D-Link DAS-3636 Page 295 Cli Reference Manual Download | Manualshive

Page: 295 / 480

background image

DAS-3600 Series Ethernet over VDSL Switch CLI Reference Manual

32

S

AFEGUARD

E

NGINE

C

OMMANDS

Periodically, malicious hosts on the network will attack the Switch by utilizing packet flooding (ARP Storm) or other methods.
These attacks may increase the CPU utilization beyond its capability. To alleviate this problem, the Safeguard Engine function
was added to the Switch’s software.
The Safeguard Engine can help the overall operability of the Switch by minimizing the workload of the Switch while the attack is
ongoing, thus making it capable to forward essential packets over its network in a limited bandwidth. When the Switch either (a)
receives too many packets to process or (b) exerts too much memory, it will enter an

Exhausted

mode. When in this mode, the

Switch will perform the following tasks to minimize the CPU usage:

a.

It will limit bandwidth of receiving ARP packets.

b. It will limit the bandwidth of IP packets received by the Switch.

IP packets may also be limited by the Switch by configuring only certain IP addresses to be accepted. This method can be
accomplished through the CPU Interface Filtering mechanism explained in the previous section. Once the user configures these
acceptable IP addresses, other packets containing different IP addresses will be dropped by the Switch, thus limiting the
bandwidth of IP packets. To keep the process moving fast, be sure not to add many conditions on which to accept these acceptable
IP addresses and their packets, this limiting the CPU utilization.
Once in Exhausted mode, the packet flow will decrease by half of the level that caused the Switch to enter Exhausted mode. After
the packet flow has stabilized, the rate will initially increase by 25% and then return to a normal packet flow.

NOTICE:

When the Safeguard Engine is enabled, the Switch will allot bandwidth to various traffic

flows (ARP, IP) using the FFP (Fast Filter Processor) metering table to control the CPU utilization
and limit traffic. This may limit the speed of routing traffic over the network.

The Safeguard Engine commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the
following table.

Command

Parameters

config safeguard_engine

{ state [enable|disable] |utilization { rising <value 20-100> | falling <value 20-100>} |
trap_log [enable|disable] | mode [ strict | fuzzy] }

show safeguard_engine

Each command is listed, in detail, in the following sections.

290

«
...
293
294
295
296
297
...
»

Summary of Contents for DAS-3636

Page 1: ...CLI Reference Manual Product Model DAS 3636 VDSL2 Switch Release 1 00 ...

Page 2: ...rporation is strictly forbidden Trademarks used in this text D Link and the D LINK logo are trademarks of D Link Corporation Microsoft and Windows are registered trademarks of Microsoft Corporation Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products D Link Corporation disclaims any proprietary interest in trad...

Page 3: ...S 32 BASIC IP COMMANDS 44 ROUTING TABLE COMMANDS 48 IPV6 NEIGHBOR DISCOVERY COMMANDS 50 LIMITED IP MULTICAST ADDRESS 54 SWITCH PORT COMMANDS 61 ARP COMMANDS 66 DHCP RELAY 78 EXTERNAL ALARM COMMANDS 84 NETWORK MANAGEMENT SNMP COMMANDS 86 TIME AND SNTP COMMANDS 120 VLAN COMMANDS 125 Q IN Q COMMANDS 150 LINK AGGREGATION COMMANDS 155 IGMP SNOOPING COMMANDS 160 ...

Page 4: ...47 CONNECTIVITY FAULT MANAGEMENT COMMANDS 254 VLAN COUNTER COMMANDS 273 QOS COMMANDS 276 TRAFFIC CONTROL COMMANDS 286 SAFEGUARD ENGINE COMMANDS 290 PORT SECURITY COMMANDS 293 SSL COMMANDS 297 SSH COMMANDS 303 ACCESS AUTHENTICATION CONTROL COMMANDS 327 FILTER COMMANDS DHCP SERVER NETBIOS 392 ACCESS CONTROL LIST ACL COMMANDS 396 VDSL COMMANDS 410 NETWORK MONITORING COMMANDS 440 PASSWORD RECOVERY COM...

Page 5: ...PASSWORD RECOVERY PROCEDURE 474 ...

Page 6: ...sed management agent is discussed in the User Guide NOTE For the remainder of this manual the DAS 3626 switches will be referred to as simply the Switch or the DAS 3600 Series Accessing the Switch via the Serial Port The Switch s serial port s default settings are as follows 115200 baud no parity 8 data bits 1 stop bit A computer running a terminal emulation program capable of emulating a VT 100 t...

Page 7: ...matically set using BOOTP or DHCP protocols in which case the actual address assigned to the Switch must be known The IP address may be set using the Command Line Interface CLI over the console serial port as follows 1 Starting at the command line prompt enter the commands config ipif System ipaddress xxx xxx xxx xxx yyy yyy yyy yyy Where the x s represent the IP address to be assigned to the IP i...

Page 8: ...itch The console interface is used by connecting the Switch to a VT100 compatible terminal or a computer running an ordinary terminal emulator program e g the HyperTerminal program included with the Windows operating system using an RS 232C serial cable Your terminal parameters will need to be set to VT 100 compatible 115200 baud 8 data bits No parity One stop bit No flow control Users can also ac...

Page 9: ...26 admin config account Command config account Next possible completions username DAS 3626 admin Figure 2 3 Example Command Parameter Help In this case the command config account was entered with the parameter username The CLI will then prompt users to enter the username with the message Next possible completions Every command in the CLI has this feature and complex commands have several layers of...

Page 10: ...ter the show command with no additional parameters the CLI will then display all of the possible next parameters DAS 3626 admin show Command show Next possible completions 802 1p 802 1x access_profile account accounting alarm arpentry asymmetric_vlan attack_log authen authen_enable authen_login authen_policy authentication authorization bandwidth_control bpdu filter cfm command_history config curr...

Page 11: ...supply an IP interface name in the ipif_name 12 space a VLAN name in the vlan_name 32 space and the network address in the network_address space Do not type the angle brackets Example Command config ipif Engineering ipaddress 10 24 22 5 255 0 0 0 vlan Design state enable square brackets Purpose Encloses a required value or set of required arguments One value or argument can be specified Syntax cre...

Page 12: ...ht Arrow Moves the cursor to the right Up Arrow Repeats the previously entered command Each time the up arrow is pressed the command previous to that displayed appears This way it is possible to review the command history for the current session Use the down arrow to progress sequentially forward through the command history list Down Arrow The down arrow will display the next command in the comman...

Page 13: ...lete account username show session show switch show device_status show serial_port config serial_port baud_rate 9600 19200 38400 115200 auto_logout never 2_minutes 5_minutes 10_minutes 15_minutes enable clipaging disable clipaging enable telnet tcp_port_number 1 65535 disable telnet enable web tcp_port_number 1 65535 disable web save config log all reboot reboot force_agree reset config system for...

Page 14: ...In case of lost passwords or password corruption please refer to the Password Recovery Command List section in this manual and the Password Recovery Procedure will guide you through the steps necessary to resolve this issue config account Purpose Used to configure user accounts Syntax config account username Description When the password information is not specified in the command the system will ...

Page 15: ...unts that have been created DAS 3626 admin show account Command show account Current Accounts Username Access Level dlink Admin Total Entries 1 DAS 3626 admin delete account Purpose Used to delete an existing user account Syntax delete account username Description This command is used to delete an existing account Parameters username Name of the user who will be deleted Restrictions Only Administr...

Page 16: ...ministrator and Operator level users can issue this command Example usage To display a list of current logged in users DAS 3626 admin show session Command show session ID Live Time From Level Name 8 00 00 16 250 Serial Port 5 Anonymous Total Entries 1 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show switch Purpose Used to display general information about the Switch Syntax show s...

Page 17: ... Hardware Version A1 System Name System Location System Contact Spanning Tree Disabled GVRP Disabled IGMP Snooping Disabled MLD Snooping Disabled TELNET Enabled TCP 23 WEB Enabled TCP 80 SNMP Disabled SSL Status Disabled SSH Status Disabled 802 1x Disabled CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All show device_status Purpose Used to display the current Switch power temperature and ...

Page 18: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To display the Switch status 13 ...

Page 19: ...and show device_status Power Status AC Active DC Status DC POWER DOES NOT EXIST AC Status AC POWER EXIST FAN TRAY INSERT FAN RPM Max Min Status errCount 1 4560 4560 4440 Normal 0 2 4500 4560 4500 Normal 0 3 4500 4560 4440 Normal 0 Sensor deg C Max Min Threshold Hi Lo Status errCount T1 33 32 31 77 0 Normal 0 T2 33 33 29 81 0 Normal 0 T3 34 34 31 65 0 Normal 0 14 ...

Page 20: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 15 ...

Page 21: ...er VDSL Switch CLI Reference Manual show serial_port Purpose Used to display the current serial port settings Syntax show serial_port Description This command is used to display the current serial port settings Parameters None 16 ...

Page 22: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show serial_port Restrictions None 17 ...

Page 23: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To display the serial port settings 18 ...

Page 24: ...0 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin show serial_port Command show serial_port Baud Rate 115200 Data Bits 8 Parity Bits None Stop Bits 1 Auto Logout 10 mins DAS 3626 admin 19 ...

Page 25: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 20 ...

Page 26: ...out time for idle connections Parameters baud_rate 9600 19200 38400 115200 The serial bit rate that will be used to communicate with the management host There are four options 9600 19200 38400 115200 Factory default setting is 115200 never No time limit on the length of time the console can be open with no user input 2_minutes The console will log out the current user if there is no user input for...

Page 27: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual config serial_port Restrictions Only Administrator and Operator level users can issue this command 22 ...

Page 28: ... admin disable clipaging Purpose Used to disable the pausing of the console screen scrolling at the end of each page when a command displays more than one screen of information Syntax disable clipaging Description This command is used to disable the pausing of the console screen at the end of each page when a command would display more than one screen of information Parameters None Restrictions On...

Page 29: ...e the Telnet protocol on the Switch Syntax disable telnet Description This command is used to disable the Telnet protocol on the Switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable the Telnet protocol on the Switch DAS 3626 admin disable telnet Command disable telnet Success DAS 3626 admin enable web Purpose Used to enable...

Page 30: ...ax save config config_id 1 2 log all Description This command is used to enter the current switch configuration into non volatile RAM The saved switch configuration will be loaded into the Switch s memory each time the Switch is restarted Parameters config config_id 1 2 Specify to save current settings to configuration file 1 or 2 log Specify to save current Switch log to NV RAM all Specify to sav...

Page 31: ...cified all of the factory default settings are restored on the Switch including the IP address user accounts and the switch history log The Switch will not save or reboot system If the keyword system is specified all of the factory default settings are restored on the Switch The Switch will save and reboot after the settings are changed to default Rebooting will clear all entries in the Forwarding...

Page 32: ...a Username and Password Parameters None Restrictions None Example usage To initiate the login procedure DAS 3626 admin login Command login UserName logout Purpose Used to log out a user from the Switch s console Syntax logout Description This command terminates the current user s session on the Switch s console Parameters None Restrictions None Example usage To terminate the current user s console...

Page 33: ...he command prompt Syntax config command_prompt string 16 username default Description This command is for users to change the command prompt Parameters string 16 The command prompt can be changed by entering a new name of no more that 16 characters username The command prompt will be changed to the login username default The command prompt will reset to factory default command prompt Restrictions ...

Page 34: ...d is used to modify the login banner greeting message Parameters default If the user enters default to the modify banner command then the banner will be reset to the original factory banner To open the Banner Editor click enter after typing the config greeting_message command Type the information to be displayed on the banner by using the commands described on the Banner Editor Quit without save C...

Page 35: ...factory banner The capacity of the banner is 6 80 6 Lines and 80 characters per line Ctrl W will only save the modified banner in the DRAM Users need to type the save command to save it into FLASH Only valid in threshold level Example usage To modify the banner DAS 3626 admin config greeting_message Command config greeting_message Greeting Messages Editor DAS 3626 VDSL2 Switch Command Line Interfa...

Page 36: ...escription This command is used to view the currently configured greeting message on the Switch Parameters None Restrictions None Example usage To view the currently configured greeting message DAS 3626 admin show greeting_message Command show greeting_message DAS 3626 VDSL2 Switch Command Line Interface Firmware Build 1 00 B042 Copyright C 2009 D Link Corporation All rights reserved DAS 3626 admi...

Page 37: ...ies Ethernet over VDSL Switch CLI Reference Manual 6 SWITCH UTILITY COMMANDS The switch utility commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table 32 ...

Page 38: ...paddr ipv6addr path_filename 64 config firmware image_id int 1 2 delete boot_up show firmware information show config current_config config_in_nvram information upload cfg_toTFTP ipaddr ipv6addr path_filename 64 log_toTFTP ipaddr ipv6addr path_filename 64 attack_log_toTFTP ipaddr ipv6addr path_filename 64 ping ipaddr times value 1 255 timeout sec 1 99 size value 32 1500 33 ...

Page 39: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Command Parameters ping6 ipv6addr times value 1 255 size value 1 6000 timeout value 1 10 34 ...

Page 40: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Each command is listed in detail in the following sections 35 ...

Page 41: ... a TFTP server cfg_fromTFTP Download a switch configuration file from a TFTP server ipaddr The IP address of the TFTP server ipv6addr The IPv6 address of the TFTP server path_filename The DOS path and filename of the firmware or switch configuration file on the TFTP server For example C 3700 had image_id int 1 2 Specify the working section ID The Switch can hold two firmware versions for the user ...

Page 42: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual download Restrictions The TFTP server must be on the same IP subnet as the Switch Only Administrator level users can issue this command 37 ...

Page 43: ...n file When the file has been successfully loaded the message End of configuration file for DAS 3600 12 appears followed by the command prompt DAS 3626 admin disable authen_policy Command disable authen_policy Success DAS 3626 admin DAS 3626 admin DAS 3626 admin End of configuration file for DAS 3600 12 DAS 3626 admin DAS 3626 admin config firmware Purpose Used to configure the firmware section as...

Page 44: ...ection information Syntax show firmware information Description This command is used to display the firmware section information Parameters None Restrictions None Example usage To display the current firmware information on the Switch DAS 3626 admin show firmware information Command show firmware information Image ID 1 Boot up firmware Version 1 00 B035 Size 2562816 Bytes Update Time 2000 01 01 00...

Page 45: ...t status 2 storm control 3 IP group management 4 syslog 5 QoS 6 port mirroring 7 traffic segmentation 8 port 9 port lock 10 8021x 11 SNMPv3 12 management SNMP traps RMON 13 VLAN 14 FDB forwarding data base 15 MAC address table notification 16 STP 17 SSH 18 SSL 19 ACL 20 SNTP 21 IP route 22 LACP 23 ARP 24 IP 25 IGMP snooping 26 access authentication control TACACS etc Parameters current_config Ente...

Page 46: ...dr ipv6addr path_filename 64 Description This command is used to upload either the Switch s current settings or the Switch s history log to a TFTP server Parameters cfg_toTFTP Specifies that the Switch s current settings will be uploaded to the TFTP server log_toTFTP Specifies that the switch history log will be uploaded to the TFTP server attack_log_toTFTP Specifies that the switch attack log wil...

Page 47: ...onnectivity between the Switch and the remote device Parameters ipaddr Specifies the IP address of the host times value 1 255 The number of individual ICMP echo messages to be sent A value of 0 will send an infinite ICMP echo messages The maximum value is 255 The default is 0 timeout sec 1 99 Defines the time out period while waiting for a response from the remote device A value of 1 to 99 seconds...

Page 48: ...aximum value is 255 The default is 0 size value 1 6000 Use this parameter to set the datagram size of the packet or in essence the number of bytes in each ping packet Users may set a size between 1 and 6000 bytes with a default setting of 100 bytes timeout value 1 10 Select a timeout period between 1 and 10 seconds for this Ping message to reach its destination If the packet fails to find the IPv6...

Page 49: ...an vlan_name 32 state enable disable bootp dhcp ipv6 ipv6address ipv6networkaddr state enable disable ipv4 state enable disable show ipif ipif_name 12 enable ipif ipif_name 12 all disable ipif ipif_name 12 all enable ipif_ipv6_link_local_auto ipif_name 12 all disable ipif_ipv6_link_local_auto ipif_name 12 all show ipif_ipv6_link_local_auto ipif_name 12 Each command is listed in detail in the follo...

Page 50: ...face dhcp Allows the selection of the DHCP protocol for the assignment of an IP address to the Switch s System IP interface If users are using the autoconfig feature the Switch becomes a DHCP client automatically so it is not necessary to change the ipif settings ipv6address IPv6 network address The address should specify a host address and length of network prefix There can be multiple v6 address...

Page 51: ... no IPv6 addresses explicitly configured When an IPv6 address is explicitly configured the link local address will be automatically configured and the IPv6 processing will be started When there is no IPv6 address explicitly configured by default link local address is not configured and the IPv6 processing will be disabled By enabling this automatic configuration the link local address will be auto...

Page 52: ...sage To disable the automatic configuration of link local address for an interface DAS 3626 admin disable ipif_ipv6_link_local_auto System Command disable ipif_ipv6_link_local_auto System Success DAS 3626 admin show ipif_ipv6_link_local_auto Purpose Displays the link local address automatic configuration state Syntax show ipif_ipv6_link_local_auto ipif_name 12 Description This command is used to d...

Page 53: ...e entry of a routing protocol metric entry representing the number of routers between the Switch and the IP address above The default setting is 1 Restrictions Only Administrator and Operator level users can issue this command Example usage To add the default static address 10 48 74 121 with a metric setting of 1 to the routing table DAS 3626 admin create iproute default 10 48 74 121 1 Command cre...

