background image

DES-3250TG Layer 2 Fast Ethernet Switch User’s Guide 

185 

4         no_limit                    10 

5         no_limit                    10 

6         no_limit                    10 

7         no_limit                    10 

8         no_limit                    10 

9         no_limit                    10 

10       no_limit                    10 

11       no_limit                    no_limit 

 

local> 

 

 

Summary of Contents for DES-3250TG

Page 1: ...DES 3250TG Layer 2 Switch Command Line Interface Reference Manual ...

Page 2: ...Second Edition October 2003 6ES3250TGC03 Printed In Taiwan RECYCLABLE ...

Page 3: ...beim Anschluß an das Stromnetz die Anschlußwerte 9 Die Netzanschlußsteckdose muß aus Gründen der elektrischen Sicherheit einen Schutzleiterkontakt haben 10 Verlegen Sie die Netzanschlußleitung so daß niemand darüber fallen kann Es sollete auch nichts auf der Leitung abgestellt werden 11 Alle Hinweise und Warnungen die sich am Geräten befinden sind zu beachten 12 Wird das Gerät über einen längeren ...

Page 4: ... nur Orginalersatzteile bzw den Orginalteilen entsprechende Teile verwendet werden Der Einsatz von ungeeigneten Ersatzteilen kann eine weitere Beschädigung hervorrufen 17 Wenden Sie sich mit allen Fragen die Service und Repartur betreffen an Ihren Servicepartner Somit stellen Sie die Betriebssicherheit des Gerätes sicher 18 Zum Netzanschluß dieses Gerätes ist eine geprüfte Leitung zu verwenden Für...

Page 5: ...OND THE RANGE OF THE INTENDED USE OR BY ACCIDENT FIRE LIGHTNING OR OTHER HAZARD LIMITATION OF LIABILITY IN NO EVENT WILL D LINK BE LIABLE FOR ANY DAMAGES INCLUDING LOSS OF DATA LOSS OF PROFITS COST OF COVER OR OTHER INCIDENTAL CONSEQUENTIAL OR INDIRECT DAMAGES ARISING OUT THE INSTALLATION MAINTENANCE USE PERFORMANCE FAILURE OR INTERRUPTION OF A D LINK PRODUCT HOWEVER CAUSED AND ON ANY THEORY OF LI...

Page 6: ...e shipping package to ensure that it will not be damaged in transit and the RMA number must be prominently marked on the outside of the package The package must be mailed or otherwise shipped to D Link with all costs of mailing shipping insurance prepaid D Link shall never be responsible for any software firmware information or memory data of Purchaser contained in stored on or integrated with any...

Page 7: ... software products will work in combination with any hardware or any application or system platform software product provided by any third party excepting only such products as are expressly represented in D Link s applicable product documentation as being compatible D Link s obligation under this warranty shall be a reasonable effort to provide compatibility but D Link shall have no obligation to...

Page 8: ...ink offices is provided in the back of this manual Trademarks Copyright 2003 D Link Corporation Contents subject to change without prior notice D Link is a registered trademark of D Link Corporation D Link Systems Inc All other trademarks belong to their respective proprietors Copyright Statement No part of this publication may be reproduced in any form or by any means or used to make any derivati...

Page 9: ... radiate radio frequency energy and if not installed and used in accordance with this user s guide may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense CE Mark Warning This is a Class A product In a domestic environment t...

Page 10: ......

Page 11: ...Commands 50 Port Security Commands 55 Network Management Commands 60 Download Upload Commands 102 Network Monitoring Commands 107 Spanning Tree Commands 134 Layer 2 Forwarding Database Commands 148 Traffic Control Commands 161 QOS Commands 165 Port Mirroring Commands 186 VLAN Commands 192 Asymmetric VLAN Commands 207 ...

Page 12: ...IP Interface Commands 224 IGMP Snooping Commands 228 802 1X Commands 244 Access Control List ACL Commands 272 Routing Table Commands 288 SNTP Commands 292 Command History List 297 Technical Specifications 304 Switch System Messages 307 ...

Page 13: ...es a reference for all of the commands contained in the CLI Configuration and management of the switch via the Web based management agent is discussed in the User s Guide Accessing the Switch via the Serial Port The switch s serial port s default settings are as follows 9600 baud no parity 8 data bits 1 stop bit A computer running a terminal emulation program capable of emulating a VT 100 terminal...

Page 14: ...ursor local This is the command line where all commands are input Setting the Switch s IP Address Each Switch must be assigned its own IP Address which is used for communication with an SNMP network manager or other TCP IP application for example BOOTP TFTP The switch s default IP address is 10 90 90 90 You can change the default Switch IP address to meet the specification of your networking addre...

Page 15: ...t using BOOTP or DHCP protocols in which case the actual address assigned to the switch must be known The IP address may be set using the Command Line Interface CLI over the console serial port as follows 1 Starting at the command line prompt enter the commands config ipif System ipaddress xxx xxx xxx xxx yyy yyy yyy yyy Where the x s represent the IP address to be assigned to the IP interface nam...

Page 16: ... then be used to connect a management station to the switch s Telnet or Web based management agent Figure 1 3 Assigning the Switch an IP Address In the above example the switch was assigned an IP address of 10 24 22 5 with a subnet mask of 255 0 0 0 The system message Success indicates that the command was executed successfully The switch can now be configured and managed via Telnet and the CLI or...

Page 17: ...se the console interface to access the switch change its settings and monitor its operation Switch configuration settings are saved to non volatile RAM using save command The current configuration will then be retained in the switch s NV RAM and reloaded when the switch is rebooted If the switch is rebooted without using the save command the last configuration saved to NV RAM will be loaded Connec...

Page 18: ...over a Telnet interface Once you have set an IP address for your Switch you can use a Telnet program in VT 100 compatible terminal mode to access and control the Switch All of the screens are identical whether accessed from the console port or from a Telnet interface After the switch reboots and you have logged in the console looks like this Figure 2 1 Initial Console Screen ...

Page 19: ...splay a list of all of the top level commands Figure 2 2 The Command The dir command has the same function as the command When you enter a command without its required parameters the CLI will prompt you with a Next possible completions message Alternatively if you hit the Tab key immediately after you have entered a command the CLI will display all the next available parameters sequentially ...

Page 20: ... parameter username The CLI will then prompt you to enter the username with the message Next possible completions Every command in the CLI has this feature and complex commands have several layers of parameter prompting To re enter the previous command at the command prompt press the up arrow cursor key The previous command will appear at the command prompt ...

Page 21: ...onfig account at the command prompt Now the appropriate User name can be entered and the config account command re executed All commands in the CLI function in this way In addition the syntax of the help prompts are the same as presented in this manual angle brackets indicate a numerical value or character string braces indicate optional parameters or a choice of parameters and brackets indicate r...

Page 22: ...commands like show or config Most of these commands require one or more parameters to narrow the top level command This is equivalent to show what or config what Where the what is the next parameter For example if you enter the show command with no additional parameters the CLI will then display all of the possible next parameters ...

Page 23: ...etions Show Command In the above example all of the possible next parameters for the show command are displayed At the next command prompt the up arrow was used to re enter the show command followed by the account parameter The CLI then displays the user accounts configured on the switch ...

Page 24: ...ses the same syntax angle brackets Purpose Encloses a variable or value that must be specified Syntax configure ipif System ipaddress network_address Description In the above syntax example you must supply the network address in the network_address space Do not type the angle brackets Example Command configure ipif System ipaddress 10 24 22 5 255 0 0 0 square brackets Purpose Encloses a required v...

Page 25: ...l bar Purpose Separates two or more mutually exclusive items in a list one of which must be entered Syntax show snmp community trap receiver Description In the above syntax example you must specify either community trap receiver or detail Do not type the vertical bar Example Command show snmp community braces Purpose Encloses an optional value or set of optional arguments Syntax config serial_port...

Page 26: ...nder the cursor Backspace Deletes the character to the left of the cursor and shifts the remaining characters in the line to the left Left Arrow Moves the cursor to the left Right Arrow Moves the cursor to the right Tab Displays all the next parameters sequentially Multiple Page Display Control Keys Space Displays the next page CTRL c Stops the display of remaining pages when multiple pages are to...

Page 27: ... Fast Ethernet Switch User s Guide 27 multiple pages are to be displayed r Refreshes the pages currently displaying a Displays the remaining pages without pausing between pages Enter Displays the next line or table entry ...

Page 28: ...ong with the appropriate parameters in the following table Command Parameters create account admin user username config account username show account delete account show session show switch show serial_port config serial_port baud_rate 9600 19200 38400 115200 auto_logout never 2_minutes 5_minutes 10_minutes 15_minutes enable clipaging disable clipaging ...

Page 29: ...et Switch User s Guide 29 Command Parameters enable telnet tcp_port_number disable telnet enable web tcp_port_number disable web save reboot reset config system login logout Each command is listed in detail in the following sections ...

Page 30: ...5 characters Up to 8 user accounts can be created Parameters Admin username User username Restrictions Only Administrator level users can issue this command Usernames can be between 1 and 15 characters Passwords can be between 0 and 15 characters Example Usage To create an administrator level user account with the username dlink local create account admin dlink Command create account admin dlink E...

Page 31: ...g the create account command Parameters username Restrictions Only Administrator level users can issue this command Usernames can be between 1 and 15 characters Passwords can be between 0 and 15 characters Example Usage To configure the user password of dlink account local config account dlink Command config account dlink Enter a old password Enter a case sensitive new password Enter the new passw...

Page 32: ...ccount Description Displays all user accounts created on the switch Up to eight user accounts can exist on the switch at one time Parameters none Restrictions none Example Usage To display the accounts which have been created local show account Command show account Current Accounts Username Access Level dlink Admin local ...

Page 33: ...ount username Description The delete account command deletes a user account that has been created using the create account command Parameters username Restrictions Only Administrator level users can issue this command Example Usage To delete the user account System local delete account System Command delete account System Success local ...

Page 34: ...in users Syntax show session Description This command displays a list of all the users that are logged in at the time the command is issued Parameters none Restrictions none Example Usage To display the way that the users logged in local show session ID Live Time From Level Name 8 0 17 16 2 Serial Port 4 Anonymous local ...

Page 35: ...estrictions none Example Usage To display the switch information local show switch Command show switch Device Type DES 3250 Fast Ethernet Switch Ext Ports 1000TX 1000TX MAC Address 00 01 02 03 04 00 IP Address 10 90 90 90 Manual VLAN Name default Subnet Mask 255 0 0 0 Default Gateway 0 0 0 0 Boot PROM Version Build 1 00 002 Firmware Version Build 2 00 017 Hardware Version 0A1 System Up Time 0 days...

Page 36: ...rnet Switch User s Guide 36 Time Source System Clock System Name System Location System Contact Spanning Tree Disabled GVRP Disabled IGMP Snooping Disabled TELNET Enabled TCP 23 SNTP Disabled WEB Enabled TCP 80 RMON Disabled local ...

Page 37: ...port settings Syntax show serial_port Description This command displays the current serial port settings Parameters none Restrictions none Example Usage To display the serial port setting local show serial_port Command show serial_port Baud Rate 9600 Data Bits 8 Parity Bits None Stop Bits 1 Auto Logout 10 mins local ...

Page 38: ...er No time limit on the length of time the console can be open with no user input 2_minutes The console will log out the current user if there is no user input for 2 minutes 5_minutes The console will log out the current user if there is no user input for 5 minutes 10_minutes The console will log out the current user if there is no user input for 10 minutes 15_minutes The console will log out the ...

Page 39: ...ssuing the show command will cause the console screen to rapidly scroll through several pages This command will cause the console to pause at the end of each page The default setting is enabled Parameters none Restrictions Only administrator level users can issue this command Example Usage To enable pausing of the screen display when show command output reaches the end of the page local enable cli...

Page 40: ...disable clipaging Description This command is used to disable the pausing of the console screen at the end of each page when the show command would display more than one screen of information Parameters none Restrictions Only administrator level users can issue this command Example Usage To disable pausing of the screen display when show command output reaches the end of the page local disable cli...

Page 41: ...lnet protocol on the switch The user can specify the TCP or UDP port number the switch will use to listen for Telnet requests Parameters tcp_port_number The TCP port number TCP ports are numbered between 1 and 65535 The well known TCP port for the Telnet protocol is 23 Restrictions Only administrator level users can issue this command Example Usage To enable Telnet and configure port number local ...

Page 42: ...l on the switch Syntax disable telnet Description This command is used to disable the Telnet protocol on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To disable the Telnet protocol on the switch local disable telnet Command disable telnet Success local ...

Page 43: ...oftware on the switch The user can specify the TCP port number the switch will use to listen for Telnet requests Parameters tcp_port_number The TCP port number TCP ports are numbered between 1 and 65535 The well known port for the Web based management software is 80 Restrictions Only administrator level users can issue this command Example Usage To enable HTTP and configure port number local enabl...

Page 44: ...ased management software on the switch Syntax disable web Description This command disables the Web based management software on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To disable HTTP local disable web Command disable web Success local ...

Page 45: ...ter the current switch configuration into non volatile RAM The saved switch configuration will be loaded into the switch s memory each time the switch is restarted Parameters none Restrictions Only administrator level users can issue this command Example Usage To save the switch s current configuration to non volatile RAM local save Command save Saving all settings to NV RAM 100 done local ...

Page 46: ...o restart the switch Syntax reboot Description This command is used to restart the switch Parameters none Restrictions none Example Usage To restart the switch local reboot Command reboot Are you sure want to proceed with the system reboot y n Please wait the switch is rebooting ...

Page 47: ...estored on the switch except for the IP address user accounts and the switch history log system If system is specified all of the factory default settings are restored on the switch If no parameter specified the switch s current IP address user accounts and switch history log are retained All other parameters are restored to their factory default settings Restrictions Only administrator level user...

Page 48: ... in a user to the switch s console Syntax login Description This command is used to initiate the login procedure The user will be prompted for his Username and Password Parameters none Restrictions none Example Usage To initiate the login procedure local login Command login UserName ...

Page 49: ...urpose Used to log out a user from the switch s console Syntax logout Description This command terminates the current user s session on the switch s console Parameters none Restrictions none Example Usage To terminate the current user s console session local logout ...

Page 50: ...nterface CLI are listed along with the appropriate parameters in the following table Command Parameters config ports portlist all speed auto 10_half 10_full 100_half 100_full 1000_half 1000_full learning enabled disabled state enabled disabled show ports portlist all Each command is listed in detail in the following sections ...

Page 51: ...t is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order auto Enables auto negotiation for the specified range of ports 10 100 1000 Configures the speed in Mbps for ...

Page 52: ...de 52 Example Usage To configure the speed of port 3 to be 10 Mbps full duplex learning and state enabled local config ports 1 3 speed 10_full learning enabled state enabled Command config ports 1 3 speed 10_full learning enabled state enabled Success ...

Page 53: ...ort list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order Restrictions none Example Usage To display the configuration of the ports 1 7 local show ports 1 7 Co...

Page 54: ...G Layer 2 Fast Ethernet Switch User s Guide 54 3 Enabled Auto Link Down Enabled 4 Enabled Auto Link Down Enabled 5 Enabled Auto Link Down Enabled 6 Enabled Auto Link Down Enabled 7 Enabled Auto Link Down Enabled ...

Page 55: ...face CLI are listed along with the appropriate parameters in the following table Command Parameters config port_security ports portlist all admin_state enable disable max_learning_addr max_lock_no 0 10 lock_address_mode DeleteOnTimeout DeleteOnReset show port_security ports portlist Each command is listed in detail in the following sections ...

Page 56: ...er of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order all configure port security for all ports on the switch admin_state enabled disaled enable or disable port security for the listed ports max_learning_addr 1 10 use this to limit the num...

Page 57: ...ge To configure the port security local config port_security ports 5 6 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnTimeout Command config port_security ports 5 6 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnTimeout Success local ...

Page 58: ...cifies a range of ports to be configured The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order Restrictions none Example usage To display the port sec...

Page 59: ...Disabled 1 DeleteOnReset 10 Disabled 1 DeleteOnReset 11 Disabled 1 DeleteOnReset 12 Disabled 1 DeleteOnReset 13 Disabled 1 DeleteOnReset 14 Disabled 1 DeleteOnReset 15 Disabled 1 DeleteOnReset 16 Disabled 1 DeleteOnReset 17 Disabled 1 DeleteOnReset 18 Disabled 1 DeleteOnReset 19 Disabled 1 DeleteOnReset 20 Disabled 1 DeleteOnReset CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh ...

Page 60: ...monitor and control the switch The three versions of SNMP vary in the level of security provided between the management station and the network device The following table lists the security features of the three SNMP versions SNMP Version Authentication Method Description v1 Community String Community String is used for authentication NoAuthNoPriv v2c Community String Community String is used for ...

Page 61: ...encryption is added based on the CBC DES DES 56 standard Command Parameters enable rmon disable rmon config snmp system_contact sw_contact config snmp system_location sw_location config snmp system_name sw_name enable snmp traps disable snmp traps enable snmp authenticate traps disable snmp authenticate traps create trusted_host ipaddr show trusted_host ipaddr ...

Page 62: ...d 8 16 by_key 2 auth md5 2 auth_key 32 32 sha 3 auth_key 40 40 priv none 1 des 2 priv_key 32 32 delete snmp user username 32 show snmp user show snmp groups create snmp view view_name 32 oid view_type included excluded delete snmp view view_name 32 all oid show snmp view view_name 32 create snmp community community_string 32 view view_name 32 read_only read_write delete snmp community community_st...

Page 63: ...oauth_nopriv auth_nopriv auth_priv read_vie w view_name 32 write_view view_name 32 notify_view view_name 32 delete snmp group groupname 32 create snmp host ipaddr v1 v2c v3 noauth_nopriv auth_nopriv auth_priv auth_string 32 delete snmp host ipaddr show snmp host ipaddr Each command is listed in detail in the following sections ...

Page 64: ...This command is used to give the switch an alpha numeric name of up to 255 characters Parameters sw_name An alpha numeric name for the switch of up to 255 characters Restrictions Only administrator level users can issue this command Example Usage To configure the switch name for DES 3250 local config snmp system_name DES3250 Command config snmp system_name DES3250 Success local ...

Page 65: ...used to enter a description of the location of the switch A maximum of 255 characters can be used Parameters sw_location A description of the location of the switch A maximum of 255 characters can be used Restrictions Only administrator level users can issue this command Example Usage To configure the switch location for Taiwan local config snmp system_location Taiwan Command config snmp system_lo...

Page 66: ... and or other information to identify a contact person who is responsible for the switch A maximum of 255 characters can be used Parameters sw_contact A maximum of 255 characters used to identify a contact person who is responsible for the switch Restrictions Only administrator level users can issue this command Example Usage To configure the switch contact to ctsnow local config snmp system_conta...

Page 67: ...enable rmon Description This command is used in conjunction with the disable RMON command below to enable and disable remote monitoring RMON on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To enable RMON local enable rmon Command enable rmon Success local ...

Page 68: ...disable rmon Description This command is used in conjunction with the enable rmon command above to enable and disable remote monitoring RMON on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To disable RMON local disable rmon Command disable rmon Success local ...

Page 69: ...and is used to create trusted hosts A trusted host is a recipient of SNMP Web and Telnet messages generated by the switch s SNMP agent Parameters ipaddr The IP address of the trusted host Restrictions Only administrator level users can issue this command Example Usage To create a trusted host local create trusted_host Command create trusted_host 10 1 1 1 Success local ...

Page 70: ...st command above Syntax show trusted_host Description This command is used to display a list of trusted hosts entered on the switch using the create trusted_host command above Parameters none Restrictions none Example Usage To display the list of trusted hosts local show trusted_host Command show trusted_host Management Stations IP Address 10 1 1 1 Total Entries 1 local ...

Page 71: ...ddr Description This command is used to delete a trusted host entry made using the create trusted_host command above Parameters ipaddr The IP address of the trusted host Restrictions Only administrator level users can issue this command Example Usage To delete a trusted host with an IP address 10 48 74 121 local delete trusted_host 10 48 74 121 Command delete trusted_host 10 48 74 121 Success loca...

Page 72: ... trap support Syntax enable snmp traps Description This command is used to enable SNMP trap support on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To turn on SNMP trap support local enable snmp traps Command enable snmp traps Success local ...

Page 73: ... switch Syntax enable snmp traps Description This command is used to disable SNMP trap support on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To prevent SNMP traps from being sent from the switch local disable snmp traps Command disable snmp traps Success local ...

Page 74: ...enable snmp authenticate traps Description This command is used to enable SNMP authentication trap support on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To turn on SNMP authentication trap support local enable snmp authenticate traps Command enable snmp authenticate traps Success local ...

Page 75: ... disable snmp authenticate traps Description This command is used to disable SNMP authentication support on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To turn off SNMP authentication trap support local disable snmp authenticate traps Command disable snmp authenticate traps Success local ...

Page 76: ...ctivity between the switch and the remote device Parameters ipaddr The IP address of the remote device times value The number of individual ICMP echo messages to be sent A value of 0 will send an infinite ICMP echo messages The maximum value is 255 The default is 0 timeout sec Defines the time out period while waiting for a response from the remote device A value of 1 to 99 seconds can be specifie...

Page 77: ...l ping 10 48 74 121 times 4 Command ping 10 48 74 121 Reply from 10 48 74 121 time 10ms Reply from 10 48 74 121 time 10ms Reply from 10 48 74 121 time 10ms Reply from 10 48 74 121 time 10ms Ping Statistics for 10 48 74 121 Packets Sent 4 Received 4 Lost 0 local ...

Page 78: ...nmp user command creates a new SNMP user and adds the user to an SNMP group that is also created by this command Parameters username 32 An alphanumeric name of up to 32 characters that will identify the new SNMP user groupname 32 An alphanumeric name of up to 32 characters that will identify the SNMP group the new SNMP user will be associated with encrypted Specifies that the password will be in a...

Page 79: ...acters that will be used to encrypt the contents of messages the host sends to the agent auth_key An authentication key used by MD5 or SHA1 it is hex string type priv_key A privacy key used by DES it is hex string type Restrictions Only administrator level users can issue this command Example Usage To create an SNMP user on the switch local create snmp user dlink default encrypted by_password auth...

Page 80: ...nmp user command removes an SNMP user from its SNMP group and then deletes the associated SNMP group Parameters username 32 An alphanumeric string of up to 32 characters that identifies the SNMP user that will be deleted Restrictions Only administrator level users can issue this command Example Usage To delete a previously entered SNMP user on the switch local delete snmp user dlink Command delete...

Page 81: ...ion The show snmp user command displays information about each SNMP username in the SNMP group username table Parameters None Restrictions Only administrator level users can issue this command Example Usage To display the SNMP users currently configured on the switch local show snmp user Command show snmp user Username Group Name Ver Auth Priv initial initial V3 None None Total Entries 1 local ...

Page 82: ...ommand displays the group names of SNMP groups currently configured on the switch The security model level and status of each group are also displayed Parameters None Restrictions None Example Usage To display the currently configured SNMP groups on the switch local show snmp groups Command show snmp groups Vacm Access Table Settings Group Name initial ReadView Name restricted WriteView Name Notif...

Page 83: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 83 ReadView Name CommunityView WriteView Name Notify View Name CommunityView Securiy Model SNMPv1 Securiy Level NoAuthNoPriv Total Entries 2 local ...

Page 84: ... string of up to 32 characters that identifies the SNMP view that will be created oid The object ID that identifies an object tree MIB tree that will be included or excluded from access by an SNMP manager included Include this object in the list of objects that an SNMP manager can access excluded Exclude this object from the list of objects that an SNMP manager can access Restrictions Only adminis...

Page 85: ...arameters view_name 32 An alphanumeric string of up to 32 characters that identifies the SNMP view to be deleted all Specifies that all of the SNMP views on the switch will be deleted oid The object ID that identifies an object tree MIB tree that will be deleted from the switch Restrictions Only administrator level users can issue this command Example Usage To delete a previously configured SNMP v...

Page 86: ...ters view_name 32 An alphanumeric string of up to 32 characters that identifies the SNMP view that will be displayed Restrictions None Example Usage To show SNMP view local show snmp view Command show snmp view Vacm View Table Settings View Name Subtree View Type ReadView 1 Included WriteView 1 Included NotifyView 1 3 6 Included restricted 1 3 6 1 2 1 1 Included restricted 1 3 6 1 2 1 11 Included ...

Page 87: ...250TG Layer 2 Fast Ethernet Switch User s Guide 87 restricted 1 3 6 1 6 3 15 1 1 Included CommunityView 1 Included CommunityView 1 3 6 1 6 3 Excluded CommunityView 3 6 1 6 3 1 Included Total Entries 11 local ...

Page 88: ... of all MIB objects that will be accessible to the SNMP community Read write or read only level permission for the MIB objects accessible to the SNMP community Syntax create snmp community community_string 32 view view_name 32 read_only read_write Description The create snmp community command is used to create an SNMP community string and to assign access limiting characteristics to this community...

Page 89: ...y read the contents of the MIBs on the switch read_write Specifies that SNMP community members using the community string created with this command can read from and write to the contents of the MIBs on the switch Restrictions Only administrator level users can issue this command Example Usage To create the SNMP community string dlink local create snmp community dlink view ReadView read_write Comm...

Page 90: ...MP community string from the switch Parameters community_string 32 An alphanumeric string of up to 32 characters that is used to identify members of an SNMP community This string is used like a password to give remote SNMP managers access to MIB objects in the switch s SNMP agent Restrictions Only administrator level users can issue this command Example Usage To delete the SNMP community string dl...

Page 91: ..._string 32 An alphanumeric string of up to 32 characters that is used to identify members of an SNMP community This string is used like a password to give remote SNMP managers access to MIB objects in the switch s SNMP agent Restrictions None Example Usage To display the currently entered SNMP community strings local show snmp community Command show snmp community SNMP Community Table Community Na...

Page 92: ...fig snmp engineID command configures a name for the SNMP engine on the switch Parameters snmp_engineID An alphanumeric string that will be used to identify the SNMP engine on the switch Restrictions Only administrator level users can issue this command Example Usage To give the SNMP agent on the switch the name 0035636666 local config snmp 0035636666 Command config snmp engineID 0035636666 Success...

Page 93: ... on the switch Syntax show snmp engineID Description The show snmp engineID command displays the identification of the SNMP engine on the switch Parameters None Restrictions None Example Usage To display the current name of the SNMP engine on the switch local show snmp engineID Command show snmp engineID SNMP Engine ID 0035636666 local ...

Page 94: ... the SNMP group the new SNMP user will be associated with v1 Specifies that SNMP version 1 will be used The Simple Network Management Protocol SNMP version 1 is a network management protocol that provides a means to monitor and control network devices v2c Specifies that SNMP version 2c will be used The SNMP v2c supports both centralized and distributed network management strategies It includes imp...

Page 95: ...but there will be no encryption of packets sent between the switch and a remote SNMP manager auth_priv Specifies that authorization will be required and that packets sent between the swtich and a remote SNMP manger will be encrypted read_view Specifies that the SNMP group being created can request SNMP messages view_name 32 An alphanumeric string of up to 32 characters that is used to identify the...

Page 96: ... Guide 96 Example Usage To create an SNMP group named sg1 local create snmp group sg1 v3 noauth_nopriv read_view v1 write_view v1 notify_view v1 Command create snmp group sg1 v3 noauth_nopriv read_view v1 write_view v1 notify_view v1 Success local ...

Page 97: ... group command is used to remove an SNMP group from the switch Parameters groupname 32 An alphanumeric name of up to 32 characters that will identify the SNMP group the new SNMP user will be associated with Restrictions Only administrator level users can issue this command Example Usage To delete the SNMP group named sg1 local delete snmp group sg1 Command delete snmp group sg1 Success local ...

Page 98: ...sed The Simple Network Management Protocol SNMP version 1 is a network management protocol that provides a means to monitor and control network devices v2c Specifies that SNMP version 2c will be used The SNMP v2c supports both centralized and distributed network management strategies It includes improvements in the Structure of Management Information SMI and adds some security features v3 Specifie...

Page 99: ...e no encryption of packets sent between the switch and a remote SNMP manager auth_priv Specifies that authorization will be required and that packets sent between the swtich and a remote SNMP manger will be encrypted auth_sting 32 An alphanumeric string used to authorize a remote SNMP manager to access the switch s SNMP agent Restrictions Only administrator level users can issue this command Examp...

Page 100: ...te snmp host command deletes a recipient of SNMP traps generated by the switch s SNMP agent Parameters ipaddr The IP address of a remote SNMP manager that will receive SNMP traps generated by the switch s SNMP agent Restrictions Only administrator level users can issue this command Example Usage To delete an SNMP host entry local delete snmp host 10 48 74 100 Command delete snmp host 10 48 74 100 ...

Page 101: ...managers that are designated as recipients of SNMP traps that are generated by the switch s SNMP agent Parameters ipaddr The IP address of a remote SNMP manager that will receive SNMP traps generated by the switch s SNMP agent Restrictions None Example Usage To display the currently configured SNMP hosts on the switch local show snmp host Command show snmp host SNMP Host Table Host IP Address SNMP...

Page 102: ...he Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters download firmware ipaddr path_filename 64 configuration ipaddr path_filename 64 increment upload configuration log ipaddr path_filename 64 Each command is listed in detail in the following sections ...

Page 103: ...switch from a TFTP server configuration Download a switch configuration file from a TFTP server ipaddr The IP address of the TFTP server path_filename 64 The DOS path and filename of the firmware or switch configuration file on the TFTP server For example C 3250 had increment Allows the download of a partial switch configuration file This allows a file to be downloaded that will change only the sw...

Page 104: ...thernet Switch User s Guide 104 Example Usage local download configuration 10 48 74 121 c cfg setting txt Command download configuration 10 48 74 121 c cfg setting txt Connecting to server Done Download configuration Done local ...

Page 105: ...nfiguration Specifies that the switch s current settings will be uploaded to the TFTP server log Specifies that the switch history log will be uploaded to the TFTP server ipaddr The IP address of the TFTP server The TFTP server must be on the same IP subnet as the switch path_filename 64 Specifies the location of the switch configuration file on the TFTP server This file will be replaced by the up...

Page 106: ... Fast Ethernet Switch User s Guide 106 Example Usage local upload configuration 10 48 74 121 c cfg log txt Command upload configuration 10 48 74 121 c cfg log txt Connecting to server Done Upload configuration Done local ...

Page 107: ...Interface CLI are listed along with the appropriate parameters in the following table Command Parameters show packet ports portlist show error ports portlist show utilitzation clear counters ports portlist clear log show log index value enable syslog disable syslog show syslog create syslog host all index 1 4 severity informational warning ...

Page 108: ...rameters all facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr state enabled disabled config syslog host all index 1 4 severity informational warning all facility local0 local1 local2 local3 local4 local5 local6 ...

Page 109: ... Switch User s Guide 109 Command Parameters local7 udp_port udp_port_number ipaddress ipaddr state enabled disabled delete syslog host index 1 4 all show syslog host index 1 4 Each command is listed in detail in the following sections ...

Page 110: ...bout packets sent and received by ports specified in the port list Parameters portlist Specifies a range of ports to be configured The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between po...

Page 111: ...ow packet ports 1 7 Port number 1 7 Frame Size Frame Counts Frames sec Frame Type Total Total sec 64 3275 10 RX Bytes 408973 1657 65 127 755 10 RX Frames 4395 19 128 255 316 1 256 511 145 0 TX Bytes 7918 178 512 1023 15 0 TX Frames 111 2 1024 1518 0 0 Unicast RX 152 1 Multicast RX 557 2 Broadcast RX 3686 16 Broadcast RX 4495 42 local ...

Page 112: ...cs collected and logged by the swtich for a given port list Parameters portlist Specifies a range of ports to be configured The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 an...

Page 113: ... To display the errors of the port 3 of module 1 local show error ports 1 3 RX Frames TX Frames CRC Error 0 Excessive Deferral 0 Undersize 0 CRC Error 0 Oversize 0 Late Collision 0 Fragment 0 Excessive Collision 0 Jabber 0 Single Collision 0 Drop Pkts 0 Collision 0 local ...

Page 114: ...zation statistics for the switch Parameters none Restrictions none Example usage To display the port utilization statistics local show utilization Port TX sec RX sec Util Port TX sec RX sec Util 1 1 0 0 0 1 22 0 0 0 1 2 0 0 0 1 23 0 0 0 1 3 0 0 0 1 24 0 0 0 1 4 0 0 0 1 25 0 0 0 1 5 0 0 0 1 26 19 49 1 1 6 0 0 0 2 1 0 0 0 1 7 0 0 0 2 2 0 0 0 1 8 0 0 0 2 3 0 0 0 1 9 0 0 0 2 4 0 0 0 1 10 0 0 0 2 5 0 0...

Page 115: ...User s Guide 115 1 12 0 0 0 2 7 0 30 1 1 13 0 0 0 2 8 0 0 0 1 14 0 0 0 2 9 30 0 1 1 15 0 0 0 2 10 0 0 0 1 16 0 0 0 2 11 0 0 0 1 17 0 0 0 2 12 0 0 0 1 18 0 0 0 2 13 0 0 0 1 19 0 0 0 2 14 0 0 0 1 20 0 0 0 2 15 0 0 0 1 21 0 0 0 2 16 0 0 0 local ...

Page 116: ...be configured The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order Restrictions Only administrator level users can issue this command Example usage T...

Page 117: ... clear the switch s history log Syntax clear log Description This command will clear the switch s history log Parameters none Restrictions Only administrator level users can issue this command Example usage To clear the log information local clear log Command clear log Success local ...

Page 118: ...log command will display the history log until the log number reaches this value Restrictions None Example usage To display the switch history log local show log Index Time Log Text 4 000d00h50m Unit 1 Successful login through Console Username Anonymous 3 000d00h50m Unit 1 Logout through Console Username Anonymous 2 000d00h49m Unit 1 Successful login through Console Username Anonymous 000d00h49m U...

Page 119: ...nt to a remote host Syntax enable syslog Description The enable syslog command enables the system log to be sent to a remote host Parameters None Restrictions Only administrator level users can issue this command Example usage To the syslog function on the switch local enable syslog Command enable syslog Success local ...

Page 120: ...a remote host Syntax disable syslog Description The disable syslog command enables the system log to be sent to a remote host Parameters None Restrictions Only administrator level users can issue this command Example usage To disable the syslog function on the swtich local disable syslog Command disable syslog Success local ...

Page 121: ...col status as enabled or disabled Syntax show syslog Description The show syslog command displays the syslog status as enabled or disabled Parameters None Restrictions None Example usage To display the current status of the syslog function local show syslog Command show syslog Syslog Global State Enabled local ...

Page 122: ...ll Specifies that the command will be applied to all hosts index 1 4 Specifies that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 severity Severity level indicator These are described in the following Bold font indicates that the corresponding severity level is currently supported on the switch Numerical Severity Code 0 Emergency system is u...

Page 123: ... by the switch will be sent to the remote host facility Some of the operating system daemons and processes have been assigned Facility values Processes and daemons that have not been explicitly assigned a Facility may use any of the local use facilities or they may use the user level Facility Those Facilities that have been designated are shown in the following Bold font means the facility values ...

Page 124: ...l5 22 local use 6 local6 23 local use 7 local7 local0 Specifies that local use 0 messages will be sent to the remote host This corresponds to number 16 from the list above local1 Specifies that local use 1 messages will be sent to the remote host This corresponds to number 17 from the list above local2 Specifies that local use 2 messages will be sent to the remote host This corresponds to number 1...

Page 125: ...ote host This corresponds to number 22 from the list above local7 Specifies that local use 7 messages will be sent to the remote host This corresponds to number 23 from the list above udp_port udp_port_number Specifies the UDP port number that the syslog protocol will use to send messages to the remote host ipaddress ipaddr Specifies the IP address of the remote host where syslog messages will be ...

Page 126: ...G Layer 2 Fast Ethernet Switch User s Guide 126 Example usage To create syslog host local create syslog host 1 severity all facility local0 Command create syslog host 1 severity all facility local0 Success local ...

Page 127: ...configure the syslog protocol to send system log information to a remote host Parameters all Specifies that the command will be applied to all hosts index 1 4 Specifies that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 severity Severity level indicator These are described in the following Bold font indicates that the corresponding severity ...

Page 128: ... all of the currently supported syslog messages that are generated by the switch will be sent to the remote host facility Some of the operating system daemons and processes have been assigned Facility values Processes and daemons that have not been explicitly assigned a Facility may use any of the local use facilities or they may use the user level Facility Those Facilities that have been designat...

Page 129: ... 19 local use 3 local3 20 local use 4 local4 21 local use 5 local5 22 local use 6 local6 23 local use 7 local7 local0 Specifies that local use 0 messages will be sent to the remote host This corresponds to number 16 from the list above local1 Specifies that local use 1 messages will be sent to the remote host This corresponds to number 17 from the list above local2 Specifies that local use 2 messa...

Page 130: ...use 6 messages will be sent to the remote host This corresponds to number 22 from the list above local7 Specifies that local use 7 messages will be sent to the remote host This corresponds to number 23 from the list above udp_port udp_port_number Specifies the UDP port number that the syslog protocol will use to send messages to the remote host ipaddress ipaddr Specifies the IP address of the remo...

Page 131: ...er 2 Fast Ethernet Switch User s Guide 131 Example usage To configure a syslog host local config syslog host all severity all facility local0 Command config syslog host all severity all facility local0 Success local ...

Page 132: ...ve a syslog host that has been previously configured from the switch Parameters index 1 4 Specifies that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 all Specifies that the command will be applied to all hosts Restrictions Only administrator level users can issue this command Example usage To delete a previously configured syslog host local...

Page 133: ...gured on the switch Parameters index 1 4 Specifies that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 Restrictions None Example usage To show Syslog host information local show syslog host Command show syslog host Syslog Global State Disabled Host Id Host IP Address Severiry Facility UDP port Status 1 10 1 1 2 All Local0 514 Disabled 2 10 40...

Page 134: ...re listed along with the appropriate parameters in the following table Command Parameters config stp maxage value 6 40 hellotime value 1 10 forwarddelay value 4 30 priority value 0 61440 fbpdu enabled disabled version rstp stp txholdcount value 1 10 config stp ports portlist cost auto value 1 200000000 priority value 0 240 migrate yes no edge true false p2p true false auto state enabled disabled ...

Page 135: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 135 Command Parameters enable stp disable stp show stp show stp ports portlist Each command is listed in detail in the following sections ...

Page 136: ...20 seconds hellotime value 1 10 The time interval between transmission of configuration messages by the root device The default is 2 seconds forwarddelay value 4 30 The maximum amount of time in seconds that the root device will wait before changing states The default is 15 seconds priority value 0 61440 A numerical value between 0 and 61440 that is used in determining the root device root port an...

Page 137: ...elect the Spanning Tree Protocol version used for the switch For IEEE 802 1d STP select stp Select rstp for IEEE 802 1w Rapid STP Restrictions Only administrator level users can issue this command Example Usage To configure STP with maxage 18 and hellotime 4 local config stp maxage 18 hellotime 4 Command config stp maxage 18 hellotime 4 Success local ...

Page 138: ...e port will be chosen to forward packets Default port cost 100Mbps port 200000 Gigabit port 20000 priority value 0 240 Port Priority can be from 0 to 240 The lower the number the greater the probability the port will be chosen as the Root Port Default 128 portlist Specifies a range of ports to be configured The port list is specified by listing the lowest switch number and the beginning port numbe...

Page 139: ...er an edge port can lose edge port status if a topology change creates a potential for a loop An edge port normally should not receive BPDU packets If a BPDU packet is received it automatically loses edge port status False indicates the port does not have edge port status p2p true false auto true indicates a point to point p2p shared link These are similar to edge ports however they are restricted...

Page 140: ...r s Guide 140 Example Usage To configure STP with path cost 19 priority 15 and state enabled for ports 1 5 local config stp_ports 1 5 cost 19 priority 15 state enabled Command config stp_ports 1 5 cost 19 priority 15 state enabled Success local ...

Page 141: ...the switch Syntax enable stp Description This command allows the Spanning Tree Protocol to be globally enabled on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To enable STP globally on the switch local enable stp Command enable stp Success local ...

Page 142: ...on the switch Syntax disable stp Description This command allows the Spanning Tree Protocol to be globally disabled on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To disable STP on the switch local disable stp Command disable stp Success local ...

Page 143: ...and displays the switch s current STP configuration Parameters none Restrictions none Example Usage To display the status of STP on the switch Status 1 STP Enabled local show stp Command show stp STP Status Enabled Max Age 20 Hello Time 2 Forward Delay 15 Priority 32768 STP Version RSTP TX Hold Count 3 Forwarding BPDU Enabled Designated Root Bridge 00 80 00 00 01 02 ...

Page 144: ... Topology Change 77sec Topology Changes Count 198 Protocol Specification 3 Max Age 20 Hello Time 2 Forward Delay 15 Hold Time 3 Status 2 STP Disabled local show stp Command show stp STP Status Disabled Max Age 20 Hello Time 2 Forward Delay 15 Priority 32768 STP Version RSTP TX Hold Count 3 Forwarding BPDU Enabled ...

Page 145: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 145 local ...

Page 146: ...tch separated by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies switch number 2 port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order Restrictions None Example Usage To display the STP s...

Page 147: ...abled 4 N A Yes 200000 128 No Yes Disabled Disabled 5 N A Yes 200000 128 No Yes Disabled Disabled 6 N A Yes 200000 128 No Yes Disabled Disabled 7 8000 000102030400 Yes 200000 128 No Yes Forwarding Root 8 N A Yes 200000 128 No Yes Disabled Disabled 9 N A Yes 200000 128 No Yes Disabled Disabled local ...

Page 148: ...nd Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters create fdb vlan_name 32 macaddr port port create multicast_fdb vlan_name 32 macaddr config multicast_fdb vlan_name 32 macaddr add delete portlist delete fdb vlan_name 32 macaddr add delete portlist clear fdb vlan vlan_name 32 port port all ...

Page 149: ...e 149 Command Parameters show multicast_fdb vlan vlan_name 32 mac_address macaddr config fdb aging_time sec 10 1000000 show fdb port port vlan vlan_name 32 mac_address macaddr static aging_time Each command is listed in detail in the following sections ...

Page 150: ...ers vlan_name 32 The name of the VLAN on which the MAC address resides macaddr The MAC address that will be added to the forwarding table port The port number corresponding to the MAC destination address The switch will always forward traffic to the specified device through this port Restrictions Only administrator level users can issue this command Example Usage To create an unicast MAC forwardin...

Page 151: ...ke an entry into the switch s multicast MAC address forwarding database Parameters vlan_name 32 The name of the VLAN on which the MAC address resides macaddr The MAC address that will be added to the forwarding table Restrictions Only administrator level users can issue this command Example Usage To create multicast MAC forwarding local create multicast_fdb default 01 00 5E 00 00 00 Command create...

Page 152: ... remove the MAC address from the forwarding table egress forbidden Egress specifies the port as being a source of multicast packets originating from the MAC address specified above forbidden specifies the port as not being a member of the VLAN and that the port is forbidden from becoming a member of the VLAN dynamically portlist Specifies a range of ports to be configured The port list is specifie...

Page 153: ...Fast Ethernet Switch User s Guide 153 Example Usage To add multicast MAC forwarding local config multicast_fdb default 01 00 5E 00 00 00 add 1 5 Command config multicast_fdb default 01 00 5E 00 00 00 add 1 5 Success local ...

Page 154: ...previous entry to the switch s MAC address forwarding database Parameters vlan_name 32 The name of the VLAN on which the MAC address resides macaddr The MAC address that will be added to the forwarding table Restrictions Only administrator level users can issue this command Example Usage To delete a permanent FDB entry local delete fdb default 00 00 00 00 01 02 Command delete fdb default 00 00 00 ...

Page 155: ...switch s forwarding database Parameters vlan_name 32 The name of the VLAN on which the MAC address resides port The port number corresponding to the MAC destination address The switch will always forward traffic to the specified device through this port all Clears all dynamic entries to the switch s forwarding database Restrictions Only administrator level users can issue this command Example Usag...

Page 156: ...o display the current contents of the switch s multicast MAC address forwarding database Parameters vlan_name 32 The name of the VLAN on which the MAC address resides macaddr The MAC address that will be added to the forwarding table Restrictions none Example Usage To display multicast MAC address table local show multicast_fdb Command show multicast_fdb VLAN Name default MAC Address 01 00 5E 00 0...

Page 157: ...0 000 seconds with a default value of 300 seconds A very long aging time can result in dynamic forwarding table entries that are out of date or no longer exist This may cause incorrect packet forwarding decisions by the switch If the aging time is too short however many entries may be aged out too soon This will result in a high percentage of received packets whose source addresses cannot be found...

Page 158: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 158 Example Usage To set the fdb aging time local config fdb aging_time 25 Command config fdb aging_time 25 Success local ...

Page 159: ...contents of the switch s forwarding database Parameters port The port number corresponding to the MAC destination address The switch will always forward traffic to the specified device through this port vlan_name 32 The name of the VLAN on which the MAC address resides macaddr The MAC address that will be added to the forwarding table static Displays the static MAC address entries aging_time Displ...

Page 160: ... display unicast MAC address table local show fdb Command show fdb Unicast MAC Address Ageing Time 300 VID VLAN Name MAC Address Port Type 1 default 00 00 00 00 01 01 7 Dynamic 1 default 00 00 00 00 01 02 7 Dynamic 1 default 00 50 BA 6B 2A 29 7 Dynamic Total Entries 3 local ...

Page 161: ...I are listed along with the appropriate parameters in the following table Command Parameters config traffic control storm_grouplist 1 8 all broadcast enabled disabled multicast enabled disabled dlf enabled disabled threshold value 0 255 show traffic control group_list storm_grouplist 1 8 Each command is listed in detail in the following sections ...

Page 162: ...m control group with the syntax module_id group_id all Specifies all broadcast storm control groups on the switch broadcast enabled disabled Enables or disables broadcast storm control multicast enabled disabled Enables or disables multicast storm control dlf enabled disabled Enables or disables dlf traffic control threshold value 0 255 The upper threshold at which the specified traffic control is...

Page 163: ...r 2 Fast Ethernet Switch User s Guide 163 Example Usage To configure traffic control and state local config traffic control 1 3 1 2 broadcast enabled Command config traffic control 1 3 broadcast enabled Success local ...

Page 164: ...up with the syntax module_id group_id Restrictions none Example Usage To display traffic control setting local show traffic control Command show traffic control Traffic Control Broadcast Multicast Destination Group ports Threshold Storm Storm Lookup Fail 1 1 8 128 Enabled Disabled Disabled 2 9 16 128 Enabled Disabled Disabled 3 17 24 128 Enabled Disabled Disabled 4 25 32 128 Disabled Disabled Disa...

Page 165: ...meters in the following table Command Parameters config scheduling class_id 0 3 mac_packet value 0 255 max_latency value 0 255 show scheduling config 802 1p user_priority priority 0 7 class_id 0 3 show 802 1p user_priority config 802 1p default_priority portlist all priority 0 7 show 802 1p default_priority all portlist config traffic_segmentation portlist forward_list null portlist ...

Page 166: ...Guide 166 Command Parameters show traffic_segmentation portlist config bandwidth_control portlist rx_rate no_limit value 1 1000 tx_rate no_limit value 1 1000 show bandwidth_control portlist Each command is listed in detail in the following sections ...

Page 167: ...y the 4 hardware priority queues in order from the highest priority queue hardware queue 3 to the lowest priority queue hardware queue 0 Each hardware queue will transmit all of the packets in its buffer before allowing the next lower priority queue to transmit its packets When the lowest hardware priority queue has finished transmitting all of its packets the highest hardware priority queue can a...

Page 168: ...nt of time the current queue will finish transmitting its current packet and then allow the hardware priority queue whose max_latency timer has expired to begin transmitting packets Parameters class_id 0 3 This specifies which of the four hardware priority queues the config scheduling command will apply to The four hardware priority queues are identified by number from 0 to 3 with the 0 queue bein...

Page 169: ...or the queue to transmit packets For example a value of 3 specifies 3 X 16 48 ms The queue will continue transmitting the last packet until it is finished when the max_latency timer expires Restrictions Only administrator level users can issue this command Example Usage local config scheduling 0 max_packet 100 max_latency 150 Command config scheduling 0 max_packet 100 max_latency 150 Success local...

Page 170: ...e on the switch Syntax show scheduling Description This command will display the current traffic scheduling mechanisms in use on the switch Parameters none Restrictions none Example Usage local show scheduling Command show scheduling QOS Output Scheduling MAX Packets MAX Latency Class 0 100 150 Class 1 99 100 Class 2 91 101 Class 3 21 201 local ...

Page 171: ...available hardware priority queues on the switch The switch s default is to map the following incoming 802 1p user priority values to the four hardware priority queues 802 1p Hardware Queue Remark 0 1 Mid low 1 0 Lowest 2 0 Lowest 3 1 Mid low 4 2 Mid high 5 2 Mid high 6 3 Highest 7 3 Highest This mapping scheme is based upon recommendations contained in IEEE 802 1D You can change this mapping by s...

Page 172: ...hardware priority queue The switch has four hardware priority queues available They are numbered between 0 the lowest priority and 3 the highest priority Restrictions Only administrator level users can issue this command Example Usage local config 802 1p user_priority 1 3 Command config 802 1p user_priority 1 3 Success local ...

Page 173: ...ority Description This command will display the current 802 1p user priority to hardware priority queue mapping in use by the switch Parameters None Restrictions None Example Usage local show 802 1p user_priority Command show 802 1p user_priority QOS Class of Traffic Priority 0 Class 1 Priority 1 Class 3 Priority 2 Class 0 Priority 3 Class 1 Priority 4 Class 2 Priority 5 Class 2 Priority 6 Class 3...

Page 174: ...sed to determine which of the four hardware priority queues the packet is forwarded to Parameters portlist Specifies a range of ports to be configured The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of ...

Page 175: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 175 Example Usage local config 802 1p default_priority all 5 Command config 802 1p default_priority all 5 Success local ...

Page 176: ...ority settings on the switch Syntax show 802 1p default_priority Description This command is used to display the current default priority settings on the switch Parameters None Restrictions None Example Usage local show 802 1p default_priority all Command show 802 1p default_priority Port Priority 1 0 2 0 3 0 4 0 5 0 6 0 7 0 8 0 9 0 ...

Page 177: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 177 10 0 11 0 12 0 13 0 14 0 15 0 16 0 17 0 18 0 19 0 20 0 CTRL C ESC q QUIT SPACE n Next Page Enter Next Entry a All ...

Page 178: ...ted by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order forward_list Specifies a range of ports that will receive forwarded frames from the ports specified in the portlist above null Specifies that packets cannot be forwarded to any ports portlist Specifies a range of ports that will be configured for traffic s...

Page 179: ...er s Guide 179 Example Usage To configure ports 1 through 10 to be able to forward frames to port 11 through 15 local config traffic_segmentation 1 10 forward_list 11 15 Command config traffic_segmentation 1 10 forward_list 11 15 Success local ...

Page 180: ...urrent traffic segmentation configuration on the switch will be displayed The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order Restrictions None Exam...

Page 181: ...st Ethernet Switch User s Guide 181 2 9 15 3 9 15 4 9 15 5 9 15 6 9 15 7 9 15 8 9 15 9 9 15 10 9 15 11 1 26 12 1 26 13 1 26 14 1 26 15 1 26 16 1 26 17 1 26 18 1 26 CTRL C ESC q QUIT SPACE n Next Page Enter Next Entry a All ...

Page 182: ...dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order rx_rate Specifies that one of the parameters below no_limit or value 1 1000 will be applied to the rate at which the above specified ports will be allowed to receive packets no_limit Specifies that there will be no limit on the rate of packets received by the above...

Page 183: ...000 Specifies the limit in Mbps that the above ports will be allowed to receive packets Restrictions Only administrator level users can issue this command Example Usage To configure bandwidth control local config bandwidth_control 1 10 tx_rate 10 Command config bandwidth_control 1 10 tx_rate 10 Success local ...

Page 184: ...s to be configured The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order Restrictions None Example Usage To show bandwidth control for ports 1 through...

Page 185: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 185 4 no_limit 10 5 no_limit 10 6 no_limit 10 7 no_limit 10 8 no_limit 10 9 no_limit 10 10 no_limit 10 11 no_limit no_limit local ...

Page 186: ...g commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters config mirror port port add delete source ports portlist rx tx both enable mirror disable mirror show mirror Each command is listed in detail in the following sections ...

Page 187: ...ecifies the Target port the port where mirrored packets will be sent portlist Specifies a range of ports to be configured The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and ...

Page 188: ...G Layer 2 Fast Ethernet Switch User s Guide 188 Example Usage To add the mirroring ports local config mirror port 5 add source ports 1 4 both Command config mirror port 5 add source ports 1 4 both Success local ...

Page 189: ...ption This command combined with the disable mirror command below allows you to enter a port mirroring configuration into the switch and then turn the port mirroring on and off without having to modify the port mirroring configuration Parameters none Restrictions none Example Usage To enable mirroring configurations local enable mirror Command enable mirror Success local ...

Page 190: ...ned with the enable mirror command above allows you to enter a port mirroring configuration into the switch and then turn the port mirroring on and off without having to modify the port mirroring configuration Parameters none Restrictions Only administrator level users can issue this command Example Usage To disable mirroring configurations local disable mirror Command disable mirror Success local...

Page 191: ...ion on the switch Syntax show mirror Description This command displays the current port mirroring configuration on the switch Parameters None Restrictions none Example Usage To display mirroring configuration local show mirror Command show mirror Current Settings Mirror Status Enabled Target Port 9 Mirrored Port RX TX 1 5 local ...

Page 192: ...rameters in the following table Command Parameters create vlan vlan_name 32 tag vlanid advertisement delete vlan vlan_name 32 config vlan vlan_name 32 add tagged untagged forbidden portlist config vlan vlan_name 32 delete portlist config vlan vlan_name 32 advertisement enabled disabled config gvrp portlist all state enabled disabled ingress_checking enabled disabled ...

Page 193: ...G Layer 2 Fast Ethernet Switch User s Guide 193 Command Parameters pvid vlanid 1 4094 enable gvrp disable gvrp show vlan vlan_name 32 show gvrp portlist Each command is listed in detail in the following sections ...

Page 194: ...VLAN to be created vlanid The VLAN ID of the VLAN to be created advertisement Specifies the VLAN as able to join GVRP If this parameter is not set the VLAN cannot be configured to have forbidden ports Restrictions Each VLAN name can be up to 32 characters If the VLAN is not given a tag it will be a port based VLAN Only administrator level users can issue this command Example Usage To create a VLAN...

Page 195: ...yntax delete vlan vlan_name 32 Description This command will delete a previously configured VLAN on the switch Parameters vlan_name 32 The VLAN name of the VLAN you want to delete Restrictions Only administrator level users can issue this command Example Usage To remove a vlan v1 local delete vlan v1 Command delete vlan v1 Success local ...

Page 196: ...meters vlan_name 32 The name of the VLAN you want to add ports to tagged Specifies the additional ports as tagged untagged Specifies the additional ports as untagged forbidden Specifies the additional ports as forbidden portlist A range of ports to add to the VLAN The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the p...

Page 197: ... 3250TG Layer 2 Fast Ethernet Switch User s Guide 197 Example Usage To add 4 through 8 as tagged ports to the VLAN v1 local config vlan v1 add tagged 4 8 Command config vlan v1 add tagged 4 8 Success local ...

Page 198: ...ortlist A range of ports you want to delete from the above specified VLAN The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order Restrictions Only admi...

Page 199: ... disable GVRP on the specified VLAN Parameters vlan_name 32 The name of the VLAN on which you want to enable or disable GVRP enabled Enables GVRP on the specified VLAN disabled Disables GVRP on the specified VLAN Restrictions Only administrator level users can issue this command Example Usage To enable the VLAN default advertisement local config vlan default advertisement enabled Command config vl...

Page 200: ... list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order all Specifies all of the ports on the switch state enabled disabled Enabled or disables GVRP for the por...

Page 201: ... s Guide 201 Example Usage To set the ingress checking status and the sending and receiving GVRP information local config gvrp 1 5 state enabled ingress_checking enabled Command config gvrp 1 5 state enabled ingress_checking enabled Success local ...

Page 202: ...is command along with disable gvrp below is used to enable and disable GVRP on the switch without changing the GVRP configuration on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To enable the generic VLAN Registration Protocol GVRP local enable gvrp Command enable gvrp Success local ...

Page 203: ...is command along with disable gvrp below is used to enable and disable GVRP on the switch without changing the GVRP configuration on the switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To disable the Generic VLAN Registration Protocol GVRP local disable gvrp Command disable gvrp Success local ...

Page 204: ...me the Tagging Untagging status and the Member Non member Forbidden status of each port that is a member of the VLAN Parameters vlan_name 32 The VLAN name of the VLAN for which you want to display a summary of settings Restrictions none Example Usage To display VLAN settings local show vlan Command show vlan VID 1 VLAN Name default VLAN TYPE static Advertisement Enabled Member ports 1 50 Static po...

Page 205: ...acket arrives at its destination the receiving device will use the PVID to make VLAN forwarding decisions If a packet is received by the port and Ingress Checking is enabled the port will compare the VID of the incoming packet to its PVID If the two are unequal the port will drop the packet If the two are equal the port will receive and forward the packet Parameters portlist A range of ports for w...

Page 206: ... 3 21 Enabled Enabled 4 21 Enabled Enabled 5 21 Enabled Enabled 6 1 Disabled Disabled 7 1 Disabled Disabled 8 1 Disabled Disabled 9 1 Disabled Disabled 10 1 Disabled Disabled 11 1 Disabled Disabled 12 1 Disabled Disabled 13 1 Disabled Disabled 14 1 Disabled Disabled 15 1 Disabled Disabled 16 1 Disabled Disabled 17 1 Disabled Disabled 18 1 Disabled Disabled CTRL C ESC q QUIT SPACE n Next Page Enter...

Page 207: ...venient method to quickly setup an environment that allows access to shared resources suchs as servers or gateway routers via the default VLAN Workstations are able to forward traffic to the default VLAN but are unaware of other existing VLANs The default VLAN is able to forward to all ports Therefore when Asymmetric VLANs are enabled forwarding between participating ports must be done via a share...

Page 208: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 208 Command Parameters enable asymmetric_vlan disable asymmetric_vlan show asymmetric_vlan ...

Page 209: ...tric VLANs system wide A unique PVID is assigned to all ports creating a separate VLAN for each port Each port is still able to receive frames from the defult VLAN Asymmetric VLANs are disabled by default Parameters None Restrictions Only administrator level users can issue this command Example usage To enable Asymmetric VLANs local enable asymmetric_vlan Command enable asymmetric_vlan Success loc...

Page 210: ... Assymetric VLANs configured on the system By default Asymmetric VLANs are diabled Parameters None Restrictions Only administrator level users can issue this command Example usage To disable Asymmetric VLANs local disable asymmetric_vlan Command disable asymmetric_vlan VLAN setting will be reset to default value Are you sure you want to proceed with asymmetric vlan disable y n y Success local ...

Page 211: ...stem Syntax show asymmetric_vlan Description This displays whether Asymmetric VLANs are enable or disabled system wide Parameters None Restrictions Only administrator level users can issue this command Example usage To display Asymmetric VLANs status local show asymmetric_vlan Command show asymmetric_vlan Asymmetric Vlan Enabled local ...

Page 212: ... following table Command Parameters create link_aggregation group_id group_id 1 6 type lacp static delete link_aggregation group_id group_id 1 6 config link_aggregation group_id group_id 1 6 master_port port ports portlist state enabled disabled config link_aggregation algorithm mac_source mac_destination mac_source_dest ip_source ip_destination ip_source_dest show link_aggregation group_id group_...

Page 213: ...50TG Layer 2 Fast Ethernet Switch User s Guide 213 Command Parameters algorithm config lacp_port portlist mode active passive show lacp_port portlist Each command is listed in detail in the following sections ...

Page 214: ... The group number identifies each of the groups type Specify the type of link aggregagation used for the group If type is not specified the default type is static lacp This designates the port group as LACP compliant LACP compliant ports may be further configured see config lacp_ports static This designates the port group as a static trunk group Static trunk groups can not be changed as easily as ...

Page 215: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 215 Example usage To create link aggregation group local create link_aggregation group_id 1 Command create link_aggregation group_id 1 Success local ...

Page 216: ... is used to delete a previously configured link aggregation group Parameters group_id 1 6 Specifies the group id The switch allows up to 6 link aggregation groups to be configured The group number identifies each of the groups Restrictions Only administrator level users can issue this command Example usage To delete link aggregation group local delete link_aggregation group_id 6 Command delete lin...

Page 217: ...ach of the groups port Master port ID Specifies which port by port number of the link aggregation group will be the master port All of the ports in a link aggregation group will share the port configuration with the master port portlist A range of ports for which you want ingress checking The port list is specified by listing the beginning port number and the highest port number of the range The b...

Page 218: ...ge To define a load sharing group of ports group id 1 master port 5 of module 1 with group members ports 5 7 plus port 9 local config link_aggregation group_id 1 master_port 5 ports 5 7 9 Command config link_aggregation group_id 1 master_port 5 ports 5 7 9 Success local ...

Page 219: ...ble using the address based load sharing algorithm Parameters mac_source Indicates that the switch should examine the MAC source address mac_destination Indicates that the switch should examin the MAC destination address mac_source_dest Indicates that the switch should examine the MAC source and ddestination addresses ip_source Indicates that the switch should examine the IP source address ip_dest...

Page 220: ...rnet Switch User s Guide 220 Example usage To configure link aggregation algorithm for mac source dest local config link_aggregation algorithm mac_source_dest Command config link_aggregation algorithm mac_source_dest Success local ...

Page 221: ...meters group_id 1 6 Specifies the group id The switch allows up to 6 link aggregation groups to be configured The group number identifies each of the groups algorithm Allows you to specify the display of link aggregation by the algorithm in use by that group Restrictions None Example usage To display Link Aggregation configuration local show link_aggregation Command show link_aggregation Link Aggr...

Page 222: ...rt of an IEEE specification 802 3ad that allows you to bundle several physical ports together to form a single logical channel LACP allows a switch to negotiate an automatic bundle by sending LACP packets to the peer Parameters portlist mode active passive Restrictions Only administrator level users can issue this command Example usage To configure ports 1 through 5 as being LACP active local conf...

Page 223: ...specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order Restrictions Only administrator level users can issue this command Example usage To display the LACP status of po...

Page 224: ... commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters config ipif System vlan vlan_name 32 ipaddress network_address state enabled disabled bootp dhcp show ipif Each command is listed in detail in the following sections ...

Page 225: ...rface network_address IP address and netmask of the IP interface to be created You can specify the address and mask information using the traditional format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 16 state enabled disabled Allows you to enable or disable the IP interface bootp Allows the selection of the BOOTP protocol for the assignment of an IP address to the switch s System IP...

Page 226: ...Layer 2 Fast Ethernet Switch User s Guide 226 Example Usage To configure the IP interface System local config ipif System ipaddress 10 48 74 122 8 Command config ipif System ipaddress 10 48 74 122 8 Success local ...

Page 227: ...on This command will display the configuration of an IP interface on the switch Parameters none Restrictions none Example Usage To display IP interface settings local show ipif Command show ipif IP Interface Settings Interface Name System IP Address 10 90 90 90 MANUAL Subnet Mask 255 0 0 0 VLAN Name default Admin State Disabled Member Ports 1 50 Total Entries 1 local ...

Page 228: ...ble Command Parameters config igmp_snooping vlan_name 32 all host_timeout sec 1 16711450 router_timeout sec 1 16711450 leave_timer sec 1 16711450 state enabled disabled config igmp_snooping querier vlan_name 32 all query_interval sec 1 65535 max_response_time sec 1 25 robustness_variable value 1 255 last_member_query_interval sec 1 25 state enabled disabled config router_ports vlan_name 32 add del...

Page 229: ...229 Command Parameters enable igmp snopping forward mcrouter only show igmp snooping vlan vlan_name 32 show igmp snooping group vlan vlan_name 32 show router ports vlan vlan_name 32 static dynamic Each command is listed in detail in the following sections ...

Page 230: ...igured host_timeout sec Specifies the maximum amount of time a host can be a member of a multicast group without the switch receiving a host membership report The default is 260 seconds route_timeout sec Specifies the maximum amount of time a route will remain in the switch s can be a member of a multicast group without the switch receiving a host membership report The default is 260 seconds leave...

Page 231: ...Ethernet Switch User s Guide 231 Example usage To configure the igmp snooping local config igmp_snooping default host_timeout 250 state enabled Command config igmp_snooping default host_timeout 250 state enabled Success local ...

Page 232: ...ption This command configures IGMP snooping querier Parameters vlan_name The name of the VLAN for which IGMP snooping querier is to be configured query_interval sec Specifies the amount of time in seconds between general query transmissions The default setting is 125 seconds max_response_time sec Specifies the maximum time in seconds to wait for reports from members The default setting is 10 secon...

Page 233: ...mber query count Number of group specific queries sent before the router assumes there are no local members of a group The default number is the value of the robustness variable By default the robustness variable is set to 2 You might want to increase this value if you expect a subnet to be lossy last_member_query_interval sec The maximum amount of time between group specific query messages includ...

Page 234: ...witch User s Guide 234 Example usage To configure the igmp snooping local config igmp_snooping querier default query_interval 125 state enabled Command config igmp_snooping querier default query_interval 125 state enabled Success local ...

Page 235: ...ll reach the multicast enabled router regardless of protocol etc Parameters vlan_name The name of the VLAN on which the router port resides portlist A range of ports for which you want ingress checking The port list is specified by listing the beginning port number and the highest port number of the range The beginning and end of the port list range are separated by a dash For example 3 would spec...

Page 236: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 236 Example usage To set up static router ports local config router_ports default add 1 10 Command config router_ports default add 1 10 Success local ...

Page 237: ...d all multicast traffic to the multicast router only Otherwise the switch forwards all mulitcast traffic to any IP router Parameters forward_mcrouter_only Specifies that the switch should forward all multicast traffic to a multicast enabled router only Otherwise the switch will forward all multicast traffic to any IP router Restrictions Only administrator level users can issue this command Example...

Page 238: ...ing on the switch IGMP snooping can be disabled only if IP multicast routing is not being used Disabling IGMP snooping allows all IGMP and IP multicast traffic to flood within a given IP interface Parameters None Restrictions Only administrator level users can issue this command Example usage To disable IGMP snooping on the switch local disable igmp_snooping Command disable igmp_snooping Success l...

Page 239: ... IGMP snooping configuration on the switch Parameters vlan_name The name of the VLAN for which you want to view the IGMP snooping configuration Restrictions None Example usage To show igmp snooping local show igmp_snooping Command show igmp_snooping IGMP Snooping Global State Disabled Multicast router Only Disabled VLAN Name default Query Interval 125 Max Response Time 10 Robustness Value 2 Last M...

Page 240: ...sabled Querier Router Behavior Non Querier State Disabled VLAN Name vlan2 Query Interval 125 Max Response Time 10 Robustness Value 2 Last Member Query Interval 1 Host Timeout 260 Route Timeout 260 Leave Timer 2 Querier State Disabled Querier Router Behavior Non Querier State Disabled Total Entries 2 local ...

Page 241: ...MP snooping group configuration on the swtich Parameters vlan_name The name of the VLAN for which you want to view IGMP snooping group configuration information Restrictions None Example usage To show igmp snooping group local show igmp_snooping group Command show igmp_snooping group VLAN Name default Multicast group 224 0 0 2 MAC address 01 00 5E 00 00 02 Reports 1 Port Member 26 VLAN Name defaul...

Page 242: ...ts 1 Port Member 26 VLAN Name default Multicast group 236 54 63 75 MAC address 01 00 5E 36 3F 4B Reports 1 Port Member 26 VLAN Name default Multicast group 239 255 255 250 MAC address 01 00 5E 7F FF FA Reports 2 Port Member 26 VLAN Name default Multicast group 239 255 255 254 MAC address 01 00 5E 7F FF FE Reports 1 Port Member 26 Total Entries 6 local ...

Page 243: ...router ports currently configured on the switch Parameters vlan_name The name of the VLAN on which the router port resides static Displays router ports that have been statically configured dynamic Displays router ports that have been dynamically configured Restrictions None Example usage To display the router ports local show router_ports Command show router_ports VLAN Name default Static router p...

Page 244: ...rk resources by establishing criteria for each port on the switch that a user or network device must meet before allowing that port to forward or receive frames Command Parameters enable 802 1x disable 802 1x show 802 1x auth_configuration ports portlist show 802 1x auth_state ports portlist config 802 1x capability ports portlist all authenticator none config 802 1x auth_parameter ports portlist ...

Page 245: ...rtlist all mac_based ports portlist all mac_address macaddr config 802 1x reauth port_based ports portlist all mac_based ports portlist all mac_address macaddr config 802 1x auth_mode port_based mac_based config radius add server_index 1 3 server_ip key passwd 32 default auth_port udp_port_number acct_port udp_port_number config radius delete server_index 1 3 config radius server_index 1 3 ipaddre...

Page 246: ...DES 3250TG Layer 2 Fast Ethernet Switch User s Guide 246 ...

Page 247: ... Syntax enable 802 1x Description The enable 802 1x command enables the 802 1x Port based Network Access control server application on the switch Parameters None Restrictions Only administrator level users can issue this command Example Usage To enable 802 1x switch wide local enable 802 1x Command enable 802 1x Success local ...

Page 248: ...disable 802 1x Description The disable 802 1x command is used to disable the 802 1x Port based Network Access control server application on the switch Parameters None Restrictions Only administrator level users can issue this command Example Usage To disable 802 1x on the switch local disable 802 1x Command disable 802 1x Success local ...

Page 249: ...mber and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order The following details what is displayed 802 1x Enabled Disabled Shows the current status of 802 1x functions on the...

Page 250: ...nauth Auto Shows the adminstrative control over the port s authorization status ForceAuth forces the Authenticator of the port to become Authorized ForceUnauth forces the port to become Unauthorized QuietPeriod Shows the time interval between authentication failure and the start of a new authentication attempt TxPeriod Shows the time to wait for a response from a supplicant user to send EAP Reques...

Page 251: ...mmand Example Usage To display 802 1x authentication configuration port settings for port 1 local show 802 1x auth_configuration Command show 802 1x auth_configuration 802 1X Disabled Authentication Mode None Authentication Protocol Radius_Eap Port number 1 Capability None AdminCrlDir Both OpenCrlDir Both Port Control Auto QuietPeriod 60 sec TxPeriod 30 sec SuppTimeout 30 sec ServerTimeout 30 sec ...

Page 252: ...inning port number on that switch separated by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order The following details what is displaye...

Page 253: ...tions Only administrator level users can issue this command Example Usage To display the 802 1x authentication state local show 802 1x auth_state Command show 802 1x auth_state Port Auth PAE State Backend State Port Status 1 ForceAuth Success Authorized 2 ForceAuth Success Authorized 3 ForceAuth Success Authorized 4 ForceAuth Success Authorized 5 ForceAuth Success Authorized 6 ForceAuth Success Au...

Page 254: ... 13 ForceAuth Success Authorized 14 ForceAuth Success Authorized 15 ForceAuth Success Authorized 16 ForceAuth Success Authorized 17 ForceAuth Success Authorized 18 ForceAuth Success Authorized 19 ForceAuth Success Authorized 20 ForceAuth Success Authorized CTRL C ESC q Quit SPACE n Next Page Enter Next Entry a All local ...

Page 255: ... switch number and the beginning port number on that switch separated by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 3 would specify port 3 4 specifies port 4 3 4 specifies all of the ports between port 3 and port 4 in numerical order all Specifie...

Page 256: ...st Ethernet Switch User s Guide 256 Example Usage To configure 802 1x capability on ports 1 10 local config 802 1x capability ports 1 10 authenticator Command config 802 1x capability ports 1 10 authenticator Success local ...

Page 257: ...e of ports The default parameter will return all ports in the specified range to their default 802 1x settings Parameters portlist Specifies a range of ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The b...

Page 258: ...henticator for the port to become unauthorized Network access will be blocked quiet_period sec 0 65535 Configures the time interval between authentication failure and the start of a new authenticaiton attempt max_req value 1 10 Configures the number of times to retry sending packets to a supplicant user reauth_period sec 1 65535 Configures the time interval between successive re authentications en...

Page 259: ...itch User s Guide 259 Example Usage To configure 802 1x authentication parameters for ports 1 to 20 local config 802 1x auth_parameter ports 1 20 direction both Command config 802 1x auth_parameter ports 1 20 direction both Success local ...

Page 260: ... configure 802 1x by either port or MAC address portlist Specifies a range of ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For exampl...

Page 261: ...Fast Ethernet Switch User s Guide 261 Example Usage To initialize 802 1x port based functions on ports 1 to 15 local config 802 1x init port based ports 1 15 Command config 802 1x init port based ports 1 15 Success local ...

Page 262: ...to reauthenticate 802 1x by either port or MAC address portlist Specifies a range of ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For...

Page 263: ...2 Fast Ethernet Switch User s Guide 263 Example Usage To configure 802 1x reauthentication for ports 1 15 local config 802 1x reauth port_based ports 1 15 Command config 802 1x reauth port_based ports 1 15 Success local ...

Page 264: ...s The switch allows you to authenticate 802 1x by either port or MAC address portlist Specifies a range of ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are s...

Page 265: ...rnet Switch User s Guide 265 Example Usage To configure the 802 1x port based authentication mode for ports 5 6 local config 802 1x auth_mode port_based ports 5 6 Command config 802 1x auth_mode port_based ports 5 6 Success local ...

Page 266: ... set of Radius server settings Up to three groups of Radius server settings can be entered on the switch server_ip The IP address of the Radius server key Specifies that a password and encryption key will be used between the switch and the Radius server passwd 32 The shared secret key used by the Radius server and the switch Up to 32 characters can be used default Returns all of the ports in the r...

Page 267: ...delete Purpose Used to delete a previously entered Radius server configuration Syntax config radius delete server_index 1 3 Description The config radius delete command is used to delete a previously entered Radius server configuration Parameters server_index 1 3 Assigns a number to the current set of Radius server settings Up to three groups of Radius server settings can be entered on the switch ...

Page 268: ...50TG Layer 2 Fast Ethernet Switch User s Guide 268 Example Usage To delete previously configured Radius server communication settings local config radius delete 1 Command config radius delete 1 Success local ...

Page 269: ...o three groups of Radius server settings can be entered on the switch server_ip The IP address of the Radius server key Specifies that a password and encryption key will be used between the switch and the Radius server passwd 32 The shared secret key used by the Radius server and the switch Up to 32 characters can be used default Returns all of the ports in the range to their default Radius settin...

Page 270: ...er 2 Fast Ethernet Switch User s Guide 270 Example Usage local config radius add 1 10 48 74 121 key dlink default To configure Radius settings Command config radius add 1 10 48 74 121 key dlink default Success local ...

Page 271: ...command is used to display the current Radius configurations on the switch Parameters None Restrictions None Example Usage To display Radius settings on the switch local show radius Command show radius Index IP Address Auth Port Acct Port Status Key Number Number 1 10 1 1 1 1812 1813 Active switch 2 20 1 1 1 1800 1813 Active des3250 3 30 1 1 1 1812 1813 Active dlink Total Entries 3 local ...

Page 272: ... Control Lists that enable the switch to deny network access to specific devices or device groups based on IP settings or MAC address Command Parameters create access_profile ethernet vlan source_mac macmask destination_mac macmask 802 1p ethernet_type ip destination_ip_mask netmask vlan source_ip_mask netmask dscp icmp type ...

Page 273: ...sk hex 0x0 0xffff dst_port_mask hex 0x0 0xfff protocol_id user_mask hex 0x0 0xffffffff permit deny profile_id value 1 255 delete access_profile Profile_id value 1 255 config access_profile profile_id value 1 255 add access_id value 1 255 ethernet vlan vlan_name 32 source_mac macaddr destination_mac macaddr 802 1p value 0 7 ethernet_type hex 0x0 0xfff ip vlan vlan_name 32 ...

Page 274: ...5 dst_prot value 0 65535 udp src_port value 0 65535 dst_port value 0 65535 protocol_id value 0 255 user_define hex 0x0 0xffffffff priority value 0 7 replace_priority replace_dscp value 0 63 delete value 1 255 Due to a chipset limitation the switch currently supports a maximum of ten access profiles each containing a maximum of 50 rules with the additional limitation of 50 rules total for all ten a...

Page 275: ...nds will be combined with the source_ip_mask with a logical AND operation The profile_id parameter is used to give the access profile an identifying number in this case 1 The deny parameter instructs the switch to filter any frames that meet the criteria in this case when a logical AND operation between an IP address specified in the next step and the ip_source_mask match The default for an access...

Page 276: ...red for an access profile the rule with the highest priority lowest access_id will take precedence The ip parameter instructs the switch that this new rule will be applied to the IP addresses contained within each frame s header source_ip tells the switch that this rule will apply to the source IP addresses in each frame s header Finally the IP address 10 42 73 1 will be combined with the source_i...

Page 277: ...ask netmask destination_ip_mask netmask dscp icmp type code igmp type tcp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff udp src_port_mask hex 0x0 0xfff dst_port_mask hex 0x0 0xffff protocol_id user_mask hex 0x0 0xffffffff permit deny profile_id value 1 255 Description The create access_profile command is used to create an access profile on the switch and to define which parts of each i...

Page 278: ... switch will examine the Ethernet type value in each frame s header ip Specifies that the switch will examine the IP address in each frame s header vlan Specifies a VLAN mask source_ip_mask netmask Specifies an IP address mask for the source IP address destination_ip_mask netmask Specifies an IP address mask for the destination IP address dscp Specifies that the switch will examine the DiffServ Co...

Page 279: ...s Universal Datagram Protocol UDP field src_port_mask hex 0x0 0xffff Specifies a UDP port mask for the source port dst_port_mask hex 0x0 0xffff Specifies a UDP port mask for the destination port protocol_id Specifies that the switch will examine each frame s Protocol ID field user_mask hex 0x0 0xffffffff Specifies that the rule applies to the IP protocol ID and the mask options behind the IP heade...

Page 280: ...users can issue this command Example Usage To create an access profile that will deny service to the subnet ranging from 10 42 73 0 to 10 42 73 255 local create access_profile ip source_ip_mask 255 255 255 0 profile_id 1 deny Command create access_profile ip source_ip_mask 255 255 255 0 profile_id 1 deny Success local ...

Page 281: ...n the swtich Parameters profile_id value 1 255 an integer between 1 and 255 that is used to identify the access profile that will be deleted with this command This value is assigned to the access profile when it is created with the create access_profile command Restrictions Only administrator level users can issue this command Example Usage To delete the access profile with a profile ID of 1 local...

Page 282: ...ccess_id value 1 255 ethernet vlan vlan_name 32 source_mac macaddr destination_mac macaddr 802 1 value 0 7 ethernet_type hex 0x0 0xffff ip vlan vlan_name source_ip ipaddr destination_ip ipaddr dscp value 0 63 icmp type value 0 65535 code value 0 255 igmp type value 0 255 tcp src_port value 0 65535 dst_port value 0 65535 udp src_port value 0 65535 dst_port value 0 65535 protocol_id value 0 255 user...

Page 283: ...ss destination_mac macaddr Specifies that the access profile will apply to only packets with this destination MAC address 802 1p value 0 7 Specifies that the access profile will apply only to packets with this 802 1p priority value ethernet_type hex 0x0 0xffff Specifies that the access profile will apply only to packets with this hexidecimal 802 1Q Ethernet type value in the packet header ip Speci...

Page 284: ...the Internet Group Management Protocol IGMP field within each packet type value 0 255 Specifies that the access profile will apply to packets that have this IGMP type value tcp Specifies that the switch will exmamine the Transmission Control Protocol TCP field within each packet src_port value 0 65535 Specifies that the access profile will apply only to packets that have this TCP source port in th...

Page 285: ...s profile will apply to packets that contain this value in their 802 1p priority field of their header replace_priority This parameter is specified if you want to change the 802 1p user priority of a packet that meets the specified criteria Otherwise a packet will have its incoming 802 1p user priority re written to its original value before being transmitted from the switch replace_dscp value 0 6...

Page 286: ...rofile with the profile ID of 1 to filter frames that have IP addresses in the range between 10 42 73 0 to 10 42 73 255 local config access_profile profile_id 1 add access_id 1 ip source_ip 10 42 73 1 Command config access_profile profile_id 1 add access_id 1 ip source_ip 10 42 73 1 Success local ...

Page 287: ...The show access_profile command is used to display the currently configured access profiles Parameters None Restrictions Only administrator level users can issue this command Example Usage To display all of the currently configured access profiles on the switch local Access Profile Table Access Profile ID 1 Mode Deny TYPE IP MASK Option Source IP MASK 255 255 255 0 Access ID 1 10 42 73 0 local ...

Page 288: ... routing table commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters create iproute default ipaddr metric 1 65535 delete iproute default show iproute Each command is listed in detail in the following sections ...

Page 289: ... is used to create an IP route entry to the switch s IP routing table Parameters default creates a default IP route entry ipaddr The IP address for the next hop router metric 1 65535 The default setting is 1 Restrictions Only administrator level users can issue this command Example Usage To create an IP route for the routing table local create iproute default 10 1 1 5 Command create iproute defaul...

Page 290: ...route default Description This command will delete an existing entry from the switch s IP routing table Parameters default deletes a default IP route entry Restrictions Only administrator level users can issue this command Example Usage To delete the default IP route from the switch s routing table local delete iproute default Command delete iproute default Success local ...

Page 291: ...ow iproute Description This command will display the switch s current IP routing table Parameters None Restrictions None Example Usage To display the contents of the IP routing table local show iproute Command show iproute Routing Table IP Address Netmask Gateway Interface Hops Protocol 10 0 0 0 8 0 0 0 0 System 1 Local Total Entries 1 local ...

Page 292: ... the Network Time Protocol NPT commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Parameters Command config sntp primary ipaddr secondary ipaddr poll interval int 30 99999 enable sntp disable sntp show sntp Each command is listed in detail in the following sections ...

Page 293: ...econdary This is the secondary server the SNTP information will be taken from in the event the primary server is unavailable ipaddr The IP address for the secondary server poll interval This is the time the SNTP information will be polled int 30 99999 The polling interval ranges from 30 to 99 999 seconds Restrictions Only administrator level users can issue this command Example Usage To configure ...

Page 294: ...sed to enable SNTP on the switch Syntax enable sntp Description This command enables SNTP on a switch Parameters none Restrictions Only administrator level users can issue this command Example Usage To enable SNTP on the switch local enable sntp Command enable sntp Success local ...

Page 295: ...able sntp Purpose Used to disable SNTP on the switch Syntax disable sntp Description This command will disable SNTP on the switch Parameters None Restrictions None Example Usage To disable SNTP on the switch local local disable sntp Command disable sntp Success ...

Page 296: ... show sntp Description This command will show SNTP on the switch Parameters None Restrictions None Example Usage To show SNTP on the switch local show sntp Command show sntp Current Time Source System Clock SNTP Disabled SNTP Primary Server 10 24 22 5 SNTP Secondary Server 0 0 0 0 SNTP poll interval 720 sec local ...

Page 297: ...RY LIST The switch port commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters show command_history dir config command_history value 1 40 Each command is listed in detail in the following sections ...

Page 298: ...mands available through the Command Line Interface CLI Parameters none Restrictions none Example Usage To display all of the commands in the CLI local clear fdb config 802 1p user_priority config 802 1x capability ports Command clear clear counters clear log config 802 1p default_priority config 802 1x auth_mode config 802 1x auth_parameter ports config 802 1x init config 802 1x reauth ...

Page 299: ...ser s Guide 299 config account config bandwidth_control config command_history config command_prompt config fdb aging_time config gvrp config igmp_snooping config igmp_snooping querier CTRL C ESC q Quit SPACE n Next Page Enter Next Entry a All ...

Page 300: ...ry Syntax show command_history Description This command will display the command history Parameters none Restrictions none Example Usage To display the command history local show command_history Command show command_history show show command history clear show command history clear close show command history show local ...

Page 301: ...ictions none Example Usage clear log config 802 1x auth_mode config 802 1x init config account To display all of the commands local dir Command dir clear clear counters clear fdb config 802 1p default_priority config 802 1p user_priority config 802 1x auth_parameter ports config 802 1x capability ports config 802 1x reauth config access_profile profile_id config bandwidth _control ...

Page 302: ...st Ethernet Switch User s Guide 302 config command_history config command_prompt config igmp_snooping config fdb aging_time config gvrp config igmp_snooping querier CTRL C ESC q Quit SPACE n Next Page Enter Next Entry a All ...

Page 303: ...figure the command history Syntax config command_history value 1 40 Description This command is used to configure the command history Parameters value 1 40 Restrictions none Example Usage Command config command_history 20 To configure the command history local config command_history 20 Success local ...

Page 304: ... IEEE 802 3u 100BASE TX Fast Ethernet IEEE 802 3z 1000BASE SX Gigabit Ethernet IEEE 802 3ab 1000BASE T Gigabit Ethernet IEEE 802 1 P Q VLAN IEEE 802 3 Nway auto negotiation Protocols CSMA CD Data Transfer Rates Ethernet Fast Ethernet Gigabit Ethernet Half duplex Full duplex 10 Mbps 20Mbps 100Mbps 200Mbps n a 2000Mbps Topology Star ...

Page 305: ...ptical connector Number of Ports 48x 10 100 Mbps NWay ports 2 Gigabit Ethernet ports 1000BASE T included or Mini GBIC optional Physical and Environmental AC input External Redundant power Supply 100 120 200 240 VAC 50 60 Hz internal universal power supply Power Consumption 30 watts maximum DC fans 2 built in 40 x 40 x10 mm fans Operating Temperature 0 to 40 degrees Celsius Storage Temperature 40 t...

Page 306: ...ick Class A Safety CSA International Performance Transmission Method Store and forward RAM Buffer 64M Bytes per device Filtering Address Table 8K MAC address per device Packet Filtering Forwarding Rate Full wire speed for all connections 148 800 pps per port for 100Mbps 1 488 000 pps per port for 1000Mbps MAC Address Learning Automatic update Forwarding Table Age Time Max age 10 9999 seconds Defau...

Page 307: ...ITCH SYSTEM MESSAGES Remark NO Message 1 Success 2 Error applying data 3 Invalid IP address 4 Invalid subnet mask 5 Invalid gateway address 7 All changes are saved 8 Invalid MAC address 9 No more MAC Based VLANs can be added 10 No more MAC addresses can be added ...

Page 308: ...terface must be deleted first 18 The system interface is not in manual mode 19 The VLAN already has a IP Interface 20 The specified IGMP snooping entry cannot be modified 21 You have more than 255 IGMP snooping entries 22 IGMP state in the VLAN is disabled or current VID is invalid 23 The external module port is not exist 24 You must select at least one port member 25 Target mirror port can t be s...

Page 309: ...ort can t be half duplex mode 34 The EEPROM is full 35 The VLAN has no router ports 36 IGMP snooping is disabled in the designated VLAN 37 The username is invalid 38 Incorrect password 39 The specified user already exists Enter a unique username Add user 40 The username does not exist Enter the name of an existing user Delete and Update user 41 One active Admin user must exist Delete or Update use...

Page 310: ...ve a history log 49 The maximum number of spanning tree group is twelve 50 MAC address must be unicast 51 MAC address must be multicast 52 Forwarding Filtering Table is full 53 Multicast member must exist in the VLAN 54 The member port must exist in the VLAN 55 Duplicate route Enter a unique route 56 Target port can t be source port 57 This port member can t be set 58 Port members must belong to t...

Page 311: ... you entered is existing 66 The VLAN name you entered does not exist Check IP Address or VLAN name 67 Invalid Interface name Check Interface Name 68 The interface name already exists Enter a unique interface name Check Interface Name 69 The interface name does not exist Check Interface Name 70 VLAN table is full 71 The specified VID has no MAC addresses 72 The specified port has no MAC addresses 7...

Page 312: ... IP address or invalid number of pings 79 Search entry is not found 80 Membership can t be overlap 81 The default entry can t be deleted 82 Non egress port must set to TAG Variable Name Maxmum Length Type username 15 String password 15 String ipaddr 15 IP Address netmask 15 IP Address gateway 15 IP Address vlan_name 32 String sw_name 128 String sw_location 128 String ...

Page 313: ...3250TG Layer 2 Fast Ethernet Switch User s Guide 313 sw_contact 128 String Password 15 String community_string 32 String server_ip 15 IP Address path_filename 64 String macaddr 17 MAC Address ipif 12 String ...

Page 314: ... dlink com br Canada D Link Canada 2180 Winston Park Drive Oakville Ontario L6H 5W1 Canada TEL 1 905 829 5033 FAX 1 905 829 5223 BBS 1 965 279 8732 FTP ftp dlinknet com TOLL FREE 1 800 354 6522 URL www dlink ca E MAIL techsup dlink ca Chile D Link South America Sudamérica Isidora Goyenechea 2934 Oficina 702 Las Condes Santiago Chile TEL 56 2 232 3185 FAX 56 2 232 0923 URL www dlink com cl China D ...

Page 315: ...RL www dlink france fr E MAIL info dlink france fr Germany D Link Central Europe D Link Deutschland GmbH Schwalbacher Strasse 74 D 65760 Eschborn Germany TEL 49 6196 77990 FAX 49 6196 7799300 BBS 49 0 6192 971199 analog BBS 49 0 6192 971198 ISDN INFO 00800 7250 0000 toll free HELP 00800 7250 4000 toll free REPAIR 00800 7250 8000 HELP support dlink de URL www dlink de E MAIL info dlink de India D L...

Page 316: ... Russia D Link Russia 129626 Russia Moscow Graphskiy per 14 floor 6 TEL FAX 7 095 744 00 99 URL www dlink ru E MAIL vl dlink ru Singapore D Link International 1 1 International Business Park 03 12 The Synergy TEL 65 6774 6233 FAX 65 6774 6322 Singapore 609917 E MAIL info dlink com sg URL www dlink intl com South Africa D Link South Africa Einstein Park II Block B 102 106 Witch Hazel Avenue Highvel...

Page 317: ...525 pbx FAX 90 212 335 2500 E MAIL dlinkturkey dlink me com U A E D Link Middle East FZCO P O Box18224 R 8 Warehouse UB 5 Jebel Ali Free Zone Dubai United Arab Emirates TEL Jebel Ali 971 4 883 4234 FAX Jebel Ali 971 4 883 4394 Dubai 971 4 335 2464 E MAIL dlinkme dlink me com support dlink me com U K D Link Europe United Kingdom Ltd 4th Floor Merit House Edgware Road Colindale London NW9 5AB United...

Page 318: ..._________________________________________________ Country _____________________________________________________________________________________ Product Model Product Serial No Date of purchase Month Day Year _______________________________________________________________ Product installed in type of computer e g Compaq 486 Product installed in computer serial No Applies to adapters only Product wa...

Page 319: ...Windows NTAS Windows 95 Others__________________________________________ 5 What network management program does your organization use D View HP OpenView Windows HP OpenView Unix SunNet Manager Novell NMS NetView 6000 Others________________________________________ 6 What network medium media does your organization use 100BASE TX 100BASE T4 100VGAnyLAN Others_________________ 7 What applications are...

Page 320: ...__________________________________________________________________________________________ __________________________________________________________________________________________ ...

Page 321: ......

Page 322: ......

Reviews: