background image

DXS-3326GSR Stackable Gigabit Layer 3 Switch

 

24 

802.1X C

OMMANDS

 

The DXS-3326GSR implements the server-side of the IEEE 802.1x Port-based and MAC-based Network Access Control. This 
mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing 
criteria for each port on the Switch that a user or network device must meet before allowing that port to forward or receive 
frames. 

Command Parameters 

enable 802.1x 

 

disable 802.1x 

 

create 802.1x user 

<username 15> 

show 802.1x user 

 

delete 802.1x user 

 

show 802.1x 
auth_state 

ports [<portlist> | all] 

show 802.1x 
auth_configuration 

ports [<portlist> | all] 

config 802.1x 
auth_mode 

[port_based | mac_based] 

config 802.1x 
capability 

[ports <portlist> | all] [authenticator | none] 

config 802.1x 
auth_parameter ports 

[<portlist> | all] [default | {direction [both | in] | port_control 
[force_unauth | auto | force_auth] | quiet_period <sec 0-65535> | 
tx_period <sec 1-65535> | supp_timeout <sec 1-65535> | 
server_timeout <sec 1-65535> | max_req <value 1-10> | 
reauth_period <sec 1-65535> | enable_reauth [enable | disable]}] 

config 802.1x 
auth_protocol 

 [local | radius eap] 

config 802.1x init 

{port_based ports [<portlist> | all]} | mac_based [ports] [<portlist> | 
all] {mac_address <macaddr>}] 

config 802.1x reauth 

{port_based ports [<portlist> | all]} [<portlist> | all] {mac_address 
<macaddr>}] 

config radius add 

<server_index 1-3> <server_ip> key <passwd 32> [default 
{auth_port <udp_port_number 1-65535> | acct_port 
<udp_port_number 1-65535>}] 

config radius delete 

<server_index 1-3> 

<server_index 1-3> {ipaddress <server_ip> | key <passwd 32> 
[auth_port <udp_port_number 1-65535> acct_port 
<udp_port_number 1-65535>]} 

 

show acct_client 

 

config radius 

show radius 

 

204

Summary of Contents for DXS-3326GSR - xStack Switch - Stackable

Page 1: ...DXS 3326GSR High density Layer 3 Gigabit Switch Command Line Interface Reference Manual First Edition July 2004 651XS3326015 Printed In Taiwan RECYCLABLE...

Page 2: ...sen 14 ffnen Sie niemals das Ger t Das Ger t darf aus Gr nden der elektrischen Sicherheit nur von authorisiertem Servicepersonal ge ffnet werden 15 Wenn folgende Situationen auftreten ist das Ger t v...

Page 3: ...ged securely in the original or other suitable shipping package to ensure that it will not be damaged in transit and the RMA number must be prominently marked on the outside of the package The package...

Page 4: ...templated in its documentation D Link further warrants that during the Warranty Period the magnetic media on which D Link delivers the Software will be free of physical defects D Link s sole obligatio...

Page 5: ...ISK AS TO THE QUALITY SELECTION AND PERFORMANCE OF THE PRODUCT IS WITH THE PURCHASER OF THE PRODUCT Limitation of Liability TO THE MAXIMUM EXTENT PERMITTED BY LAW D LINK IS NOT LIABLE UNDER ANY CONTRA...

Page 6: ...radiate radio frequency energy and if not installed and used in accordance with this user s guide may cause harmful interference to radio communications Operation of this equipment in a residential ar...

Page 7: ...MSTP Commands 78 Forwarding Database Commands 92 Broadcast Storm Control Commands 102 QoS Commands 104 Port Mirroring Commands 117 VLAN Commands 122 Link Aggregation Commands 132 IP Multinetting Comm...

Page 8: ...te Redistribution Commands 277 BOOTP Relay Commands 284 DNS Relay Commands 288 RIP Commands 293 DVMRP Commands 297 PIM Commands 303 IP Multicasting Commands 307 MD5 Configuration Commands 310 OSPF Con...

Page 9: ...rial Port The Switch s serial port s default settings are as follows 115200 baud no parity 8 data bits 1 stop bit A computer running a terminal emulation program capable of emulating a VT 100 terminal...

Page 10: ...managed with the Web based manager The switch IP address can be automatically set using BOOTP or DHCP protocols in which case the actual address assigned to the Switch must be known The IP address ma...

Page 11: ...s assigned an IP address of 10 53 13 144 8 with a subnet mask of 255 0 0 0 The system message Success indicates that the command was executed successfully The Switch can now be configured and managed...

Page 12: ...s NV RAM and reloaded when the Switch is rebooted If the Switch is rebooted without using the save command the last configuration saved to NV RAM will be loaded Connecting to the Switch The console in...

Page 13: ...ommand prompt DXS 3326GSR 4 There are a number of helpful features included in the CLI Entering the command will display a list of all of the top level commands Figure 2 2 The Command When you enter a...

Page 14: ...the next possible sub commands in sequential order by repeatedly pressing the Tab key To re enter the previous command at the command prompt press the up arrow cursor key The previous command will app...

Page 15: ...s unrecognized by the CLI the top level commands will be displayed under the Available commands prompt Figure 2 5 The Next Available Commands Prompt The top level commands consist of commands such as...

Page 16: ...example all of the possible next parameters for the show command are displayed At the next command prompt the up arrow was used to re enter the show command followed by the account parameter The CLI t...

Page 17: ...ipif_name space a VLAN name in the vlan_name 32 space and the network address in the network_address space Do not type the angle brackets Example Command create ipif Engineering vlan Design ipaddress...

Page 18: ...cursor to the right Up Arrow Repeat the previously entered command Each time the up arrow is pressed the command previous to that displayed appears This way it is possible to review the command histor...

Page 19: ...minutes 10_minutes 15_minutes enable clipaging disable clipaging enable telnet tcp_port_number 1 65535 disable telnet enable web tcp_port_number 1 65535 disable web save log all reboot reset config sy...

Page 20: ...onfigure user accounts Syntax config account username Description The config account command configures a user account that has been created using the create account command Parameters username Restri...

Page 21: ...R 4 show account Command show account Current Accounts Username Access Level dlink Admin DXS 3326GSR 4 delete account Purpose Used to delete an existing user account Syntax delete account username Des...

Page 22: ...isplay configurations entered and saved to NVRAM Restrictions None Example usage To view configurations entered on the Switch that were saved to NVRAM Command show config config_in_NVRAM DXS 3326GSR C...

Page 23: ...4 show session Command show session ID Live Time From Level Name 8 03 36 27 Serial Port 4 Anonymous Total Entries 1 show switch Purpose Used to display information about the Switch Syntax show switch...

Page 24: ...LNET Enabled TCP 23 WEB Enabled TCP 80 RMON Enabled 802 1x Disabled Jumbo Frame Off Clipaging Enabled MAC Notification Disabled Port Mirror Disabled SNTP Disabled Bootp Relay Disabled DNSR Status Disa...

Page 25: ...the Switch s elements Parameters None Restrictions None Example usage To show the current hardware status of the Switch DXS 3326GSR 4 show device_status Command show device_status ID Internal Power Ex...

Page 26: ...15200 The serial bit rate that will be used to communicate with the management host This field is fixed at 115200 never No time limit on the length of time the console can be open with no user input 2...

Page 27: ...arameters None Restrictions Only administrator level users can issue this command Example usage To enable pausing of the screen display when the show command output reaches the end of the page DXS 332...

Page 28: ...port number the Switch will use to listen for Telnet requests Parameters tcp_port_number 1 65535 The TCP port number TCP ports are numbered between 1 and 65535 The well known TCP port for the Telnet p...

Page 29: ...Parameters tcp_port_number 1 65535 The TCP port number TCP ports are numbered between 1 and 65535 The well known port for the Web based management software is 80 Restrictions Only administrator level...

Page 30: ...h is restarted Parameters Entering just the save command will save only the Switch configuration to NV Ram log Entering the log parameter will save only the log file to NV RAM all Entering the all com...

Page 31: ...gs are restored on the Switch including the IP address user accounts and the Switch history log The Switch will not save or reboot system If the keyword system is specified all of the factory default...

Page 32: ...me and Password Parameters None Restrictions None Example usage To initiate the login procedure DXS 3326GSR 4 login Command login UserName logout Purpose Used to log out a user from the Switch s conso...

Page 33: ...f ports to be configured The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then the highest switch number and the highest...

Page 34: ...port description of the selected port s Restrictions Only administrator level users can issue this command Example usage To configure the speed of port 3 to be 10 Mbps full duplex learning and state e...