Page 54: ...command will display the Switch s current IP routing table Parameters None Restrictions None Example usage To display the contents of the IP routing table DAS 3626 admin show iproute Command show iproute Routing Table IP Address Netmask Gateway Interface Cost Protocol 0 0 0 0 10 1 1 254 System 1 Default 10 0 0 0 8 10 48 74 122 System 1 Local Total Entries 2 DAS 3626 admin 49 ...

Page 55: ...ctions create ipv6 neighbor_cache ipif Purpose This command is used to add a static IPv6 neighbor Syntax create ipv6 neighbor_cache ipif ipif_name 12 ipv6addr macaddr Description This command is used to add a static IPv6 neighbor to an existing IPv6 interface previously created on the switch Parameters ipif_name 12 Enter the IPv6 interface name previously created using the create ipif command ipv6...

Page 56: ...Example usage To delete a static IPv6 neighbor DAS 3626 admin delete ipv6 neighbor_cache ipif System 3FFC 1 Command delete ipv6 neighbor_cache ipif System 3FFC 1 Success DAS 3626 admin show ipv6 neighbor_cache ipif Purpose Used to view the neighbor cache of an IPv6 interface located on the Switch Syntax show ipv6 neighbor_cache ipif ipif_name 12 all ipv6address ipv6addr static dynamic all Descript...

Page 57: ...s ipif ipif_name 12 retrans_time uint 0 4294967295 Description This command will configure the parameters for Neighbor Solicitation messages sent from the switch These messages are used to detect IPv6 neighbors on the switch Parameters ipif_name 12 Enter the IPv6 interface name for which to dispatch Neighbor solicitation messages retrans_time uint 0 4294967295 Use this field to set the interval in...

Page 58: ...ify an IP interface for which to view this information Parameters ipif_name 12 Enter the IP interface of the IPv6 interface for which to view this information Omitting this parameter will display all information regarding neighbor detection currently set on the switch Restrictions Only Administrator level users can issue this command Example usage To display the neighbor detection parameters for I...

Page 59: ...name 1 32 show mcast_filter_profile ipv4 ipv6 profile_id value 1 60 profile name name 1 32 config limited_multicast_addr ports ports portlist vlanid vlanid_list ipv4 ipv6 add delete profile_id value 1 60 profile_name name 1 32 access permit deny show limited_multicast_addr ports ipv4 ipv6 ports portlist vlanid vlanid_list config max_mcast_group ports ipv4 ipv6 ports portlist vlanid vlanid_list max...

Page 60: ...ress_list Description This command allows the user to add or delete a range of multicast IP addresses previously defined Parameters profile_id ID of the profile The range is 1 to 60 profile_name Provides a meaningful description for the profile mcast_address_list List of the multicast addresses to be put in the profile You can either specifiy a single multicast IP address or a range of multicast a...

Page 61: ...Operator level users can issue this command Example usage To config an IPv6 mcast_filter_ profile DAS 3626 admin config mcast_filter_profile ipv6 profile_id 2 add FF12 1 FF12 1 Command config mcast_filter_profile ipv6 profile_id 2 add FF12 1 Success DAS 3626 admin delete mcast_filter_profile profile_id Purpose This command deletes a multicast address profile Syntax delete mcast_filter_profile prof...

Page 62: ... delete mcast_filter_profile profile_id ipv6 RG Command delete mcast_filter_profile profile_id ipv6 RG Success DAS 3626 admin show mcast_filter_profile Purpose This command displays the defined multicast address profiles Syntax show mcast_filter_profile ipv4 ipv6 profile_id value 1 60 profile_name name 1 32 Description This command displays the defined multicast address profiles Parameters profile...

Page 63: ...file permit Specifies that the packet that match the addresses defined in the profiles will be permitted The default mode is permit deny Specifies that the packet that match the addresses defined in the profiles will be denied Restrictions Only Administrator and Operator level users can issue this command Example usage To config port 1 3 to set the multicast address profile 2 DAS 3626 admin config...

Page 64: ... vlanid vlanid_list max_group value 1 1024 infinite Description This command configures the maximum number of multicast groups that a port can join Parameters portlist A range of ports to config the max_mcast_group vlanid_list A range of VLAN IDs to config the max_mcast_group max_group Specifies the maximum number of the multicast groups The range is from 1 to 1024 or infinite Infinite is the defa...

Page 65: ...to display the max number of multicast groups that a port can join Parameters portlist A range of ports to display the max number of multicast groups vlanid_list A range of VLAN IDs to display the max number of multicast groups Restrictions None Example usage To display the maximum number of multicast groups DAS 3626 admin show max_mcast_group ipv4 ports 1 3 Command show max_mcast_group ipv4 ports...

Page 66: ...le Command Parameters config ports portlist all medium_type fiber copper speed auto 10_half 10_full 100_half 100_full 1000_full master slave flow_control enable disable learning enable disable state enable disable description desc 1 32 clear_description show ports portlist description err_disabled enable jumbo_frame disable jumbo_frame show jumbo_frame Each command is listed in detail in the follo...

Page 67: ...ve setting for other interfaces half full Configures the specified range of ports as either full duplex or half duplex flow_control enable disable Enable or disable flow control for the specified ports learning enable disable Enables or disables the MAC address learning on the specified range of ports medium_type Specify the medium type while the configured ports are combo ports It s an optional p...

Page 68: ...ll ports on a standalone switch DAS 3626 admin show ports Command show ports Port Port Settings Connection Address State Speed Duplex FlowCtrl Speed Duplex FlowCtrl Learning 1 Enabled Auto Disabled Link Down Enabled 2 Enabled Auto Disabled Link Down Enabled 3 Enabled Auto Disabled VDSL None Enabled 4 Enabled Auto Disabled Link Down Enabled 5 Enabled Auto Disabled Link Down Enabled 6 Enabled Auto D...

Page 69: ...bled Link Down Enabled Description DAS 3626 admin NOTE Connection status displays the following status Link Down Speed Duplex FlowCtrl link up or Err Disabled Example usage To display disabled ports including connection status and reason for being disabled on a standalone switch DAS 3626 admin show ports err_disabled Command show ports err_disabled Port Port Connection Status Reason State DAS 3626...

Page 70: ...tor and Operator level users can issue this command Example usage To disable the jumbo frame DAS 3626 admin disable jumbo_frame Command disable jumbo_frame Success DAS 3626 admin show jumbo_frame Purpose Used to show the status of the jumbo frame function on the Switch Syntax show jumbo_frame Description This command will show the status of the jumbo frame function on the Switch Parameters None Re...

Page 71: ...AS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 12 ARP COMMANDS The ARP commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table 66 ...

Page 72: ...SL Switch CLI Reference Manual Command Parameters create arpentry ipaddr macaddr config arpentry ipaddr macaddr delete arpentry ipaddr all show arpentry ipif ipif_name 12 ipaddress ipaddr static config arp_aging time value 0 65535 67 ...

Page 73: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Command Parameters clear arptable 68 ...

Page 74: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Each command is listed in detail in the following sections 69 ...

Page 75: ...ic entry into the ARP table Syntax create arpentry ipaddr macaddr Description This command is used to enter an IP address and the corresponding MAC address into the Switch s ARP table Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above 70 ...

Page 76: ...3600 Series Ethernet over VDSL Switch CLI Reference Manual create arpentry Restrictions Only Administrator and Operator level users can issue this command The Switch supports up to 255 static ARP entries 71 ...

Page 77: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To create a static arp entry for the IP address 10 48 74 121 and MAC address 00 50 BA 00 07 36 72 ...

Page 78: ...S 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin create arpentry 10 48 74 121 00 50 BA 00 07 36 Command create arpentry 10 48 74 121 00 50 BA 00 07 36 Success DAS 3626 admin 73 ...

Page 79: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 74 ...

Page 80: ...ntax config arpentry ipaddr macaddr Description This command is used to configure a static entry in the ARP Table The user may specify the IP address and the corresponding MAC address of an entry in the Switch s ARP table Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address 75 ...

Page 81: ...Deletes all ARP entries Restrictions Only Administrator and Operator level users can issue this command Example usage To delete an entry of IP address 10 48 74 121 from the ARP table DAS 3626 admin delete arpentry 10 48 74 121 Command delete arpentry 10 48 74 121 Success DAS 3626 admin config arp_aging time Purpose Used to configure the age out timer for ARP table entries on the Switch Syntax conf...

Page 82: ... DAS 3626 admin show arpentry Command show arpentry ARP Aging Time 20 Interface IP Address MAC Address Type System 10 0 0 0 FF FF FF FF FF FF Local Broadcast System 10 24 73 21 00 01 02 03 04 00 Local System 10 48 74 121 00 50 BA 00 07 36 Static System 10 255 255 255 FF FF FF FF FF FF Local Broadcast Total Entries 4 DAS 3626 admin clear arptable Purpose Used to remove all dynamic ARP table entries...

Page 83: ...nfig dhcp_relay hops value 1 16 time sec 0 65535 config dhcp_relay add ipif ipif_name 12 ipaddr config dhcp_relay delete ipif ipif_name 12 ipaddr config dhcp_relay option_82 state enable disable config dhcp_relay option_82 check enable disable config dhcp_relay option_82 policy replace drop keep show dhcp_relay ipif ipif_name 12 enable dhcp_relay disable dhcp_relay Each command is listed in detail...

Page 84: ...dd ipif ipif_name 12 ipaddr Description This command adds an IP address as a destination to forward relay DHCP BOOTP relay packets to Parameters ipif_name 12 The name of the IP interface in which DHCP relay is to be enabled ipaddr The DHCP server IP address Restrictions Only Administrator and Operator level users can issue this command Example usage To add an IP destination to the DHCP relay table...

Page 85: ... to the packet it is sent on to the DHCP server When the DHCP server receives the packet if the server is capable of option 82 it can implement policies like restricting the number of IP addresses that can be assigned to a single remote ID or circuit ID Then the DHCP server echoes the option 82 field in the DHCP reply The DHCP server unicasts the reply to the back to the relay agent if the request...

Page 86: ...usage To configure DHCP relay option 82 check DAS 3626 admin config dhcp_relay option_82 check enable Command config dhcp_relay option_82 check enable Success DAS 3626 admin config dhcp_relay option_82 policy Purpose Used to configure the reforwarding policy of relay agent information option 82 of the switch Syntax config dhcp_relay option_82 policy replace drop keep Description This command is us...

Page 87: ...lay DHCP Bootp Relay Status Disabled DHCP Bootp Hops Count Limit 2 DHCP Bootp Relay Time Threshold 23 DHCP Relay Agent Information Option 82 State Disabled DHCP Relay Agent Information Option 82 Check Disabled DHCP Relay Agent Information Option 82 Policy Replace Interface Server 1 Server 2 Server 3 Server 4 DAS 3626 admin Example usage To show a single IP destination of the DHCP relay configurati...

Page 88: ...is command Example usage To enable DHCP relay DAS 3626 admin enable dhcp_relay Command enable dhcp_relay Success DAS 3626 admin disable dhcp_relay Purpose Used to disable the DHCP BOOTP relay function on the Switch Syntax disable dhcp_relay Description This command is used to disable the DHCP BOOTP relay function on the Switch Parameters None Restrictions Only Administrator and Operator level user...

Page 89: ... Restrictions None Example usage To display the current external alarm on the Switch DAS 3626 admin show external_alarm Command show external_alarm Channel Status Alarm Message 1 Normal External Alarm 1 Occurred 2 Normal External Alarm 2 Occurred 3 Normal External Alarm 3 Occurred 4 Normal External Alarm 4 Occurred CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh config external_alarm...

Page 90: ...eference Manual Example usage To configure the external alarm on channel 1 DAS 3626 admin config external_alarm channel 1 message Channel 1 alarm occurs Command config external_alarm channel 1 message Channel 1 alarm occurs Success DAS 3626 admin 85 ...

Page 91: ...v DES 56 bit encryption is added based on the CBC DES DES 56 standard The network management commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters create snmp user user_name 32 groupname 32 encrypted by_password auth md5 auth_password 8 16 sha auth_password 8 20 priv none des priv_password 8 16 by_key auth md5 auth_key...

Page 92: ...assword 8 16 sha auth_password 8 20 priv none des priv_password 8 16 by_key auth md5 auth_key 32 32 sha auth_key 40 40 priv none des priv_key 32 32 Description This command is used to create a new SNMP user and adds the user to an SNMP group that is also created by this command SNMP ensures Message integrity Ensures that packets have not been tampered with during transit Authentication Determines ...

Page 93: ... authorize the agent to receive packets for the host auth_key 40 40 Enter an alphanumeric string of exactly 40 characters in hex form to define the key that will be used to authorize the agent to receive packets for the host priv Adding the priv privacy parameter will allow for encryption in addition to the authentication algorithm for higher security The user may choose des Adding this parameter ...

Page 94: ...el users can issue this command Example usage To delete a previously entered SNMP user on the Switch DAS 3626 admin delete snmp user dlink Command delete snmp user dlink Success DAS 3626 admin show snmp user Purpose Used to display information about each SNMP username in the SNMP group username table Syntax show snmp user Description This command is used to display information about each SNMP user...

Page 95: ...n access Restrictions Only Administrator level users can issue this command Example usage To create an SNMP view DAS 3626 admin create snmp view dlinkview 1 3 6 view_type included Command create snmp view dlinkview 1 3 6 view_type included Success DAS 3626 admin delete snmp view Purpose Used to remove an SNMP view entry previously created on the Switch Syntax delete snmp view view_name 32 all oid ...

Page 96: ... that identifies the SNMP view that will be displayed Restrictions None Example usage To display SNMP view configuration DAS 3626 admin show snmp view Command show snmp view Vacm View Table Settings View Name Subtree View Type restricted 1 3 6 1 2 1 1 Included restricted 1 3 6 1 2 1 11 Included restricted 1 3 6 1 6 3 10 2 1 Included restricted 1 3 6 1 6 3 11 2 1 Included restricted 1 3 6 1 6 3 15 ...

Page 97: ...view_name 32 An alphanumeric string of up to 32 characters that is used to identify the group of MIB objects that a remote SNMP manager is allowed to access on the Switch read_only Specifies that SNMP community members using the community string created with this command can only read the contents of the MIBs on the Switch read_write Specifies that SNMP community members using the community string...

Page 98: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin delete snmp community dlink Command delete snmp community dlink Success DAS 3626 admin 93 ...

Page 99: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 94 ...

Page 100: ...mmunity community_string 32 Description This command is used to display SNMP community strings that are configured on the Switch Parameters community_string 32 An alphanumeric string of up to 32 characters that is used to identify members of an SNMP community This string is used like a password to give remote SNMP managers access to MIB objects in the Switch s SNMP agent 95 ...

Page 101: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show snmp community Restrictions None 96 ...

Page 102: ...rameters config snmp_engineID An alphanumeric string that will be used to identify the SNMP engine on the Switch Restrictions Only Administrator level users can issue this command Example usage To give the SNMP agent on the Switch the name 0035636666 DAS 3626 admin config snmp engineID 0035636666 Command config snmp engineID 0035636666 Success DAS 3626 admin show snmp engineID Purpose Used to disp...

Page 103: ...ackets have not been tampered with during transit Authentication Determines if an SNMP message is from a valid source Encryption Scrambles the contents of messages to prevent it being viewed by an unauthorized source noauth_nopriv Specifies that there will be no authorization and no encryption of packets sent between the Switch and a remote SNMP manager auth_nopriv Specifies that authorization wil...

Page 104: ... this command Example usage To delete the SNMP group named sg1 DAS 3626 admin delete snmp group sg1 Command delete snmp group sg1 Success DAS 3626 admin show snmp groups Purpose Used to display the group names of SNMP groups currently configured on the Switch The security model level and status of each group are also displayed Syntax show snmp groups Description This command is used to display the...

Page 105: ...e WriteView Notify View Name NotifyView Security Model SNMPv3 Security Level authNoPriv Group Name Group5 ReadView Name ReadView WriteView Name WriteView Notify View Name NotifyView Security Model SNMPv3 Security Level authNoPriv Group Name initial ReadView Name restricted WriteView Name Notify View Name restricted Security Model SNMPv3 Security Level NoAuthNoPriv Group Name ReadGroup ReadView Nam...

Page 106: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 101 ...

Page 107: ...ategies It includes improvements in the Structure of Management Information SMI and adds some security features v3 Specifies that the SNMP version 3 will be used SNMP v3 provides secure access to devices through a combination of authentication and encrypting packets over the network SNMP v3 adds Message integrity ensures that packets have not been tampered with during transit Authentication determ...

Page 108: ...ost Purpose Used to remove a recipient of SNMP traps generated by the Switch s SNMP agent Syntax delete snmp host ipaddr Description This command is used to delete a recipient of SNMP traps generated by the Switch s SNMP agent Parameters ipaddr The IP address of a remote SNMP manager that will receive SNMP traps generated by the Switch s SNMP agent Restrictions Only Administrator level users can i...

Page 109: ...t Syntax show snmp host ipaddr Description This command is used to display the IP addresses and configuration information of remote SNMP managers that are designated as recipients of SNMP traps that are generated by the Switch s SNMP agent Parameters ipaddr The IP address of a remote SNMP manager that will receive SNMP traps generated by the Switch s SNMP agent 104 ...

Page 110: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show snmp host Restrictions None 105 ...

Page 111: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To display the currently configured SNMP hosts on the Switch 106 ...

Page 112: ... CLI Reference Manual DAS 3626 admin show snmp host Command show snmp host SNMP Host Table Host IP Address SNMP Version Community Name SNMPv3 User Name 10 48 76 23 V2c private 10 48 74 100 V3 authpriv public Total Entries 2 DAS 3626 admin 107 ...

Page 113: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 108 ...

Page 114: ...nt Syntax show snmp v6host ipv6addr Description This command is used to display the IP addresses and configuration information of remote SNMP managers that are designated as recipients of SNMP traps generated by the Switch s SNMP agent Parameters ipv6addr The IPv6 address of a remote SNMP manager that will receive SNMP traps generated by the Switch s SNMP agent 109 ...

Page 115: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show snmp v6host Restrictions None 110 ...

Page 116: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To display the currently configured SNMP hosts on the Switch 111 ...

Page 117: ...et over VDSL Switch CLI Reference Manual DAS 3626 admin show snmp v6host Command show snmp v6host SNMP Host Table Host IPv6 Address C084 1 SNMP Version V1 Community Name SNMPv3 User Name 2 Total Entries 1 DAS 3626 admin 112 ...

Page 118: ... trusted_host 10 62 32 1 Success create trusted_host network Purpose Used to create the trusted host Syntax create trusted_host network network_address Description This command is used to create the trusted host Parameters network_address IP address and netmask of the trusted host to be created Restrictions Only Administrator and Operator level users can issue this command Example usage To create ...

Page 119: ...ith an IP address 10 62 32 1 DAS 3626 admin delete trusted_host ipaddr 10 62 32 1 Command delete trusted_host ipaddr 10 62 32 1 Success delete trusted_host network Purpose Used to delete a trusted host entry made using the create trusted_host network command above Syntax delete trusted _host network network_address Description This command is used to delete a trusted host entry made using the crea...

Page 120: ...n delete trusted_host all Command delete trusted_host all Success enable snmp traps Purpose Used to enable SNMP trap support Syntax enable snmp traps Description This command is used to enable SNMP trap support on the Switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To enable SNMP trap support on the Switch DAS 3626 admin enable s...

Page 121: ...arameters None Restrictions None Example usage To view the current SNMP trap support DAS 3626 admin show snmp traps Command show snmp traps SNMP Traps Enabled Authenticate Trap Enabled DAS 3626 admin disable snmp traps Purpose Used to disable SNMP trap support on the Switch Syntax disable snmp traps Description This command is used to disable SNMP trap support on the Switch Parameters None Restric...

Page 122: ...um of 255 characters is allowed A NULL string is accepted if there is no contact Restrictions Only Administrator and Operator level users can issue this command Example usage To configure the Switch contact to MIS Department II DAS 3626 admin config snmp system_contact MIS Department II Command config snmp system_contact MIS Department II Success DAS 3626 admin config snmp system_location Purpose ...

Page 123: ...e is desired Restrictions Only Administrator and Operator level users can issue this command Example usage To configure the Switch name for DAS 3600 12 Switch DAS 3626 admin config snmp system_name DAS 3600 12 Switch Command config snmp system_name DAS 3600 12 Switch Success DAS 3626 admin enable snmp Purpose Used to enable the SNMP interface access function Syntax enable snmp Description This com...

Page 124: ...NMP function When the SNMP function is disabled the network manager will not be able to access SNMP MIB objects The device will not send traps or notifications to the network manager either Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable SNMP on the Switch DAS 3626 admin disable snmp Command disable snmp Success DAS 3626 admi...

Page 125: ...ted in detail in the following sections config sntp Purpose Used to setup SNTP service Syntax config sntp primary ipaddr secondary ipaddr poll interval int 30 99999 Description This command is used to configure SNTP service from an SNTP server SNTP must be enabled for this command to function See enable sntp Parameters primary This is the primary server from which the SNTP information will be take...

Page 126: ...ax enable sntp Description This command will enable SNTP support SNTP service must be separately configured see config sntp Enabling and configuring SNTP support will override any manually configured system time settings Parameters None Restrictions Only Administrator and Operator level users can issue this command SNTP settings must be configured for SNTP to function config sntp Example usage To ...

Page 127: ...ctions Only Administrator and Operator level users can issue this command Manually configured system time and date settings are overridden if SNTP support is enabled Example usage To manually set system time and date settings DAS 3626 admin config time 30jun2003 16 30 30 Command config time 30jun2003 16 30 30 Success DAS 3626 admin config time_zone Purpose Used to determine the time zone used in o...

Page 128: ...il and end DST on Sunday during the last week of October annual Using annual mode will enable DST seasonal time adjustment Annual mode requires that the DST beginning and ending date be specified concisely For example specify to begin DST on April 3 and end DST on October 14 s_week Configure the week of the month in which DST begins start_week 1 4 last The number of the week during the month in wh...

Page 129: ...me on the Switch DAS 3626 admin config dst repeating s_week 2 s_day tue s_mth 4 s_time 15 00 e_week 2 e_day wed e_mth 10 e_time 15 30 offset 30 Command config dst repeating s_week 2 s_day tue s_mth 4 s_time 15 00 e_week 2 e_day wed e_mth 10 e_time 15 30 offset 30 Success DAS 3626 admin show time Purpose Used to display the current time settings and status Syntax show time Description This command ...

Page 130: ...show vlan vlan_name 32 vlanid vidlist ports portlist show port_vlan portlist create dot1v_protocol_group group_id id 1 16 group_name name 32 config dot1v_protocol_group group_id id 1 16 group_name name 32 add protocol ethernet_2 ieee802 3_snap ieee802 3_llc protocol_value config dot1v_protocol_group group_id id 1 16 group_name name 32 delete protocol ethernet_2 ieee802 3_snap ieee802 3_llc protoco...

Page 131: ...e vlan vlan_name 32 tag vlanid 2 4094 type 1q_vlan advertisement Description This command allows the user to create a VLAN on the Switch Parameters vlan_name 32 The name of the VLAN to be created vlanid 2 4094 The VLAN ID of the VLAN to be created Allowed values 2 4094 advertisement Specifies that the VLAN is able to join GVRP 126 ...

Page 132: ...r VDSL Switch CLI Reference Manual create vlan Restrictions Each VLAN name can be up to 32 characters Up to 4094 static VLANs may be created per configuration Only Administrator and Operator level users can issue this command 127 ...

Page 133: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To create a VLAN v1 tag 2 128 ...

Page 134: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin create vlan v1 tag 2 Command create vlan v1 tag 2 Success DAS 3626 admin 129 ...

Page 135: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 130 ...

Page 136: ...ltiple VLANs by VLAN ID list on the switch Syntax create vlan vlanid vidlist advertisement Description This command is used to create multiple VLANs on the switch Parameters vidlist Specifies a range of multiple VLAN IDs to be created advertisement Join GVRP or not If not the VLAN can t join dynamically 131 ...

Page 137: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual create vlan vlanid Restrictions Only Administrator level users can issue this command 132 ...

Page 138: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To create a VLAN ID on the Switch 133 ...

Page 139: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3600 5 create vlan vlanid 5 advertisement Command create vlan vlanid 5 advertisement Success DAS 3600 5 134 ...

Page 140: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 135 ...

Page 141: ...al delete vlan Purpose Used to delete a previously configured VLAN on the Switch Syntax delete vlan vlan_name 32 Description This command is used to delete a previously configured VLAN on the Switch Parameters vlan_name 32 The VLAN name of the VLAN to delete 136 ...

Page 142: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual delete vlan Restrictions Only Administrator and Operator level users can issue this command 137 ...

Page 143: ... 32 add tagged untagged forbidden delete portlist advertisement enable disable Description This command allows the user to add ports to the port list of a previously configured VLAN The user can specify the additional ports as tagging untagging or forbidden The default is to assign the ports as untagging Parameters vlan_name 32 The name of the VLAN to which to add ports add Entering the add parame...

Page 144: ...th the advertisement parameter The name parameter allows you to specify the name of the VLAN that needs to be modified Parameters vidlist Specifies a range of multiple VLAN IDs to be configured tagged Specifies the additional ports as tagged untagged Specifies the additional ports as untagged forbidden Specifies the additional ports as forbidden portlist A range of ports to add to the VLAN adverti...

Page 145: ...tagged_only implies that only VLAN tagged frames will be accepted while admit_all implies tagged and untagged frames will be accepted by the Switch pvid vlanid 1 4094 Specifies the default VLAN associated with the port Restrictions Only Administrator and Operator level users can issue this command Example usage To set the ingress checking status the sending and receiving GVRP information DAS 3626 ...

Page 146: ...Generic VLAN Registration Protocol GVRP DAS 3626 admin disable gvrp Command disable gvrp Success DAS 3626 admin show vlan Purpose Used to display the current VLAN configuration on the Switch Syntax show vlan vlan_name 32 vlanid vidlist ports portlist Description This command displays summary information about each VLAN including the VLAN ID VLAN name the Tagging Untagging status and the Member Non...

Page 147: ...rts Current Untagged Ports Static Tagged Ports Static Untagged Ports Forbidden Ports Total Entries 2 DAS 3626 admin DAS 3626 admin show vlan ports 1 4 Command show vlan ports 1 4 Port VID Untagged Tagged Dynamic Forbidden 1 1 X 2 1 X 3 1 X 4 1 X DAS 3626 admin show port_vlan Purpose Used to display the GVRP status for a port list on the Switch Syntax show port_vlan portlist Description This comman...

Page 148: ...al Entries 10 create dot1v_protocol_group Purpose Create a protocol group for protocol VLAN function Syntax create dot1v_protocol_group group_id id 1 16 group_name name 32 Description This command is used to create a protocol group for protocol VLAN function Parameters group_id The id of a protocol group which is used to identify a set of protocols group_name The name of the protocol group The max...

Page 149: ... level users can issue this command Example usage To add a protocol IPv6 to protocol group 1 DAS 3626 admin config dot1v_protocol_group group_id 1 add protocol ethernet_2 86DD Command config dot1v_protocol_group group_id 1 add protocol ethernet_2 86DD Success DAS 3626 admin config dot1v_protocol_group delete protocol Purpose Used to delete a protocol from protocol group Syntax config dot1v_protoco...

Page 150: ...evel users can issue this command Example usage To delete protocol group 1 DAS 3626 admin delete dot1v_protocol_group group_id 1 Command delete dot1v_protocol_group group_id 1 Success DAS 3626 admin show dot1v_protocol_group Purpose Display the protocols defined in a protocol group Syntax show dot1v_protocol_group group_id id 1 16 group_name name 32 Description This command is used to display the ...

Page 151: ...ers vlan Vlan that is to be associated with this protocol group on this port vlan_id Specifies the VLAN id priority Specifies the priority to be associated with the packet which has been classified to the specified vlan by the protocol Restrictions Only Administrator and Operator level users can issue this command Example usage The example is to assign VLAN marketing 1 for untaged IPv6 packet ingr...

Page 152: ...y PVID configuration user changes explicitly The VLAN configuration will not automatically change PVID If Auto assign PVID is enabled PVID will be possibly changed by PVID or VLAN configuration When user configures a port to VLAN X s untagged membership this port s PVID will be updated with VLAN X In the form of VLAN list command PVID is updated with last item of VLAN list When user removes a port...

Page 153: ...or Leave time is 600 milliseconds for LeaveAll time is 10000 milliseconds The GVRP s PDU MAC address can be set to which is defined in 802 1d or 802 1ad Parameters timer Specifies GVRP timer will be set join Specifies the Join time will be set leave Specifies the Leave time will be set leaveall Specifies the LeaveAll time will be set value The time value will be set The value range is 100 to 10000...

Page 154: ...Syntax show gvrp Description This command is used to display the timer s value of GVRP Parameters None Restrictions None Example usage To display the timer s value of GVRP DAS 3626 admin show gvrp Command show gvrp Join Time 200 Milliseconds Leave Time 600 Milliseconds LeaveAll Time 10000 Milliseconds NNI BPDU Address dot1ad DAS 3626 admin 149 ...

Page 155: ...h the appropriate parameters in the following table Command Parameters enable qinq disable qinq show qinq create qinq vlan_name 32 spvid vlanid 1 4094 tpid hex 0x0 0xffff delete qinq vlan_name config qinq vlan_name add uplink access delete portlist tpid hex 0x0 0xffff 802 1p priority 0 7 none 1 Each command is listed in detail in the following sections 150 ...

Page 156: ...sue this command Example usage To enable Q in Q DAS 3626 admin enable qinq Command enable qinq Success DAS 3626 admin disable qinq Purpose Used to disable the Q in Q mode Syntax disable qinq Description This command is used to disable the Q in Q mode Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable Q in Q DAS 3626 admin disabl...

Page 157: ...0 Uplink ports Access ports 1 18 Priority None SPVID 2 VLAN Name v2 TPID 0x88a8 Uplink ports 17 18 Access ports 1 Priority None Total Entries 2 DAS 3626 admin create qinq Purpose Used to create Q in Q Syntax create qinq vlan_name 32 spvid vlanid 1 4094 tpid hex 0x0 0xffff Description This command is used to create the Q in Q configuration for a vlan include SPVID and TPID Parameters vlan_name 32 S...

Page 158: ...Success DAS 3626 admin delete qinq Purpose Used to remove Q in Q Syntax delete qinq vlan_name Description This command is used to remove a previously created Q in Q configuration Parameters vlan_name Specifies the VLAN name of the Q in Q configuration Restrictions None Example usage To delete Q in Q named v2 DAS 3626 admin delete qinq v2 Command delete qinq v2 Success DAS 3626 admin 153 ...

Page 159: ...1P and port outer TPID Parameters vlan_name vlan name add Port role in Q in Q mode it can be either access port or uplink port access uplink tpid Allows the interoperation with devices on a public network by specifying ports 802 1p Specify whether to use the priority in the SP VLAN tag Restrictions Only Administrator and Operator level users can issue this command You must be in the Q in Q mode Ex...

Page 160: ... Specifies the group ID The Switch allows up to six link aggregation groups to be configured The group number identifies each of the groups type Specify the type of link aggregation used for the group If the type is not specified the default type is static lacp This designates the port group as LACP compliant LACP allows dynamic adjustment to the aggregated port group LACP compliant ports may be f...

Page 161: ...rs to configure a link aggregation group that was created with the create link_aggregation command above Parameters group _id value 1 6 Specifies the group ID The Switch allows up to 6 link aggregation groups to be configured The group number identifies each of the groups master_port port Master port ID Specifies which port by port number of the link aggregation group will be the master port All o...

Page 162: ...icates that the Switch should examine the IP destination address ip_source_dest Indicates that the Switch should examine the IP source address and the destination address Restrictions Only Administrator and Operator level users can issue this command Example usage To configure link aggregation algorithm for mac source dest DAS 3626 admin config link_aggregation algorithm mac_source_dest Command co...

Page 163: ...tive LACP ports are capable of processing and sending LACP control frames This allows LACP compliant devices to negotiate the aggregated link so the group may be changed dynamically as needs require In order to utilize the ability to change an aggregated port group that is to add or subtract ports from the group at least one of the participating devices must designate LACP ports as active Both dev...

Page 164: ... currently configured Parameters portlist Specifies a port or range of ports to be configured If no parameter is specified the system will display the current LACP status for all ports Restrictions None Example usage To display LACP port mode settings DAS 3626 admin show lacp_port 1 10 Command show lacp_port 1 10 Port Activity 1 Active 2 Active 3 Active 4 Active 5 Active 6 Active 7 Active 8 Active...

Page 165: ...iven show igmp_snooping rate_limit ports portlist vlanid vlanid_list config igmp_snooping rate_limit ports portlist vlanid vlanid_list value 1 1000 no_limit show igmp_snooping forwarding vlan vlan_name 32 vlanid vlanid_list show igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr create igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr delete igmp_snooping s...

Page 166: ...oping is to be configured state enable disable Allows users to enable or disable IGMP snooping for the specified VLAN fast_leave enable disable Allows users to enable or disable IGMP snooping fast leave for the specified VLAN report_suppression enable disable Allows users to enable or disable IGMP snooping report suppression for the specified VLAN Restrictions Only Administrator and Operator level...

Page 167: ...lows robustness variable x query interval 1 x query response interval Other querier present interval Amount of time that must pass before a multicast router decides that there is no longer another multicast router that is the querier This interval is calculated as follows robustness variable x query interval 0 5 x query response interval Last member query count Number of group specific queries sen...

Page 168: ...rts of the specified VLAN portlist Specifies a port or range of ports that will be configured as router ports Restrictions Only Administrator and Operator level users can issue this command Example usage To set up static router ports DAS 3626 admin config router_ports vlan default add 1 10 Command config router_ports vlan default add 1 10 Success DAS 3626 admin config router_ports_forbidden Purpos...

Page 169: ...mp_snooping Command enable igmp_snooping Success DAS 3626 admin disable igmp_snooping Purpose Used to enable IGMP snooping on the Switch Syntax disable igmp_snooping Description This command disables IGMP snooping on the Switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable IGMP snooping on the Switch DAS 3626 admin disable ...

Page 170: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show igmp_snooping configuration vlanid_list The VIDs of the VLAN for which to view the IGMP snooping configuration Restrictions None 165 ...

Page 171: ... Driven Learning Aged Out Disable Data Driven Group Expiry Time 260 Total Entries 1 DAS 3626 admin show router_ports Purpose Used to display the currently configured router ports on the Switch Syntax show router_ports vlan vlan_name 32 vlanid vidlist all static dynamic forbidden Description This command will display the router ports currently configured on the Switch Parameters vlan_name 32 The na...

Page 172: ...rent IGMP snooping configuration on the Switch Syntax show igmp_snooping group vlan vlan_name 32 vlanid vidlist ports portlist ipaddr data_driven Description This command will display the current IGMP setup currently configured on the Switch Parameters vlan_name 32 The name of the VLAN for which to view IGMP snooping group information vlanid_list The VIDs of the VLAN for which to view IGMP snoopin...

Page 173: ...r Ports 11 Up Time 72 Expiry Time 188 Filter Mode EXCLUDE Source Group 29 1 1 1 229 1 1 1 VLAN Name VID default 1 Member Ports 12 Up Time 3 Expiry Time 257 Filter Mode INCLUDE Source Group 29 1 1 2 229 1 1 1 VLAN Name VID default 1 Member Ports 12 Up Time 3 Expiry Time 257 Filter Mode INCLUDE Source Group 29 1 1 3 229 1 1 1 VLAN Name VID default 1 Member Ports 12 Up Time 3 Expiry Time 257 Filter M...

Page 174: ...ate_limit Purpose Used to show rate limitation Syntax config igmp_snooping rate_limit ports portlist vlanid vlanid_list value 1 1000 no_limit Description This command is used to configure the rate of IGMP control packets that are allowed per port or VLAN Parameters portlist Specifies a port or range of ports that will be displayed vlanid_list Specifies a VLAN or range of VLANs that will be display...

Page 175: ...w the current IGMP snooping forwarding information DAS 3626 admin show igmp_snooping forwarding Command show igmp_snooping forwarding VLAN Name default Source IP Multicast Group 225 1 1 1 Port Member 3 Total Entries 1 show igmp_snooping static_group Purpose Used to display the current IGMP snooping static group information on the Switch Syntax show igmp_snooping static_group vlan vlan_name 32 vlan...

Page 176: ...s to emulate the IGMP protocol operation to the querier and forward the traffic destined to the multicast group to the member ports For a layer 3 device the device is also responsible to route the packet destined for this specific group to static member ports The static member port will only affect V2 IGMP operation The Reserved IP multicast address 224 0 0 X must be excluded from the configured g...

Page 177: ...group vlanid 1 226 1 1 1 Command delete igmp_snooping static_group vlanid 1 226 1 1 1 Success DAS 3626 admin config igmp_snooping static_group Purpose Used to configure the current IGMP snooping static group on the Switch Syntax config igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr add delete portlist Description This command is used to add or delete ports to from the given...

Page 178: ...mand clear igmp_snooping statistic counter Success DAS 3626 admin show igmp_snooping statistic counter Purpose Used to view the current IGMP snooping statistics on the Switch Syntax show igmp_snooping statistic counter vlan vlan_name 32 vlanid vlanid_list ports portlist Description This command is used to view this information snooping must be enabled first Parameters vlan_name 32 The name of the ...

Page 179: ...IGMP v2 Query 0 IGMP v3 Query 0 Total 0 Dropped By Rate Limitation 0 Dropped By Multicast VLAN 0 Report Leave IGMP v1 Report 0 IGMP v2 Report 0 IGMP v3 Report 0 IGMP v2 Leave 0 Total 0 Dropped By Rate Limitation 0 Dropped By Max Group Limitation 0 Dropped By Group Filter 0 Dropped By Multicast VLAN 0 Transmit Statistics Query IGMP v1 Query 0 IGMP v2 Query 0 IGMP v3 Query 14 Total 14 Report Leave I...

Page 180: ...n_name 32 add delete profile_name profile_name 1 32 vlan_name 32 show igmp_snooping multicast_vlan_group vlan_name 32 delete igmp_snooping multicast_vlan vlan_name 32 enable igmp_snooping multicast_vlan disable igmp_snooping multicast_vlan show igmp_snooping multicast_vlan vlan_name 32 create igmp_snooping multicast_vlan_group_profile profile_name 1 32 config igmp_snooping multicast_vlan_group_pro...

Page 181: ...eplace_source_ip ipaddr Description This command allows you to add a member port add a tag member port and add a source port to the port list The member port will automatically become the untagged member of the IGMP multicast VLAN the tag member port and the source port will automatically become the tagged member of the IGMP multicast VLAN To change the port list the new port list will replace the...

Page 182: ...VLAN function There are some cases when an IGMP packet can be processed by IGMP Multicast VLAN If there are no profiles systemwise and there is only one IGMP Multicast VLAN then this IGMP packet will be associated with this only IGMP Multicast VLAN If the packet is a tagged packet the packet will be matched against the profile on this VLAN If matched the packet will be associated with this VLAN Ot...

Page 183: ...ed each multicast VLAN is given a name that can be up to 32 characters Restrictions None Example usage To display the multicast groups configured for an IGMP Multicast VLAN DAS 3626 admin show igmp_snooping multicast_vlan_group RG Command show igmp_snooping multicast_vlan_group RG VLAN Name VLAN ID Multicast Group Profiles RG 11 DAS 3626 admin delete igmp_snooping multicast_vlan Purpose Used to de...

Page 184: ...e IGMP Multicast VLAN DAS 3626 admin enable igmp_snooping multicast_vlan Command enable igmp_snooping multicast_vlan Success DAS 3626 admin show igmp_snooping multicast_vlan Purpose Used to show the information of IGMP Multicast VLAN Syntax show igmp_snooping multicast_vlan vlan_name 32 Description This command allows you to show the information of IGMP Multicast VLAN Parameters vlan_name The name...

Page 185: ...ast VLAN group profile on the switch to add or delete multicast address on the profile Syntax config igmp_snooping multicast_vlan_group_profile profile_name 1 32 add delete mcast_address_list Description This command configures an IGMP Multicast VLAN group profile on the switch to add or delete multicast address for the profile Parameters profile_name 32 Specifies the IGMP Multicast VLAN group pro...

Page 186: ...oup_profile profile_name p1 Command delete igmp_snooping multicast_vlan_group_profile profile_name p1 Success DAS 3626 admin show igmp_snooping multicast_vlan_group_profile Purpose Used to view an IGMP Multicast VLAN group profile on the switch Syntax show igmp_snooping multicast_vlan_group_profile profile_name 1 32 Description This command displays an IGMP Multicast VLAN group profile on the swit...

Page 187: ...icast VLAN to be associated with If the packet does not match any profiles the packet will be forwarded or dropped based on the the setting By default the packet will be dropped Parameters enable The unmatched packet will be flooded on the VLAN disable The unmatched packet will be dropped Restrictions Only Administrator and Operator level users can issue this command Example usage To set unmatched...

Page 188: ..._group_profile profile_name 1 32 config mld_snooping multicast_vlan_group_profile profile_name 1 32 add delete mcastv6_address_list delete mld_snooping multicast_vlan_group_profile profile_name profile_name 1 32 all show mld_snooping multicast_vlan_group_profile profile_name 1 32 config mld_snooping multicast_vlan_group vlan_name 32 add delete profile_name profile_name 1 32 show mld_snooping multi...

Page 189: ..._source_ip ipv6addr Description This command allows you to add member ports add tag_member ports and add source ports to the port list The member port will automatically become the untagged member of the MLD multicast VLAN the tag_member_port and the source port will automatically become the tagged member of the MLD multicast VLAN To change the port list the new port list will replace the previous...

Page 190: ...ed to configure an MLD multicast VLAN group profile on the switch to add or delete multicast address for the profile Syntax config mld_snooping multicast_vlan_group_profile profile_name 1 32 add delete mcast v6_address_list Description This command configures an MLD multicast VLAN group profile on the switch and can add or delete multicast addresses for the profile Parameters profile_name 32 Speci...

Page 191: ...ngth is 32 all All MLD multicast VLAN group profile will be deleted Restrictions Only Administrator and Operator level users can issue this command Example usage To delete the MLD multicast VLAN group profile g1 DAS 3626 admin delete mld_snooping multicast_vlan_group_profile profile_name g1 Command delete mld_snooping multicast_vlan_group_profile profile_name g1 Success DAS 3626 admin show mld_sno...

Page 192: ... this MLD multicast VLAN However if the packet is a tagged packet the packet will be matched against the profile on this VLAN If matched the packet will be associated with this VLAN Otherwise the packet is an unmatched packet Otherwise if the packet is an untagged packet the packet will be matched against profiles on all MLD multicast VLANs If it matches profiles on one of the MLD multicast VLANs ...

Page 193: ...lticast VLAN is given a name that can be up to 32 characters If not specified all IPv6 multicast VLAN groups will be displayed Restrictions None Example usage To display the multicast groups configured for an MLD multicast VLAN DAS 3626 admin show mld_snooping multicast_vlan_group Command show mld_snooping multicast_vlan_group VLAN Name VLAN ID Multicast Group Profiles mv1 2 g1 DAS 3626 admin dele...

Page 194: ...626 admin enable mld_snooping multicast_vlan Command enable mld_snooping multicast_vlan Success DAS 3626 admin show mld_snooping multicast_vlan Purpose Used to show the information of MLD multicast VLAN Syntax show mld_snooping multicast_vlan vlan_name 32 Description This command is used to show the information of an MLD multicast VLAN Parameters vlan_name The name of the multicast VLAN to be show...

Page 195: ...ulticast VLAN to be associated with If the packet does not match any profiles the packet will be forwarded or dropped based on the setting By default the packet will be dropped Parameters enable The unmatched packet will be flooded on the VLAN disable The unmatched packet will be dropped Restrictions Only Administrator and Operator level users can issue this command Example usage To set unmatched ...

Page 196: ...d delete portlist enable mld_snooping disable mld_snooping show mld_snooping vlan vlan_name 32 vlanid vidlist show mld_snooping group vlan vlan_name 32 vlanid vidlist ports portlist ipv6addr data_driven show mld_snooping mrouter_ports vlan vlan_name 32 vlanid vidlist all static dynamic forbidden show mld_snooping rate_limit ports portlist vlanid vlanid_list config mld_snooping rate_limit ports por...

Page 197: ... configured all Specifies that all VLANs configured on the switch will be configured state Allows the user to enable or disable the MLD snooping function for the chosed VLAN fast_done enable or disable MLD snooping fast_done function If enable the membership is immediately removed when the system receive the MLD done message report suppression Enables or Disables MLD snooping report suppression fu...

Page 198: ...there are no more listeners of a group on a network This interval is calculated as follows robustness variable query interval 1 query response interval other querier present interval Amount of time that must pass before a multicast router decides that there is no longer another multicast router that is the querier This interval is calculated as follows robustness variable query interval 0 5 query ...

Page 199: ...uter_ports vlan default add 1 10 Command config mld_snooping mrouter_ports vlan default add 1 10 Success DAS 3626 admin config mld_snooping mrouter_ports_forbidden Purpose Used to configure ports as forbidden router ports Syntax config mld_snooping mrouter_ports_forbidden vlan vlan_name 32 vlanid vidlist add delete portlist Description This command is used to designate a range of ports as being no...

Page 200: ... allows all MLD and IPv6 multicast traffic to flood within a given IPv6 interface Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable MLD snooping on the switch DAS 3626 admin disable mld_snooping Command disable mld_snooping Success DAS 3626 admin show mld_snooping Purpose Used to the current status of MLD snooping on the switch...

Page 201: ...ries 1 DAS 3626 admin show mld_snooping group Purpose Used to display the current MLD snooping group configuration on the switch Syntax show mld_snooping group vlan vlan_name 32 vlanid vidlist ports portlist ipv6addr data_driven Description This command is used to display the current MLD snooping group configuration on the switch Parameters vlan_name The name of the VLAN for which you want to view...

Page 202: ...he VLAN for which you want to view the MLD snooping configuration vid list The VIDs of the VLAN for which you want to view the MLD snooping configuration all All the MLD router ports will be displayed static Displays router ports that have been statically configured dynamic Displays router ports that have been dynamically configured forbidden Displays forbidden router ports that have been statical...

Page 203: ...show MLD snooping rate limitation Syntax config mld_snooping rate_limit ports portlist vlanid vlanid_list value 1 1000 no_limit Description This command configures the rate of MLD control packets that are allowed per port or VLAN Parameters portlist Specifies a port or range of ports that will be configured vlanid_list Specifies a VLAN or range of VLANs that will be configured value 1 1000 Specifi...

Page 204: ...ormation DAS 3626 admin show mld_snooping forwarding Command show mld_snooping forwarding VLAN Name default Source IP Multicast Group FF12 1 Port Member 3 VLAN Name default Source IP Multicast Group FF12 2 Port Member 3 Total Entries 2 DAS 3626 admin show mld_snooping static_group Purpose Used to display the current MLD snooping static group information on the Switch Syntax show mld_snooping stati...

Page 205: ...ice needs to emulate the MLD protocol operation to the querier and forward the traffic destined to the multicast group to the member ports For a layer 3 device the device is also responsible to route the packet destined for this specific group to static member ports The static member port will only affect V1 MLD operation The Reserved IP multicast address FF0E X must be excluded from the configure...

Page 206: ...nooping static_group vlanid 1 FF12 1 Command delete mld_snooping static_group vlanid 1 FF12 1 Success DAS 3626 admin config mld_snooping static_group Purpose Used to configure the current MLD snooping static group on the Switch Syntax config mld_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipv6addr add delete portlist Description This command is used to add or delete ports to from th...

Page 207: ...iew MLD snooping statistic counter Restrictions Only Administrator and Operator level users can issue this command Example usage To view MLD snooping statistic on VID 1 DAS 3626 admin show mld_snooping statistic counter vlanid 1 Command show mld_snooping statistic counter vlanid 1 VLAN Name default Group Number 0 Receive Statistics Query MLD v1 Query 0 MLD v2 Query 0 Total 0 Dropped By Rate Limita...

Page 208: ...r mld_snooping statistic counter Description This command is used to clear all MLD snooping statistic counters Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To clear MLD snooping statistic counter DAS 3626 admin clear mld_snooping statistic counter Command clear mld_snooping statistic counter Success DAS 3626 admin 203 ...

Page 209: ...only traffic received by or sent by one or both is mirrored to the Target port Parameters port This specifies the Target port the port where mirrored packets will be received The target port must be configured in the same VLAN and must be operating at the same speed as the source port If the target port is operating at a lower speed the source port will be forced to drop its operating speed to mat...

Page 210: ...port mirroring configuration into the Switch and then turn the port mirroring on and off without having to modify the port mirroring configuration Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To enable mirroring configurations DAS 3626 admin enable mirror Command enable mirror Success DAS 3626 admin disable mirror Purpose Used to dis...

Page 211: ...pose Used to show the current port mirroring configuration on the Switch Syntax show mirror Description This command displays the current port mirroring configuration on the Switch Parameters None Restrictions None Example usage To display mirroring configuration DAS 3626 admin show mirror Command show mirror Current Settings Mirror Status Enabled Target Port 1 Mirrored Port RX TX 5 7 DAS 3626 adm...

Page 212: ...alue 0 value 60 1000000 interval 1 32767 Description This command is used to configure loop back detection on the switch Parameters recover_timer The time interval in seconds used by the Auto Recovery mechanism to decide how long to check if the loop status is gone The valid range is 60 to 1000000 Zero is a special value which means to disable the auto recovery mechanism The default value is 60 in...

Page 213: ...ts 1 5 state enabled Command config loopdetect ports 1 5 state enabled Success DAS 3626 admin enable loopdetect Purpose Used to globally enable loop back detection on the switch Syntax enable loopdetect Description This command is used to globally enable loop back detection on the switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage T...

Page 214: ...trictions None Example usage To show loop detect DAS 3626 admin show loopdetect Command show loopdetect LBD Global Settings LBD Status Disabled LBD Mode Port_based LBD Interval 10 LBD Recover Time 60 LBD Trap Status None DAS 3626 admin show loopdetect ports Purpose Used to display the current per port loop back detection settings on the switch Syntax show loopdetect ports all portlist Description ...

Page 215: ... both Descr iption The loop detect trap is sent when the loop condition is detected The loop detect will be cleared when the trap is sent and the loop condition is cleared Para meter s none Trap will not be sent for both cases loop_detected Trap is sent when the loop condition is detected loop_cleared Trap is sent when the loop condition is cleared both Trap will be sent for both cases Restri ctio...

Page 216: ...atically determine each MSTP region its maximum possible extent and will appear as one virtual bridge that runs a single spanning tree Consequentially frames assigned to different VLANs will follow different data routes within administratively established regions on the network continuing to allow simple and full processing of frames regardless of administrative errors in defining VLANs and their ...

Page 217: ... 2 migrate yes no edge true false auto restricted_tcn true false restricted_role true false p2p true false auto state enable disable fbpdu enable disable create stp instance_id value 1 15 config stp instance_id value 1 15 add_vlan remove_vlan vidlist delete stp instance_id value 1 15 config stp priority value 0 61440 instance_id value 0 15 config stp mst_config_id revision_level int 0 65535 name s...

Page 218: ... Administrator and Operator level users can issue this command Example usage To enable STP globally on the Switch DAS 3626 admin enable stp Command enable stp Success DAS 3626 admin disable stp Purpose Used to globally disable STP on the Switch Syntax disable stp Description This command allows the Spanning Tree Protocol to be globally disabled on the Switch Parameters None Restrictions Only Admin...

Page 219: ...ameter will set the Multiple Spanning Tree Protocol MSTP globally on the Switch rstp Selecting this parameter will set the Rapid Spanning Tree Protocol RSTP globally on the Switch stp Selecting this parameter will set the Spanning Tree Protocol STP globally on the Switch Restrictions Only Administrator and Operator level users can issue this command Example usage To set the Switch globally for the...

Page 220: ...ero The Switch will then discard the BDPU packet and the information held for the port will age out The user may set a hop count from 1 to 20 The default is 20 hellotime value 1 2 The user may set the time interval between transmission of configuration messages by the root device thus stating that the Switch is still functioning A time between 1 and 2 seconds may be chosen with a default setting o...

Page 221: ...the port does not have edge port status Auto Will indicate that the port will be able to automatically enable edge port status if needed restricted_role true false If true causes the Port not to be selected as Root Port for the CIST or any MSTI even it has the best spanning tree priority vector Such a Port will be selected as an Alternate Port after the Root Port has been selected This parameter s...

Page 222: ...alCost 19 hellotime 2 migrate yes state enable Success DAS 3626 admin create stp instance_id Purpose Used to create a STP instance ID for MSTP Syntax create stp instance_id value 1 15 Description This command allows the user to create a STP instance ID for the Multiple Spanning Tree Protocol There are 16 STP instances on the Switch one internal CIST unchangeable and the user may create up to 15 in...

Page 223: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 218 ...

Page 224: ...nly supports a maximum of 16 spanning tree instances one unchangeable default entry VIDs can belong to only one spanning tree instance at a time Parameters value 1 15 Enter a number between 1 and 15 to define the instance_id The Switch supports 16 STP instances with one unchangeable default instance ID set as 0 add_vlan Along with the vid_range vidlist parameter this command will add VIDs to the p...

Page 225: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual config stp instance_id Restrictions Only Administrator and Operator level users can issue this command 220 ...

Page 226: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To configure instance ID 2 to add VID 10 221 ...

Page 227: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin config stp instance_id 2 add_vlan 10 Command config stp instance_id 2 add_vlan 10 Success DAS 3626 admin 222 ...

Page 228: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To remove VID 10 from instance ID 2 223 ...

Page 229: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin config stp instance_id 2 remove_vlan 10 Command config stp instance_id 2 remove_vlan 10 Success DAS 3626 admin 224 ...

Page 230: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 225 ...

Page 231: ...to delete a STP instance ID from the Switch Syntax delete stp instance_id value 1 15 Description This command allows the user to delete a previously configured STP instance ID from the Switch Parameters value 1 15 Enter a value between 1 and 15 to identify the Spanning Tree instance on the Switch 226 ...

Page 232: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual delete stp instance_id Restrictions Only Administrator and Operator level users can issue this command 227 ...

Page 233: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To delete STP instance ID 2 from the Switch 228 ...

Page 234: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin delete stp instance_id 2 Command delete stp instance_id 2 Success DAS 3626 admin 229 ...

Page 235: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 230 ...

Page 236: ... regions will instruct the Switch to give precedence to the selected instance_id for forwarding packets The lower the priority value set the higher the priority Parameters priority value 0 61440 Select a value between 0 and 61440 to specify the priority for a specified instance ID for forwarding packets The lower the value the higher the priority This value must be divisible by 4096 instance_id va...

Page 237: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual config stp priority Restrictions Only Administrator and Operator level users can issue this command 232 ...

Page 238: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To set the priority value for instance_id 2 as 4096 233 ...

Page 239: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin config stp priority 4096 instance_id 2 Command config stp priority 4096 instance_id 2 Success DAS 3626 admin 234 ...

Page 240: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 235 ...

Page 241: ...o which it belongs Switches having the same revision_level and name will be considered as part of the same MSTP region Parameters revision_level int 0 65535 Enter a number between 0 and 65535 to identify the MSTP region This value along with the name will identify the MSTP region configured on the Switch The default setting is 0 name string Enter an alphanumeric string of up to 32 characters to un...

Page 242: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual config stp mst_config_id Restrictions Only Administrator and Operator level users can issue this command 237 ...

Page 243: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To configure the MSTP region of the Switch with revision_level 10 and the name Trinity 238 ...

Page 244: ...ries Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin config stp mst_config_id revision_level 10 name Trinity Command config stp mst_config_id revision_level 10 name Trinity Success DAS 3626 admin 239 ...

Page 245: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 240 ...

Page 246: ...ports to be configured instance_id value 0 15 Enter a numerical value between 0 and 15 to identify the instance_id previously configured on the Switch An entry of 0 will denote the CIST Common and Internal Spanning Tree internalCost This parameter is set to represent the relative cost of forwarding packets to specified ports when an interface is selected within a STP instance The default setting i...

Page 247: ...y the Switch s current STP configuration Syntax show stp Description This command displays the Switch s current STP configuration Parameters None Restrictions None Example usage To display the status of STP on the Switch Status 1 STP enabled with STP compatible version DAS 3626 admin show stp Command show stp STP Bridge Global Settings STP Status Enabled STP Version STP compatible Max Age 18 Hello...

Page 248: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Max Hops 20 TX Hold Count 6 Forwarding BPDU Disabled NNI BPDU Address dot1d DAS 3626 admin 243 ...

Page 249: ...ifies a port or range of ports to be viewed Information for a single port is displayed If no ports are specified the STP information for port 1 will be displayed Users may use the Space bar p and n keys to view information for the remaining ports Restrictions None Example usage To show STP ports information for port 1 STP enabled on Switch DAS 3626 admin show stp ports Command show stp ports MSTP ...

Page 250: ...admin show stp instance 0 Command show stp instance 0 STP Instance Settings Instance Type CIST Instance Status Enabled Instance Priority 32768 Bridge Priority 32768 SYS ID Ext 0 STP Instance Operational Status Designated Root Bridge 4096 00 11 95 AA 41 00 External Root Cost 200004 Regional Root Bridge 32768 00 01 02 03 04 00 Internal Root Cost 0 Designated Bridge 32768 00 50 BA 97 D9 56 Root Port ...

Page 251: ...tch CLI Reference Manual DAS 3626 admin show stp mst_config_id Command show stp mst_config_id Current MST Configuration Identification Configuration Name 00 53 13 1A 33 24 Revision Level 0 MSTI ID Vid list CIST 2 4094 1 1 DAS 3626 admin 246 ...

Page 252: ...s filter_unregistered_groups show multicast vlan_filtering_mode vlanid vidlist vlan vlan_name 32 Each command is listed in detail in the following sections create fdb Purpose Used to create a static entry to the unicast MAC address forwarding table database Syntax create fdb vlan_name 32 macaddr port port Description This command will make an entry into the Switch s unicast MAC address forwarding ...

Page 253: ...1 00 00 00 00 01 Success DAS 3626 admin config multicast_fdb Purpose Used to configure the Switch s multicast MAC address forwarding database Syntax config multicast_fdb vlan_name 32 macaddr add delete portlist Description This command configures the multicast MAC address forwarding table Parameters vlan_name 32 The name of the VLAN on which the MAC address resides macaddr The MAC address that wil...

Page 254: ...able in which case the Switch will broadcast the packet to all ports negating many of the benefits of having a switch Parameters sec 10 1000000 The aging time for the MAC address forwarding database value The value in seconds may be between 10 and 1000000 seconds Restrictions Only Administrator and Operator level users can issue this command Example usage To set the FDB aging time DAS 3626 admin c...

Page 255: ...address The Switch will always forward traffic to the specified device through this port all Clears all dynamic entries to the Switch s forwarding database Restrictions Only Administrator and Operator level users can issue this command Example usage To clear all FDB dynamic entries DAS 3626 admin clear fdb all Command clear fdb all Success DAS 3626 admin show multicast_fdb Purpose Used to display ...

Page 256: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To display multicast MAC address table 251 ...

Page 257: ...s macaddr The MAC address that is present in the forwarding database table static Displays the static MAC address entries aging_time Displays the aging time for the MAC address forwarding database Restrictions None Example usage To display unicast MAC address table DAS 3626 admin show fdb Command show fdb Unicast MAC Address Aging Time 300 VID VLAN Name MAC Address Port Type 1 default 00 00 00 1B ...

Page 258: ...his command Example usage To configure the multicast packet filtering mode for VLANs DAS 3626 admin config multicast vlan_filtering_mode vlanid 200 300 forward_all_groups Command config multicast vlan_filtering_mode vlanid 200 300 forward_all_groups Success DAS 3626 admin show multicast vlan_filtering_mode Purpose Used to show the multicast packet filtering mode for VLANs Syntax show multicast vla...

Page 259: ...r VDSL Switch CLI Reference Manual 28 CONNECTIVITY FAULT MANAGEMENT COMMANDS The Connectivity Fault Management commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table 254 ...

Page 260: ...g 22 delete cfm ma string 22 md string 22 delete cfm md string 22 enable cfm disable cfm config cfm ports portlist state enable disable show cfm ports portlist show cfm md string 22 ma string 22 mepid int 1 8191 mepname string 32 show cfm remote_mep mepname string 32 md string 22 ma string 22 mepid int 1 8191 remote_mepid int 1 8191 show cfm fault md string 22 ma string 22 show cfm port port level...

Page 261: ...rs of a maintenance domain Syntax config cfm md string 22 mip none auto explicit sender_id none chassis manage chassis_manage Description Creation of MIPs on a MA is useful for tracing the link MIP by MIP It also allows the user to perform loop back from MEP to an MIP Parameters md Specifies the maintenance domain name mip Specifies and controls the creation of MIPs none Specifies that MIPs will n...

Page 262: ...ntax create cfm ma string 22 md string 22 Description Different MAs in a MD must have different MA Names Different MAs in different MDs may have the same MA Name Parameters md Specifies the maintenance domain name ma Specifies the maintenance association name Restrictions Only Administrator and Operator level users can issue this command Example usage To create a CFM maintenance association DAS 36...

Page 263: ...always be created on any ports in this MA if that port is not configured with an MEP of that MA explicit MIP can be created on any ports in this MA only if the next existent lower level has a MEP configured on that port and that port is not configured with a MEP of this MA defer Inherit the settings configured for the maintenance domain that this MA is associated with This is the default value ccm...

Page 264: ...unique among all MEPs configured on the device mepid Specifies the MEP MEPID It should be configured in MA s MEPID list md Specifies the maintenance domain name ma Specifies the maintenance association name direction Specifies the MEP direction inward Specifies the inward facing up MEP outware Specifies the outward facing down MEP port Specifies the port number This port should be a member of the ...

Page 265: ... administrative state enable MEP is enabled disable MEP is disabled This is the default value ccm Specifies the CCM transmission state enable CCM transmission enabled disable CCM transmission disabled This is the default value pdu_priority Specifies the 802 1p priority to be set in CCMs and LTMs messages transmitted by the MEP The default value is 7 fault_alarm Control types of fault alarms sent b...

Page 266: ...ist md Specifies the maintenance domain name ma Specifies the maintenance association name Restrictions Only Administrator and Operator level users can issue this command Example usage To delete CFM mep DAS 3626 admin delete cfm mep mepname mep1 Command delete cfm mep mepname mep1 Success DAS 3626 admin delete cfm ma Purpose Used to delete a created maintenance association Syntax delete cfm ma str...

Page 267: ...M md DAS 3626 admin delete cfm md 3 Command delete cfm md 3 Success DAS 3600 12 4 enable cfm Purpose This command is used to enable CFM globally Syntax enable cfm Description This command is used to enable CFM globally Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To enable CFM DAS 3626 admin enable cfm Command enable cfm Success DAS ...

Page 268: ...erate or process CFM PDUs If the user issues a Loop back or Linktrace test on those MEPs it will prompt user that CFM function is disabled on that port Parameters ports Specifies the logical port list state Is used to enable or disable CFM function Restrictions Only Administrator and Operator level users can issue this command Example usage To configure CFM ports DAS 3626 admin config cfm ports 2 ...

Page 269: ...d to show CFM information Syntax show cfm md string 22 ma string 22 mepid int 1 8191 mepname string 32 Description This command is used to show CFM information Parameters md Specifies the maintenance domain name ma Specifies the maintenance domain name mepid Specifies the MEP MEPID mepname Specifies the MEP name Restrictions None Example usage To display CFM DAS 3626 admin show cfm Command show cf...

Page 270: ...M State enabled PDU Priority 7 Fault Alarm mac_status Alarm Time 2 second s Alarm Reset Time 10 second s Highest Fault Remote CCM Next LTM Trans ID 27 RX Out of Sequence CCMs 0 RX Cross connect CCMs 0 RX Error CCMs 0 RX Port Status CCMs 0 RX If Status CCMs 0 RX In order LBRs 0 TX CCMs 1234 TX LBMs 0 Remote MEP Status MEPID MAC Address Status RDI PortSt IfSt Detect Time 2 XX XX XX OK Yes Blocked Up...

Page 271: ...3600 12 4 show cfm port Purpose This command is used to show MEPs and MIPs created on a port Syntax show cfm port port level int 0 7 direction inward outward vlanid vlanid 1 4094 Description This command is used to show MEPs and MIPs created on a port Parameters port Specifies the port number level Specifies the MD Level If not specified all levels are shown direction Specifies the MEP direction i...

Page 272: ...CFM linktrack message Syntax cfm linktrace macaddr mepname string 32 mepid int 1 8191 md string 22 ma string 22 ttl int 2 255 pdu_priority int 0 7 Description This command is used to issue a CFM linktrack message Parameters macaddr Specifies the destination MAC address mepname Specifies the MEP name mepid Specifies the MEP MEPID md Specifies the maintenance domain name ma Specifies the maintenance...

Page 273: ...cfm linktrace mepname 3 trans_id 1 Transaction ID 1 From MEP 3 to 00 50 BA 50 11 51 Start Time 2009 08 11 03 18 15 MAC Address Last Egress ID Reply Ingress MAC Port Action Hop Relay Forwarded Next Egress ID Reply Egress MAC Port Action 1 FDB 00 80 C8 37 18 F1 00 80 C8 37 18 F0 Yes 00 80 C8 37 18 F0 00 80 C8 37 18 F1 1 Ok 2 Hit 00 50 BA 50 11 51 00 80 C8 37 18 F0 00 50 BA 50 11 51 wan Ok No DAS 362...

Page 274: ...r defined by the standard Under a strict environment there may be substantial amount of CCM packets and it will consume substantial amount of CPU resource To meet the performance requirement the handling of CCM can be changed to hardware mode This function is especially useful for domain s intermediate device since they only have MIPS Note that this command can only be used under assistance of tec...

Page 275: ...0 pattern Specifies an arbitrary amount of data to be included in a Data TLV along with an indication of whether the Data TLV is to be included pdu_priority The 802 1p priority to be set in the transmitted LBMs If not specified it uses the same priority as CCMs and LTMs sent by the MA Restrictions None Example usage To configure CFM loop back DAS 3600 12 4 cfm loopback 00 01 02 03 04 05 mep mep1 C...

Page 276: ... 0 0 0 0 0 0 0 8 0 0 0 0 0 0 0 0 9 0 3 0 0 0 0 0 3 10 0 0 0 0 0 0 0 0 11 0 0 0 0 0 0 0 0 12 0 0 0 0 0 0 0 0 Total 254 3 0 0 0 0 0 257 CFM TX Statistics Port CCM LBR LBM LTR LTM Sum 1 0 0 0 0 0 0 2 284 0 0 0 4 292 3 578 0 0 0 0 578 4 578 0 0 0 0 578 5 578 0 0 0 0 578 6 578 0 0 0 0 578 clear cfm pkt_cnt Purpose Used to clear the CFM packet RX TX counters Syntax clear cfm pkt_cnt ports portlist rx tx...

Page 277: ...race disable Used to disable the CFM mp linktrace Restrictions Only Administrator and Operator level users can issue this command Example usage To configure CFM mp linktrace DAS 3626 admin config cfm mp_ltr_all enable Command config cfm mp_ltr_all enable Success DAS 3600 12 4 show cfm mp_ltr_all Purpose To display the CFM mp linktrace settings on the switch Syntax show cfm mp_ltr_all Description T...

Page 278: ...and creates the control entry for VLAN traffic flow statistics Syntax create vlan_counter vlan vlan_name vlanid vidlist Description This command is used to create control entries to count statistics for specific VLANs or to count statistics for specific ports on specific VLANs The statistics can be either byte count or packet count The statistics can be counted for different frame types Parameters...

Page 279: ...nd Operator level users can issue this command Example usage To stop counting packet levels for broadcast packets on VLAN 1 DAS 3626 admin delete vlan_counter vlanid 1 Command delete vlan_counter vlanid 1 Success DAS 3626 admin clear vlan_counter statistics Purpose Used to clear statistics gathered by the VLAN counter Syntax clear vlan_counter statistics Description This command is used to clear s...

Page 280: ...an_counter utilization VLAN Counter Utilization Port VLAN ID RX BYTES SEC TX BYTES SEC 25 1 0 6400 26 1 6400 0 show vlan_counter statistics Purpose Displays the VLAN level receives packets or receive byte statistics Syntax show vlan_counter statistics vlan vlan_name vlanid vidlist port portlist Description This command displays the VLAN level receives packet or receive byte statistics Parameters v...

Page 281: ...he lowest priority queue 0 Each hardware queue will transmit all of the packets in its buffer before permitting the next lower priority to transmit its packets When the lowest hardware priority queue has finished transmitting all of its packets the highest hardware priority queue will begin transmitting any packets it may have received The mapping of DSCP to COS will be used to determine the prior...

Page 282: ...erving the overall weight ratios between the queues A value between 1 and 255 can be specified For example to evenly divide up the available bandwidth among the queues in the SDWRR set the weight of each of the queues to 1 and the bandwidth of each queue are 12 5 If the desired bandwidth division is 40 20 10 10 5 5 5 and 5 the weight asignment to each queue is set to 8 4 2 2 1 1 1 and 1 respective...

Page 283: ...r Using weighted roundrobin algorithm to handle packets in priority queues Restrictions Only Administrator and Operation level users can issue this command Example usage To configure the traffic scheduling mechanism for each COS queue DAS 3626 admin config scheduling_mechanism strict Command config scheduling_mechanism strict Success DAS 3626 admin show scheduling Purpose Used to display the curre...

Page 284: ...D Weight Class 0 1 Class 1 2 Class 2 3 Class 3 4 Class 4 5 Class 5 6 Class 6 7 Class 7 8 DAS 3626 admin show scheduling_mechanism Purpose Used to show the traffic scheduling mechanism Syntax show scheduling_mechanism Description This command is used to display the current traffic scheduling mechanism in use on the Switch Parameters None Restrictions None Example usage To display the scheduling mec...

Page 285: ...Switch The Switch s default is to map the following incoming 802 1p user priority values to the eight hardware priority queues 802 1p Hardware Queue Remark 0 2 Mid low 1 0 Lowest 2 1 Lowest 3 3 Mid low 4 4 Mid high 5 5 Mid high 6 6 Mid high 7 7 Highest This mapping scheme is based upon recommendations contained in IEEE 802 1D Change this mapping by specifying the 802 1p user priority users want to...

Page 286: ...ority 4 Class 4 Priority 5 Class 5 Priority 6 Class 6 Priority 7 Class 7 DAS 3626 admin config 802 1p default_priority Purpose Used to configure the 802 1p default priority settings on the Switch If an untagged packet is received by the Switch the priority configured with this command will be written to the packet s priority field Syntax config 802 1p default_priority portlist all priority 0 7 Des...

Page 287: ...2 1p priority value that will be assigned to an incoming untagged packet before being forwarded to its destination Syntax show 802 1p default_priority portlist Description This command is used to display the currently configured 802 1p priority value that will be assigned to an incoming untagged packet before being forwarded to its destination Parameters portlist Specifies a port or range of ports...

Page 288: ...ot trusted 1p is trusted Parameters state Enable disable to trust DSCP By default DSCP trust is disabled Restrictions Only Administrator and Operator level users can issue this command Example usage To configure DSCP trust state enable DAS 3626 admin config dscp trust state enable Command config dscp trust state enable Success DAS 3626 admin show dscp trust Purpose Used to display DSCP trust state...

Page 289: ...39 40 47 48 55 56 63 priority 0 1 2 3 4 5 6 7 Restrictions Only Administrator and Operator level users can issue this command Example usage To configure DSCP map on the Switch DAS 3626 admin config dscp map dscp_priority 0 to 7 Command config dscp map dscp_priority 0 to 7 Success DAS 3626 admin show dscp map Purpose Used to display the DSCP map configure parameter Syntax show dscp map dscp_priotit...

Page 290: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 12 1 13 1 14 1 15 1 16 2 17 2 18 2 19 2 CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All 285 ...

Page 291: ...ters for these two types of packets Once a storm has been detected that is once the packet threshold set below has been exceeded the Switch will shutdown the port to all incoming traffic with the exception of STP BPDU packets for a time period specified using the countdown field If this field times out and the packet storm continues the port will be placed in a Shutdown Forever mode which will pro...

Page 292: ...ired and yet the Packet Storm continues the port will be placed in Shutdown Forever mode and is no longer operational until the user manually resets the port using the config ports enable command Choosing this option obligates the user to configure the time_interval field as well which will provide packet count samplings from the Switch s chip to determine if a Packet Storm is occurring threshold ...

Page 293: ...nd end of the port list range are separated by a dash Restrictions None Example usage To display traffic control settings DAS 3626 admin show traffic control Command show traffic control Traffic Storm Control Trap None Port Thres Broadcast Multicast Unicast Action Count Time hold Storm Storm Storm Down Interval 1 131072 Disabled Disabled Disabled drop 0 5 2 131072 Disabled Disabled Disabled drop 0...

Page 294: ...ameters none No notification will be generated or sent when a packet storm control is detected by the Switch storm _occurred A notification will be generated and sent when a packet storm has been detected by the Switch storm_cleared A notification will be generated and sent when a packet storm has been cleared by the Switch both A notification will be generated and sent when a packet storm has bee...

Page 295: ...face Filtering mechanism explained in the previous section Once the user configures these acceptable IP addresses other packets containing different IP addresses will be dropped by the Switch thus limiting the bandwidth of IP packets To keep the process moving fast be sure not to add many conditions on which to accept these acceptable IP addresses and their packets this limiting the CPU utilizatio...

Page 296: ...Safeguard Engine function to cease Once the CPU utilization falls to this percentage the Safeguard Engine mechanism will shut down trap_log enable disable Choose whether to enable or disable the sending of messages to the device s SNMP agent and switch log once the Safeguard Engine has been activated by a high CPU utilization rate mode strict fuzzy Used to select the type of Safeguard Engine to be...

Page 297: ...t status and type of the Safeguard Engine settings currently configured Parameters None Restrictions None Example usage To display the safeguard engine status DAS 3626 admin show safeguard_engine Command show safeguard_engine Safeguard Engine State Disabled Safeguard Engine Current Status Normal Mode CPU Utilization Information Rising Threshold 30 Falling Threshold 20 Trap Log State Enabled Mode S...

Page 298: ...addr max_lock_no 0 512 lock_address_mode Permanent Deleteontimeout Deleteonreset Description This command allows for the configuration of the port security feature Only the ports listed in the portlist are affected Parameters portlist Specifies a port or range of ports to be configured all Configure port security for all ports on the Switch admin_state enable disable Enable or disable port securit...

Page 299: ...port Enter the corresponding port number Restrictions Only Administrator and Operator level users can issue this command Example usage To delete a port security entry DAS 3626 admin delete port_security_entry vlan name rg mac_address 00 01 30 10 2C C7 Command delete port_security_entry vlan name rg mac_address 00 01 30 10 2C C7 Success DAS 3626 admin clear port_security_entry Purpose Used to clear...

Page 300: ...Lock Address Mode Max Learning Addr 1 Disabled DeleteOnReset 1 2 Disabled DeleteOnReset 1 3 Disabled DeleteOnReset 1 4 Disabled DeleteOnReset 1 5 Disabled DeleteOnReset 1 DAS 3626 admin enable port_security trap_log Purpose Used to enable the trap log for port security Syntax enable port_security trap_log Description This command is used to enable port security traps logs When this command is enab...

Page 301: ...s command is used to disable a port security trap log If the port security trap is disabled no trap will be sent out for MAC violations Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable the port security trap log setting DAS 3626 admin disable port_security trap_log Command disable port_security trap_log Success DAS 3626 admin ...

Page 302: ...E encryption code defined by the Data Encryption Standard DES to create the encrypted text 3 Hash Algorithm This part of the ciphersuite allows the user to choose a message digest function which will determine a Message Authentication Code This Message Authentication Code will be encrypted with a sent message to provide integrity and prevent against replay attacks The Switch supports two hash algo...

Page 303: ...ge CBC Block Cipher 3DES_EDE encryption and the SHA Hash Algorithm DHE_DSS_with_3DES_EDE_CBC_SHA This ciphersuite combines the DSA Diffie Hellman key exchange CBC Block Cipher 3DES_EDE encryption and SHA Hash Algorithm RSA_EXPORT_with_RC4_40_MD5 This ciphersuite combines the RSA Export key exchange stream cipher RC4 encryption with 40 bit keys The ciphersuites are enabled by default on the Switch ...

Page 304: ...ecific encryption algorithms and key sizes to be used for an authentication session The user may choose any combination of the following RSA_with_RC4_128_MD5 This ciphersuite combines the RSA key exchange stream cipher RC4 encryption with 128 bit keys and the MD5 Hash Algorithm RSA_with_3DES_EDE_CBC_SHA This ciphersuite combines the RSA key exchange CBC Block Cipher 3DES_EDE encryption and the SHA...

Page 305: ... between a new key exchange between a client and a host using the SSL function A new SSL session is established every time the client and host go through a key exchange Specifying a longer timeout will allow the SSL session to reuse the master key on future connections with that particular host therefore speeding up the negotiation process Parameters timeout value 60 86400 Enter a timeout value be...

Page 306: ...atus on the Switch Syntax show ssl Description This command is used to view the SSL status on the Switch Parameters None Restrictions None Example usage To view the SSL status on the Switch DAS 3626 admin show ssl Command show ssl SSL status Enabled RSA_WITH_RC4_128_MD5 Enabled RSA_WITH_3DES_EDE_CBC_SHA Enabled DHE_DSS_WITH_3DES_EDE_CBC_SHA Enabled RSA_EXPORT_WITH_RC4_40_MD5 Enabled DAS 3626 admin...

Page 307: ...nt must have consistent certificate files for optimal use of the SSL function The Switch only supports certificate files with der file extensions Parameters ipaddr Enter the IP address of the TFTP server certfilename path_filename 64 Enter the path and the filename of the certificate file users wish to download keyfilename path_filename 64 Enter the path and the filename of the key exchange file u...

Page 308: ...gure the user account to use a specified authorization method to identify users that are allowed to establish SSH connections with the Switch using the config ssh authmode command There are three choices as to the method SSH will use to authorize the user and they are password publickey and hostbased Configure the encryption algorithm that SSH will use to encrypt and decrypt messages sent between ...

Page 309: ...server maxsession int 1 8 contimeout sec 120 600 authfail int 2 20 rekey 10min 30min 60min never show ssh server config ssh user username 15 authmode hostbased hostname domain_name 32 hostname_IP domain_name 32 ipaddr password publickey show ssh user authmode config ssh algorithm 3DES AES128 AES192 AES256 arcfour blowfish cast128 twofish128 twofish192 twofish256 MD5 SHA1 RSA DSA enable disable 304...

Page 310: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Command Parameters show ssh algorithm 305 ...

Page 311: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Each command is listed in detail in the following sections 306 ...

Page 312: ...AS 3600 Series Ethernet over VDSL Switch CLI Reference Manual enable ssh Purpose Used to enable SSH Syntax enable ssh Description This command allows users to enable SSH on the Switch Parameters None 307 ...

Page 313: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual enable ssh Restrictions Only Administrator and Operator level users can issue this command 308 ...

Page 314: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Usage example To enable SSH 309 ...

Page 315: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin enable ssh Command enable ssh Success DAS 3626 admin 310 ...

Page 316: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 311 ...

Page 317: ... 3600 Series Ethernet over VDSL Switch CLI Reference Manual disable ssh Purpose Used to disable SSH Syntax disable ssh Description This command allows users to disable SSH on the Switch Parameters None 312 ...

Page 318: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual disable ssh Restrictions Only Administrator and Operator level users can issue this command 313 ...

Page 319: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Usage example To disable SSH 314 ...

Page 320: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin disable ssh Command disable ssh Success DAS 3626 admin 315 ...

Page 321: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 316 ...

Page 322: ...or wishes to use a locally configured password for authentication on the Switch publickey This parameter may be chosen if the administrator wishes to use a publickey configuration set on a SSH server for authentication hostbased This parameter may be chosen if the administrator wishes to use a host computer for authentication This parameter is intended for Linux users requiring SSH authentication ...

Page 323: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual config ssh authmode Restrictions Only Administrator and Operator level users can issue this command 318 ...

Page 324: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To enable the SSH authentication mode by password 319 ...

Page 325: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin config ssh authmode password enable Command config ssh authmode password enable Success DAS 3626 admin 320 ...

Page 326: ...axsession int 1 8 Allows the user to set the number of users that may simultaneously access the Switch The default setting is 8 contimeout sec 120 600 Allows the user to set the connection timeout The user may set a time between 120 and 600 seconds The default is 120 seconds authfail int 2 20 Allows the administrator to set the maximum number of attempts that a user may try to logon utilizing SSH ...

Page 327: ...ssh server Description This command is used to display the current SSH server setting Parameters None Restrictions None Usage example To display the SSH server DAS 3626 admin show ssh server Command show ssh server The SSH Server Configuration Max Session 8 Connection Timeout 120 Authfail Attempts 2 Rekey Timeout Never DAS 3626 admin 322 ...

Page 328: ...shes to use a remote SSH server for authentication purposes Choosing this parameter requires the user to input the following information to identify the SSH user hostname domain_name 32 Enter an alphanumeric string of up to 32 characters identifying the remote SSH user hostname_IP domain_name 32 ipaddr Enter the hostname and the corresponding IP address of the SSH user password This parameter shou...

Page 329: ...el users can issue this command Example usage To display the SSH user DAS 3626 admin show ssh user authmode Command show ssh user authmode Current Accounts Username AuthMode HostName HostIP 123 Password Total Entries 1 DAS 3626 admin Note To configure the SSH user the administrator must create a user account on the Switch For information concerning configuring a user account please see the section...

Page 330: ...le or disable the Arcfour encryption algorithm blowfish This parameter will enable or disable the Blowfish encryption algorithm cast128 This parameter will enable or disable the Cast128 encryption algorithm twofish128 This parameter will enable or disable the twofish128 encryption algorithm twofish192 This parameter will enable or disable the twofish192 encryption algorithm MD5 This parameter will...

Page 331: ...one Usage Example To display SSH algorithms currently set on the Switch DAS 3626 admin show ssh algorithm Command show ssh algorithm Encryption Algorithm 3DES Enabled AES128 Enabled AES192 Enabled AES256 Enabled Arcfour Enabled Blowfish Enabled Cast128 Enabled Twofish128 Enabled Twofish192 Enabled Twofish256 Enabled Data Integrity Algorithm MD5 Enabled SHA1 Enabled Public Key Algorithm RSA Enabled...

Page 332: ...r host and it must include usernames and passwords for authentication When the user is prompted by the Switch to enter usernames and passwords for authentication the Switch contacts the TACACS XTACACS TACACS RADIUS server to verify and the server will respond with one of three messages A The server verifies the username and password and the user is granted normal user privileges on the Switch B Th...

Page 333: ...ace CLI are listed along with the appropriate parameters in the following table NOTE TACACS XTACACS and TACACS are separate entities and are not compatible The Switch and the server must be configured exactly the same using the same protocol For example if the Switch is set up for TACACS authentication so must be the host server 328 ...

Page 334: ...5 all config authen application console telnet ssh http all login enable default method_list_name string 15 show authen application create authen server_group string 15 config authen server_group tacacs xtacacs tacacs radius string 15 add delete server_host ipaddr protocol tacacs xtacacs tacacs radius delete authen server_group string 15 show authen server_group string 15 create authen server_host...

Page 335: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Command Parameters config admin local_enable 330 ...

Page 336: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Each command is listed in detail in the following sections 331 ...

Page 337: ...tem access authentication policy Syntax enable authen_policy Description This command will enable an administrator defined authentication policy for users trying to access the Switch When enabled the device will check the method list and choose a technique for user authentication upon login Parameters None 332 ...

Page 338: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual enable authen_policy Restrictions Only Administrator level users can issue this command 333 ...

Page 339: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To enable the system access authentication policy 334 ...

Page 340: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin enable authen_policy Command enable authen_policy Success DAS 3626 admin 335 ...

Page 341: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 336 ...

Page 342: ... command will disable the administrator defined authentication policy for users trying to access the Switch When disabled the Switch will access the local user account database for username and password verification In addition the Switch will now accept the local enable password as the authentication for normal users attempting to access administrator level privileges Parameters None 337 ...

Page 343: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual disable authen_policy Restrictions Only Administrator level users can issue this command 338 ...

Page 344: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To disable the system access authentication policy 339 ...

Page 345: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin disable authen_policy Command disable authen_policy Success DAS 3626 admin 340 ...

Page 346: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 341 ...

Page 347: ...anual show authen_policy Purpose Used to display the system access authentication policy status on the Switch Syntax show authen_policy Description This command will show the current status of the access authentication policy on the Switch Parameters None 342 ...

Page 348: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show authen_policy Restrictions Only Administrator level users can issue this command 343 ...

Page 349: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To display the system access authentication policy 344 ...

Page 350: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin show authen_policy Command show authen_policy Authentication Policy Enabled DAS 3626 admin 345 ...

Page 351: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 346 ...

Page 352: ... create authen_login method_list_name string 15 Description This command is used to create a list for authentication techniques for user login The Switch can support up to eight method lists but one is reserved as a default and cannot be deleted Multiple method lists must be created and configured separately Parameters string 15 Enter an alphanumeric string of up to 15 characters to define the giv...

Page 353: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual create authen_login method_list_name Restrictions Only Administrator level users can issue this command 348 ...

Page 354: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To create the method list Trinity 349 ...

Page 355: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin create authen_login method_list_name Trinity Command create authen_login method_list_name Trinity Success DAS 3626 admin 350 ...

Page 356: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 351 ...

Page 357: ...re the user to be authenticated using the TACACS protocol from the remote TACACS server hosts of the TACACS server group list xtacacs Adding this parameter will require the user to be authenticated using the XTACACS protocol from the remote XTACACS server hosts of the XTACACS server group list tacacs Adding this parameter will require the user to be authenticated using the TACACS protocol from the...

Page 358: ...efault method xtacacs tacacs local Command config authen_login default method xtacacs tacacs local Success DAS 3626 admin delete authen_login method_list_name Purpose Used to delete a previously configured user defined method list of authentication methods for users logging on to the Switch Syntax delete authen_login method_list_name string 15 Description This command is used to delete a list for ...

Page 359: ...protocols will be queried for authentication when a user attempts to log on to the Switch Priority ranges from 1 highest to 4 lowest Method Name Defines which security protocols are implemented per method list name Comment Defines the type of Method User defined Group refers to server group defined by the user Built in Group refers to the TACACS XTACACS TACACS and RADIUS security protocols which a...

Page 360: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 355 ...

Page 361: ...ommand is used to promote users with normal level privileges to Administrator level privileges using authentication methods on the Switch Once a user acquires normal user level privileges on the Switch he or she must be authenticated by a method on the Switch to gain administrator privileges on the Switch which is defined by the Administrator A maximum of eight enable method lists can be implement...

Page 362: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual create authen_enable method_list_name Restrictions Only Administrator level users can issue this command 357 ...

Page 363: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To create a user defined method list named Permit for promoting user privileges to Administrator privileges 358 ...

Page 364: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin create authen_enable method_list_name Permit Command create authen_enable method_list_name Permit Success DAS 3626 admin 359 ...

Page 365: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 360 ...

Page 366: ...eges on the Switch which is defined by the Administrator A maximum of eight enable method lists can be implemented simultaneously on the Switch The sequence of methods implemented in this command will affect the authentication result For example if a user enters a sequence of methods like tacacs xtacacs local_enable the Switch will send an authentication request to the first TACACS host in the ser...

Page 367: ...ccount database on the Switch none Adding this parameter will require no authentication to access the Switch method_list_name Enter a previously implemented method list name defined by the user create authen_enable The user may add one or a combination of up to four 4 of the following authentication methods to this method list tacacs Adding this parameter will require the user to be authenticated ...

Page 368: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To configure the user defined method list Permit with authentication methods TACACS XTACACS and local in that order 363 ...

Page 369: ... VDSL Switch CLI Reference Manual DAS 3626 admin config authen_enable method_list_name Trinity method tacacs xtacacs local Command config authen_enable method_list_name Trinity method tacacs xtacacs local Success DAS 3626 admin 364 ...

Page 370: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To configure the default method list with authentication methods XTACACS TACACS and local in that order 365 ...

Page 371: ...ies Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin config authen_enable default method xtacacs tacacs local Command config authen_enable default method xtacacs tacacs local Success DAS 3626 admin 366 ...

Page 372: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 367 ...

Page 373: ...el privileges to Administrator level privileges on the Switch Syntax delete authen_enable method_list_name string 15 Description This command is used to delete a user defined method list of authentication methods for promoting user level privileges to Administrator level privileges Parameters string 15 Enter an alphanumeric string of up to 15 characters to define the given enable method list to de...

Page 374: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual delete authen_enable method_list_name Restrictions Only Administrator level users can issue this command 369 ...

Page 375: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To delete the user defined method list Permit 370 ...

Page 376: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin delete authen_enable method_list_name Permit Command delete authen_enable method_list_name Permit Success DAS 3626 admin 371 ...

Page 377: ...hod list protocols will be queried for authentication when a user attempts to log on to the Switch Priority ranges from 1 highest to 4 lowest Method Name Defines which security protocols are implemented per method list name Comment Defines the type of Method User defined Group refers to server groups defined by the user Built in Group refers to the TACACS XTACACS TACACS and RADIUS security protoco...

Page 378: ...n for upgrading a normal user level to administrator privileges using a previously configured method list default Use this parameter to configure an application for user authentication using the default method list method_list_name string 15 Use this parameter to configure an application for user authentication using a previously configured method list Enter a alphanumeric string of up to 15 chara...

Page 379: ...owing tacacs Enter this parameter if the server host utilizes the TACACS protocol xtacacs Enter this parameter if the server host utilizes the XTACACS protocol tacacs Enter this parameter if the server host utilizes the TACACS protocol radius Enter this parameter if the server host utilizes the RADIUS protocol port int 1 65535 Enter a number between 1 and 65535 to define the virtual port number of...

Page 380: ...acacs Enter this parameter if the server host utilizes the XTACACS protocol tacacs Enter this parameter if the server host utilizes the TACACS protocol radius Enter this parameter if the server host utilizes the RADIUS protocol port int 1 65535 Enter a number between 1 and 65535 to define the virtual port number of the authentication protocol on a server host The default port number is 49 for TACA...

Page 381: ...created on the Switch Parameters server_host ipaddr The IP address of the remote server host to be deleted protocol The protocol used by the server host the user wishes to delete The user may choose one of the following tacacs Enter this parameter if the server host utilizes the TACACS protocol xtacacs Enter this parameter if the server host utilizes the XTACACS protocol tacacs Enter this paramete...

Page 382: ...lowing parameters are displayed IP Address The IP address of the authentication server host Protocol The protocol used by the server host Possible results will include TACACS XTACACS TACACS or RADIUS Port The virtual port number on the server host The default value is 49 Timeout The time in seconds the Switch will wait for the server host to reply to an authentication request Retransmit The value ...

Page 383: ...ion server group A server group is a technique used to group TACACS XTACACS TACACS RADIUS server hosts into user defined categories for authentication using method lists The user may add up to eight authentication server hosts to this group using the config authen server_group command Parameters string 15 Enter an alphanumeric string of up to 15 characters to define the newly created server group ...

Page 384: ...rotocol on the Switch Only server hosts utilizing the TACACS protocol may be added to this group radius Use this parameter to utilize the built in RADIUS server protocol on the Switch Only server hosts utilizing the RADIUS protocol may be added to this group string 15 Enter an alphanumeric string of up to 15 characters to define the previously created server group This group may add any combinatio...

Page 385: ...ow authen server_group Purpose Used to view authentication server groups on the Switch Syntax show authen server_group string 15 Description This command will display authentication server groups currently configured on the Switch This command will display the following fields Group Name The name of the server group currently configured on the Switch including built in groups and user defined grou...

Page 386: ...means there won t be a time out The default value is 0 seconds Restrictions Only Administrator level users can issue this command Example usage To configure the response timeout for 60 seconds DAS 3626 admin config authen parameter response_timeout 60 Command config authen parameter response_timeout 60 Success DAS 3626 admin config authen parameter attempt Purpose Used to configure the maximum num...

Page 387: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To set the maximum number of authentication attempts at 5 382 ...

Page 388: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin config authen parameter attempt 5 Command config authen parameter attempt 5 Success DAS 3626 admin 383 ...

Page 389: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 384 ...

Page 390: ...rently configured on the Switch including the response timeout and user authentication attempts This command will display the following fields Response timeout The configured time allotted for the Switch to wait for a response of authentication from the user attempting to log in from the command line interface or telnet interface User attempts The maximum number of attempts the user may try to bec...

Page 391: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show authen parameter Restrictions Only Administrator level users can issue this command 386 ...

Page 392: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To view the authentication parameters currently set on the Switch 387 ...

Page 393: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin show authen parameter Command show authen parameter Response Timeout 30 seconds User Attempts 3 DAS 3626 admin 388 ...

Page 394: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 389 ...

Page 395: ...meters None Restrictions None Example usage To enable administrator privileges on the Switch DAS 3626 admin enable admin Password DAS 3626 admin config admin local_enable Purpose Used to configure the local enable password for administrator level privileges Syntax config admin local_enable Description This command will configure the locally enabled password for the enable admin command When a user...

Page 396: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 391 ...

Page 397: ...tion must be enabled first Once all settings are complete all DHCP Server packets will be filtered from a specific port except those that meet the Server IP Address and Client MAC Address binding NetBIOS Filtering Setting When the NetBIOS filter is enabled all NetBIOS packets will be filtered from the specified port Enabling the NetBIOS filter will create one access profile and create three access...

Page 398: ... the DHCP filter state ports portlist The port number to which the DHCP filter will be applied Restrictions Only Administrator level users can issue this command Enabling the DHCP filter will create one access profile and create one access rule per port UDP port 67 Addition of a DHCP filter permit entry will create one access profile and create one access rule DA client MAC address SA source IP ad...

Page 399: ...st all The list of port numbers to which the NetBIOS filter will be applied state enable disable Used to enable disable the NetBIOS filter on the switch Restrictions Only Administrator level users can issue this command Enabling the NetBIOS filter will create one access profile and three access rules per port UDP port number 137 and 138 and TCP port 139 Example usage To configure the NetBIOS state...

Page 400: ...h Restrictions Only Administrator level users can issue this command Enabling the NetBIOS filter will create one access profile and one access rules per port DSAP F0 SASP F0 Example usage To configure the extensive NetBIOS state DAS 3626 admin config filter extensive_netbios 1 10 state enable Command config filter extensive_netbios 1 10 state enable Success DAS 3626 admin show filter extensive_net...

Page 401: ...0000000000 ffffffffffff 802 1p ethernet_type 1 ipv4 vlan mask hex 0x0 0x0fff source_ip_mask netmask destination_ip_mask netmask dscp icmp type code igmp type tcp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff flag_mask all urg ack psh rst syn fin 1 udp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff protocol_id_mask hex 0x0 0xff user_define_mask hex 0x0 0xffffffff 1 packet_con...

Page 402: ... port portlist all vlanbased vlan_name vlan_name vlan_id value 1 4094 permit priority value 0 7 replace_priority rx_rate no_limit value 1 15624 replace_dscp_with value 0 63 mirror deny time_range range_name 32 delete access_id value 1 1024 show access_profile profile_id value 1 12 profile_name name 1 32 show time_range show current_config access_profile Access profiles allow users to establish cri...

Page 403: ...n 10 42 73 0 to 10 42 73 255 Finally the restricted port port number 7 is specified Due to a chipset limitation the Switch supports a maximum of twelve access profiles The rules used to define the access profiles are limited to a total of 1536 rules for the Switch create access_profile Purpose Used to create an access profile on the Switch and to define which parts of each incoming frame s header ...

Page 404: ...type Specifies that the Switch will examine each frame s ICMP Type field code Specifies that the Switch will examine each frame s ICMP Code field igmp Specifies that the Switch will examine each frame s Internet Group Management Protocol IGMP field type Specifies that the Switch will examine each frame s IGMP Type field tcp Specifies that the Switch will examine each frame s Transmission Control P...

Page 405: ...f the IPv6 header This class field is a part of the packet header that is similar to the Type of Service ToS or Precedence bits field in IPv4 flowlabel Entering this parameter will instruct the Switch to examine the flow label field of the IPv6 header This flow label field is used by a source to label sequences of packets such as non default quality of service or real time service packets tcp Spec...

Page 406: ...alue is assigned to the access profile when it is created with the create access_profile command The user may enter a profile ID number between 1 and 12 yet remember only 12 access profiles can be created on the Switch profile_name name 1 32 Specifies the name of the profile The maximum length is 32 characters all Entering this parameter will delete all access profiles currently configured on the ...

Page 407: ...g ack psh rst syn fin udp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff protocol_id value 0 255 user_define hex 0x0 0xffffffff mask hex 0x0 0xffffffff 1 packet_content destination_mac macaddr mask macmask source_mac macaddr mask macmask outer_tag hex 0x0 0x0fff mask hex 0x0 0x0fff offset1 hex 0x0 0xff mask hex 0x0 0xff offset2 hex 0x0 0xff mask hex 0x0 0xff ...

Page 408: ...ength is 32 characters add access_id value 1 1024 Adds an additional rule to the above specified access profile The value is used to index the rule created For information on number of rules that can be created for a given port lease see the introduction to this chapter ethernet Specifies that the Switch will look only into the layer 2 part of each packet vlan vlan_name 32 vlan_id value 1 4094 Spe...

Page 409: ... push rst TCP control flag reset syn TCP control flag synchronize fin TCP control flag finish udp Specifies that the Switch will examine the User Datagram Protocol UDP field in each packet src_port value 0 65535 Specifies that the access profile will apply only to packets that have this UDP source port in their UDP header dst_port value 0 65535 Specifies that the access profile will apply only to ...

Page 410: ...mit in 64Kbps that the above ports will be allowed to receive deny Specifies the rule will deny access for incoming packets on the previously specified port mirror Specifies the packets that match the access profile copies it and sends the copied one to the mirror port time_range Specifies the time_range profile that has been associated with the ACL entries delete access_id value 1 1024 Use this t...

Page 411: ...n 1 and 12 yet remember only 12 access profiles can be created on the Switch profile_name name 1 32 Specifies the name of the profile The maximum length is 32 characters Restrictions None Example usage To display all of the currently configured access profiles on the Switch DAS 3626 admin show access_profile Command show access_profile Access Profile Table Total Unused Rule Entries 1023 Total Used...

Page 412: ...er than end_time end_time Specifies the ending time in a day 24 hr time weekdays Specify the list of days contained in the time range Use a dash to define a period of days Use a comma to separate specific days For example mon fri Monday to Friday sun mon fri Sunday Monday and Friday delete Deletes a time range profile When a time_range profile has been associated with ACL entries the delete of thi...

Page 413: ... access_profile Purpose This command displays the ACL part of current configuration Syntax show current_config access_profile Description This command displays the ACL privilege of the current configuration in user level of privilege The overall current configuration can be displayed by show config command which is accessible in administrator level of privilege Parameters None Restrictions None Ex...

Page 414: ...r VDSL Switch CLI Reference Manual DAS 3626 admin show current_config access_profile Command show current_config access_profile ACL create access_profile profile_id 1 profile_name RG ethernet vlan ethernet_type DAS 3626 admin 409 ...

Page 415: ...00 Series Ethernet over VDSL Switch CLI Reference Manual 39 VDSL COMMANDS The VDSL switch commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table 410 ...

Page 416: ...ain reset loopback co_side 0 eoc 1 cpe_side 2 times int 1 400 size int 64 1518 loop_diagnostic show vdsl line vdsl_portlist all bit_map snr_margin_map psd_map attenuation_map status brief loop_diagnostic pm_counters 15mins 1day config vdsl pm_threshold 15min 0 1day 1 both 2 near_end 0 far_end 1 both_ends 2 es 0 threshold ses 1 threshold uas 2 threshold crc_error 3 threshold show vdsl pm_threshold ...

Page 417: ..._value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value TrellisCoding disable enable RateAdaptive fix rate adaptive RaMode decrease increase decrease MaxTxRate MaxRxRate MinTxRate MinRxRate vdsl_speed 32 104960 SnrMarginTx SnrMarginRx max vdsl...

Page 418: ...nce Manual Command Parameters delete vdsl profile profile_id 1 60 name profile_name 32 show vdsl profile profile_id 1 60 name profile_name 32 all temp run clear vdsl_counter vdsl_portlist all Each command is listed in detail in the following sections 413 ...

Page 419: ... Example usage To show vdsl line downstream upstream Transmission powe DAS 3626 admin show vdsl brief_status txpower Command show vdsl brief_status txpower GET VDSL TXPOWER VDSL 1 txpower down up 0 0 0 0 dbm VDSL 2 txpower down up 0 0 0 0 dbm VDSL 3 txpower down up 0 0 0 0 dbm VDSL 4 txpower down up 12 4 7 7 dbm VDSL 5 txpower down up 0 0 0 0 dbm VDSL 6 txpower down up 0 0 0 0 dbm VDSL 7 txpower d...

Page 420: ...st is internal eoc Specifies that loop back test is external via VDSL EOC channel cpe side Specifies that loop back test is external via VDSL DATA channel times How many times to run loop back test size Specifies pcket size loop_diagnostic run loop diagnostic on vdsl line Restrictions Only Administrator level users can issue this command Example usage To config vdsl line use or no_use DAS 3626 adm...

Page 421: ... as bit map SNR margin map PSD map attenuation map line status loop diagnostic result Parameters portlist all The list of port numbers to config bit_map display VDSL line per tone bit map snr_margin_map display VDSL line per tone SNR Margin map psd_map display VDSL line per tone PSD map attenuation_map display VDSL line per tone attenuation map status display VDSL line status loop_diagnostic displ...

Page 422: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show vdsl line Restrictions Only Administrator level users or Operation level can issue this command 417 ...

Page 423: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage Show vdsl line bit map 418 ...

Page 424: ...8 8 8 8 8 96 8 8 8 8 8 8 8 8 8 8 8 8 9 8 8 8 112 8 8 9 8 9 8 9 8 9 8 9 8 9 8 9 7 128 0 0 7 8 9 8 9 8 9 9 9 8 9 8 9 8 144 9 8 9 9 9 8 9 9 9 9 8 9 9 9 9 8 160 8 9 9 9 9 9 9 9 9 8 9 9 9 9 9 9 176 9 9 9 8 9 9 9 9 9 9 9 9 9 9 6 0 192 0 6 9 9 9 9 9 9 9 9 9 9 9 9 9 9 208 9 9 9 9 9 9 9 9 9 9 9 9 9 9 9 9 224 9 9 9 9 9 9 9 9 9 9 9 9 9 9 9 9 240 9 9 9 9 9 10 9 9 9 9 9 9 9 9 6 0 256 0 6 9 9 9 9 9 10 9 9 10 9 ...

Page 425: ... Profile 30a Downstream Upstream Line Rate 118 252Mbps 115 972Mbps Payload Rate 103 984Mbps 101 992Mbps Attainable Payload Rate 104 960Mbps 104 960Mbps SNR Margin US0 N A N A DS1 US1 20 2dB 10 4db DS2 US2 20 5dB 11 0db DS3 US3 20 4dB 9 5db Average SNR Margin 20 3dB 9 5dB Interleave Delay 7 7ms 7 7ms INP in DMT symbols 1 4 1 4 Transmit power 12 4dBm 7 7dBm Line Attenuation US0 N A N A DS1 US1 0 1dB...

Page 426: ... UAS CRC LOSS LOFS ES SES UAS CRC LOSS LOFS 1 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 3 0 0 0 0 0 0 0 0 0 0 0 0 4 0 0 0 0 0 0 0 0 0 0 0 0 5 0 0 0 0 0 0 0 0 0 0 0 0 6 0 0 0 0 0 0 0 0 0 0 0 0 7 0 0 0 0 0 0 0 0 0 0 0 0 8 0 0 0 0 0 0 0 0 0 0 0 0 9 0 0 0 0 0 0 0 0 0 0 0 0 10 0 0 0 0 0 0 0 0 0 0 0 0 11 0 0 0 0 0 0 0 0 0 0 0 0 12 0 0 0 0 0 0 0 0 0 0 0 0 13 0 0 0 0 0 0 0 0 0 0 0 0 14 0 0 0 0 0 0...

Page 427: ...verely Errored Second UAS Unavailable Second CRC Cyclic Redundancy Check Parameters 15min 1day both config 15 minute one day performance counter threshold near_end far_end both_ends config VDSL near_end or far_end performance counter threshold es threshold ses threshold uas threshold crc_error threshold config ES SES UAS or CRC counter threshold Restrictions Only Administrator level users can issu...

Page 428: ...show vdsl pm_threshold 15 min PM counters threshold values Near end Far end ES 100 10 SES 10 10 UAS 0 0 CRC 10 10 1 day PM counters threshold values Near end Far end ES 10 10 SES 10 10 UAS 0 0 CRC 10 10 DAS 3626 admin create vdsl profile Purpose Used to create vdsl profile Syntax create vdsl profile profile_name 32 Description This command is used to create VDSL profile Parameters profile_name 32 ...

Page 429: ...h VDSL line 1 DAS 3626 admin config vdsl profile name default1 attach 1 Command config vdsl profile name default1 attach 1 Success DAS 3626 admin config vdsl profile profile_nam Purpose Used to config vdsl profile Syntax config vdsl profile profile_id 1 60 name profile_name 32 profile_name name Description This command is used to rename VDSL profile Parameters profile_id 1 60 The profile ID of the...

Page 430: ...fault Vdsl2Profile autoprofile Command config vdsl profile name default Vdsl2Profile autoprofile Success DAS 3626 admin config vdsl profile UPBO Purpose Used to config vdsl profile UPBO Syntax config vdsl profile profile_id 1 60 name profile_name 32 UPBO disable g 993 2 custom k_value k_value k_value k_value k_value k_value k_value k_value k_value k_value k_value k_value Description This command i...

Page 431: ...DPBO Parameters profile_id 1 60 The profile ID of the profile to be configed name profile_name 32 The name of the profile to be configed DPBO config DPBO Downstream Power Back Off disable disable DPBO enable enable DPBO Restrictions Only Administrator level users can issue this command Example usage To config vdsl DPBO DAS 3626 admin config vdsl profile name default DPBO disable Command config vds...

Page 432: ... frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value Description This command is used to config VDSL DPBO value Parameters profile_id 1 60 The profile ID of the profile to be configed name profile_name 32...

Page 433: ... admin config vdsl profile RateAdaptive Purpose Used to config vdsl profile rate adaptive method Syntax config vdsl profile profile_id 1 60 name profile_name 32 RateAdaptive fix rate adaptive Description This command is used to config VDSL rate adaptive Parameters profile_id 1 60 The profile ID of the profile to be configed name profile_name 32 The name of the profile to be configed RateAdaptive T...

Page 434: ... name default RaMode decrease Command config vdsl profile name default RaMode decrease Success DAS 3626 admin config vdsl profile MaxTxRate MaxRxRate MinTxRate MinRxRate Purpose Used to config vdsl profile maximum and minimum RX TX rate Syntax config vdsl profile profile_id 1 60 name profile_name 32 MaxTxRate MaxRxRate MinTxRate MinRxRate vdsl_speed 32 104960 Description This command is used to ra...

Page 435: ... profile TX RX SNR margin DAS 3626 admin config vdsl profile name default SnrMarginTx max 20 min 10 target 15 Command config vdsl profile name default SnrMarginTx max 20 min 10 target 15 Success DAS 3626 admin config vdsl profile InterleaveDelayDn InterleaveDelayUp Purpose Used to config vdsl profile Downstream Upstream interleave delay Syntax config vdsl profile profile_id 1 60 name profile_name ...

Page 436: ... Parameters profile_id 1 60 The profile ID of the profile to be configed name profile_name 32 The name of the profile to be configed MinInpDn MinInpUp To config VDSL profile Downstream Upstream minimum INP Impulse Noise Protection vdsl_inp_min 0 32 interleave delay Provisioned in steps of 125usec It mean 1 as 125usec 2 as 250 usec Restrictions Only Administrator level users can issue this command ...

Page 437: ...ig vdsl profile name default PSDMask M1Cab Success DAS 3626 admin config vdsl profile LimitPSDMask Purpose Used to config vdsl profile limit PSD mask Syntax config vdsl profile profile_id 1 60 name profile_name 32 LimitPSDMask nus0 eu32 eu64 Description This command is used to config vdsl profile limit PSD mask Parameters profile_id 1 60 The profile ID of the profile to be configed profile_name 32...

Page 438: ...AS 3626 admin config vdsl profile name default bit swap enable Command config vdsl profile name default bit swap enable Success DAS 3626 admin config vdsl profile RFI Purpose Used to config vdsl profile RFI Syntax config vdsl profile profile_id 1 60 name profile_name 32 RFI G 993 2 disable Description This command is used to config vdsl profile bit swap Parameters profile_id 1 60 The profile ID of...

Page 439: ... to be configed name profile_name 32 The name of the profile to be configed ReducedPSD To config VDSL profile reduce PSD ds1 downstream band 1 us1 upstream band 1 both upstream band 1 and downstream band 1 disable enable enable disable upstream band 1 and downstream band 1 reduce PSD Restrictions Only Administrator level users can issue this command Example usage To config vdsl profile vdsl profil...

Page 440: ...psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value frq frq psd_value psd_value Description This command is used to config vdsl profile Downstream Upstream PSD breakpoint Parameters profile_...

Page 441: ...iged name profile_name 32 The name of the profile to be configed VirtualNoise To config VDSL profile virtual noise level support 7 level US0 US1 DS1 US2 DS2 US3 DS3 to set virtulal noise psd_level 60 140 The range is 60 140 in unit of dBm Hz state enable disable virtual noise on 7 level disable enable enable disable virtual noise on specific level Restrictions Only Administrator level users can is...

Page 442: ...am Upstream SRA state disable enable enable disable Downstream Upstream SRA downshiftSnr int 0 310 Downstream Upstream down shift noise margin The range is 0 310 in unit of 0 1 dB upshiftSnr int 0 310 Downstream Upstream up shift noise margin The range is 0 310 in unit of 0 1 dB downshiftDuration int 0 16383 Downstream Upstream down shift minimum time interval The range is 0 16383 in unit of 1sec ...

Page 443: ...rator level users can issue this command Example usage To config vdsl profile vdsl profile Downstream Upstream robust EOC rate DAS 3626 admin config vdsl profile name default robustEocRateDn rate 1 Command config vdsl profile name default robustEocRateDn rate 1 Success DAS 3626 admin config vdsl profile reset Purpose Used to reset vdsl profile Syntax config vdsl profile profile_id 1 60 name profil...

Page 444: ... vdsl_line1 Command delete vdsl profile name vdsl_line1 Success DAS 3626 admin show vdsl profile Purpose Used to show vdsl profile Syntax show vdsl profile profile_id 1 60 name profile_name 32 all temp run Description This command is used to show vdsl profile Parameters profile_id 1 60 The profile ID of the profile to be show name profile_name 32 The name of the profile to be show temp run tempora...

Page 445: ...ity informational warning all facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number state enable disable config syslog host all index 1 4 severity informational warning all facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr state enable disable delete syslog host index 1 4 all show syslog host index 1 4 con...

Page 446: ...display statistics about the packets sent and received by the Switch Syntax show packet ports portlist Description This command is used to display statistics about packets sent and received by ports specified in the portlist Parameters portlist Specifies a port or range of ports to be displayed 441 ...

Page 447: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show packet ports Restrictions None 442 ...

Page 448: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To display the packets analysis for port 2 443 ...

Page 449: ...Command show packet port 2 Port Number 2 Frame Size Type Frame Counts Frames sec 64 0 0 65 127 0 0 128 255 0 0 256 511 0 0 512 1023 0 0 1024 1518 0 0 Unicast RX 0 0 Multicast RX 0 0 Broadcast RX 0 0 Frame Type Total Total sec RX Bytes 0 0 RX Frames 0 0 TX Bytes 0 0 TX Frames 0 0 DAS 3626 admin 444 ...

Page 450: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual 445 ...

Page 451: ...d to display the error statistics for a range of ports Syntax show error ports portlist Description This command will display all of the packet error statistics collected and logged by the Switch for a given port list Parameters portlist Specifies a port or range of ports to be displayed 446 ...

Page 452: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual show error ports Restrictions None 447 ...

Page 453: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To display the errors of the port 3 448 ...

Page 454: ... portlist Description This command will display the real time port and CPU utilization statistics for the Switch Parameters cpu Entering this parameter will display the current cpu utilization of the Switch ports Entering this parameter will display the current port utilization of the Switch portlist Specifies a port or range of ports to be displayed Restrictions None Example usage To display the ...

Page 455: ...show utilization dram Command show utilization dram DRAM utilization Total DRAM 131072 KB Used DRAM 123879 KB Utilization 94 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show utilization flash Purpose Used to display real time utilization statistics for the flash memory Syntax show utilization flash Description This command will display the real time utilization statistics for the...

Page 456: ...ar counters Purpose Used to clear the Switch s statistics counters Syntax clear counters ports portlist Description This command will clear the counters used by the Switch to compile statistics Parameters portlist Specifies a port or range of ports to be displayed 451 ...

Page 457: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual clear counters Restrictions Only Administrator and Operator level users can issue this command 452 ...

Page 458: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual Example usage To clear the counters 453 ...

Page 459: ...DAS 3600 Series Ethernet over VDSL Switch CLI Reference Manual DAS 3626 admin clear counters ports 2 9 Command clear counters ports 2 9 Success DAS 3626 admin 454 ...

Page 460: ...splay the contents of the Switch s history log Parameters index value_list This parameter specifies the range of log index to show For example show log index 1 5 will display the history log from 1 to 5 If no parameter is specified all history log entries will be displayed Restrictions None Example usage To display the switch history log DAS 3626 admin show log index 1 5 Command show log index 1 5...

Page 461: ...Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To the Syslog function on the Switch DAS 3626 admin enable syslog Command enable syslog Success DAS 3626 admin disable syslog Purpose Used to disable the system log to be sent to a remote host Syntax disable syslog Description This command is used to disable the system log to be sent to a ...

Page 462: ...5 local6 local7 udp_port udp_port_number state enable disable Description This command is used to create a new syslog host Parameters index 1 4 Specifies that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 ipaddress ipaddr Specifies the IP address of the remote host where syslog messages will be sent severity Severity level indicator These ar...

Page 463: ...ocal use 2 messages will be sent to the remote host This corresponds to number 18 from the list above local3 Specifies that local use 3 messages will be sent to the remote host This corresponds to number 19 from the list above local4 Specifies that local use 4 messages will be sent to the remote host This corresponds to number 20 from the list above local5 Specifies that local use 5 messages will ...

Page 464: ...g Bold font indicates that the corresponding severity level is currently supported on the Switch Numerical Severity Code 0 Emergency system is unusable 1 Alert action must be taken immediately 2 Critical critical conditions 3 Error error conditions 4 Warning warning conditions 5 Notice normal but significant condition 6 Informational informational messages 7 Debug debug level messages informationa...

Page 465: ... that local use 2 messages will be sent to the remote host This corresponds to number 18 from the list above local3 Specifies that local use 3 messages will be sent to the remote host This corresponds to number 19 from the list above local4 Specifies that local use 4 messages will be sent to the remote host This corresponds to number 20 from the list above local5 Specifies that local use 5 message...

Page 466: ... Switch Parameters index 1 4 Specifies that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 all Specifies that the command will be applied to all hosts Restrictions Only Administrator and Operator level users can issue this command Example usage To delete a previously configured syslog host DAS 3626 admin delete syslog host 4 Command delete sy...

Page 467: ...is command is used to set the method to save log Parameters time_interval save log to flash every xxx minutes if no log happen in this period don t save on_demand save log to flash whenever user type save log or save all This is also the default log_trigger save log to flash whenever log arrives Restrictions Only Administrator and Operator level users can issue this command Example usage To config...

Page 468: ...from 1 to 5 If no parameter specified all dangerous log entries will be displayed Restrictions None Example usage To show dangerous messages on master DAS 3626 admin show attack_log Command show attack_log Index Time Log Text 2 00000 days 01 25 43 Possible spoofing attack from 000d01002301 port 6 1 00000 days 01 25 43 Possible spoofing attack from 000d01002301 port 6 DAS 3626 admin clear attack_lo...

Page 469: ... deemed as problematic such as enabling or disabling various functions on the Switch Warning Events classified as warning are problematic events that are not critical to the overall function of the Switch but do require attention such as unsuccessful downloads or uploads and failed logins Critical Events classified as critical are fatal exceptions occurring on the Switch such as hardware failures ...

Page 470: ...system_severity level of an alert required for log entry or trap message Syntax show system_severity Description This command is used to display system_severity level of an alert required for log entry or trap message Parameters None Restrictions None Example usage To display the system severity settings for critical traps and log DAS 3626 admin show system_severity Command show system_severity Sy...

Page 471: ...et account reset password username show account Each command is listed in detail in the following sections NOTE All Password revovery commands can be executed in password revovery mode If you wish to enter the Switch into password recovery mode simply press after the system has booted up successfully and loaded the runtime image to 100 Boot Procedure V1 00 B006 Power On Self Test 100 MAC Address 0...

Page 472: ...on reset config Command reset config Are you sure you want to proceed with system reset y n y Success reboot Purpose Used to exit Reset Configuration Mode and restart the switch Syntax reboot force_agree Description This command is used to exit the Reset Configuration Mode and restarts the switch And it pops out a confirmation message to save the current setting Parameters force_agree If this para...

Page 473: ...ailable in password recovery mode Example usage To reset or delete an account reset account Command reset account Success reset password Purpose Used to reset the password for user account Syntax reset password username Description This command is used to reset the password of the specified user to empty If username is not specified password of all users will be reset Parameters None Restrictions ...

Page 474: ...ccount Syntax show account Description This command is used to display all already created accounts Parameters None Restrictions None Example usage To view the created account show account Command show account Current Accounts Username Password Access Level admin Empty Admin user1 Empty user Total Entries 2 469 ...

Page 475: ...ORY LIST The switch history commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters config command_history value 1 40 show command_history Each command is listed in detail in the following sections 470 ...

Page 476: ...g the same words in the command Restrictions None Example usage To display all of the commands in the CLI DAS 3626 admin Command cable_diag ports cfm linktrace cfm loopback clear clear address_binding dhcp_snoop binding_entry ports clear arptable clear attack_log clear cfm pkt_cnt clear counters clear ethernet_oam ports clear fdb clear historical_counters ports clear igmp_snooping data_driven_grou...

Page 477: ...mst_config_id config stp mst_ports config stp ports config stp priority config stp version DAS 3626 admin config command_history Purpose Used to configure the command history Syntax config command_history value 1 40 Description This command is used to configure number of the executed command to be recorded in CLI Parameters value 1 40 The number of previously executed commands maintained in the bu...

Page 478: ...mmand history Syntax show command_history Description This command is used to display currently used command history Parameters None Restrictions None Example usage To display the command history DAS 3626 admin show command_history Command show command_history config command_history 20 config stp DAS 3626 admin 473 ...

Page 479: ... reset the password 1 For security reasons the Password Recovery feature requires the user to physically access the device Therefore this feature is only applicable when there is a direct connection to the console port of the device It is necessary for the user needs to attach a terminal or PC with terminal emulation to the console port of the switch 2 Power on the switch After the runtime image i...

Page 480: ... Recovery Mode and restarts the switch A confirmation message will be displayed to allow the user to save the current settings reset account This command deletes all the previously created accounts reset password username This command resets the password of the specified user If a username is not specified the password of all users will be reset show account This command displays all previously cr...

Reviews:

No comments

Related manuals for DAS-3636

SmartPro DGS-1500-20

Brand: D-Link Pages: 113

xStack DGS-3120 Series

Brand: D-Link Pages: 1150

Brand: Lantronix Pages: 40

Brand: Lantronix Pages: 2

SISTP1040-551-LRT

Brand: Lantronix Pages: 2

Brand: Lantronix Pages: 2

SISPM1040-3 L Series

Brand: Lantronix Pages: 2

SISPM1040 L3 Series

Brand: Lantronix Pages: 36

SecureLinx Spider

Brand: Lantronix Pages: 18

Brand: Lantronix Pages: 8

Brand: Lantronix Pages: 6

SISPM1040-582-LRT

Brand: Lantronix Pages: 272

Xpress-Pro SW 52000

Brand: Lantronix Pages: 8

Brand: Erbe Pages: 118

TM-1-8210 Series

Brand: Eaton Pages: 3

Brand: PRO SIGNAL Pages: 2

Signature ANTENNA GENIUS 8x2 v2 PLUS

Brand: 4O3A Pages: 57

ProSAFE JGS516PE

Brand: NETGEAR Pages: 2

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands