manualshive.com logo in svg

D-Link DGS-3000 series, Reference Manual

The D-Link DGS-3000 series is a high-performance networking solution designed for fast and reliable data transmission. Ensure seamless hardware installation with the comprehensive Hardware Installation Manual available for free download on our website manualshive.com. Gain easy access to the manual and unleash the full potential of your DGS-3000, hassle-free.

Share
Download
background image

DGS-3000 Series Layer 2 Managed Gigabit Ethernet Switch CLI Reference Guide 

733 

Chapter 75

 

Secure Sockets Layer (SSL) 

Command List 

download ssl certificate

 {<ipaddr> certfilename <path_filename 64> keyfilename <path_filename 

64>} 

enable ssl

 {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | 

DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} 

disable ssl

 {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | 

DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} 

show ssl 

{certificate}

 

show ssl cachetimeout 

config ssl cachetimeout

 <value 60-86400> 

 

 

download ssl certificate 

75-1

Description 

This command is used to download the certificate to the device according to the certificate level. 
The user can download the specified certificate to the device which must, according to desired key 
exchange algorithm. For RSA key exchange, the user must download RSA type certificate and for 
DHS_DSS is using the DSA certificate for key exchange. 

 

Format 

download ssl certificate {<ipaddr> certfilename <path_filename 64> keyfilename 
<path_filename 64>} 

 

Parameters 

<ipaddr>

 - (Optional) Enter the TFTP server IP address used for this configuration here. 

certfilename

 - (Optional) Specify the desired certificate file name. 

<path_filename 64>

 - Enter the certificate file path with respect to the TFTP server root path. 

This can be up to 64 characters long. 

keyfilename

 - (Optional) Specify the private key file name which accompany with the certificate. 

<path_filename 64>

 - Enter the private key file path with respect to the TFTP server root 

path. This can be up to 64 characters long. 

 

Restrictions 

Only Administrators, Operators and Power-Users can issue this command. 

 

Example 

To download certificate from TFTP server: 

Summary of Contents for DGS-3000 series

Page 1: ......

Page 2: ...nd List 198 Chapter 19 DHCP Local Relay Command List 210 Chapter 20 DHCP Relay Command List 218 Chapter 21 DHCP Server Command List 243 Chapter 22 DHCP Server Screening Command List 273 Chapter 23 DHCPv6 Relay Command List 285 Chapter 24 DHCPv6 Server Command List 297 Chapter 25 Digital Diagnostic Monitoring DDM Command List 311 Chapter 26 D Link Unidirectional Link Detection DULD Command List 318...

Page 3: ...ing Command List 628 Chapter 60 OAM Command List 634 Chapter 61 Password Recovery Command List 641 Chapter 62 Peripherals Command List 643 Chapter 63 Ping Command List 646 Chapter 64 Port Security Command List 649 Chapter 65 Power Saving Command List 657 Chapter 66 PPPoE Circuit ID Insertions Command List 664 Chapter 67 Protocol VLAN Command List 668 Chapter 68 QinQ Command List 674 Chapter 69 Qua...

Page 4: ...Traffic Control Command List 835 Chapter 90 Traffic Segmentation Command List 840 Chapter 91 Trusted Host Command List 842 Chapter 92 Unicast Routing Command List 846 Chapter 93 VLAN Trunking Command List 849 Chapter 94 Voice VLAN Command List 854 Chapter 95 Web based Access Control WAC Command List 865 Appendix A Password Recovery Procedure 881 Appendix B System Log Entries 883 Appendix C Trap Lo...

Page 5: ...serial port configured as above are then connected to the Switch s Console port via an included RS 232 to RJ 45 convertor cable With the serial port properly connected to a management computer the following screen should be visible If this screen does not appear try pressing Ctrl r to refresh the console screen DGS 3000 26TC Gigabit Ethernet Switch Command Line Interface Firmware Build 1 10 0012 C...

Page 6: ...t the corresponding subnet mask Alternatively you can enter config ipif System ipaddress xxx xxx xxx xxx z Where the x s represent the IP address to be assigned to the IP interface named System and the z represents the corresponding number of subnets in CIDR notation The IP interface named System on the Switch can be assigned an IP address and subnet mask which can then be used to connect a manage...

Page 7: ...PACE n Next Page ENTER Next Entry a All When entering a command without its required parameters the CLI will prompt you with a Next possible completions message DGS 3000 26TC admin config account Command config account Next possible completions username DGS 3000 26TC admin In this case the command config account was entered with the parameter username The CLI will then prompt to enter the username...

Page 8: ...ate a numerical value or character string braces indicate optional parameters or a choice of parameters and brackets indicate required parameters If a command is entered that is unrecognized by the CLI the top level commands will be displayed under the Available commands prompt DGS 3000 26TC admin the Available commands cable_diag cd cfm clear config copy create debug del delete dir disable downlo...

Page 9: ...v6 ipv6route jumbo_frame jwac l2protocol_tunnel lacp_port led limited_multicast_addr link_aggregation lldp lldp_med log log_save_timing log_software_module loopdetect mac_based_access_control mac_based_access_control_local mac_based_vlan mac_notification max_mcast_group mcast_filter_profile mirror mld_snooping multicast multicast_fdb name_server nd_spoofing_prevention nlb packet password_recovery ...

Page 10: ...in the command create ipif ipif_name 12 network_address vlan_name 32 secondary state enable disable proxy_arp enable disable local enable disable users must specify either the community or trap receiver in the command DO NOT TYPE THE VERTICAL BAR braces Encloses an optional value or a list of optional arguments One or more values or arguments can be specified For example in the command reset confi...

Page 11: ...Space Display the next page CTRL C Escape from displayed pages ESC Escape from displayed pages q Escape from displayed pages r refresh the displayed pages a Display the remaining pages The screen display will not pause again Enter Display the next line The screen display pauses when the show command output reaches the end of the page In the above example all of the possible next parameters for the...

Page 12: ...fiber copper speed auto capability_advertised 10_half 10_full 100_half 100_full 1000_full 10_half 10_full 100_half 100_full 1000_full master slave 10g_full auto_negotiation restart_an remote_fault_advertised disable offline link_fault auto_negotiation_error flow_control enable disable learning enable disable state enable disable mdix auto normal cross description desc 1 32 clear_description auto_s...

Page 13: ...n Total Entries 2 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show serial_port 2 2 Description This command is used to display the current serial port settings Format show serial_port Parameters None Restrictions None Example To display the serial port setting DGS 3000 26TC admin show serial_port Command show serial_port Baud Rate 115200 Data Bits 8 Parity Bits None Stop Bits 1 A...

Page 14: ...it rate to be 38400 115200 Specify the serial bit rate to be 115200 auto_logout Optional The auto logout time out setting never Never timeout 2_minutes When idle over 2 minutes the device will auto logout 5_minutes When idle over 5 minutes the device will auto logout 10_minutes When idle over 10 minutes the device will auto logout 15_minutes When idle over 15 minutes the device will auto logout Re...

Page 15: ...ging Success DGS 3000 26TC admin disable clipaging 2 5 Description This command is used to disable the pausing of the screen display when the show command output reaches the end of the page The default setting is enabled Format disable clipaging Parameters None Restrictions Only Administrators and Operators can issue this command Example To disable pausing of the screen display when show command o...

Page 16: ...itch Format login Parameters None Restrictions None Example To login the Switch with a user name dlink DGS 3000 26TC admin login Command login UserName dlink PassWord DGS 3000 26TC admin logout 2 7 Description This command is used to logout from the command prompt Format logout Parameters None Restrictions None Example To logout from the current user ...

Page 17: ...ved UserName 2 8 Description This command is used to display a description of a specific command or general command Format Parameters None Restrictions None Example To get ping command usage descriptions DGS 3000 26TC admin ping Command ping Command ping Usage ipaddr domain_name 255 times value 1 255 timeout sec 1 99 Description Used to test the connectivity between network devices DGS 3000 26TC a...

Page 18: ...ameters None Restrictions None Example To clear screen DGS 3000 26TC admin clear Command clear DGS 3000 26TC admin show command_history 2 10 Description This command is used to display command history Format show command_history Parameters None Restrictions None Example To display command history ...

Page 19: ...is command is used to configure the number of commands that the Switch can recall The Switch remembers upto the last 40 commands you entered Format config command_history value 1 40 Parameters value 1 40 Enter the number of commands that the Switch can recall This value must be between 1 and 40 Restrictions Only Administrators and Operators can issue this command Example To configure the number of...

Page 20: ...ions Only Administrators and Operators can issue this command Example To edit the banner DGS 3000 26TC admin config greeting_message Command config greeting_message Greeting Messages Editor DGS 3000 26TC Gigabit Ethernet Switch Command Line Interface Firmware Build 1 10 013 Copyright C 2014 D Link Corporation All rights reserved Function Key Control Key Ctrl C Quit without save left right Ctrl W S...

Page 21: ...n All rights reserved DGS 3000 26TC admin config command_prompt 2 14 Description This command is used to modify the command prompt When users issue the reset command the current command prompt will remain in tact Yet issuing the reset system will return the command prompt to its original factory default value Format config command_prompt string 16 username default Parameters string 16 Enter the ne...

Page 22: ... configuration is saved After users log out and log in again the terminal width is 120 2 If user did not save the configuration another user login the terminal width is default value 3 If at the same time two CLI sessions are running once section configure to 120 width and save it the other section will not be effected unless it log out and then log in Format config terminal width default value 80...

Page 23: ...Switch s Ethernet port settings Format config ports portlist all medium_type fiber copper speed auto capability_advertised 10_half 10_full 100_half 100_full 1000_full 10_half 10_full 100_half 100_full 1000_full master slave 10g_full auto_negotiation restart_an remote_fault_advertised disable offline link_fault auto_negotiation_error flow_control enable disable learning enable disable state enable ...

Page 24: ...for 1000Mbps MAUs link_fault Specify that if set and local device was detected a Link_Failure condition indicated by the loss of synchronization will advertise at the next auto negotiation It interacted for 1000Mbps MAUs auto_negotiation_error Specify the resolution which precludes operation between a local device and link partner advertised at the next auto negotiation It interacted for 1000Mbps ...

Page 25: ... 3 speed 10_full learning enable state enable flow_control enable Success DGS 3000 26TC admin show ports 2 18 Description This command is used to display the current configurations of a range of ports No parameter will show all ports Format show ports portlist description err_disabled auto_negotiation details media_type Parameters portlist Optional Enter a range of ports to be displayed descriptio...

Page 26: ... Ethernet MAC Address B0 C5 54 30 00 A1 Bandwidth 100000Kbit Auto Negotiation Enabled Duplex Mode Full Duplex Flow Control Disabled MDI Cross Address Learning Enabled Last Clear of Counter 3 hours 9 mins ago BPDU Hardware Filtering Mode Disabled Queuing Strategy FIFO TX Load 0 100 0 bits sec 0 packets sec RX Load 0 100 0 bits sec 0 packets sec CTRL C ESC q Quit SPACE n Next Page p Previous Page r ...

Page 27: ... show port_vlan portlist enable pvid auto_assign disable pvid auto_assign show pvid auto_assign config gvrp timer join value 100 100000 leave value 100 100000 leaveall value 100 100000 nni_bpdu_addr dot1d dot1ad show gvrp enable gvrp disable gvrp config private_vlan vlan_name 32 vid vlanid 2 4094 add isolated community remove vlan_name 32 vlanid vidlist show private_vlan vlan_name 32 vlanid vidlis...

Page 28: ...stem The automatic assignment of VLAN name is based on the following rule VLAN ID For example for VLAN ID 100 the VLAN name will be VLAN100 If this VLAN name is conflict with the name of an existing VLAN then it will be renamed based on the following rule VLAN ID ALT collision count For example if this conflict is the second collision then the name will be VLAN100ALT2 Format create vlan vlanid vid...

Page 29: ...ameters vlan The VLAN name of the VLAN to be deleted vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long Restrictions Only Administrators Operators and Power Users can issue this command Example To remove a vlan v1 DGS 3000 26TC admin delete vlan v1 Command delete vlan v1 Success DGS 3000 26TC admin delete vlan vlanid 3 4 Description This command is used to delete one o...

Page 30: ...name 32 Enter the VLAN name you want to add ports to This name can be up to 32 characters long add Optional Specify to add tagged untagged or forbidden ports to the VLAN tagged Specify the additional ports as tagged untagged Specify the additional ports as untagged forbidden Specify the additional ports as forbidden delete Optional Specify to delete ports from the VLAN portlist Optional Enter the ...

Page 31: ...ged Specify the additional ports as tagged untagged Specify the additional ports as untagged forbidden Specify the additional ports as forbidden delete Optional Specify to delete ports from the VLAN portlist Optional Enter the list of ports used for the configuration here advertisement Optional Specify the GVRP state of this VLAN enable Specify to enable advertisement for this VLAN disable Specify...

Page 32: ...orts will be disabled ingress_checking Optional Enables or disables ingress checking for the specified portlist enable Specify that ingress checking will be enabled for the specified portlist disable Specify that ingress checking will be disabled for the specified portlist acceptable_frame Optional The type of frame will be accepted by the port There are two types tagged_only Only tagged packets c...

Page 33: ...min show vlan Command show vlan VLAN Trunk State Disabled VLAN Trunk Member Ports VID 1 VLAN Name default VLAN Type Static Advertisement Enabled Member Ports 1 26 Static Ports 1 26 Current Tagged Ports Current Untagged Ports 1 26 Static Tagged Ports Static Untagged Ports 1 26 Forbidden Ports Total Static VLAN Entries 1 Total GVRP VLAN Entries 0 DGS 3000 26TC admin show vlan ports 3 9 Description T...

Page 34: ... configuration for port 6 DGS 3000 26TC admin show vlan ports 6 Command show vlan ports 6 Port VID Untagged Tagged Dynamic Forbidden 6 1 X 6 2 X DGS 3000 26TC admin show vlan vlanid 3 10 Description This command is used to display the vlan information using the VLAN ID Format show vlan vlanid vidlist Parameters vidlist Enter the VLAN ID to be displayed Restrictions None Example To display the VLAN...

Page 35: ...rts Current Untagged Ports 1 26 Static Tagged Ports Static Untagged Ports 1 26 Forbidden Ports Total Entries 1 DGS 3000 26TC admin show port_vlan 3 11 Description This command is used to display the ports VLAN attributes on the Switch Format show port_vlan portlist Parameters portlist Optional Enter a range of ports to be displayed If no parameter specified system will display all ports gvrp infor...

Page 36: ... Disabled Enabled All Frames 16 1 Disabled Enabled All Frames 17 1 Disabled Enabled All Frames 18 1 Disabled Enabled All Frames 19 1 Disabled Enabled All Frames 20 1 Disabled Enabled All Frames CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All enable pvid auto assign 3 12 Description This command is used to enable the auto assignment of PVID If Auto assign PVID is enabled PVID will be pos...

Page 37: ...n This command is used to disable auto assignment of PVID Format disable pvid auto_assign Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable the auto assign PVID DGS 3000 26TC admin disable pvid auto_assign Command disable pvid auto_assign Success DGS 3000 26TC admin show pvid auto_assign 3 14 Description This command is used to dis...

Page 38: ...configured join Optional Specify the Join time will be set value 100 100000 Enter the time used here This value must be between 100 and 100000 leave Optional Specify the Leave time will be set value 100 100000 Enter the time used here This value must be between 100 and 100000 leaveall Optional Specify the LeaveAll time will be set value 100 100000 Enter the time used here This value must be betwee...

Page 39: ...tion This command is used to display the GVRP global setting Format show gvrp Parameters None Restrictions None Example To display the global setting of GVRP DGS 3000 26TC admin show gvrp Command show gvrp Global GVRP Disabled Join Time 200 Milliseconds Leave Time 600 Milliseconds LeaveAll Time 10000 Milliseconds NNI BPDU Address dot1d DGS 3000 26TC admin enable gvrp 3 17 Description This commands...

Page 40: ... GVRP DGS 3000 26TC admin enable gvrp Command enable gvrp Success DGS 3000 26TC admin disable gvrp 3 18 Description This command is used to disable the Generic VLAN Registration Protocol GVRP Format disable gvrp Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable the Generic VLAN Registration Protocol GVRP DGS 3000 26TC admin disable...

Page 41: ...the secondary VLAN as community VLAN remove Specify that a secondary VLAN will be removed from the private VLAN vlan_name 32 Enter the secondary VLAN name used This name can be up to 32 characters long vlanid A range of secondary VLAN to add or remove to the private VLAN vidlist Enter the secondary VLAN ID used here Restrictions Only Administrators and Operators can issue this command Example To a...

Page 42: ...e VLAN ID of the private VLAN or its secondary VLAN vidlist Enter the VLAN ID used here Restrictions Only Administrators and Operators can issue this command Example To display private VLAN settings DGS 3000 26TC admin show private_vlan Command show private_vlan Primary VLAN 3 Promiscuous Ports Trunk Ports Total Entries 1 DGS 3000 26TC admin ...

Page 43: ...rce_auth quiet_period sec 0 65535 tx_period sec 1 65535 supp_timeout sec 1 65535 server_timeout sec 1 65535 max_req value 1 10 reauth_period sec 1 65535 max_users value 1 448 no_limit enable_reauth enable disable 1 config 802 1x init port_based ports portlist all mac_based ports portlist all mac_address macaddr config 802 1x auth_mode port_based mac_based config 802 1x reauth port_based ports port...

Page 44: ...nable 802 1x Success DGS 3000 26TC admin disable 802 1x 4 2 Description This command is used to disable the 802 1X function Format disable 802 1x Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable the 802 1X function DGS 3000 26TC admin disable 802 1x Command disable 802 1x Success DGS 3000 26TC admin create 802 1x user 4 3 Descript...

Page 45: ... user test DGS 3000 26TC admin create 802 1x user test Command create 802 1x user test Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3000 26TC admin delete 802 1x user 4 4 Description This command is used to delete an 802 1X user Format delete 802 1x user username 15 Parameters username 15 Enter the username to be deleted This value can be up to 15 c...

Page 46: ...used to display the 802 1X user Format show 802 1x user Parameters None Restrictions None Example To display the 802 1X user information DGS 3000 26TC admin show 802 1x user Command show 802 1x user Current Accounts Username Password test test Total Entries 1 DGS 3000 26TC admin config 802 1x auth_protocol 4 6 Description This command is used to configure the 802 1X auth protocol Format config 802...

Page 47: ...stem 4 7 Description This command is used to globally control the forwarding of EAPOL PDU When 802 1X functionality is disabled globally or for a port and if 802 1X fwd_pdu is enabled both globally and for the port a received EAPOL packet on the port will be flooded in the same VLAN to those ports for which 802 1X fwd_pdu is enabled and 802 1X is disabled globally or just for the port The default ...

Page 48: ... fwd_pdu ports portlist all enable disable Parameters portlist Enter the list of ports used for the configuration all Specify that all the ports will be used enable Enables forwarding EAPOL PDU receive on the ports disable Disables forwarding EAPOL PDU receive on the ports Restrictions Only Administrators Operators and Power Users can issue this command Example To configure 802 1X fwd_pdu for port...

Page 49: ...assigned from the RADIUS server DGS 3000 26TC admin config 802 1x authorization attributes radius disable Command config 802 1x authorization attributes radius disable Success DGS 3000 26TC admin show 802 1x 4 10 Description This command is used to display the 802 1X state or configurations Format show 802 1x auth_state auth_configuration ports portlist Parameters auth_state Optional Displays 802 ...

Page 50: ...it SPACE n Next Page p Previous Page r Refresh config 802 1x capability 4 11 Description This command is used to configure the port capability Format config 802 1x capability ports portlist all authenticator none Parameters ports Specify a range of ports to be configured portlist Enter the list of ports used for the configuration here all Specify all ports to be configured authenticator Specify th...

Page 51: ... Enter the maximum number of users This value must be between 1 and 448 no_limit Specify that the maximum user limit will be set to 448 Restrictions Only Administrators Operators and Power Users can issue this command Example To configure 802 1X number of users to be limited to 200 DGS 3000 26TC admin config 802 1x max_users 200 Command config 802 1x max_users 200 Success DGS 3000 26TC admin confi...

Page 52: ...535 seconds supp_timeout Optional The initialization value of the aWhile timer when timing out the supplicant Its default value is 30 seconds and can be any integer value among 1 to 65535 sec 1 65535 Enter the supplicant timeout value here This value must be between 1 and 65535 seconds server_timeout Optional The initialization value of the aWhile timer when timing out the authentication server It...

Page 53: ... Specify the authentication as the port based mode portlist Enter the list of ports used for the configuration here all Specify that all ports will be used mac_based ports Specify the authentication as the MAC based mode portlist Enter the list of ports used for the configuration here all Specify that all ports will be used mac_address Optional Specify the MAC address of client macaddr Enter the M...

Page 54: ... authenticate the device connected to the port During the re authentication period the port status remains authorized until failed re authentication Format config 802 1x reauth port_based ports portlist all mac_based ports portlist all mac_address macaddr Parameters port_based ports Specify the authentication as the port based mode portlist Enter the list of ports used for the configuration here a...

Page 55: ... assigned to guest VLAN can t be deleting Format create 802 1x guest_vlan vlan_name 32 Parameters vlan_name 32 Enter the VLAN to be guest VLAN The VLAN name can be up to 32 characters long Restrictions Only Administrators Operators and Power Users can issue this command Example To create a VLAN named guestVLAN as 802 1X guest VLAN DGS 3000 26TC admin create 802 1x guest_vlan guestVLAN Command crea...

Page 56: ...nd is used to configure guest VLAN setting If the specific port state is changed from enabled state to disable state this port will move to its original VLAN Format config 802 1x guest_vlan ports portlist all state enable disable Parameters ports A range of ports enable or disable guest VLAN function portlist Enter the list of ports used for the configuration here all Specify that all the port wil...

Page 57: ...2 1X traps Format config 802 1x trap state enable disable Parameters enable Specify to enable the sending of 802 1x traps disable Specify to disable the sending of 802 1x traps Restrictions Only Administrators Operators and Power Users can issue this command Example This example shows how to enable the trap state for 802 1x DGS 3000 26TC admin config 802 1x trap state enable Command config 802 1x ...

Page 58: ...N Setting Guest VLAN guestVLAN Enabled Guest VLAN Ports 2 8 DGS 3000 26TC admin show auth_statistics 4 22 Description This command is used to display information of authenticator statistics Format show auth_statistics ports portlist Parameters ports Optional Specify a range of ports to be displayed portlist Enter the list of ports that will be displayed here Restrictions None Example To display au...

Page 59: ...spFramesRx 0 InvalidEapolFramesRx 0 EapLengthErrorFramesRx 0 LastEapolFrameVersion 0 LastEapolFrameSource 00 00 00 00 00 00 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show auth_diagnostics 4 23 Description This command is used to display information of authenticator diagnostics Format show auth_diagnostics ports portlist Parameters ports Optional Specify a range of ports to be d...

Page 60: ...d 0 EapStartsWhileAuthenticated 0 EapLogoffWhileAuthenticated 0 BackendResponses 0 BackendAccessChallenges 0 BackendOtherRequestsToSupplicant 0 BackendNonNakResponsesFromSupplicant 0 BackendAuthSuccesses 0 BackendAuthFails 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show auth_session_statistics 4 24 Description This command is used to display information of authenticator sessio...

Page 61: ...show auth_session_statistics ports 1 Mac Address 00 01 02 03 04 05 Port Number 1 SessionOctetsRx 0 SessionOctetsTx 0 SessionFramesRx 0 SessionFramesTx 0 SessionId SessionAuthenticMethod Remote Authentication Server SessionTime 0 SessionTerminateCause SupplicantLogoff SessionUserName CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh ...

Page 62: ...g authen server_group tacacs xtacacs tacacs radius string 15 add delete server_host ipaddr ipv6 ipv6addr protocol tacacs xtacacs tacacs radius delete authen server_group string 15 show authen server_group string 15 create authen server_host ipaddr ipv6 ipv6addr protocol tacacs xtacacs tacacs radius port int 1 65535 key key_string 254 none encryption_key key_string 344 timeout int 1 255 retransmit ...

Page 63: ...tors can issue this command Example To enable the password encryption DGS 3000 26TC admin enable password encryption Command enable password encryption Success DGS 3000 26TC admin disable password encryption 5 2 Description This command is used to disable password encryption The user account configuration information will be stored in the configuration file and can be applied to the system later W...

Page 64: ...escription This command is used to enable system access authentication policy Enable system access authentication policy When authentication is enabled the device will adopt the login authentication method list to authenticate the user for login and adopt the enable authentication method list to authenticate the enable password for promoting the user s privilege to Admin level Format enable authen...

Page 65: ...ticate the user for login and adopt the local enable password to authenticate the enable password for promoting the user s privilege to Admin level Format disable authen_policy Parameters None Restrictions Only Administrators can issue this command Example To disable system access authentication policy DGS 3000 26TC admin disable authen_policy Command disable authen_policy Success DGS 3000 26TC ad...

Page 66: ...uccess DGS 3000 26TC admin disable authen_policy_encryption 5 6 Description This command is used to disable the authentication policy encryption When disabled TACACS and RADIUS key will be in the plain text form Format disable authen_policy_encryption Parameters None Restrictions Only Administrators can issue this command Example To disable the authentication policy encryption DGS 3000 26TC admin ...

Page 67: ...6TC admin show authen_policy Command show authen_policy Authentication Policy Enabled DGS 3000 26TC admin create authen_login 5 8 Description This command is used to create a user defined method list of authentication methods for user login The maximum supported number of the login method lists is 8 Format create authen_login method_list_name string 15 Parameters string 15 Enter the user defined m...

Page 68: ...e user privilege level is assigned only If user wants to get admin privilege level user must use the enable admin command to promote his privilege level But when local method is used the privilege level will depend on this account privilege level stored in the local device Format config authen_login default method_list_name string 15 method tacacs xtacacs tacacs radius server_group string 15 local...

Page 69: ...thentication methods for user login Format delete authen_login method_list_name string 15 Parameters string 15 Enter the user defined method list name This value can be up to 15 characters long Restrictions Only Administrators can issue this command Example To delete a user defined method list for user login DGS 3000 26TC admin delete authen_login method_list_name login_list_1 Command delete authe...

Page 70: ...od_list_name login_list_1 Command show authen_login method_list_name login_list_1 Method List Name Priority Method Name Comment login_list_1 1 tacacs Built in Group 2 tacacs Built in Group 3 mix_1 User defined Group 4 local Keyword DGS 3000 26TC admin create authen_enable 5 12 Description This command is used to create a user defined method list of authentication methods for promoting user s privi...

Page 71: ...in the device is used to authenticate this user s password Format config authen_enable default method_list_name string 15 method tacacs xtacacs tacacs radius server_group string 15 local _enable none Parameters default The default method list of authentication methods method_list_name The user defined method list of authentication methods string 15 Enter the method list name here This value can be...

Page 72: ...at delete authen_enable method_list_name string 15 Parameters string 15 Enter the user defined method list name This value can be up to 15 characters long Restrictions Only Administrators can issue this command Example To delete a user defined method list for promoting user s privilege to Admin level DGS 3000 26TC admin delete authen_enable method_list_name enable_list_1 Command delete authen_enab...

Page 73: ...st_1 Method List Name Priority Method Name Comment enable_list_1 1 tacacs Built in Group 2 tacacs Built in Group 3 mix_1 User defined Group 4 local_enable Keyword DGS 3000 26TC admin config authen application 5 16 Description This command is used to configure login or enable method list for all or the specified application Format config authen application console telnet ssh http all login enable d...

Page 74: ...ccess DGS 3000 26TC admin show authen application 5 17 Description This command is used to display the login enable method list for all applications Format show authen application Parameters None Restrictions Only Administrators can issue this command Example To display the login enable method list for all applications DGS 3000 26TC admin show authen application Command show authen application App...

Page 75: ...authen server_group mix_1 Command create authen server_group mix_1 Success DGS 3000 26TC admin config authen server_group 5 19 Description This command is used to add or remove an authentication server host to or from the specified server group Built in server group TACACS XTACACS TACACS RADIUS accepts the server host with the same protocol only but user defined server group can accept server host...

Page 76: ...l will be used radius Specify that the RADIUS authentication protocol will be used Restrictions Only Administrators can issue this command Example To add an authentication server host to an server group DGS 3000 26TC admin config authen server_group mix_1 add server_host 10 1 1 222 protocol tacacs Command config authen server_group mix_1 add server_host 10 1 1 222 protocol tacacs Success DGS 3000 ...

Page 77: ...roup string 15 Parameters string 15 Optional Enter the built in or user defined server group name This value can be up to 15 characters long Restrictions Only Administrators can issue this command Example To display all authentication server groups DGS 3000 26TC admin show authen server_group Command show authen server_group Group Name IP Address Protocol mix_1 10 1 1 222 tacacs 10 1 1 223 tacacs ...

Page 78: ... Default value for RADIUS is 1812 int 1 65535 Enter the authentication protocol port number here This value must be between 1 and 65535 key Optional The key for TACACS and RADIUS authentication If the value is null no encryption will apply This value is meaningless for TACACS and XTACACS key_string 254 Enter the TACACS or the RADIUS key here This key can be up to 254 characters long none No encryp...

Page 79: ...ber of authentication protocol for server host Default value for TACACS XTACACS TACACS is 49 Default value for RADIUS is 1812 int 1 65535 Enter the port number here This value must be between 1 and 65535 key Optional The key for TACACS and RADIUS authentication If the value is null no encryption will apply This value is meaningless for TACACS and XTACACS key_string 254 Enter the TACACS key here Th...

Page 80: ...ipv6 ipv6addr protocol tacacs xtacacs tacacs radius Parameters ipaddr Enter the server host s IP address ipv6 Specify the server host IPv6 address ipv6addr Enter the server host IPv6 address protocol Specify that server host s authentication protocol tacacs Server host s authentication protocol xtacacs Server host s authentication protocol tacacs Server host s authentication protocol radius Server...

Page 81: ...rver_host IP Address Protocol Port Timeout Retransmit Key 10 1 1 222 tacacs 15555 10 This is a secret Total Entries 1 DGS 3000 26TC admin config authen parameter response_timeout 5 26 Description This command is used to configure the amount of time waiting or user input on console Telnet SSH application Format config authen parameter response_timeout int 0 255 Parameters int 0 255 Enter the timeou...

Page 82: ...elnet or SSH application Format config authen parameter attempt int 1 255 Parameters int 1 255 Enter the amount of attempts for user s trying to login or promote the privilege on console Telnet or SSH This value must be between 1 and 255 Default value is 3 Restrictions Only Administrators can issue this command Example To configure the maximum attempts for user s trying to login or promote the pri...

Page 83: ...min level When the user enters this command the authentication method TACACS XTACACS TACACS user defined server groups local_enable or none will be used to authenticate the user Because TACACS XTACACS and RADIUS don t support enable function in itself if user wants to use either one of these 3 protocols to do enable authentication user must create a special account on the server host first which h...

Page 84: ... in the command the user can select to input the password in the plain text form or in the encrypted form The encryption algorithm is based on SHA 1 Format config admin local_enable encrypt plain_text sha_1 password Parameters encrypt Optional Specify the password form plain_text Specify the password in plain text form sha_1 Specify the password in SHA 1 encrypted form password Optional Enter the ...

Page 85: ...create accounting method_list_name shell_acct Success DGS 3000 26TC admin config accounting 5 32 Description This command is used to configure a user defined or default method list of accounting methods Format config accounting default method_list_name string 15 method tacacs radius server_group string 15 none Parameters default Specify the default method list of accounting methods method_list_nam...

Page 86: ... accounting method_list_name shell_acct method tacacs radius Success DGS 3000 26TC admin delete accounting method_list_name 5 33 Description This command is used to delete a user defined method list of accounting methods Format delete accounting method_list_name string 15 Parameters string 15 Enter the built in or user defined method list Restrictions Only Administrators can issue this command Exa...

Page 87: ...ll_acct DGS 3000 26TC admin show accounting method_list_name shell_acct Command show accounting method_list_name shell_acct Method List Name Priority Method Name Comment shell_acct 1 tacacs Built in Group 2 radius Built in Group DGS 3000 26TC admin config accounting service command 5 35 Description This command is used to configure the state of the specified accounting service Format config accoun...

Page 88: ...ers network Accounting service for 802 1X JWAC and WAC port access control By default the service is disabled shell Accounting service for shell events When user logs on or out the Switch via the console Telnet or SSH and timeout occurs accounting information will be collected and sent to RADIUS server By default the service is disabled system Accounting service for system events reset reboot By d...

Page 89: ...ow accounting service 5 37 Description This command is used to show the status of RADIUS accounting services Format show accounting service Parameters None Restrictions None Example To show information of RADIUS accounting services DGS 3000 26TC admin show accounting service Command show accounting service Accounting State Method Network Disabled Shell Disabled System Disabled DGS 3000 26TC admin ...

Page 90: ...d show aaa Authentication Policy Enabled Accounting Network Service State Disabled Accounting Network Service Method Accounting Shell Service State Disabled Accounting Shell Service Method Accounting System Service State Disabled Accounting System Service Method Accounting Admin Command Service Method Accounting Operator Command Service Method Accounting PowerUser Command Service Method Accounting...

Page 91: ...xffff dst_port value 0 65535 mask hex 0x0 0xffff protocol_id value 0 255 user_define hex 0x0 0xffffffff mask hex 0x0 0xffffffff packet_content offset_chunk_1 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_2 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_3 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_4 hex 0x0 0xffffffff mask hex 0x0 0xffffffff ipv6 class value 0 255 fl...

Page 92: ...VLAN Tag 7 MAC SA Ethernet Type Source IPv4 ARP sender IP Outer VLAN Tag 8 LLC Header SNAP Header Outer VLAN Tag 9 Source IPv6 Address Class IPv6 Protocol Next Header Outer VLAN Tag 10 Destination IPv6 Address Class IPv6 Protocol Next Header Outer VLAN Tag NOTE Profile Types 7 and 8 are not user configurable Only system applications are allowed to create this type of profiles Format create access_...

Page 93: ...l the flags will be used for the TCP mask urg Optional Specify that the TCP flag field will be set to urg ack Optional Specify that the TCP flag field will be set to ack psh Optional Specify that the TCP flag field will be set to psh rst Optional Specify that the TCP flag field will be set to rst syn Optional Specify that the TCP flag field will be set to syn fin Optional Specify that the TCP flag...

Page 94: ... type Optional Specify the inclusion of the ICMP type field in the mask code Optional Specify the inclusion of the ICMP code field in the mask Restrictions Only Administrators Operators and Power Users can issue this command Example To create three access profiles DGS 3000 26TC admin create access_profile profile_id 1 profile_name t1 ethernet vlan source_mac 00 00 00 00 00 01 destination_mac 00 00...

Page 95: ...ess_profile profile_id 1 Command delete access_profile profile_id 1 Success DGS 3000 26TC admin config access_profile 6 3 Description This command is used to configure an access list entry The ACL mirror function works after the mirror has been enabled and the mirror port has been configured using the mirror command When applying an access rule to a target the setting specified in the VLAN field w...

Page 96: ...ultiple ports auto_assign Specify that the access ID will automatically be assigned value 1 256 Enter the access ID used here This value must be between 1 and 256 ethernet Specify to configure the ethernet access profile vlan Optional Specify the VLAN name vlan_name 32 Enter the name of the VLAN here This name can be up to 32 characters long vlan_id Optional Specify the VLAN ID used vlanid 1 4094 ...

Page 97: ...e configured hex 0x0 0xffff Enter the destination port mask here flag Optional Specify the TCP flag fields all Specify that all the TCP flags will be used in this configuration urg Optional Specify that the TCP flag field will be set to urg ack Optional Specify that the TCP flag field will be set to ack psh Optional Specify that the TCP flag field will be set to psh rst Optional Specify that the T...

Page 98: ... 0x0 0xffff Enter the TCP source port mask value here dst_port Optional Specify the value of the IPv6 Layer 4 TCP destination port value 0 65535 Enter the TCP destination port value here This value must be between 0 and 65535 mask Specify an additional mask parameter that can be configured hex 0x0 0xffff Enter the TCP destination port mask value here udp Optional Specify to configure the UDP param...

Page 99: ...bound with the flow_meter all matching packets are counted If the rule is bound with the flow_meter then the counter is overridden enable Specify that the ACL counter feature will be enabled disable Specify that the ACL counter feature will be disabled mirror Specify that packets matching the access rules are copied to the mirror port deny Specify that packets matching the access rule are filtered...

Page 100: ...ame 32 Enter the profile name used here This name can be up to 32 characters long Restrictions None Example To display the current access list table DGS 3000 26TC admin show access_profile Command show access_profile Access Profile Table Total User Set Rule Entries 4 Total Used HW Entries 128 Total Available HW Entries 896 Profile ID 1 Profile name EtherACL Type Ethernet MASK on VLAN 0xFFF 802 1p ...

Page 101: ...e name IPv6ACL Type IPv6 MASK on Class TCP Available HW Entries 255 Rule ID 1 Ports 3 Match on Class 0 Action Permit Profile ID 4 Profile name PCACL Type User Defined MASK on offset_chunk_1 0 value 0x00000000 offset_chunk_2 1 value 0x00000000 offset_chunk_3 2 value 0x00000000 offset_chunk_4 3 value 0x00000000 Available HW Entries 255 Rule ID 1 Ports 4 Match on offset_chunk_1 0 value 0x0000FFEE Mas...

Page 102: ...file ID 2 Profile Name 2 Type Ethernet Mask on VLAN 0xF Source MAC FF FF FF 00 00 00 Destination MAC 00 00 00 FF FF FF Available HW Entries 255 Rule ID 22 Ports 1 7 Match on VLAN ID 8 Mask 0xFFF Source MAC 00 01 02 03 04 05 Mask FF FF FF FF FF FF Destination MAC 00 05 04 03 02 00 Mask FF FF FF FF FF 00 Action Deny DGS 3000 26TC admin The following example displays the packet content mask profile f...

Page 103: ...eak burst size There are two cases for mapping the color of a packet Color blind mode and Color aware mode In the Color blind case the determination for the packet s color is based on the metering result In the Color aware case the determination for the packet s color is based on the metering result and the ingress DSCP When color blind or color aware is not specified color blind is the default mo...

Page 104: ...tted bandwidth in Kbps for the flow value 1 1048576 Enter the rate for single rate two color mode here This value must be between 1 and 1048576 burst_size Optional Specify the burst size for the single rate two color mode The unit is Kbytes value 1 262144 Enter the burst size value here This value must be between 1 and 262144 rate_exceed Specify the action for packets that exceeds the committed ra...

Page 105: ...re This value must be between 0 and 63 drop Drops the packet counter Optional Specify the ACL counter This is optional The default is disable The resource may be limited so that a counter cannot be turned on Counters will be cleared when the function is disabled enable Specify that the ACL counter option will be enabled disable Specify that the ACL counter option will be disabled sr_tcm Specify si...

Page 106: ...ble The resource may be limited so that a counter cannot be turned on Counters will be cleared when the function is disabled enable Enables the ACL counter option disable Disables the ACL counter option delete Deletes the specified flow_meter Restrictions Only Administrators Operators and Power Users can issue this command Example To configure a two rate three color flow meter DGS 3000 26TC admin ...

Page 107: ...abled Total Entries 1 DGS 3000 26TC admin config time_range 6 7 Description This command is used to define a specific range of time to activate a function on the Switch by specifying which time range in a day and which days in a week are covered in the time range Note that the specified time range is based on the SNTP time or the configured time If this time is not available the time range will no...

Page 108: ...n mon fri Sunday Monday and Friday delete Deletes a time range profile When a time_range profile has been associated with ACL entries deleting the time_range profile will fail Restrictions Only Administrators Operators and Power Users can issue this command Example To configure a time range named 1 that starts every Monday at 01 01 01am and ends at 02 02 02am DGS 3000 26TC admin config time_range ...

Page 109: ...Total Entries 1 DGS 3000 26TC admin show current_config access_profile 6 9 Description This command is used to display the ACL part of the current configuration when logged in with user level privileges The overall current configuration can be displayed by using the show config command which is accessible with administrator level privileges Format show current_config access_profile Parameters None...

Page 110: ...w current_config access_profile ACL create access_profile ethernet vlan profile_id 1 config access_profile profile_id 1 add access_id 1 ethernet vlan default port 1 permit create access_profile ip source_ip_mask 255 255 255 255 profile_id 2 config access_profile profile_id 2 add access_id 1 ip source_ip 10 10 10 10 port 2 deny DGS 3000 26TC admin ...

Page 111: ...ion This command is used to enter a static ARP entry into the Switch s ARP table Format create arpentry ipaddr macaddr Parameters ipaddr Enter the end node or station IP address macaddr Enter the corresponding MAC address of the IP address above Restrictions Only Administrators Operators and Power Users can issue this command Example To create a static ARP entry for the IP address 10 48 74 121 and...

Page 112: ... Power Users can issue this command Example To delete an entry of IP address 10 48 74 121 from the ARP table DGS 3000 26TC admin delete arpentry 10 48 74 121 Command delete arpentry 10 48 74 121 Success DGS 3000 26TC admin config arpentry 7 3 Description This command is used to configure a static entry s MAC address in the ARP table Specify the IP address and MAC address of the entry Format config...

Page 113: ... a dynamic ARP entry can remain in the Switch s ARP table without being accessed before it is dropped from the table Format config arp_aging time value 0 65535 Parameters value 0 65535 Enter the ARP age out time in minutes This value must be between 0 and 65535 minutes The default value is 20 Restrictions Only Administrators Operators and Power Users can issue this command Example To configure ARP...