Page 35: ...bled Link Down Enabled 1 5 Enabled Auto Enabled Link Down Enabled 1 6 Enabled Auto Enabled Link Down Enabled 1 7 Enabled Auto Enabled Link Down Enabled 1 8 Enabled Auto Enabled Link Down Enabled 1 9 E...

Page 36: ...3 Switch DXS 3326GSR 4 show ports 1 1 description Command show ports Port Port Settings Connection Address State Speed Duplex FlowCtrl Speed Duplex FlowCtrl Learning 1 1 Enabled Auto Enabled Link Dow...

Page 37: ...t are effected Parameters portlist Specifies a range of ports to be configured The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by...

Page 38: ...ports The information displayed includes port security admin state maximum number of learning address and lock mode Parameters ports portlist Specifies a port or range of ports to be viewed The port l...

Page 39: ...om the port security entries learned by the Switch and entered into the forwarding database Parameters vlan_name 32 Enter the corresponding VLAN of the entry the user wishes to delete port port Enter...

Page 40: ...Layer 3 Switch DXS 3326GSR 4 delete port_security_entry_vlan_name default port 1 1 mac_address 00 0C 6E 73 2B C9 Command delete port_security_entry_vlan_name default port 1 1 mac_address 00 0C 6E 73 2...

Page 41: ...rname Username is used for authentication NoAuthNoPriv v3 MD5 or SHA Authentication is based on the HMAC MD5 or HMAC SHA algorithms AuthNoPriv v3 MD5 DES or SHA DES Authentication is based on the HMAC...

Page 42: ...able snmp traps disable snmp authenticate_traps config snmp system contact sw_contact config snmp system location sw_location config snmp system name sw_name enable rmon disable rmon Each command is l...

Page 43: ...elow This method is not recommended auth The user may also choose the type of authentication algorithms used to authenticate the snmp user The choices are md5 Specifies that the HMAC MD5 96 authentica...

Page 44: ...4 create snmp user dlink default encrypted by_password auth md5 auth_password priv none Command create snmp user dlink default encrypted by_password auth md5 auth_password priv none Success DXS 3326GS...

Page 45: ...up Name VerAuthPriv initial initial V3 None None Total Entries 1 DXS 3326GSR 4 create snmp view Purpose Used to assign views to community strings to limit which MIB objects and SNMP manager can access...

Page 46: ...witch Syntax delete snmp view view_name 32 all oid Description The delete snmp view command is used to remove an SNMP view previously created on the Switch Parameters view_name 32 An alphanumeric stri...

Page 47: ...restricted 1 3 6 1 6 3 10 2 1 Included restricted 1 3 6 1 6 3 11 2 1 Included restricted 1 3 6 1 6 3 15 1 1 Included CommunityView 1 Included CommunityView 1 3 6 1 6 3 Excluded CommunityView 1 3 6 1 6...

Page 48: ...ontents of the MIBs on the Switch read_write Specifies that SNMP community members using the community string created with this command can read from and write to the contents of the MIBs on the Switc...

Page 49: ...rameters community_string 32 An alphanumeric string of up to 32 characters that is used to identify members of an SNMP community This string is used like a password to give remote SNMP managers access...

Page 50: ...DXS 3326GSR 4 config snmp engineID 0035636666 Command config snmp engineID 0035636666 Success DXS 3326GSR 4 show snmp engineID Purpose Used to display the identification of the SNMP engine on the Swi...

Page 51: ...ies that the SNMP version 3 will be used SNMP v3 provides secure access to devices through a combination of authentication and encrypting packets over the network SNMP v3 adds Message integrity Ensure...

Page 52: ...iew v1 notify_view v1 Success DXS 3326GSR 4 delete snmp group Purpose Used to remove an SNMP group from the Switch Syntax delete snmp group groupname 32 Description The delete snmp group command is us...

Page 53: ...ew WriteView Name WriteView Notify View Name NotifyView Security Model SNMPv3 Security Level NoAuthNoPriv Group Name Group4 ReadView Name ReadView WriteView Name WriteView Notify View Name NotifyView...

Page 54: ...View Security Model SNMPv2 Security Level NoAuthNoPriv Total Entries 10 DXS 3326GSR 4 create snmp host Purpose Used to create a recipient of SNMP traps generated by the Switch s SNMP agent Syntax crea...

Page 55: ...pecifies that authorization will be required but there will be no encryption of packets sent between the Switch and a remote SNMP manager auth_priv Specifies that authorization will be required and th...

Page 56: ...generated by the Switch s SNMP agent Syntax show snmp host ipaddr Description The show snmp host command is used to display the IP addresses and configuration information of remote SNMP managers that...

Page 57: ...cessing the Switch provided the user knows the Username and Password Parameters ipaddr The IP address of the trusted host Restrictions Only administrator level users can issue this command Example usa...

Page 58: ...te trusted_host command above Parameters ipaddr The IP address of the trusted host Restrictions Only administrator level users can issue this command Example Usage To delete a trusted host with an IP...

Page 59: ...s Only administrator level users can issue this command Example Usage To turn on SNMP authentication trap support DXS 3326GSR 4 enable snmp authenticate_traps Command enable snmp authenticate_traps Su...

Page 60: ...ers can issue this command Example Usage To prevent SNMP traps from being sent from the Switch DXS 3326GSR 4 disable snmp traps Command disable snmp traps Success DXS 3326GSR 4 disable snmp authentica...

Page 61: ...epted if there is no contact Restrictions Only administrator level users can issue this command Example usage To configure the Switch contact to MIS Department II DXS 3326GSR 4 config snmp system_cont...

Page 62: ...NULL string is accepted if no name is desired Restrictions Only administrator level users can issue this command Example usage To configure the Switch name for DXS 3326GSR Stackable Switch DXS 3326GSR...

Page 63: ...MON on the Switch Syntax disable rmon Description This command is used in conjunction with the enable rmon command above to enable and disable remote monitoring RMON on the Switch Parameters None Rest...

Page 64: ...FTP ipaddr path_filename 64 image_id int 1 2 unit all unitid 1 12 cfg_fromTFTP ipaddr path_filename 64 increment Description This command is used to download a new firmware or a switch configuration f...

Page 65: ...must be on the same IP subnet as the Switch Only administrator level users can issue this command Example usage To download a firmware file to image_id 1 DXS 3326GSR 4 download firmware_fromTFTP 10 48...

Page 66: ...ry to be configured delete Selecting this parameter along with the image_id will delete this firmware from the Switch s memory boot_up Selecting this parameter along with the image_id will set this fi...

Page 67: ...up section R means firmware update thru SerialPort RS232 T means firmware update thru TELNET S means firmware update thru SNMP W means firmware update thru WEB SIM means firmware update thru Single IP...

Page 68: ...sends Internet Control Message Protocol ICMP echo messages to a remote IP address The remote IP address will then echo or return the message This is used to confirm connectivity between the Switch and...

Page 69: ...uest This is the maximum number of routers the traceroute command will cross while seeking the network path between two devices port value 30000 64900 The port number The value range is from 30000 to...

Page 70: ...7 udp_port udp_port_number ipaddress ipaddr state enable disable config syslog host all severity informational warning all facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp...

Page 71: ...16 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show error ports Purpose Used to display the error statistics for a range of ports Syntax show error ports portlist Description This co...

Page 72: ...E n Next Page p Previous Page r Refresh show utilization Purpose Used to display real time port and cpu utilization statistics Syntax show utilization ports cpu Description This command will display t...

Page 73: ...Page p Previous Page r Refresh To display the current cpu utilization DXS 3326GSR 4 show utilization cpu Command show utilization cpu CPU utilization Five seconds 15 One minute 25 Five minutes 14 DXS...

Page 74: ...r log Purpose Used to clear the Switch s history log Syntax clear log Description This command will clear the Switch s history log Parameters None Restrictions Only administrator level users can issue...

Page 75: ...x 3 2000 03 02 01 54 53 Spanning Tree Protocol is enabled 2 2000 03 02 01 54 53 Unit 1 System started up 1 2000 02 28 06 06 09 Spanning Tree Protocol is disabled DXS 3326GSR 4 enable syslog Purpose Us...

Page 76: ...evel users can issue this command Example usage To disable the syslog function on the Switch DXS 3326GSR 4 disable syslog Command disable syslog Success DXS 3326GSR 4 show syslog Purpose Used to displ...

Page 77: ...conditions 3 Error error conditions 4 Warning warning conditions 5 Notice normal but significant condition 6 Informational informational messages 7 Debug debug level messages informational Specifies t...

Page 78: ...21 local use 5 local5 22 local use 6 local6 23 local use 7 local7 local0 Specifies that local use 0 messages will be sent to the remote host This corresponds to number 16 from the list above local1 Sp...

Page 79: ...ers can issue this command Example usage To create syslog host DXS 3326GSR 4 create syslog host 1 severity all facility local0 ipaddress 10 53 13 94 state enable Command create syslog host 1 severity...

Page 80: ...cifies that all of the currently supported syslog messages that are generated by the Switch will be sent to the remote host facility Some of the operating system daemons and processes have been assign...

Page 81: ...umber 19 from the list above local4 Specifies that local use 4 messages will be sent to the remote host This corresponds to number 20 from the list above local5 Specifies that local use 5 messages wil...

Page 82: ...indicates that the corresponding severity level is currently supported on the Switch Numerical Severity Code 0 Emergency system is unusable 1 Alert action must be taken immediately 2 Critical critica...

Page 83: ...es 11 FTP daemon 12 NTP subsystem 13 log audit 14 log alert 15 clock daemon 16 local use 0 local0 17 local use 1 local1 18 local use 2 local2 19 local use 3 local3 20 local use 4 local4 21 local use 5...

Page 84: ...og messages to the remote host specified above to be enabled and disabled Restrictions Only administrator level users can issue this command Example usage To configure all syslog hosts DXS 3326GSR 4 c...

Page 85: ...s that are currently configured on the Switch Parameters index 1 4 Specifies that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 Restrictions No...

Page 86: ...etwork continuing to allow simple and full processing of frames regardless of administrative errors in defining VLANs and their respective spanning trees Each switch utilizing the MSTP on a network wi...

Page 87: ...stp Purpose Used to globally enable STP on the Switch Syntax enable stp Description This command allows the Spanning Tree Protocol to be globally enabled on the Switch Parameters None Restrictions On...

Page 88: ...ol RSTP globally on the Switch stp Selecting this parameter will set the Spanning Tree Protocol STP globally on the Switch Restrictions Only administrator level users can issue this command Example us...

Page 89: ...packet and the information held for the port will age out The user may set a hop count from 1 to 20 The default is 20 hellotime value 1 10 The user may set the time interval between transmission of c...

Page 90: ...00 Gigabit port 20000 value 1 200000000 Define a value between 1 and 200000000 to determine the external cost The lower the number the greater the probability the port will be chosen to forward packet...

Page 91: ...ports specified in the port list The default is enable Restrictions Only administrator level users can issue this command Example usage To configure STP with path cost 19 hellotime set to 5 seconds mi...

Page 92: ...same spanning tree region having the same STP instance_id must be mapped identically and have the same configuration revision_level number and the same name Parameters value 1 15 Enter a number betwe...

Page 93: ...s command Example usage To delete stp instance id 2 from the Switch DXS 3326GSR 4 delete stp instance_id 2 Command delete stp instance_id 2 Success DXS 3326GSR 4 config stp priority Purpose Used to up...

Page 94: ...quely identify the MSTP configuration currently configured on the Switch Information entered here will be attached to BDPU packets as an identifier for the MSTP region to which it belongs Switches hav...

Page 95: ...o separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 1 3 specifies switch number 1 port 3 2 4 specifies switch number 2 port 4 1 3 2 4...

Page 96: ...internalCost auto priority 16 Success DXS 3326GSR 4 show stp Purpose Used to display the Switch s current STP configuration Syntax show stp Description This command displays the Switch s current STP...

Page 97: ...ys the STP Instance Settings and STP Instance Operational Status currently implemented on the Switch Parameters portlist Specifies a range of ports to be viewed The port list is specified by listing t...

Page 98: ...tion Syntax show stp instance_id value 0 15 Description This command displays the Switch s current STP Instance Settings and the STP Instance Operational Status Parameters value 0 15 Enter a value def...

Page 99: ...how stp mst_config_id Purpose Used to display the MSTP configuration identification Syntax show stp mst_config_id Description This command displays the Switch s current MSTP configuration identificati...

Page 100: ...the following sections create fdb Purpose Used to create a static entry to the unicast MAC address forwarding table database Syntax create fdb vlan_name 32 macaddr port port Description This command w...

Page 101: ...forwarding table database Syntax create multicast_fdb vlan_name 32 macaddr Description This command will make an entry into the Switch s multicast MAC address forwarding database Parameters vlan_name...

Page 102: ...ies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 port 4 in numerical order Restrictions Only administrator level users can issue this command Example...

Page 103: ...d Example usage To set the fdb aging time DXS 3326GSR 4 config fdb aging_time 300 Command config fdb aging_time 300 Success DXS 3326GSR 4 delete fdb Purpose Used to delete an entry to the Switch s for...

Page 104: ...will always forward traffic to the specified device through this port The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon...

Page 105: ...01 00 5E 00 00 00 Egress Ports 1 1 1 5 1 26 2 26 Mode Static Total Entries 1 DXS 3326GSR 4 show fdb Purpose Used to display the current unicast MAC address forwarding database Syntax show fdb port po...

Page 106: ...D VLAN Name MAC Address Port Type 1 default 00 00 39 34 66 9A 1 12 Dynamic 1 default 00 00 51 43 70 00 1 12 Dynamic 1 default 00 00 5E 00 01 01 1 12 Dynamic 1 default 00 00 74 60 72 2D 1 12 Dynamic 1...

Page 107: ...ynamic System 10 0 51 1 1 13 Dynamic System 10 0 58 4 1 13 Dynamic System 10 0 85 168 1 13 Dynamic System 10 1 1 1 1 13 Dynamic System 10 1 1 99 1 13 Dynamic System 10 1 1 101 1 13 Dynamic System 10 1...

Page 108: ...isable Used to enable or disable the ports listed in the portlist above to be destination hit ports Restrictions Only administrator level users can issue this command Example usage To configure ports...

Page 109: ...the Switch Restrictions None Example usage To view the destination hit port status DXS 3326GSR 4 show fdb destination_hit ports 1 1 1 10 Command show fdb destination_hit ports 1 1 1 10 Port Destinati...

Page 110: ...h number and the beginning port number on that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning...

Page 111: ...switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 1 3 specifies switch nu...

Page 112: ...amount of lower priority tagged packets in the buffer and regardless of the time elapsed since any lower priority tagged packets have been transmitted By default the Switch is configured to empty the...

Page 113: ...1 999 tx_rate no_limit value 1 999 Description The config bandwidth_control command is used to configure bandwidth on a by port basis Parameters portlist Specifies a range of ports to be configured T...

Page 114: ...tx_rate 10 Success DXS 3326GSR 4 show bandwidth_control Purpose Used to display the bandwidth control configuration on the Switch Syntax show bandwidth_control portlist Description The show bandwidth_...

Page 115: ...ty class Class 6 to the lowest priority class Class 0 Starting with the highest priority class Class 6 the highest priority queue will transmit all of the packets and empty its buffer before allowing...

Page 116: ...ith a 0 in its max_packet field is empty the remaining priority queues will reset the weighted round robin WRR cycle of forwarding packets starting with the highest available priority queue Priority q...

Page 117: ...escription The show scheduling command displays the current configuration for the maximum number of packets max_packets assigned to the seven hardware priority queues on the Switch At this value it wi...

Page 118: ...to map the incoming 802 1p priority values to the seven hardware priority queues according to the following chart 802 1p Switch Hardware Value Priority Queue 0 2 1 0 2 1 3 3 4 4 5 5 6 6 7 6 Parameter...

Page 119: ...Purpose Used to specify default priority settings on the Switch Untagged packets that are received by the Switch will be assigned a priority tag in its priority field using this command Syntax config...

Page 120: ...kets before being forwarded to its destination Syntax show 802 1p default_priority portlist Description The show 802 1p default_priority command displays the currently configured 802 1p priority tag t...

Page 121: ...WRR and a Strict mechanism for emptying the priority queues of the QoS function The Switch contains 8 hardware priority queues one of which is internal and unoperational Incoming packets must be mapp...

Page 122: ...each COS queue DXS 3326GSR 4 config scheduling_mechanism strict Command config scheduling_mechanism strict Success DXS 3326GSR 4 show scheduling_mechanism Purpose Used to display the current traffic s...

Page 123: ...None Restrictions You must have administrator privileges Example Usage To enable HOL prevention DXS 3326GSR 4 enable hol_prevention Command enable hol_prevention Success DXS 3326GSR 4 disable hol_prev...

Page 124: ...ion Purpose Used to show HOL prevention Syntax show hol_prevention Description The show hol_prevention command displays the Head of Line prevention state Parameters None Restrictions None Example Usag...

Page 125: ...est switch number and the beginning port number on that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The...

Page 126: ...ers port port This specifies the Target port the port where mirrored packets will be sent The port list is specified by listing the lowest switch number and the beginning port number on that switch se...

Page 127: ...ceived or sent by the port or ports in the port list Restrictions Only administrator level users can issue this command Example usage To delete the mirroring ports DXS 3326GSR 4 config mirror port 1 5...

Page 128: ...the port mirroring on and off without having to modify the port mirroring configuration Parameters None Restrictions Only administrator level users can issue this command Example usage To disable mir...

Page 129: ...DXS 3326GSR Stackable Gigabit Layer 3 Switch DXS 3326GSR 4 show mirror Command show mirror Current Settings Mirror Status Enabled Target Port 9 Mirrored Port RX TX 1 1 1 5 DXS 3326GSR 4 121...

Page 130: ...te vlan vlan_name 32 tag vlanid 2 4094 type 1q_vlan advertisement protocol ip protocol ipx802dot3 protocol ipx802dot2 protocol ipxSnap protocol ipxEthernet2 protocol appleTalk protocol decLat protocol...

Page 131: ...Pre set protocol based VLANs on the Switch include protocol ip Using this parameter will instruct the Switch to forward packets to this VLAN if the tag in the packet header is concurrent with this pr...

Page 132: ...ket header information is defined by the NetBIOS Protocol protocol xns Using this parameter will instruct the Switch to forward packets to this VLAN if the tag in the packet header is concurrent with...

Page 133: ...administrator level users can issue this command NOTE A specific protocol VLAN and a user defined protocol VLAN with the same encapsulation protocol cannot coexist and will result in a Fail Message Fo...

Page 134: ...an_name 32 The name of the VLAN you want to add or delete ports to add Specifies which ports to add The user may also specify if the ports are tagged Specifies the additional ports as tagged untagged...

Page 135: ...delete ports from portlist A range of ports to delete from the VLAN The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon The...

Page 136: ...switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 port 4 in numerical order all Specifies all of the ports on the Switch state enable disable Enables or di...

Page 137: ...To enable the generic VLAN Registration Protocol GVRP DXS 3326GSR 4 enable gvrp Command enable gvrp Success DXS 3326GSR 4 disable gvrp Purpose Used to disable GVRP on the Switch Syntax disable gvrp D...

Page 138: ...age To display the Switch s current VLAN settings DXS 3326GSR 4 show vlan Command show vlan VID 1 VLAN Name default VLAN TYPE 1QVLAN Protocol ID UserDefinedPid Advertisement Enabled Encap Member ports...

Page 139: ...s None Example usage To display GVRP port status 1 11 1 Disabled Enabled All Frames 1 12 1 Disabled Enabled All Frames 1 14 1 Disabled Enabled All Frames 1 17 1 Disabled Enabled All Frames DXS 3326GSR...

Page 140: ...create link_aggregation group_id value 1 32 type lacp static Description This command will create a link aggregation group with a unique identifier Parameters value 1 32 Specifies the group ID The Sw...

Page 141: ...onfigured link aggregation group Parameters value 1 32 Specifies the group ID The Switch allows up to 32 link aggregation groups to be configured The group number identifies each of the groups Restric...

Page 142: ...of the port list range are separated by a dash For example 1 3 specifies switch number 1 port 3 2 4 specifies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and swi...

Page 143: ...nly administrator level users can issue this command Example usage To configure link aggregation algorithm for mac source dest DXS 3326GSR 4 config link_aggregation algorithm mac_source_dest Command c...

Page 144: ...ated by a dash For example 1 3 specifies switch number 1 port 3 2 4 specifies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 port 4 in numerical order m...

Page 145: ...ber and the beginning port number on that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning and...

Page 146: ...terface will support the BOOTP relay agent IP Multinetting is a valuable tool for network administrators requiring a multitude of IP addresses but configuring the Switch for IP multinetting may cause...

Page 147: ...or disable the IP interface Restrictions Only administrator level users can issue this command Example usage To create the primary IP interface p1 on VLAN Trinity DXS 3326GSR 4 create ipif p1 ipaddres...

Page 148: ...nterface dhcp Allows the selection of the DHCP protocol for the assignment of an IP address to the Switch s System IP interface Restrictions Only administrator level users can issue this command Examp...

Page 149: ...all Entering this parameter will disable all the IP interfaces currently configured on the Switch Restrictions None Example usage To disable the IP interface named s2 DXS 3326GSR 4 disable ipif s2 Com...

Page 150: ...12 Description This command will display the configuration of an IP interface on the Switch ipif_name 12 The name created for the IP interface the user wishes to view Parameters Restrictions None Exam...

Page 151: ...abit Layer 3 Switch NOTE In the IP Interface Settings table shown above the Secondary field will have two displays FALSE denotes that the IP interface is a primary IP interface while TRUE denotes a se...

Page 152: ...e1 25 state enable disable Description This command allows you to configure IGMP snooping on the Switch Parameters ipif_name 12 The name of the IP interface for which you want to configure IGMP all Sp...

Page 153: ...he Switch if no IP interface name is specified If an IP interface name is specified the command will display the IGMP configuration for that IP interface Parameters ipif_name 12 The name of the IP int...

Page 154: ...if_name 12 The name of the IP interface the IGMP group is part of Restrictions None Example Usage Command show igmp group To display IGMP group table DXS 3326GSR 4 show igmp group Interface Name Multi...

Page 155: ...32 add delete portlist show router_ports vlan_name 32 static dynamic forbidden show igmp_snooping vlan vlan_name 32 show igmp_snooping group vlan vlan_name 32 show igmp_snooping forwarding vlan vlan_...

Page 156: ...GMP snooping querier Syntax config igmp_snooping querier vlan_name 32 all query_interval sec 1 65535 max_response_time sec 1 25 robustness_variable value 1 255 last_member_query_interval sec 1 25 stat...

Page 157: ...ulated as follows robustness variable x query interval 1 x query response interval Other querier present interval Amount of time that must pass before a multicast router decides that there is no longe...

Page 158: ...ble IGMP snooping on the Switch DXS 3326GSR 4 enable igmp_snooping Command enable igmp_snooping Success DXS 3326GSR 4 disable igmp_snooping Used to enable IGMP snooping on the Switch disable igmp_snoo...

Page 159: ...es a range of ports that will be configured as router ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then the hi...

Page 160: ...nge also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 1 3 specifies switch number 1 port 3 2 4 specifies switch number 2 port 4 1...

Page 161: ...Name default Static router port 2 1 2 10 Forbidden Router Port Static router port Forbidden Router Port Total Entries 2 DXS 3326GSR 4 show igmp_snooping Purpose Used to show the current status of IGMP...

Page 162: ...2 Leave Timer 2 Querier State Disabled State Disabled Query Interval 125 Max Response Time 10 Last Member Query Interval 1 Host Timeout 260 Leave Timer 2 Querier State Disabled State Disabled DXS 332...

Page 163: ...er 1 26 2 7 Multicast group 234 5 6 7 MAC address 01 00 5E 05 06 07 Port Member 1 26 2 9 Multicast group 236 54 63 75 MAC address 01 00 5E 36 3F 4B Port Member 1 26 2 7 Multicast group 239 255 255 250...

Page 164: ...ing forwarding table information Restrictions None Example usage To view the IGMP snooping forwarding table for VLAN Trinity DXS 3326GSR 4 show igmp_snooping forwarding vlan Trinity Command show igmp_...

Page 165: ...ions enable mac_notification Purpose Used to enable global MAC address table notification on the Switch Syntax enable mac_notification Description This command is used to enable MAC address notificati...

Page 166: ...3647 historysize int 1 500 Description MAC address notification is used to monitor MAC addresses learned and entered into the FDB Parameters interval int 1 2147483647 The time in seconds between notif...

Page 167: ...er 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 port 4 in numerical order all Entering this command will set all ports on the system enable disable These commands w...

Page 168: ...switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated...

Page 169: ...1 8 Disabled 1 9 Disabled 1 10 Disabled 1 11 Disabled 1 12 Disabled 1 13 Disabled 1 14 Disabled 1 15 Disabled 1 16 Disabled 1 17 Disabled 1 18 Disabled 1 19 Disabled 1 20 Disabled CTRL C ESC q Quit SP...

Page 170: ...ce other than the Switch called a server host and it must include usernames and passwords for authentication When the user is prompted by the Switch to enter usernames and passwords for authentication...

Page 171: ...string 15 method tacacs xtacacs tacacs radius server_group string 15 local_enable none string 15 show authen_enable default method_list_name string 15 all config authen application console telnet ssh...

Page 172: ...tch When enabled the device will check the method list and choose a technique for user authentication upon login Parameters None Restrictions Only administrator level users can issue this command Exam...

Page 173: ...olicy Description This command will show the current status of the access authentication policy on the Switch Parameters None Restrictions None Example usage To display the system access authenticatio...

Page 174: ...sers logging on to the Switch The sequence of methods implemented in this command will affect the authentication result For example if a user enters a sequence of methods like tacacs xtacacs local the...

Page 175: ...e RADIUS protocol from the RADIUS server listed in the server group list server_group string 15 Adding this parameter will require the user to be authenticated using a user defined server group previo...

Page 176: ...tacacs xtacacs local Success DXS 3326GSR 4 Example usage To configure the default method list with authentication methods xtacacs tacacs and local in that order DXS 3326GSR 4 config authen_login defau...

Page 177: ...ll Entering this parameter will display all the authentication login methods currently configured on the Switch Restrictions Only administrator level users can issue this command Method List Name The...

Page 178: ...h Once a user acquires normal user level privileges on the Switch he or she must be authenticated by a method on the Switch to gain administrator privileges on the Switch which is defined by the Admin...

Page 179: ...ce using the xtacacs list the local_enable password set in the Switch is used to authenticate the user Successful authentication using any of these methods will give the user an Admin privilege Parame...

Page 180: ...ch server_group string 15 Adding this parameter will require the user to be authenticated using a user defined server group previously configured on the Switch local_enable Adding this parameter will...

Page 181: ...ample usage To delete the user defined method list Permit DXS 3326GSR 4 delete authen_enable method_list_name Permit Command delete authen_enable method_list_name Permit Success DXS 3326GSR 4 show aut...

Page 182: ...efault Entering this parameter will display the default method list for users attempting to gain access to Administrator level privileges on the Switch method_list_name string 15 Enter an alphanumeric...

Page 183: ...r authentication using the default method list Restrictions Only administrator level users can issue this command console Choose this parameter to configure the command line interface login method tel...

Page 184: ...te authen server_host Purpose Used to create an authentication server host Syntax create authen server_host ipaddr protocol tacacs xtacacs tacacs radius port int 1 65535 key key_string 254 none timeou...

Page 185: ...o change how many times the device will resend an authentication request when the TACACS XTACACS TACACS or RADIUS server does not respond Restrictions Only administrator level users can issue this com...

Page 186: ...255 Enter the value in the retransmit field to change how many times the device will resend an authentication request when the TACACS XTACACS or RADIUS server does not respond This field is inoperable...

Page 187: ...ver host previously created on the Switch Parameters server_host ipaddr The IP address of the remote server host the user wishes to delete protocol The protocol used by the server host the user wishes...

Page 188: ...e Switch will wait for the server host to reply to an authentication request Retransmit The value in the retransmit field denotes how many times the device will resend an authentication request when t...

Page 189: ...group tacacs xtacacs tacacs radius string 15 add delete server_host ipaddr protocol tacacs xtacacs tacacs radius Description This command will configure an authentication server group A server group i...

Page 190: ...ons Restrictions Only administrator level users can issue this command tacacs Use this parameter to define the protocol if the server host is using the TACACS authentication protocol xtacacs Use this...

Page 191: ...show authen server_group string 15 Description This command will display authentication server groups currently configured on the Switch This command will display the following fields Group Name The n...

Page 192: ...ait for a response of authentication from the user Parameters response_timeout int 0 255 Set the time in seconds the Switch will wait for a response of authentication from the user attempting to log i...

Page 193: ...nds before another authentication attempt Telnet users will be disconnected from the Switch Parameters parameter attempt int 1 255 Set the maximum number of attempts the user may try to become authent...

Page 194: ...er level to become promoted to the administrator level After logging on to the Switch users will have only user level privileges To gain access to administrator level privileges the user will enter th...

Page 195: ...red here that is set locally on the Switch Parameters password 15 After entering this command the user will be prompted to enter the old password then a new password in an alphanumeric string of no mo...

Page 196: ...ithm that SSH will use to encrypt and decrypt messages sent between the SSH Client and the SSH Server Finally enable SSH on the Switch using the enable ssh command After following the above steps you...

Page 197: ...ssh Success DXS 3326GSR 4 disable ssh Purpose Used to disable SSH disable ssh Description This command allows you to disable SSH on the Switch Parameters None Restrictions Only administrator level us...

Page 198: ...g SSH authentication techniques and the host computer is running the Linux operating system with a SSH program previously installed enable disable This allows you to enable or disable SSH authenticati...

Page 199: ...between 120 and 600 seconds The default is 120 seconds authfail int 2 20 Allows the administrator to set the maximum number of attempts that a user may try to logon utilizing SSH authentication After...

Page 200: ...2 hostname_IP string 32 ipaddr password publickey Description This command allows you to configure the SSH user authentication method Parameters username 15 Enter a username of no more than 15 charact...

Page 201: ...ntication Restrictions Only administrator level users can issue this command Example usage Command config ssh user Trinity authmode password To configure the SSH user DXS 3326GSR 4 config ssh user Tri...

Page 202: ...he Arcfour encryption algorithm cast128 This parameter will enable or disable the Cast128 encryption algorithm twofish128 This parameter will enable or disable the twofish128 encryption algorithm MD5...

Page 203: ...This command will display the current SSH algorithm setting status Parameters None Restrictions None Usage Example To display SSH algorithms currently set on the Switch DXS 3326GSR 4 show ssh algorit...

Page 204: ...DXS 3326GSR Stackable Gigabit Layer 3 Switch DXS 3326GSR 4 196...

Page 205: ...used in the encryption of the current block The Switch supports the 3DES_EDE encryption code defined by the Data Encryption Standard DES to create the encrypted text 3 Hash Algorithm This part of the...

Page 206: ...authentication session The user may choose any combination of the following The ciphersuites are enabled by default on the Switch yet the SSL status is disabled by default Enabling SSL with a ciphers...

Page 207: ...any one or combination of listed ciphersuites on the Switch Parameters ciphersuite A security string that determines the exact cryptographic parameters specific encryption algorithms and key sizes to...

Page 208: ...A new SSL session is established every time the client and host go through a key exchange Specifying a longer timeout will allow the SSL session to reuse the master key on future connections with tha...

Page 209: ...and show ssl cachetimeout Cache timeout is 600 second s DXS 3326GSR 4 show ssl Purpose Used to view the SSL status and the certificate file status on the Switch Syntax show ssl certificate Description...

Page 210: ...iption This command is used to download a certificate file for the SSL function on the Switch from a TFTP server The certificate file is a data record used for authenticating devices on the network It...

Page 211: ...SR 4 DXS 3326GSR 4 download certificate_fromTFTP 10 53 13 94 certfilename c cert der keyfilename c pkey der Command download certificate_fromTFTP 10 53 13 94 certfilename c cert der keyfilename c pkey...

Page 212: ...pability ports portlist all authenticator none config 802 1x auth_parameter ports portlist all default direction both in port_control force_unauth auto force_auth quiet_period sec 0 65535 tx_period se...

Page 213: ...s control server application on the Switch Parameters None Restrictions Only administrator level users can issue this command Syntax Description Example usage To enable 802 1x switch wide DXS 3326GSR...

Page 214: ...issue this command Example Usage To create an 802 1x user DXS 3326GSR 4 create 802 1x user dtremblett Command create 802 1x user dtremblett Enter a case sensitive new password Enter the new password...

Page 215: ...ed on the Switch Parameters username 15 A username can be as many as 15 alphanumeric characters Restrictions Only administrator level users can issue this command Purpose Example Usage To delete 802 1...

Page 216: ...on in both receiving and transmitting directions or just the receiving direction Port Control ForceAuth ForceUnauth Auto Shows the administrative control over the port s authorization status ForceAuth...

Page 217: ...led DXS 3326GSR 4 show 802 1x auth_configuration ports 1 1 Command show 802 1x auth_configuration ports 1 1 802 1X Enabled Authentication Mode Port_based Authentication Protocol Radius_EAP Port number...

Page 218: ...ted by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For exam...

Page 219: ...auth_state Command show 802 1x auth_state Port number 1 1 Index MAC Address Auth PAE State Backend State Port Status 1 00 08 02 4E DA FA Authenticated Idle Authorized 2 3 4 5 6 7 8 9 10 11 12 13 14 15...

Page 220: ...ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then the highest switch number and the highest port number of the...

Page 221: ...umber and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 1 3 specifies switch number 1 po...

Page 222: ...ticate Enabled causes re authentication of users at the time interval specified in the Re authentication Period field above Restrictions Only administrator level users can issue this command Example u...

Page 223: ...then be specified portlist Specifies a range of ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then the highest...

Page 224: ...only on the port number Ports approved for re authorization can then be specified ports portlist Specifies a range of ports The port list is specified by listing the lowest switch number and the begin...

Page 225: ..._number 1 65535 acct_port udp_port_number 1 65535 Description The config radius add command is used to add RADIUS servers to the Switch Parameters server_index 1 3 Assigns a number to the current set...

Page 226: ...IUS server configuration Syntax config radius delete server_index 1 3 Parameters server_index 1 3 A number identifying the current set of RADIUS server settings the user wishes to delete Up to 3 group...

Page 227: ...ons Purpose Syntax Description Parameters key Specifies that a password and encryption key will be used between the Switch and the RADIUS server acct_port udp_port_number The UDP port number for accou...

Page 228: ...o display the current RADIUS accounting client show acct_client Description The show acct_client command is used to display the current RADIUS accounting client currently configured on the Switch Para...

Page 229: ...ription The show auth_client command is used to display the current RADIUS authentication client currently configured on the Switch Parameters None Restrictions None Purpose Example usage To view the...

Page 230: ...ing port number on that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port li...

Page 231: ...urrent authentication session statistics of the Switch on a per port basis Parameters ports portlist Specifies a range of ports The port list is specified by listing the lowest switch number and the b...

Page 232: ...tics command is used to display the current authentication statistics of the Switch on a per port basis ports portlist Specifies a range of ports The port list is specified by listing the lowest switc...

Page 233: ...ber 1 16 EapolFramesRx 0 EapolFramesTx 0 EapolStartFramesRx 0 EapolReqIdFramesTx 0 EapolLogoffFramesRx 0 EapolReqFramesTx 0 EapolRespIdFramesRx 0 EapolRespFramesRx 0 InvalidEapolFramesRx 0 EapLengthEr...

Page 234: ...value 1 50 ethernet vlan vlan_name 32 source_mac macaddr destination_mac macaddr 802 1p value 0 7 ethernet_type hex 0x0 0xffff ip vlan vlan_name 32 source_ip ipaddr destination_ip ipaddr dscp value 0...

Page 235: ...list of rules A lower access_id gives the rule a higher priority In case of a conflict in the rules entered for an access profile the rule with the highest priority lowest access_id will take preceden...

Page 236: ...r the destination MAC address This mask is entered in the following hexadecimal format 000000000000 FFFFFFFFFFFF 802 1p Specifies that the Switch will examine the 802 1p priority value in the frame s...

Page 237: ...have TCP port numbers contained in them as the forwarding criterion These numbers have flag bits associated with them which are parts of a packet that determine what to do with the packet The user may...

Page 238: ...ofile ip vlan source_ip_mask 20 0 0 0 destination_ip_mask 10 0 0 0 dscp icmp type code permit profile_id 101 Success DXS 3326GSR delete access_profile Purpose Used to delete a previously created acces...

Page 239: ...hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_64 79 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex0x0 0xffffffff permit priority value 0 7 replace_priority replace_dsc...

Page 240: ...ill apply only to packets that have this value in their Type of Service DiffServ code point DSCP field in their IP packet header icmp Specifies that the Switch will examine the Internet Control Messag...

Page 241: ...et header packet_content Specifies that the Switch will mask the packet header beginning with the offset value specified as follows offset_0 15 Enter a value in hex form to mask the packet from the be...

Page 242: ...this command Example usage To configure the access profile with the profile ID of 1 to filter frames that have IP addresses in the range between 10 42 73 0 to 10 42 73 255 DXS 3326GSR 4 config access_...

Page 243: ..._profile Command show access_profile Access Profile Table Access Profile ID 1 TYPE Ethernet Ports 1 1 MASK Option VLAN Access ID 1 Mode Deny 0 Access Profile ID 2 TYPE IP Ports 1 1 1 24 2 1 2 24 MASK...

Page 244: ...number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 1 3 specifies switch number 1 port 3 2 4 specifies switch...

Page 245: ...of ports for which the current traffic segmentation configuration on the Switch will be displayed The port list is specified by listing the lowest switch number and the beginning port number on that...

Page 246: ...2 1 2 24 1 7 1 1 1 24 2 1 2 24 1 8 1 1 1 24 2 1 2 24 1 9 1 1 1 24 2 1 2 24 1 10 1 1 1 24 2 1 2 24 1 11 1 1 1 24 2 1 2 24 1 12 1 1 1 24 2 1 2 24 1 13 1 1 1 24 2 1 2 24 1 14 1 1 1 24 2 1 2 24 1 15 1 1...

Page 247: ...d in detail in the following sections config box_priority Purpose Used to configure box priority which determines which box becomes master Lower numbers have higher priority Syntax config box_priority...

Page 248: ...le To change a box ID DXS 3326GSR 4 config box_id current_box_id 1 new_box_id 2 Command config box_id current_box_id 1 new_box_id 2 Success DXS 3326GSR 4 config box_type Purpose Used to configure box...

Page 249: ...mmand config box_type current_box_id 3 type BOX_NOTEXIST Success DXS 3326GSR 4 config all_boxes_id Purpose Used to configure box IDs for switches in a stack Syntax config all_boxes _id static_mode aut...

Page 250: ...mmand show stack_information Box User Prio Prom Runtime H W ID Set Type Exist rity version version version 1 AUTO DXS 3326GSR exist 16 1 00 B05 3 00 B16 4A1 2 AUTO DXS 3326GSR exist 16 1 00 B05 3 00 B...

Page 251: ...tiple VLANs are configured the SIM group will only utilize the default VLAN on any switch SIM allows intermediate devices that do not support SIM This enables the user to manage a switch that are more...

Page 252: ...M enabled the applications in the CS will redirect the packet instead of executing the packets The applications will decode the packet from the administrator modify some data then send it to the MS Af...

Page 253: ...sim Success DXS 3326GSR 4 disable sim Purpose disable sim This command will disable SIM globally on the Switch Parameters None Restrictions Only administrator level users can issue this command Used t...

Page 254: ...ets out over the network Hold time Displays the time in seconds the Switch will hold discovery results before dropping it or utilizing it Parameters candidates candidate_id 1 100 Entering this paramet...

Page 255: ...ch SIM State Enabled Role State Commander Discovery Interval 30 sec Hold Time 100 sec DXS 3326GSR 4 To show the candidate information in summary if the candidate id is specified DXS 3326GSR 4 show sim...

Page 256: ...ow sim group SIM Group Name default ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3324SR L3 Switch 40 3 00 B16 Trinity 2 00 55 55 00 55 00 DES 3550...

Page 257: ...it Description This command is used to reconnect to a member switch using telnet Parameters member_id value 1 32 Select the ID number of the member switch the user desires to configure exit This comma...

Page 258: ...1 32 Use this parameter to delete a member switch of a SIM group The member switch should be defined by it ID number Restrictions Only administrator level users can issue this command Example usage To...

Page 259: ...Switch will hold information sent to it from other switches utilizing the discovery interval protocol The user may set the hold time from 100 to 255 seconds dp_interval 30 90 The user may set the disc...

Page 260: ...ccess DXS 3326GSR 4 download sim_ms Purpose Used to download firmware or configuration file to an indicated device Syntax download sim_ms firmware configuration ipaddr path_filename members mslist 1 3...

Page 261: ...all members of the SIM group will receive the firmware or switch configuration Example usage To download firmware DXS 3326GSR 4 download sim firmware 10 53 13 94 c dgssri had members all Command down...

Page 262: ...of the TFTP server the user wishes to upload a configuration file to path_filename Enter a user defined path and file name on the TFTP server the user wishes to upload configuration files to member_i...

Page 263: ...m e_date end_date 1 31 e_mth end_mth 1 12 e_time end_time hh mm offset 30 60 90 120 show time Each command is listed in detail in the following sections config sntp Purpose Used to setup SNTP service...

Page 264: ...isplay the SNTP information Syntax show sntp Description This command will display SNTP settings information including the source IP address time and poll interval Parameters None Restrictions Only ad...

Page 265: ...SNTP to function config sntp Example usage To enable the SNTP function DXS 3326GSR 4 enable sntp Command enable sntp Success DXS 3326GSR 4 disable sntp Purpose Disables SNTP server support Syntax dis...

Page 266: ...em time and date settings are overridden if SNTP support is enabled Example usage To manually set system time and date settings DXS 3326GSR 4 config time 30jun2003 16 30 30 Command config time 30jun20...

Page 267: ...seasonal time adjustment for the Switch repeating Using repeating mode will enable DST seasonal time adjustment Repeating mode requires that the DST beginning and ending date be specified using a for...

Page 268: ...can issue this command end_day sun sat The day of the week in which DST ends expressed using a three character abbreviation sun mon tue wed thu fri sat start_mth 1 12 The month to begin DST expressed...

Page 269: ...ctions Only administrator level users can issue this command Example usage To show the time currently set on the Switch s System clock DXS 3326GSR 4 show time Command show time Current Time Source Sys...

Page 270: ...ntax create arpentry ipaddr macaddr Description This command is used to enter an IP address and the corresponding MAC address into the Switch s ARP table Parameters ipaddr The IP address of the end no...

Page 271: ...21 Command delete arpentry 10 48 74 121 Success DXS 3326GSR 4 config arp_aging Purpose Used to configure the age out timer for ARP table entries on the Switch Syntax config arp_aging time value 0 6553...

Page 272: ...Broadcast System 10 1 1 169 00 50 BA 70 E4 4E Dynamic System 10 1 1 254 00 01 30 FA 5F 00 Dynamic System 10 9 68 1 00 A0 C9 A4 22 5B Dynamic System 10 9 68 4 00 80 C8 2E C7 45 Dynamic System 10 10 27...

Page 273: ...This command is used to remove dynamic ARP table entries from the Switch s ARP table Static ARP table entries are not affected Parameters None Restrictions Only administrator level users can issue th...

Page 274: ...of a VLAN VRRP IP interfaces may be assigned to every VLAN and therefore IP interface on the Switch VRRP routers within the same VRRP group must be consistent in configuration settings for this protoc...

Page 275: ...e a VRRP interface configuration Syntax disable vrrp ping Description This command will disable the VRRP interface configuration on the Switch ping Adding this parameter to the command will stop the v...

Page 276: ...254 Enter a value between 1 and 254 to indicate the router priority The VRRP Priority value may determine if a higher priority VRRP router overrides a lower priority VRRP router A higher priority wil...

Page 277: ...m the backup routers participating in the VRRP group If the connection to the backup fails this backup router cannot assume the Master router role Different critical IP addresses may be assigned to di...

Page 278: ...ement_interval int 1 255 Enter a time interval value in seconds for sending VRRP message packets This value must be consistent with all routers participating within the same VRRP group and is used to...

Page 279: ...This IP interface must be assigned to a VLAN on the Switch authtype Specifies the type of authentication used The authtype must be consistent with all routers participating within the VRRP group The...

Page 280: ...it Layer 3 Switch To set the authentication type for a VRRP entry DXS 3326GSR 4 config vrrp ipif Trinity authtype simple authdata tomato Command config vrrp ipif Trinity authtype simple authdata tomat...

Page 281: ...d backup IP route entry to the Switch s IP routing table Parameters network_address IP address and netmask of the IP interface that is the destination of the route You can specify the address and mask...

Page 282: ...administrator level users can issue this command Example Usage To add the default static address 10 48 74 121 with a metric setting of 1 to the routing table DXS 3326GSR 4 DXS 3326GSR 4 create iproute...

Page 283: ...74 121 8 10 1 1 254 Success DXS 3326GSR 4 delete iproute default Purpose Used to delete a default IP route entry from the Switch s IP routing table Syntax delete iproute default ipaddr Description Thi...

Page 284: ...for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 8 static Use this parameter to display static iproute entries rip Use this parameter to display RIP iproute entries ospf Use this parameter t...

Page 285: ...pose Used to add route redistribution settings for the exchange of RIP routes to OSPF routes on the Switch Syntax create route redistribute dst ospf src static rip local mettype 1 2 metric value 0 655...

Page 286: ...ute redistribution settings for the exchange of OSPF routes to RIP routes on the Switch Syntax create route redistribute dst rip src all internal external type_1 type_2 inter e1 inter e2 metric value...

Page 287: ...e Routing information will be redistributed to RIP The following table lists the allowed values for the routing metrics and the types or forms of the routing information that will be redistributed Rou...

Page 288: ...l of the source device mettype allows the selection of one of the methods for calculating the metric value metric value 0 65535 Allows the entry of an OSPF interface cost This is analogous to a Hop Co...

Page 289: ...stribute routing information between the OSPF and RIP routing protocols to all routers on the network that are running OSPF or RIP Routing information entered into the Static Routing Table on the loca...

Page 290: ...ospf src rip static local ospf Description This command will delete the route redistribution settings on this switch Parameters dst rip ospf Allows the selection of the protocol on the destination de...

Page 291: ...the routing protocol on the source device The user may choose between RIP static local or OSPF dst rip ospf Allows the selection of the routing protocol on the destination device The user may choose...

Page 292: ...elay Purpose Used to configure the BOOTP relay feature of the Switch Syntax config bootp_relay hops value 1 16 time sec 0 65535 This command is used to configure the BOOTP relay feature hops value 1 1...

Page 293: ...nd config bootp_relay add ipif System 10 43 21 12 Success DXS 3326GSR 4 config bootp_relay delete Purpose Used to delete an IP destination addresses from the Switch s BOOTP relay table Syntax config b...

Page 294: ...To enable the BOOTP relay function DXS 3326GSR 4 enable bootp_relay Command enable bootp_relay Success DXS 3326GSR 4 disable bootp_relay Purpose Used to disable the BOOTP relay function on the Switch...

Page 295: ...OTP relay configuration for that IP interface Parameters ipif_name 12 The name of the IP interface for which you what to display the current BOOTP relay configuration Restrictions None Example Usage T...

Page 296: ...r add delete static domain_name 32 ipaddr This command is used to configure the DNS relay function on the Switch Parameters primary Indicates that the IP address below is the address of the primary DN...

Page 297: ...21 12 Command config dnsr delete static dns1 10 43 21 12 Success DXS 3326GSR 4 enable dnsr Purpose Used to enable DNS relay enable dnsr cache static This command is used in combination with the disab...

Page 298: ...XS 3326GSR 4 disable dnsr Purpose Used to disable DNS relay on the Switch Syntax disable dnsr cache static Description This command is used in combination with the enable dnsr command above to enable...

Page 299: ...okup for DNS relay DXS 3326GSR 4 disable dnsr static Command disable dnsr static Success DXS 3326GSR 4 show dnsr Purpose Used to display the current DNS relay status Syntax show dnsr static Descriptio...

Page 300: ...sr DNSR Status Disabled Primary Name Server 0 0 0 0 Secondary Name Server 0 0 0 0 DNSR Cache Status Disabled DNSR Static Cache Table Status Disabled DNS Relay Static Table Domain Name IP Address www 1...

Page 301: ...2_only v1_or_v2 disable state enable disable Description This command is used to configure RIP on the Switch ipif_name 12 The name of the IP interface all To configure all RIP receiving mode for all I...

Page 302: ...d on the Switch Restrictions v1_only Specifies that only RIP v1 packets will be transmitted v1_or_v2 Specifies that only RIP v1 or v2 packets will be transmitted Only administrator level users can iss...

Page 303: ...disable rip Success DXS 3326GSR 4 show rip Purpose Used to display the RIP configuration and statistics for the Switch Syntax show rip ipif ipif_name 12 Description This command will display the RIP c...

Page 304: ...ch DXS 3326GSR 4 show rip Command show rip RIP Global State Disabled RIP Interface Settings Interface IP Address TX Mode RX Mode Authen State tication System 10 41 44 33 8 Disabled Disabled Disabled D...

Page 305: ...ommand is used to configure DVMRP on the Switch Parameters ipif_name 12 The name of the IP interface for which DVMRP is to be configured all Specifies that DVMRP is to be configured for all IP interfa...

Page 306: ...1 probe 5 Command config dvmrp ipif System neighbor_timeout 30 metric 1 probe 5 Success DXS 3326GSR 4 enable dvmrp Purpose Used to enable DVMRP Syntax enable dvmrp Description This command in combinat...

Page 307: ...ting_table Purpose Used to display the current DVMRP routing table Syntax show dvmrp routing table ipaddress network_address Description The command is used to display the current DVMRP routing table...

Page 308: ...sed to display the DVMRP neighbor table Syntax show dvmrp neighbor ipif ipif_name 12 ipaddress network_address Description This command will display the current DVMRP neighbor table Parameters ipif_na...

Page 309: ...etwork_address The IP address and netmask of the destination You can specify the IP address and netmask information using the traditional format or the CIDR format For example 10 1 2 3 255 255 0 0 or...

Page 310: ...ions set on the Switch Parameters ipif_name 12 Using this parameter with this command will display the DVRMP configurations for the specified IP interface Restrictions None Example Usage To show DVMRP...

Page 311: ...IP interface being configured for PIM settings all Used to configure PIM settings for all IP interfaces hello sec 1 18724 The time in seconds between issuing hello packets to find neighboring routers...

Page 312: ...igured for specific IP interfaces using the config pim command Parameters None Restrictions Only administrator level users can use this command Usage Example To enable PIM as previously configured on...

Page 313: ...hich you want to view the PIM neighbor router table ipaddress network_address The IP address and netmask of the destination routing device for which you want to view the neighbor router table You can...

Page 314: ...s ipif ipif_name 12 The name of an IP interface for which PIM settings are listed If no parameters are specified all PIM settings are displayed for all interfaces Restrictions None Usage Example To di...

Page 315: ...s show ipmc cache Used to display the current IP multicast forwarding cache Syntax show ipmc cache group group ipaddress network_address Description This command will display the current IP multicast...

Page 316: ...Parameters ipif_name 12 The name of the IP interface for which you want to display the IP multicast interface table for protocol Allows the user to specify whether or not to use one of the available...

Page 317: ...Gigabit Layer 3 Switch DXS 3326GSR 4 show ipmc ipif System protocol dvmrp Command show ipmc ipif System protocol dvmrp Interface Name IP Address Multicast Routing System 10 90 90 90 DVMRP Total Entrie...

Page 318: ...ate md5 key key_id 1 255 password 16 Description This command is used to create an entry for the MD5 key table Parameters key_id 1 255 The MD5 key ID The user may enter a key ranging from 1 to 255 pas...

Page 319: ...5 key Purpose Used to delete an entry in the MD5 key table Syntax delete md5 key key_id 1 255 Description This command is used to delete a specific entry in the MD5 key table Parameters key_id 1 255 T...

Page 320: ...table by Entering this command without this parameters will display all md5 keys set Restrictions None Usage Example To display the current MD5 key DXS 3326GSR 4 show md5 Command show md5 MD5 Key Tab...

Page 321: ...area_id network_address lsdb_type summary advertise enabled disabled delete ospf aggregation area_id network_address lsdb_type summary config ospf aggregation area_id network_address lsdb_type summar...

Page 322: ...ctions config ospf router_id Purpose Used to configure the OSPF router ID Syntax config ospf router_id ipaddr Description This command is used to configure the OSPF router ID Parameters ipaddr The IP...

Page 323: ...itch Parameters None Restrictions Only administrator level users can issue this command Usage Example To disable OSPF on the Switch DXS 3326GSR 4 disable ospf Command disable ospf Success DXS 3326GSR...

Page 324: ...Metric Status System 10 90 90 90 8 0 0 0 0 Disabled Link DOWN 1 ip2 20 1 1 1 8 0 0 0 0 Disabled Link DOWN 1 ip3 30 1 1 1 8 0 0 0 0 Disabled Link DOWN 1 Total Entries 3 OSPF Area Settings Area ID Type...

Page 325: ...ype normal stub stub_summary enable disable metric value 0 65535 Description This command is used to create an OSPF area and configure its settings Parameters area_id The OSPF area ID The user may ent...

Page 326: ...in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain Restrictions Only administrator level users can issue this command Usage Example To delete an OSP...

Page 327: ...mmand Usage Example To configure an OSPF area s settings DXS 3326GSR 4 config ospf area 10 48 74 122 type stub stub_summary enable metric 1 Command config ospf area 10 48 74 122 type stub stub_summary...

Page 328: ...st route settings Parameters ipaddr The host s IP address area_id A 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain metric value 1...

Page 329: ...settings Syntax config ospf host_route ipaddr area area_id metric value Description This command is used to configure an OSPF host route settings Parameters ipaddr The IP address of the host area_id...

Page 330: ...f aggregation Used to configure OSPF area aggregation settings Syntax create ospf aggregation area_id network_address lsdb_type summary advertise enable disable Description This command is used to cre...

Page 331: ...iquely identifies the OSPF area in the OSPF domain network_address The 32 bit number in the form of an IP address that uniquely identifies the network that corresponds to the OSPF Area lsdb_type summa...

Page 332: ...tions Only administrator level users can issue this command Usage Example To configure the OSPF area aggregation settings DXS 3326GSR 4 config ospf aggregation 10 1 1 1 10 48 76 122 16 lsdb_type summa...

Page 333: ...ummary assummary asextlink Description This command will display the current OSPF Link State Database LSDB Parameters area_id area_id A 32 bit number in the form of an IP address xxx xxx xxx xxx that...

Page 334: ...0 8 1 0x80000001 ASExtLink 50 48 75 73 1 2 0 0 16 20 0x80000001 Total Entries 5 DXS 3326GSR 4 show ospf neighbor Purpose Used to display the current OSPF neighbor router table Syntax show ospf neighb...

Page 335: ...neighbor table DXS 3326GSR 4 show ospf virtual_neighbor Command show ospf virtual_neighbor Transit Router ID of IP Address of Virtual Neighbor Area ID Virtual Neighbor Virtual Neighbor State 10 1 1 1...

Page 336: ...of the metric authentication Enter the type of authentication preferred The user may choose between metric value 1 65535 This field allows the entry of a number between 1 and 65 535 that is represent...

Page 337: ...llows the specification of the interval between the transmission of OSPF Hello packets in seconds Between 1 and 65535 seconds can be specified The Hello Interval Dead Interval Authorization Type and A...

Page 338: ...ion Usage Example To display the current OSPF interface settings for a specific OSPF interface DXS 3326GSR 4 show ospf ipif ipif2 Command show ospf ipif ipif2 Interface Name ipif2 IP Address 123 234 1...

Page 339: ...AST Metric 1 Area ID 1 0 0 0 Administrative State Enabled Priority 1 DR State DR DR Address 123 234 12 34 Backup DR Address None Hello Interval 10 Dead Interval 40 Transmit Delay 1 Retransmit Time 5 A...

Page 340: ...ser may choose between md5 key_id 1 255 Choosing this parameter will set authentication based on md5 encryption A previously configured MD5 key ID 1 to 255 is required Restrictions none Choosing this...

Page 341: ...m a neighbor router before the selected area declares that router down An interval between 1 and 65535 seconds can be specified The Dead Interval must be evenly divisible by the Hello Interval simple...

Page 342: ...virtual interface from the Switch DXS 3326GSR 4 delete ospf virtual_link 10 1 12 20 1 1 1 Command delete ospf virtual_link 10 1 12 20 1 1 1 Success DXS 3326GSR 4 show ospf virtual_link Purpose Used t...

Page 343: ...igabit Layer 3 Switch DXS 3326GSR 4 show ospf virtual_link Transit Virtual Hello Dead Authentication Link Area ID Neighbor Router Interval Interval Status 10 0 0 0 20 0 0 0 10 60 None DOWN Total Entri...

Page 344: ...choice for routing purposes and the next most reliable path is Static due to the fact that its has the next lowest value To set a higher reliability for a route change its value to a number less than...

Page 345: ...th for routing packets Only administrator level users can issue this command Description static Choose this parameter if you wish to configure the preference value for the static route rip Choose this...

Page 346: ...r the RIP route ospfIntra Enter this parameter if you wish to view the route preference settings for the Ospf Intra route ospfInter Enter this parameter if you wish to view the route preference settin...

Page 347: ...Layer 3 Switch Example usage To view the route preference values for the RIP route DXS 3326GSR 4 show route preference rip Command show route preference rip Route Preference Settings Route Type Prefer...

Page 348: ...le jumbo_frame show jumbo_frame Each command is listed in detail in the following sections enable jumbo_frame Purpose Used to enable the jumbo frame function on the Switch Syntax enable jumbo_frame De...

Page 349: ...ame Success DXS 3326GSR 4 show jumbo_frame Purpose Used to show the status of the jumbo frame function on the Switch Syntax show jumbo_frame Description This command will show the status of the jumbo...

Page 350: ...lay all of the commands available through the Command Line Interface CLI Restrictions None Parameters None Example usage To display all of the commands in the CLI DXS 3326GSR 4 config account clear cl...

Page 351: ...tag 2 login Command show command_history show show vlan config router_ports vlan2 add config router_ports vlan2 show vlan create vlan vlan2 tag 3 show router_ports show router ports DXS 3326GSR 4 con...

Page 352: ...DXS 3326GSR Stackable Gigabit Layer 3 Switch DXS 3326GSR 4 config command_history 20 Command config command_history 20 Success DXS 3326GSR 4 344...

Page 353: ...us Humidity Operating 5 to 95 RH non condensing Storage 0 to 95 RH non condensing Dimensions 445 mm x 430 mm x 45 mm Weight 5 5 kg EMC FCC Part 15 Class A IECES 003 Class Canada EN55022 Class A EN5502...

Page 354: ...screened twisted pair STP 100m 10BASE T 100BASE TX UTP Cat 5 for 100Mbps UTP Cat 3 4 5 for 10Mbps Number of Ports 24 SFP ports 4 1000BASE T Combo ports 2 10 Gigabit stacking ports Performance Transmis...

Reviews: