up buffer space Octets Transmitted The total number of octets transmitted out of the interface including framing characters Packets Tra...

Page 109: ...s Last Cleared The elapsed time in days hours minutes and seconds since the statistics for this IBP were last cleared Command Buttons Clear Counters Clear all the counters resetting all IBP summary and detailed statistics to default values The discarded packets count cannot be cleared Refresh Refresh the data on the screen with the present state of the data in the IBP 6 2 4 2 2 Viewing the Panel S...

Page 110: ...those that were discarded or not sent Transmit Packet Errors The number of outbound packets that could not be transmitted because of errors Address Entries Currently in Use The total number of Forwarding Database Address Table entries now active on the IBP including learned and static entries Time Since Counters Last Cleared The elapsed time in days hours minutes and seconds since the statistics f...

Page 111: ... received or transmitted that were between 1024 and 1518 octets in length inclusive excluding framing bits but including FCS octets Packets RX and TX 1519 1522 Octets The total number of packets including bad packets received or transmitted that were between 1519 and 1522 octets in length inclusive excluding framing bits but including FCS octets Packets RX and TX 1523 2047 Octets The total number ...

Page 112: ... that were without errors Unicast Packets Received The number of subnetwork unicast packets delivered to a higher layer protocol Multicast Packets Received The total number of good packets received that were directed to a multicast address Note that this number does not include packets directed to the broadcast address Broadcast Packets Received The total number of good packets received that were ...

Page 113: ...s received that were between 65 and 127 octets in length inclusive excluding framing bits but including FCS octets Packets Transmitted 128 255 Octets The total number of packets including bad packets received that were between 128 and 255 octets in length inclusive excluding framing bits but including FCS octets Packets Transmitted 256 511 Octets The total number of packets including bad packets r...

Page 114: ... Frame Check Sequence FCS with an integral number of octets Tx Oversized The total nummber of frames that exceeded the max permitted frame size This counter has a max increment rate of 815 counts per sec at 10 Mb s Underrun Errors The total number of frames discarded because the transmit FIFO buffer became empty during frame transmission Total Transmit Packets Discarded The sum of single collision...

Page 115: ...Extended Configuration Menu Web Based Management Interface Intelligent Blade Panel Module 114 ...

Page 116: ...Extended Configuration Menu Web Based Management Interface Intelligent Blade Panel Module 115 ...

Page 117: ...ts received that were directed to the broadcast address Note that this does not include multicast packets Packets Transmitted without Errors The number of frames that have been transmitted by this port to its segment Transmit Packet Errors The number of outbound packets that could not be transmitted because of errors Collision Frames The best estimate of the total number of collisions on this Ethe...

Page 118: ...o unauthorized force authorized The authenticator PAE unconditionally sets the controlled port to authorized auto The authenticator PAE sets the controlled port mode to reflect the outcome of the authentication exchanges between the supplicant authenticator and the authentication server Quiet Period This input field allows the user to configure the quiet period for the selected port This command s...

Page 119: ...he Submit button is pressed Reauthentication Period This input field allows the user to enter the reauthentication period for the selected port The reauthentication period is the value in seconds of the timer used by the authenticator state machine on this port to determine when reauthentication of the supplicant takes place The reauthentication period must be a value in the range of 1 to 65535 Th...

Page 120: ...isplays the configured quiet period for the selected port This quiet period is the value in seconds of the timer used by the authenticator state machine on this port to define periods of time in which it will not attempt to acquire a supplicant The quiet period is the period for which the authenticator does not attempt to acquire a supplicant after a failed authentication exchange with the supplic...

Page 121: ...e possible values are true and false If the value is true reauthentication will occur Otherwise reauthentication will not be allowed Control Direction This displays the control direction for the specified port The control direction dictates the degree to which protocol exchanges take place between Supplicant and Authenticator This affects whether the unauthorized controlled port exerts control ove...

Page 122: ... for the port Possible values are Force Unauthorized The authenticator port access entity PAE unconditionally sets the controlled port to unauthorized Force Authorized The authenticator PAE unconditionally sets the controlled port to authorized Auto The authenticator PAE sets the controlled port mode to reflect the outcome of the authentication exchanges between the supplicant authenticator and th...

Page 123: ...e supplicant for the specified port is allowed The possible values are true and false If the value is true reauthentication will occur Otherwise reauthentication will not be allowed Port Status This field shows the authorization status of the specified port The possible values are Authorized and Unauthorized Command Buttons Refresh Update the information on the page ...

Page 124: ... EAPOL frame EAP Response Id Frames Received This displays the number of EAP response identity frames that have been received by this authenticator EAP Response Frames Received This displays the number of valid EAP response frames other than resp id frames that have been received by this authenticator EAP Request Id Frames Transmitted This displays the number of EAP request identity frames that ha...

Page 125: ...l use the selected login list for 802 1x port security Configurable Data Login Selects the login to apply to the specified user All configured logins are displayed Command Buttons Submit Sends the updated screen to the IBP and causes the changes to take effect on the IBP but these changes will not be retained across a power cycle unless a save is performed Refresh Update the information on the pag...

Page 126: ...or ports Command Buttons Submit Sends the updated screen to the IBP and causes the changes to take effect on the IBP but these changes will not be retained across a power cycle unless a save is performed Refresh Update the information on the page 6 2 4 3 8 Viewing Each Port Access Privileges Summary Page Non Configurable Data Port Displays the port in Slot Port format Users Displays the users that...

Page 127: ...Extended Configuration Menu Web Based Management Interface Intelligent Blade Panel Module 126 ...

Page 128: ...u choose to define one or more designated management stations only the chosen stations as defined by IP address will be allowed management privilege through the web manager Telnet session Secure Shell SSH or Secure Socket Layer SSL for secure HTTP Configurable Data Filter Address 1 5 Stations that are allowed to make configuration changes to the IBP Command Buttons Submit Send the updated screen t...

Page 129: ...new login list The options are Local the user s locally stored ID and password will be used for authentication Radius the user s ID and password will be authenticated using the RADIUS server instead of locally Reject the user is never authenticated Tacacs the user s ID and password will be authenticated using the TACACS server instead of locally Undefined the authentication method is unspecified t...

Page 130: ...igned to this login list on the Port Access Control User Login Configuration screen This list is used to authenticate the users for port access using the IEEE 802 1x protocol Command Buttons Refresh Update the information on the page 6 2 4 5 3 Defining User Login Page Note This page provides a user account from those already created to be added into the Authentication List Each configured user is ...

Page 131: ... configured user is assigned to defaultList which by default uses local authentication Selection Criteria User Select the user you want to assign to a login list Note that you must always associate the admin user with the default list This forces the admin user to always be authenticated locally to prevent full lockout from IBP s configuration If you assign a user to a login list that requires rem...

Page 132: ...Commands are followed by values parameters or both Example 1 ip address ipaddr netmask vlan id Ip address is the command name ipaddr netmask are the required values for the command vlan id is the optional value for the command Example 2 snmp server host loc snmp server location is the command name loc is the required parameter for the command Example 3 clear port group clear port group is the comm...

Page 133: ... entered The curly braces indicate that a parameter must be chosen from the list of choices Values ipaddr This parameter is a valid IP address made up of four decimal bytes ranging from 0 to 255 The default for all IP parameters consists of zeros that is 0 0 0 0 The interface IP address of 0 0 0 0 is invalid macaddr The MAC address format is six hexadecimal numbers separated by colons for example ...

Page 134: ...d may be completed by typing the tab or space bar command completion The value Err designates that the requested value was not internally accessible This should never happen and indicates that there is a case in the software that is not handled correctly The value of designates that the value is unknown Annotations The CLI allows the user to type single line annotations at the command prompt for u...

Page 135: ...nicating with the IBP Syntax show arp Default Setting None Command Mode Privileged Exec Display Message MAC Address A unicast MAC address for which the IBP has forwarding and or filtering information The format is 6 two digit hexadecimal numbers that are separated by colons For example 00 23 45 67 89 AB IP Address The IP address assigned to each interface Interface Valid slot number and a valid po...

Page 136: ...nt code Time The time this event occurred Note Event log information is retained across a system reset 7 3 4 show running config This command is used to display capture the current setting of different protocol packages supported on IBP This command displays captures only commands with settings configurations with values that differ from the default value The output is displayed in script format w...

Page 137: ...isplays IBP brief information and MIBs supported Syntax show sysinfo Default Setting None Command Mode Privileged Exec Display Message System Description The text used to identify this IBP System Name The name used to identify the IBP System Location The text used to identify the location of the IBP May be up to 31 alpha numeric characters The factory default is blank System Contact The text used ...

Page 138: ...k System Contact Text used to identify a contact person for this IBP May be up to 31 alphanumeric characters The factory default is blank MAC Address The burned in MAC address used for in band connectivity Web Server Displays to enable disable web server function Web Server Port Displays the web server http port The factory default is 80 Web Server Java Mode Specifies if the IBP should allow acces...

Page 139: ... of the boot ROM code currently running on the IBP For example if the major version was 2 and the minor version was 4 the format would be 2 4 Operating Code Version The release version maintenance number of the code currently running on the IBP For example if the major version was 2 and the minor version was 4 the format would be 2 4 Additional Packages This displays the additional packages that a...

Page 140: ...s 4 the format would be 2 4 7 3 9 show loginsession This command displays current telnet and serial port connections to the IBP Syntax show loginsession Default Setting None Command Mode Privileged Exec Display Message ID Login Session ID User Name The name the user will use to login using the serial port or Telnet A new user may be added to the IBP by entering a name in a blank entry The user nam...

Page 141: ...lects the Port control administration state The port must be enabled in order for it to be allowed into the network It may be enabled or disabled The factory default is enabled Physical Mode Selects the desired port speed and duplex mode If auto negotiation support is selected then the duplex mode and speed will be set from the auto negotiation process Note that the port s maximum capability full ...

Page 142: ...he factory default is enabled Physical Mode Selects the desired port speed and duplex mode If auto negotiation support is selected then the duplex mode and speed will be set from the auto negotiation process Note that the port s maximum capability full duplex 100M will be advertised Otherwise this object will determine the port s duplex mode and transmission rate The factory default is Auto Physic...

Page 143: ...r of collisions on this Ethernet segment Time Since Counters Last Cleared The elapsed time in days hours minutes and seconds since the statistics for this port were last cleared The display parameters when the argument is all are as follows Interface The physical slot and physical port or the logical slot and logical port Summary The summation of the statistics of all ports Packets Received Withou...

Page 144: ...packets received that were between 128 and 255 octets in length inclusive excluding framing bits but including FCS octets Packets Received 256 511 Octets The total number of packets including bad packets received that were between 256 and 511 octets in length inclusive excluding framing bits but including FCS octets Packets Received 512 1023 Octets The total number of packets including bad packets...

Page 145: ...es not include packets directed to the broadcast address Broadcast Packets Received The total number of good packets received that were directed to the broadcast address Note that this does not include multicast packets Total Packets Received with MAC Errors Jabbers Received The total number of packets received that were longer than 1518 octets excluding framing bits but including FCS octets and h...

Page 146: ...rk unicast address including those that were discarded or not sent Multicast Packets Transmitted The total number of packets that higher level protocols requested be transmitted to a Multicast address including those that were discarded or not sent Broadcast Packets Transmitted The total number of packets that higher level protocols requested be transmitted to the Broadcast address including those...

Page 147: ...total number of octets transmitted out of the interface including framing characters Packets Transmitted without Errors The total number of packets transmitted out of the interface Unicast Packets Transmitted The total number of packets that higher level protocols requested be transmitted to a subnetwork unicast address including those that were discarded or not sent Multicast Packets Transmitted ...

Page 148: ... The number of inbound packets that contained errors preventing them from being deliverable to a higher layer protocol Packets Transmitted Without Error The total number of packets transmitted out of the interface Broadcast Packets Transmitted The total number of packets that higher level protocols requested to be transmitted to the Broadcast address including those that were discarded or not sent...

Page 149: ...lot port is the desired interface number Default Setting None Command Mode Global Config 7 4 1 6 interface range This command is used to enter Interface range configuration mode Syntax interface range slot port slot port slot port slot port slot port slot port slot port slot port slot port slot port slot port is the desired interface number Default Setting None Command Mode Global Config ...

Page 150: ...uplex 100 100BASE T 10 10BASE T full duplex Full duplex half duplex Half duplex Default Setting None Command Mode Interface Config This command is used to set the speed and duplex mode for all interfaces Syntax Speed duplex all 10 100 full duplex half duplex 100 100BASE T 10 10BASE T full duplex Full duplex half duplex Half duplex all This command represents all interfaces Default Setting None Com...

Page 151: ...negotiate no This command disables automatic negotiation on a port Default Setting Enable Command Mode Interface Config This command enables automatic negotiation on all interfaces The default value is enabled Syntax negotiate all no negotiate all all This command represents all interfaces no This command disables automatic negotiation on all interfaces Default Setting Enable Command Mode Global C...

Page 152: ...r Default Setting 10 half duplex 10 full duplex 100 half duplex 100 full duplex and 1000 full duplex Command Mode Interface Config This command is used to set the capabilities on all interfaces Syntax capabilities all 10 100 full duplex half duplex 1000 full duplex no capabilities all 10 100 full duplex half duplex 1000 full duplex 10 10BASE T 100 100BASE T 1000 1000BASE T full duplex Full duplex ...

Page 153: ...ce Config 7 4 1 11 storm control flowcontrol This command enables 802 3x flow control for all interfaces on the IBP Note This command only applies to full duplex mode ports Syntax storm control flowcontrol no storm control flowcontrol no This command disables 802 3x flow control for all interfaces on the IBP Default Setting Disabled Command Mode Global Config This command enables 802 3x flow contr...

Page 154: ...es If the command is entered with no parameter the entire table is displayed This is the same as entering the optional all parameter Alternatively the administrator can enter a MAC Address to display the table entry for the requested MAC address and all entries following the requested MAC address Syntax show mac addr table macaddr all macaddr enter a MAC Address to display the table entry for the ...

Page 155: ...s identified with interface 3 1 Self The value of the corresponding instance is the address of one of the IBP s physical interfaces the system s own MAC address Other The value of the corresponding instance does not fall into one of the other categories 7 4 2 2 show mac address table igmpsnooping This command displays the IGMP Snooping entries in the Multicast Forwarding Database MFDB table Syntax...

Page 156: ...n The format is 6 or 8 two digit hexadecimal numbers that are separated by colons for example 01 23 45 67 89 AB In an IVL system the MAC address will be displayed as 8 bytes In an SVL system the MAC address will be displayed as 6 bytes Note This software version only supports IVL systems Type This displays the type of the entry Static entries are those that are configured by the end user Dynamic e...

Page 157: ...nce Last Reset This displays the largest number of entries that have been present in the Multicast Forwarding Database table This value is also known as the MFDB high water mark Current Entries This displays the current number of entries in the Multicast Forwarding Database table 7 4 2 5 show mac address table agetime This command displays the forwarding database address aging timeout Syntax show ...

Page 158: ... time Range 10 1000000 in seconds no This command sets the forwarding database address aging timeout to 300 seconds Default Setting 300 Command Mode Global Config 7 4 3 IGMP Snooping 7 4 3 1 Show Commands 7 4 3 1 1 show igmp snooping This command displays IGMP Snooping information Syntax show igmpsnooping uplinkSetName Default Setting None Command Mode Privileged Exec Display Message Uplink Set Na...

Page 159: ...the IGMP snooping to be enabled or disabled no This command disables IGMP Snooping on the specific uplink set Default Setting Disabled Command Mode Global Config 7 4 4 Port Channel 7 4 4 1 lacp This command enables Link Aggregation Control Protocol LACP on a port group Syntax Lacp uplinkSetName no lacp uplinkSetName uplinkSetName The name of a uplink set which the LACP to be enabled or disabled no...

Page 160: ...s indicates lacp is enabled or disabled for this uplink set 7 4 5 Uplink Sets 7 4 5 1 Show Commands This command display the Uplink Set information Syntax show uplink set uplinkSetName uplinkSetName The name of uplink set which user want to display Default Setting None Command Mode Privileged Exec Display Message Uplink Set Name This indicates the name of uplink set External Ports The member of th...

Page 161: ...inkSetName uplinkSetName A string associated with uplink set as a convenience It can be up to 32 alphanumeric characters and can not be blank no This command deletes an existing uplink set Default Setting None Command Mode Global Config This command is used to add or remove a port to form a uplink set Syntax uplink set uplinkSetName no uplink set uplinkSetName uplinkSetName A string associated wit...

Page 162: ...s List the internal port members Uplink Set Name The name of the uplink set External Ports List the external ports of the port group 7 4 6 2 Configuration Commands 7 4 6 2 1 port group This command is used to create or delete an port group Syntax port group portGroupName no port group portGroupName portGroupName A string associated with port group as a convenience It can be up to 32 alphanumeric c...

Page 163: ...onfig 7 4 7 Port Backup 7 4 7 1 Show Commands This command display the port backup information Syntax show port backup uplinkSetName status status uplinkSetName The name of a uplink set which user want to display Default Setting None Command Mode Privileged Exec Display Message Uplink Set Name This indicates the name of uplink set Port Backup This indicates port backup is enabled or disabled Exter...

Page 164: ...Default Setting None Command Mode Global Config This command is used to set the failback time of port backup for a uplink set Syntax port backup uplinkSetName failback time value no port backup uplinkSetName failback time uplinkSetName A string associated with uplink set a convenience It should be an existing uplink set value Time value is range from 1 to 60 seconds Default value is 60 seconds no ...

Page 165: ...4 8 1 Show Commands This command display the linkstate information Syntax show linkstate uplinkSetName uplinkSetName The name of a uplink set which user want to display Default Setting None Command Mode Privileged Exec Display Message Uplink Set Name This indicates the name of uplink set Linkstate This indicates linkstate is enabled or disabled for this uplink set 7 4 8 2 Configuration Commands 7 ...

Page 166: ...group information Syntax show vlan group vlanGroupName vlanGroupName The name of a vlan port group which user want to display Default Setting None Command Mode Privileged Exec Display Message VLAN port group name This indicates the name of vlan port group VLAN ID The VLAN Identifier of the VLAN Port Group The range of the VLAN ID is from 1 to 4094 Internal Ports Internal interface member of that V...

Page 167: ...tion for this vlan port group no This command disable linkstate for an existing vlan port group Default Setting None Command Mode Global Config This command is used to add remove a port to from vlan port group Syntax vlan group vlanGroupName no vlan group vlanGroupName vlanGroupName A string associated with vlan port group as a convenience no This command remove a port from the specified vlan port...

Page 168: ...and Reference Intelligent Blade Panel Module 167 vlanGroupName A string associated with vlan port group as a convenience no This command set the native VLAN option back to default value Default Setting Disable Command Mode Global Config ...

Page 169: ...dentifier of the Service LAN The range of the VLAN ID is from 1 to 4094 Internal Ports Internal interface member of that Service LAN Uplink Set Name Specified the Uplink Set for the external connection External Ports External interface member of the specified Uplink Set 7 4 10 2 Configuration Commands 7 4 10 2 1 svc lan This command is used to create or destroy a Service LAN Syntax svc lan svcLanN...

Page 170: ...Default Setting None Command Mode Global Config This command is used to add remove a port to from Service LAN Syntax svc lan svcLanName no svc lan svcLanName svcLanName A string associated with Service LAN as a convenience no This command remove a port from the specified Service LAN Default Setting None Command Mode Interface Config ...

Page 171: ...entifier of the Service VLAN The range of the VLAN ID is from 1 to 4094 Internal Ports Internal interface member of that Service VLAN Uplink Set Name Specified the Uplink Set for the external connection External Ports External interface member of the specified Uplink Set 7 4 11 2 Configuration Commands 7 4 11 2 1 svc vlan This command is used to create or destroy a Service VLAN Syntax svc vlan svc...

Page 172: ...ult Setting None Command Mode Global Config This command is used to add remove a port to from Service VLAN Syntax svc vlan svcVlanName no svc vlan svcVlanName svcVlanName A string associated with Service VLAN as a convenience no This command remove a port from the specified Service VLAN Default Setting None Command Mode Interface Config ...

Page 173: ...e IBP s network interface do not affect the configuration of the front panel ports through which traffic is switched or routed Syntax show ip interface Default Setting None Command Mode Privileged Exec Display Message IP Address The IP address of the interface The factory default value is 0 0 0 0 Subnet Mask The IP subnet mask for this interface The factory default value is 0 0 0 0 Inband Administ...

Page 174: ...de Privileged Exec Display Message Index The index of stations IP Address The IP address of stations that are allowed to make configuration changes to the IBP 7 5 1 4 mtu This command sets the maximum transmission unit MTU size in bytes for physical and port channel LAG interfaces For the standard implementation the range of 1518 9216 is a valid integer between 1518 9216 Syntax mtu 1518 9216 no mt...

Page 175: ...o ip address ipaddr IP address netmask Subnet Mask vlan id Inband Administration VLAN ID range is from 1 4094 no Restore the default IP address and Subnet Mask Default Setting IP address 0 0 0 0 Subnet Mask 0 0 0 0 Command Mode Global Config Command Usage Once the IP address is set the VLAN ID s value will be assigned to management VLAN 7 5 1 6 ip default gateway This command sets the IP Address o...

Page 176: ...ion protocol to be used If you modify this value the change is effective immediately Syntax ip address protocol bootp dhcp vlanID none bootp Obtains IP address from BOOTP dhcp Obtains IP address from DHCP none Obtains IP address by setting configuration vlanID VLAN ID Range 1 4094 Default Setting None Command Mode Global Config 7 5 1 8 ip address mgmt vlan This command specifies the network config...

Page 177: ...lanID VLAN ID Range 1 4094 Default Setting VLAN ID 1 Command Mode Global Config 7 5 1 9 ip filter This command is used to enable the IP filter function Syntax ip filter no ip filter no Disable ip filter Default Setting Disabled Command Mode Global Config This command is used to set an IP address to be a filter ...

Page 178: ...mand Mode Privileged Exec Display Message Serial Port Login Timeout minutes Specifies the time in minutes of inactivity on a Serial port connection after which the IBP will close the connection Any numeric value between 0 and 160 is allowed the factory default is 5 A value of 0 disables the timeout Baud Rate The default baud rate at which the serial port will try to connect The available values ar...

Page 179: ...lnet the Telnet logon interface closes Silent Time sec Use this command to set the amount of time the management console is inaccessible after the number of unsuccessful logon attempts exceeds the threshold set by the password threshold command 7 5 2 2 line console This command is used to enter Line configuration mode Syntax line console Default Setting None Command Mode Global Config 7 5 2 3 baud...

Page 180: ... 0 160 0 160 max connect time Range 0 160 no This command sets the maximum connect time in minutes without console activity to 5 Default Setting 5 Command Mode Line Config 7 5 2 5 password threshold This command is used to set the password instruction threshold limiting the number of failed login attempts Syntax password threshold 0 120 no password threshold threshold max threshold Range 0 120 no ...

Page 181: ... the maximum value to the default Default Setting 0 Command Mode Line Config 7 5 3 Telnet Session Commands 7 5 3 1 telnet This command establishes a new outbound telnet connection to a remote host Syntax telnet host port debug line echo host A hostname or a valid IP address port A valid decimal integer in the range of 0 to 65535 where the default value is 23 debug Display current enabled telnet op...

Page 182: ...0 The factory default is 5 Maximum Number of Remote Connection Sessions This object indicates the number of simultaneous remote connection sessions allowed The factory default is 5 Allow New Telnet Sessions Indicates that new telnet sessions will not be allowed when set to no The factory default value is yes Password Threshold When the logon attempt threshold is reached on the console port the sys...

Page 183: ...sions does not become effective until the session is reaccessed Any keystroke will also activate the new timeout duration Syntax exec timeout 1 160 no exec timeout sec max connect time Range 1 160 no This command sets the remote connection session timeout value in minutes to the default Note Changing the timeout value for active sessions does not become effective until the session is reaccessed An...

Page 184: ...value of 0 indicates that no remote connection can be established The range is 0 to 5 Syntax maxsessions 0 5 no maxsessions 0 5 max sessions Range 0 5 no This command sets the maximum value to be 5 Default Setting 5 Command Mode Telnet Config 7 5 3 7 sessions This command regulates new telnet sessions If sessions are enabled new telnet sessions can be established until there are no more sessions a...

Page 185: ...bled new outbound telnet sessions can be established until it reaches the maximum number of simultaneous outbound telnet sessions allowed If disabled no new outbound telnet session can be established An established session remains active until the session is ended or an abnormal network error ends it Syntax telnet sessions no telnet sessions no This command disables new outbound telnet connections...

Page 186: ...ut This command sets the outbound telnet session timeout value in minute Note Changing the timeout value for active sessions does not become effective until the session is reaccessed Any keystroke will also activate the new timeout duration Syntax telnet exec timeout 1 160 no telnet exec timeout 1 160 max connect time Range 1 160 no This command sets the remote connection session timeout value in ...

Page 187: ...m Number of Outbound Telnet Sessions Indicates the number of simultaneous outbound telnet connections allowed Allow New Outbound Telnet Sessions Indicates whether outbound telnet sessions will be allowed 7 5 4 SNMP Server Commands 7 5 4 1 show snmp This command displays SNMP community information Six communities are supported You can add change or delete communities The IBP does not have to be res...

Page 188: ...k A mask to be ANDed with the requesting entity s IP address before comparison with IP Address If the result matches with the IP Address then the address is an authenticated IP address For example if the IP Address 9 47 128 0 and the corresponding Subnet Mask 255 255 255 0 a range of incoming IP addresses would match That is the incoming IP Address could equal 9 47 128 0 9 47 128 255 The default v...

Page 189: ...efault is enabled Indicates whether a trap will be sent when the same user ID is logged into the IBP more than once at the same time either via telnet or serial port 7 5 4 3 snmp server sysname This command sets the name of the IBP The range for name is from 1 to 31 alphanumeric characters Syntax snmp server sysname name name Range is from 1 to 31 alphanumeric characters Default Setting None Comma...

Page 190: ...g None Command Mode Global Config 7 5 4 6 snmp server community This command adds and names a new SNMP community A community name is a name associated with the IBP and with a set of SNMP managers that manage it with a specified privilege level The length of the name can be up to 16 case sensitive characters Note Community names in the SNMP community table must be unique If you make multiple entrie...

Page 191: ...h this community manages the IBP according to its access right If the community is disabled no SNMP requests using this community are accepted In this case the SNMP manager associated with this community cannot manage the IBP until the Status is changed back to Enable Syntax snmp server community mode name no snmp server community mode name name community name no This command deactivates an SNMP c...

Page 192: ...0 will allow access from any IP address The name is the applicable community name Syntax snmp server community ipmask ipmask name no snmp server community ipmask name name community name ipmask a client IP mask no This command sets a client IP mask for an SNMP community to 0 0 0 0 The name is the applicable community name The community name may be up to 16 alphanumeric characters Default Setting 0...

Page 193: ...y IP address Otherwise this value is ANDed with the mask to determine the range of allowed client IP addresses The name is the applicable community name Syntax snmp server host ipaddr name no snmp server host name name community name ipaddr a client IP address no This command sets a client IP address for an SNMP community to 0 0 0 0 The name is the applicable community name Default Setting 0 0 0 0...

Page 194: ...server enable traps linkmode no snmp server enable traps linkmode no This command disables Link Up Down traps for the entire IBP Default Setting Enabled Command Mode Global Config This command enables Multiple User traps When the traps are enabled a Multiple User Trap is sent when a user logs in to the terminal interface EIA 232 or telnet and there is an existing terminal interface session Syntax ...

Page 195: ...Trap Name The community string of the SNMP trap packet sent to the trap manager This may be up to 16 alphanumeric characters This string is case sensitive IP Address The IP address to receive SNMP traps from this device Enter 4 numbers between 0 and 255 separated by periods SNMP Version The trap version to be used by the receiver SNMP v1 Uses SNMP v1 to send traps to the receiver SNMP v2 Uses SNMP...

Page 196: ...This command is valid only when the Link Up Down Flag is enabled See snmpserver enable traps linkmode command Default Setting Disabled Command Mode Interface Config This command enables link status traps for all interfaces Note This command is valid only when the Link Up Down Flag is enabled See snmpserver enable traps linkmode command Syntax snmp trap link status all no snmp trap link status all ...

Page 197: ...acters ipaddr an IP address of the trap receiver no This command deletes trap receivers for a community Default Setting None Command Mode Global Config 7 5 5 4 snmptrap ipaddr This command changes the IP address of the trap receiver for the specified community name The maximum length of name is 16 case sensitive alphanumeric characters Note IP addresses in the SNMP trap receiver table must be uniq...

Page 198: ...e This command activates or deactivates an SNMP trap Enabled trap receivers are active able to receive traps Disabled trap receivers are inactive not able to receive traps Syntax snmptrap mode name ipaddr no snmptrap mode name ipaddr name SNMP trap name ipadd an IP address no This command deactivates an SNMP trap Trap receivers are inactive not able to receive traps Default Setting None Command Mo...

Page 199: ...re Port This field specifies the port configured for SSLT Secure Protocol Level s The protocol level may have the values of SSL3 TSL1 or both SSL3 and TSL1 7 5 6 2 ip javamode This command specifies whether the IBP should allow access to the Java applet in the header frame of the Web interface When access is enabled the Java applet can be viewed from the Web interface When access is disabled the u...

Page 200: ... Command Mode Global Config 7 5 6 4 ip http server This command enables access to the IBP through the Web interface When access is enabled the user can login to the IBP from the Web interface When access is disabled the user cannot login to the IBP s Web server Disabling the Web interface takes effect immediately All interfaces are affected Syntax ip http server no ip http server no This command d...

Page 201: ...ure port portid no ip http secure port portid SSLT Port value no This command is used to reset the SSLT port to the default value Default Setting 443 Command Mode Global Config 7 5 6 6 ip http secure server This command is used to enable the secure socket layer for secure HTTP Syntax ip http secure server no ip http secure server no This command is used to disable the secure socket layer for secur...

Page 202: ...ocol protocollevel1 protocollevel2 no ip http secure protocol protocollevel1 protocollevel2 protocollevel1 2 The protocol level can be set to TLS1 SSL3 or to both TLS1 and SSL3 no This command is used to remove protocol levels versions for secure HTTP Default Setting SSL3 and TLS1 Command Mode Global Config 7 5 7 Secure Shell SSH Commands 7 5 7 1 show ip ssh This command displays the SSH settings ...

Page 203: ...mum number of inbound SSH sessions allowed on the IBP SSH Timeout This field is the inactive timeout value for incoming SSH sessions to the IBP 7 5 7 2 ip ssh This command is used to enable SSH Syntax ip ssh no ip ssh no This command is used to disable SSH Default Setting Disabled Command Mode Global Config 7 5 7 3 ip ssh protocol This command is used to set or remove protocol levels or versions f...

Page 204: ...sions no This command sets the maximum number of SSH connection sessions that can be established to the default value Default Setting SSH1 and SSH2 Command Mode Global Config 7 5 7 5 ip ssh timeout This command sets the SSH connection session timeout value in minutes A session is active as long as the session has been idle for the value set A value of 0 indicates that a session remains active inde...

Page 205: ...s not become effective until the session is reaccessed Any keystroke will also activate the new timeout duration Default Setting 5 Command Mode Global Config 7 5 8 DHCP Client Commands 7 5 8 1 ip dhcp restart This command is used to initiate a BOOTP or DCHP client request Syntax ip dhcp restart Default Setting None Command Mode Global Config 7 5 8 2 ip dhcp client identifier This command is used t...

Page 206: ...ip dhcp client identifier text text hex hex no ip dhcp client identifier text A text string Range 1 15 characters hex The hexadecimal value 00 00 00 00 00 00 no This command is used to restore to default value Default Setting System Burned In MAC Address Command Mode Global Config ...

Page 207: ...ng Range 1 32 characters no This command is used to restore to default value Default Setting None Command Mode Global Config 7 5 9 2 lock_message This command allows specification of the displayed message in the Web GUI of IBP when a lock is set It must be possible to specify any HTML string Use lock_message default to restore default value Syntax lock_message message_string default message_string...

Page 208: ...k configuration Syntax lock_reset Default Setting None Command Mode Global Config 7 5 9 4 show lock This command displays the information which contented the lock status and the list of lock identifiers that are registered And displays the current lock message Syntax show lock Default Setting None Command Mode Privileged Exec Display Message Lock Status This field indicates the current lock status...

Page 209: ...to the console log Messages with an equal or lower numerical severity are logged Buffered Logging The mode for buffered logging Syslog Logging The mode for logging to configured syslog hosts If set to disable logging stops to all syslog hosts Log Messages Received The number of messages received by the log process This includes messages that are dropped or ignored Log Messages Dropped The number o...

Page 210: ...rap Syntax Show logging traplogs Default Setting None Command Mode Privileged Exec Display Message Number of Traps since last reset The number of traps that have occurred since the last reset of this device Trap Log Capacity The maximum number of traps that could be stored in the IBP Log The sequence number of this trap System Up Time The relative time since the last reboot of the IBP at which thi...

Page 211: ...the specified address Port Server Port Number This is the port on the local host from which syslog messages are sent Status The state of logging to configured syslog hosts If the status is disable no logging occurs 7 6 4 Configuration Commands 7 6 4 1 logging buffered This command enables logging to in memory log where up to 128 logs are kept Syntax logging buffered no logging buffered no This com...

Page 212: ...ogging when full capacity reached Default Setting None Command Mode Privileged Exec 7 6 4 2 logging console This command enables logging to the console Syntax logging console severitylevel 0 7 no logging console severitylevel 0 7 The value is specified as either an integer from 0 to 7 or symbolically through one of the following keywords emergency 0 alert 1 critical 2 error 3 warning 4 notice 5 in...

Page 213: ...dress of the log server port Port number severitylevel 0 7 The value is specified as either an integer from 0 to 7 or symbolically through one of the following keywords emergency 0 alert 1 critical 2 error 3 warning 4 notice 5 informational 6 debug 7 Default Setting None Command Mode Privileged Exec This command disables logging to hosts Syntax logging host remove hostindex hostindex Index of the ...

Page 214: ...address hostindex Index of the log server hostaddress New IP address of the log server Default Setting None Command Mode Privileged Exec 7 6 4 4 logging syslog This command enables syslog logging Syntax logging syslog no logging syslog no Disables syslog logging Default Setting None Command Mode Privileged Exec This command sets the local port number of the LOG client for logging messages ...

Page 215: ...gging syslog port portid no logging syslog port no Resets the local logging port to the default Default Setting None Command Mode Privileged Exec 7 6 4 5 clear logging buffered This command clears all in memory log Syntax clear logging buffered Default Setting None Command Mode Privileged Exec ...

Page 216: ... in the script file Application of the commands stops at the first failure of a command Syntax script apply scriptname scriptname The name of the script to be applied Default Setting None Command Mode Privileged Exec 7 7 2 script delete This command deletes a specified script or all the scripts presented in the IBP Syntax script delete scriptname all scriptname The name of the script to be deleted...

Page 217: ...cripts present on the IBP as well as the total number of files present Syntax script list Default Setting None Command Mode Privileged Exec 7 7 4 script show This command displays the content of a script file Syntax script show scriptname scriptname Name of the script file Default Setting None Command Mode Privileged Exec ...

Page 218: ...ctory default admin and guest User Access Mode Shows whether the operator is able to change parameters on the IBP Read Write or is only able to view them Read Only As a factory default admin has Read Write access and guest has Read Only access There can only be one Read Write user and up to five Read Only users SNMPv3 AccessMode This field displays the SNMPv3 Access Mode If the value is set to Rea...

Page 219: ... press enter Syntax username username password nopassword no username username username is a new user name Range up to 8 characters no This command removes a user name created before Note The admin user account cannot be deleted nopassword This command sets the password of an existing operator to blank When a password is changed a prompt will ask for the operator s former password If none press en...

Page 220: ...n user The valid encryption protocols are none or des The des protocol requires a key which can be specified on the command line The key may be up to 16 characters If the des protocol is specified but a key is not provided the user will be prompted to enter the key If none is specified a key must not be provided The username is the login user name for which the specified encryption protocol will b...

Page 221: ...None Command Mode Privileged Exec Display Message User This field lists every user that has an authentication login list assigned System Login This field displays the authentication login list assigned to the user for system login 802 1x This field displays the authentication login list assigned to the user for 802 1x port security 7 9 1 2 show authentication This command displays the ordered auth...

Page 222: ...information about the users assigned to the specified authentication login list If the login is assigned to non configured users the user default will appear in the user column Syntax show authentication users listname listname the authentication login listname Default Setting None Command Mode Privileged Exec Display Message User Name This field displays the user assigned to the specified authent...

Page 223: ...ing Authenticating Authenticated Aborting Held ForceAuthorized and ForceUnauthorized Backend Authentication State Current state of the backend authentication state machine Possible values are Request Response Success Fail Timeout Idle and Initialize Quiet Period The timer used by the authenticator state machine on this port to define periods of time in which it will not attempt to acquire a suppli...

Page 224: ...a summary of the global dot1x configuration and the dot1x statistics for a specified port Syntax show dot1x statistics slot port slot port is the desired interface number Default Setting None Command Mode Privileged Exec Display Message Port The interface whose statistics are displayed EAPOL Frames Received The number of valid EAPOL frames of any type that have been received by this authenticator ...

Page 225: ... type is not recognized 7 9 1 7 show dot1x summary This command is used to show a summary of the global dot1x configuration and summary information of the dot1x configuration for a specified port or all ports Syntax show dot1x summary slot port all slot port is the desired interface number all All interfaces Default Setting None Command Mode Privileged Exec Display Message Interface The interface ...

Page 226: ...vers This command is used to display items of the configured RADIUS servers Syntax show radius servers Default Setting None Command Mode Privileged Exec Display Message IP Address IP Address of the configured RADIUS server Port The port in use by this server Type Primary or secondary Secret Configured Yes No Message Authenticator The message authenticator attribute configured for the radius server...

Page 227: ...onds for request re transmissions RADIUS Accounting Mode Disable or Enabled 7 9 1 11 show radius accounting This command is used to display the configured RADIUS accounting mode accounting server and the statistics for the configured accounting server Syntax show radius accounting statistics ipaddr ipaddr is an IP Address Default Setting None Command Mode Privileged Exec Display Message If the opt...

Page 228: ...formed Responses The number of malformed RADIUS Accounting Response packets received from this server Malformed packets include packets with an invalid length Bad authenticators and unknown types are not included as malformed accounting responses Bad Authenticators The number of RADIUS Accounting Response packets containing invalid authenticators received from this accounting server Pending Reques...

Page 229: ...ncluding both valid and invalid packets which were received from this server Access Challenges The number of RADIUS Access Challenge packets including both valid and invalid packets which were received from this server Malformed Access Responses The number of malformed RADIUS Access Response packets received from this server Malformed packets include packets with an invalid length Bad authenticato...

Page 230: ...server and client Server 2 IP Second TACACS Server IP address Server 2 Timeout sec Timeout value in seconds while TACACS server has no response Server 2 Retry Retry count if TACACS server has no response Server 2 Mode Current TACACS server admin mode disable master or slave Server 3 Port TACACS packet port number Server 3 Key Secret Key between TACACS server and client Server 3 IP Third TACACS Ser...

Page 231: ...Exec Display Message Intf Interface Number Interface Admin Mode Port Locking mode for the Interface Dynamic Limit Maximum dynamically allocated MAC Addresses Static Limit Maximum statically allocated MAC Addresses Violation Trap Mode Whether violation traps are enabled This command shows the dynamically locked MAC addresses for port Syntax show port security dynamic slot port Default Setting None ...

Page 232: ...ation slot port Default Setting None Command Mode Privileged Exec Display Message MAC address MAC address of discarded packet on locked ports 7 9 2 Configuration Commands 7 9 2 1 authentication login This command creates an authentication login list The listname is up to 15 alphanumeric characters and is not case sensitive Up to 10 authentication login lists can be configured on the IBP When a lis...

Page 233: ...configuration cannot be changed Syntax authentication login listname method1 method2 method3 no authentication login listname listname creates an authentication login list Range up to 15 characters method1 3 The possible method values are local radius reject and tacacs no This command deletes the specified authentication login list The attempt to delete will fail if any of the following conditions...

Page 234: ...st be a configured username and the listname must be a configured login list If the user is assigned a login list that requires remote authentication all access to the interface from all CLI web and telnet sessions will be blocked until the authentication is complete Note that the login list associated with the admin user cannot be changed to prevent accidental lockout from the IBP Syntax username...

Page 235: ...ort slot port is the desired interface number Default Setting None Command Mode Privileged Exec 7 9 3 2 dot1x default login This command assigns the authentication login list to use for non configured users for 802 1x port security This setting is over ridden by the authentication login list assigned to a specific user if the user is configured locally If this value is not configured users will be...

Page 236: ...er is the login user name listname an authentication login list Default Setting None Command Mode Global Config 7 9 3 4 dot1x system auth control This command is used to enable the dot1x authentication support on the IBP By default the authentication support is disabled While disabled the dot1x configuration is retained and can be changed but is not activated Syntax dot1x system auth control no do...

Page 237: ...port or all ports Default Setting None Command Mode Global Config 7 9 3 6 dot1x port control This command sets the authentication mode to be used on all ports The control mode may be one of the following force unauthorized The authenticator PAE unconditionally sets the controlled port to unauthorized force authorized The authenticator PAE unconditionally sets the controlled port to authorized auto...

Page 238: ... controlled port to authorized auto The authenticator PAE sets the controlled port mode to reflect the outcome of the authentication exchanges between the supplicant authenticator and the authentication server Syntax dot1x port control auto force authorized force unauthorized no dot1x port control no This command sets the authentication mode to be used on the specified port to auto Default Setting...

Page 239: ...mmand Mode Interface Config 7 9 3 8 dot1x re authentication This command enables re authentication of the supplicant for the specified port Syntax dot1x re authentication no dot1x re authentication no This command disables re authentication of the supplicant for the specified port Default Setting Disabled Command Mode Interface Config 7 9 3 9 dot1x re reauthenticate This command begins the re auth...

Page 240: ...e value in seconds of the timer used by the authenticator state machine on this port to define periods of time in which it will not attempt to acquire a supplicant The quiet period must be a value in the range 0 65535 tx period Sets the value in seconds of the timer used by the authenticator state machine on this port to determine when to send an EAPOL EAP Request Identity frame to the supplicant ...

Page 241: ...nding default values are set Default Setting reauth period 3600 seconds quiet period 60 seconds tx period 30 seconds supp timeout 30 seconds server timeout 30 seconds Command Mode Interface Config 7 9 4 Radius Configuration Commands 7 9 4 1 radius accounting mode This command is used to enable the RADIUS accounting function Syntax radius accounting mode no radius accounting mode no This command is...

Page 242: ... is currently configured it must be removed from the configuration using the no form of the command before this command succeeds If the optional port parameter is used the command will configure the UDP port to use to connect to the RADIUS accounting server The IP address specified must match that of a previously configured accounting server If a port is already configured for the accounting serve...

Page 243: ...ric value not exceeding 20 characters Syntax radius server key acct auth ipaddr ipaddr is a IP address Default Setting None Command Mode Global Config 7 9 4 4 radius server retransmit This command sets the maximum number of times a request packet is re transmitted when no response is received from the RADIUS server The retries value is an integer in the range of 1 to 15 Syntax radius server retran...

Page 244: ...r timeout seconds no radius server timeout seconds the maximum timeout Range 1 30 no This command sets the timeout value in seconds after which a request must be retransmitted to the RADIUS server if no response is received to the default value that is 6 Default Setting 6 Command Mode Global Config 7 9 4 6 radius server msgauth This command enables the message authenticator attribute for a specifi...

Page 245: ...one of these servers can be configured as the primary If a primary server is already configured prior to this command being executed the server specified by the IP address specified used in this command will become the new primary server The IP address must match that of a previously configured RADIUS authentication server Syntax radius server primary ipaddr ipaddr is a IP address Default Setting ...

Page 246: ...master slave no tacacs mode 1 3 1 3 The valid value of index is 1 2 and 3 no This command is used to disable it Default Setting Disabled Command Mode Global Config 7 9 5 3 tacacs server ip This command is used to configure the TACACS server IP address Syntax tacacs server ip 1 3 ipaddr no tacacs server ip 1 3 ipaddr An IP address 1 3 The valid value of index is 1 2 and 3 no This command is used to...

Page 247: ...35 no tacacs port 1 3 1 65535 service port Range 1 to 65535 1 3 The valid value of index is 1 2 and 3 no This command is used to reset port id to the default value Default Setting 49 Command Mode Global Config 7 9 5 5 tacacs key This command is used to configure the TACACS server shared secret key Syntax tacacs key 1 3 no tacacs key 1 3 Note that the length of the secret key is up to 32 characters...

Page 248: ... configure the TACACS packet retransmit times Syntax tacacs retry 1 3 1 9 no tacacs retry 1 3 1 9 retry times Range 1 to 9 1 3 The valid value of index is 1 2 and 3 no This command is used to reset retry value to the default value Default Setting 5 Command Mode Global Config 7 9 5 7 tacacs timeout This command is used to configure the TACACS request timeout of an instance Syntax tacacs timeout 1 3...

Page 249: ...etting 3 Command Mode Global Config 7 9 6 Port Security Configuration Commands 7 9 6 1 port security This command enables port locking at the system level Global Config or port level Interface Config Syntax port security no port security Default Setting None Command Mode Global Config Interface Config 7 9 6 2 port security max dynamic This command sets the maximum of dynamically locked MAC address...

Page 250: ...o its default value Default Setting 600 Command Mode Interface Config 7 9 6 3 port security max static This command sets the maximum number of statically locked MAC addresses allowed on a specific port Syntax port security max static 0 20 no port security max static no This command resets the maximum number of statically locked MAC addresses allowed on a specific port to its default value Default ...

Page 251: ...1 3965 no port security mac address mac addr 1 3965 1 3965 VLAN ID mac addr no This command removes a MAC address from the list of statically locked MAC addresses Default Setting None Command Mode Interface Config 7 9 6 5 port security mac address move This command converts dynamically locked MAC addresses to statically locked addresses Syntax port security mac address move Default Setting None Co...

Page 252: ...ged Exec Display Message Last Update Time Time of last clock update Last Unicast Attempt Time Time of last transmit query in unicast mode Last Attempt Status Status of the last SNTP request in unicast mode or unsolicited message in broadcast mode Broadcast Count Current number of unsolicited broadcast messages that have been received and processed by the SNTP client since last reboot Time Zone Tim...

Page 253: ...s Type of Server Server Stratum Claimed stratum of the server for the last received valid packet Server Reference ID Reference clock identifier of the server for the last received valid packet Server Mode SNTP Server mode Server Max Entries Total number of SNTP Servers allowed Server Current Entries Total number of SNTP configured For each configured server IP Address IP Address of configured SNTP...

Page 254: ...ast client poll interval 6 10 The range is 6 to 16 no This command will reset the poll interval for SNTP broadcast client back to its default value Default Setting 6 Command Mode Global Config 7 10 2 2 sntp client mode This command will enable Simple Network Time Protocol SNTP client mode and optionally setting the mode to either broadcast multicast or unicast Syntax sntp client mode broadcast uni...

Page 255: ...It s 2 value seconds where value is 6 to 10 no Resets the SNTP client port id Default Setting The default portid is 123 Command Mode Global Config 7 10 2 4 sntp unicast client poll interval This command will set the poll interval for SNTP unicast clients in seconds Syntax sntp unicast client poll interval 6 10 no sntp unicast client poll interval 6 10 Polling interval It s 2 value seconds where va...

Page 256: ...t poll timeout poll timeout no sntp unicast client poll timeout poll timeout Polling timeout in seconds The range is 1 to 30 no This command will reset the poll timeout for SNTP unicast clients to its default value Default Setting The default value is 5 Command Mode Global Config 7 10 2 6 sntp unicast client poll retry This command will set the poll retry for SNTP unicast clients in seconds Syntax...

Page 257: ... or a domain name and the address type either ipv4 or dns The optional priority can be a value of 1 3 the version is a value of 1 4 and the port id is a value of 1 65535 Syntax sntp server ipaddress domain name addresstype 1 3 version portid no sntp server remove ipaddress domain name ipaddress domain name IP address of the SNTP server addresstype The address type is ipv4 or dns 1 3 The range is 1...

Page 258: ...ers 0 12 Number of hours before after UTC Range 0 12 hours 0 59 Number of minutes before after UTC Range 0 59 minutes before utc Sets the local time zone before east of UTC after utc Sets the local time zone after west of UTC Default Setting Taipei 08 00 After UTC Command Mode Global Config 7 11 System Utilities 7 11 1 clear 7 11 1 1 clear arp This command causes all ARP entries of type dynamic to...

Page 259: ...ult Setting None Command Mode Privileged Exec 7 11 1 3 clear eventlog This command is used to clear the event log which contains error messages from the system Syntax clear eventlog Default Setting None Command Mode Privileged Exec 7 11 1 4 clear logging buffered This command is used to clear the message log maintained by the IBP The message log contains system trace information ...

Page 260: ... defaults without powering off the IBP The IBP is automatically reset when this command is processed You are prompted to confirm that the reset should proceed Syntax clear config Default Setting None Command Mode Privileged Exec 7 11 1 6 clear pass This command resets all user passwords to the factory defaults without powering off the IBP You are prompted to confirm that the password reset should ...

Page 261: ... mac address table of IBP Syntax clear mac addr table dynamic Default Setting None Command Mode Privileged Exec 7 11 1 8 clear counters This command clears the stats for a specified slot port or for all the ports or for the entire IBP based upon the argument Syntax clear counters slot port all slot port is the desired interface number all All interfaces Default Setting None Command Mode Privileged...

Page 262: ...rt group Default Setting None Command Mode Privileged Exec 7 11 1 10 enable passwd This command changes Privileged EXEC password Syntax enable passwd Default Setting None Command Mode Global Config 7 11 1 11 clear igmp snooping This command clears the tables managed by the IGMP Snooping function and will attempt to delete these entries from the Multicast Forwarding Database Syntax clear igmp snoop...

Page 263: ...ip filter entries Syntax clear ip filter Default Setting None Command Mode Privileged Exec 7 11 1 13 clear dot1x statistics This command resets the 802 1x statistics for the specified port or for all ports Syntax clear dot1x statistics all slot port slot port is the desired interface number all All interfaces Default Setting None Command Mode Privileged Exec ...

Page 264: ...ploads and downloads to from the IBP Local URLs can be specified using tftp or xmodem The following can be specified as the source file for uploading from the IBP startup config startup config event log eventlog message log msglog and trap log traplog A URL is specified for the destination The command can also be used to download the startup config or code image by specifying the source as a URL a...

Page 265: ...script sourcefilename url where url xmodem tftp ipaddr path file sourcefilename The filename of a configuration file or a script file url xmodem or tftp ipaddr path file errorlog event Log file log message Log file traplog trap Log file Default Setting None Command Mode Privileged Exec Files download from PC to board Syntax copy url startup config destfilename copy url image destfilename copy url ...

Page 266: ...file sshkey dsa SSH DSA Key file sslpem root Secure Root PEM file sslpem server Secure Server PEM file sslpem dhweak Secure DH Weak PEM file sslpem dhstrong Secure DH Strong PEM file Default Setting None Command Mode Privileged Exec Write running configuration file into flash Syntax copy running config startup config filename filename name of the configuration file Default Setting None Command Mod...

Page 267: ...nner url xmodem or tftp ipaddr path file no Delete CLI banner Default Setting None Command Mode Privileged Exec 7 11 3 delete This command is used to delete a configuration or image file Syntax delete filename filename name of the configuration or image file Default Setting None Command Mode Privileged Exec 7 11 4 dir This command is used to display a list of files in Flash memory ...

Page 268: ...ivileged Exec Display Message Column Heading Description date The date that the file was created file name The name of the file file type File types Boot Rom Operation Code and Config file startup Shows if this file is used when the system is started size The length of the file in bytes 7 11 5 whichboot This command is used to display which files were booted when the system powered up Syntax which...

Page 269: ...puter is on the network and listens for connections To use this command configure the IBP for network in band connection as described in the FASTPATH 2402 4802 Hardware User Guide The source and target devices must have the ping utility enabled and running on top of TCP IP The IBP can be pinged from any IP workstation with which the IBP is connected through the default VLAN VLAN 1 as long as there...

Page 270: ... when traveling to their destination through the network on a hop by hop basis ipaddr should be a valid IP address port should be a valid decimal integer in the range of 0 zero to 65535 The default value is 33434 The optional port parameter is the UDP port used as the destination of packets sent as part of the traceroute This port should be an unused port on the destination system Syntax tracerout...

Page 271: ...terface CLI commands issued on the system Syntax Logging cli command Default Setting None Command Mode Global Config 7 11 10 calendar set This command is used to set the system clock Syntax calendar set mm dd yy hh mm ss mm dd yy mm is month range 1 12 dd is day range 1 31 yy is year range 2000 2099 hh mm ss hh in 24 hour format Range 0 23 mm is minute Range 0 59 ss is second Range 0 59 Default Se...

Page 272: ...figuration to initialize the system You are prompted to confirm that the reset should proceed A successful reset is indicated by the LEDs on the IBP Syntax reload Default Setting None Command Mode Privileged Exec 7 11 12 configure This command is used to activate global configuration mode Syntax configure Default Setting None Command Mode Privileged Exec 7 11 13 disconnect This command is used to ...

Page 273: ...etting None Command Mode Privileged Exec 7 11 14 hostname This command is used to set the prompt string Syntax hostname prompt_string prompt_string Prompt string Default Setting vty 0 Command Mode Global Config 7 11 15 quit This command is used to exit a CLI session Syntax quit Default Setting None Command Mode Privileged Exec ...

Page 274: ...Command Mode Global Config 7 12 2 ip dhcp client identifier This commands specifies the DHCP client identifier for the IBP Syntax ip dhcp client identifier text text hex hex text A text string which length is 1 to 15 hex A hex string which format is XX XX XX XX XX XX X is 0 9 A F Default Setting The default value for client identifier is a text string FSC Command Mode Global Config ...

Page 275: ...gement application on your host computer 2 Verify that the management station and IBP are configured to the same IP domain 3 Configure the community name and access rights for network management access via SNMP 4 To receive trap messages from the IBP you must specify the IP address of the trap managers associated community names and trap types that the IBP will generate 5 An SNMP management statio...

Page 276: ...IB v3 tgt my RFC 2574 SNMP USER BASED SM MIB v3 usm my RFC 2575 SNMP VIEW BASED ACM MIB v3 acm my RFC 2576 SNMP COMMUNITY MIB coex my RFC 2618 RADIUS AUTH CLIENT MIB radius_auth_client my RFC 2620 RADIUS ACC CLIENT MIB radius_acc_client my P BRIDGE MIB RFC 2674 Q BRIDGE MIB pbridge my vlan my RFC 2737 ENTITY MIB entity my RFC 2819 RMON MIB rmon my RFC 3289 DIFFSERV MIB DIFFSERV DSCP TC diffserv my...

Page 277: ... KEYING PRIVATE MIB fastpath_keying my OUTBOUNDTELNET PRIVATE MIB fastpath_telnet my DVMRP STD MIB dvmrp my MULTICAST MIB fastpathmulticast my MGMT SECURITY MIB fastpath_mgmt_security my COS MIB fastpath_qos_cos my QOS MIB qos my QOS ACL MIB qos_acl my QOS DIFFSERV EXTENSIONS MIB qos_diffserv_extensions my QOS DIFFSERV PRIVATE MIB qos_diffserv_private my ROUTING MIB fastpathrouting my RADIUS CLIEN...

Page 278: ... to different variables in this MIB group The variables supported by this group are listed in the following table RFC 2233 IF MIB interfaces ifNumber No RO ifMIBObjects ifTableLastChange YES RO ifStackLastChange No RO ifTable Index ifIndex ifDescr Yes RO ifType Yes RO ifMtu Yes RO ifSpeed Yes RO ifPhysAddress Yes RO ifAdminStatus Yes RW ifOperStatus Yes RO ifLastChange Yes RO ifInOctets Yes RO ifI...

Page 279: ...InMulticastPkts Yes RO ifInBroadcastPkts Yes RO ifOutMulticastPkts Yes RO ifOutBroadcastPkts Yes RO ifHCInOctets Yes RO ifHCInUcastPkts Yes RO ifHCInMulticastPkts Yes RO ifHCInBroadcastPkts Yes RO ifHCOutOctets Yes RO ifHCOutUcastPkts Yes RO ifHCOutMulticastPkts Yes RO ifHCOutBroadcastPkts Yes RO ifLinkUpDownTrapEnable Yes RW ifHighSpeed Yes RO ifPromiscuousMode Yes RW ifConnectorPresent Yes RO if...

Page 280: ...ndicies ifStackHigherLayer ifStackLowerLayer ifStackStatus No RC ifRcvAddressTable Indicies ifIndex ifRcvAddressAddress ifRcvAddressStatus No RC ifRcvAddressType No RC ifTestTable Index ifTestId ifTestStatus No RW ifTestType No RW ifTestResult No RW ifTestCode No RO ifTestOwner No RW ...

Page 281: ...nt Blade Panel Module 280 8 3Supported Traps SNMP traps supported include the following items RFC No Title RFC 1215 coldStar warmStart linkDown linkUp authenticationFailure RFC 1493 newRoot topologyChange RFC 2819 risingAlarm fallingAlarm ...

Page 282: ...TTP Port 80 Traps Authentication Flag Enable Link Up Down Flag Enable Multiple Users Flag Enable Spanning Tree Flag Enable DVMRP Traps Disable OSPF Traps Disable PIM Traps Disable SNMP Communities public Read Only private Read Write User Name admin Password admin Serial Port baud rate 9600 IP Settings IP address and netmask 0 0 0 0 0 0 0 0 on VLAN 1 Port Status Admin Status enable Negotiate enable...

Page 283: ... disable Port Backup disable SNMP 9 2 The default settings for all the configuration commands The default settings for all the configuration commands are shown in the following table SB9 DEFAULT CONFIG configure mode Sntp sntp unicast client poll interval 6 sntp unicast client poll timeout 5 sntp unicast client poll retry 1 sntp broadcast client poll interval 6 sntp client port 123 sntp clock time...

Page 284: ...tList Radius no radius accounting mode radius server retransmit 4 radius server timeout 5 telnet telnet sessions telnet exec timeout 5 telnet maxsessions 5 snmp server snmp server host 0 0 0 0 public snmp server community ipmask 0 0 0 0 public snmp server community ro public snmp server host 0 0 0 0 private snmp server community ipmask 0 0 0 0 private snmp server community rw private snmp server e...

Page 285: ...erver ip 3 tacacs timeout 3 3 tacacs retry 3 5 no tacacs mode 3 port security no port security In band administration ip address ip address protocol none no ip address line console mode line console exec timeout 5 baudrate 9600 password threshold 3 silent time 0 line vty mode line vty sessions exec timeout 5 maxsessions 5 password threshold 3 router rip mode router rip enable distance rip 15 split...

Page 286: ... 30 dot1x timeout tx period 30 dot1x timeout server timeout 30 dot1x max req 2 storm control no storm control flowcontrol snmp snmp trap link status port security no port security port security max dynamic 600 port security max static 20 snmp server no snmp server enable traps violation encapsulation encapsulation ethernet mtu mtu 1518 SSL SSH key SSH SSH DSA Key SSH RSA1 Key SSH RSA2 Key SSL Secu...

Page 287: ...u have a connected a device to a port on the IBP but the Link LED is off then check the following items 1 Verify that the IBP and attached device are powered on 2 Be sure the cable is plugged into both the IBP and corresponding device 3 Verify that the proper cable type is used and its length does not exceed specified limits 4 Check the adapter on the attached device and cable connections for poss...

Page 288: ...t via the IP address for a tagged VLAN group your management station must include the appropriate tag in its transmitted frames Check that you have a valid network connection to the IBP and that the port you are using has not been disabled Check network cabling between the management station and the IBP If you cannot connect using Telnet there may already be four active sessions Try connecting aga...

Page 289: ...tsu com Copyright Fujitsu Technology Solutions 2009 Hinweise zum vorliegenden Dokument Zum 1 April 2009 ist Fujitsu Siemens Computers in den alleinigen Besitz von Fujitsu übergegangen Diese neue Tochtergesellschaft von Fujitsu trägt seit dem den Namen Fujitsu Technology Solutions Das vorliegende Dokument aus dem Dokumentenarchiv bezieht sich auf eine bereits vor längerer Zeit freigegebene oder nic...

Reviews:

No comments

Related manuals for PRIMERGY BX600

D-Link DHP?P309AV Setup Manual preview
DHP?P309AV
Brand: D-Link Pages: 8
D-Link DFL-M510 Faq preview
DFL-M510
Brand: D-Link Pages: 22
D-Link AirPro DWL-6000AP Manual preview
AirPro DWL-6000AP
Brand: D-Link Pages: 65
D-Link DWL-G550 Product Data Sheet preview
DWL-G550
Brand: D-Link Pages: 2
3Com Server User Manual preview
Server
Brand: 3Com Pages: 48
IBM 3708 Description preview
3708
Brand: IBM Pages: 342
3Com EtherLink 3C509B Quick Manual preview
EtherLink 3C509B
Brand: 3Com Pages: 8
3Com TokenLink 3C339 Release Note preview
TokenLink 3C339
Brand: 3Com Pages: 2
3Com TokenLink 3C359 Release Note preview
TokenLink 3C359
Brand: 3Com Pages: 4
3Com TokenLink 3C359B Release Note preview
TokenLink 3C359B
Brand: 3Com Pages: 4
3Com TokenLink 3C359B Quick Start Manual preview
TokenLink 3C359B
Brand: 3Com Pages: 8
3Com EtherLink 3C985B-SX Installation And User Manual preview
EtherLink 3C985B-SX
Brand: 3Com Pages: 44
3Com 3CR990 Administration Manual preview
3CR990
Brand: 3Com Pages: 88
3Com 3C905C-TX-M User Manual preview
3C905C-TX-M
Brand: 3Com Pages: 111
3Com TokenLink Velocity 3C319 Release Note preview
TokenLink Velocity 3C319
Brand: 3Com Pages: 2
3Com 3C905-TX Installation Manual preview
3C905-TX
Brand: 3Com Pages: 26
Abocom CWB1000 Quick Installation Manual preview
CWB1000
Brand: Abocom Pages: 19
Abocom FW200 Specifications preview
FW200
Brand: Abocom Pages: 1

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

ABB AEG Acer Asus Beko Black & Decker Bosch Brother Candy Canon Cisco Craftsman D-Link DeWalt Dell Electrolux Emerson Epson Frigidaire Fujitsu GE HP Haier Hitachi Honeywell Huawei Husqvarna JVC Kenmore Kenwood KitchenAid LG Lenovo Makita Miele Mitsubishi Electric Motorola NEC Nikon Nokia Panasonic Philips Pioneer Samsung Sanyo Sharp Siemens Sony TP-Link Toshiba Whirlpool Xiaomi Yamaha Zanussi Load more brands