Page 114: ...erface name or static entries Format show arpentry ipif ipif_name 12 ipaddress ipaddr static mac_address macaddr Parameters ipif Optional The name of the IP interface the end node or station for which the ARP table entry was made resides on ipif_name 12 Enter the IP interface name here This value can be up to 12 characters long ipaddress Optional The IP address of the end node or station ipaddr En...

Page 115: ...e 20 Interface IP Address MAC Address Type System 10 0 0 0 FF FF FF FF FF FF Local Broadcast System 10 1 1 1 00 02 03 04 05 06 Static System 10 1 1 2 00 02 03 04 05 06 Dynamic System 10 1 1 3 00 02 03 04 05 06 Static System 10 90 90 90 00 01 02 03 04 00 Local System 10 255 255 255 FF FF FF FF FF FF Local Broadcast Total Entries 6 DGS 3000 26TC admin ...

Page 116: ...fing_prevention add gateway_ip ipaddr gateway_mac macaddr ports portlist all delete gateway_ip ipaddr Parameters add Specify to add an ARP spoofing prevention entry gateway_ip Specify a gateway IP address to be configured ipaddr Enter the IP address used for this configuration here gateway_mac Specify a gateway MAC address to be configured macaddr Enter the MAC address used for this configuration ...

Page 117: ... 1 2 Success DGS 3000 26TC admin show arp_spoofing_prevention 8 2 Description This command is used to show the ARP spoofing prevention entry Format show arp_spoofing_prevention Parameters None Restrictions Only Administrators and Operators can issue this command Example To display the ARP spoofing prevention entries DGS 3000 26TC admin show arp_spoofing_prevention Command show arp_spoofing_prevent...

Page 118: ...re file path name and TFTP server IP address from the DHCP server Then the Switch will download the configuration file from the TFTP server for configuration of the system Format enable autoconfig Parameters None Restrictions Only Administrators and Operators can issue this command Example To enable autoconfig DGS 3000 26TC admin enable autoconfig Command enable autoconfig Success DGS 3000 26TC ad...

Page 119: ...Operators can issue this command Example To disable autoconfig DGS 3000 26TC admin disable autoconfig Command disable autoconfig Success DGS 3000 26TC admin show autoconfig 9 3 Description This command is used to display if the auto configuration is enabled or disabled Format show autoconfig Parameters None Restrictions None Example To show autoconfig status ...

Page 120: ...iguration settings from the network When timeout occurs the auto configuration operation will be stopped and the local configuration file will be used to configure the system Format config autoconfig timeout value 1 65535 Parameters value 1 65535 Enter the timeout length in seconds The default setting is 50 seconds Restrictions Only Administrator and Operator level users can issue this command Exa...

Page 121: ...e disable dhcp_option12 hostname hostname 63 clear_hostname state enable disable delete ipif ipif_name 12 ipv6address ipv6networkaddr all enable ipif ipif_name 12 all disable ipif ipif_name 12 all show ipif ipif_name 12 enable ipif_ipv6_link_local_auto ipif_name 12 all disable ipif_ipv6_link_local_auto ipif_name 12 all show ipif_ipv6_link_local_auto ipif_name 12 create account 10 1 Description Thi...

Page 122: ...admin dlink Command create account admin dlink Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3000 26TC admin To create the user level user Remote Manager DGS 3000 26TC admin create account user Remote Manager Command create account user Remote Manager Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3000 2...

Page 123: ... form password the length is fixed to 35 bytes long The assword is case sensitive Restrictions Only Administrators can issue this command Example To configure the user password of dlink account DGS 3000 26TC admin config account dlink Command config account dlink Enter a old password Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3000 26TC admin To co...

Page 124: ...how account Command show account Current Accounts Username Access Level admin Admin oper Operator power Power_user user User Total Entries 4 DGS 3000 26TC admin delete account 10 4 Description This command is used to delete an existing account Format delete account username Parameters username Enter to delete the name of the user Restrictions Only Administrators can issue this command Example To d...

Page 125: ...admin delete account System Command delete account System Success DGS 3000 26TC admin show switch 10 5 Description This command is used to display the Switch information Format show switch Parameters None Restrictions None Example The following is an example for display of the Switch information ...

Page 126: ...ystem Contact Spanning Tree Disabled GVRP Disabled IGMP Snooping Disabled MLD Snooping Disabled VLAN Trunk Disabled Telnet Enabled TCP 23 Web Enabled TCP 80 SNMP Disabled SSL Status Disabled CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All enable telnet 10 6 Description This command is used to enable Telnet and configure port number Format enable telnet tcp_port_number 1 65535 Parameters...

Page 127: ...None Restrictions Only Administrators and Operators can issue this command Example To disable Telnet DGS 3000 26TC admin disable telnet Command disable telnet Success DGS 3000 26TC admin enable web 10 8 Description This command is used to enable HTTP and configure port number Format enable web tcp_port_number 1 65535 Parameters tcp_port_number 1 65535 Optional The TCP port number TCP ports are num...

Page 128: ...ommand enable web 80 Note SSL will be disabled if web is enabled Success DGS 3000 26TC admin disable web 10 9 Description This command is used to disable HTTP Format disable web Parameters None Restrictions Only Administrators and Operators can issue this command Example To disable HTTP DGS 3000 26TC admin disable web Command disable web Success DGS 3000 26TC admin reboot 10 10 Description This co...

Page 129: ...setting will be reset to the default setting by the reset config command For the reset system command the device will store the reset setting in the NVRAM and then reboot the system The reset command will not reset IP address log user accounts and banner configured on the system Format reset config system force_agree Parameters config Optional All parameters are reset to default settings However t...

Page 130: ...and is used to select a firmware file as a boot up file This command is required to be supported when multiple firmware images are supported Format config firmware image path_filename64 boot_up Parameters path_filename64 Enter a firmware file on the device file system boot_up Specify the firmware as the boot up firmware Restrictions Only Administrators can issue this command Example To configure c...

Page 131: ...n IP interface DGS 3000 26TC admin create ipif Inter2 192 168 16 1 24 default state enable Command create ipif Inter2 192 168 16 1 24 default state enable Success DGS 3000 26TC admin config ipif 10 14 Description This command is used to configure the IP interface Format config ipif ipif_name 12 ipaddress network_address vlan vlan_name 32 state enable disable bootp dhcp ipv6 ipv6address ipv6network...

Page 132: ...will be disabled dhcpv6_client Specify the DHCPv6 client state of the interface enable Enable the DHCPv6 client state of the interface disable Disable the DHCPv6 client state of the interface dhcp_option12 Specify the DHCP option 12 hostname Specify the host name to be inserted in the DHCPDISCOVER and DHCPREQUEST message hostname 63 Enter a name starting with a letter end with a letter or digit an...

Page 133: ...fix There can be multiple IPv6 addresses defined on an interface ipv6networkaddr Enter the IPv6 address used here all Specify that all the IP interfaces will be used Restrictions Only Administrators Operators and Power Users can issue this command Example To delete an IP interface DGS 3000 26TC admin delete ipif newone Command delete ipif newone Success DGS 3000 26TC admin enable ipif 10 16 Descri...

Page 134: ...command is used to disable an IP interface Format disable ipif ipif_name 12 all Parameters ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long all Specify that all the IP interfaces will be disabled Restrictions Only Administrators Operators and Power Users can issue this command Example To disable an IP interface DGS 3000 26TC admin disable ipif newone Com...

Page 135: ...State Disabled DHCP Option12 Host Name Total Entries 1 DGS 3000 26TC admin enable ipif_ipv6_link_local_auto 10 19 Description This command is used to enable the auto configuration of link local address when there are no IPv6 addresses explicitly configured When an IPv6 address is explicitly configured the link local address will be automatically configured and the IPv6 processing will be started W...

Page 136: ...nk_local_auto newone Command enable ipif_ipv6_link_local_auto newone Success DGS 3000 26TC admin disable ipif_ipv6_link_local_auto 10 20 Description This command is used to disable the auto configuration of link local address when no IPv6 address are configured Format disable ipif_ipv6_link_local_auto ipif_name 12 all Parameters ipif_name 12 Enter the IP interface name used here This name can be u...

Page 137: ...address automatic configuration state Format show ipif_ipv6_link_local_auto ipif_name 12 Parameters ipif_name 12 Optional Enter the Ip interface name used here This name can be up to 12 characters long Restrictions Only Administrators Operators and Power Users can issue this command Example T o display the link local address automatic configuration state DGS 3000 26TC admin show ipif_ipv6_link_loc...

Page 138: ...protection can only be enabled on STP disabled port BPDU protection has high priority than fbpdu setting configured by configure STP command in determination of BPDU handling That is when fbpbu is configured to forward STP BPDU but BPDU protection is enabled then the port will not forward STP BPDU Format config bpdu_protection ports portlist all state enable disable mode drop block shutdown 1 Para...

Page 139: ... enable the port Format config bpdu_protection recovery_timer sec 60 1000000 infinite Parameters sec 60 1000000 Enter the timer in seconds used by the Auto Recovery mechanism to recover the port The valid range is 60 to 1000000 infinite The port will not be auto recovered Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the bpdu_protection reco...

Page 140: ...strators Operators and Power Users can issue this command Example To config the bpdu_protection trap state as both for the entire switch DGS 3000 26TC admin config bpdu_protection trap both Commands config bpdu_protection trap both Success DGS 3000 26TC admin enable bpdu_protection 11 4 Description This command is used to enable BPDU protection function globally for the Switch Format enable bpdu_p...

Page 141: ...o disable bpdu_protection function globally for the entire switch DGS 3000 26TC admin disable bpdu_protection Commands disable bpdu_protection Success DGS 3000 26TC admin show bpdu_protection 11 6 Description This command is used to display BPDU protection global configuration or per port configuration and current status Format show bpdu_protection ports portlist Parameters ports Optional Specify ...

Page 142: ...GS 3000 26TC admin To show the bpdu_protection status ports 1 12 DGS 3000 26TC admin show bpdu_protection ports 1 12 Commands show bpdu_protection ports 1 12 Port State Mode Status 1 Enabled shutdown Normal 2 Enabled shutdown Normal 3 Enabled shutdown Normal 4 Enabled shutdown Normal 5 Enabled shutdown Under Attack 6 Enabled shutdown Normal 7 Enabled shutdown Normal 8 Enabled shutdown Normal 9 Ena...

Page 143: ...ay be caused by many factors 1 When the port has a normal cable connection but the remote partner is powered off the cable diagnosis can still diagnose the health of the cable as if the remote partner is powered on 2 When the port does not have any cable connection the result of the test will indicate no cable 3 The test will detect the type of error and the position where the error occurs When th...

Page 144: ...When there is no link partner with errors this command can detect whether the error is open short or crosstalk In this case this command can also detect the distance of the error NOTE This test is only for copper cable The fiber port is not tested For the combo ports only the copper media will be tested The cable diagnosis does not support on the Pair 1 and 4 if the link partner is FE port If the ...

Page 145: ...booting procedure all configuration command should not be logged When the user under AAA authentication the user name should not changed if user uses enable admin command to replace its privilege Format enable command logging Parameters None Restrictions Only Administrators can issue this command Example To enable the command logging function DGS 3000 26TC admin enable command logging Command enab...

Page 146: ...d disable command logging Success DGS 3000 26TC admin show command logging 13 3 Description This command is used to display the Switch s general command logging configuration status Format show command logging Parameters None Restrictions Only Administrators and Operators can issue this command Example To show the command logging configuration status DGS 3000 26TC admin show command logging Comman...

Page 147: ...1 config authentication server failover local permit block show authorization show authentication show authentication guest_vlan show authentication mac_format show authentication ports portlist create authentication guest_vlan 14 1 Description This command is used to assign a static VLAN to be a guest VLAN The specific VLAN which is assigned to be a guest VLAN must already exist The specific VLAN...

Page 148: ...depending on the individual module s settings Authorization for attributes is enabled by default Format enable authorization attributes Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example This example sets authorization global state enabled DGS 3000 26TC admin enable authorization attributes Command enable authorization attributes Success DGS 3...

Page 149: ...tion guest_vlan vlan guestVLAN Command delete authentication guest_vlan vlan guestVLAN Success DGS 3000 26TC admin disable authorization attributes 14 4 Description This command is used to disable authorization When authorization for attributes is disabled the authorized attributes for example VLAN 802 1p default priority and ACL assigned by the RADIUS server or local database will be ignored even...

Page 150: ...LAN name can be up to 32 characters long vlanid Specify the guest VLAN VID vlanid 1 4094 Enter the guest VLAN VID The VLAN ID value must be between 1 and 4094 add Specify to add a port list to the guest VLAN delete Specify to delete a port list from the guest VLAN ports Specify a port or range of ports to configure portlist Enter a range of ports to configure all Specify to configure all ports Res...

Page 151: ...he as delimiter the format is AA BB CC DD EE FF colon Specify using the as delimiter the format is AA BB CC DD EE FF dot Specify using the as delimiter the format is AA BB CC DD EE FF none Specify not using any delimiter the format is AABBCCDDEEFF number Specify the delimiter number used 1 Single delimiter the format is AABBCC DDEEFF 2 Double delimiter the format is AABB CCDD EEFF 5 Multiple delim...

Page 152: ... mode will be enabled on the specified VLAN disable Specify that the authentication mode will be disabled on the specified VLAN multi_authen_methods Specify the compound authentication method If the compound authentication method selected includes IMPB ex dot1x_impb impb_jwac impb_wac mac_impb and the other method 802 1X JWAC WAC or MAC is globally disabled only IMPB will be used If the mac_jwac o...

Page 153: ... any Success DGS 3000 26TC admin config authentication server failover 14 8 Description This command is used to configure authentication server failover function Format config authentication server failover local permit block Parameters local Uses local DB to authenticate the client permit The client is always regarded as authenticated block Blocks the client This is the default Restrictions Only ...

Page 154: ...ictions None Example This example displays authorization status DGS 3000 26TC admin show authorization Command show authorization Authorization for Attributes Enabled DGS 3000 26TC admin show authentication 14 10 Description This command is used to display the authentication server failover configuration Format show authentication Parameters None Restrictions None Example To show authentication gl...

Page 155: ...sed to display guest VLAN information Format show authentication guest_vlan Parameters None Restrictions None Example To display the guest VLAN setting DGS 3000 26TC admin show authentication guest_vlan Command show authentication guest_vlan Guest VLAN VID Guest VLAN Member Ports Total Entries 0 DGS 3000 26TC admin show authentication mac_format 14 12 Description This command is used to display th...

Page 156: ...thentication mac_format Case Uppercase Delimiter None Delimiter Number 5 DGS 3000 26TC admin show authentication ports 14 13 Description This command is used to display the authentication method and authorization mode on ports Format show authentication ports portlist Parameters portlist Optional Enter to display compound authentication on specific port s Restrictions None Example To display the a...

Page 157: ...hernet Switch CLI Reference Guide 153 DGS 3000 26TC admin show authentication ports 1 3 Command show authentication ports 1 3 Port Methods Auth Mode Authentication VLAN s 1 None Host based 2 None Host based 3 None Host based DGS 3000 26TC admin ...

Page 158: ...e each filter type include includes lines that contain the specified filter string exclude excludes lines that contain the specified filter string begin The first line that contains the specified filter string will be the first line of the output The relationship of multiple filter strings following the same filter type is OR That is one line is qualified if one of specified filter strings is matc...

Page 159: ...first line of the output filter_string 80 A filter string is enclosed by symbol Thus the filter string itself cannot contain the character The filter string is case sensitive This value can be up to 80 characters long filter_string 80 Optional A filter string is enclosed by symbol Thus the filter string itself cannot contain the character The filter string is case sensitive This value can be up to...

Page 160: ...xt Entry a All config configuration 15 2 Description This command is used to select a configuration file as the next boot up configuration or to apply a specific configuration to the system This command is required when multiple configuration files are supported Format config configuration pathname 64 boot_up active Parameters pathname 64 Enter a configuration file on the device file system boot_u...

Page 161: ...he indicated pathname The pathname can be up to 64 characters long log Optional Specify to save the log all Optional Specify to save changes to an active current configuration to the log file Restrictions Only Administrators and Operators can issue this command Example To save the current configuration to the bootup configuration file DGS 3000 26TC admin save Command save Saving all configurations...

Page 162: ...ve all Command save all Saving all configurations and logs to NV RAM Done DGS 3000 26TC admin show boot file 15 4 Description This command is used to display the configuration file and firmware image assigned as boot up files Format show boot_file Parameters None Restrictions None Example To display the boot file DGS 3000 26TC admin show boot_file Command show boot_file Boot up Firmware c runtime ...

Page 163: ...1sec 1min level int 0 7 state enable disable config cfm lock md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid int 1 8191 period 1sec 1min level int 0 7 state enable disable 1 delete cfm mep mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 delete cfm ma string 22 ma_index uint 1 4294967295 md stri...

Page 164: ...16 1 Description This command is used to create a maintenance domain Format create cfm md string 22 md_index uint 1 4294967295 level int 0 7 Parameters string 22 Enter the maintenance domain name This name can be up to 22 characters long md_index Optional Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295...

Page 165: ...g must be automatic in order for the MIPs to be created on this device explicit MIPs can be created on any ports in this MD only if the next existent lower level has an MEP configured on that port and that port is not configured with an MEP of this MD sender_id Specify the control transmission of the sender ID TLV none Specify not to transmit the sender ID TLV This is the default value chassis Tra...

Page 166: ... and Power Users can issue this command Example To create a maintenance association called op1 and assign it to the maintenance domain op_domain DGS 3000 26TC admin create cfm ma op1 md op_domain Command create cfm ma op1 md op_domain Success DGS 3000 26TC admin config cfm ma 16 4 Description This command is used to configure the parameters of a maintenance association The MEP list specified for a...

Page 167: ... this MA is associated with This is the default value sender_id This is the control transmission of the sender ID TLV none Specify not to transmit the sender ID TLV This is the default value chassis Transmits the sender ID TLV with the chassis ID information manage Transmits the sender ID TLV with the manage address information chassis_manage Transmits the sender ID TLV with the chassis ID informa...

Page 168: ...ecify the MEP ID It should be configured in the MA s MEPID list int 1 8191 Enter the MEP ID used here This value must be between 1 and 8191 md Specify the maintenance domain name string 22 Enter the maintenance domain name used here This name can be up to 22 characters long md_index Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must...

Page 169: ...rm_time centisecond 250 1000 alarm_reset_time centisecond 250 1000 1 Parameters mepname Specify the MEP name string 32 Enter the MEP name used here This name can be up to 32 characters long mepid Specify the MEP ID int 1 8191 Enter the MEP ID used here This value must be between 1 and 8191 md Specify the maintenance domain name string 22 Enter the maintenance domain name used here This name can be...

Page 170: ...econd the range is 250 1000 The default value is 250 centisecond 250 1000 Enter the alarm time value here This value must be between 250 and 1000 centiseconds alarm_reset_time Specify the dormant duration time before a defect is triggered before the fault can be re alarmed The unit is centisecond the range is 250 1000 The default value is 1000 centisecond 250 1000 Enter the alarm reset time value ...

Page 171: ...he client level ID used here This value must be between 0 and 7 state Specify the AIS function state used enable Specify that AIS function state will be enabled disable Specify that AIS function state will be disabled Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the AIS function so that it is enabled and has a client level of 5 DGS 3000 26T...

Page 172: ...CK function state used enable Specify that LCK function state will be enabled disable Specify that LCK function state will be disabled Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the LCK function state as enabled and specify a client level of 5 DGS 3000 26TC admin config cfm lock md op domain ma op ma mepid 1 state enable level 5 Command c...

Page 173: ...admin delete cfm ma 16 10 Description This command is used to delete a created maintenance association All MEPs created in the maintenance association will be deleted automatically Format delete cfm ma string 22 ma_index uint 1 4294967295 md string 22 md_index uint 1 4294967295 Parameters string 22 Enter the maintenance association name This name can be up to 22 characters long ma_index Specify th...

Page 174: ...eted automatically Format delete cfm md string 22 md_index uint 1 4294967295 Parameters string 22 Enter the maintenance domain name This name can be up to 22 characters long md_index Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295 Restrictions Only Administrators Operators and Power Users can issue thi...

Page 175: ...able the CFM globally DGS 3000 26TC admin enable cfm Command enable cfm Success DGS 3000 26TC admin disable cfm 16 13 Description This command is used to disable the CFM globally Format disable cfm Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable the CFM globally DGS 3000 26TC admin disable cfm Command disable cfm Success DGS 3000...

Page 176: ...hat the CFM function is disabled on that port Format config cfm ports portlist state enable disable Parameters portlist Enter the list of ports used for this configuration state Specify that the the CFM function will be enabled or disabled enable Specify that the CFM function will be enabled disable Specify that the CFM function will be disabled Restrictions Only Administrators Operators and Power...

Page 177: ...name used here This name can be up to 22 characters long md_index Optional Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295 ma Optional Specify the maintenance association name string 22 Enter the maintenance association name used here This name can be up to 22 characters long ma_index Optional Specify ...

Page 178: ...md op_domain MD Index 1 MD Name op_domain MD Level 2 MIP Creation Explicit SenderID TLV None MA Index MA Name VID 1 op1 1 DGS 3000 26TC admin show cfm md op_domain ma op1 Command show cfm md op_domain ma op1 MA Index 1 MA Name op1 MA VID 1 MIP Creation Defer CCM Interval 1 second SenderID TLV Defer MEPID List 1 MEPID Direction Port Name MAC Address 1 Inward 2 mep1 00 01 02 03 04 02 DGS 3000 24TC a...

Page 179: ...m Reset Time 1000 centisecond 1 100 s Highest Fault None AIS State Disabled AIS Period 1 Second AIS Client Level Invalid AIS Status Not Detected LCK State Disabled LCK Period 1 Second LCK Client Level Invalid LCK Status Not Detected Out of Sequence CCMs 0 received Cross connect CCMs 0 received Error CCMs 0 received Normal CCMs 2 received Port Status CCMs 0 received If Status CCMs 0 received CCMs t...

Page 180: ...one Example To show the CFM faults DGS 3000 26TC admin show cfm fault Command show cfm fault MD Name MA Name MEPID Status op_domain op1 1 Cross connect CCM Received DGS 3000 26TC admin show cfm port 16 18 Description This command is used to show MEPs and MIPs created on a port Format show cfm port port level int 0 7 direction inward outward vlanid vlanid 1 4094 Parameters port Enter the port numbe...

Page 181: ...enance domain name here This name can be up to 22 characters long md_index Specify the MD index value used uint 1 4294967295 Enter the MD index value used here This value must be between 1 and 4294967295 ma Specify the maintenance association name string 22 Enter the maintenance association name here This name can be up to 22 characters long ma_index Specify the MA index value used uint 1 42949672...

Page 182: ...he MEP name used here This name can be up to 32 characters long mepid Specify the MEP ID used int 1 8191 Enter the MEP ID used here This value must be between 1 and 8191 md Specify the maintenance domain name string 22 Enter the maintenance domain name here This name can be up to 22 characters long md_index Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index v...

Page 183: ...eceived 4 Lost 0 0 loss DGS 3000 26TC admin cfm linktrace 16 21 Description This command is used to issue a CFM link track message Format cfm linktrace macaddr mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 ttl int 2 255 pdu_priority int 0 7 Parameters macaddr Enter the destination MAC address mepname Specify the MEP name used str...

Page 184: ...S 3000 26TC admin show cfm linktrace 16 22 Description This command is used to show the link trace responses The maximum link trace responses a device can hold is 128 Format show cfm linktrace mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 trans_id uint Parameters mepname Specify the MEP name used string 32 Enter the MEP name used...

Page 185: ... 2014 01 31 14 47 36 Hop MEPID MAC Address Forwarded Relay Action 1 30 00 26 81 34 19 Yes FDB 2 30 00 26 81 34 B8 No Hit DGS 3000 26TC admin To show the link trace reply when the all MPs reply LTRs function is disabled DGS 3000 26TC admin show cfm linktrace mepname mep1 trans_id 27 Command show cfm linktrace mepname mep1 trans_id 27 Transaction ID 27 From MEP mep1 to 32 00 70 89 31 06 Start Time 2...

Page 186: ... long ma_index Specify the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 mepid Optional Specify the MEP ID used int 1 8191 Enter the MEP ID used here This value must be between 1 and 8191 mepname Optional Specify the MEP name used string 32 Enter the MEP name used here This name can be up to 32 charact...

Page 187: ...l 16 25 Description This command is used to enable or disable the all MPs reply LTRs function Format config cfm mp_ltr_all enable disable Parameters enable Specify that the MP s reply to the LTR function will be set to all disable Disables sending the all MPs replay LTRs function Restrictions Only Administrators Operators and Power Users can issue this command Example To enable the all MPs reply L...

Page 188: ...o show remote MEPs Format show cfm remote_mep mepname string 32 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid int 1 8191 remote_mepid int 1 8191 Parameters mepname Specify the MEP name used string 32 Enter the MEP name used here This name can be up to 32 characters long md Specify the maintenance domain name string 22 Enter the maintenance domain name here T...

Page 189: ...Address 00 11 22 33 44 02 Status OK RDI Yes Port State Blocked Port Status Defect Blocked Interface Status Down Interface Status Defect No Last CCM Serial Number 1000 Sender Chassis ID 00 11 22 33 44 00 Sender Management Address SNMP UDP IPv4 10 90 90 90 161 Detect Time 2008 01 01 12 00 00 DGS 3000 26TC admin show cfm pkt_cnt 16 28 Description This command is used to show the CFM packet s RX TX co...

Page 190: ...0 0 0 0 0 0 0 0 3 0 0 0 0 0 0 0 0 4 0 0 0 0 0 0 0 0 5 0 0 0 0 0 0 0 0 6 0 0 0 0 0 0 0 0 7 0 0 0 0 0 0 0 0 8 0 0 0 0 0 0 0 0 9 0 0 0 0 0 0 0 0 10 0 0 0 0 0 0 0 0 11 0 0 0 0 0 0 0 0 12 0 0 0 0 0 0 0 0 13 0 0 0 0 0 0 0 0 14 0 0 0 0 0 0 0 0 15 0 0 0 0 0 0 0 0 16 0 0 0 0 0 0 0 0 17 0 0 0 0 0 0 0 0 18 0 0 0 0 0 0 0 0 19 0 0 0 0 0 0 0 0 20 0 0 0 0 0 0 0 0 21 0 0 0 0 0 0 0 0 22 0 0 0 0 0 0 0 0 23 0 0 0 0 ...

Page 191: ... 0 0 0 0 0 0 5 0 0 0 0 0 0 6 0 0 0 0 0 0 7 0 0 0 0 0 0 8 0 0 0 0 0 0 9 0 0 0 0 0 0 10 0 0 0 0 0 0 11 0 0 0 0 0 0 12 0 0 0 0 0 0 13 0 0 0 0 0 0 14 0 0 0 0 0 0 15 0 0 0 0 0 0 16 0 0 0 0 0 0 17 0 0 0 0 0 0 18 0 0 0 0 0 0 19 0 0 0 0 0 0 20 0 0 0 0 0 0 21 0 0 0 0 0 0 22 0 0 0 0 0 0 23 0 0 0 0 0 0 24 0 0 0 0 0 0 25 0 0 0 0 0 0 26 0 0 0 0 0 0 DGS 3000 26TC admin show cfm pkt_cnt ccm Command show cfm pkt_...

Page 192: ...e cleared rx Optional Specify to clear the RX counter tx Optional Specify to clear the TX counter If not specified both of them will be cleared ccm Optional Specify the CCM RX counters Restrictions Only Administrators Operators and Power Users can issue this command Example To clear the CFM packet s RX TX counters DGS 3000 26TC admin clear cfm pkt_cnt Command clear cfm pkt_cnt Success DGS 3000 26T...

Page 193: ... 255 igmp type value 0 255 tcp src_port value 0 65535 dst_port value 0 65535 flag all urg ack psh rst syn fin udp src_port value 0 65535 dst_port value 0 65535 protocol_id value 0 255 user_define hex 0x0 0xffffffff packet_content offset_0 15 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_16 31 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xff...

Page 194: ...cify the TCP source port mask hex 0x0 0xffff Enter the source TCP port mask here dst_port_mask Optional Specify the TCP destination port mask hex 0x0 0xffff Enter the destination TCP port mask here flag_mask Optional Specify the TCP flag field mask all Specify that the TCP flag field mask will be set to all urg Optional Specify that the TCP flag field mask will be set to urg ack Optional Specify t...

Page 195: ...cify an IPv6 source submask ipv6mask Enter the IPv6 source submask here destination_ipv6_mask Optional Specify an IPv6 destination submask ipv6mask Enter the IPv6 destination submask here Restrictions Only Administrators Operators and Power Users can issue this command Example To create CPU access list rules DGS 3000 26TC admin create cpu access_profile profile_id 1 ethernet vlan source_mac 00 00 ...

Page 196: ...5535 dst_port value 0 65535 flag all urg ack psh rst syn fin udp src_port value 0 65535 dst_port value 0 65535 protocol_id value 0 255 user_define hex 0x0 0xffffffff packet_content offset_0 15 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_16 31 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_32 47 hex 0x0 0xffffffff hex 0x0 0x...

Page 197: ...ode Optional Specify that the rule applies to the value of ICMP code traffic value 0 255 Enter the ICMP code value here This value must be between 0 and 255 igmp Optional Specify that the rule applies to IGMP traffic type Optional Specify that the rule applies to the value of IGMP type traffic value 0 255 Enter the IGMP type value here This value must be between 0 and 255 tcp Optional Specify that...

Page 198: ...ern offset of the frame will be between 64 and 79 hex 0x0 0xffffffff Enter the mask pattern offset of the frame between 64 and 79 here ipv6 Specify the rule applies to IPv6 fields class Optional Specify the value of IPv6 class value 0 255 Enter the IPv6 class value here This value must be between 0 and 255 flowlabel Optional Specify the value of IPv6 flowlabel hex 0x0 0xffff Enter the IPv6 flowlab...

Page 199: ... 11 code 32 port 1 deny Success DGS 3000 26TC admin enable cpu interface filtering 17 4 Description This command is used to enable CPU interface filtering control Format enable cpu_interface_filtering Parameters None Restrictions Only Administrators and Operators can issue this command Example To enable CPU interface filtering DGS 3000 26TC admin enable cpu_interface_filtering Command enable cpu_i...

Page 200: ...face_filtering Command disable cpu_interface_filtering Success DGS 3000 26TC admin show CPU access_profile 17 6 Description This command is used to display current access list table Format show cpu access_profile profile_id value 1 5 Parameters profile_id Optional Specify the index of access list profile value 1 5 Enter the profile ID used here This value must be between 1 and 5 Restrictions None ...

Page 201: ...bled CPU Interface Access Profile Table Total Unused Rule Entries 500 Total Used Rule Entries 0 Profile ID 1 Type Ethernet MASK on VLAN 0xFFF Source MAC 00 00 00 00 00 01 Destination MAC 00 00 00 00 00 02 802 1p Ethernet Type Unused Rule Entries 100 Profile ID 2 Type IPv4 MASK on VLAN 0xFFF Source IP 20 0 0 0 Dest IP 10 0 0 0 DSCP ICMP Type Code Unused Rule Entries 100 DGS 3000 26TC admin ...

Page 202: ...e debug dhcpv6_relay state enable debug dhcpv6_server packet all receiving sending state enable disable debug dhcpv6_server state disable debug dhcpv6_server state enable debug error_log 18 1 Description This command is used to dump clear or upload the software error log to a TFTP server Format debug error_log dump clear upload_toTFTP ipaddr path_filename 64 Parameters dump Displays the debug mess...

Page 203: ...1D703C 8013B8A4 802AE754 802A5E0C To clear the error log DGS 3000 26TC admin debug error_log clear Command debug error_log clear Success DGS 3000 26TC admin To upload the error log to TFTP server DGS 3000 26TC admin debug error_log upload_toTFTP 10 0 0 90 debug log txt Command debug error_log upload_toTFTP 10 0 0 90 debug log txt Connecting to server Done Upload error log Done DGS 3000 26TC admin ...

Page 204: ...ame or an absolute pathname This value can be up to 64 characters long Restrictions Only Administrator users can issue this command Example To show the debug buffer s state DGS 3000 26TC admin debug buffer utilization Command debug buffer utilization Allocate from System memory pool Total size 2 MB Utilization rate 30 DGS 3000 26TC admin To clear the debug buffer DGS 3000 26TC admin debug buffer c...

Page 205: ...trictions Only Administrators can issue this command Example To set all module debug message outputs to local console DGS 3000 26TC admin debug output all console Command debug output all console Success DGS 3000 26TC admin debug config error_reboot 18 4 Description This command is used to set if the Switch needs to be rebooted when a fatal error occurs When the error occurs the watchdog timer wil...

Page 206: ...6TC admin debug config state 18 5 Description This command is used to set the state of the debug Format debug config state enable disable Parameters enable Enables the debug state disable Disables the debug state Restrictions Only Administrators can issue this command Example To set the debug state to disabled DGS 3000 26TC admin debug config state disable Command debug config state disable Succes...

Page 207: ...how error_reboot state Command debug show error_reboot state Error Reboot Enabled DGS 3000 26TC admin debug show status 18 7 Description This command is used to display the specified module s debug status Format debug show status module module_list Parameters module Optional Specify the module to be displayed module_list Enter the module to be displayed Restrictions Only Administrators can issue t...

Page 208: ... Enabled MSTP Disabled IMPB Disabled DHCPv6_RELAY Disabled DHCPv6_SERVER Disabled DGS 3000 26TC admin debug dhcpv6_relay hop_count state 18 8 Description This command is used to enable or disable debug information flag about the hop count Format debug dhcpv6_relay hop_count state enable disable Parameters enable Specify that the hop count state will be enabled disable Specify that the hop count st...

Page 209: ...uffer console Let the debug message output to console Restrictions Only Administrators can issue this command Example To set debug information to output to console DGS 3000 26TC admin debug dhcpv6_relay output console Command debug dhcpv6_relay output console Success DGS 3000 26TC admin debug dhcpv6_relay packet 18 10 Description This command is used to enable or disable debug information flag for...

Page 210: ... sending debug DGS 3000 26TC admin debug dhcpv6_relay packet sending state enable Command debug dhcpv6_relay packet sending state enable Success DGS 3000 26TC admin debug dhcpv6_relay state disable 18 11 Description This command is used to disable the DHCPv6 relay Debug function Format debug dhcpv6_relay state disable Parameters None Restrictions Only Administrators can issue this command Example ...

Page 211: ...6_relay state enable Success DGS 3000 26TC admin debug dhcpv6_server packet 18 13 Description This command is used to enable or disable the debug information flag of the DHCPv6 server packet including packets receiving and sending Format debug dhcpv6_server packet all receiving sending state enable disable Parameters all Set packet receiving and sending debug flags receiving Set packet receiving d...

Page 212: ...8 14 Description This command is used to disable the DHCPv6 server debug function Format debug dhcpv6_server state disable Parameters None Restrictions Only Administrators can issue this command Example To disabled the DHCPv6 server debug function DGS 3000 26TC admin debug dhcpv6_server state disable Command debug dhcpv6_server state disable Success DGS 3000 26TC admin debug dhcpv6_server state en...

Page 213: ...ference Guide 209 Parameters None Restrictions Only Administrators can issue this command Example To enabled the DHCPv6 server debug function DGS 3000 26TC admin debug dhcpv6_server state enable Command debug dhcpv6_server state enable Success DGS 3000 26TC admin ...

Page 214: ...e DHCP local relay function for specified VLAN name When DHCP local relay is enabled for the VLAN the DHCP packet will be relayed in broadcast way without change of the source MAC address and gateway address DHCP option 82 will be automatically added Format config dhcp_local_relay vlan vlan_name 32 state enable disable Parameters vlan_name 32 Enter the VLAN name This name can be up to 32 character...

Page 215: ...trators Operators and Power Users can issue this command Example To enable DHCP local relay for default VLAN DGS 3000 26TC admin config dhcp_local_relay vlan vlanid 1 state enable Command config dhcp_local_relay vlan vlanid 1 state enable Success DGS 3000 26TC admin config dhcp_local_relay option_82 circuit_id 19 3 Description This command is used to configure the circuit id of DHCP relay agent in...

Page 216: ...1 i Second tag s length it should be 6 j MAC address System s MAC address vendor6 If configured to vendor6 the cicuit ID uses the following F01 F02 F03 F04 F05 F06 F07 F08 1 Length E 0x45 t 0x74 h 0x68 e 0x65 r 0x72 n 0x6E 1 byte 1 byte 1 byte 1 byte 1 byte 1 byte 1 byte 1 byte F09 F10 F11 F12 F13 F14 F15 F16 e 0x45 t 0x74 Chassis ID 0x2F 0 0x30 0x2F Port number 0x3A 1 byte 1 byte 1 2 bytes 1 byte...

Page 217: ...coming port number of DHCP client packets ASCII format string Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the circuit id of DHCP relay agent as default DGS 3000 26TC admin config dhcp_local_relay option_82 circuit_id default Command config dhcp_local_relay option_82 circuit_id default Success DGS 3000 26TC admin config dhcp_local_relay opt...

Page 218: ...6TC admin config dhcp_local_relay option_82 remote_id 19 5 Description This command is used to configure the remote ID Format config dhcp_local_relay option_82 remote_id default user_define desc 32 Parameters default Uses the Switch s system MAC address as the remote ID user_define Uses user defined string as the remote ID desc 32 Enter the maximum of 32 characters Space is allowed in the string R...

Page 219: ...and Power Users can issue this command Example To enable the DHCP local relay function DGS 3000 26TC admin enable dhcp_local_relay Command enable dhcp_local_relay Success DGS 3000 26TC admin disable dhcp_local_relay 19 7 Description This command is used to globally disable the DHCP local relay function on the Switch Format disable dhcp_local_relay Parameters None Restrictions Only Administrators O...

Page 220: ..._relay Parameters None Restrictions None Example To display local DHCP relay status DGS 3000 26TC admin show dhcp_local_relay Command show dhcp_local_relay DHCP BOOTP Local Relay Status Disabled DHCP BOOTP Local Relay VID List 1 DHCP Relay Agent Information Option 82 Circuit ID Default DHCP Relay Agent Information Option 82 Remote ID D Link L2Switch DGS 3000 26TC admin show dhcp_local_relay option...

Page 221: ...ters portlist Optional Enter a list of ports to be displayed Restrictions None Example To display DHCP local relay option 82 configuration of port 1 to 5 DGS 3000 26TC admin show dhcp_local_relay option_82 ports 1 5 Command show dhcp_local_relay option_82 ports 1 5 Port Option 82 Policy 1 keep 2 keep 3 keep 4 keep 5 keep DGS 3000 26TC admin ...

Page 222: ...y option_60 string multiword 255 ipaddress ipaddr default config dhcp_relay option_61 state enable disable config dhcp_relay option_61 add mac_address macaddr string multiword 255 relay ipaddr drop config dhcp_relay option_61 default relay ipaddr drop config dhcp_relay option_61 delete mac_address macaddr string multiword 255 all show dhcp_relay option_61 config dhcp_relay ports portlist all state...

Page 223: ...etween 0 and 65535 seconds Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the DHCP relay hops and time parameters DGS 3000 26TC admin config dhcp_relay hops 4 time 2 Command config dhcp_relay hops 4 time 2 Success DGS 3000 26TC admin config dhcp_relay add 20 2 Description This command is used to add an IP destination address of the DHCP serve...

Page 224: ...face level has higher priority In this case the DHCP server configured on the VLAN will not be used to forward the DHCP packets Format config dhcp_relay add vlanid vlan_id_list ipaddr Parameters vlanid Specify the VLAN ID list used for this configuration vlan_id_list Enter the VLAN ID list used for this configuration here ipaddr Enter the DHCP BOOTP server IP address used here Restrictions Only Ad...

Page 225: ...82 Circuit ID Default DHCP Relay Agent Information Option 82 Remote ID 00 01 02 03 04 00 Interface Server 1 Server 2 Server 3 Server 4 Server VLAN ID List 10 43 21 12 1 10 DGS 3000 26TC admin config dhcp_relay delete 20 4 Description This command is used to delete one of the IP destination addresses in the Switch s relay table Format config dhcp_relay delete ipif ipif_name 12 ipaddr Parameters ipi...

Page 226: ... vlan_id_list Enter the VLAN ID list used for this configuration here ipaddr Enter the DHCP BOOTP server IP address used here Restrictions Only Administrators Operators and Power Users can issue this command Example To delete a DHCP BOOTP server 10 43 21 12 from VLAN 2 and VLAN 3 DGS 3000 26TC admin config dhcp_relay delete vlanid 2 3 10 43 21 12 Command config dhcp_relay delete vlanid 2 3 10 43 2...

Page 227: ...ing is set to replace replace Specify to replace the existing option 82 field in the packet The Switch will use it s own Option 82 value to replace the old Option 82 value in the packet drop Specify to discard if the packet has the option 82 field If the packet that comes from the client side contains and Option 82 value then the packet will be dropped If the packet that comes from the client side...

Page 228: ..._id 20 7 Description This command is used to configure the circuit id of DHCP relay agent information option 82 of the Switch Format config dhcp_relay option_82 circuit_id default vendor1 vendor6 Parameters default If configured to default the circuit ID use the original format a b c d e f g 1 0x6 0 4 VLAN Module ID Port ID 1 byte 1 byte 1 byte 1 byte 2 bytes 1 byte 1 byte a Sub option type 1 mean...

Page 229: ... 0x3A 1 byte 1 byte 1 2 bytes 1 byte 1 byte 1 byte 1 2 bytes 1 byte F17 F18 F19 F20 F21 F22 F23 F24 cvlan 0x2E 0 0x30 Space 0x20 System Name 0x2F 0 0x30 0x2F 1 4 bytes 1 byte 1 byte 1 byte 1 128 bytes 1 byte 1 byte 1 byte F25 F26 F27 F28 F29 F30 F31 0 0x30 0x2F Chassis ID 0x2F 0 0x30 0x2F Port number 1 byte 1 byte 1 2 bytes 1 byte 1 byte 1 byte 1 2 bytes F01 Sub option type 1 means circuit ID F02 ...

Page 230: ...at string Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the circuit ID as default DGS 3000 26TC admin config dhcp_relay option_82 circuit_id default Command config dhcp_relay option_82 circuit_id default Success DGS 3000 26TC admin enable dhcp_relay 20 8 Description This command is used to enable the DHCP relay function on the Switch Format ...

Page 231: ... None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable the DHCP relay function DGS 3000 26TC admin disable dhcp_relay Command disable dhcp_relay Success DGS 3000 26TC admin show dhcp_relay 20 10 Description This command is used to display the current DHCP relay configuration Format show dhcp_relay ipif ipif_name 12 Parameters ipif Optional Specif...

Page 232: ...CP Relay Agent Information Option 82 Remote ID D Link L2 Switch Interface Server 1 Server 2 Server 3 Server 4 System 10 43 21 12 DGS 3000 26TC admin config dhcp_relay option_60 20 11 Description This command is used to decide whether DHCP relay will process the DHCP option 60 or not When option_60 is enabled if the packet does not have option 60 then the relay servers cannot be determined based on...

Page 233: ... be specified with the same relay server and the same string can be specified with multiple relay servers The system will relay the packet to all the matching servers Format config dhcp_relay option_60 add string multiword 255 relay ipaddr exact match partial match Parameters string Specify the string used multiword 255 Enter the string value here This value can be up to 255 characters long relay ...

Page 234: ...found will be dropped without further process If the setting is no drop then the packet will be processed further based on option 61 The final relay servers will be the union of option 60 default relay servers and the relay servers determined by option 61 Format config dhcp_relay option_60 default relay ipaddr mode relay drop Parameters relay Specify the IP address used for the DHCP relay forward ...

Page 235: ...r this configuration here ipaddress Deletes all the entry of which the IP address is equal to the specified IP address ipaddr Enter the IP address used for this configuration here all Deletes all the entry Default relay servers are excluded default Deletes the default relay IP address that is specified by the user ipaddr Optional Enter the IP address used for this configuration here Restrictions O...

Page 236: ...how dhcp_relay option_60 Command show dhcp_relay option_60 Default Processing Mode Drop Default Servers Matching Rules String Match Type IP Address abc Exact Match 10 90 90 1 Total Entries 1 DGS 3000 26TC admin config dhcp_relay option_61 20 16 Description This command is used to decide whether the DHCP relay will process the DHCP option 61 or not When option 61 is enabled if the packet does not h...

Page 237: ...The match rule can base on either MAC address or a user specified string Only one relay server can be specified for a MAC address or a string If relay servers are determined based on option 60 and one relay server is determined based on option 61 the final relay servers will be the union of these two sets of the servers Format config dhcp_relay option_61 add mac_address macaddr string multiword 25...

Page 238: ...hcp_relay option_61 default relay ipaddr drop Parameters relay Specify to relay the packet that has no option matching 61 matching rules to an IP address ipaddr Enter the IP address used for this configuration here drop Specify to drop the packet that have no option 61 matching rules Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the DHCP rel...

Page 239: ... 255 characters long all All rules excluding the default rule will be deleted Restrictions Only Administrators Operators and Power Users can issue this command Example To remove a DHCP relay option 61 entry DGS 3000 26TC admin config dhcp_relay option_61 delete mac_address 00 11 22 33 44 55 Command config dhcp_relay option_61 delete mac_address 00 11 22 33 44 55 Success DGS 3000 26TC admin show dh...

Page 240: ...ure the DHCP relay of the ports Format config dhcp_relay ports portlist all state enable disable Parameters portlist Enter a list of ports to be configured all Specify all ports to be configured state Specify the DHCP relay state of the ports enable Enables the DHCP relay disable Disables the DHCP relay Restrictions Only Administrators Operators and Power Users can issue this command Example To en...

Page 241: ...cp_relay ports 1 10 Port State 1 Enabled 2 Enabled 3 Enabled 4 Enabled 5 Enabled 6 Enabled 7 Enabled 8 Enabled 9 Enabled 10 Enabled DGS 3000 26TC admin config dhcp_relay option_125 add enterprise_number 20 23 Description This command is used to configure the Option 125 relay rules Note that different rules can be specified with the same relay server and the same match rule can be specified with mu...

Page 242: ...00 26TC admin config dhcp_relay option_125 add enterprise_number 0123 hex 0123 relay 1 1 1 1 exact match Command config dhcp_relay option_125 add enterprise_number 123 hex 0123 relay 1 1 1 1 exact match Success DGS 3000 26TC admin config dhcp_relay option_125 default 20 24 Description This command is used to when there are no matching servers found for the packet based on option 125 the relay serv...

Page 243: ...ify to delete all the entries with a string equal to the string specified if no other parameter is specified multiword 255 Enter the DHCP relay Option 125 string here This string can be up to 255 characters long hex Optional Specify to delete all the entries with a HEX equal to the HEX specified if no other parameter is specified string 255 Enter the DHCP relay Option 125 HEX string here This stri...

Page 244: ...To delete a DHCP relay option 125 specified entry DGS 3000 26TC admin config dhcp_relay option_125 delete enterprise_number 171 string test relay 192 168 0 2 Command config dhcp_relay option_125 delete enterprise_number 171 string test relay 192 168 0 2Success Success DGS 3000 26TC admin config dhcp_relay option_125 state 20 26 Description This command is used to configure whether the DHCP relay w...

Page 245: ...dr default Parameters enterprise number Optional Enter the entry with the enterprise number that matched the enterprise number specified int Enter the matching enterprise number string Optional Specify the entry with the string that matches the string specified multiword 255 Enter the multiword 255 string hex Optional Specify the entry with the hex that matches the hex specified string 255 Enter h...

Page 246: ...ult Processing Mode Drop Default Servers 192 168 0 1 Enterprise ID 171 Match Data Data Type Match Type IP Address test String Exact 192 168 0 2 test String Exact 192 168 0 3 test String Partial 192 168 0 4 Enterprise ID 172 Match Data Data Type Match Type IP Address 01020304 Hex Partial 192 168 0 2 01020304 Hex Partial 192 168 0 3 Total Entries 5 DGS 3000 26TC admin ...

Page 247: ... lease pool_name 12 day 0 365 hour 0 23 minute 0 59 infinite config dhcp pool boot_file pool_name 12 file_name 64 config dhcp pool next_server pool_name 12 ipaddr config dhcp ping_packets number 0 10 config dhcp ping_timeout millisecond 10 2000 config dhcp option_profile profile_name 12 add option value 1 254 string multiword 255 hex string 254 delete option value 1 254 config dhcp pool option_43 ...

Page 248: ...of these features are enabled on an interface the other three features mentioned cannot be enabled on that interface Format enable dhcp_server Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enable DHCP server DGS 3000 26TC admin enable dhcp_server Command enable dhcp_server Success DGS 3000 26TC admin enable dhcp class 21 2 Description ...

Page 249: ... is used to disable the DHCP server function on the switch Format disable dhcp_server Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable the Switch s DHCP server DGS 3000 26TC admin disable dhcp_server Command disable dhcp_server Success DGS 3000 26TC admin disable dhcp class 21 4 Description This command is used to disable DHCP cla...

Page 250: ...ing to DHCP clients Use this command to specify the IP address that the DHCP server should not assign to clients This command can be used multiple times in order to define multiple groups of excluded addresses Format create dhcp excluded_address begin_address ipaddr end_address ipaddr Parameters begin_address Specify the starting address of the IP address range ipaddr Enter the starting address of...

Page 251: ...ate DHCP class Format create dhcp class class_name 12 Parameters class_name 12 Enter the DHCP class s name Restrictions Only Administrators and Operators can issue this command Example To create a DHCP class DGS 3000 26TC admin create dhcp class class1 Command create dhcp class class1 Success DGS 3000 26TC admin create dhcp pool 21 7 Description This command is used to create a DHCP pool by specif...

Page 252: ... in the manual binding entry must be in a range within that the network uses for the DHCP pool If the user Specify a conflict IP address an error message will be returned If a number of manual binding entries are created and the network address for the pool is changed such that conflicts are generated those manual binding entries which conflict with the new network address will be automatically de...

Page 253: ...p to 10 DHCP profile options Format create dhcp option_profile profile_name 12 Parameters profile_name 12 Enter the DHCP option profile name here This name can be up to 12 characters long Restrictions Only Administrators Operators and Power Users can issue this command Example To create a DHCP option profile DGS 3000 26TC admin create dhcp option_profile profile1 Command create dhcp option_profile...

Page 254: ...n index string The character string about DHCP class options multiword 255 Enter the string hex The hexadecimal of string about DHCP class options string255 Enter the hexadecimal of the string delete option Specify to selete the DHCP class option int Option index Restrictions Only Administrators Operators and Power Users can issue this command Example To add option 60 using hex format and not usin...

Page 255: ... server will match the IP address of the IPIF that received the request packet against the network of each DHCP pool Format config dhcp pool network_addr pool_name 12 network_address Parameters pool_name 12 Enter the DHCP pool name network_address Enter the IP address that the DHCP server may assign to clients Restrictions Only Administrators Operators and Power Users can issue this command Exampl...

Page 256: ...ion This command is used to specify the IP address of a DNS server that is available to a DHCP client Up to three IP addresses can be specified on one command line If DNS server is not specified the DNS server information will not be provided to the client If this command is input twice for the same pool the second command will overwrite the first command Format config dhcp pool dns_server pool_na...

Page 257: ...t specified the NetBIOS name server information will not be provided to the client If this command is input twice for the same pool the second command will overwrite the first command Format config dhcp pool netbios_name_server pool_name 12 ipaddr ipaddr ipaddr Parameters pool_name 12 Enter the DHCP pool name ipaddr Optional Enter the IP address of the WINS server Up to three IP addresses can be s...

Page 258: ...configure the NetBIOS node type DGS 3000 26TC admin config dhcp pool netbios_node_type knicks hybrid Command config dhcp pool netbios_node_type knicks hybrid Success DGS 3000 26TC admin config dhcp pool default_router 21 16 Description This command is used to specify the IP address of the default router for a DHCP client Up to three IP addresses can be specified on one command line After a DHCP cl...

Page 259: ...assigned by a DHCP server comes with a one day lease which is the amount of time that the address is valid Format config dhcp pool lease pool_name 12 day 0 365 hour 0 23 minute 0 59 infinite Parameters pool_name 12 Enter the DHCP pool s name day 0 365 Enter the number of days of the lease hour 0 23 Enter the number of hours of the lease minute 0 59 Enter the number of minutes of the lease infinite...

Page 260: ...Enter the DHCP pool name file_name 64 Optional Enter the file name of the boot image Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the boot file DGS 3000 26TC admin config dhcp pool boot_file engineering boot had Command config dhcp pool boot_file engineering boot had Success DGS 3000 26TC admin config dhcp pool next_server 21 19 Description...

Page 261: ...sting client By default the DHCP server pings a pool address twice before assigning the address to a DHCP client If the ping is unanswered the DHCP server assumes with a high probability that the address is not in use and assigns the address to the requesting client If the ping is answered the server will discard the current IP address and try another IP address Format config dhcp ping_packets num...

Page 262: ... Success DGS 3000 26TC admin config dhcp option_profile 21 22 Description This command is used to configure an option to and from a DHCP server option profile When you apply this profile to a DHCP pool the DHCP server will carry the DHCP option s in all packets Each profile can contain up to 10 different DHCP options and can be applied to multiple DHCP pools However each DHCP pool can only assign ...

Page 263: ...e between 1 and 254 Restrictions Only Administrators Operators and Power Users can issue this command Example To add option 69 using HEX format DGS 3000 26TC admin config dhcp option_profile profile1 add option 69 hex c0a800fe Command config dhcp option_profile profile1 add option 69 hex c0a800fe Success DGS 3000 26TC admin To add option 72 using string format DGS 3000 26TC admin config dhcp optio...

Page 264: ...on profile for DHCP option 43 in pool1 DGS 3000 26TC admin config dhcp pool option_43 pool1 add profile1 Command config dhcp pool option_43 pool1 add profile1 Success DGS 3000 26TC admin To delete an option profile from a DHCP pool DGS 3000 26TC admin config dhcp pool option_43 pool1 delete profile1 Command config dhcp pool option_43 pool1 delete profile1 Success DGS 3000 26TC admin config dhcp po...

Page 265: ...hcp pool option_profile pool1 delete profile1 Success DGS 3000 26TC admin config dhcp pool class 21 25 Description This command is used to configure the address range of a specific DHCP pool class User can only configure one address range per DHCP class Format config dhcp pool class pool_name 12 add delete class_name 12 begin_address ipaddr end_address ipaddr Parameters pool_name 12 Enter the DHCP...

Page 266: ...nding entry or all binding entries in a pool or clears all binding entries in all pools Note that this command will not clear the dynamic binding entry which matches a manual binding entry Format clear dhcp binding pool_name 12 ipaddr all all Parameters pool_name 12 Enter the DHCP pool name to clear ipaddr Enter the IP address to clear all Specify to clear all IP addresses for the specified pool a...

Page 267: ...r dhcp conflict_ip 10 20 3 4 Command clear dhcp conflict_ip 10 20 3 4 Success DGS 3000 26TC admin delete dhcp excluded_address 21 28 Description This command is used to delete a DHCP server exclude address Format delete dhcp excluded_address begin_address ipaddr end_address ipaddr all Parameters begin_address Specify the starting address of the IP address range ipaddr Enter the starting address of...

Page 268: ...on This command is used to delete a DHCP pool Format delete dhcp pool pool_name 12 all Parameters pool_name 12 Enter the name of the DHCP pool all Specify to delete all the DHCP pools Restrictions Only Administrators Operators and Power Users can issue this command Example To delete a DHCP pool DGS 3000 26TC admin delete dhcp pool nyknicks Command delete dhcp pool nyknicks Success DGS 3000 26TC ad...

Page 269: ...ineering 10 10 10 1 Command delete dhcp pool manual_binding engineering 10 10 10 1 Success DGS 3000 26TC admin delete dhcp option_profile 21 31 Description This command is used to delete a DHCP option profile Format delete dhcp option_profile profile_name 12 Parameters profile_name 12 Enter the DHCP server option profile name here This name can be up to 12 characters long Restrictions Only Adminis...

Page 270: ... Administrators and Operators can issue this command Example To delete DHCP class DGS 3000 26TC admin delete dhcp class class1 Command delete dhcp class class1 Success DGS 3000 26TC admin show dhcp excluded_address 21 33 Description This command is used to display the groups of IP addresses which are excluded from being a legal assigned IP address Format show dhcp excluded_address Parameters None ...

Page 271: ...ing pool_name 12 Parameters pool_name 12 Optional Enter a DHCP pool name Restrictions None Example To display dynamic binding entries for engineering DGS 3000 26TC admin show dhcp binding engineering Command show dhcp binding engineering Pool Name IP Addresss Hardware Address Type Status Lifetime engineering 192 168 0 1 00 80 C8 08 13 88 Ethernet Manual 86400 engineering 192 168 0 2 00 80 C8 08 13...

Page 272: ... DHCP pool information for engineering DGS 3000 26TC admin show dhcp pool engineering Command show dhcp pool engineering Pool Name engineering Network Address 10 10 10 0 24 Domain Name dlink com DNS Server 10 10 10 1 NetBIOS Name Server 10 10 10 1 NetBIOS Node Type Broadcast Default Router 10 10 10 1 Pool Lease 10 Days 0 Hours 0 Minutes Boot File boot bin Next Server 10 10 10 2 Option Profile prof...

Page 273: ...show dhcp pool manual_binding Command show dhcp pool manual_binding Pool Name IP Address Hardware Address Type p1 192 168 0 1 00 80 C8 08 13 88 Ethernet p1 192 168 0 2 00 80 C8 08 13 99 Ethernet Total Entries 2 DGS 3000 26TC admin show dhcp_server 21 37 Description This command is used to display the current DHCP server configuration Format show dhcp_server Parameters None Restrictions None Exampl...

Page 274: ...een identified in conflict will be moved to the conflict IP database The system will not attempt to bind the IP address in the conflict IP database unless the user clears it from the conflict IP database Format show dhcp conflict_ip ipaddr Parameters ipaddr Optional Enter the IP address to be displayed Restrictions None Example To display the entries in the DHCP conflict IP database DGS 3000 26TC ...

Page 275: ...ile configurations Restrictions None Example To display the current DHCP option profile configuration DGS 3000 26TC admin show dhcp option_profile Command show dhcp option_profile DHCP Option Profile Name profile1 Option Type Value 69 hex c0a800fe 72 string 192 168 0 254 Total Entries 1 DGS 3000 26TC admin show dhcp class 21 40 Description This command is used to display the current DHCP class con...

Page 276: ...eference Guide 272 Example To display the current DHCP class configuration DGS 3000 26TC admin show dhcp class Command show dhcp class DHCP Class Status Disabled DHCP Class Name class1 Option Type Value 60 hex 4d53465420352e30 Total Entries 1 DGS 3000 26TC admin ...

Page 277: ...enable disable config filter icmpv6_ra_all_node trap enable disable delete filter dhcpv6_server permit sip ipv6addr delete filter icmpv6_ra_all_node permit sip ipv6addr show filter dhcp_server show filter dhcpv6_server show filter icmpv6_ra_all_node create filter dhcpv6_server permit sip 22 1 Description This command is used to create a permit entry for DHCPv6 server filtering The specific DHCPv6 ...

Page 278: ...list Enter a range of ports that the permit entry will apply to all Specify all the existing ports that apply to the permit entry Restrictions Only Administrators Operators and Power Users can issue this command Example To create a filter ICMPv6 RA All nodes permit entry on port 5 DGS 3000 26TC admin create filter icmpv6_ra_all_node permit sip 2200 5 ports 5 Command create filter icmpv6_ra_all_nod...

Page 279: ...list all delete permit server_ip ipaddr client_mac macaddr ports portlist all ports portlist all state enable disable illegal_server_log_suppress_duration 1min 5min 30min trap_log enable disable Parameters add Specify to add a DHCP filter permit Specify a permission DHCP filter server_ip The IP address of the DHCP server to be filtered ipaddr Enter the DHCP server IP address here client_mac Option...

Page 280: ... 10 state enable Command config filter dhcp_server ports 1 10 state enable Success DGS 3000 26TC admin DGS 3000 26TC admin config filter dhcp_server add permit_server_ip 10 1 1 1 client_mac 00 00 00 00 00 01 port 1 26 Command config filter dhcp_server add permit_server_ip 10 1 1 1 client_mac 00 00 00 00 00 01 port 1 26 Success DGS 3000 26TC admin config filter dhcpv6_server log 22 4 Description Th...

Page 281: ...ic source This feature can be protected network usable when a malicious host sends the DHCPv6 server packets Format config filter dhcpv6_server ports portlist all state enable disable Parameters portlist Enter a range of ports to configure the Filter DHCPv6 server state all Specify all the existing ports on the switch for configuring the Filter DHCPv6 server state state Specify whether the port s ...

Page 282: ...rs and Power Users can issue this command Example To enable the filter DHCPv6 server trap state DGS 3000 26TC admin config filter dhcpv6_server trap enable Command config filter dhcpv6_server trap enable Success DGS 3000 26TC admin config filter icmpv6_ra_all_node log 22 7 Description This command is used to enable or disable the filter ICMPv6 RA All nodes log state Format config filter icmpv6_ra_...

Page 283: ...et of which the destination address is the all nodes multicast address FF02 1 Format config filter icmpv6_ra_all_node ports portlist all state enable disable Parameters portlist Enter a range of ports for configuring the Filter icmpv6_ra_all_node state all Specify all the existing ports on the switch for configuring the Filter icmpv6_ra_all_node state state Specify whether the port s filter ICMPv6...

Page 284: ...t out disable Specify that the trap for the filter ICMPv6 RA all nodes will be disabled Restrictions Only Administrators Operators and Power Users can issue this command Example To enable the filter ICMPv6 RA all nodes trap state DGS 3000 26TC admin config filter icmpv6_ra_all_node trap enable Command config filter icmpv6_ra_all_node trap enable Success DGS 3000 26TC admin delete filter dhcpv6_ser...

Page 285: ...filter icmpv6_ra_all_node permit sip ipv6addr Parameters ipv6addr Enter the source IPv6 address of the entry which will be deleted in the filter ICMPv6 RA all nodes forward list Restrictions Only Administrators Operators and Power Users can issue this command Example To delete permit entry from the filter ICMPv6 RA all nodes forward list DGS 3000 26TC admin delete filter icmpv6_ra_all_node permit ...

Page 286: ...r Enabled Ports 1 10 Trap Log State Disabled Illegal Server Log Suppress Duration 5 minutes Permit DHCP Server Client Table Server IP Address Client MAC Address Port 10 90 90 20 All Client MAC 1 20 Total Entries 1 DGS 3000 26TC admin show filter dhcpv6_server 22 13 Description This command is used to display the filter DHCPv6 server information Format show filter dhcpv6_server Parameters None Rest...

Page 287: ... Trap State Disabled Log State Enabled Permit Source Address Table Source IP Address Port Total Entries 0 DGS 3000 26TC admin show filter icmpv6_ra_all_node 22 14 Description This command is used to display the filter ICMPv6 RA all nodes information Format show filter icmpv6_ra_all_node Parameters None Restrictions None Example To display filter ICMPv6 RA all nodes information ...

Page 288: ... Reference Guide 284 DGS 3000 26TC admin show filter icmpv6_ra_all_node Command show filter icmpv6_ra_all_node Enabled ports 1 Trap State Disabled Log State Enabled Permit Source Address Table Source IP Address Port 3FFE 1 1 Total Entries 1 DGS 3000 26TC admin ...

Page 289: ..._18 state enable disable check enable disable interface_id default cid vendor1 1 config dhcpv6_relay option_37 state enable disable check enable disable remote_id default cid_with_user_define desc 128 user_define desc 128 vendor1 1 show dhcpv6_relay ipif ipif_name 12 show dhcpv6_local_relay enable dhcpv6_relay 23 1 Description This command is used to enable the DHCPv6 relay function on the Switch ...

Page 290: ...rs can issue this command Example To configure the DHCPv6 relay global state to disable DGS 3000 26TC admin disable dhcpv6_relay Command disable dhcpv6_relay Success DGS 3000 26TC admin enable dhcpv6_local_relay 23 3 Description This command is used to enable the DHCPv6 local relay function of the Switch Format enable dhcpv6_local_relay Parameters None Restrictions Only Administrators and Operator...

Page 291: ...can issue this command Example To configure the DHCPv6 local relay global state to disable DGS 3000 26TC admin disable dhcpv6_local_relay Command disable dhcpv6_local_relay Success DGS 3000 26TC admin config dhcpv6_relay 23 5 Description This command is used to add delete an IPv6 address which is a destination to forward relay DHCPv6 packets Format config dhcpv6_relay add delete ipif ipif_name 12 ...

Page 292: ...6_relay add ipif System 2001 DB8 1234 0 218 FEFF FEFB CC0E Success DGS 3000 26TC admin config dhcpv6_relay hop_count 23 6 Description This command is used to configure the DHCPv6 relay hop_count of the switch Format config dhcpv6_relay hop_count value 1 32 Parameters value 1 32 Enter the number of relay agents that have relayed this message The default value is 4 Restrictions Only Administrators O...

Page 293: ...and Power Users can issue this command Example To configure the DHCPv6 relay state of the System interface to enable DGS 3000 26TC admin config dhcpv6_relay ipif System state enable Command config dhcpv6_relay ipif System state enable Success DGS 3000 26TC admin config dhcpv6_local_relay vlan 23 8 Description This command is used to enable or disable the DHCPv6 local relay function for a specified...

Page 294: ...the DHCPv6 relay Option 18 s state enable Specify that the DHCPv6 relay Option 18 s state is enabled When the state is enabled the DHCP packet will be inserted with the Option 18 field before being relayed to server disable Specify that the DHCPv6 relay Option 18 s state is disabled When the state is disabled the DHCP packet will be relayed directly to server without further checks and inserted wi...

Page 295: ...0 0x30 0x2F Port Number 0x3A cvlan 0x2E 1 2 bytes 1 byte 1 byte 1 byte 1 2 bytes 1 byte 1 4 bytes 1 byte F17 F18 F19 F20 F21 F22 F23 F24 0 0x30 Space 0x20 System Name 0x2F 0 0x30 0x2F 0 0x30 0x2F 1 byte 1 byte 1 128 bytes 1 byte 1 byte 1 byte 1 byte 1 byte F25 F26 F27 F28 F29 Chassis ID 0x2F 0 0x30 0x2F Port Number 1 2 bytes 1 byte 1 byte 1 byte 1 2 bytes F01 Character E F02 Character t F03 Charac...

Page 296: ... can issue this command Example To configure the DHCPv6 relay option 18 DGS 3000 26TC admin config dhcpv6_relay option_18 state enable Command config dhcpv6_relay option_18 state enable Success DGS 3000 26TC admin config dhcpv6_relay option_18 check enable Command config dhcpv6_relay option_18 check enable Success DGS 3000 26TC admin config dhcpv6_relay option_18 interface_id default Command confi...

Page 297: ...ay Option 37 s state is disabled When the state is disabled the DHCP packet will be relayed directly to server without further checks and inserted with the Option 37 check When the check state is enabled packets coming from client side should not have the option 37 field If client originating packets have the option 37 field set they will be dropped enable Specify to enable the check function disa...

Page 298: ...ser_define D link DGS3200 Series Command config dhcpv6_relay option_37 remote_id cid_with_user_define D link DGS3200 Series Success DGS 3000 26TC admin config dhcpv6_relay option_37 remote_id user_define D link DGS3200 Series Command config dhcpv6_relay option_37 remote_id user_define D link DGS3200 Series Success DGS 3000 26TC admin config dhcpv6_relay option_37 remote_id vendor1 Command config d...

Page 299: ...v6_relay DHCPv6 Relay Global State Disabled DHCPv6 Hops Count Limit 4 DHCPv6 Relay Information Option 18 State Disabled DHCPv6 Relay Information Option 18 Check Disabled DHCPv6 Relay Information Option 18 Interface ID Type Default DHCPv6 Relay Information Option 37 State Disabled DHCPv6 Relay Information Option 37 Check Disabled DHCPv6 Relay Information Option 37 Remote ID Type Default DHCPv6 Rela...

Page 300: ... Reference Guide 296 Restrictions None Example To display local DHCPv6 relay configuration DGS 3000 26TC admin oper show dhcpv6_local_relay Command show dhcpv6_local_relay DHCPv6 Local Relay Status Disabled DHCPv6 Local Relay VID List 1 3 4 DGS 3000 26TC admin ...

Page 301: ...ent_duid string 28 delete ipv6addr all show dhcpv6 manual_binding pool_name 12 show dhcpv6 binding pool_name 12 clear dhcpv6 binding pool_name 12 enable dhcpv6_server disable dhcpv6_server show dhcpv6_server ipif ipif_name 12 config dhcpv6 pool excluded_address pool_name 12 add begin ipv6addr end ipv6addr delete begin ipv6addr end ipv6addr all show dhcpv6 excluded_address pool_name 12 config dhcpv...

Page 302: ... 12 Enter the DHCPv6 pool name to be removed here This name can be up to 12 characters long all Specify that all the DHCPv6 pools will be removed Restrictions Only Administrators Operators and Power Users can issue this command Example To delete the DHCPv6 pool by specifying the pool name pool1 DGS 3000 26TC admin delete dhcpv6 pool pool1 Command delete dhcpv6 pool pool1 Success DGS 3000 26TC admi...

Page 303: ... will automatically find an available pool to allocate an IPv6 address The begin_networkaddr and end_networkaddr must observer some rules as followed The prefix of the begin_networkaddr and end_networkaddr are not consistence otherwise the switch will print an error message The prefix of begin_networkaddr and end_networkaddr must be consistence e g the begin_networkaddr is 2000 1 64 and the end_ne...

Page 304: ...igure the range of IPv6 network address for the DHCPv6 pool pool1 DGS 3000 26TC admin config dhcpv6 pool ipv6network_addr pool1 begin 2000 1 64 end 2000 32 64 Command config dhcpv6 pool ipv6network_addr pool1 begin 2000 1 64 end 2000 32 64 success DGS 3000 26TC admin config dhcpv6 pool domain_name 24 5 Description This command is used to configure the domain name for the DHCPv6 pool of the Switch ...

Page 305: ...e DNS server information will not be provided to the client Users could delete a DNS server address in the method of setting the DNS server address to zero Format config dhcpv6 pool dns_server pool_name 12 ipv6addr ipv6addr Parameters pool_name 12 Enter the DHCPv6 pool name used here This name can be up to 12 characters long ipv6addr Enter the primary DNS Server IPv6 address used for this pool her...

Page 306: ...d_lifetime Specify the length of time that a valid address is preferred to sec 60 4294967295 Enter the preferred lifetime value here This value must be between 60 and 4294967295 seconds valid_lifetime Specify the length of time an address remains in the valid state sec 60 4294967295 Enter the valid lifetime value here This value must be between 60 and 4294967295 seconds Restrictions Only Administr...

Page 307: ...to delete the manual binding entry ipv6addr Enter the IPv6 address of the manual binding entry to be deleted here all Specify that all manual binding entries will be deleted Restrictions Only Administrators Operators and Power Users can issue this command Example To add a manual binding DHCPv6 entry DGS 3000 26TC admin config dhcpv6 pool manual_binding pool1 add 2000 3 client_duid 00010006124dd584...

Page 308: ... 101 DUID 00030006aabbcc000001 Total Entries 3 DGS 3000 26TC admin show dhcpv6 binding 24 10 Description This command is used to show the DHCPv6 dynamic binding information Entering the command without the pool name will display all information regarding DHCPv6 dynamic binding on the switch This command only displays the dynamic binding information not including manual binding information Format s...

Page 309: ...24 11 Description This command is used to clear the DHCPv6 dynamic binding information Format clear dhcpv6 binding pool_name 12 Parameters pool_name 12 Optional Enter the DHCPv6 pool name used here This name can be up to 12 characters long Restrictions Only Administrators Operators and Power Users can issue this command Example To clear the DHCPv6 dynamic binding information on the Switch DGS 3000...

Page 310: ...CPv6 server global state to enable DGS 3000 26TC admin enable dhcpv6_server Command enable dhcpv6_server Success DGS 3000 26TC admin disable dhcpv6_server 24 13 Description This command is used to disable the DHCPv6 server function on the Switch Format disable dhcpv6_server Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the DH...

Page 311: ...server ipif ipif_name 12 Parameters ipif Optional Specify the IP interface name to be displayed ipif_name 12 Enter the IP interface name to be displayed here This name can be up to 12 characters long Restrictions None Example To display the DHCPv6 server setting DGS 3000 26TC admin show dhcpv6_server Command show dhcpv6_server DHCPv6 Server Global State Disabled IP Interface System DHCPv6 Server S...

Page 312: ...the beginning IPv6 address used here end Specify the ending IPv6 address of the range of IPv6 addresses to be excluded from the DHCPv6 pool ipv6addr Enter the ending IPv6 address used here delete Specify to delete one or all excluded address ranges of a specified pool begin Specify the beginning IPv6 address of the range of IPv6 addresses to be excluded from the DHCPv6 pool ipv6addr Enter the begi...

Page 313: ...12 characters long Restrictions None Example To display the excluded address information DGS 3000 26TC admin show dhcpv6 excluded_address Command show dhcpv6 excluded_address Pool Name net100 Range 1 Begin Address 3000 110 1 1 End Address 3000 110 1 7 Range 2 Begin Address 3000 110 1 9 End Address 3000 110 1 9 Range 3 Begin Address 3000 110 1 11 End Address 3000 110 1 11 Range 4 Begin Address 3000...

Page 314: ... server state for the specified interface enable Specify that the DHCPv6 server state for the specified interface will be enabled disable Specify that the DHCPv6 server state for the specified interface will be disabled Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the DHCPv6 Server state of System Interface to enable DGS 3000 26TC admin con...

Page 315: ...rning mw_or_dbm low_warning mw_or_dbm 1 state enable disable shutdown alarm warning none 1 reload_threshold show ddm show ddm ports portlist status configuration config ddm power_unit mw dbm config ddm 25 1 Description This command is used to configures the DDM log and trap action when encountering an exceeding alarm or warning thresholds event Format config ddm trap log enable disable Parameters ...

Page 316: ... none 1 reload_threshold Parameters portlist Enter the range of ports to be configured here all Specify that all the optic ports operating parameters will be configured temperature_threshold Specify the threshold of the optic module s temperature in centigrade At least one parameter shall be specified for this threshold high_alarm Specify the high threshold value for the temperature alarm When the...

Page 317: ...old for the alarm When the operating parameter falls below this value the action associated with the alarm is taken mw_or_dbm Enter the low threshold alarm value used here high_warning Specify the high threshold for the warning When the operating parameter rises above this value the action associated with the warning is taken mw_or_dbm Enter the high threshold warning value here low_warning Specif...

Page 318: ...ld high_alarm 4 25 low_alarm 2 5 high_warning 3 5 low_warning 3 Command config ddm ports 25 voltage_threshold high_alarm 4 25 low_alarm 2 5 high_warning 3 5 low_warning 3 Success DGS 3000 26TC admin To configure the port 25 s bias current threshold DGS 3000 26TC admin config ddm ports 25 bias_current_threshold high_alarm 7 25 low_alarm 0 004 high_warning 0 5 low_warning 0 008 Command config ddm po...

Page 319: ...w_warning 0 03 Success DGS 3000 26TC admin To configure the port 25 s actions associate with the alarm DGS 3000 26TC admin config ddm ports 25 state enable shutdown alarm Command config ddm ports 25 state enable shutdown alarm Success DGS 3000 26TC admin show ddm 25 3 Description This command is used to display the DDM global settings Format show ddm Parameters None Restrictions None Example To di...

Page 320: ... that is being inserted Format show ddm ports portlist status configuration Parameters portlist Optional Enter the range of ports to be displayed here status Specify that the operating parameter will be displayed configuration Specify that the configuration values will be displayed Restrictions None Example To display ports 25 26 s operating parameters DGS 3000 26TC admin show ddm ports 25 26 stat...

Page 321: ...dbm Specify the DDM TX and RX power unit as dBm Restrictions Only Administrators and Operators can issue this command Example To configure the DDM TX and RX power unit as dBm DGS 3000 26TC admin config ddm power_unit dbm Command config ddm power_unit dbm Success DGS 3000 26TC admin ...

Page 322: ...e enable disable mode shutdown normal discovery_time sec 5 65535 1 Parameters portlist Enter a range of ports all Specify to select all ports state Specify these ports unidirectional link detection status enable Enables unidirectional link detection status disable Disables unidirectional link detection status mode Specify the mode when detecting unidirectional link shutdown If any unidirectional l...

Page 323: ...ection information Format show duld ports portlist Parameters portlist Optional Enter a range of ports Restrictions None Example To show ports 1 4 unidirectional link detection information DGS 3000 26TC admin show duld ports 1 4 Command show duld ports 1 4 Port Admin State Oper Status Mode Link Status Discovery Time Sec 1 Enabled Disabled Normal Unknown 5 2 Disabled Disabled Normal Unknown 5 3 Dis...

Page 324: ...e_server add 27 1 Description This command is used to add a DNS resolver name server to the Switch Format config name_server add ipaddr ipv6addr primary Parameters ipaddr Enter the IPv4 address of the DNS Resolver name server ipv6addr Enter the IPv6 address of the DNS Resolver name server primary Optional Specify that the name server is a primary name server Restrictions Only Administrators Operat...

Page 325: ...ions Only Administrators Operators and Power Users can issue this command Example To delete DNS Resolver name server 10 10 10 1 DGS 3000 26TC admin config name_server delete 10 10 10 1 Command config name_server delete 10 10 10 1 Success DGS 3000 26TC admin config name_server timeout 27 3 Description This command is used to configure the timeout value of a DNS Resolver name server Format config na...

Page 326: ...er name servers and name server time out on the Switch Format show name_server Parameters None Restrictions None Example To display the current DNS Resolver name servers and name server time out Static Name Server Table Server IP Address Priority 10 10 10 10 Primary 10 1 1 1 Secondary Dynamic Name Server Table Server IP Address Priority 10 48 74 122 Primary DGS 3000 26TC admin create host_name 27 ...

Page 327: ... name www example com DGS 3000 26TC admin create host_name www example com 10 10 10 10 Command create host_name www example com 10 10 10 10 Success DGS 3000 26TC admin delete host_name 27 6 Description This command is used to delete the static or dynamic host name entries of the Switch Format delete host_name name 255 all Parameters name 255 Enter the hostname This name can be up to 255 characters...

Page 328: ...t name Format show host_name static dynamic Parameters static Optional Specify to display the static host name entries dynamic Optional Specify to display the dynamic host name entries Restrictions None Example To display the static and dynamic host name entries DGS 3000 26TC admin show host_name Command show host_name Static Host Name Table Host Name www example com IP Address 10 10 10 10 Total S...

Page 329: ... Power Users can issue this command Example To configure the DNS Resolver state to enabled DGS 3000 26TC admin enable dns_resolver Command enable dns_resolver Success DGS 3000 26TC admin disable dns_resolver 27 9 Description This command is used to disable the DNS Resolver state of the Switch Format disable dns_resolver Parameters None Restrictions Only Administrators Operators and Power Users can...

Page 330: ...DGS 3000 Series Layer 2 Managed Gigabit Ethernet Switch CLI Reference Guide 326 DGS 3000 26TC admin disable dns_resolver Command disable dns_resolver Success DGS 3000 26TC admin ...

Page 331: ... tcp_tiny_frag_attack all action drop state enable disable Parameters land_attack Optional Checks whether the source address is equal to destination address of a received IP packet blat_attack Optional Checks whether the source port is equal to destination port of a received TCP packet tcp_null_scan Optional Checks whether a received TCP packet contains a sequence number of 0 and no flags tcp_xmas...

Page 332: ...p_synfin tcp_syn_srcport_less_1024 ping_death_attack tcp_tiny_frag_attack Parameters land_attack Optional Checks whether the source address is equal to destination address of a received IP packet blat_attack Optional Checks whether the source port is equal to destination port of a received TCP packet tcp_null_scan Optional Checks whether a received TCP packet contains a sequence number of 0 and no...

Page 333: ...tack Disabled Drop TCP Tiny Fragment Attack Disabled Drop CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh config dos_prevention trap 28 3 Description This command is used to enable or disable DoS prevention trap state Format config dos_prevention trap enable disable Parameters enable Enables DoS prevetion trap state disable Disables DoS prevention trap state Restrictions Only Adminis...

Page 334: ...state Format config dos_prevention log enable disable Parameters enable Enables DoS prevetion log state disable Disables DoS prevention log state Restrictions Only Administrators Operators and Power Users can issue this command Example To enable DoS prevention log DGS 3000 26TC admin config dos_prevention log enable Command config dos_prevention log enable Success DGS 3000 26TC admin ...

Page 335: ...ll state enable disable Parameters portlist Enter a range of ports to be configured all Specify to configure all ports state Specify the EEE state The default is disabled enable Enable the EEE function for the specified port s disable Disable the EEE function for the specified port s Restrictions Only Administrators and Operators can issue this command Example To enable the EEE state on ports 2 5 ...

Page 336: ...s portlist Parameters portlist Optional Enter a list of ports to be displayed Restrictions None Example To display the EEE state DGS 3000 26TC admin show eee ports 1 6 9 Command show eee ports 1 6 9 Port State 1 Disabled 2 Enabled 3 Enabled 4 Enabled 5 Enabled 6 Disabled 9 Disabled DGS 3000 26TC admin ...

Page 337: ... erps raps_vlan vlanid sub_ring config erps trap enable disable enable erps 30 1 Description This command is used to enable the global ERPS function on a switch When both the global state and the specified ring ERPS state are enabled the specified ring will be activated The default state is disabled The global ERPS function cannot be enabled when any ERPS ring on the device is enabled and the inte...

Page 338: ... a switch Format disable erps Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable ERPS DGS 3000 26TC admin disable erps Command disable erps Success DGS 3000 26TC admin create erps raps_vlan 30 3 Description This command is used to create an R APS VLAN on a switch Only one R APS VLAN should be used to transfer R APS messages Note tha...

Page 339: ...lan 4094 Command create erps raps_vlan 4094 Success DGS 3000 26TC admin delete erps raps_vlan 30 4 Description This command is used to delete an R APS VLAN on a switch When an R APS VLAN is deleted all parameters related to this R APS VLAN will also be deleted This command can only be issued when the ring is not active Format delete erps raps_vlan vlanid 1 4094 Parameters vlanid 1 4094 Enter the V...

Page 340: ...rt is configured as an RPL port an error message will be display and the configuration will fail The R APS VLAN cannot be the protected VLAN The protected VLAN can be one that has already been created or it can be used for a VLAN that has not yet been created Holdoff timer The Holdoff timer is used to filter out intermittent link faults when link failures occur during the protection switching proc...

Page 341: ... 10000 guard_time millisecond 10 2000 wtr_time min 5 12 1 Parameters vlanid 1 4094 Enter the VLAN ID used here state Specify to enable or disable the specified ring enable Enable the state of the specified ring disable Disable the state of the specified ring The default value is disabled ring_mel Specify the ring MEL of the R APS function The default ring MEL is 1 value 0 7 Enter the ring MEL valu...

Page 342: ...t holdoff time is 0 milliseconds millisecond 0 10000 Enter the hold off time value here This value must be in the range of 0 to 10000 millseconds guard_time Specify the guard time of the R APS function The default guard time is 500 milliseconds millisecond 10 2000 Enter the guard time value here This value must be in the range of 0 to 2000 millseconds wtr_time Specify the WTR time of the R APS fun...

Page 343: ...r a specific R APS VLAN DGS 3000 26TC admin config erps raps_vlan 4094 timer holdoff_time 100 guard_time 1000 wtr_time 10 Command config erps raps_vlan 4094 timer holdoff_time 100 guard_time 1000 wtr_t ime 10 Success DGS 3000 26TC admin To configure the ring state of the ERPS DGS 3000 26TC admin config erps raps_vlan 4094 state enable Command config erps raps_vlan 4094 state enable Success DGS 300...

Page 344: ... Example To enable the ERPS log state DGS 3000 26TC admin config erps log enable Command config erps log enable Success DGS 3000 26TC admin show erps 30 7 Description This command is used to display ERPS configuration and operation information The port state of the ring port may be as Forwarding Blocking Signal Fail Forwarding indicates that traffic is able to be forwarded Blocking indicates that ...

Page 345: ...ational value it means that the new configuration is not applied Both RPL port and RPL owner have admin value and operational value the reason is same as ring port Save function will record the operational value if the operational value is different form the admin value Format show erps raps_vlan vlanid sub_ring Parameters raps_vlan Optional Specify the R APS VLAN vlanid Enter the VLAN ID used her...

Page 346: ...abled Holdoff Time 0 milliseconds Guard Time 500 milliseconds WTR Time 5 minutes Current Ring State Idle R APS VLAN 4093 Ring Status Enabled Admin West Port 5 Operational West Port Virtual Channel Admin East Port 10 Operational East Port 10 Forwarding Admin RPL Port None Operational RPL Port None Admin RPL Owner Enabled Operational RPL Owner Disabled Protected VLANs 200 220 Ring MEL 2 Revertive En...

Page 347: ... show erps raps_vlan 4092 sub_ring R APS VLAN 4092 Sub Ring R APS VLAN TC Propagation State 4093 Enabled 4094 Enabled Total Sub Ring Connected 2 DGS 30000 26TC admin config erps trap 30 8 Description This command is used to configure the trap state of ERPS events Format config erps trap enable disable Parameters enable Specify to enable the ERPS trap state The default value is disabled disable Spe...

Page 348: ...DGS 3000 Series Layer 2 Managed Gigabit Ethernet Switch CLI Reference Guide 344 DGS 3000 26TC admin config erps trap enable Command config erps trap enable Success DGS 3000 26TC admin ...

Page 349: ...channel value to be configured message Specify the message to be displayed on the console log and trap sentence 1 128 Enter the message to be displayed on the console log and trap Restrictions Only Administrators and Operators can issue this command Example To configure alarm message for channel 1 DGS 3000 26TC admin config external_alarm channel 1 message External Alarm UPS is Exhausted Command c...

Page 350: ...strictions None Example To display the real time status of external alarm DGS 3000 26TC admin show external_alarm Command show external_alarm Channel Status Alarm Message 1 Normal External Alamr UPS is Exhausted 2 Normal External Alarm 2 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh ...

Page 351: ...ble Parameters portlist Enter the list of ports used all Specify that all the ports will be used for the configuration state Specify the state of the filter to block the NETBIOS packet enable Specify that the state will be enabled disable Specify that the state will be disabled Restrictions Only Administrators Operators and Power Users can issue this command Example To configure filter netbios sta...

Page 352: ...OS packets over 802 3 flame on the specific ports Format config filter extensive_netbios portlist all state enable disable Parameters portlist Enter the list of ports used for this configuration here all Specify that all the ports will be used this configuration state Specify to enable or disable the filter to block the NETBIOS packet over 802 3 frame enable Specify that the filter state will be e...

Page 353: ...e Success DGS 3000 26TC admin show filter extensive_netbios 32 4 Description This command is used to display the extensive netbios state on the Switch Format show filter extensive_netbios Parameters None Restrictions None Example To display the extensive_state created on the Switch DGS 3000 26TC admin show filter extensive_netbios Command show filter extensive_netbios Enabled ports 1 3 DGS 3000 26...

Page 354: ...nid vidlist mac_address macaddr static aging_time security show multicast vlan_filtering_mode vlanid vidlist vlan vlan_name 32 create fdb 33 1 Description This command is used to create a static entry in the unicast MAC address forwarding table database Format create fdb vlan_name 32 macaddr port port drop Parameters vlan_name 32 Enter a VLAN name associated with a MAC address The maximum length o...

Page 355: ... create fdb vlanid vidlist macaddr port port drop Parameters vidlist Enter a VLAN ID associated with a MAC address macaddr Enter the MAC address to be added to the static forwarding table port The port number corresponding to the MAC destination address The switch will always forward traffic to the specified device through this port port Enter the port number corresponding to the MAC destination a...

Page 356: ...er the VLAN name on which the MAC address resides The maximum name length is 32 macaddr Enter the multicasts MAC address to be added to the static forwarding table Restrictions Only Administrators Operators and Power Users can issue this command Example To create a multicast MAC forwarding entry to the default VLAN DGS 3000 26TC admin create multicast_fdb default 01 00 5E 00 00 00 Command create m...

Page 357: ...ging time affects the learning process of the Switch Dynamic forwarding table entries which are made up of the source MAC addresses and their associated port numbers are deleted from the table if they are not accessed within the aging time The aging time can be from 10 to 1000000 seconds with a default value of 300 seconds A very long aging time can result in dynamic forwarding table entries that ...

Page 358: ...mum name length is 32 vlan_name 32 Enter the VLAN name can be up to 32 characters long all Specify all configured VLANs forward_all_groups Both the registered group and the unregistered group will be forwarded to all member ports of the specified VLAN where the multicast traffic comes in forward_unregistered_groups The unregistered group will be forwarded to all member ports of the VLAN where the ...

Page 359: ...000 26TC admin delete fdb default 00 00 00 00 01 02 Command delete fdb default 00 00 00 00 01 02 Success DGS 3000 26TC admin clear fdb 33 8 Description This command is used to clear the Switch s forwarding database for dynamically learned MAC addresses Format clear fdb vlan vlan_name 32 port port all Parameters vlan Clears the FDB entry by specifying the VLAN name vlan_name 32 Enter the VLAN name ...

Page 360: ...mat show multicast_fdb vlan vlan_name 32 vlanid vidlist mac_address macaddr Parameters vlan Optional The name of the VLAN on which the MAC address resides vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Displays the entries for the VLANs indicated by VID list vidlist Enter the VLAN ID list here mac_address Optional Specify a MAC address for which...

Page 361: ...pecified port port Enter the port number here vlan Optional Displays the entries for a specific VLAN The maximum name length is 32 vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Displays the entries for the VLANs indicated by VID list vidlist Enter the VLAN ID list here mac_address Optional Displays a specific MAC address macaddr Enter the MAC a...

Page 362: ...nd show fdb security VID MAC Address Port Type Status Security Module 1 00 00 00 10 00 01 1 Dynamic Drop 802 1X 1 00 00 00 10 00 02 2 Static Forward WAC 1 00 00 00 10 00 04 4 Static Forward Port Security 1 00 00 00 10 00 0A 5 Static Forward MAC based Access Control 1 00 00 00 10 00 06 6 Dynamic Drop Compound Authentication Total Entries 5 DGS 3000 26TC admin show multicast vlan_filtering_mode 33 1...

Page 363: ... here The VLAN name can be up to 32 characters long If no parameter is specified the device will show all multicast filtering settings in the device Restrictions None Example To show the multicast vlan_filtering_mode for VLANs DGS 3000 26TC admin show multicast vlan_filtering_mode Command show multicast vlan_filtering_mode VLAN ID VLAN Name Multicast Filter Mode 1 default forward_unregistered_grou...

Page 364: ...e drive_id pathname copy drive_id pathname drive_id pathname show storage_media_info 34 1 Description This command is used to display the information of the storage media available on the system The information for a media includes the drive number the media identification Format show storage_media_info Parameters None Restrictions None Example To display the storage media s information DGS 3000 2...

Page 365: ...eter for example c config boot up cfg Restrictions Only Administrators and Operators can issue this command Example To make a directory DGS 3000 26TC admin md c abc Command md c abc Success DGS 3000 26TC admin rd 34 3 Description This command is used to remove a directory If there are files still existing in the directory this command will fail and return error message Format rd drive_id pathname ...

Page 366: ...y to the directory in another drive then you need to change the current drive to the desired drive and then change the current directory The current drive and current directory will be displayed if the pathname is not specified Format cd pathname Parameters pathname Optional Enter the directory to be navigated to The path name can be specified either as a full path name or partial name For partial...

Page 367: ...ates the file is in the current directory Restrictions None Example List the files DGS 3000 26TC admin dir Command dir Directory of c Idx Info Attr Size Update Time Name 1 RUN rw 5491536 2000 01 01 00 41 03 runtime had 2 CFG rw 31142 2000 01 01 02 19 40 config cfg 3 d 2000 01 01 00 00 16 system 29618 KB total 24127 KB free with boot up info b with backup info DGS 3000 26TC admin rename 34 6 Descri...

Page 368: ...y It is also used to delete a directory and its contents If two files with the same name under the same directory are softly deleted sequentially only the last one will exist Deleting copying renaming or moving the already softly deleted file is not acceptable System will prompt if the target file is a firmware or configuration file of which the type is boot up Format del drive_id pathname recursi...

Page 369: ...ith boot up info b with backup info DGS 3000 26TC admin del 12 recursive Command del 12 recursive Success DGS 3000 26TC admin dir Command dir Directory of c Idx Info Attr Size Update Time Name 1 CFG rw 29661 2000 04 01 05 54 38 config cfg 2 RUN rw 4879040 2000 03 26 03 15 11 runtime had 3 d 0 2000 04 01 05 17 36 system 29618 KB total 24727 KB free with boot up info b with backup info DGS 3000 26TC...

Page 370: ...e Update Time Name 1 CFG b rw 29661 2000 04 02 06 03 19 config2 cfg 2 CFG rw 29661 2000 04 01 05 54 38 config cfg 3 RUN rw 4879040 2000 03 26 03 15 11 runtime had 4 d 0 2000 04 01 05 17 36 system 29618 KB total 24697 KB free with boot up info b with backup info DGS 3000 26TC admin erase config2 cfg Command erase config2 cfg Success DGS 3000 26TC admin dir Command dir Directory of c Idx Info Attr S...

Page 371: ...e file will be moved The path name can be For partial path name it indicates the file is in the current directory Restrictions Only Administrators and Operators can issue this command Example To move a file from one location to another location DGS 3000 26TC admin move c log txt c log1 txt Command move c log txt c log1 txt Success DGS 3000 26TC admin copy 34 10 Description This command is used to ...

Page 372: ...r partial name For partial path name it indicates the file is in the current directory Restrictions Only Administrators and Operators can issue this command Example To copy a file DGS 3000 26TC admin copy c log txt c log1 txt Command copy c log txt c log1 txt Success DGS 3000 26TC admin ...

Page 373: ...rt_number 1 65535 dest_file path_filename 64 ftp string 128 download firmware_fromFTP 35 1 Description This command is used to download a firmware image file from the FTP server Format download firmware_fromFTP ipaddr ipv6addr tcp_port tcp_port_number 1 65535 src_file path_filename 64 ftp string 128 dest_file path_filename 64 boot_up Parameters ipaddr Enter the IPv4 address of the FTP server here ...

Page 374: ...off Please wait programming flash Done DGS 3000 26TC admin upload firmware_toFTP 35 2 Description This command is used to upload a firmware from the Switch to an FTP server Format upload firmware_toFTP ipaddr ipv6addr tcp_port tcp_port_number 1 65535 dest_file path_filename 64 ftp string 128 src_file pathname 64 Parameters ipaddr Enter the IPv4 address of the FTP server here ipv6addr Enter the IPv...

Page 375: ..._fromFTP ipaddr ipv6addr tcp_port tcp_port_number 1 65535 src_file path_filename 64 ftp string 128 dest_file path_filename 64 Parameters ipaddr Enter the IPv4 address of the FTP server here ipv6addr Enter the IPv6 address of the FTP server here tcp_port Optional Specify the TCP port number used for the FTP connection tcp_port_number 1 65535 Enter the TCP port number here This value must be between...

Page 376: ...ipv6addr tcp_port tcp_port_number 1 65535 dest_file path_filename 64 ftp string 128 src_file path_filename 64 include exclude begin filter_string 80 filter_string 80 filter_string 80 include exclude begin filter_string 80 filter_string 80 filter_string 80 include exclude begin filter_string 80 filter_string 80 filter_string 80 Parameters ipaddr Enter the IPv4 address of the FTP server here ipv6add...

Page 377: ...teractive mode DGS 3000 26TC admin upload cfg_toFTP 10 90 90 15 cfg txt Command upload cfg_toFTP 10 90 90 15 cfg txt Connecting to server Done User Anonymous john Password Upload configuration Done DGS 3000 26TC admin This example shows how to upload the configuration file to an FTP server using a string DGS 3000 26TC admin download cfg_fromFTP ftp john 123456 10 90 90 15 21 cfg cfg txt config_id ...

Page 378: ...re This value must be between 1 and 65535 dest_file Specify the destination file name and path path_filename 64 Enter the destination file name and path here This can be up to 64 characters long ftp Specifiy the FTP connection details string 128 Enter the FTP connection details here For example john 123456 172 18 211 41 21 image cfg txt Restrictions Only Administrators and Operators can issue this...

Page 379: ... the FTP server here tcp_port Optional Specify the TCP port number used for the FTP connection tcp_port_number 1 65535 Enter the TCP port number here This value must be between 1 and 65535 dest_file Specify the destination file name and path path_filename 64 Enter the destination file name and path here This can be up to 64 characters long ftp Specify the FTP connection details string 128 Enter th...

Page 380: ...ample shows how to upload the attack log to an FTP server using a string DGS 3000 26TC admin upload attack_log_toFTP ftp john 123456 10 90 90 15 21 log txt Command upload attack_log_toFTP ftp john 123456 10 90 90 15 21 log txt Connecting to server Done Upload log Done DGS 3000 26TC admin ...

Page 381: ...isable the sending of gratuitous ARP packets when the IP interface s status is up This is used to automatically announce the interface s IP address to other nodes Only one gratuitous ARP packet will be broadcasted Format config gratuitous_arp send ipif_status_up enable disable Parameters enable Enables the sending of gratuitous ARP packets when the IP interface s status is up This is the default v...

Page 382: ...uitous ARP request packet when duplicate IP is detected Restrictions Only Administrators Operators and Power Users can issue this command Example To enable send gratuitous ARP request when duplicate IP is detected DGS 3000 26TC admin config gratuitous_arp send dup_ip_detected enable Command config gratuitous_arp send dup_ip_detected enable Success DGS 3000 26TC admin config gratuitous_arp learning...

Page 383: ...riodically 36 4 Description This command is used to configure the interval for the periodical sending of gratuitous ARP request packet By default the interval is 0 Format config gratuitous_arp send periodically ipif ipif_name 12 interval value 0 65535 Parameters ipif Specify the interface name of L3 interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long i...

Page 384: ...rameters ipif Optional Specify the interface name of L3 interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long trap Specify to enable the trap function log Specify to enable the log function Restrictions Only Administrators Operators and Power Users can issue this command Example To enable system interface s gratuitous ARP log and trap DGS 3000 26TC admin...

Page 385: ...dministrators Operators and Power Users can issue this command Example To disable system interface s gratuitous ARP log and trap DGS 3000 26TC admin disable gratuitous_arp ipif System trap log Command disable gratuitous_arp ipif System trap log Success DGS 3000 26TC admin show gratuitous_arp 36 7 Description This command is used to display gratuitous ARP configuration Format show gratuitous_arp ip...

Page 386: ...ow gratuitous_arp Command show gratuitous_arp Send on IPIF Status Up Enabled Send on Duplicate IP Detected Enabled Gratuitous ARP Learning Enabled IP Interface Name System Gratuitous ARP Trap Enabled Gratuitous ARP Log Enabled Gratuitous ARP Periodical Send Interval 5 Total Entries 1 DGS 3000 26TC admin ...

Page 387: ...go For statistics based on a day there are two counting slots for the historical statistic count The counter for a slot represents statistics count of occurrence in that time slot Format show historical_counter packet error ports portlist 15_minute slot index 1 5 1_day slot index 1 2 Parameters packet Specify to display valid packets error Specify to display error packets ports Specify the port nu...

Page 388: ...512 1023 RX 0 1024 1518 RX 0 Unicast RX 0 Multicast RX 0 Broadcast RX 43 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh To display the statistics count of error packets for slot 2 DGS 3000 26TC admin show historical_counter error ports 1 15_minute slot 2 Command show historical_counter error ports 1 15_minute slot 2 Port 1 15 Minute Slot 2 Starttime 27 Jan 2000 22 32 51 Endtime 27 J...

Page 389: ...tilization of memory 15_minute Specify to display the 15 minute based statistics count If there is no option specified all 15 minutes time slots will be displayed slot Optional Specify the slot number to display from 1 to 5 index 1 5 Enter the slot number to display from 1 to 5 1_day Specify to display the daily based statistics count If there is no option specified all 1 day time slots will be di...

Page 390: ...1 27 Jan 2000 22 45 51 49 15 Minute Slot 2 27 Jan 2000 22 45 51 27 Jan 2000 22 30 51 49 15 Minute Slot 3 27 Jan 2000 22 30 51 27 Jan 2000 22 15 51 49 15 Minute Slot 4 27 Jan 2000 22 15 51 27 Jan 2000 22 00 51 49 15 Minute Slot 5 27 Jan 2000 22 00 51 27 Jan 2000 21 45 51 48 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh To display the memory utilization of the daily based slot DGS 30...

Page 391: ...rs portlist Enter a port or range of ports to be selected all Specify that all ports will be selected Restrictions Only Administrators and Operators can issue this command Example To clear the historical counter for all ports DGS 3000 26TC admin clear historical_counters all Command clear historical_counters all Success DGS 3000 26TC admin ...

Page 392: ...y_interval sec 1 65535 max_response_time sec 1 25 robustness_variable value 1 7 last_member_query_interval sec 1 25 state enable disable version value 1 3 1 config igmp access_authentication ports all portlist state enable disable config router_ports vlan_name 32 vlanid vlanid_list add delete portlist config router_ports_forbidden vlan_name 32 vlanid vlanid_list add delete portlist enable igmp_sno...

Page 393: ...ve Specify to enable or disable the IGMP snooping fast leave function enable Specify to enable the IGMP snooping fast leave function If enabled the membership is immediately removed when the system receives the IGMP leave message disable Specify to disable the IGMP snooping fast leave function report_suppression Specify whether to use IGMP report suppression to forward only one IGMP report per mul...

Page 394: ...ecify a range of VLANs to be configured vlanid_list Enter the VLAN ID list here value 1 1000 Enter the rate of the IGMP control packet that the Switch can process on a specific port VLAN The rate is specified in packets per second The packets that exceed the limit will be dropped no_limit Specify the rate of the IGMP control packet to be unlimited that the Switch can process on a specific port VLA...

Page 395: ...ge intervals value 1 7 Enter the robustness variable value here This value must be between 1 and 7 By default the robustness variable is set to 2 You might want to increase this value if you expect a subnet to be more loose Group member interval Amount of time that must pass before a multicast router decides there are no more members of a group on a network This interval is calculated as follows r...

Page 396: ...IGMP snooping querier DGS 3000 26TC admin config igmp_snooping querier vlan_name default query_interval 125 state enable Command config igmp_snooping querier vlan_name default query_interval 125 state enable Success DGS 3000 26TC admin config igmp access_authentication ports 38 4 Description This command is used to enable or disable the IGMP Access Control function for the specified ports If the I...

Page 397: ...lanid_list add delete portlist Parameters vlan_name 32 Enter the name of the VLAN on which the router port resides vlanid Specify the ID of the VLAN on which the router port resides vlanid_list Enter the VLAN ID here add Specify to add the router ports delete Specify to delete the router ports portlist Enter a range of ports to be configured Restrictions Only Administrators Operators and Power Use...

Page 398: ...ports portlist Enter a range of ports to be configured Restrictions Only Administrators Operators and Power Users can issue this command Example To set up port range 1 10 to forbidden router ports of default VLAN DGS 3000 26TC admin config router_ports_forbidden default add 11 12 Command config router_ports_forbidden default add 11 12 Success DGS 3000 26TC admin enable igmp_snooping 38 7 Descripti...

Page 399: ...g on the Switch DGS 3000 26TC admin disable igmp_snooping Command disable igmp_snooping Success DGS 3000 26TC admin create igmp_snooping static_group 38 9 Description This command is used to create an IGMP snooping static group Member ports can be added to the static group The static member and the dynamic member port form the member ports of a group The static group will only take effect when IGM...

Page 400: ...rators and Power Users can issue this command Example To create an IGMP snooping static group for VLAN 1 group 239 1 1 1 DGS 3000 26TC admin create igmp_snooping static_group vlan default 239 1 1 1 Command create igmp_snooping static_group vlan default 239 1 1 1 Success DGS 3000 26TC admin delete igmp_snooping static_group 38 10 Description This command is used to delete an IGMP snooping multicast...

Page 401: ...then the IGMP protocol will stop operating on this port The IGMP protocol will resume once this port is removed from static member ports The static member port will only affect V2 IGMP operation Format config igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr add delete portlist Parameters vlan Specify the name of the VLAN on which the static group resides vlan_name 32 Enter th...

Page 402: ...er the VLAN name here The VLAN name can be up to 32 characters long vlanid Specify the ID of the VLAN on which the static group resides vlanid_list Enter the VLAN ID here ipaddr Enter the multicast group IP address Restrictions None Example To display all the IGMP snooping static groups DGS 3000 26TC admin show igmp_snooping static_group VLAN ID Name IP Address Static Member Ports 1 Default 239 1 ...

Page 403: ...vlan_name vlanid vlanid_list state enable disable aged_out enable disable expiry_time sec 1 65535 1 Parameters all Specify all VLANs to be configured vlan_name Specify the VLAN name to be configured vlan_name Enter the VLAN name here vlanid Specify the VLAN ID to be configured vlanid_list Enter the VLAN ID here state Optional Specify to enable or disable the data driven learning of an IGMP snoopin...

Page 404: ...ped Format config igmp_snooping data_driven_learning max_learned_entry value 1 1024 Parameters max_learned_entry Specify the maximum number of groups that can be learned by data driven The default setting is 128 value 1 1024 Enter the maximum learning entry value here This value must be between 1 and 1024 Restrictions Only Administrators Operators and Power Users can issue this command Example To ...

Page 405: ...ete all the groups learned by data driven DGS 3000 26TC admin clear igmp_snooping data_driven_group all Command clear igmp_snooping data_driven_group all Success DGS 3000 26TC admin show igmp_snooping 38 16 Description This command is used to display the current IGMP snooping configuration on the Switch Format show igmp_snooping vlan vlan_name 32 vlanid vlanid_list Parameters vlan Optional Specify...

Page 406: ...uerier IP 0 0 0 0 Querier Expiry Time 0 secs State Disabled Fast Leave Disabled Rate Limit No Limitation Report Suppression Enabled Version 3 Data Driven Learning State Enabled Data Driven Learning Aged Out Disabled Data Driven Group Expiry Time 260 Total Entries 1 DGS 3000 26TC admin show igmp_snooping rate_limit 38 17 Description This command is used to display the IGMP snooping rate limit setti...

Page 407: ...rameters vlan Optional Specify the name of the VLAN for which you want to view IGMP snooping group information If VLAN ports and IP address are not specified the system will display all current IGMP snooping group information vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN for which you want to view IGMP snooping group ...

Page 408: ... 255 250 VLAN Name VID default 1 Member Ports 5 UP Time 2 Expiry Time 258 Filter Mode EXCLUDE Total Entries 3 DGS 3000 26TC admin DGS 3000 26TC admin show igmp_snooping group data_driven Command show igmp_snooping group data_driven Source Group NULL 225 0 0 5 VLAN Name VID default 1 Reports 0 Member Ports Router Ports 24 UP Time 3 days 50 mins Expiry Time 120 secs Filter Mode EXCLUDE Total Entries...

Page 409: ...piry Time 259 Filter Mode EXCLUDE Source Group NULL 239 255 255 250 VLAN Name VID default 1 Member Ports 5 UP Time 1 Expiry Time 259 Filter Mode EXCLUDE Total Entries 4 DGS 3000 26TC admin show igmp_snooping forwarding 38 19 Description This command is used to display the Switch s current IGMP snooping forwarding table It provides an easy way for users to check the list of ports that the multicast...

Page 410: ... current IGMP snooping forwarding table entries of the Switch Restrictions None Example To show all IGMP snooping forwarding entries located on the Switch DGS 3000 26TC admin show igmp_snooping forwarding Command show igmp_snooping forwarding VLAN Name default Source IP Multicast Group 225 0 0 0 Port Member 2 7 VLAN Name default Source IP Multicast Group 225 0 0 1 Port Member 2 5 VLAN Name default...

Page 411: ...een statically configured If no parameter is specified the system will display all currently configured router ports on the Switch Restrictions None Example To display router ports DGS 3000 26TC admin show router_ports all Command show router_ports all VLAN Name default Static Router Port 1 10 Dynamic Router Port Router IP 10 0 0 1 10 0 0 2 10 0 0 3 Forbidden router port VLAN Name vlan2 Static rou...

Page 412: ... to be displayed vlan_name Enter the VLAN name here vlanid Specify a list of VLANs to be displayed vlanid_list Enter the VLAN ID list here ports Specify a list of ports to be displayed portlist Enter the list of port to be displayed here Restrictions None Example To display the IGMP snooping statistics counter ...

Page 413: ...d By Rate Limitation 0 Dropped By Multicast VLAN 0 Report Leave IGMP v1 Report 0 IGMP v2 Report 0 IGMP v3 Report 0 IGMP v2 Leave 0 Total 0 Dropped By Rate Limitation 0 Dropped By Max Group Limitation 0 Dropped By Group Filter 0 Dropped By Multicast VLAN 0 Transmit Statistics Query IGMP v1 Query 0 IGMP v2 Query 44 IGMP v3 Query 0 Total 44 Report Leave IGMP v1 Report 0 IGMP v2 Report 0 IGMP v3 Repor...

Page 414: ... VLAN 0 Report Leave IGMP v1 Report 0 IGMP v2 Report 0 IGMP v3 Report 0 IGMP v2 Leave 0 Total 0 Dropped By Rate Limitation 0 Dropped By Max Group Limitation 0 Dropped By Group Filter 0 Dropped By Multicast VLAN 0 Transmit Statistics Query IGMP v1 Query 0 IGMP v2 Query 0 IGMP v3 Query 0 Total 0 Report Leave IGMP v1 Report 0 IGMP v2 Report 0 IGMP v3 Report 0 IGMP v2 Leave 0 Total 0 Total Entries 1 D...

Page 415: ...isplayed portlist Enter a range of ports to be displayed Restrictions None Example To display the IGMP Access Control status for ports 1 4 DGS 3000 26TC admin show igmp access_authentication ports 1 4 Command show igmp access_authentication ports 1 4 Port State 1 Enabled 2 Disabled 3 Disabled 4 Disabled DGS 3000 26TC admin To display the IGMP Access Control status for all ports ...

Page 416: ...sabled 11 Disabled 12 Disabled 13 Disabled 14 Disabled 15 Disabled 16 Disabled 17 Disabled 18 Disabled 19 Disabled 20 Disabled CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All clear igmp_snooping statistics counter 38 23 Description This command is used to clear the IGMP snooping statistics counter Format clear igmp_snooping statistics counter Parameters None Restrictions Only Administra...

Page 417: ...p_snooping host vlan vlan_name 32 vlanid vlanid_list ports portlist group ipaddr Parameters vlan Optional Specify the VLAN name vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Optional Specify the VLAN ID vlanid_list Enter the VLAN ID here ports Optional Specify that list of port that will be displayed portlist Enter the list of ports here group Optional Spec...

Page 418: ...0 2 3 3 198 19 1 4 1 225 0 3 4 3 198 19 1 5 1 225 0 4 5 5 198 19 1 6 1 225 0 5 6 5 198 19 1 7 1 225 0 6 7 4 198 19 1 8 1 225 0 7 8 4 198 19 1 9 1 239 255 255 250 7 10 90 90 90 Total Entries 11 DGS 3000 26TC admin To display the host IP information for the group 225 0 1 0 DGS 3000 26TC admin show igmp_snooping host group 225 0 1 0 Command show igmp_snooping host group 225 0 1 0 VLAN ID Group Port N...

Page 419: ...vlan_name mac_address macaddr show address_binding ip_mac all ipaddress ipaddr ipv6address ipv6addr mac_address macaddr mac_address macaddr enable address_binding dhcp_snoop ipv6 all disable address_binding dhcp_snoop ipv6 all clear address_binding dhcp_snoop binding_entry ports portlist all ipv6 all show address_binding dhcp_snoop max_entry ports portlist show address_binding dhcp_snoop binding_e...

Page 420: ...c ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Command create address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Success DGS 3000 26TC admin config address_binding ip_mac ports 39 2 Description This command is used to configure the state of IMPB on the Switch for each port Format config address_binding ip_mac ports portlist all arp_inspection strict loose disable ip_inspec...

Page 421: ... to enable the allow zero IP option disable Specify to disable the allow zero IP option forward_dhcppkt Optional By default DHCP packets with a broadcast DA will be flooded When set to disabled the broadcast DHCP packet received by the specified port will not be forwarded This setting is effective when DHCP Snooping is enabled in this case DHCP packets trapped by the CPU must be forwarded by the s...

Page 422: ...e80 240 5ff fe00 28 mac_address 00 00 00 00 00 11 Command create address_binding ip_mac ipv6address FE80 240 5FF FE00 28 mac_address 00 00 00 00 00 11 Success DGS 3000 26TC admin config address_binding ip_mac ipv6address 39 4 Description This command is used to update an address binding entry using IPv6 Format config address_binding ip_mac ipv6address ipv6addr mac_address macaddr ports portlist al...

Page 423: ...ntry Format delete address_binding blocked all vlan_name vlan_name mac_address macaddr Parameters all Specify that all the entries the address database that the system has automatically blocked to be deleted vlan_name Specify the name of the VLAN to which the blocked MAC address belongs vlan_name Enter the VLAN name mac_address Specify the MAC address of the entry or the blocked MAC address macadd...

Page 424: ...s used ipv6address Specify the learned IPv6 address of the entry in the database ipv6addr Enter the IPv6 address used mac_address Specify the MAC address used for this configuration macaddr Enter the MAC address used Restrictions Only Administrators Operators and Power Users can issue this command Example To delete a specified IMPB entry DGS 3000 26TC admin delete address_binding ip_mac ipaddress ...

Page 425: ...dministrators Operators and Power Users can issue this command Example To configure an IMPB entry DGS 3000 26TC admin config address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Command config address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Success DGS 3000 26TC admin show address_binding 39 8 Description This command is used to display the IMPB global se...

Page 426: ...w Forward 500 Normal 5 Disabled Disabled All Not Allow Forward 500 Normal 6 Disabled Disabled All Not Allow Forward 500 Normal 7 Disabled Disabled All Not Allow Forward 500 Normal 8 Disabled Disabled All Not Allow Forward 500 Normal 9 Disabled Disabled All Not Allow Forward 500 Normal 10 Disabled Disabled All Not Allow Forward 500 Normal 11 Disabled Disabled All Not Allow Forward 500 Normal 12 Dis...

Page 427: ...ing blocked all VID VLAN Name MAC Address Port 1 default 00 0C 6E AA B9 C0 1 Total Entries 1 DGS 3000 26TC admin show address_binding ip_mac 39 10 Description This command is used to display the IMPB entries Format show address_binding ip_mac all ipaddress ipaddr ipv6address ipv6addr mac_address macaddr mac_address macaddr Parameters all Specify that all the IP addresses to be displayed ipaddress ...

Page 428: ...ic port Each entry is associated with a lease time When the lease time has expires the expired entry will be removed from the port The auto learned binding entry can be moved from one port to another port if the DHCP snooping function has learned that the MAC address has moved to a different port If a situation occurs where a binding entry learned by DHCP snooping conflicts with a statically confi...

Page 429: ...e address_binding dhcp_snoop Command enable address_binding dhcp_snoop Success DGS 3000 26TC admin disable address_binding dhcp_snoop 39 12 Description This command is used to disable DHCP snooping mode When the DHCP snooping function is disabled all of the auto learned binding entries will be removed Format disable address_binding dhcp_snoop ipv6 all Parameters ipv6 Optional Specify to disable th...

Page 430: ...ter the list of ports used all Specify that all the ports will be used ipv6 Optional Specify to clear the IPv6 entries all Optional Specify to clear all entries Restrictions Only Administrators Operators and Power Users can issue this command Example To clear DHCP IPv4 snooping entries on ports 1 3 DGS 3000 26TC admin clear address_binding dhcp_snoop binding_entry ports 1 3 Command clear address_b...

Page 431: ... DHCP Snoop IPv6 Disabled DGS 3000 26TC admin To display DHCP snooping maximun entry configuration DGS 3000 26TC admin show address_binding dhcp_snoop max_entry Command show address_binding dhcp_snoop max_entry Port Max Entry Max IPv6 Entry 1 No Limit No Limit 2 No Limit No Limit 3 No Limit No Limit 4 No Limit No Limit 5 No Limit No Limit 6 No Limit No Limit 7 No Limit No Limit 8 No Limit No Limit...

Page 432: ... the DHCP snooping binding entries DGS 3000 26TC admin show address_binding dhcp_snoop binding_entry Command show address_binding dhcp_snoop binding_entry S Status A Active I Inactive Time Left Time sec IP Address MAC Address S Time Port 10 62 58 35 00 0B 5D 05 34 0B A 35964 1 10 33 53 82 00 20 c3 56 b2 ef I 2590 2 Total entries 2 DGS 3000 26TC admin config address_binding dhcp_snoop max_entry 39 ...

Page 433: ...cify the IPv6 address used for this configuration Restrictions Only Administrators Operators and Power Users can issue this command Example To set the maximum number of DHCP IPv4 snooping entries that ports 1 3 can learned to 10 DGS 3000 26TC admin config address_binding dhcp_snoop max_entry ports 1 3 limit 10 Command config address_binding dhcp_snoop max_entry ports 1 3 limit 10 Success DGS 3000 ...

Page 434: ...can issue this command Example To disable the ND snooping function on the switch DGS 3000 26TC admin disable address_binding nd_snoop Command disable address_binding nd_snoop Success DGS 3000 26TC admin config address_binding nd_snoop ports 39 19 Description This command is used to specify the maximum number of entries that can be learned with ND snooping By default there is no limit on the maximu...

Page 435: ...learned by ND snooping on ports 1 to 3 DGS 3000 26TC admin config address_binding nd_snoop ports 1 3 max_entry 10 Command config address_binding nd_snoop ports 1 3 max_entry 10 Success DGS 3000 26TC admin show address_binding nd_snoop 39 20 Description This command is used to display the status of ND snooping on the Switch Format show address_binding nd_snoop ports portlist Parameters ports Option...

Page 436: ...5 Port Max Entry 1 10 2 10 3 10 4 No Limit 5 No Limit DGS 3000 26TC admin show address_binding nd_snoop binding_entry 39 21 Description This command is used to show the ND snooping binding entries on the Switch Format show address_binding nd_snoop binding_entry port port Parameters port Optional Specify a port used for this display port Enter the port number used for this display here Restrictions...

Page 437: ...the ND snooping entries on specified ports Format clear address_binding nd_snoop binding_entry ports portlist all Parameters portlist Enter the list of ports that you would like to clear the ND snoop learned entry all Specify to clear all ND snooping learned entries Restrictions Only Administrators Operators and Power Users can issue this command Example To clear ND snooping entry on ports 1 3 DGS...

Page 438: ...able the IMPB traps and logs DGS 3000 26TC admin enable address_binding trap_log Command enable address_binding trap_log Success DGS 3000 26TC admin disable address_binding trap_log 39 24 Description This command is used to disable the IMPB traps and logs Format disable address_binding trap_log Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Exampl...

Page 439: ...t need to recover the IMPB check portlist Enter the list of port used here all Specify that all the ports will be used Restrictions Only Administrators Operators and Power Users can issue this command Example To recover IMPB checking for ports 6 to 7 DGS 3000 26TC admin config address_binding recover_learning ports 6 7 Command config address_binding recover_learning ports 6 7 Success DGS 3000 26TC...

Page 440: ...the state Restrictions Only Administrator users can issue this command Example To print out all debug IMPB messages DGS 3000 26TC admin debug address_binding all state enable Command debug address_binding all state enable Success DGS 3000 26TC admin no debug address_binding 39 27 Description This command is used to stop the IMPB debug starting when the IMPB module receives an ARP IP packet or a DH...

Page 441: ...ble the IMPB roaming Format enable address_binding roaming Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enable the IMPB roaming DGS 3000 26TC admin enable address_binding roaming Command enable address_binding roaming Success DGS 3000 26TC admin disable address_binding roaming 39 29 Description This command is used to disable the IMPB...

Page 442: ...I Reference Guide 438 Restrictions Only Administrators Operators and Power Users can issue this command Example To disable the IMPB roaming DGS 3000 26TC admin disable address_binding roaming Command disable address_binding roaming Success DGS 3000 26TC admin ...

Page 443: ... 1 Description This command is used to add a static neighbor on an IPv6 interface Format create ipv6 neighbor_cache ipif ipif_name 12 ipv6addr macaddr Parameters ipif Specify the interface s name ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long ipv6addr Enter the IPv6 address of the neighbor macaddr Enter the MAC address of the neighbor Restrictions Only Admi...

Page 444: ...onfiguration ipv6addr Enter the neighbor s IPv6 address static Deletes the static entry dynamic Deletes those dynamic entries all Deletes all entries include static and dynamic entries Restrictions Only Administrators Operators and Power Users can issue this command Example Delete a neighbor cache entry on IP interface System DGS 3000 26TC admin delete ipv6 neighbor_cache ipif System 3ffc 1 Comman...

Page 445: ...3FFC 1 State Static MAC Address 00 01 02 03 04 05 Port NA Interface System VID 1 Total Entries 1 DGS 3000 26TC admin config ipv6 nd ns retrans_time 40 4 Description This command is used to configure the IPv6 ND neighbor solicitation retransmit time which is between retransmissions of neighbor solicitation messages to a neighbor when resolving the address or when probing the reachability of a neigh...

Page 446: ...mmand is used to display information regarding neighbor detection on the Switch Format show ipv6 nd ipif ipif_name 12 Parameters ipif Optional The name of the interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long If no IP interface is specified it will show the IPv6 ND related configuration of all interfaces Restrictions Only Administrators Operators and...

Page 447: ...535 primary backup Parameters default Specify an IPv6 default route ipv6networkaddr Enter the IPv6 address and prefix of the destination of the route ipif_name 12 Enter the ipif_name to specify the IP interface for this route from an exisiting interface Enter the IPv6 route name using a maximum of 12 characters ipv6addr Enter the next hop address of the route ipv6addr Specify the next ipv6 address...

Page 448: ...e This name can be up to 12 characters long ipv6addr Enter the next hop address for the route ipv6addr Enter the next hop address for the route all Specify to delete all created static routes Restrictions Only Administrators Operators and Power Users can issue this command Example Delete an IPv6 static route DGS 3000 26TC admin delete ipv6route default System 3FFC 1 Command delete ipv6route defaul...

Page 449: ...xample Show all the IPv6 routes DGS 3000 26TC admin show ipv6route Command show ipv6route IPv6 Prefix 2002 16 Protocol Static Metric 1 Next Hop IPIF tn2 IPv6 Prefix 2002 404 104 1 64 Protocol Local Metric 1 Next Hop IPIF tn2 Total Entries 2 DGS 3000 26TC admin show ipv6route static Command show ipv6route static IPv6 Prefix 3000 62 1 64 Protocol Static Metric 1 Next Hop IPIF tn1 Backup Primary Stat...

Page 450: ...5535 config jwac switch_http_port tcp_port_number 1 65535 http https config jwac ports portlist all state enable disable max_authenticating_host value 0 50 aging_time infinite min 1 1440 idle_time infinite min 1 1440 block_time sec 0 300 auth_mode host_based port_based 1 show jwac ports portlist config jwac radius_protocol local eap_md5 pap chap ms_chap ms_chapv2 create jwac user username 15 vlan ...

Page 451: ...entication with the quarantine server and the second stage is the authentication with the Switch Format enable jwac Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enable JWAC DGS 3000 26TC admin enable jwac Command enable jwac Success DGS 3000 26TC admin disable jwac 42 2 Description This command is used to disable JWAC Format disable j...

Page 452: ...word to authenticate NOTE If the quarantine server is linked to the JWAC enabled port on the switch it must be added to the static FDB correctly before it can work properly Format config jwac quarantine_server_url string 128 ipv6 string 128 clear_quarantine_server_url ipv6 Parameters quarantine_server_url Specify the entire URL of the authentication page on the quarantine server string 128 Enter t...

Page 453: ... admin To configure Quarantine Server URL Add IPv6 Quarantine Server URL on v1 10 DGS 3000 26TC admin config jwac quarantine_server_url ipv6 http 3000 2 authpage html Command config jwac quarantine_ server_url ipv6 http 3000 2 authpage html Success DGS 3000 26TC admin show jwac 42 4 Description This command is used to display the JWAC configuration settings Format show jwac Parameters None Restric...

Page 454: ...abled Local Authorization Enabled Function Version 2 11 DGS 3000 26TC admin enable jwac redirect 42 5 Description This command is used to enable JWAC redirect When redirect quarantine_server is enabled the unauthenticated host will be redirected to a quarantine server when it tries to access a random URL When redirect jwac_login_page is enabled the unauthenticated host will be redirected to the jw...

Page 455: ...rmat disable jwac redirect Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable JWAC redirect DGS 3000 26TC admin disable jwac redirect Command disable jwac redirect Success DGS 3000 26TC admin config jwac redirect 42 7 Description This command is used to configure redirect destination and delay time before an unauthenticated host is ...

Page 456: ...ictions Only Administrators Operators and Power Users can issue this command Example To configure JWAC redirect destination to JWAC login web page and a delay time of 5 seconds DGS 3000 26TC admin config jwac redirect destination jwac_login_page delay_time 5 Command config jwac redirect destination jwac_login_page delay_time 5 Success DGS 3000 26TC admin enable jwac forcible_logout 42 8 Descriptio...

Page 457: ...ators Operators and Power Users can issue this command Example To disable JWAC forcible logout DGS 3000 26TC admin disable jwac forcible_logout Command disable jwac forcible_logout Success DGS 3000 26TC admin enable jwac udp_filtering 42 10 Description This command is used to enable the JWAC UDP filtering function When UDP filtering is enabled all UDP and ICMP packets except DHCP and DNS packets f...

Page 458: ...dp_filtering Command enable jwac udp_filtering Success DGS 3000 26TC admin disable jwac udp_filtering 42 11 Description This command is used to disable JWAC UDP filtering Format disable jwac udp_filtering Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable JWAC UDP filtering DGS 3000 26TC admin disable jwac udp_filtering Command disa...

Page 459: ...he redirect destination is configured to be quarantine server Format enable jwac quarantine_server_monitor Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enable JWAC quarantine server monitoring DGS 3000 26TC admin enable jwac quarantine_server_monitor Command enable jwac quarantine_server_monitor Success DGS 3000 26TC admin disable jwa...

Page 460: ...ng the configured error timeout the Switch then regards it as not working properly Format config jwac quarantine_server_error_timeout sec 5 300 Parameters sec 5 300 Enter the error timeout interval Restrictions Only Administrators Operators and Power Users can issue this command Example To set the quarantine server error timeout DGS 3000 26TC admin config jwac quarantine_server_error_timeout 60 Co...

Page 461: ... jwac virtual_ip 2000 2 url www kyotov6 ac jp Success DGS 3000 26TC admin config jwac update_server 42 16 Description This command is used to add or delete a server network address to which the traffic from an unauthenticated client host will not be blocked by the JWAC Switch Any servers running ActiveX need to be able to have access to accomplish authentication Before the client passes authentica...

Page 462: ...ween 1 and 65535 port_number 1 65535 Enter a UDP port value between 1 and 65535 Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the update servers DGS 3000 26TC admin config jwac update_server add ipaddress 10 1 1 1 8 Command config jwac update_server add ipaddress 10 1 1 1 8 Update Server 10 0 0 0 8 is added Success DGS 3000 26TC admin config...

Page 463: ...ecify to disable the JWAC port state max_authenticating_host Specify the maximum number of hosts that can process authentication on each port at the same time The default value is 50 value 0 50 Enter the maximum number of authenticating hosts between 0 and 50 aging_time Specify a time period during which an authenticated host will keep in authenticated state infinite Specify to indicate the authen...

Page 464: ...mple To configure the JWAC port state DGS 3000 26TC admin config jwac ports 1 9 state enable Command config jwac ports 1 9 state enable Success DGS 3000 26TC admin show jwac ports 42 19 Description This command is used to display the port configuration of JWAC Format show jwac ports portlist Parameters portlist Optional Enter a port range to show the configuration of JWAC Restrictions None Example...

Page 465: ... the config radius command supports the protocol Format config jwac radius_protocol local eap_md5 pap chap ms_chap ms_chapv2 Parameters local Specify the JWAC switch uses the local user DB to complete the authentication eap_md5 Specify the JWAC switch uses EAP MD5 to communicate with the RADIUS server pap Specify the JWAC switch uses PAP to communicate with the RADIUS server chap Specify the JWAC ...

Page 466: ... ID value must be between 1 and 4094 Restrictions Only Administrators Operators and Power Users can issue this command Example To create a JWAC user in the local database DGS 3000 26TC admin create jwac user 112233 Command create jwac user 112233 Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3000 26TC admin config jwac user 42 22 Description This com...

Page 467: ...n delete jwac 42 23 Description This command is used to delete JWAC users from the local database Format delete jwac user username 15 all_users Parameters user Specify the user name to be deleted username 15 Enter the user name to be deleted The user name can be up to 15 characters long all_users Specify all user accounts in the local database will be deleted Restrictions Only Administrators Opera...

Page 468: ...how jwac user Command show jwac user User Name Password VID 112233 112233 123 123 1 Total Entries 2 DGS 3000 26TC admin clear jwac auth_state 42 25 Description This command is used to clear authentication entries Format clear jwac auth_state ports all portlist authenticated authenticating blocked mac_addr macaddr Parameters ports Specify the port range to delete hosts on all Specify to delete all ...

Page 469: ...o delete authentication entries DGS 3000 26TC admin clear jwac auth_state ports all blocked Command clear jwac auth_state ports all blocked Success DGS 3000 26TC admin show jwac auth_state ports 42 26 Description This command is used to display information for JWAC client hosts Format show jwac auth_state ports portlist Parameters portlist Optional Enter a port range to show the JWAC authenticatio...

Page 470: ...on When the authorization is enabled for JWAC s RADIUS the authorized data assigned by the RADUIS server will be accepted if the global authorization network is enabled When the authorization is enabled for JWAC s local the authorized data assigned by the local database will be accepted Format config jwac authorization attributes radius enable disable local enable disable 1 Parameters radius If Sp...

Page 471: ...3000 26TC admin config jwac authorization attributes local disable Command config jwac authorization attributes local disable Success DGS 3000 26TC admin show jwac update_server 42 28 Description This command is used to display the JWAC update server Format show jwac update_server Parameters None Restrictions None Example To display the JWAC update server ...

Page 472: ...admin config jwac authentication_page element 42 29 Description This command is used by administrators to customize the JWAC authenticate page Format config jwac authentication_page element japanese english default page_title desc 128 login_window_title desc 32 user_name_title desc 16 password_title desc 16 logout_window_title desc 32 notification_line value 1 5 desc 128 Parameters japanese Specif...

Page 473: ...parameter to set the notification information by line in authentication Web pages value 1 5 Enter a notification line value between 1 and 5 desc 128 Enter a notification line description up to 128 characters long Restrictions Only Administrators Operators and Power Users can issue this command Example To customize the authenticate page DGS 3000 26TC admin config jwac authentication_page element ja...

Page 474: ...S 3000 26TC admin config jwac authenticate_page japanese Command config jwac authenticate_page japanese Success DGS 3000 26TC admin show jwac authenticate_page 42 31 Description This command is used to display the element mapping of the customized authenticate page Format show jwac authenticate_page Parameters None Restrictions None Example To display the element mapping of the customized authenti...

Page 475: ...nt Page English Version English Page Element Page Title Login Window Title Authentication Login User Name Title User Name Password Title Password Logout Window Title Logout from the network Notification Japanese Page Element Page Title Login Window Title 社内 LAN 認証ログイン User Name Title ユーザ ID Password Title パスワード CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All ...

Page 476: ...umbo frame setting as enable Format enable jumbo_frame Parameters None Restrictions Only Administrators and Operators can issue this command Example To enable the Jumbo frame DGS 3000 26TC admin enable jumbo_frame Command enable jumbo_frame The maximum size of jumbo frame is 12288 bytes Success DGS 3000 26TC admin disable jumbo_frame 43 2 Description This command is used to configure the jumbo fra...

Page 477: ...admin disable jumbo_frame Command disable jumbo_frame Success DGS 3000 26TC admin show jumbo_frame 43 3 Description This command is used to display the current configuration of jumbo frame Format show jumbo_frame Parameters None Restrictions None Example To show the Jumbo frame DGS 3000 26TC admin show jumbo_frame Command show jumbo_frame Jumbo Frame State Disabled Maximum Frame Size 1536 Bytes DG...

Page 478: ...otocol_tunnel uni nni enable l2protocol_tunnel 44 1 Description This command is used to enable the Layer 2 protocol tunneling function Format enable l2protocol_tunnel Parameters None Restrictions Only Administrators and Operators can issue this command Example To enable the Layer 2 protocol tunneling function DGS 3000 26TC admin enable l2protocol_tunnel Command enable l2protocol_tunnel Success DGS...

Page 479: ...00 0C CC CC CC is 01 05 5D 00 00 10 and for protocol MAC 01 00 0C CC CC CD is 01 05 5D 00 00 11 When QinQ is enabled an S TAG will be added to the Layer 2 PDU too The S TAG is assigned according QinQ VLAN configuration Format config l2protocol_tunnel ports portlist all type uni tunneled_protocol stp gvrp protocol_mac 01 00 0C CC CC CC 01 00 0C CC CC CD 1 all threshold value 0 65535 nni none Parame...

Page 480: ...is command Example To configure the STP tunneling on ports 1 4 DGS 3000 26TC admin config l2protocol_tunnel ports 1 4 type uni tunneled_protocol stp Command config l2protocol_tunnel ports 1 4 type uni tunneled_protocol stp Success DGS 3000 26TC admin show l2protocol_tunnel 44 4 Description This command is used to display Layer 2 protocol tunneling information Format show l2protocol_tunnel uni nni ...

Page 481: ...and show l2protocol_tunnel Global State Enabled UNI Ports 1 4 NNI Ports DGS 3000 26TC admin To show Layer 2 protocol tunneling information summary DGS 3000 26TC admin show l2protocol_tunnel uni Command show l2protocol_tunnel uni UNI Tunneled Threshold Port Protocol packet sec 1 STP 0 2 STP 0 3 STP 0 4 STP 0 DGS 3000 26TC admin ...

Page 482: ...lacp_port portlist create link_aggregation group_id 45 1 Description This command is used to create a link aggregation group on the Switch Format create link_aggregation group_id value type lacp static Parameters value Enter the group ID value here type Optional Specify the group type is belong to static or LACP If type is not specified the default is static type lacp Specify to use LACP as the gr...

Page 483: ...C admin config link_aggregation group_id 45 3 Description This command is used to configure a previously created link aggregation group Format config link_aggregation group_id value master_port port ports portlist state enable disable Parameters group_id Specify the group ID The group number identifies each of the groups value Enter the group ID value here For the DGS 3000 10TC this value must be ...

Page 484: ...tion This command is used to configure the part of the packet examined by the Switch when selecting the egress port for transmitting load sharing data This feature is available using the address based load sharing algorithm only Format config link_aggregation algorithm mac_source mac_destination mac_source_dest ip_source ip_destination ip_source_dest Parameters mac_source Indicates that the Switch...

Page 485: ...l Specify the group ID The group number identifies each of the groups value Enter the group ID value here algorithm Optional Allows you to specify the display of link aggregation by the algorithm in use by that group If no parameter specified system will display all link aggregation information Restrictions None Example Link aggregation group enable DGS 3000 26TC admin show link_aggregation Comman...

Page 486: ...abled DGS 3000 26TC admin show link_aggregation Command show link_aggregation Link Aggregation Algorithm MAC Source Dest Group ID 1 Type LACP Master Port 5 Member Port 5 7 Active Port Status Disabled Flooding Port 7 Total Entries 1 DGS 3000 26TC admin config lacp_port 45 6 Description This command is used to configure per port LACP mode Format config lacp_port portlist mode active passive Paramete...

Page 487: ... admin config lacp_port 1 12 mode active command config lacp_port 1 12 mode active Success DGS 3000 26TC admin show lacp_port 45 7 Description This command is used to display the current mode of LACP of the ports Format show lacp_port portlist Parameters lacp_port Specify a range of ports to be configured portlist Enter the list of ports used for this configuration here If no parameter specified t...

Page 488: ...Ethernet Switch CLI Reference Guide 484 DGS 3000 26TC admin show lacp_port Command show lacp_port Port Activity 1 Active 2 Active 3 Active 4 Active 5 Active 6 Active 7 Active 8 Active 9 Active 10 Active 11 Active 12 Active DGS 3000 26TC admin ...

Page 489: ... ipaddr ipv6 ipv6addr show lldp ports portlist show lldp local_ports portlist mode brief normal detailed show lldp remote_ports portlist mode brief normal detailed show lldp statistics show lldp statistics ports portlist config lldp_med fast_start repeat_count value 1 10 config lldp_med log state enable disable config lldp_med notification topo_change ports portlist all state enable disable config...

Page 490: ...an issue this command Example To enable LLDP DGS 3000 26TC admin enable lldp Command enable lldp Success DGS 3000 26TC admin disable lldp 46 2 Description This command is used to stop sending and receiving of LLDP advertisement packet Format disable lldp Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable LLDP ...

Page 491: ...ultiplier Specify to configure the message hold multiplier The default setting 4 2 10 Enter the message transmit hold multiplier value here This value must be between 2 and 10 tx_delay Specify the minimum interval between sending of LLDP messages due to constantly change of MIB content The default setting 2 seconds sec 1 8192 Enter the transmit delay value here This value must be between 1 and 819...

Page 492: ...terval to 10 second DGS 3000 26TC admin config lldp notification_interval 10 Command config lldp notification_interval 10 Success DGS 3000 26TC admin config lldp ports 46 5 Description This command is used to configure each port for sending a notification to configure the SNMP trap receiver s Format config lldp ports portlist all notification enable disable admin_status tx_only rx_only tx_and_rx d...

Page 493: ...onal This TLV optional data type includes indicates that LLDP agent should transmit System Description TLV The default state is disabled system_capabilities Optional This TLV optional data type includes indicates that LLDP agent should transmit System Capabilities TLV The system capability will indicate whether the device provides repeater bridge or router function and whether the provided functio...

Page 494: ...all the IEEE 802 3 specific TLV data type will be used mac_phy_configuration_status Optional This TLV optional data type indicates that LLDP agent should transmit MAC PHY configuration status TLV This type indicates it is possible for two ends of an IEEE 802 3 link to be configured with different duplex and or speed settings and still establish some limited network connectivity More precisely the ...

Page 495: ...r ipv4 10 90 90 90 enable Command config lldp ports 1 2 mgt_addr ipv4 10 90 90 90 enable Success DGS 3000 26TC admin To configure exclude the system name TLV from the outbound LLDP advertisements for all ports DGS 3000 26TC admin config lldp ports all basic_tlvs system_name enable Command config lldp ports all basic_tlvs system_name enable Success DGS 3000 26TC admin To configure exclude the vlan ...

Page 496: ...the outbound LLDP advertisements for all ports DGS 3000 26TC admin config lldp ports all dot1_tlv_protocol_identity all enable Command config lldp ports all dot1_tlv_protocol_identity all enable Success DGS 3000 26TC admin To configure exclude the MAC PHY configuration status TLV from the outbound LLDP advertisements for all ports DGS 3000 26TC admin config lldp ports all dot3_tlvs mac_phy_configu...

Page 497: ... can issue this command Example To configure LLDP to forward LLDP PDUs DGS 3000 26TC admin config lldp forward_message enable Command config lldp forward_message enable Success DGS 3000 26TC admin show lldp 46 7 Description This command is used to display the Switch s general LLDP configuration status Format show lldp Parameters None Restrictions None Example To display the LLDP system level confi...

Page 498: ...l 30 Message TX Hold Multiplier 4 ReInit Delay 2 TX Delay 2 Notification Interval 5 DGS 3000 26TC admin show lldp mgt_addr 46 8 Description This command is used to display the LLDP management address information Format show lldp mgt_addr ipv4 ipaddr ipv6 ipv6addr Parameters ipv4 Optional Specify the IPv4 address used for the display ipaddr Enter the IPv4 address used for this configuration here ip...

Page 499: ...6 1 4 1 171 10 133 2 1 Advertising Ports 1 2 5 DGS 3000 26TC admin show lldp ports 46 9 Description This command is used to display the LLDP per port configuration for advertisement options Format show lldp ports portlist Parameters portlist Optional Enter a range of ports to be displayed If the port list is not specified information for all the ports will be displayed Restrictions None Example To...

Page 500: ...tus Disabled Power Via MDI Disabled Link Aggregation Disabled Maximum Frame Size Disabled DGS 3000 26TC admin show lldp local_ports 46 10 Description This command is used to display the per port information currently available for populating outbound LLDP advertisements Format show lldp local_ports portlist mode brief normal detailed Parameters portlist Optional Enter a range of ports to be config...

Page 501: ..._ports 1 mode detailed Port ID 1 Port ID Subtype MAC Address Port ID 00 01 02 03 04 01 Port Description D Link DGS 3000 26TC R1 10 013 Port 1 Port PVID 1 Management Address Count 1 Subtype IPv4 Address 10 90 90 90 IF Type IfIndex OID 1 3 6 1 4 1 171 10 133 2 1 PPVID Entries Count 0 None VLAN Name Entries Count 1 Entry 1 VLAN ID 1 VLAN Name default Protocol Identity Entries Count 0 CTRL C ESC q Qui...

Page 502: ...000 26TC admin To display outbound LLDP advertisements for port 1 in brief mode DGS 3000 26TC admin show lldp local_ports 1 mode brief Command show lldp local_ports 1 mode brief Port ID 1 Port ID Subtype MAC Address Port ID 00 01 02 03 04 01 Port Description D Link DGS 3000 26TC R1 10 013 Port 1 DGS 3000 26TC admin show lldp remote_ports 46 11 Description This command is used to display the inform...

Page 503: ...iled mode Restrictions None Example To display remote table in brief mode DGS 3000 26TC admin show lldp remote_ports 3 mode brief Command show lldp remote_ports 3 mode brief Port ID 3 Remote Entities Count 1 Entity 1 Chassis ID Subtype MAC Address Chassis ID 00 12 13 04 05 00 Port ID Subtype MAC Address Port ID 00 12 13 04 05 03 Port Description D Link DGS 3000 26TC R1 10 013 Port 3 DGS 3000 26TC ...

Page 504: ...ubtype MAC Address Port ID 00 12 13 04 05 03 Port Description D Link DGS 3000 26TC R1 10 013 Port 3 System Name System Description Fast Ethernet Switch System Capabilities Repeater Bridge Management Address Count 1 Port PVID 1 PPVID Entries Count 0 VLAN Name Entries Count 0 Protocol ID Entries Count 0 MAC PHY Configuration Status See Detail Power Via MDI None Link Aggregation See Detail Maximum Fr...

Page 505: ...ystem Capabilities Repeater Bridge Management Address Count 1 Entry 1 Subtype IPv4 Address 10 90 90 90 IF Type IfIndex OID 1 3 6 1 4 1 171 10 113 9 1 Port PVID 1 PPVID Entries Count 0 None VLAN Name Entries Count 0 None Protocol ID Entries Count 0 None MAC PHY Configuration Status Auto Negotiation Support Supported Auto Negotiation Status Enabled Auto Negotiation Advertised Capability 6c00 hex Aut...

Page 506: ...n DGS 3000 26TC admin show lldp statistics Command show lldp statistics Last Change Time 1792 Number of Table Insert 0 Number of Table Delete 0 Number of Table Drop 0 Number of Table Ageout 0 DGS 3000 26TC admin show lldp statistics ports 46 13 Description This command is used to display per port LLDP statistics Format show lldp statistics ports portlist Parameters portlist Optional Enter a range ...

Page 507: ...This command is used to configure the fast start repeat count When an LLDP MED Capabilities TLV is detected for an MSAP identifier not associated with an existing LLDP remote system MIB the application layer shall start the fast start mechanism and set the medFastStart timer to medFastStartRepeatCount times 1 Format config lldp_med fast_start repeat_count value 1 10 Parameters value 1 10 Enter a f...

Page 508: ...ed log state enable Success DGS 3000 26TC admin config lldp_med notification topo_change ports 46 16 Description This command is used to enable or disable each port for sending topology change notification to configured SNMP trap receiver s if an endpoint device is removed or moved to another port Format config lldp_med notification topo_change ports portlist all state enable disable Parameters po...

Page 509: ...te enable disable Parameters portlist Enter a range of ports to be configured all Specify to set all ports in the system med_transit_capabilities Specify to send the LLDP MED TLV capabilities all Specify to send capabilities network policy and inventory capabilities Specify that the LLDP agent should transmit LLDP MED capabilities TLV If a user wants to transmit LLDP MED PDU this TLV type should b...

Page 510: ...t Parameters portlist Optional Enter a range of ports to be displayed If a port list is not specified information for all ports will be displayed Restrictions None Example To display LLDP MED configuration information for port 1 DGS 3000 26TC admin show lldp_med ports 1 Command show lldp_med ports 1 Port ID 1 Topology Change Notification Status Enabled LLDP MED Capabilities TLV Enabled LLDP MED Ne...

Page 511: ...ision A1 Firmware Revision 1 00 002 Software Revision 1 10 013 Serial Number Manufacturer Name D Link Model Name DGS 3000 26TC Gigabit Ethernet Switch Asset ID LLDP MED Configuration Fast Start Repeat Count 4 LLDP MED Log State Disabled DGS 3000 26TC admin show lldp_med local_ports 46 20 Description This command is used to display the per port LLDP MED information currently available for populatin...

Page 512: ...rt Capabilities Support Network Policy Support Location Identification Not Support Extended Power Via MDI PSE Not Support Extended Power Via MDI PD Not Support Inventory Support Network Policy None Extended Power Via MDI None DGS 3000 26TC admin show lldp_med remote_ports 46 21 Description This command is used to display LLDP MED information learned from neighbors Format show lldp_med remote_ports...

Page 513: ...ork Policy Support Location Identification Support Extended Power Via MDI Support Inventory Support LLDP MED Capabilities Enabled Capabilities Enabled Network Policy Enabled Location Identification Enabled Extended Power Via MDI Enabled Inventory Enabled Network Policy Application Type Voice VLAN ID Priority DSCP Unknown True Tagged Application Type Softphone Voice VLAN ID 200 Priority 7 DSCP 5 Un...

Page 514: ... Managed Gigabit Ethernet Switch CLI Reference Guide 510 Power Request 8 Watts Inventory Management Hardware Revision Firmware Revision Software Revision Serial Number Manufacturer Name Model Name Asset ID DGS 3000 26TC admin ...

Page 515: ...o recovery mechanism is disabled a user would need to manually recover a disabled port The default value for the recover timer is 60 seconds value 0 Enter 0 to specify that the auto recovery mechanism should be disabled When the auto recovery mechanism is disabled a user would need to manually recover a disabled port sec 60 1000000 Enter the recovery timer value here This value must be between 60 ...

Page 516: ...s on the Switch Format config loopdetect ports portlist all state enable disable Parameters ports Specify the range of ports that LBD will be configured on portlist Enter a list of ports all Specify to set all ports in the system state Specify whether the LBD function should be enabled or disabled on the ports specified in the port list The default state is disabled enable Specify to enable the LB...

Page 517: ...Administrators Operators and Power Users can issue this command Example To enable the LBD function globally DGS 3000 26TC admin enable loopdetect Command enable loopdetect Success DGS 3000 26TC admin disable loopdetect 47 4 Description This command is used to disable the LBD function globally on the Switch Format disable loopdetect Parameters None Restrictions Only Administrators Operators and Pow...

Page 518: ...BD global configuration Format show loopdetect Parameters None Restrictions None Example To show the LBD global settings DGS 3000 26TC admin show loopdetect Command show loopdetect LBD Global Settings Status Disabled Mode Port based Interval 10 sec Recover Time 60 sec Trap State None Log State Enabled Function Version 4 04 DGS 3000 26TC admin show loopdetect ports 47 6 Description This command is ...

Page 519: ...opdetect ports 1 9 Port Loopdetect State Loop Status 1 Enabled Normal 2 Enabled Normal 3 Enabled Normal 4 Enabled Normal 5 Enabled Loop 6 Enabled Normal 7 Enabled Loop 8 Enabled Normal 9 Enabled Normal DGS 3000 26TC admin config loopdetect trap 47 7 Description This command is used to configure the trap modes for LBD Format config loopdetect trap none loop_detected loop_cleared both Parameters non...

Page 520: ...ect log 47 8 Description This command is used to configure the log state for LBD The default value is enabled Format config loopdetect log state enable disable Parameters state Specify the state of the LBD log feature enable Enables the LBD log feature disable Disables the LBD log feature All LBD related logs will not be recorded Restrictions Only Administrators Operators and Power Users can issue...

Page 521: ... enable mac_notification 48 1 Description This command is used to enable global MAC address table notification on the Switch Format enable mac_notification Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enable mac_notification function DGS 3000 26TC admin enable mac_notification Command enable mac_notification Success DGS 3000 26TC admi...

Page 522: ...lobal settings Format config mac_notification interval sec 1 2147483647 historysize int 1 500 Parameters interval Optional Specify the time in seconds between notifications sec 1 2147483647 Enter the interval time here This value must be between 1 and 2147483647 seconds historysize Optional Specify the maximum number of entries listed in the history log used for notification Up to 500 entries can ...

Page 523: ...r a list of ports used for the configuration here all Specify that all the ports will be used for this configuration enable Enables the port s MAC address table notification disable Disables the port s MAC address table notification Restrictions Only Administrators Operators and Power Users can issue this command Example To enable 7th port s mac address table notification DGS 3000 26TC admin confi...

Page 524: ...cation Global MAC Notification Settings State Disabled Interval 1 History Size 1 DGS 3000 26TC admin show mac_notification ports 48 6 Description This command is used to display the port s Mac address table notification status settings Format show mac_notification ports portlist Parameters portlist Optional Enter a list of ports used for the configuration here Restrictions None Example To display ...

Page 525: ...ification ports Port MAC Address Table Notification State 1 Disabled 2 Disabled 3 Disabled 4 Disabled 5 Disabled 6 Disabled 7 Disabled 8 Disabled 9 Disabled 10 Disabled 11 Disabled 12 Disabled 13 Disabled 14 Disabled 15 Disabled 16 Disabled 17 Disabled 18 Disabled 19 Disabled 20 Disabled CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh ...

Page 526: ... clear mac_based_access_control auth_state ports all portlist mac_addr macaddr create mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 config mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan delete mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 config mac_based_access_control authorizati...

Page 527: ...cess_control 49 2 Description This command is used to disable MAC based Access Control Format disable mac_based_access_control Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable the MAC based Access Control global state DGS 3000 26TC admin disable mac_based_access_control Command disable mac_based_access_control Success DGS 3000 26T...

Page 528: ...password switch Command config mac_based_access_control password switch Success DGS 3000 26TC admin config mac_based_access_control password_type 49 4 Description This command is used to chose the password type used for authentication via the RADIUS server Format config mac_based_access_control password_type manual_string client_mac_address Parameters manual_string Use the same password for all cl...

Page 529: ...trictions Only Administrators Operators and Power Users can issue this command Example To set the MAC based Access Control authentication method as local DGS 3000 26TC admin config mac_based_access_control method local Command config mac_based_access_control method local Success DGS 3000 26TC admin config mac_based_access_control guest_vlan 49 6 Description This command is used to assign a specifi...

Page 530: ... that does not pass the authentication will not be serviced by the Switch If the user passes the authentication the user will be able to forward traffic operated under the assigned VLAN When the MAC based Access Control function is enabled for a port and the port is a MAC based Access Control guest VLAN member the port s will be removed from the original VLAN s member ports and added to MAC based ...

Page 531: ...moved back to unauthenticated state infinite Specify that the authorized clients will not be aged out automatically min 1 1440 Enter the aging time value here This value must be between 1 and 1440 minutes block_time If a host fails to pass the authentication the next authentication will not start within the block time unless the user clears the entry state manually If the block time is set to 0 it...

Page 532: ...vlan Specify MAC based Access Control guest VLAN by name it must be a static 1Q VLAN vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long guest_vlanid Specify MAC based Access Control guest VLAN by VID it must be a static 1Q VLAN vlanid 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 Restrictions Only Administrators Operators and Power Users can issue...

Page 533: ...access_control guest_vlan default Command delete mac_based_access_control guest_vlan default Success DGS 3000 26TC admin clear mac_based_access_control auth_state 49 10 Description This command is used to clear the authentication state of a user or port The port or the user will return to an un authenticated state All the timers associated with the port or the user will be reset Format clear mac_b...

Page 534: ...ss Control local database entry that will be used for authentication This command can also specify the VLAN that an authorized host will be assigned to Format create mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 Parameters mac Specify the MAC address that can pass local authentication macaddr Enter the MAC address used here vlan Optional Specify the target VLAN ...

Page 535: ..._local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan Parameters mac Specify the authenticated host s MAC address macaddr Enter the MAC address used here vlan Specify the target VLAN by VLAN name When this host is authorized the host will be assigned to this VLAN vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify the target VLAN by VID Whe...

Page 536: ...ddress macaddr Enter the MAC address used here vlan Deletes local database entries by specific target VLAN name vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Deletes local database entries by specific target VLAN ID vlanid 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 Restrictions Only Administrators Operators and Power Users can issue...

Page 537: ...s enable disable local enable disable 1 Parameters radius Optional If specified to enable the authorized attributes for example VLAN 802 1p default priority and ACL assigned by the RADUIS server will be accepted if the global authorization status is enabled The default state is enabled enable Specify that the RADIUS attributes will be enabled disable Specify that the RADIUS attributes will be disa...

Page 538: ...ol settings will be displayed Restrictions None Example To show the MAC based Access Control port configuration for ports 1 to 4 DGS 3000 26TC admin show mac_based_access_control ports 1 4 Command show mac_based_access_control ports 1 4 Port State Aging Time Block Time Auth Mode Max User min sec 1 Disabled 1440 300 Host based 128 2 Disabled 1440 300 Host based 128 3 Disabled 1440 300 Host based 12...

Page 539: ...all MAC based Access Control local database entries Restrictions None Example To show MAC based Access Control local database for the VLAN called default DGS 3000 26TC admin show mac_based_access_control_local vlan default Command show mac_based_access_control_local vlan default MAC Address VID 00 00 00 00 00 01 1 00 00 00 00 00 04 1 Total Entries 2 DGS 3000 26TC admin show mac_based_access_contro...

Page 540: ...igure the maximum number of authorized clients Format config mac_based_access_control max_users value 1 1000 no_limit Parameters max_users Specify to set the maximum number of authorized clients on the whole device value 1 1000 Enter the maximum users here This value must be between 1 and 1000 no_limit Specify to not limit the maximum number of users on the system By default there is no limit on t...

Page 541: ... Power Users can issue this command Example To enable trap state of MAC based Access Control DGS 3000 26TC admin config mac_based_access_control trap state enable Command config mac_based_access_control trap state enable Success DGS 3000 26TC admin config mac_based_access_control log state 49 20 Description This command is used to enable or disable generating of MAC based Access Control logs Forma...

Page 542: ...net Switch CLI Reference Guide 538 Example To disable log state of MAC based Access Control DGS 3000 26TC admin config mac_based_access_control log state disable Command config mac_based_access_control log state disable Success DGS 3000 26TC admin ...

Page 543: ...the maximum entries supported for the static MAC based entry Format create mac_based_vlan mac_address macaddr vlan vlan_name 32 vlanid vlanid 1 4094 Parameters mac_address Specify the MAC address used macaddr Enter the MAC address here vlan The VLAN to be associated with the MAC address vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify the VLAN by VLAN ...

Page 544: ...tween 1 and 4094 If no parameter is specified ALL static configured entries will be removed Restrictions Only Administrators Operators and Power Users can issue this command Example To delete a static MAC based VLAN entry DGS 3000 26TC admin delete mac_based_vlan mac_address 00 11 22 33 44 55 vlanid 100 Command delete mac_based_vlan mac_address 00 11 22 33 44 55 vlanid 100 Success DGS 3000 26TC ad...

Page 545: ...4094 Restrictions None Example In the following example MAC address 00 80 c2 33 c3 45 is assigned to VLAN 300 by manual config It is assigned to VLAN 400 by Voice VLAN Since Voice VLAN has higher priority than manual configuration the manual configured entry will become inactive To display the MAC based VLAN entry DGS 3000 26TC admin show mac_based_vlan MAC Address VLAN ID Status Type 00 80 e0 14 ...

Page 546: ...both Parameters port The port that will receive the packets duplicated at the mirror port port Enter the port number to be configured here add Optional The mirror entry to be added delete Optional The mirror entry to be deleted source ports Optional The port that will be mirrored All packets entering and leaving the source port can be duplicated in the mirror port portlist Enter the list of port t...

Page 547: ...ns Only Administrators and Operators can issue this command Example To enable mirroring function DGS 3000 26TC admin enable mirror Command enable mirror Success DGS 3000 26TC admin disable mirror 51 3 Description This command is used to disable mirror function without having to modify the mirror session configuration Format disable mirror Parameters None Restrictions Only Administrators and Operat...

Page 548: ...ctions None show mirror 51 4 Description This command is used to display the current mirror function state and mirror session configuration on the Switch Format show mirror Parameters None Example To display mirroring configuration DGS 3000 26TC admin show mirror Command show mirror Current Settings Mirror Status Enabled Target Port Mirrored Port RX TX DGS 3000 26TC admin ...

Page 549: ...vlan vlan_name 32 vlanid vlanid_list ports portlist ipv6addr data_driven show mld_snooping forwarding vlan vlan_name 32 vlanid vlanid_list show mld_snooping mrouter_ports vlan vlan_name 32 vlanid vlanid_list all static dynamic forbidden create mld_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipv6addr delete mld_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipv6addr confi...

Page 550: ...Specify wheather to send the first MLD report from all hosts for a group to all the multicast routers enable When MLD report suppression is enabled the Switch sends the first MLD report from all hosts for a group to all the multicast routers The Switch does not send the remaining MLD reports for the group to the multicast routers If the multicast router query includes requests only for MLDv1 repor...

Page 551: ...g MLD message intervals value 1 7 Enter the robustness variable value here This value must be between 1 and 7 Group listener interval Amount of time that must pass before a multicast router decides there are no more listeners of a group on a network This interval is calculated as follows robustness variable query interval 1 query response interval Other querier present interval Amount of time that...

Page 552: ...ed routers This will ensure that all packets with such a router as its destination will reach the multicast enabled router regardless of protocol Format config mld_snooping mrouter_ports vlan vlan_name 32 vlanid vlanid_list add delete portlist Parameters vlan Specify the name of the VLAN on which the router port resides vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters...

Page 553: ...e 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Specify the ID of the VLAN on which the forbidden router port resides vlanid_list Enter the VLAN ID list here add Specify to add the forbidden router ports delete Specify to delete the forbidden router ports portlist Enter a range of ports to be configured Restrictions Only Administrators Operators and Power Users c...

Page 554: ...an issue this command Example To enable MLD snooping on the Switch DGS 3000 26TC admin enable mld_snooping Command enable mld_snooping Success DGS 3000 26TC admin disable mld_snooping 52 6 Description This command is used to disable MLD snooping on the Switch Disabling MLD snooping allows all MLD and IP multicast traffic to flood within a given IP interface Note that disabling MLD snooping will al...

Page 555: ...nooping vlan vlan_name 32 vlanid vlanid_list Parameters vlan Optional Specify the name of the VLAN for which you want to view the MLD snooping configuration vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN for which you want to view the MLD snooping configuration vlanid_list Enter the VLAN ID list here If VLAN is not spe...

Page 556: ... State Disabled Fast Leave Enabled Rate Limit 100 Report Suppression Disabled Porxy Reporting Disabled Porxy Reporting Source IP Version 3 Data Driven Learning State Disabled Data Driven Learning Aged Out Disabled VLAN Name vlan2 Query Interval 125 Max Response Time 10 Robustness Value 2 Last Member Query Interval 1 Querier State Disabled Querier Role Non Querier Querier IP Querier Expiry Time 100...

Page 557: ... ID of the VLAN for which you want to view MLD snooping group information vlanid_list Enter the VLAN ID list here ports Optional Specify a list of ports for which you want to view MLD snooping group information portlist Enter the list of port here ipv6addr Optional Enter the group IPv6 address for which you want to view MLD snooping group information data_driven Optional Displays the data driven g...

Page 558: ... 247 Filter Mode EXCLUDE Source Group NULL FE1E 2 VLAN Name VID default 1 Member Ports 4 5 UP Time 40 Expiry Time 205 Filter Mode EXCLUDE Source Group NULL FF1E 5 VLAN Name VID default 1 Member Ports Router Ports 24 UP Time 100 Expiry Time 200 Filter Mode EXCLUDE Total Entries 4 DGS 3000 26TC admin DGS 3000 26TC admin show mld_snooping group data_driven Command show mld_snooping group data_driven ...

Page 559: ... which you want to view MLD snooping forwarding table information vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN for which you want to view MLD snooping forwarding table information vlanid_list Enter the VLAN ID list here If no parameter is specified the system will display all current MLD snooping forwarding table ent...

Page 560: ...ter ports that have been statically configured dynamic Optional Displays router ports that have been dynamically configured forbidden Optional Displays forbidden router ports that have been statically configured If no parameter is specified the system will display all currently configured router ports on the Switch Restrictions None Example To display the mld_snooping mrouter ports DGS 3000 26TC a...

Page 561: ...AN name can be up to 32 characters long vlanid Specify the ID of the VLAN on which the static group resides vlanid_list Enter the VLAN ID list here ipv6addr Enter the multicast group IPv6 address Restrictions Only Administrators Operators and Power Users can issue this command Example To create an MLD snooping static group for VLAN 1 group FF1E 1 DGS 3000 26TC admin create mld_snooping static_grou...

Page 562: ...rned by MLD If this port is configured as a static member later then the MLD protocol will stop operating on this port The MLD protocol will resume once this port is removed from static member ports Format config mld_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipv6addr add delete portlist Parameters vlan Specify the name of the VLAN on which the static group resides vlan_name 32 Ent...

Page 563: ... of the VLAN on which the static group resides vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN on which the static group resides vlanid_list Enter the VLAN ID list here ipv6addr Optional Enter the multicast group IPv6 address Restrictions None Example To display all the MLD snooping static groups DGS 3000 26TC admin sho...

Page 564: ...ame vlanid vlanid_list state enable disable aged_out enable disable expiry_time sec 1 65535 1 Parameters all Specify that all VLANs are to be configured vlan_name Specify the VLAN name to be configured vlan_name Enter the VLAN name here vlanid Specify the VLAN ID to be configured vlanid_list Enter the VLAN ID list here state Optional Specify to enable or disable the data driven learning of MLD sno...

Page 565: ... is 128 value 1 1024 Enter the maximum learned entry value here This value must be between 1 and 1024 Restrictions Only Administrators Operators and Power Users can issue this command Example To set the maximum number of groups that can be learned by data driven DGS 3000 26TC admin config mld_snooping data_driven_learning max_learned_entry 50 Command config mld_snooping data_driven_learning max_le...

Page 566: ...n_group all Command clear mld_snooping data_driven_group all Success DGS 3000 26TC admin show mld_snooping statistic counter 52 18 Description This command is used to display the statistics counter for MLD protocol packets that are received by the Switch since MLD snooping was enabled Format show mld_snooping statistic counter vlan vlan_name vlanid vlanid_list ports portlist Parameters vlan Specif...

Page 567: ...e Limitation 0 Dropped By Multicast VLAN 0 Report Done MLD v1 Report 0 MLD v2 Report 0 MLD v1 Done 0 Total 0 Dropped By Rate Limitation 0 Dropped By Max Group Limitation 0 Dropped By Group Filter 0 Dropped By Multicast VLAN 0 Transmit Statistics Query MLD v1 Query 0 MLD v2 Query 0 Total 0 Report Done MLD v1 Report 0 MLD v2 Report 0 MLD v1 Done 0 Total 0 Total Entries 1 DGS 3000 26TC admin clear ml...

Page 568: ...lanid vlanid_list value 1 1000 no_limit Parameters ports Specify a range of ports to be configured portlist Enter the range of ports to be configured here vlanid Specify a range of VLANs to be configured vlanid_list Enter the VLAN ID list here value 1 1000 Enter a value between 1 1000 to configures the rate limit of MLD control packets that the Switch can process on a specific port or VLAN The rat...

Page 569: ... control packets that are allowed by each port or VLAN Format show mld_snooping rate_limit ports portlist vlanid vlanid_list Parameters ports Specify a list of ports portlist Enter the range of ports to be configured here vlanid Specify a list of VLANs vlanid_list Enter the VLAN ID list here Restrictions None Example To display the MLD snooping rate limit from port 1 to 5 DGS 3000 26TC admin show ...

Page 570: ...up ipv6addr Parameters vlan Optional Specify the VLAN name vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Optional Specify the VLAN ID vlanid_list Enter the VLAN ID here ports Optional Specify that list of port that will be displayed portlist Enter the list of ports here group Optional Specify the group ipv6addr Enter the group IPv6 address here If no parame...

Page 571: ...1 Group FF1E 2 Port 3 Host 2001 1 VLAN ID 1 Group FF1E 3 Port 4 Host 2001 1 VLAN ID 1 Group FF1E 1 Port 5 Host 2001 2 Total Entries 4 DGS 3000 26TC admin To display the host s IP information for the group FF1E 1 DGS 3000 26TC admin show mld_snooping host group FF1E 1 Command show mld_snooping host group FF1E 1 VLAN ID 1 Group FF1E 1 Port 2 Host 2001 1 VLAN ID 1 Group FF1E 1 Port 5 Host 2001 2 Tota...

Page 572: ...t debug stp config ports portlist all event bpdu state_machine all state disable brief detail Parameters portlist Enter the STP port range to debug all Specify to debug all ports on the Switch event Specify to debug the external operation and event processing bpdu Specify to debug the BPDU s that have been received and transmitted state_machine Specify to debug the state change of the STP state ma...

Page 573: ...tate brief Command debug stp config ports all all state brief Success DGS 3000 26TC admin debug stp show information 53 2 Description This command is used to display STP detailed information Format debug stp show information Parameters None Restrictions Only Administrators can issue this command Example To show STP debug information ...

Page 574: ...Port 26 FOR Root Priority And Times Instance 0 Designated Root Bridge 36795 FD 7F C3 FF EF 12 External Root Cost 139756361 Regional Root Bridge 65447 3D D5 7D 35 D8 FF Internal Root Cost 1466613107 Designated Bridge 61882 9F F3 FF C7 EB B5 CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All debug stp show flag 53 3 Description This command is used to display the STP debug level on specified...

Page 575: ...d Disabled Disabled 13 Disabled Disabled Disabled 14 Disabled Disabled Disabled 15 Disabled Disabled Disabled 16 Disabled Disabled Disabled 17 Disabled Disabled Disabled 18 Disabled Disabled Disabled 19 Disabled Disabled Disabled 20 Disabled Disabled Disabled 21 Disabled Disabled Disabled 22 Disabled Disabled Disabled 23 Disabled Disabled Disabled 24 Disabled Disabled Disabled 25 Disabled Disabled...

Page 576: ...on BPDU 0 TCN BPDU 0 TCN BPDU 0 RSTP TC Flag 0 RSTP TC Flag 0 RST BPDU 0 RST BPDU 0 Discard Total Discarded BPDU 0 Global STP Disabled 0 Port STP Disabled 0 Invalid packet Format 0 Invalid Protocol 0 Configuration BPDU Length 0 TCN BPDU Length 0 RST BPDU Length 0 Invalid Type 0 Invalid Timers 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh debug stp clear counter 53 5 Description T...

Page 577: ...is command is used to enable or disable the STP debug state Format debug stp state enable disable Parameters state Specify the STP debug state enable Enables the STP debug state disable Disables the STP debug state Restrictions Only Administrators can issue this command Example To configure the STP debug state to enable and then disable the STP debug state DGS 3000 26TC admin debug stp state enabl...

Page 578: ...pv6 show limited_multicast_addr ports portlist vlanid vlanid_list ipv4 ipv6 config cpu_filter l3_control_pkt portlist dvmrp pim igmp_query ospf rip vrrp all state enable disable show cpu_filter l3_control_pkt ports portlist config control_pkt ipv4 igmp vrrp rip pim dvmrp ospf 1 all ipv6 mld pim ospf ripng nd 1 all replace priority value 0 7 none dscp value 0 63 none 1 show control_pkt ipv4 ipv6 cr...

Page 579: ... profile_name Provides a meaningful description for the profile name 1 32 Enter the profile name here The profile name can be up to 32 characters long profile_name Optional Provides a meaningful description for the profile name 1 32 Enter the profile name here The profile name can be up to 32 characters long add Optional Specify to add a multicast address delete Optional Specify to delete a multic...

Page 580: ... to 32 characters long add Optional Specify to add an IPv6 multicast address delete Optional Specify to delete an IPv6 multicast address mcastv6_address_list Optional Enter a single IPv6 multicast IP address or a range of IPv6 multicast addresses This lists the IPv6 multicast addresses to put in the profile Restrictions Only Administrators Operators and Power Users can issue this command Example T...

Page 581: ...ete mcast_filter_profile profile_id 3 Command delete mcast_filter_profile profile_id 3 Success DGS 3000 26TC admin To delete the multicast address profile called MOD DGS 3000 26TC admin delete mcast_filter_profile profile_name MOD Command delete mcast_filter_profile profile_name MOD Total entries 2 DGS 3000 26TC admin show mcast_filter_profile 54 5 Description This command is used to display the d...

Page 582: ... multicast group is limited to only operate the IGMP or MLD layer 3 functions If the IPv4 or IPv6 option is not specified IPv4 is implied Format config limited_multicast_addr ports portlist vlanid vlanid_list ipv4 ipv6 add delete profile_id value 1 24 profile_name name 1 32 access permit deny Parameters ports Specify the range of ports to configure the multicast address filtering function portslis...

Page 583: ...opped if the action is specified as drop The newly learned group will replace the eldest group if the action is specified as replace Format config max_mcast_group ports portlist vlanid vlanid_list ipv4 ipv6 max_group value 1 1024 infinite action drop replace 1 Parameters ports Specify the range of ports to configure the max_mcast_group portlist Enter the list of ports to be configured here vlanid ...

Page 584: ... can join If the IPv4 or IPv6 option is not specified IPv4 is implied Format show max_mcast_group ports portlist vlanid vlanid_list ipv4 ipv6 Parameters ports Specify the range of ports for displaying information about the maximum number of multicast groups that the specified ports can join portlist Enter the list of ports to be configured here vlanid Specify the VLAN ID for displaying the maximum...

Page 585: ... configured on a port it limits the multicast groups operated by the IGMP or MLD snooping function and layer 3 functions When the function is configured on a VLAN it limits the multicast groups operated by the IGMP or MLD layer 3 functions If the IPv4 or IPv6 option is not specified IPv4 is implied Format show limited_multicast_addr ports portlist vlanid vlanid_list ipv4 ipv6 Parameters ports Spec...

Page 586: ...D 225 1 1 1 225 1 1 10 Port 3 Access Permit Profile ID Name Multicast Addresses 2 MOD 225 1 1 1 225 1 1 10 DGS 3000 26TC admin To show the limited multicast settings configured on VLAN 1 DGS 3000 26TC admin show limited_multicast_addr vlan 1 Command show limited_multicast_addr vlanid 1 VLAN ID 1 Access Permit Profile ID Name Multicast Addresses 2 MOD 225 1 1 1 225 1 1 10 DGS 3000 26TC admin config...

Page 587: ...l Specify to filter all the L3 protocol control packets state Specify the filter function status The default is disabled enable Enables the filtering function disable Disables the filtering function Restrictions Only Administrators Operators and Power Users can issue this command Example To filter the DVMRP control packets on ports 1 to 2 DGS 3000 26TC admin config cpu_filter l3_control_pkt 1 2 dv...

Page 588: ...he Virtual Router Redundancy Protocol VRRP field within each packet rip Specify that the Switch will examine the Routing Information Protocol RIP field within each packet pim Specify that the Switch will examine the Protocol Independent Multicast PIM field within each packet dvmrp Specify that the Switch will examine the Distance Vector Multicast Routing Protocol DVMRP field within each packet osp...

Page 589: ...rators and Power Users can issue this command Example To change the priority of DVMRP packets to 3 DGS 3000 26TC admin config control_pkt ipv4 dvmrp replace priority 3 Command config control_pkt ipv4 dvmrp replace priority 3 Success DGS 3000 26TC admin show control_pkt 54 13 Description This command is used to display the priority and DSCP values configured for specific control packets Format show...

Page 590: ... 586 DGS 3000 26TC admin show control_pkt Command show control_pkt Protocol Priority DSCP igmp None None vrrp None None rip None None pim None None dvmrp 3 None ospf None None mld None None ipv6 pim None None ipv6 ospf None None ripng None None nd None None DGS 3000 26TC admin ...

Page 591: ... multicast_vlan forward_unmatched disable enable config mld_snooping multicast_vlan vlan_name 32 add delete member_port portlist source_port portlist untag_source_port portlist tag_member_port portlist state enable disable replace_source_ipv6 ipv6addr remap_priority value 0 7 none replace_priority config mld_snooping multicast_vlan_group_profile profile_name 1 32 add delete mcastv6_address_list co...

Page 592: ...bally DGS 3000 26TC admin enable igmp_snooping multicast_vlan Command enable igmp_snooping multicast_vlan Success DGS 3000 26TC admin enable mld_snooping multicast_vlan 55 2 Description This command is used to enable the MLD snooping multicast VLAN function By default the multicast VLAN is disabled Format enable mld_snooping multicast_vlan Parameters None Restrictions Only Administrators can issue...

Page 593: ...nary IGMP snooping function By default the multicast VLAN is disabled Format disable igmp_snooping multicast_vlan Parameters None Restrictions Only Administrators can issue this command Example To disable the IGMP snooping multicast VLAN function DGS 3000 26TC admin disable igmp_snooping multicast_vlan Command disable igmp_snooping multicast_vlan Success DGS 3000 26TC admin disable mld_snooping mu...

Page 594: ...ng 802 1Q VLAN commands An IP interface cannot be bound to a multicast VLAN The multicast VLAN snooping function co exists with the 802 1Q VLAN snooping function Format create igmp_snooping multicast_vlan vlan_name 32 vlanid 2 4094 remap_priority value 0 7 none replace_priority Parameters vlan_name 32 Enter the multicast VLAN here The VLAN name can be up to 32 characters long vlanid 2 4094 Enter t...

Page 595: ...at create igmp_snooping multicast_vlan_group_profile profile_name 1 32 Parameters profile_name 1 32 Enter the multicast VLAN group profile name here The name can be up to 32 characters long Restrictions Only Administrators Operators and Power Users can issue this command Example To create an IGMP snooping multicast group profile with the name test DGS 3000 26TC admin create igmp_snooping multicast...

Page 596: ...2 to 4094 remap_priority Optional Specify the remap priority here value 0 7 Enter the remap priority 0 to 7 to be associated with the data traffic to be forwarded on the multicast VLAN none If none is specified the packet s original priority will be used The default setting is none replace_priority Optional Specify that the packet s priority will be changed by the switch based on the remap priorit...

Page 597: ... be configured Format config igmp_snooping multicast_vlan vlan_name 32 add delete member_port portlist source_port portlist untag_source_port portlist tag_member_port portlist state enable disable replace_source_ip ipaddr remap_priority value 0 7 none replace_priority 1 Parameters vlan_name 32 Enter the multicast VLAN here The VLAN name can be up to 32 characters long add Specify that the port wil...

Page 598: ...e will be set to none replace_priority Optional Specify that the packet priority will be changed to the remap_priority but only if remap_priority is set Restrictions Only Administrators Operators and Power Users can issue this command Example To configure an IGMP snooping multicast VLAN with the name v1 make ports 1 and 3 members of the VLAN and set the state to enable DGS 3000 26TC admin config i...

Page 599: ...t process the packet Case 1 The multicast group is not configured multicast VLANs do not have any member ports overlapping and the join packet received by the member port is learned on only the multicast VLAN that this port is a member of Case 2 The join packet is learned with the multicast VLAN that contains the destination multicast group If the destination multicast group of the join packet can...

Page 600: ...ts When the Switch receives an IGMP snooping packet it will match the packet against the multicast profile to determine which multicast VLAN to associate with If the packet does not match all profiles the packet will be forwarded or dropped based on this setting By default the packet will be dropped Format config igmp_snooping multicast_vlan forward_unmatched disable enable Parameters enable The p...

Page 601: ...raffic is entering the Switch The PVID of the untagged source port is automatically changed to the multicast VLAN Source ports must be either tagged or untagged for any single multicast VLAN i e both types cannot be members of the same multicast VLAN portlist Enter a range of ports to be configured tag_member_port Specify the tagged member port of the multicast VLAN portlist Enter a range of ports...

Page 602: ...racters add Specify to add a multicast address list to this multicast VLAN profile delete Specify to delete a multicast address list from this multicast VLAN profile mcastv6_address_list Enter a multicast address list This can be a continuous single multicast address such as FF1E 1 FF1E 2 a multicast address range such as FF1E 3 FF1E 9 or both types such as FF1E 11 FF1E 12 FF1E 20 Restrictions Onl...

Page 603: ...ot overlap in different multicast VLANs Multiple profiles can be added to a multicast VLAN Format config mld_snooping multicast_vlan_group vlan_name 32 add delete profile_name profile_name 1 32 Parameters vlan_name 32 Enter the name of the multicast VLAN to be configured each multicast VLAN is given a name that can be up to 32 characters add Specify to be used to associate a profile to a multicast...

Page 604: ...the VLAN Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the forwarding mode for MLD snooping multicast VLAN unmatched packets DGS 3000 26TC admin config mld_snooping multicast_vlan forward_unmatched enable Command config mld_snooping multicast_vlan forward_unmatched enable Success DGS 3000 26TC admin delete igmp_snooping multicast_vlan_group_...

Page 605: ...This command is used to delete an IGMP snooping multicast VLAN Format delete igmp_snooping multicast_vlan vlan_name 32 Parameters vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long Restrictions Only Administrators Operators and Power Users can issue this command Example To delete an IGMP snooping multicast VLAN called v1 DGS 3000 26TC admin delete igmp_snooping mul...

Page 606: ...wer Users can issue this command Example To delete an MLD snooping multicast group profile named Knicks DGS 3000 26TC admin delete mld_snooping multicast_vlan_group_profile profile_name Knicks Command delete mld_snooping multicast_vlan_group_profile profile_name Knicks Success DGS 3000 26TC admin delete mld_snooping multicast_vlan 55 20 Description This command is used to delete an MLD snooping mu...

Page 607: ...e 1 32 Parameters profile_name 1 32 Optional Enter the multicast VLAN group profile name here The name can be up to 32 characters long Restrictions None Example To display all IGMP snooping multicast VLAN profiles DGS 3000 26TC admin show igmp_snooping multicast_vlan_group_profile Command show igmp_snooping multicast_vlan_group_profile Profile Name Multicast Addresses MOD 234 1 1 1 238 244 244 244...

Page 608: ...DGS 3000 26TC admin show igmp_snooping multicast_vlan_group Command show igmp_snooping multicast_vlan_group VLAN Name VLAN ID Multicast Group Profiles mv1 2 test DGS 3000 26TC admin show igmp_snooping multicast_vlan 55 23 Description This command is used to display information for IGMP snooping multicast VLANs Format show igmp_snooping multicast_vlan vlan_name 32 Parameters vlan_name 32 Optional E...

Page 609: ...Source Ports 3 Untagged Source Ports Status Disabled Replace Source IP 0 0 0 0 Remap Priority None Total Entries 1 DGS 3000 26TC admin show mld_snooping multicast_vlan_group_profile 55 24 Description This command is used to display an MLD snooping multicast group profile Format show mld_snooping multicast_vlan_group_profile profile_name 1 32 Parameters profile_name 1 32 Optional Enter the multicas...

Page 610: ...ption This command is used to allow group profile information for a specific multicast VLAN to be displayed Format show mld_snooping multicast_vlan_group vlan_name 32 Parameters vlan_name 32 Optional Enter the name of the group profile s multicast VLAN to be displayed Restrictions None Example To display all MLD snooping multicast VLANs group profile information DGS 3000 26TC admin show mld_snoopi...

Page 611: ...onal Enter the name of the multicast VLAN to be displayed Restrictions None Example To display all MLD snooping multicast VLANs DGS 3000 26TC admin show mld_snooping multicast_vlan Command show mld_snooping multicast_vlan MLD Multicast VLAN Global State Disabled MLD Multicast VLAN Forward Unmatched Disabled VLAN Name test VID 100 Member Untagged Ports 1 Tagged Member Ports Source Ports 3 Untagged ...

Page 612: ...string show stp mst_config_id config stp mst_ports portlist instance_id value 0 7 internalCost auto value 1 200000000 priority value 0 240 config stp ports portlist externalCost auto value 1 200000000 hellotime value 1 2 migrate yes no edge true false auto p2p true false auto state enable disable restricted_role true false restricted_tcn true false fbpdu enable disable show stp ports portlist conf...

Page 613: ...tors and Power Users can issue this command Example To disable STP DGS 3000 26TC admin disable stp Command disable stp Success DGS 3000 26TC admin config stp 56 3 Description This command is used to configure the bridge parameters global settings Format config stp maxage value 6 40 maxhops value 6 40 hellotime value 1 2 forwarddelay value 4 30 txholdcount value 1 10 fbpdu enable disable nni_bpdu_a...

Page 614: ...smitted in a time interval value 1 10 Enter the transmitted BPDU restriction value here This value must be between 1 and 10 fbpdu Optional Specify whether the bridge will flood STP BPDU when STP functionality is disabled enable Specify that the bridge will flood STP BPDU when STP functionality is disabled disable Specify that the bridge will not flood STP BPDU when STP functionality is disabled nn...

Page 615: ...U Disabled NNI BPDU Address dot1d DGS 3000 26TC admin create stp instance_id 56 5 Description This command is used to create an MST Instance without mapping the corresponding VLANs Format create stp instance_id value 1 7 Parameters instance_id Specify the MSTP instance ID Instance 0 represents for default instance CIST value 1 7 Enter the MSTP instance ID here This value must be between 1 and 7 Re...

Page 616: ...alue 1 7 Enter the MSTP instance ID here This value must be between 1 and 7 add_vlan Specify to map the specified VLAN list to an existing MST instance remove_vlan Specify to delete the specified VLAN list from an existing MST instance vidlist Enter a list of VLANs by VLAN ID Restrictions Only Administrators Operators and Power Users can issue this command Example To map a VLAN ID to an MSTP insta...

Page 617: ...S 3000 26TC admin delete stp instance_id 2 Command delete stp instance_id 2 Success DGS 3000 26TC admin config stp mst_config_id 56 8 Description This command is used to change the name or the revision level of the MST configuration identification Format config stp mst_config_id revision_level int 0 65535 name string Parameters revision_level Optional The same given name with different revision le...

Page 618: ...dmin show stp mst_config_id 56 9 Description This command is used to show the MST configuration identification Format show stp mst_config_id Parameters None Restrictions None Example show STP MST configuration ID DGS 3000 26TC admin show stp mst_config_id Command show stp mst_config_id Current MST Configuration Identification Configuration Name 00 22 22 22 22 00 Revision Level 0 MSTI ID Vid list C...

Page 619: ...strictions Only Administrators Operators and Power Users can issue this command Example To configure STP MST ports DGS 3000 26TC admin config stp mst_ports 1 instance_id 0 internalCost auto Command config stp mst_ports 1 instance_id 0 internalCost auto Success DGS 3000 26TC admin config stp ports 56 11 Description This command is used to configure all the parameters of ports except for Internal Pa...

Page 620: ...ort supports the STP functionality enable Specify that STP functionality on the port s is enabled disable Specify that STP functionality on the port s is disabled restricted_role Optional To decide if this port not to be selected as Root Port The default value is false true Specify that the port can be specified as the root port false Specify that the port can not be specified as the root port res...

Page 621: ...ration here Restrictions None Example To show STP ports DGS 3000 26TC admin show stp ports Command show stp ports MSTP Port Information Port Index 1 Hello Time 2 2 Port STP Enabled External PathCost Auto 200000 Edge Port Auto No P2P Auto Yes Port RestrictedRole False Port RestrictedTCN False Port Forward BPDU Disabled MSTI Designated Bridge Internal PathCost Prio Status Role 0 N A 200000 128 Forwa...

Page 622: ...ower Users can issue this command Example To configure the STP instance ID DGS 3000 26TC admin config stp priority 61440 instance_id 0 Command config stp priority 61440 instance_id 0 Success DGS 3000 26TC admin config stp version 56 14 Description This command is used to configure the STP version Format config stp version mstp rstp stp Parameters version Specify to decide to run under which versio...

Page 623: ... stp version mstp Configure value is the same with current value Success DGS 3000 26TC admin show stp instance 56 15 Description This command is used to display each instance parameters settings Value means the instance ID if there is no input of this value all instance will be shown Format show stp instance value 0 7 Parameters instance Specify the MSTP instance ID value 0 7 Optional Enter the MS...

Page 624: ...Status Enabled Instance Priority 32768 bridge priority 32768 sys ID ext 0 STP Instance Operational Status Designated Root Bridge 32768 00 22 22 22 22 00 External Root Cost 0 Regional Root Bridge 32768 00 22 22 22 22 00 Internal Root Cost 0 Designated Bridge 32768 00 22 22 22 22 00 Root Port None Max Age 20 Forward Delay 15 Last Topology Change 2430 Topology Changes Count 0 DGS 3000 26TC admin ...

Page 625: ...s to be added ipv6addr Enter the IPv6 gateway IP address gateway_mac Specify the gateway MAC address to be added macaddr Enter the gateway MAC address ports Specify a port range portlist Enter a range of ports to be configured all Specify all of ports to be configured delete Specify to delete an ND spoofing prevention entry gateway_ip Specify the gateway IP address to be deleted ipv6address Enter ...

Page 626: ...d to display the nd spoofing prevention entry Format show nd_spoofing_prevention Parameters None Restrictions None Example To show the command logging configuration status DGS 3000 26TC admin show nd_spoofing_prevention Command show nd_spoofing_prevention Gateway IP Gateway MAC Ports FF 11 00 01 02 03 04 06 3 Total Entries 1 DGS 3000 26TC admin ...

Page 627: ... all servers but will only be processed by one of them The server can work in two different modes unicast mode and multicast mode In unicast mode the client use unicast MAC address as the destination MAC to reach the server In multicast mode the client use the multicast MAC address as the destination MAC to reach the server Regarding of the mode this destination Mac is the named the shared MAC The...

Page 628: ...be added or removed Restrictions Only Administrators Operators and Power Users can issue this command Example To configure NLB unicast FDB entry for the product that support the VLAN information on the unicast forwarding DGS 3000 26TC admin config nlb unicast_fdb 02 bf 01 01 01 01 add 1 5 Command config nlb unicast_fdb 02 BF 01 01 01 01 add 1 5 Success DGS 3000 26TC admin delete nlb unicast_fdb 58...

Page 629: ... create nlb multicast_fdb vlan_name 32 vlanid vlanid macaddr Parameters vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Specify the VLAN by the VLAN ID vlanid Enter the VLAN ID here macaddr Enter the MAC address of the NLB multicast FDB entry to be created Restrictions Only Administrators Operators and Power Users can issue this command Example To create ...

Page 630: ...ons Only Administrators Operators and Power Users can issue this command Example To configure NLB multicast MAC forwarding database DGS 3000 26TC admin config nlb multicast_fdb default 03 bf 01 01 01 01 add 1 5 Command config nlb multicast_fdb default 03 bf 01 01 01 01 add 1 5 Success DGS 3000 26TC admin delete nlb multicast_fdb 58 6 Description This command is used to delete the NLB multicast FDB...

Page 631: ...elete nlb multicast_fdb default 03 bf 01 01 01 01 Success DGS 3000 26TC admin show nlb fdb 58 7 Description This command is used to show the NLB Configured entry Format show nlb fdb Parameters None Restrictions None Example To display the NLB forwarding table DGS 3000 26TC admin show nlb fdb Command show nlb fdb MAC Address VLAN ID Egress Ports 02 BF 01 01 01 01 1 5 Total Entries 1 DGS 3000 26TC a...

Page 632: ...ormat clear counters ports portlist Parameters ports Optional Specify a range of ports to be configured portlist Enter a list of ports used for the configuration here If no parameter is specified system will display counters of all the ports Restrictions Only Administrators and Operators can issue this command Example To clear the Switch s statistics counters DGS 3000 26TC admin clear counters por...

Page 633: ...er 3 RX Frames TX Frames CRC Error 0 Excessive Deferral 0 Undersize 0 CRC Error 0 Oversize 0 Late Collision 0 Fragment 0 Excessive Collision 0 Jabber 0 Single Collision 0 Drop Pkts 0 Collision 0 Symbol Error 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show packet ports 59 3 Description This command is used to display statistics about the packets sent and received by the Switch ...

Page 634: ...1 0 0 512 1023 0 0 1024 1518 0 0 Unicast RX 0 0 Multicast RX 0 0 Broadcast RX 0 0 Frame Type Total Total sec RX Bytes 0 0 RX Frames 0 0 TX Bytes 0 0 TX Frames 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show utilization 59 4 Description This command is used to display real time CPU or port utilization statistics Format show utilization cpu ports Parameters cpu Specify to disp...

Page 635: ... 0 25 0 0 0 6 0 0 0 26 0 0 0 7 0 0 0 8 0 0 0 9 0 0 0 10 0 0 0 11 0 0 0 12 0 0 0 13 0 0 0 14 0 0 0 15 0 0 0 16 0 0 0 17 0 0 0 18 0 0 0 19 0 0 0 20 0 0 0 DGS 3000 26TC admin To display the CPU utilization DGS 3000 26TC admin show utilization cpu Command show utilization cpu CPU Utilization Five seconds 10 One minute 10 Five minutes 10 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh sho...

Page 636: ...ilization dram Command show utilization dram DRAM Utilization Total DRAM 131072 KB Used DRAM 118556 KB Utilization 90 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show utilization flash 59 6 Description This command is used to show the flash memory utilization Format show utilization flash Parameters None Restrictions None Example To display FLASH utilization ...

Page 637: ...t Switch CLI Reference Guide 633 DGS 3000 26TC admin show utilization flash Command show utilization flash Flash Memory Utilization Total Flash 29618 KB Used Flash 5784 KB Utilization 19 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh ...

Page 638: ...nd then disconnect the established OAM link The link monitoring parameter is used to configure port Ethernet OAM link monitoring error symbols The link monitoring function provides a mechanism to detect and indicate link faults under a variety of conditions OAM monitors the statistics on the number of frame errors as well as the number of coding symbol errors When the number of symbol errors is eq...

Page 639: ...r frame threshold Specify a threshold range range 0 4294967295 Enter a threshold range between 0 and 4294967295 window The range is 1000 to 60000 ms The default value is 1000ms millisecond 1000 60000 Enter a value within the range between 1000 to 60000 ms notify_state Specify the event notification status The default state is enable enable Specify to enable event notification disable Specify to di...

Page 640: ...le To configure Ethernet OAM on ports 1 to 2 in active mode DGS 3000 26TC admin config ethernet_oam ports 1 2 mode active Command config ethernet_oam ports 1 2 mode active Success DGS 3000 26TC admin To enable Ethernet OAM on port 1 DGS 3000 26TC admin config ethernet_oam ports 1 state enable Command config ethernet_oam ports 1 state enable Success DGS 3000 26TC admin To configure the error symbol...

Page 641: ...y_state enable Success DGS 3000 26TC admin To configure the error frame threshold to10 and period to 1000000 ms for port 1 DGS 3000 26TC admin config ethernet_oam ports 1 link_monitor error_frame_period threshold 10 window 1000000 notify_state enable Command config ethernet_oam ports 1 link_monitor error_frame_period threshold 10 window 1000000 notify_state enable Success DGS 3000 26TC admin To co...

Page 642: ...s the local device o Operational The local OAM entity learns that both it and the remote OAM entity have accepted the peering o NonOperHalfDuplex Since Ethernet OAM functions are not designed to work completely over half duplex port This value indicates Ethernet OAM is enabled but the port is in half duplex operation OAM mode passive or active Maximum OAMPDU size The largest OAMPDU that the OAM en...

Page 643: ... event log information index Optional Specify an index range to display value_list Optional Enter an index range to display Restrictions Only Administrators and Operators can issue this command Example To display Ethernet OAM statistics information for port 1 DGS 3000 26TC admin show ethernet_oam ports 1 statistics Command show ethernet_oam ports 1 statistics Port 1 Information OAMPDU TX 0 Informa...

Page 644: ... all Ethernet OAM ports event_log Specify to clear Ethernet OAM event log information statistics Specify to clear Ethernet OAM statistics Restrictions Only Administrators and Operators can issue this command Example To clear port 1 OAM statistics DGS 3000 26TC admin clear ethernet_oam ports 1 statistics Command clear ethernet_oam ports 1 statistics Success DGS 3000 26TC admin To clear port 1 OAM e...

Page 645: ... command is used to enable the password recovery mode Format enable password_recovery Parameters None Restrictions Only Administrators can issue this command Example To enable the password recovery mode DGS 3000 26TC admin enable password_recovery Command enable password_recovery Success DGS 3000 26TC admin disable password_recovery 61 2 Description This command is used to disable the password rec...

Page 646: ...isable password_recovery Success DGS 3000 26TC admin show password_recovery 61 3 Description This command is used to display the password recovery state Format show password_recovery Parameters None Restrictions Only Administrators can issue this command Example To display the password recovery state DGS 3000 26TC admin show password_recovery Command show password_recovery Running Configuration En...

Page 647: ...f three fans is working normally there will display OK in the Left Fan field If some fans work failed such as fan 1 3 there will only display the failed fans in the Left Fan field such as 1 3 Fail In the same way the Right Fan Back Fan is same to Left Fan Because there is only one CPU Fan if it is working failed display Fail otherwise display OK Format show device_status Parameters None Restrictio...

Page 648: ...ning Temperature Threshold Celsius 11 DGS 3000 26TC admin config temperature threshold 62 3 Description This command is used to configure the warning threshold for high and low temperature Format config temperature threshold high temperature 500 500 low temperature 500 500 Parameters high Optional Specify to configure high threshold value The high threshold must bigger than the low threshold tempe...

Page 649: ...r disable the trap state of the temperature warning event log Specify to enable or disable the log state of the temperature warning event state Specify to enable or disable the trap or log state of the temperature warning event enable Specify to enable the trap or log state of the temperature warning event This is the default option disable Specify to disable the trap or log state of the temperatu...

Page 650: ...ut sec 1 99 Parameters ipaddr Enter the IP address of the host domain_name 255 Enter the domain name of the host times Optional The number of individual ICMP echo messages to be sent A value of 0 will send an infinite ICMP echo messages The maximum value is 255 The default is 0 indicating infinity Press the CTRL C to break the ping test value 1 255 Enter the number of individual ICMP echo messages...

Page 651: ...alue 1 255 size value 1 6000 timeout sec 1 99 Parameters ipv6addr Enter the IPv6 address here domain_name 255 Enter the domain name of the host times Optional The number of individual ICMPv6 echo messages to be sent A value of 0 will send an infinite ICMPv6 echo messages The maximum value is 255 The default is 0 indicating infinity Press the CTRL C to break the ping test value 1 255 Enter the numb...

Page 652: ...6TC admin ping6 3000 1 times 4 Command ping6 3000 1 times 4 Reply from 3000 1 bytes 200 time 10ms Reply from 3000 1 bytes 200 time 10ms Reply from 3000 1 bytes 200 time 10ms Reply from 3000 1 bytes 200 time 10ms Ping Statistics for 3000 1 Packets Sent 4 Received 4 Lost 0 DGS 3000 26TC admin ...

Page 653: ...ax_learning_addr 64 1 Description This command is used to set the maximum number of port security entries that can be authorized system wide There are four levels of limitations on the learned entry number for the entire system for a port for a VLAN and for a specific VLAN on a port If any limitation is exceeded the new entry will be discarded The setting for system level maximum learned users mus...

Page 654: ...r of port security entries that can be learned on this port If the value is set to 0 it means that no user can be authorized by the port security function on this port If the setting is smaller than the number of current learned entries on the port the command will be rejected The default value is 32 max_lock_no 0 3328 Enter the maximum number of port security entries that can be learned here This...

Page 655: ...ort If any limitation is exceeded the new entry will be discarded Format config port_security vlan vlan_name 32 vlanid vidlist max_learning_addr max_lock_no 0 3328 no_limit Parameters vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify a list of VLANs by VLAN ID vidlist Enter the VLAN ID list here max_learning_addr Specify the maximum number of port secur...

Page 656: ...name can be up to 32 characters long vlanid Specify the VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID list here This value must be between 1 and 4094 mac_address Specify the MAC address of the entry macaddr Enter the MAC address used here Restrictions Only Administrators Operators and Power Users can issue this command Example To delete the port security entry with a MAC address of 00 00 00 00 0...

Page 657: ...d clear port_security_entry ports 6 Success DGS 3000 26TC admin show port_security_entry 64 6 Description This command is used to display the port security entries If more than one parameter is selected only the entries matching all the selected parameters will be displayed If the user Specify ports and VLAN either the VLAN name or VLAN ID list only the entries matching all the parameters will be ...

Page 658: ... vlanid or vlan_name are specified configurations matching any of these parameters will be displayed Format show port_security ports portlist vlan vlan_name 32 vlanid vidlist Parameters ports Optional Specify the range of ports that will show their configuration While this parameter is null to show the entries on all of the ports portlist Enter the list of port used for this configuration here vla...

Page 659: ...a new MAC that violates the pre defined port security configuration a trap will be sent out with the MAC and port information and the relevant information will be logged Format enable port_security trap_log Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enable a port security trap DGS 3000 26TC admin enable port_security trap_log Comman...

Page 660: ...curity trap_log Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To prevent a port security trap from being sent from the switch DGS 3000 26TC admin disable port_security trap_log Command disable port_security trap_log Success DGS 3000 26TC admin ...

Page 661: ...specification s requirements The power saving function is performed while no link is detected and it will not affect the port capabilities while the link is up When a link is detected on the port for a shorter cable the power consumption will be reduced by lowering the signal amplitude since the signal attenuation is proportional to the cable length The port will adjust the power based on the cabl...

Page 662: ...the power saving schedule on system hibernation When the system enters hibernation mode the Switch changes to a low power state and is idle It shuts down all the ports and all network function does not work Only the console connection will work via the RS232 port Format config power_saving hibernation add delete time_range range_name 32 clear_time_range Parameters add Specify to add a time range d...

Page 663: ...d off Currently only three time ranges are supported Format config power_saving led add delete time_range range_name 32 clear_time_range Parameters add Specify to add a time range delete Specify to delete a time range time_range Specify the name of the time range range_name32 Enter a name for maximum 32 characters clear_time_range Specify to clear all the time range of port LED Restrictions Only A...

Page 664: ...r a name for maximum 32 characters clear_time_range Specify to clear all the time range of port Restrictions Only Administrators and Operators can issue this command Example To add a time range named range_1 on port 1 DGS 3000 26TC admin config power_saving port 1 add time_range range_1 Command config power_saving port 1 add time_range range_1 Success DGS 3000 26TC admin To delete a time range nam...

Page 665: ...isplays the system hibernation configuration of power saving If no parameter is specified all configurations of power saving will be displayed Restrictions None Example To display the power saving function setting DGS 3000 26TC admin show power_saving Command show power_saving Function Version 3 00 Link Detection State Enabled Length Detection State Disabled Power Saving Configuration On System Hi...

Page 666: ...ink status Format config led state enable disable Parameters enable Specify to enable the LED admin state of all ports disable Specify to disable the LED admin state of all ports Restrictions Only Administrators and Operators can issue this command Example To disable the LED admin state DGS 3000 26TC admin config led state disable Command config led state disable Success DGS 3000 26TC admin show l...

Page 667: ...s Layer 2 Managed Gigabit Ethernet Switch CLI Reference Guide 663 Example To display the setting of all port s LED admin state DGS 3000 26TC admin show led Command show led Port LED State Disabled DGS 3000 26TC admin ...

Page 668: ...uest packet if the tag is absent and remove the circuit ID tag from the received PPPoE offer and session confirmation packet The insert circuit ID contains the following information Client MAC address Device ID and Port number By default Switch IP address is used as the device ID to encode the circuit ID option Format config pppoe circuit_id_insertion state enable disable Parameters enable Specify...

Page 669: ...enable Enables port s PPPoE circuit ID insertion function disable Disables port s PPPoE circuit ID insertion function circuit_id Specify to configure the device ID part for encoding of the circuit ID option mac The MAC address of the Switch will be used to encode the circuit ID option ip The Switch s IP address will be used to encode the circuit ID option This is the default udf A user specified s...

Page 670: ...show pppoe circuit_id_insertion Global PPPoE State Enabled DGS 3000 26TC admin show pppoe circuit_id_insertion ports 66 4 Description This command is used to display Switch s port PPPoE Circuit ID insertion configuration Format show pppoe circuit_id_insertion ports portlist Parameters portlist Optional Enter a list of ports to be displayed Restrictions None Example To display port 2 5 PPPoE circui...

Page 671: ...CLI Reference Guide 667 DGS 3000 26TC admin show pppoe circuit_id_insertion ports 2 5 Command show pppoe circuit_id_insertion ports 2 5 Port State Circuit ID 2 Enabled Switch IP 3 Enabled Switch IP 4 Enabled Switch IP 5 Enabled Switch IP DGS 3000 26TC admin ...

Page 672: ...me 32 vlanid id priority value 0 7 delete protocol_group group_id id all show port dot1v ports portlist create dot1v_protocol_group_id 67 1 Description This command is used to create a protocol group for protocol VLAN function Format create dot1v_protocol_group group_id id group_name name 32 Parameters id Enter the group ID used here group_name Optional The name of the protocol group The maximum l...

Page 673: ...fy a protocol of the frame type specified ethernet_2 Specify that the Ethernet 2 protocol will be used ieee802 3_snap Specify that the IEEE 802 3 Snap protocol will be used ieee802 3_llc Specify that the IEEE 802 3 LLC protocol will be used protocol_value Enter the protocol value here delete Specify that the protocol will be removed from the specified group protocol The protocol value is used to i...

Page 674: ...col group 100 DGS 3000 26TC admin delete dot1v_protocol_group group_id 100 Command delete dot1v_protocol_group group_id 100 Success DGS 3000 26TC admin show dot1v_protocol_group 67 4 Description This command is used to display the protocols defined in a protocol group Format show dot1v_protocol_group group_id id group_name name 32 Parameters group_id Optional Specify the ID of the group to be disp...

Page 675: ...orts used for the configuration here all Specify that all the ports will be used for this configuration add Specify that the group specified will be added protocol_group Specify that parameters for the group will follow group_id Specify the group ID of the protocol group id Enter the group ID used here group_name Specify the name of the protocol group name 32 Enter the name of the group used here ...

Page 676: ...vlan marketing 1 Command config port dot1v ports 3 add protocol_group group_id 10 vlan marketing 1 Success DGS 3000 26TC admin show port dot1v 67 6 Description This command is used to display the VLAN to be associated with untagged packet ingressed from a port based on the protocol group Format show port dot1v ports portlist Parameters ports Optional Specify a range of ports to be displayed portli...

Page 677: ...t Ethernet Switch CLI Reference Guide 673 DGS 3000 26TC admin show port dot1v ports 1 Command show port dot1v ports 1 Port 1 Protocol Group ID VLAN Name Protocol Priority 1 default 2 VLAN2 3 VLAN3 4 VLAN4 Total Entries 4 DGS 3000 26TC admin ...

Page 678: ...ow vlan_translation ports portlist cvid vidlist enable qinq 68 1 Description This command is used to enable QinQ When QinQ is enabled all network port roles will be NNI ports and outer TPID will be set to 0x88A8 all existing static VLANs will run as S VLAN all dynamic learned L2 address will be cleared all dynamic registered VLAN entries will be cleared and GVRP will be disabled To run GVRP on the...

Page 679: ...ers None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable QinQ DGS 3000 26TC admin disable qinq Command disable qinq Success DGS 3000 26TC admin config qinq inner_tpid 68 3 Description This command is used to configure the inner TPID of the system The inner TPID is used to decide if the ingress packet is c tagged Inner tag TPID is per system conf...

Page 680: ... Specify that the port is connecting to the service provider network missdrop Optional Specify the state of the miss drop of ports option enable Specify that the miss drop of ports option will be enabled disable Specify that the miss drop of ports option will be disabled outer_tpid Optional Specify the outer TPID of a port hex 0x1 0xffff Enter the outer TPID value used here add_inner_tag Optional ...

Page 681: ...3000 26TC admin show qinq 68 5 Description This command is used to display the global QinQ status Format show qinq Parameters None Restrictions None Example To display the global QinQ status DGS 3000 26TC admin show qinq Command show qinq QinQ Status Enabled DGS 3000 26TC admin show qinq inner_tpid 68 6 Description This command is used to display the inner TPID of a system Format show qinq inner_t...

Page 682: ...dmin show qinq inner_tpid Command show qinq inner_tpid Inner TPID 0x9100 DGS 3000 26TC admin show qinq ports 68 7 Description This command is used to display the QinQ configuration of the ports Format show qinq ports portlist Parameters portlist Optional Enter the list of ports to be displayed here Restrictions None Example To show the QinQ mode for ports 1 2 ...

Page 683: ... will be recovered to C VLAN Tag or stripped Format create vlan_translation ports portlist all add cvid vidlist replace cvid vlanid 1 4094 svid vlanid 1 4094 priority priority 0 7 Parameters portlist Enter the list of ports to be configured here all Specify that all the ports will be used for the configuration add Specify to add an S Tag to the packet cvid Specify the customer VLAN ID used vidlist...

Page 684: ...tion ports 1 add cvid 30 svid 300 Command create vlan_translation ports 1 add cvid 30 svid 300 Success DGS 3000 26TC admin delete vlan_translation ports 68 9 Description This command is used to delete translation relationships between the C VLAN and the S VLAN Format delete vlan_translation ports portlist all cvid vidlist Parameters portlist Enter the list of ports to be configured here all Specif...

Page 685: ...ormat show vlan_translation ports portlist cvid vidlist Parameters ports Optional Specify a list of ports to be displayed portlist Enter the list of ports to be displayed here cvid Optional Specify the rules for the specified CVIDs vidlist Enter the CVID value used here Restrictions None Example To show C VLANs based on VLAN translation rules in the system DGS 3000 26TC admin show vlan_translation...

Page 686: ...ity 0 7 dscp_dscp dscp_list to dscp 0 63 dscp_color dscp_list to green red yellow show dscp map portlist dscp_priority dscp_dscp dscp_color dscp dscp_list show 802 1p queue statistics port port config bandwidth_control 69 1 Description This command is used to configure the port bandwidth limit control Format config bandwidth_control portlist all rx_rate no_limit value 64 10240000 tx_rate no_limit ...

Page 687: ... Description This command is used to display the port bandwidth configurations The bandwidth can also be assigned by the RADIUS server through the authentication process If RADIUS server has assigned the bandwidth then the RADIUS assigned bandwidth will be the effective bandwidth The authentication with the RADIUS sever can be per port or per user For per user authentication there may be multiple ...

Page 688: ... list of port used for this configuration here all For set all ports in the system you may use all parameter If no parameter is specified system will set all ports cos_id_list 0 7 Enter a list of priority queues The priority queue number is ranged from 0 to 7 min_rate Optional Specify that one of the parameters below no_limit or value m n will be applied to the mini rate at which the above specifi...

Page 689: ... 1 10 1 min_rate 130 max_rate 1000 Command config per_queue bandwidth_control ports 1 10 1 min_rate 130 max_rate 1000 Granularity TX 64 Actual Rate MIN 128 MAX 960 Success DGS 3000 26TC admin show per_queue bandwidth_control 69 4 Description This command is used to display per port CoS bandwidth control settings Format show per_queue bandwidth_control portlist Parameters portlist Optional Enter a ...

Page 690: ...eight value 1 127 Parameters ports Optional Specify a range of ports to be configured portlist Enter the list of port used for this configuration here all Specify all the ports to be configured class_id 0 7 Enter the 8 hardware priority queues which the config scheduling command will apply to The four hardware priority queues are identified by number from 0 to 7 with the 0 queue being the lowest p...

Page 691: ...tem If no port is specified system will set all ports strict The highest class of service is the first to process traffic That is the highest class of service will finish before other queues empty wrr Use the weighted round robin algorithm to handle packets in an even distribution in priority classes of service wdrr Use the weighted deficit round robin algorithm to handle packets in an even distri...

Page 692: ...t show scheduling portlist Parameters portlist Optional Enter a range of ports to be displayed If no parameter specified system will display all ports scheduling configurations Restrictions None Example To display the traffic scheduling parameters for each CoS queue on port 1 take eight hardware priority queues for example DGS 3000 26TC admin show scheduling 1 Command show scheduling 1 QOS Output ...

Page 693: ...on This command is used to show the traffic scheduling mechanism Format show scheduling_mechanism portlist Parameters portlist Optional Enter a range of ports to be displayed If no parameter specified system will display all ports scheduling mechanism configurations Restrictions None Example To show scheduling mechanism ...

Page 694: ...22 Strict 23 Strict 24 Strict 25 Strict 26 Strict DGS 3000 26TC admin config 802 1p user_priority 69 9 Description This command is used to map the 802 1p user priority of an incoming packet to one of the eight hardware queues available on the Switch Format config 802 1p user_priority priority 0 7 class_id 0 7 Parameters priority 0 7 Enter a priority class value to associate with class_id 0 7 Enter...

Page 695: ... configure the 802 1p user priority DGS 3000 26TC admin config 802 1p user_priority 1 3 Command config 802 1p user_priority 1 3 Success DGS 3000 26TC admin show 802 1p user_priority 69 10 Description This command is used to display 802 1p user priority for ports Format show 802 1p user_priority Parameters None Restrictions None Example To display the 802 1p user priority ...

Page 696: ...1p default_priority portlist all priority 0 7 Parameters portlist Enter a range of ports for which the default priority is to be configured That is a range of ports for which all untagged packets received will be assigned the priority specified below The port list is specified by listing the beginning port number on the Switch separated by a colon Then highest port number of the range also separat...

Page 697: ...h the RADIUS sever can be per port or port user For per port authentication the priority assigned by RADIUS server will be the effective port default priority For per user authentication the priority assigned by RADIUS will not be the effective port default priority whereas it will become the priority associated with MAC address Note that only devices supporting MAC based VLAN can provide per user...

Page 698: ...e state of DSCP trust per port When DSCP is not trusted 802 1p is trusted Format config dscp trust portlist all state enable disable Parameters portlist Enter the list of port used for this configuration all Specify that the command apply to all ports on the Switch state Specify to enable or disable to trust DSCP By default DSCP trust is disabled enable Specify to enable the DSCP trust state disab...

Page 699: ...rt used for this configuration all Optional Specify that the command apply to all ports on the Switch 1p_color The list of source priority for imcoming packets priority_list Enter the list of source priority for imcoming packets to The mapped color for a packet green Specify green as the mapped color red Specify red as the mapped color yellow Specify yellow as the mapped color Restrictions Only Ad...

Page 700: ...w 802 1p map 1p_color 1 802 1p to Color Mapping Port 0 1 2 3 4 5 6 7 1 Green Green Green Green Green Green Green Green DGS 3000 26TC admin show dscp trust 69 16 Description This command is used to display DSCP trust state for the specified ports on the Switch Format show dscp trust portlist Parameters portlist Optional A range of ports to display If not specify the port all ports for DSCP trust st...

Page 701: ...ping will take effect at the same time when IP packet ingress from a DSCP trusted port Format config dscp map portlist all dscp_priority dscp_list to priority 0 7 dscp_dscp dscp_list to dscp 0 63 dscp_color dscp_list to green red yellow Parameters portlist Optional Enter the list of port used for this configuration here all Optional Specify that all the ports will be included in this configuration...

Page 702: ...riority 1 DGS 3000 26TC admin config dscp map dscp_priority 1 to 1 Command config dscp map dscp_priority 1 to 1 Success DGS 3000 26TC admin show dscp map 69 18 Description This command is used to show DSCP trusted port list and mapped color priority and DSCP Format show dscp map portlist dscp_priority dscp_dscp dscp_color dscp dscp_list Parameters portlist Optional Enter a range of ports to show I...

Page 703: ...0 0 1 2 3 4 5 6 7 8 9 1 10 11 12 13 14 15 16 17 18 19 2 20 21 22 23 24 25 26 27 28 29 3 30 31 32 33 34 35 36 37 38 39 4 40 41 42 43 44 45 46 47 48 49 5 50 51 52 53 54 55 56 57 58 59 6 60 61 62 63 DGS 3000 26TC admin show 802 1p queue statistics port 69 19 Description This command is used to display the per queue counters for each port Format show 802 1p queue statistics port port Parameters port E...

Page 704: ...th per queue bandwidth control if user doesn t configure it the min bandwidth will be 0 2 Max Bandwidth maximum bandwidth setting associated with per queue bandwidth control if user doesn t configure it the max bandwidth will be the current port s link speed Queue Min Bandwidth Packets sec Total packets Max Bandwidth Bytes sec Total Bytes 0 0 0 0 0 0 0 1 0 0 0 0 0 0 2 0 0 0 0 0 0 3 0 0 0 0 0 0 4 0...

Page 705: ...e ipv6addr Enter the IPv6 address of the RADIUS server here key The key pre negotiated between switch and the RADIUS server It is used to encrypt user s authentication data before being transmitted over internet The maximum length of the key is 32 password 32 Enter the password here The password can be up to 32 characters long encryption_key Specify the key pre negotiated between the switch and th...

Page 706: ...radius add 1 10 48 74 121 key dlink default Command config radius add 1 10 48 74 121 key dlink default Success DGS 3000 26TC admin config radius delete 70 2 Description This command is used to delete a RADIUS server Format config radius delete server_index 1 3 Parameters server_index 1 3 Enter to delete a RADIUS server Enter the RADIUS server index Restrictions Only Administrators Operators and Po...

Page 707: ...the Internet password 56 Enter the enryption key auth_port Specify the UDP port number which is used to transmit RADIUS authentication data between the Switch and the RADIUS server The range is 1 to 65535 The default value is 1812 udp_port_number 1 65535 Enter the authentication port number here This value must be between 1 and 65535 default Specify that the default port number will be used acct_p...

Page 708: ...lay RADIUS server configurations Format show radius Parameters None Restrictions None Example To display RADIUS server configurations DGS 3000 26TC admin show radius Command show radius Index IP Address Auth Port Acct Port Timeout Retransmit Key sec 1 10 48 74 121 60 1813 5 2 dlink Total Entries 1 DGS 3000 26TC admin show auth_client 70 5 Description This command is used to display information of ...

Page 709: ... radiusAuthClientServerPortNumber 0 radiusAuthClientRoundTripTime 0 radiusAuthClientAccessRequests 0 radiusAuthClientAccessRetransmissions 0 radiusAuthClientAccessAccepts 0 radiusAuthClientAccessRejects 0 radiusAuthClientAccessChallenges 0 radiusAuthClientMalformedAccessResponses 0 radiusAuthClientBadAuthenticators 0 radiusAuthClientPendingRequests 0 radiusAuthClientTimeouts 0 radiusAuthClientUnkn...

Page 710: ...verAddresses 0 radiusAcctClientIdentifier radiusAuthServerEntry radiusAccServerIndex 1 radiusAccServerAddress 0 0 0 0 radiusAccClientServerPortNumber 0 radiusAccClientRoundTripTime 0 radiusAccClientRequests 0 radiusAccClientRetransmissions 0 radiusAccClientResponses 0 radiusAccClientMalformedResponses 0 radiusAccClientBadAuthenticators 0 radiusAccClientPendingRequests 0 radiusAccClientTimeouts 0 r...

Page 711: ...le path_filename 64 rcp string user ipaddr path_filename config rcp server ipaddress ipaddr username username config rcp server clear ipaddr username both show rcp server download firmware_fromRCP 71 1 Description This command is used to download a firmware file from a Remote Copy Protocol RCP server Format download firmware_fromRCP username username 15 ipaddr src_file path_filename 64 rcp string ...

Page 712: ...file path_filename 64 rcp string user ipaddr path_filename src_file pathname 64 Parameters username Optional Specify the remote user name on the RCP server username 15 Enter the remote user name on the RCP server ipaddr Optional Enter the IP address of the RCP server dest_file Specify the path name on the RCP server path_filename 64 Enter the path name on the RCP server rcp Specify the path and th...

Page 713: ...rver username 15 Enter the remote user name on the RCP server ipaddr Optional Enter the IP address of the RCP server src_file Specify the path and file name of the switch configuration file on the RCP server The maximum length is 64 path_filename 64 Enter the path and file name of the switch configuration file on the RCP server The maximum length is 64 rcp Specify the path and the login credential...

Page 714: ... login credentials of the firmware file located on the RCP server that will be used for the upload No spaces are allowed For example user_name 10 1 1 1 home user_name firmware had src_file Optional Specify the path name of the source file pathname 64 Enter the path name of the source file Note that if no path name is Specify only the current device configuration will be uploaded include Optional I...

Page 715: ...load the current configuration from the device to an RCP server DGS 3000 26TC admin upload cfg_toRCP username rcp_user 172 18 212 104 dest_file home config cfg Command upload cfg_toRCP username rcp_user 172 18 212 104 dest_file home config cfg Connecting to server Done Upload configuration Done DGS 3000 26TC admin To upload the configuration from a file system supported device to an RCP Server DGS...

Page 716: ...Example To upload the log from the device to an RCP server DGS 3000 26TC admin upload log_toRCP rcp_user 172 18 212 104 dest_file home system log log Command upload log_toRCP rcp_user 172 18 212 104 dest_file home system log log Connecting to server Done Upload log Done DGS 3000 26TC admin To upload log from the device to an RCP server using an RCP string DGS 3000 26TC admin upload log_toRCP rcp r...

Page 717: ...name 10 1 1 1 home user_name firmware had Restrictions Only Administrators can issue this command Example To upload the attack log from the device to an RCP server DGS 3000 26TC admin upload attack_log_toRCP username rcp_user 172 18 212 104 home attack log log Command upload attack_log_toRCP username rcp_user 172 18 212 104 home attack log log Connecting to server Done Upload attack log Done DGS 3...

Page 718: ...onfig rcp server username travel Success DGS 3000 26TC admin config rcp server clear 71 8 Description This command is used to clear Remote Copy Protocol RCP global server information Format config rcp server clear ipaddr username both Parameters ipaddr Clear the IP address of the RCP server username Clear the username of the RCP server both Clear both the IP address and the username of the RCP ser...

Page 719: ...d to display Remote Copy Protocol RCP global server information Format show rcp server Parameters None Restrictions Only Administrators can issue this command Example To display RCP global server information DGS 3000 26TC admin show rcp server Command show rcp server RCP Server Address RCP Server Username travel DGS 3000 26TC admin ...

Page 720: ...lete ports portlist rx tx both show rspan vlan_name vlan_name vlan_id vlanid 1 4094 enable rspan 72 1 Description This command is used to enable all previously entered RSPAN configurations Format enable rspan Parameters None Restrictions Only Administrators and Operators can issue this command Example To enable all previously entered RSPAN configurations DGS 3000 26TC admin enable rspan Command en...

Page 721: ... an RSPAN VLAN Up to 16 RSPAN VLANs can be created Format create rspan vlan vlan_name vlan_name vlan_id vlanid 1 4094 Parameters vlan_name Create the RSPAN VLAN by VLAN name vlan_name Enter the VLAN name vlan_id Create the RSPAN VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID between 1 and 4094 Restrictions Only Administrators and Operators can issue this command Example To create an RSPAN VLAN en...

Page 722: ...e Specify the RSPAN VLAN by VLAN name vlan_name Enter the VLAN name vlan_id Specify the RSPAN VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID between 1 and 4094 Restrictions Only Administrators and Operators can issue this command Example To delete an RSPAN VLAN entry by VLAN name v2 DGS 3000 26TC admin delete rspan vlan vlan_name v2 Command delete rspan vlan vlan_name v2 Success DGS 3000 26TC adm...

Page 723: ...lete ports portlist rx tx both Parameters vlan_name Specify the RSPAN VLAN by VLAN name vlan_name Enter the VLAN name vlan_id Specify the RSPAN VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID between 1 and 4094 redirect Specify output port list for the RSPAN VLAN packets If the redirect port is a Link Aggregation port the Link Aggregation behavior will apply to the RSPAN packets add Specify to add...

Page 724: ...TC admin To configure RSPAN redirect for VLAN 2 to ports 18 and 19 DGS 3000 26TC admin config rspan vlan vlan_name vlan2 redirect add ports 18 19 Command config rspan vlan vlan_name vlan2 redirect add ports 18 19 Success DGS 3000 26TC admin show rspan 72 6 Description This command is used to display RSPAN VLAN configuration Format show rspan vlan_name vlan_name vlan_id vlanid 1 4094 Parameters vla...

Page 725: ...d 2 Command show rspan vlan_id 2 RSPAN Enabled RSPAN VLAN ID 2 Source Port RX 10 TX 10 Redirect Port 11 DGS 3000 26TC admin To display all RSPAN VLAN settings DGS 3000 26TC admin show rspan Command show rspan RSPAN Enabled RSPAN VLAN ID 2 Source Port RX 10 TX 10 Redirect Port 11 Total RSPAN VLAN 1 DGS 3000 26TC admin ...

Page 726: ...value must be between 20 and 100 falling Specify utilization falling threshold The range is between 20 100 If the CPU utilization is lower than the falling threshold the Switch enters normal mode 20 100 Enter the utilization falling value here This value must be between 20 and 100 trap_log Optional Specify to enable or disable the trap and log mechanism enable Specify that the trap and log mechani...

Page 727: ...73 2 Description This command is used to show safeguard engine information Format show safeguard_engine Parameters None Restrictions None Example To show safeguard_engine information DGS 3000 26TC admin show safeguard_engine Command show safeguard_engine Safeguard Engine State Disabled Safeguard Engine Current Status Normal Mode CPU Utilization Information Rising Threshold 30 Falling Threshold 20 ...

Page 728: ... The 3DES cipher is three key triple DES encrypt decrypt encrypt where the first 8 bytes of the key are used for the first encryption the next 8 bytes for the decryption and the following 8 bytes for the final encryption AES128 Specify that the AES 128 bit encryption method will be used AES192 Specify that the AES 192 bit encryption method will be used AES256 Specify that the AES 256 bit encryptio...

Page 729: ...mand Example To enable SSH server public key algorithm DGS 3000 26TC admin config ssh algorithm DSA enable Command config ssh algorithm DSA enable Success DGS 3000 26TC admin show ssh algorithm 74 2 Description This command is used to show the SSH service algorithm Format show ssh algorithm Parameters None Restrictions None Example To show server algorithm ...

Page 730: ... RSA Enabled DSA Enabled DGS 3000 26TC admin config ssh authmode 74 3 Description This command is used to configure user authentication method for SSH Format config ssh authmode password publickey hostbased enable disable Parameters password Specify the user authentication method using password publickey Specify the user authentication method using public key hostbased Specify the user authenticat...

Page 731: ... ssh authmode 74 4 Description This command is used to show the user authentication method Format show ssh authmode Parameters None Restrictions None Example To show user authentication method DGS 3000 26TC admin show ssh authmode Command show ssh authmode The SSH Authentication Method Password Enabled Public Key Enabled Host based Enabled DGS 3000 26TC admin config ssh user 74 5 Description This ...

Page 732: ...in name and IP address domain_name 32 Enter host name if configuring Host based method ipaddr Enter host IP address if configuring Host based method ipv6addr Enter host IPv6 address if configuring Host based method password Specify user authentication method publickey Specify user authentication method Restrictions Only Administrators can issue this command Example To update user test authenticati...

Page 733: ...y SSH server connection time out in the unit of second sec 120 600 Enter the connection time out value here This value must be between 120 and 600 seconds authfail Optional Specify user maximum fail attempts int 2 20 Enter the user maximum fail attempts value here This value must be between 2 and 20 rekey Optional Specify time to re generate session key There are 10 minutes 30 minutes 60 minutes a...

Page 734: ... Success DGS 3000 26TC admin enable ssh 74 8 Description This command is used to enable SSH server services Format enable ssh Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enable SSH server DGS 3000 26TC admin enable ssh Command enable ssh Success DGS 3000 26TC admin disable ssh 74 9 Description This command is used to disable SSH serv...

Page 735: ...nd Power Users can issue this command Example To disable the SSH server services DGS 3000 26TC admin disable ssh Command disable ssh Success DGS 3000 26TC admin show ssh server 74 10 Description This command is used to show the SSH server general information Format show ssh server Parameters None Restrictions None Example To show SSH server ...

Page 736: ...Switch CLI Reference Guide 732 DGS 3000 26TC admin show ssh server Command show ssh server The SSH Server Configuration Maximum Session 8 Connection Timeout 120 Authentication Fail Attempts 2 Rekey Timeout Never TCP Port Number 22 DGS 3000 26TC admin ...

Page 737: ...tificate to the device which must according to desired key exchange algorithm For RSA key exchange the user must download RSA type certificate and for DHS_DSS is using the DSA certificate for key exchange Format download ssl certificate ipaddr certfilename path_filename 64 keyfilename path_filename 64 Parameters ipaddr Optional Enter the TFTP server IP address used for this configuration here cert...

Page 738: ...C_SHA DHE_DSS_with_3DES_EDE_CBC_SHA RSA_EXPORT_with_RC4_40_MD5 Parameters ciphersuite Optional Specify the cipher suite combination used for this configuration RSA_with_RC4_128_MD5 Indicates RSA key exchange with RC4 128 bits encryption and MD5 hash RSA_with_3DES_EDE_CBC_SHA Indicates RSA key exchange with 3DES_EDE_CBC encryption and SHA hash DHE_DSS_with_3DES_EDE_CBC_SHA Indicates DH key exchange...

Page 739: ... ciphersuite Optional Specify the cipher suite combination used for this configuration RSA_with_RC4_128_MD5 Indicates RSA key exchange with RC4 128 bits encryption and MD5 hash RSA_with_3DES_EDE_CBC_SHA Indicates RSA key exchange with 3DES_EDE_CBC encryption and SHA hash DHE_DSS_with_3DES_EDE_CBC_SHA Indicates DH key exchange with 3DES_EDE_CBC encryption and SHA hash RSA_EXPORT_with_RC4_40_MD5 Ind...

Page 740: ... key exchange algorithm The options may be no certificate RSA type or DSA type certificate Format show ssl certificate Parameters certificate Optional Specify that the SSL certificate will be displayed Restrictions None Example To show SSL DGS 3000 26TC admin show ssl Commands show ssl SSL Status Enabled RSA_WITH_RC4_128_MD5 0x0004 Enabled RSA_WITH_3DES_EDE_CBC_SHA 0x000A Enabled DHE_DSS_WITH_3DES...

Page 741: ...by cache timeout value Format show ssl cachetimeout Parameters None Restrictions None Example To show SSL cache timeout DGS 3000 26TC admin show ssl cachetimeout Commands show ssl cachetimeout Cache timeout is 600 second s DGS 3000 26TC admin config ssl cachetimeout 75 6 Description This command is used to configure cahce timeout value which is designed for dlktimer library to remove the session i...

Page 742: ...ers value 60 86400 Enter the timeout value here This value must be between 60 and 86400 Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the SSL cache timeout value to 60 DGS 3000 26TC admin config ssl cachetimeout 60 Commands config ssl cachetimeout 60 Success DGS 3000 26TC admin ...

Page 743: ...t personnel to dump the device overall operation information Basic System Information System Log Running Configuration Layer 1 Information Layer 2 Information Storm Control Layer 2 Multicast Layer 3 Information Security Application OS Status Management This command can be interrupted by Ctrl C or ESC when it is executing Format show tech_support Parameters None Restrictions Only Administrators and...

Page 744: ...2014 02 20 03 09 28 Boot PROM Version Build 1 00 002 Firmware Version Build 1 10 013 Hardware Version A1 MAC Address 00 01 02 03 04 00 ERROR_LOG 2014 2 20 03 09 28 debug log 1 firmware version 0 00 000 level CPU exception clock 9710 ms time 2014 01 01 00 00 10 upload tech_support_toTFTP 76 2 Description This command is used to upload the information of technique s support to TFTP server Basic Syst...

Page 745: ...ename 64 Optional Enter the file name to store the information of technique s support in TFTP server The max size of the file name is 64 Restrictions Only Administrators and Operators can issue this command Example To upload the information of technique s support DGS 3000 26TC admin upload tech_support_toTFTP 10 0 0 66 tech_report txt Command upload tech_support_toTFTP 10 0 0 66 tech_report txt Co...

Page 746: ...ddr 64 delete mail_receiver index 1 8 server_ipv6 ipv6addr server_port_ipv6 tcp_port_number 1 65535 1 show smtp smtp send_testmsg enable smtp 77 1 Description This command is used to enable the SMTP status Format enable smtp Parameters None Restrictions Only Administrators can issue this command Example To enable SMTP status DGS 3000 26TC admin enable smtp Command enable smtp Success DGS 3000 26TC...

Page 747: ..._ipv6 tcp_port_number 1 65535 1 Parameters server Specify the SMTP server IP address ipaddr Enter the SMTP server IP address server_port Specify the SMTP server port tcp_port_number 1 65535 Enter the port number between 1 and 65535 self_mail_addr Specify the sender s mail address mail_addr 64 Enter the mail address with maximum of 64 characters add mail_receiver Specify to add mail receiver s addr...

Page 748: ...ender address as sender mail com DGS 3000 26TC admin config smtp self_mail_addr sender mail com Command config smtp self_mail_addr sender mail com Success DGS 3000 26TC admin To configure how to add the mail s receiver address as receiver mail com DGS 3000 26TC admin config smtp add mail_receiver receiver mail com Command config smtp add mail_receiver receiver mail com Success DGS 3000 26TC admin ...

Page 749: ...tp server 172 18 208 9 server_port_ipv6 25 Command config smtp server 172 18 208 9 server_port_ipv6 25 Success DGS 3000 26TC admin show smtp 77 4 Description This command is display the current SMTP information Format show smtp Parameters None Restrictions None Example To display the current SMTPv6 information ...

Page 750: ...l Address Smtp 30xx dev Index Mail Receiver Address 1 Black alpha com 2 Smith alpha com 3 Christiana alpha com 4 John alpha com 5 Bob alpha com 6 Alice alpha com 7 Julia alpha com 8 Rogger alpha com DGS 3000 26TC admin smtp send_testmsg 77 5 Description This command is used to test whether the SMTP server can be reached Format smtp send_testmsg Parameters None Restrictions Only Administrators can ...

Page 751: ...r 2 Managed Gigabit Ethernet Switch CLI Reference Guide 747 DGS 3000 26TC admin smtp send_testmsg Command smtp send_testmsg Subject e mail heading Content e mail content Sending mail please wait Success DGS 3000 26TC admin ...

Page 752: ...e_view view_name 32 notify_view view_name 32 delete snmp group groupname 32 show snmp groups create snmp view view_name 32 oid view_type included excluded delete snmp view view_name 32 all oid show snmp view view_name 32 create snmp host ipaddr v6host ipv6addr v1 v2c v3 noauth_nopriv auth_nopriv auth_priv auth_string 32 delete snmp host ipaddr v6host ipv6addr show snmp host ipaddr show snmp v6host...

Page 753: ...estrictions Only Administrators can issue this command Example To enable the encryption state on an SNMP community string DGS 3000 26TC admin enable community_encryption Command enable community_encryption Success DGS 3000 26TC admin disable community_encryption 78 2 Description This command is used to disable the encryption state on the SNMP community string Format disable community_encryption Pa...

Page 754: ...g DGS 3000 26TC admin show community_encryption Command show community_encryption SNMP Community Encryption State Enabled DGS 3000 26TC admin create snmp community 78 4 Description This command is used to create an SNMP community string Use an SNMP community string to define the relationship between the SNMP manager and the agent The community string acts like a password to permit access to the ag...

Page 755: ... only community string is public read_write Allows the user to use the above mentioned community string to have read and write access to the Switch s SNMP agent The default read write community string is private Restrictions Only Administrators can issue this command Example To create a read only level SNMP community System with a CommunityView view DGS 3000 26TC admin create snmp community System...

Page 756: ...he community string configurations Format show snmp community community_string 32 Parameters community_string 32 Optional Enter the Community string If no parameter is specified all community string information will be displayed Restrictions None Example To display SNMP community DGS 3000 26TC admin show snmp community Command show snmp community SNMP Community Table Community Name View Name Acces...

Page 757: ...g the community string will have read only access to the switch s SNMP agent read_write Specify that the user using the community string will have read write access to the switch s SNMP agent Restrictions Only Administrators can issue this command Example To create an SNMP community string called community123 with the read_only security method DGS 3000 26TC admin create snmp community_masking view...

Page 758: ...at the DES encryption will be used for the privacy key priv_password 8 16 Enter the DES password value here This value must be between 8 and 16 characters long by_key Indicates input key for authentication and privacy auth An authentication string used by MD5 or SHA1 md5 An authentication key used by MD5 it is hex string type auth_key 32 32 Enter the MD5 authentication key here This value must be ...

Page 759: ...the name of the user on the host that connects to the agent The name can be up to 32 characters long Restrictions Only Administrators can issue this command Example To delete a SNMP user user123 DGS 3000 26TC admin delete snmp user user123 Command delete snmp user user123 Success DGS 3000 26TC admin show snmp user 78 10 Description This command is used to display information on each SNMP username ...

Page 760: ...ters long v1 The least secure of the possible security models v2c The second least secure of the possible security models v3 The most secure of the possible noauth_nopriv Neither support packet authentication nor encrypting auth_nopriv Support packet authentication auth_priv Support packet authentication and encrypting read_view Optional Specify that the view name would be read view_name 32 Enter ...

Page 761: ...delete snmp group 78 12 Description This command is used to remove a SNMP group Format delete snmp group groupname 32 Parameters groupname 32 Enter the group name to be deleted Restrictions Only Administrators can issue this command Example To delete SNMP group group123 DGS 3000 26TC admin delete snmp group group123 Command delete snmp group group123 Success DGS 3000 26TC admin show snmp groups 78...

Page 762: ...iew Securiy Model SNMPv1 Securiy Level NoAuthNoPriv Group Name public ReadView Name CommunityView WriteView Name Notify View Name CommunityView Securiy Model SNMPv2 Securiy Level NoAuthNoPriv Group Name initial ReadView Name restricted WriteView Name Notify View Name restricted Securiy Model SNMPv3 Securiy Level NoAuthNoPriv Group Name WriteGroup ReadView Name CommunityView WriteView Name Communit...

Page 763: ...ype of the MIB tree in this view included Includes for this view excluded Excludes for this view Restrictions Only Administrators can issue this command Example To create SNMP view view123 DGS 3000 26TC admin create snmp view view123 1 3 6 view_type included Command create snmp view view123 1 3 6 view_type included Success DGS 3000 26TC admin delete snmp view 78 15 Description This command is used...

Page 764: ... 3000 26TC admin delete snmp view view123 all Command delete snmp view view123 all Success DGS 3000 26TC admin show snmp view 78 16 Description This command is used to display the SNMP view record Format show snmp view view_name 32 Parameters view_name 32 Enter the view name to be displayed The name can be up to 32 characters long Restrictions None Example To show SNMP view ...

Page 765: ... the IP address of the recipient for which the traps are targeted v6host Specify the IPv6 host address to which the trap packet will be sent ipv6addr Enter the IPv6 address of the recipient for which the traps are targeted v1 Specify that SNMPv1 will be used The is the least secure of the possible security models v2c Specify that SNMPv2c will be used This is the second least secure of the possible...

Page 766: ...6host ipv6addr Parameters host The IP address of the recipient for which the traps are targeted ipaddr Enter the IP address used for the configuration here v6host The IPv6 address of the recipient for which the traps are targeted ipv6addr Enter the IPv6 address used for the configuration here Restrictions Only Administrators can issue this command Example To delete SNMP host 10 0 0 1 DGS 3000 26TC...

Page 767: ...w snmp host SNMP Host Table Host IP Address SNMP Version Community Name SNMPv3 User Name 10 90 90 3 V3 noauthnopriv initial 10 90 90 2 V2c private 10 90 90 1 V1 public 10 90 90 4 V3 authnopriv user123 10 90 90 5 V3 authpriv user234 Total Entries 5 DGS 3000 26TC show snmp v6host 78 20 Description This command is used to display the SNMP version 6 hosts Format show snmp v6host ipv6addr Parameters ip...

Page 768: ... SNMPv3 User Name public Host IPv6 Address 3FFE 3 SNMP Version V3 a np Community Name SNMPv3 User Name user123 Host IPv6 Address 3FFE 3 SNMP Version V3 a p Community Name SNMPv3 User Name user234 Total Entries 5 DGS 3000 26TC admin config snmp engineID 78 21 Description This command is used to configure a identifier for the SNMP engine on the Switch Format config snmp engineID snmp_engineID 10 64 ...

Page 769: ...s suggested in RFC2271 The very first bit is 1 and the first four octets are set to the binary equivalent of the agent s SNMP management private enterprise number as assigned by IANA D_Link is 171 The fifth octet is 03 to indicates the rest is the MAC address of this device The 6th 11th octets is MAC address Format show snmp engineID Parameters None Restrictions None Example To show SNMP engine ID...

Page 770: ...ple To enable SNMP DGS 3000 26TC admin enable snmp Command enable snmp Success DGS 3000 26TC admin disable snmp 78 24 Description This command is used to disable the SNMP function Format disable snmp Parameters None Restrictions Only Administrators and Operators can issue this command Example To disable SNMP DGS 3000 26TC admin disable snmp Command disable snmp Success DGS 3000 26TC admin ...

Page 771: ...s command Example To configure the Switch name for DGS 30xx DGS 3000 26TC admin config snmp system_name DGS 30xx Command config snmp system_name DGS 30xx Success DGS 3000 26TC admin config snmp system_location 78 26 Description This command is used to enter a description of the location of the Switch Format config snmp system_location sw_location Parameters sw_location Optional Enter the SNMP syst...

Page 772: ...fig snmp system_contact sw_contact Parameters sw_contact Optional Enter the SNMP system contact string here This name can be up to 255 characters long Restrictions Only Administrators and Operators can issue this command Example To configure the Switch contact to MIS Department II DGS 3000 26TC admin config snmp system_contact MIS Department II Command config snmp system_contact MIS Department II ...

Page 773: ...le snmp traps 78 29 Description This command is used to disable SNMP trap support on the Switch Format disable snmp traps Parameters None Restrictions Only Administrators and Operators can issue this command Example To prevent SNMP traps from being sent from the Switch DGS 3000 26TC admin disable snmp traps Command disable snmp traps Success DGS 3000 26TC admin enable snmp authenticate_traps 78 30...

Page 774: ...cate_traps Command enable snmp authenticate_traps Success DGS 3000 26TC admin disable snmp authenticate_traps 78 31 Description This command is used to disable SNMP authentication failure trap support Format disable snmp authenticate_traps Parameters None Restrictions Only Administrators and Operators can issue this command Example To disable SNMP authentication trap support DGS 3000 26TC admin di...

Page 775: ...Operators can issue this command Example To enable the sending of linkchange traps DGS 3000 26TC admin enable snmp linkchange_traps Command enable snmp linkchange_traps Success DGS 3000 26TC admin disable snmp linkchange_traps 78 33 Description This command is used to configure the sending of linkchange traps Format disable snmp linkchange_traps Parameters None Restrictions Only Administrators and...

Page 776: ...arameters all Specify that all ports will be used portlist Enter the range of ports used enable Enables the sending of the link change trap for this port disable Disables the sending of the link change trap for this port Restrictions Only Administrators can issue this command Example To configure the sending of linkchange traps DGS 3000 26TC admin config snmp linkchange_traps ports 1 4 enable Comm...

Page 777: ...snmp coldstart_traps enable Success DGS 3000 26TC admin config snmp warmstart_traps 78 36 Description This command is used to configure the trap state for warmstart event Format config snmp warmstart_traps enable disable Parameters enable Enables the trap of the warmstart event The default state is enabled disable Disables the trap of the warmstart event Restrictions Only Administrators can issue ...

Page 778: ...bled Authenticate Trap Enabled Linkchange Traps Enabled Coldstart Traps Enabled Warmstart Traps Enabled DGS 3000 26TC admin config rmon trap 78 38 Description This command is used to configure the trap state for RMON events Format config rmon trap rising_alarm enable disable falling_alarm enable disable 1 Parameters rising_alarm Specify the trap state for rising alarm The default state is enabled ...

Page 779: ... rmon trap rising_alarm disable Command config rmon trap rising_alarm disable Success DGS 3000 26TC admin show rmon 78 39 Description This command is used to display the RMON related setting Format show rmon Parameters None Restrictions None Example To display the RMON related setting DGS 3000 26TC admin show rmon Command show rmon RMON Rising Alarm Trap Enabled RMON Falling Alarm Trap Enabled DGS...

Page 780: ... show sred portlist class_id 0 7 show sred drop_counter portlist enable sred 79 1 Description This command is used to enable the sRED function By default sRED is disabled Format enable sred Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enable sRED DGS 3000 26TC admin enable sred Command enable sred Success DGS 3000 26TC admin disable s...

Page 781: ...ecify the threshold of the percent of space utilized low Optional Specify the low threshold value used value 0 100 Enter the low threshold value used here This value must be between 0 and 100 high Optional Specify the high threshold value used value 0 100 Enter the high threshold value used here This value must be between 0 and 100 drop_rate Optional Specify the drop rate value used low Optional S...

Page 782: ...d low 64 high 80 drop_rate low 8 high 8 drop_green disable Command config sred all all threshold low 64 high 80 drop_rate low 8 high 8 drop_green disable Success DGS 3000 26TC admin show sred 79 4 Description This command is used to display the current thresholds per port and per queue parameters in use on the Switch Format show sred portlist class_id 0 7 Parameters portlist Optional Enter the lis...

Page 783: ...4 80 8 8 2 1 Disabled 64 80 8 8 2 2 Disabled 64 80 8 8 2 3 Disabled 64 80 8 8 2 4 Disabled 64 80 8 8 2 5 Disabled 64 80 8 8 2 6 Disabled 64 80 8 8 2 7 Disabled 64 80 8 8 3 0 Disabled 64 80 8 8 CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All show sred drop_counter 79 5 Description This command is used to display the dropped packet count of egress ports Format show sred drop_counter portl...

Page 784: ... Gigabit Ethernet Switch CLI Reference Guide 780 DGS 3000 26TC admin show sred drop_counter Command show sred drop_counter Port Yellow Red 1 0 0 2 0 0 3 0 0 4 0 0 5 0 0 6 0 0 7 0 0 8 0 0 9 0 0 10 0 0 11 0 0 12 0 0 DGS 3000 26TC admin ...

Page 785: ...p_interval sec 30 90 hold_time sec 100 255 download sim_ms firmware_from_tftp configuration_from_tftp ipaddr ipv6addr path_filename members mslist 1 32 all upload sim_ms configuration_to_tftp log_to_tftp ipaddr ipv6addr path_filename members mslist all config sim trap enable disable enable sim 80 1 Description This command is used to configure the single IP management on the Switch as enabled Form...

Page 786: ... current information of the specific sort of devices Format show sim candidates candidate_id 1 100 members member_id 1 32 group commander_mac macaddr neighbor Parameters candidates Optional Specify the candidate devices candidate_id 1 100 Optional Enter the candidate device ID here This value must be between 1 and 100 members Optional Specify the member devices member_id 1 32 Optional Enter the me...

Page 787: ...ery Interval 30 sec Hold Time 100 sec DGS 3000 26TC admin To show the candidate information in summary if user specify candidate id it would show information in detail DGS 3000 26TC admin show sim candidates Command show sim candidates ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3000 26TC L2 Switch 40 1 10 013 Device 2 00 55 55 00 55 00 DGS 300...

Page 788: ...r groups information in summary if user specify group name it will show information in detail DGS 3000 26TC admin show sim group Command show sim group SIM Group Name default ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3000 26TC L2 Switch 40 1 10 010 Device 2 00 55 55 00 55 00 SIM Group Name SIM2 ID MAC Address Platform Hold Firmware Device Nam...

Page 789: ... is used to re Telnet to member Format reconfig member_id value 1 32 exit Parameters member_id Optional Specify the serial number of the member value 1 32 Enter the serial number of the member here exit Optional Specify to exit from the Telnet session Restrictions Only Administrators Operators and Power Users can issue this command Example To re Telnet to member DGS 3000 26TC admin reconfig member...

Page 790: ... Enter the member ID of the member to be removed from the group here This value must be between 1 and 32 Restrictions Only Administrators Operators and Power Users can issue this command Example To add a member DGS 3000 26TC admin config sim_group add 2 Command config sim_group add 2 Please wait for ACK SIM Configure Success Success DGS 3000 26TC admin To delete a member DGS 3000 26TC admin config...

Page 791: ...ec 30 90 Enter the discovery time here in seconds This value must be between 30 and 90 seconds hold_time The time in seconds the device holds the discovery result sec 100 255 Enter the hold time here in seconds This value must be between 100 and 255 Restrictions Only Administrators Operators and Power Users can issue this command Example To transfer to commander DGS 3000 26TC admin config sim comm...

Page 792: ...m_tftp ipaddr ipv6addr path_filename members mslist 1 32 all Parameters firmware_from_tftp Specify to download firmware from a TFTP server configuration_from_tftp Specify to download configuration from a TFTP server ipaddr Optional Enter the IP address of the TFTP server ipv6addr Optional Enter the IPv6 address of TFTP server path_filename Optional Enter the file path of firmware or configuration ...

Page 793: ...nfiguratin_from_tftp 10 55 47 1 D config cfg 1 Commands download sim_ms configuratin_from_tftp 10 55 47 1 D config cfg 1 This device is updating configuration Please wait Download Status ID MAC Address Result 1 00 01 02 03 04 00 Success 2 00 07 06 05 04 03 Fail 3 00 07 06 05 04 03 Fail DGS 3000 26TC admin To download configuration via IPv6 DGS 3000 26TC admin download sim_ms configuratin_from_tftp...

Page 794: ...server members Optional Specifiy the members which upload its configuration mslist Enter the members which upload its configuration The value is from 1 to 32 all Optional Specify all members which upload its configuration Restrictions Only Administrators Operators and Power Users can issue this command Example To upload configuration DGS 3000 26TC admin upload sim_ms configuration_to_tftp 10 55 47...

Page 795: ... traps issued from the member switch Format config sim trap enable disable Parameters enable Enable the trap state disable Disable the trap state Restrictions Only Administrators Operators and Power Users can issue this command Example To enable SIM trap DGS 3000 26TC admin config sim trap enable Command config sim trap enable Success DGS 3000 26TC admin ...

Page 796: ... IP subnet A sub VLAN is a Layer 2 separated broadcast domain The super VLAN cannot have any physical member ports and hosts that resides within any sub VLANs Once an IP interface is bound to a super VLAN the proxy ARP will be enabled automatically on the specified interface for the communication between its sub VLANs If an IP interface is bound to a super VLAN it cannot be bound to any other VLAN...

Page 797: ... vlanid 1 4094 Enter the VLAN ID used here This value must be between 1 and 4094 add Specify the sub VLAN ID list to add to the super VLAN The sub VLAN shall be an existent 802 1Q VLAN delete Specify the sub VLAN ID list to delete from the super VLAN sub_vlan Specify the sub VLANs of the super VLAN By default a new created super VLAN has no sub VLANs configured vidlist Enter the VLAN ID of the sub...

Page 798: ...e IP ranges Configuring IP range of sub VLAN can reduce the ARP traffic in the super VLAN That is multiple IP ranges is allowed to map to one sub VLAN One IP can not map to multiple sub VLANs if one IP is mapped to multiple VLAN it may cause traffic forwarding to the wrong VLAN Format config sub_vlan vlan_name 32 vlanid vlanid 1 4094 add delete ip_range ipaddr to ipaddr Parameters vlan_name 32 Ent...

Page 799: ...10 1 1 1 to 10 1 1 3 Success DGS 3000 26TC admin show super_vlan 81 5 Description This command is used to display the super VLAN parameters Format show super_vlan vlan_name 32 vlanid vlanid 1 4094 Parameters vlan_name 32 Optional Enter the super VLAN name used here This name can be up to 32 characters long vlanid Optional Specify the super VLAN ID used vlanid 1 4094 Enter the super VLAN ID used he...

Page 800: ...how sub_vlan 81 6 Description This command is used to show sub_VLAN Format show sub_vlan vlan_name 32 vlanid vidlist Parameters vlan_name 32 Optional Enter the sub_VLAN name used here This name can be up to 32 characters long vlanid Optional Specify the sub_VLAN ID used vidlist Enter the sub_VLAN ID used here This value must be between 1 and 4094 If the sub_vlan VLAN is not specified all sub_vlans...

Page 801: ... admin show sub_vlan Command show sub_vlan Sub VID Status Super VID IP Range 1 Active 10 10 1 1 1 10 1 1 10 10 1 2 1 10 1 2 20 2 Active 10 10 1 3 0 10 1 3 100 3 Inactive 10 10 1 4 0 10 1 4 255 4 Active 20 10 1 5 0 10 1 5 255 5 Inactive 20 10 1 6 0 10 1 6 255 Total Entries 5 DGS 3000 26TC admin ...

Page 802: ...the IP interface name If only specify this parameter the least IPv4 address and the smallest IPv6 address of ipif_name will be used as source IP addresses This name can be up to 12 characters long ipaddr Optional Enter the IP address used for the configuration here ipv6addr Optional Enter the IPv6 address used for the configuration here none Specify to clear the configured source IP interface Rest...

Page 803: ...ource IP interface Format show syslog source_ipif Parameters None Restrictions None Example Show syslog source IP interface DGS 3000 26TC admin show syslog source_ipif Command show syslog source_ipif Syslog Source IP Interface Configuration IP Interface ipif3 IPv4 Address 14 0 0 5 IPv6 Address None DGS 3000 26TC admin config trap source_ipif 82 3 Description This command is used to configure trap ...

Page 804: ...tions Only Administrators and Operators can issue this command Example Configure trap source IP interface DGS 3000 26TC admin config trap source_ipif System Command config trap source_ipif System Success DGS 3000 26TC admin To clear the configured trap source IP interface DGS 3000 26TC admin config trap source_ipif none Command config trap source_ipif none Success DGS 3000 26TC admin show trap sou...

Page 805: ...Gigabit Ethernet Switch CLI Reference Guide 801 DGS 3000 26TC admin show trap source_ipif Command show trap source_ipif Trap Source IP Interface Configuration IP Interface System IPv4 Address None IPv6 Address None DGS 3000 26TC admin ...

Page 806: ...cal6 local7 udp_port udp_port_number state enable disable config syslog host index all severity emergency alert critical error warning notice informational debug level 0 7 facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr ipv6addr state enable disable 1 delete syslog host index 1 4 all show syslog host index 1 4 config log_save_timing time_i...

Page 807: ... by using the show log_software_module command Use a comma to separate multiple modules module_list Enter the module list value here emergency Optional Severity level 0 alert Optional Severity level 1 critical Optional Severity level 2 error Optional Severity level 3 warning Optional Severity level 4 notice Optional Severity level 5 informational Optional Severity level 6 debug Optional Severity l...

Page 808: ... 83 3 Description This command is used to display the protocols or applications that support the enhanced log The enhanced log adds the module name and module ID Network administrators can display logs by module name or module ID Format show log_software_module Parameters None Restrictions None Example To display the protocols or applications that support the enhanced log DGS 3000 26TC admin show ...

Page 809: ...essages DGS 3000 26TC admin enable syslog Command enable syslog Success DGS 3000 26TC admin disable syslog 83 5 Description This command is used to disable the sending of syslog messages Format disable syslog Parameters None Restrictions Only Administrators and Operators can issue this command Example To disable the sending of syslog messages DGS 3000 26TC admin disable syslog Command disable sysl...

Page 810: ...s of messages to a specific host When the user chooses a specific level for a specific host messages which are at that severity level or higher will be reported to that host Format create syslog host index 1 4 ipaddress ipaddr ipv6addr severity emergency alert critical error warning notice informational debug level 0 7 facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_p...

Page 811: ...l 4 local5 Specify that the user defined facility will be set to local 5 local6 Specify that the user defined facility will be set to local 6 local7 Specify that the user defined facility will be set to local 7 udp_port Optional Specify the UDP port number udp_port_number Enter the UDP port number used here state Optional The syslog protocol is used for the transmission of event notification messa...

Page 812: ...e syslog packet when it is sent to a specific syslog server local0 Specify that the user defined facility will be set to local 0 local1 Specify that the user defined facility will be set to local 1 local2 Specify that the user defined facility will be set to local 2 local3 Specify that the user defined facility will be set to local 3 local4 Specify that the user defined facility will be set to loc...

Page 813: ...t delete syslog host index 1 4 all Parameters index Enter the host index value here all Specify that all the host indexes will be used Restrictions Only Administrators and Operators can issue this command Example To delete the specific syslog host DGS 3000 26TC admin delete syslog host 4 Command delete syslog host 4 Success DGS 3000 26TC admin show syslog host 83 10 Description This command is use...

Page 814: ...t the method for saving the log Format config log_save_timing time_interval min 1 65535 on_demand log_trigger Parameters time_interval Specify the time interval used for saving the log If there is no new log event during this time interval the Switch will not save any log entries min 1 65535 Enter the time interval value here This value must be between 1 and 65535 minutes on_demand Specify that th...

Page 815: ...e timing method used for saving the log DGS 3000 26TC admin show log_save_timing Command show log_save_timing Saving Log Method On_demand DGS 3000 26TC admin show attack_log 83 13 Description This command is used to display the attack log messages The attack log message refers to log messages driven by modules such as DOS This type of log message may generate a large amount of messages and quickly...

Page 816: ...parameter is specified all entries in the attack log will be displayed Restrictions None Example To show dangerous messages on the master DGS 3000 26TC admin show attack_log index 1 Command show attack_log index 1 Index Date Time Level Log Text 1 2014 05 17 15 00 14 CRIT 2 Possible spoofing attack from IP MAC 0A 00 00 5A 00 01 port 3 DGS 3000 26TC admin clear attack_log 83 14 Description This comm...

Page 817: ...DGS 3000 Series Layer 2 Managed Gigabit Ethernet Switch CLI Reference Guide 813 DGS 3000 26TC admin clear attack_log Command clear attack_log Success DGS 3000 26TC admin ...

Page 818: ...ormat config system_severity trap log all emergency alert critical error warning notice information debug level 0 7 Parameters trap Specify the severity level control for traps log Specify the severity level control for the log all Specify the severity level control for traps and the log emergency Severity level 0 alert Severity level 1 critical Severity level 2 error Severity level 3 warning Seve...

Page 819: ...000 26TC admin show system_severity 84 2 Description This command is used to display the severity level controls for the system Format show system_severity Parameters None Restrictions None Example To show severity level control for system DGS 3000 26TC admin show system_severity Command show system_severity System Severity Trap warning 4 System Severity Log information 6 DGS 3000 26TC admin ...

Page 820: ...Parameters ipaddr Enter the IP address of the Telnet server domain_name 255 Enter the domain name of the Telnet server ipv6addr Enter the IPv6 address of the Telnet server tcp_port Optional Specify the Telnet server port number to be connected If not specified the default port is 23 value 1 65535 Enter the TCP port number used here This value must be between 1 and 65535 Restrictions Only Administr...

Page 821: ... file Format download firmware_fromTFTP ipaddr ipv6addr domain_name 255 src_file path_filename 64 dest_file pathname 64 boot_up cfg_fromTFTP ipaddr ipv6addr domain_name 255 src_file path_filename 64 dest_file pathname 64 Parameters firmware_fromTFTP Download and install new firmware on the switch from a TFTP server ipaddr Optional Enter the IP address of the TFTP server ipv6addr Optional Enter the...

Page 822: ...c_file runtime had dest_file runtime had Connecting to server Done Download firmware Done Do not power off Please wait programming flash Done DGS 3000 26TC admin upload 86 2 Description This command is used to upload the firmware configuration file system log or attack log to the TFTP server Format upload cfg_toTFTP ipaddr ipv6addr domain_name 255 dest_file path_filename 64 src_file pathname 64 in...

Page 823: ...ymbol Thus the filter string itself cannot contain the quotation mark character The filter string is case sensitive filter_string 80 Optional Enter a filter string enclosed by the quotation mark symbol filter_string 80 Optional Enter a filter string enclosed by the quotation mark symbol log_toTFTP Used to upload the log file from the Switch to the TFTP server ipaddr Enter the IP address of the TFT...

Page 824: ...d upload firmware_toTFTP 10 90 90 10 dest_file D firmware had src_file 4 00 020 had No such file or directory Fail DGS 3000 26TC admin To upload configuration from TFTP DGS 3000 26TC admin upload cfg_toTFTP 10 90 90 10 dest_file d config cfg Command upload cfg_toTFTP 10 90 90 10 dest_file d config cfg Connecting to server Done Upload configuration Done Success DGS 3000 26TC admin To display a scen...

Page 825: ...oad path_filename 64 Specify the path and name of the configuration file that will be used for the upload and download This name can be up to 64 characters long log_file Specify the path and name of the system log file that will be used for the upload and download path_filename 64 Enter the path and name of the system log file that will be used for the upload and download This name can be up to 64...

Page 826: ...at will be used for the upload and download This name can be up to 64 characters long sim_log_file Specify the path and name of the SIM system log file that will be used for the upload and download path_filename 64 Enter the path and name of the SIM system log file that will be used for the upload and download This name can be up to 64 characters long Restrictions Only Administrators Operators and...

Page 827: ...e To display the TFTP server s settings DGS 3000 26TC admin show tftp Command show tftp TFTP Server Settings IPv4 Address File Type Path_filename firmware_file cfg_file log_file attack_log_file certificate_file key_file tech_support_file debug_error_log_file sim_firmware_file sim_cfg_file sim_log_file DGS 3000 26TC admin ...

Page 828: ...30 60 90 120 annual s_date start_date 1 31 s_mth start_mth 1 12 s_time start_time hh mm e_date end_date 1 31 e_mth end_mth 1 12 e_time end_time hh mm offset 30 60 90 120 show time config sntp 87 1 Description This command is used to change SNTP configurations Format config sntp primary ipaddr secondary ipaddr poll interval int 30 99999 1 Parameters primary SNTP primary server IP address ipaddr Ent...

Page 829: ...ry SNTP primary IPv6 server address ipv6addr Enter the IPv6 address of the Primary SNTP IPv6 server secondary SNTP secondary IPv6 server address ipv6addr Enter the IPv6 address of the Secondary SNTP IPv6 server Restrictions Only Administrators Operators and Power Users can issue this command Example To configure SNTP primary IPv6 server 1000 1 secondary IPv6 server 1000 2 DGS 3000 26TC admin confi...

Page 830: ...stem Clock SNTP Disabled IPv4 Primary SNTP Server 10 1 1 1 IPv4 Secondary SNTP Server 10 1 1 2 IPv6 Primary SNTP Server IPv6 Secondary SNTP Server SNTP Poll Interval 30 sec DGS 3000 26TC admin enable sntp 87 4 Description This command is used to turn on SNTP support Format enable sntp Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enabl...

Page 831: ...ministrators Operators and Power Users can issue this command Example To disable SNTP DGS 3000 26TC admin disable sntp Command disable sntp Success DGS 3000 26TC admin config time 87 6 Description This command is used to configure time and date settings of the device Format config time date ddmthyyyy time hh mm ss Parameters date ddmthyyyy Enter the system clock date An example would look like thi...

Page 832: ...e 0 59 Parameters operator Optional Specify the operator of time zone Specify that time should be added or subtracted to or from the GMT hour Optional Specify the hour of time zone gmt_hour 0 13 Enter the hour value of the time zone here This value must be between 0 and 13 min Optional Specify the minute of time zone minute 0 59 Enter the minute value of the time zone here This value must be betwe...

Page 833: ...ust be in the hh mm format e_week Optional Specify the end week number of Daylight Saving Time end_week 1 4 last Enter the ending week number of Daylight Saving Time here This value must be between 1 and 4 e_day Optional Specify the end day number of Daylight Saving Time end_weekday sun sat Enter the ending day value of Daylight Saving Time here This value must either be sun mon tue wed thu fri or...

Page 834: ...ndicates number of minutes to add or to subtract during summertime The ranges of offset are 30 60 90 120 default value is 60 30 Specify that the offset range will 30 minutes 60 Specify that the offset range will 60 minutes 90 Specify that the offset range will 90 minutes 120 Specify that the offset range will 120 minutes Restrictions Only Administrators Operators and Power Users can issue this com...

Page 835: ...admin show time Command show time Current Time Source System Clock Boot Time 9 May 2014 06 20 55 Current Time 9 May 2014 07 46 10 Time Zone GMT 00 00 Daylight Saving Time Disabled Offset In Minutes 60 Repeating From Apr 1st Sun 00 00 To Oct last Sun 00 00 Annual From 29 Apr 00 00 To 12 Oct 00 00 DGS 3000 26TC admin ...

Page 836: ... routers that a trace route packet can pass The traceroute command will cross while seeking the network path between two devices The range for the TTL is 1 to 60 hops value 1 60 Enter the time to live value here This value must be between 1 and 60 port Optional The port number The value range is from 30000 to 64900 value 30000 64900 Enter the port number here This value must be between 30000 and 6...

Page 837: ...oute packet can pass The traceroute command will cross while seeking the network path between two devices The range for the TTL is 1 to 60 hops value 1 60 Enter the time to live value here This value must be between 1 and 60 port Optional The port number The value range is from 30000 to 64900 value 30000 64900 Enter the port number here This value must be between 30000 and 64900 timeout Optional S...

Page 838: ...e 3 1 10 ms 1345 142 11 2 10 ms 2011 14 100 3 10 ms 3000 1 Trace complete DGS 3000 26TC admin To trace the IPv6 routed path between the Switch and 1210 100 11 with port 40000 DGS 3000 26TC admin traceroute6 1210 100 11 port 40000 Command traceroute6 1210 100 11 port 40000 1 10 ms 3100 25 2 10 ms 4130 100 3 10 ms 1210 100 11 Trace complete DGS 3000 26TC admin ...

Page 839: ...e Specify that broadcast storm control will be enabled disable Specify that broadcast storm control will be disabled multicast Specify to enable or disable multicast storm control enable Specify that multicast storm control will be enabled disable Specify that multicast storm control will be disabled unicast Specify to enable or disable unknown packet storm control Supported for drop mode only ena...

Page 840: ...configure the parameters so that the traffic control status is enabled on ports 1 12 DGS 3000 26TC admin config traffic control 1 12 broadcast enable action shutdown threshold 1 countdown 5 time_interval 10 Command config traffic control 1 12 broadcast enable action shutdown threshold 1 countdown 5 time_interval 10 Success DGS 3000 26TC admin config traffic trap 89 2 Description This command is us...

Page 841: ...both Success DGS 3000 26TC admin show traffic control 89 3 Description This command is used to display the current traffic control settings Format show traffic control portlist Parameters portlist Optional Enter the range of ports to be shown If no parameter is specified the system will display the packet storm control configuration for all ports Restrictions None Example To display the traffic co...

Page 842: ...led Disabled shutdown 5 10 9 1 Enabled Disabled Disabled shutdown 5 10 10 1 Enabled Disabled Disabled shutdown 5 10 DGS 3000 26TC admin config traffic control log state 89 4 Description This command is used to configure the traffic control log state When the log state is enabled traffic control states are logged when a storm occurs and when a storm is cleared If the log state is disabled traffic c...

Page 843: ...the port will remain in the shutdown mode The only way to restore the port to the forwarding state is by entering the config ports portlist all state enable command manually Format config traffic control auto_recover_time min 0 min 1 65535 Parameters min 0 Enter that the auto recovery option will be disabled This is the default value min 1 65535 Enter the auto recovery from shutdown time value her...

Page 844: ...nfigured all Specify that all the ports will be used for this configuration forward_list Specify a range of port forwarding domain null Specify a range of port forwarding domain is null all Specify all ports to be configured portlist Enter a range of ports to be configured Restrictions Only Administrators Operators and Power Users can issue this command Example To configure traffic segmentation DG...

Page 845: ... no parameter is specified the system will display all current traffic segmentation tables Restrictions None Example To display traffic segmentation table DGS 3000 26TC admin show traffic_segmentation 1 10 Command show traffic_segmentation 1 10 Traffic Segmentation Table Port Forward Portlist 1 11 15 2 11 15 3 11 15 4 11 15 5 11 15 6 11 15 7 11 15 8 11 15 9 11 15 10 11 15 DGS 3000 26TC admin ...

Page 846: ...revent any IPv4 or IPv6 addresses from accessing the Switch provided the user knows the Username and Password When the access interface is not specified the trusted host will be created for all interfaces Format create trusted_host ipaddr ipv6addr network network_address ipv6_prefix ipv6networkaddr snmp telnet ssh http https ping Parameters ipaddr Enter the trusted host IP address ipv6addr Enter t...

Page 847: ...onfiguration here ipv6addr The IPv6 address of the trusted host ipv6addr Enter the IPv6 address used for this configuration here network The network address of the trusted network network_address Enter the network address used for this configuration here ipv6_prefix The IPv6 subnet prefix of the trusted network ipv6networkaddr Enter the IPv6 subnet prefix here all All trusted hosts will be deleted...

Page 848: ...hat trusted host delete Deletes interfaces for that trusted host snmp Optional Specify trusted host for SNMP telnet Optional Specify trusted host for TELENT ssh Optional Specify trusted host for SSH http Optional Specify trusted host for HTTP https Optional Specify trusted host for HTTPs ping Optional Specify trusted host for PING all Optional Specify trusted host for all applications Restrictions...

Page 849: ...Reference Guide 845 Restrictions None Example To display trusted host DGS 3000 26TC admin show trusted_host Command show trusted_host Management Stations IP Address Access Interface 10 48 74 121 SNMP Telnet SSH HTTP HTTPs Ping Total Entries 1 DGS 3000 26TC admin ...

Page 850: ...route Format create iproute default network_address ipaddr metric 1 65535 primary backup Parameters default Specify to create an IP default route 0 0 0 0 0 network_address Specify the IP address and net mask of the destination route The address and the mask can be set using the traditional format for example 10 1 2 3 255 0 0 0 or in CIDR format for example 10 1 2 3 16 ipaddr Enter the IP address f...

Page 851: ...ault network_address ipaddr Parameters default Deletes an IP default route 0 0 0 0 0 network_address Enter the destination IP address and net mask route The address and the mask can be set by the traditional format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 16 ipaddr Enter the next hop IP address route that needs to be deleted Restrictions Only Administrators Operators and Power Use...

Page 852: ...ions None Example To display the contents of the IP routing table DGS 3000 26TC admin show iproute Command show iproute Routing Table IP Address Netmask Gateway Interface Cost Protocol 10 1 1 0 24 0 0 0 0 System 1 Local 192 168 1 0 24 0 0 0 0 ip1 1 Local Total Entries 2 DGS 3000 26TC admin show iproute static Command show iproute static Routing Table IP Address Netmask Gateway Cost Protocol Backup...

Page 853: ... enable the VLAN trunk function When the VLAN trunk function is enabled the VLAN trunk ports shall be able to forward all tagged frames with any VID Format enable vlan_trunk Parameters None Restrictions Only Administrators can issue this command Example To enable the VLAN Trunk DGS 3000 26TC admin enable vlan_trunk Command enable vlan_trunk Success DGS 3000 26TC admin disable vlan_trunk 93 2 Descr...

Page 854: ...e destroyed and all the automatically added port membership will be removed A VLAN trunk port and a non VLAN trunk port cannot be grouped as an aggregated link To change the VLAN trunk setting for an aggregated link the user must apply the command to the master port However this setting will disappear as the aggregated link is destroyed and the VLAN trunk setting of the individual port will follow...

Page 855: ...ports 6 7 state enable Command config vlan_trunk ports 6 7 state enable Warning Port 6 is a Link Aggregation member port VLAN trunk is not enabled on port 6 Success DGS 3000 26TC admin config vlan_trunk ports 7 state disable Command config vlan_trunk ports 7 state disable Success DGS 3000 26TC admin config vlan_trunk ports 6 7 state disable Command config vlan_trunk ports 6 7 state disable Warning...

Page 856: ...nd config vlan_trunk ports 6 7 state disable Success DGS 3000 26TC admin show vlan_trunk 93 4 Description This command is used to show the VLAN trunk configuration Format show vlan_trunk Parameters None Restrictions None Example To show the VLAN Trunk information DGS 3000 26TC admin show vlan_trunk Command show vlan_trunk VLAN Trunk Global Setting VLAN Trunk Status Disabled VLAN Trunk Member Ports...

Page 857: ... Trunk State Enabled VLAN Trunk Member Ports 1 5 VID 1 VLAN Name default VLAN Type Static Advertisement Enabled Member Ports 1 26 Static Ports 1 26 Current Tagged Ports Current Untagged Ports 1 26 Static Tagged Ports Static Untagged Ports 1 26 Forbidden Ports Total Static VLAN Entries 1 Total GVRP VLAN Entries 0 DGS 3000 26TC admin ...

Page 858: ...evice enable voice_vlan 94 1 Description This command is used to enable the global voice VLAN function on a switch To enable the voice VLAN the voice VLAN must be also assigned At the same time the VLAN must be an existing static 802 1Q VLAN To change the voice VLAN the user must disable the voice VLAN function and re issue this command By default the global voice VLAN state is disabled Format ena...

Page 859: ...unassigned Format disable voice_vlan Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To disable the voice VLAN DGS 3000 26TC admin disable voice_vlan Command disable voice_vlan Success DGS 3000 26TC admin config voice_vlan priority 94 3 Description This command is used to configure the voice VLAN priority The voice VLAN priority will be the...

Page 860: ...ed to identify the voice traffic There are a number of pre defined OUIs The user can further define the user defined OUIs if needed The user defined OUI cannot be the same as the pre defined OUI The following are the pre defined voice traffic s OUI OUI Vendor Mnemonic Name 00 E0 BB 3COM 3com 00 03 6B Cisco cisco 00 E0 75 Veritel veritel 00 D0 1E Pingtel pingtel 00 01 E3 Siemens siemens 00 60 B9 NE...

Page 861: ...led disable Specify that the voice VLAN function for this switch will be disabled mode The voice VLAN mode The default mode is auto auto Specify that the voice VLAN mode will be set to auto tag When the port is working in auto tagged mode and learns about a voice device through the device s OUI it will join the voice VLAN as a tagged member automatically When the voice device sends voice VLAN tagg...

Page 862: ...e 94 6 Description This command is used to set the aging time of the voice VLAN The aging time is used to remove a port from voice VLAN if the port is an automatic VLAN member When the last voice device stops sending traffic and the MAC address of this voice device is aged out the voice VLAN aging timer will be started The port will be removed from the voice VLAN after expiration of the voice VLAN...

Page 863: ...g is enabled a log will be triggered Format config voice_vlan log state enable disable Parameters enable Specify that the sending of a voice VLAN log will be enabled disable Specify that the sending of a voice VLAN log will be disabled Restrictions Only Administrators Operators and Power Users can issue this command Example To enable the log state for voice VLAN DGS 3000 26TC admin config voice_vl...

Page 864: ...v2 Priority 6 Aging Time 60 minutes Log State Enabled Member Ports Dynamic Member Ports DGS 3000 26TC admin To display the voice VLAN global information when voice VLAN is disabled DGS 3000 26TC admin show voice_vlan Command show voice_vlan Voice VLAN State Disabled Voice VLAN Unassigned Priority 6 Aging Time 60 minutes Log State Enabled DGS 3000 26TC admin show voice_vlan oui 94 9 Description Thi...

Page 865: ... 0A 0B 00 00 00 FF FF FF 00 00 00 00 0F E2 00 00 00 FF FF FF 00 00 00 Huawei 3COM 00 60 B9 00 00 00 FF FF FF 00 00 00 NEC Philips 00 D0 1E 00 00 00 FF FF FF 00 00 00 Pingtel 00 E0 75 00 00 00 FF FF FF 00 00 00 Veritel 00 E0 BB 00 00 00 FF FF FF 00 00 00 3COM Total Entries 9 DGS 3000 26TC admin show voice_vlan ports 94 10 Description This command is used to display the port voice VLAN information F...

Page 866: ...ow voice_vlan voice_device 94 11 Description This command is used to show voice devices that are connected to the ports The start time is the time when the device is detected on this port and the activate time is the latest time the device sent traffic Format show voice_vlan voice_device ports portlist Parameters ports Optional Specify the list of ports to be configured here portlist Enter a list ...

Page 867: ...0 6 15 00 1 00 E0 BB 00 00 03 2008 10 6 14 20 2008 10 6 15 30 2 00 03 6B 00 00 01 2008 10 6 17 15 2008 10 6 18 00 4 00 E0 75 00 00 02 2008 10 6 18 15 2008 10 6 20 00 5 00 01 E3 01 02 03 2008 10 6 18 30 2008 10 6 20 30 Total Entries 6 DGS 3000 26TC admin show voice_vlan lldp_med voice_device 94 12 Description This command is used to show the voice devices being discovered by the LLDP MED Format sho...

Page 868: ...ocal Port 1 Chassis ID Subtype MAC Address Chassis ID 00 E0 BB 00 00 11 Port ID Subtype Network Address Port ID 172 18 1 1 Create Time 10 6 2008 09 00 Remain Time 120 Seconds Index 2 Local Port 3 Chassis ID Subtype MAC Address Chassis ID 00 E0 BB 00 00 12 Port ID Subtype Network Address Port ID 172 18 1 2 Create Time 10 6 2008 09 00 Remain Time 120 Seconds Total Entries 2 DGS 3000 26TC admin ...

Page 869: ...ername 15 vlan vlan_name 32 vlanid vlanid 1 4094 delete wac user username 15 all_users config wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan show wac show wac ports portlist show wac user show wac auth_state ports portlist clear wac auth_state ports portlist all authenticated authenticating blocked macaddr macaddr config wac authentication_page element default page_title de...

Page 870: ...ble the WAC function DGS 3000 26TC admin disable wac Command disable wac Success DGS 3000 26TC admin config wac authorization attributes 95 3 Description This command is used to configure the acceptance of an authorized configuration When the authorization is enabled for WAC s RADIUS the authorized data assigned by the RADUIS server will be accepted if the global authorization network is enabled W...

Page 871: ...00 26TC admin config wac authorization attributes local disable Command config wac authorization attributes local disable Success DGS 3000 26TC admin config wac ports 95 4 Description This command is used to configure the WAC port parameters Format config wac ports portlist all state enable disable aging_time infinite min 1 1440 idle_time infinite min 1 1440 block_time sec 0 300 1 Parameters portl...

Page 872: ...DGS 3000 26TC admin To configure the WAC port aging time DGS 3000 26TC admin config wac ports 1 5 aging_time 200 Command config wac ports 1 5 aging_time 200 Success DGS 3000 26TC admin config wac method 95 5 Description This command is used to allow specification of the RADIUS protocol used by WAC to complete RADIUS authentication WAC shares other RADIUS configuration with 802 1X When using this c...

Page 873: ...nother URL after successful authentication Format config wac default_redirpath string 128 Parameters string 128 Enter the URL that the client will be redirected to after successful authentication By default the redirected path is cleared Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the WAC default redirect path DGS 3000 26TC admin config wa...

Page 874: ...ual IP of WAC is used to accept authentication request from unauthenticated host Only requests sent to this IP will get response correctly This IP does not respond to ARP request or ICMP packet NOTE The WAC virtual IP address should be configured before enabling WAC because WAC will not work correctly if the virtual IP address is not set A warning message Warning WAC virtual IPv4 or IPv6 address i...

Page 875: ...ault port number for HTTP is 80 and the default port number for HTTPS is 443 If no protocol is specified the protocol is HTTP Format config wac switch_http_port tcp_port_number 1 65535 http https Parameters tcp_port_number 1 65535 Enter a TCP port which the WAC switch listens to and uses to finish the authenticating process http Optional Specify that WAC runs HTTP protocol on this TCP port https O...

Page 876: ... can be up to 32 characters long vlanid Optional Specify the authentication VLAN ID number vlanid 1 4094 Enter the authentication VLAN ID number The VLAN ID must be between 1 and 4094 Restrictions Only Administrators Operators and Power Users can issue this command Example To create a WAC account DGS 3000 26TC admin create wac user abc vlanid 123 Command create wac user abc vlanid 123 Enter a case...

Page 877: ...e VLAN associated with a user Format config wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan Parameters username 15 Enter the name of user account which will change its VID vlan Specify the authentication VLAN name vlan_name 32 Enter the authentication VLAN name The VLAN name can be up to 32 characters long vlanid Specify the authentication VLAN ID vlanid 1 4094 Enter the aut...

Page 878: ... Success DGS 3000 26TC admin show wac 95 13 Description This command is used to display the WAC global setting Format show wac Parameters None Restrictions None Example To show WAC DGS 3000 26TC admin show wac Command show wac Web based Access Control State Enabled Method RADIUS Redirect Path http www dlink com Virtual IP 0 0 0 0 Virtual IPv6 2000 20 Switch HTTP Port 80 HTTP RADIUS Authorization E...

Page 879: ...ber ports to display the status Restrictions None Example To display WAC ports 1 to 3 DGS 3000 26TC admin show wac ports 1 3 Command show wac ports 1 3 Port State Aging Time Idle Time Block Time min min sec 1 Disabled 1440 Infinite 60 2 Disabled 1440 Infinite 60 3 Disabled 1440 Infinite 60 DGS 3000 26TC admin show wac user 95 15 Description This command is used to display WAC user accounts Format ...

Page 880: ...ame Password VID 123 1000 Total Entries 1 DGS 3000 26TC admin show wac auth_state ports 95 16 Description This command is used to display the authentication state for ports Format show wac auth_state ports portlist Parameters portlist Optional Enter the list of ports whose WAC authentication state will be displayed Restrictions None Example To display the WAC authentication status of ports ...

Page 881: ...enticated state All the timers associated with the port will be reset Format clear wac auth_state ports portlist all authenticated authenticating blocked macaddr macaddr Parameters ports Specify the list of ports whose WAC state will be cleared portlist Enter a range of ports all Specify to clear all ports authenticated Optional Specify to clear all authenticated users for a port authenticating Op...

Page 882: ...ge desc 64 Enter the login window title used here This value can be up to 64 characters long user_name_title Specify to configure the user name title of the authentication page desc 32 Enter the user name title used here This value can be up to 32 characters long password_title Specify to configure the password title of the authentication page desc 32 Enter the password title used here This value ...

Page 883: ...w the elements of the customized authenticate pages Format show wac authenticate_page Parameters None Restrictions None Example The following example displays the authentication page elements DGS 3000 26TC admin show wac authenticate_page Command show wac authenticate_page Page Title D Link Login Window Title Authentication Login User Name Title User Name Password Title Password Logout Window Titl...

Page 884: ...le Specify to enable the WAC trap state disable Specify to disable the WAC trap state Restrictions Only Administrators Operators and Power Users can issue this command Example This example show how to enable the WAC trap state DGS 3000 26TC admin config wac trap state enable Command config wac trap state enable Success DGS 3000 26TC admin ...

Page 885: ...n there is a direct connection to the console port of the device It is necessary for the user needs to attach a terminal or PC with terminal emulation to the console port of the Switch 2 Power on the Switch After the Starting runtime image message the Switch will allow 2 seconds for the user to press the hotkey Shift 6 to enter the Password Recovery Mode Once the Switch enters the Password Recover...

Page 886: ... The reset account command deletes all the previously created accounts reset password username The reset password command resets the password of the specified user If a username is not specified the passwords of all users will be reset show account The show account command displays all previously created accounts ...

Page 887: ...current temperature temperature Warning Temperature recovers to normal Temperature sensor sensorID recovers to normal state current temperature temperature Informational Up Download Firmware upgraded successfully Firmware upgraded by session successfully Username username IP ipaddr MAC macaddr Informational Firmware upgrade was unsuccessful Firmware upgrade by session was unsuccessful Username use...

Page 888: ...sole session timed out Username username Informational Web Successful login through Web Successful login through Web Username username IP ipaddr Informational Login failed through Web Login failed through Web Username username IP ipaddr Warning Logout through Web Logout through Web Username username IP ipaddr Informational Web session timed out Web session timed out Username username IP ipaddr Inf...

Page 889: ...panning Tree instance created Instance InstanceID Informational Spannnig Tree instance deleted Spanning Tree instance deleted Instance InstanceID Informational Spanning Tree Version changed Spanning Tree version changed new version new_version Informational Spanning Tree MST configuration ID name and revision level changed Spanning Tree MST configuration ID name and revision level changed name nam...

Page 890: ... Login failed through Web SSL authenticated by AAA local method Login failed through Web SSL from userIP authenticated by AAA local method Username username Warning Successful login through Telnet authenticated by AAA local method Successful login through Telnet from userIP authenticated by AAA local method Username username Informational Login failed through Telnet authenticated by AAA local meth...

Page 891: ...ogin failed through Web SSL due to AAA server timeout or improper configuration Login failed through Web SSL from userIP due to AAA server timeout or improper configuration Username username Warning Successful login through Telnet authenticated by AAA server Successful login through Telnet from userIP authenticated by AAA server serverIP Username username Informational Login failed through Telnet ...

Page 892: ...or SSH from userIP authenticated by AAA local_enable method Username username Warning Successful Enable Admin through Console authenticated by AAA none method Successful Enable Admin through Console authenticated by AAA none method Username username Informational Successful Enable Admin through Web authenticated by AAA none method Successful Enable Admin through Web from userIP authenticated by AA...

Page 893: ...ble Admin failed through Telnet due to AAA server timeout or improper configuration Enable Admin failed through Telnet from userIP due to AAA server timeout or improper configuration Username username Warning Successful Enable Admin through SSH authenticated by AAA server Successful Enable Admin through SSH from userIP authenticated by AAA server serverIP Username username Informational Enable Adm...

Page 894: ...rt loop detection restarted after interval time Port portNum LBD port recovered Loop detection restarted Informational Port with VID loop occurred Port portNum VID vlanID LBD loop occurred Packet discard begun Critical Port with VID Loop detection restarted after interval time Port portNum VID vlanID LBD recovered Loop detection restarted Informational 802 1X VID assigned from RADIUS server after ...

Page 895: ...address Detected untrusted DHCP server IP ipaddr Port portNum Informational Command Logging Command Logging username execute command string Informational MBAC A host passes the authentication MAC based Access Control host login successful MAC macaddr port portNum VID vid Informational A host fails to pass the authentication MAC based Access Control unauthenticated host MAC macaddr Port portNum VID...

Page 896: ...ssful WAC authenticated user Username string IP ipaddr ipv6address MAC macaddr Port portNum Informational When a client host fail to authenticate WAC unauthenticated user User Name string IP ipaddr ipv6address MAC macaddr Port portNum Warning This log will be triggered when the number of authorized users reaches the maximum user limit on the whole device WAC enters stop learning state Warning This...

Page 897: ...caddr Warning Configuration downloaded successfully Configuration downloaded by session successfully Username username IP ipaddr MAC macaddr Informational Configuration download unsuccessfully Configuration download by session unsuccessfully Username username IP ipaddr MAC macaddr Warning Configuration uploaded successfully Configuration uploaded by session successfully Username username IP ipaddr...

Page 898: ...ional The IPv6 address obtained from a DHCPv6 server renews success The IPv6 address ipv6address on interface intf name renews success Informational The IPv6 address obtained from a DHCPv6 server starts rebinding The IPv6 address ipv6address on interface intf name starts rebinding Informational The IPv6 address obtained from a DHCPv6 server rebinds success The IPv6 address ipv6address on interface...

Page 899: ...esDrops 4 lldpStatsRemTablesAgeouts 1 0 8802 1 1 2 0 0 1 coldStart A coldStart trap signifies that the SNMPv2 entity acting in an agent role is reinitializing itself and that its configuration may have been altered 1 3 6 1 6 3 1 1 5 1 warmStart A warmStart trap signifies that the SNMPv2 entity acting in an agent role is reinitializing itself such that its configuration is unaltered 1 3 6 1 6 3 1 1...

Page 900: ...n table entry dot1agCfmMdTable dot1agCfmMaIndex Also an index with the MD table index of the MEP s Maintenance Association network table entry dot1agCfmMaNetTable and with the MD table index and component ID of the MEP s MA component table entry dot1agCfmMaCompTable dot1agCfmMepIdentifier MEP Identifier and final index into the MEP table dot1agCfmMepTable Binding 1 dot1agCfmMepHighestPrDefect 1 3 ...

Page 901: ...m a normal state to a stop_learning state a trap will be sent out Binding 1 swIpMacBindingPortIndex 1 3 6 1 4 1 171 12 23 5 0 2 swIpMacBindingRecover LearningTrap When the IP MAC Binding trap is enabled if the specific port changes from a stop_learning state to a normal state a trap will be sent out Binding 1 swIpMacBindingPortIndex 1 3 6 1 4 1 171 12 23 5 0 3 swMacBasedAccessCon trolLoggedSuccess...

Page 902: ...duProtectionRecoveryMethod 1 3 6 1 4 1 171 12 76 4 0 2 swL2PortSecurityViolati onTrap When the port_security trap is enabled if there s a new MAC that violates the pre defined port security configuration a trap will be sent out Binding 1 swL2PortSecurityPortIndex 2 swL2PortSecurityViolationMac 1 3 6 1 4 1 171 11 133 1 1 2 100 1 2 0 2 1 3 6 1 4 1 171 11 133 2 1 2 100 1 2 0 2 swL2macNotification Thi...

Page 903: ...tion to indicated host when it Member generate authentation failure notification Binding 1 swSingleIPMSID 2 swSingleIPMSMacAddr 1 3 6 1 4 1 171 12 8 6 0 15 swSingleIPMSnewRoot Commander switch will send swSingleIPMSnewRoot notification to indicated host when it Member generate new root notification Binding 1 swSingleIPMSID 2 swSingleIPMSMacAddr 1 3 6 1 4 1 171 12 8 6 0 16 swSingleIPMSTopology Chan...

Page 904: ...nt connect working lowVoltage working overCurrent working connect working disconnect fail connect fail disconnect connect lowVoltage connect overCurrent connect working connect disconnect disconnect lowVoltage disconnect overCurrent disconnect working disconnect connect Binding 1 swPowerUnitIndex 2 swPowerID 3 swPowerStatus 1 3 6 1 4 1 171 12 11 2 2 2 0 1 swPowerFailure Power Failure notification ...

Page 905: ...7 10 0 0 2 swFilterICMPv6RaAllNod eDetectedTrap Send trap when an illegal ICMPv6 All nodes RA is detected Binding 1 swFilterDetectedIPv6 2 swFilterDetectedport 1 3 6 1 4 1 171 12 37 10 0 0 3 swDot1xLoggedSuccess The trap is sent when a dot1x Supplicant has successfully logged in Binding 1 swDot1xAuthPortNumber 2 swDot1xAuthVID 3 swDot1xAuthMACAddress 4 swDot1XAuthUserName 1 3 6 1 4 1 171 12 30 11 ...

Page 906: ...02 Trap Name Trap Description OID 1 dot1agCfmMdIndex 2 dot1agCfmMaIndex 3 dot1agCfmMepIdentifier swCFMExtLockCleared A notification is generated when local MEP exits lock status Binding 1 dot1agCfmMdIndex 2 dot1agCfmMaIndex 3 dot1agCfmMepIdentifier 1 3 6 1 4 1 171 12 86 10 0 0 4 ...

Page 907: ...example ingress bandwidth 1000Kbps and the 802 1X authentication is successful the device will assign the bandwidth according to the RADIUS server to the port However if the user does not configure the bandwidth attribute and authenticates successfully the device will not assign any bandwidth to the port If the bandwidth attribute is configured on the RADIUS server with a value of 0 or more than t...

Page 908: ...D This attribute indicates group ID for a particular tunneled session A string VID Required If the user has configured the VLAN attribute of the RADIUS server for example VID 3 and the 802 1X or MAC based Access Control authentication is successful the port will be added to VLAN 3 However if the user does not configure the VLAN attribute and authenticates successfully the port will be kept in its ...

Page 909: ...xample ACL profile create access_profile profile_id 1 profile_name profile1 ethernet vlan 0xFFF ACL rule config access_profile profile_id 1 add access_id auto_assign ethernet vlan_id 1 port all deny the device will assign the ACL profiles and rules according to the RADIUS server For more information about the ACL module please refer to the ACL chapter ...

Reviews:

No comments

Related manuals for DGS-3000 series

Paradyne 8820 Installation Manual preview
8820
Brand: Paradyne Pages: 86
D-Link Express Ethernetwork DI-704P Datasheet preview
Express Ethernetwork DI-704P
Brand: D-Link Pages: 2
Q-See QC814 Specifications preview
QC814
Brand: Q-See Pages: 2
Idis DR-8400 Installation Manual preview
DR-8400
Brand: Idis Pages: 31
Garland INT40G2SR44 User Manual preview
INT40G2SR44
Brand: Garland Pages: 43
WABCO CAN Router Manual preview
CAN Router
Brand: WABCO Pages: 29
Riverbed SteelCentral AppResponse 2180 Upgrade And Maintenance Manual preview
SteelCentral AppResponse 2180
Brand: Riverbed Pages: 82
Hunter Pro-C Series Programming Instructions preview
Pro-C Series
Brand: Hunter Pages: 2
Rosco ND100 User Manual preview
ND100
Brand: Rosco Pages: 20
M-system M5XSBS Instruction Manual preview
M5XSBS
Brand: M-system Pages: 4
Kramer VS-162AVM User Manual preview
VS-162AVM
Brand: Kramer Pages: 56
Kasda KE318EU User Manual preview
KE318EU
Brand: Kasda Pages: 39
ADTRAN 1700601G2 Quick Start Manual preview
1700601G2
Brand: ADTRAN Pages: 4
PairGain HiGain Line Unit HLU-388 Quick Installation Manual preview
HiGain Line Unit HLU-388
Brand: PairGain Pages: 7
NetComm RTA100 User Manual preview
RTA100
Brand: NetComm Pages: 75
Proscend 6200-2W User Manual preview
6200-2W
Brand: Proscend Pages: 93
Carrier 40VMW005 Installation And Maintenance Instructions Manual preview
40VMW005
Brand: Carrier Pages: 18
Qvis 72-8P Series User Manual preview
72-8P Series
Brand: Qvis Pages: 233

Brands by name

Popular brands

Load more brands