manualshive.com logo in svg

D-Link DXS-3600-16S, Manual

The D-Link DXS-3600-16S is a high-performance switch with advanced features. Unlock its full potential with our comprehensive user manual, available for download free of charge at manualshive.com. This manual offers step-by-step instructions and valuable insights for seamless integration and optimized performance of your DXS-3600-16S.

Share
Download
background image

DXS-3600 Series 10GbE Layer 2/3 Switch CLI Reference Guide

19

3-4  permit | deny (ip extended access-list)

Use the 

permit

 command to add a permit entry. Use the 

deny

 command to add a deny entry. Use the no command to 

remove a specific entry.

Extended IP ACL:

[

sn

] {permit | deny} 

protocol

 {

source source-wildcard

 | host 

source

 | any} {

destination destination-wildcard

 | host 

destination

 | any} [precedence 

precedence

] [tos 

tos

] [

fragments

] [time-range 

time-range-name

Extended IP ACLs of some important protocols:

[

sn

] {permit | deny} tcp {

source source-wildcard

 | host 

source

 | any} [

operator port

] {

destination destination-

wildcard

 | host 

destination

 | any} [

operator port

] [

tcp-flag

] [precedence 

precedence

] [tos 

tos

] [

fragments

[time-range 

time-range-name

[

sn

] {permit | deny} udp {

source source–wildcard

 | host 

source

 | any} [

operator port

] {

destination destination-

wildcard

 | host 

destination

 | any} [

operator port

] [precedence 

precedence

] [tos 

tos

] [

fragments

] [time-range 

time-range-name

]

[

sn

] {permit | deny} icmp {

source source-wildcard

 | host 

source

 | any} {

destination destination-wildcard

 | host 

destination

 | any} [{

icmp-type

 [

icmp-code

] | 

icmp-message

}] [precedence 

precedence

] [tos 

tos

] [

fragments

[time-range 

time-range-name

]

no 

sn

Parameters

Usage Guideline

Extended IP ACL only filters IPv4 packets.
The name must be unique among all (including MAC, IP, IPv6 or Expert) access-lists 
and the first character of the name must be a letter.

When creating an ACL through assigning a name, an ID will be assigned 
automatically. The ID assignment rule will start from the maximum ID of 3999 and 
decrease 1 per new ACL.

When creating an ACL through assigning an ID, a name will be assigned 
automatically. The name assignment rule is ‘ext-ip’ + “-” + ID. If this name conflicts 
with the name of an existing ACL, then it will be renamed based on the following rule: 
‘ext-ip’ + “-” + ID +”alt”.

Example

This example shows how to create an extended ACL.

DXS-3600-32S#configure terminal

DXS-3600-32S(config)#ip access-list extended Ext-ip

DXS-3600-32S(config-ext-nacl)#end

DXS-3600-32S#show access-list

Standard IP access list 1998 Std-acl

    10 permit 10.20.0.0 0.0.255.255

Standard IP access list 1999 Std-ip

Extended IP access list 3999 Ext-ip

DXS-3600-32S#

sn

(Optional) Specifies the ACE sequence number used. This number must be between 
1 and 65535.

protocol

Specifies the name or number of an IP protocol: 'eigrp', 'esp', 'gre', 'igmp', 'ip', 'ipinip', 
'ospf', 'pcp', 'pim', 'tcp', 'udp', 'icmp' or an integer in the range 0 to 255 representing 
an IP protocol number. To match any Internet protocol. Additional specific 
parameters for ‘tcp’, ‘udp’, and ‘icmp’. The ‘ip’ means any IP Protocol.

source

Specifies the source IP address.

source-wildcard

Applies wildcard bits to the source.

host 

source

Specifies a specific source IP address.

any

Means any source or destination IP address.

Summary of Contents for DXS-3600-16S

Page 1: ...CLI Reference Guide Product Model DXS 3600 Series Layer 2 3 Managed 10GbE Switch Release 1 10 ...

Page 2: ... principles for Local Area Networks Document Layout Other Documentation The documents below are a further source of information in regards to configuring and troubleshooting the switch All the documents are available either from the CD bundled with this switch or from the D Link website Other documents related to this switch are DXS 3600 Series Hardware Installation Guide DXS 3600 Series Web UI Re...

Page 3: ... available in the command line interface CLI The set of commands available to the user depends on both the mode the user is currently in and their privilege level For each case the user can see all the commands that are available in a particular command mode by entering a question mark at the system prompt The command line interface has five privilege levels Basic User Privilege Level 1 This user ...

Page 4: ...e information on the additional sub configuration modes the user should refer to the chapters relating to these functions The available command modes and privilege levels are described below Command Mode Privilege Level Purpose User EXEC Mode Basic User level This level has the lowest priority of the user accounts It is provided only to check basic system settings Privileged EXEC Mode Advanced Use...

Page 5: ...ivileged EXEC Mode at Administrator Level This command mode has a privilege level of 15 Users logged in with this command mode can monitor all system information and change any system configuration settings mentioned in this Configuration Guide The method to enter privileged EXEC mode at administrator level is to login to the Switch with a user account that has a privilege level of 15 Global Confi...

Page 6: ...face configuration mode is distinguished further according to the type of interface The command prompt for each type of interface is slightly different VLAN Interface Configuration Mode VLAN interface configuration mode is one of the available interface modes and is used to configure the parameters of a VLAN interface To access VLAN interface configuration mode use the following command in global ...

Page 7: ... Protocol GVRP Commands 251 Internet Group Management Protocol IGMP Commands 257 IGMP Snooping Commands 266 Interface Commands 281 IP Access List Commands 284 IP Address Commands 287 IP Prefix List Commands 290 IP Multicast IPMC Commands 294 LINE Commands 301 Link Aggregation Commands 303 Link Layer Discovery Protocol LLDP Commands 309 LLDP DCBX Commands 327 LLDP MED Commands 332 Memory Commands 3...

Page 8: ...84 TACACS Commands 591 TELNET Commands 595 Time Range Commands 597 Traffic Segmentation Commands 599 Upgrade and Maintenance Commands 601 Virtual LAN VLAN Commands 603 Virtual Private LAN Service VPLS Commands 616 Virtual Private Wire Service VPWS Commands 628 Virtual Router Redundancy Protocol VRRP Commands 632 VLAN Mapping Commands 642 VLAN Tunnel Commands 646 VRF Lite Commands 653 Weighted Rand...

Page 9: ...rd and question mark This form of help is called command syntax help because it lists the keywords or arguments that apply based on the command keywords and arguments you have already entered Note To complete a partial command name enter the abbreviated command name followed by a Tab key Example show addr Tab To enter the character in the command argument press Ctrl V immediately followed by the c...

Page 10: ...re Example This example shows how to use the command syntax help to display the next argument of a partially completed ip access list standard command The characters entered before the question mark is reprinted on the next command line to allow the user to continue entering the command DXS 3600 32S configure terminal DXS 3600 32S config ip access list standard WORD Access list name the first char...

Page 11: ...to complete the type To reset the login banner contents to default use the no banner login command in global configuration mode Note The typed additional characters after the end delimiting character are invalid These characters will be discarded by the system The delimiting character can not be used in the text of login banner Example This example shows how to configure the login banner The hash ...

Page 12: ...nt will logout if there is another session running it will be closed Use the exit command in any configuration mode to the next highest mode in the CLI mode hierarchy For example use the exit command in global configuration mode to return to privileged mode Example This example shows how to exit from the Line Configuration Mode to return to the Global Configuration Mode and exit from the Global Co...

Page 13: ... be used in any mode but if the current located mode is the highest mode in the CLI mode hierarchy Exec Mode Privileged Mode executing this command will not have any effect If the current located mode is any configuration mode execute this command will return to the privileged mode Example This example shows how to use the end command in the Line Configuration Mode to return to the privileged mode...

Page 14: ...ication state on the port Disabled Command Mode Interface Configuration Mode Command Default Level Level 8 Usage Guideline This command is used to reset all the IEEE 802 1X parameters on a specific port to their default settings Example This example shows how to reset the 802 1X parameters on port 1 DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S...

Page 15: ...ort control force unauthorized DXS 3600 32S config if Parameters None Default The 802 1X is disabled on a port by default Command Mode Interface Configuration Mode Command Default Level Level 8 Usage Guideline You must also globally enable IEEE 802 1X authentication on the switch by using the dot1x system auth control command Example This example shows how to configure port 1 as an IEEE 802 1X PAE...

Page 16: ...thentication process The range is 0 to 65535 reauth period sec 1 65535 Number of seconds between re authentication attempts The range is 1 to 65535 server timeout sec 1 65535 Number of seconds that the switch will wait for the request from the authentication server before timing out the server The range is 1 to 65535 supp timeout sec 1 65535 Number of seconds that the switch will wait for the resp...

Page 17: ...meout quiet period 20 DXS 3600 32S config if dot1x timeout reauth period 1000 DXS 3600 32S config if dot1x timeout server timeout 15 DXS 3600 32S config if dot1x timeout supp timeout 15 DXS 3600 32S config if dot1x timeout tx period 10 DXS 3600 32S config if max req int 1 10 Number of times that the switch retransmits an EAP frame to the supplicant before restarting the authentication process The ...

Page 18: ...nterfaces are physical ports mac address mac address Optional Specifies a MAC address to re authenticate The function can be used only if the authentication mode is host based Default This command has no default value Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline Under port based mode use the parameter interface interface id to re authenticate a specific port...

Page 19: ... initialize the authenticator state machine on Ethernet port 1 DXS 3600 32S configure terminal DXS 3600 32S config dot1x initialize interface tenGigabitEthernet 1 0 1 DXS 3600 32S config Parameters None Default 802 1X is disabled globally by default Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline Use this command to enable 802 1X authentication globally Example...

Page 20: ...arned via 802 1X authentication on a port is 16 Command Mode Interface Configuration Mode Command Default Level Level 8 Usage Guideline The setting is an interface limitation on the maximum number of users that can be learned via 802 1X authentication In addition to the interface limitation the global maximum number of users is also limited Example This example shows how to configure the maximum n...

Page 21: ...lobally or for a port and if 802 1X is set to forward EAPOL PDUs both globally and for the port a received EAPOL packet on the port will be flooded in the same VLAN to those ports which have 802 1X forwarding EAPOL PDUs and 802 1X is disabled globally or just for the port 802 1X can not forward EAPOL PDUs on all ports by default Example This example shows how to enable the forwarding of EAPOL PDUs...

Page 22: ...enGigabitEthernet1 0 1 Capability None AdminCrlDir Both OperCrlDir Both Port Control Auto QuietPeriod 60 sec TxPeriod 30 sec SuppTimeout 30 sec ServerTimeout 30 sec MaxReq 2 times ReAuthPeriod 3600 sec ReAuthenticate Disabled Forward EAPOL PDU On Port Disabled Max User On Port 16 DXS 3600 32S Example This example shows how to display the 802 1X authentication state DXS 3600 32S show dot1x auth sta...

Page 23: ... 03 DXS 3600 32S Example This example shows how to display the 802 1X diagnostics for the interface TenGigabitEthernet1 0 1 DXS 3600 32S show dot1x interface tenGigabitEthernet 1 0 1 diagnostics MAC Address 00 00 00 00 00 02 Interface TenGigabitEthernet1 0 1 EntersConnecting 20 EapLogoffsWhileConnecting 0 EntersAuthenticating 0 SuccessWhileAuthenticating 0 TimeoutsWhileAuthenticating 0 FailWhileAu...

Page 24: ...DXS 3600 32S show dot1x interface tenGigabitEthernet 1 0 1 session statistics MAC Address 00 00 00 00 00 02 Interface TenGigabitEthernet1 0 1 SessionOctetsRx 0 SessionOctetsTx 0 SessionFramesRx 0 SessionFramesTx 0 SessionId ether1_1 1 SessionAuthenticMethod Remote Authentication Server SessionTime 3 SessionTerminateCause NotTerminatedYet SessionUserName user_test DXS 3600 32S ...

Page 25: ...f the standard IP access list to be configured The name can be up to 32 characters Default None Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline Standard IP ACL only filters the IPv4 packet The name must be unique among all including MAC IP IPv6 or Expert access lists and the first character of name must be a letter When creating an ACL through assigning a name...

Page 26: ... address bits must be considered exact match a 1 in the mask is not considered host source Specifies a specific source IP address any Means any source IP address Default None Command Mode Standard IP Access list Configuration Mode Command Default Level Level 12 Usage Guideline A sequence number will be assigned automatically if the user does not assign it manually The automatically assign sequence...

Page 27: ... MAC IP IPv6 or Expert access lists and the first character of the name must be a letter When creating an ACL through assigning a name an ID will be assigned automatically The ID assignment rule will start from the maximum ID of 3999 and decrease 1 per new ACL When creating an ACL through assigning an ID a name will be assigned automatically The name assignment rule is ext ip ID If this name confl...

Page 28: ...le associated with the access list delineating its activation period tcp flag Optional Specifies the TCP flag fields The specified TCP header bits are ack acknowledge fin finish psh push rst reset syn synchronize or urg urgent icmp type Optional Specifies the ICMP message type The valid number for the message type is from 0 to 255 icmp code Optional Specifies the ICMP message code The valid number...

Page 29: ...igure terminal DXS 3600 32S config ip access list extended Ext ip DXS 3600 32S config ext nacl deny tcp host 192 168 4 12 192 168 1 0 0 0 255 255 eq telnet DXS 3600 32S config ext nacl permit ip any any DXS 3600 32S config ext nacl end DXS 3600 32S show access list Extended IP access list 3999 Ext ip 10 deny tcp host 192 168 4 12 192 168 1 0 0 0 255 255 eq telnet 20 permit ip any any DXS 3600 32S ...

Page 30: ...v6 address Specifies the source IPv6 address destination ipv6 address Specifies the destination IPv6 address any Means any source or destination IPv6 address operator Optional Possible operators include eq equal gt greater than lt less than neq not equal and range inclusive range Note that the range operator needs two port numbers while other operators only need one port number port Specifies the ...

Page 31: ...lue must be between 0 and 1048575 Default None Command Mode IPv6 Access list Configuration Mode Command Default Level Level 12 Usage Guideline A sequence number will be assigned automatically if the user did not assign it manually Automatic assignment of sequence numbers start from 10 and increases by 10 for every new entry Example This example shows how to use the IPv6 ACL The purpose is to deny ...

Page 32: ...32S configure terminal DXS 3600 32S config mac access list extended 6001 DXS 3600 32S config mac nacl end DXS 3600 32S show access list Extended IP access list 3999 ext_ipv6 10 permit ip any any Extended MAC access list 6001 ext mac 6001 DXS 3600 32S sn Optional Specifies the ACE sequence number This number must be between 1 and 65535 source mac address Specifies the source MAC address destination...

Page 33: ...999 name Specifies the name of the extended expert ACL to be configured The name can be up to 32 characters long Default None Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline The name must be unique among all including MAC IP IPv6 or Expert access lists and the first character of name must be a letter When creating an ACL through the assignment of a name an ID ...

Page 34: ...dress any operator port precedence precedence tos tos fragments time range time range name sn permit deny icmp vlan out inner in source source wildcard host source any source mac address mask host source mac address any destination destination wildcard host destination any destination mac address mask host destination mac address any icmp type icmp type icmp code icmp message precedence precedence...

Page 35: ...lity 2 max throughput 4 min delay 8 min monetary cost 1 fragments Optional Specifies packet fragment filtering time range time range name Optional Specifies the name of the time period profile associated with the access list delineating its activation period tcp flag Optional Specifies the TCP flag fields The specified TCP header bits can be ack acknowledge fin finish psh push rst reset syn synchr...

Page 36: ...r must be between 1 and 3999 name Specifies the name of the IP ACL to be configured The name can be up to 32 characters long start sn Specifies the start sequence number inc sn Specifies the sequence step value Default The start sequence number is 10 and the sequence step is 10 Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline Sequence numbers for the entries in...

Page 37: ... Example This example shows how to add a remark in an ACL DXS 3600 32S configure terminal DXS 3600 32S config ip access list extended ip ext acl DXS 3600 32S config ext nacl list remark this acl is to filter the host 192 168 4 12 DXS 3600 32S config ext nacl end DXS 3600 32S show access list Extended IP access list 3999 ip ext acl 10 deny tcp host 192 168 4 12 this acl is to filter the host 192 16...

Page 38: ...e internet tos 14 Extended IP access list 2011 ext ip 2011 10 deny ip 5 5 5 5 0 0 255 255 host 7 7 7 5 fragments precedence internet tos 5 Extended IP access list 2111 ext ip 2111 10 deny ip 5 5 5 5 0 0 255 255 host 7 7 7 5 precedence critical tos 6 Extended IP access list 3111 ext ip 3111alt Extended IP access list 3994 ext ip 3111 Extended IPv6 access list ipv6 11 10 deny tcp host 1 2 3 eq 655 h...

Page 39: ...enGigabitEthernet 1 0 5 Interface tenGigabitEthernet 1 0 5 ip access group ip ext acl in DXS 3600 32S name Specifies the name of the IPv6 ACL to be configured The name can be up to 32 characters long in Specifies to filter the incoming packets of the interface out Specifies to filter the outgoing packets of the interface Default None Command Mode Interface Configuration Mode Command Default Level ...

Page 40: ...12 Usage Guideline Only one MAC ACL can be attached to an ingress physical port or egress physical port Applying or binding an ACL to an interface will fail if there is any criteria statements that are not supported An error message Do not support fields will be displayed and all unsupported criteria statements of the ACL type will be listed Example This example shows how to apply a MAC ACL to an ...

Page 41: ...t are not supported An error message Do not support fields will be displayed and all unsupported criteria statements of the ACL type will be listed Example This example shows how to apply an expert ACL to an interface The purpose is to apply the ACL exp_acl attribute to the tenGigabitEthernet 1 0 2 interface to filter incoming packets DXS 3600 32S configure terminal DXS 3600 32S config interface t...

Page 42: ... in ip access group std ip 1 out mac access group 6005 in mac access group ext mac 6000 out DXS 3600 32S interface interface Specifies the interface ID used Default None Command Mode EXEC Mode Command Default Level Level 1 Usage Guideline Displays the IP ACL applied to the interface If no interface is specified the IP ACLs applied to all the interfaces will be displayed Example This example shows ...

Page 43: ... 1 out DXS 3600 32S interface interface Specifies the interface ID used Default None Command Mode EXEC Mode Command Default Level Level 1 Usage Guideline Displays the MAC ACL applied to the interface If no interface is specified the MAC ACLs applied to all the interfaces will be displayed Example This example shows how to display the MAC ACL applied to the interface DXS 3600 32S show mac access gr...

Page 44: ...Interface tenGigabitEthernet 1 0 2 expert access group exp1 in DXS 3600 32S map_name Specifies the name of the hostmap to be configured The name can be up to 32 characters long map_sn Specifies the sequence number of the submap Default None Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline A sequence number will be assigned automatically if the user did not assi...

Page 45: ...re matching content in the submap DXS 3600 32S config vlan access map vlan map 20 DXS 3600 32S config access map match ip address 10 20 sp1 30 sp2 DXS 3600 32S config access map end DXS 3600 32S show vlan access map VLAN access map vlan map 20 match ip address 10 20 sp1 30 sp2 action forward DXS 3600 32S configure terminal DXS 3600 32S config vlan access map vlan map 30 DXS 3600 32S config access ...

Page 46: ...S 3600 32S config access map action redirect tenGigabitEthernet 1 0 5 DXS 3600 32S config access map end DXS 3600 32S show vlan access map VLAN access map vlan map 20 match mac address 6710 6720 ext_mac 7760 action redirect tenGigabitEthernet 1 0 5 DXS 3600 32S map_name Specifies the name of the hostmap vlan_id Specifies the VLAN ID used Default None Command Mode Global Configuration Mode Command ...

Page 47: ... 220 stp_ip1 30 stp_ip2 action forward VLAN access map vlan map 20 match mac access list 6710 6720 ext_mac 7760 action redirect tenGigabitEthernet 1 0 5 DXS 3600 32S access_map map_name Specifies the name of the hostmap to be configured The name can be up to 32 characters long vlan vlan_id Specifies the VLAN ID used Default None Command Mode EXEC Mode Command Default Level Level 1 Usage Guideline ...

Page 48: ... Default There is no static ARP entry in the ARP cache table Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline This command adds a static ARP mapping entry to the system If this dynamic ARP entry already exists it will be replaced by the static ARP entry If the new entry contains a different MAC address from the old one the new entry will cover the old one Using ...

Page 49: ...ows how to tonfigure the timeout value for the dynamic ARP mapping record to 120 minutes DXS 3600 32S configure terminal DXS 3600 32S config arp timeout 120 DXS 3600 32S config Example This example shows how to restore the timeout value for the dynamic ARP mapping record to 20 minutes DXS 3600 32S config no arp timeout DXS 3600 32S config vrf Specifies the VRF that the IP reside in If no VRF name ...

Page 50: ...e specified MAC address static Optional Specifies to display all the static ARP entries complete Optional Specifies to display all the resolved dynamic ARP entries Default All entries in the ARP cache table will be displayed if no option is specified Command Mode Privileged Mode Command Default Level Level 3 Usage Guideline Use this command to display the ARP cache table Static and complete is mut...

Page 51: ... 12 21 12 21 18 Static System 10 1 1 8 00 12 21 12 21 48 Static System 10 1 1 9 00 05 5D A5 32 3F Dynamic Total Entries 3 DXS 3600 32S Example This example shows how to display the ARP cache table containing static types for the netmask 10 1 0 0 255 255 0 0 DXS 3600 32S show arp 10 1 0 0 255 255 0 0 static ARP timeout is 20 minutes Interface IP Address MAC Address Type System 10 1 1 5 00 12 21 12 ...

Page 52: ... 00 12 21 12 21 48 Static Total Entries 2 DXS 3600 32S Example This example shows how to display the ARP cache table containing all the completed entries DXS 3600 32S show arp complete ARP timeout is 20 minutes Interface IP Address MAC Address Type System 10 1 1 9 00 05 5D A5 32 3F Dynamic Total Entries 1 DXS 3600 32S vrf Specifies the VRF that the IP reside in If no VRF name is specified the glob...

Page 53: ...ch DXS 3600 32S show arp timeout ARP timeout is 20 minutes DXS 3600 32S vrf Specifies the VRF that the IP reside in If no VRF name is specified the global instance will be used Default None Command Mode Privileged Mode Command Default Level Level 3 Usage Guideline Use this command to display the Address Resolution Protocol ARP cache table Example This example shows how to display the Address Resol...

Page 54: ...alternate store and forward mode Example This example shows how to enable ASF DXS 3600 32S configure terminal DXS 3600 32S config enable asf DXS 3600 32S config Parameters None Default Alternate store and forward feature is disabled Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline Use this command to disable the alternate store and forward mode Example This exa...

Page 55: ...XS 3600 Series 10GbE Layer 2 3 Switch CLI Reference Guide 47 Example This example shows how to display the current settings for ASF DXS 3600 32S show asf Alternate Store and Forward Disabled DXS 3600 32S ...

Page 56: ...figure terminal DXS 3600 32S config aaa DXS 3600 32S config 7 2011 11 14 11 55 14 INFO 6 Authentication Policy is enabled Module AAA DXS 3600 32S config default When this parameter is used the following defined authentication method list is used as the default method for Login authentication list name Name of the user authentication method list After the user defined authentication method list cre...

Page 57: ...can use the Login Authentication Line Configuration command to apply this method list to the console SSH or other terminals DXS 3600 32S configure terminal DXS 3600 32S config aaa authentication login list 1 group radius local DXS 3600 32S config default When this parameter is used the following defined authentication method list is used as the default method for enable authentication method Synta...

Page 58: ...nable default group radius local DXS 3600 32S config default Apply the default Login authentication method list to the terminal line list name Apply the defined Login authentication method list to the terminal line Default Uses the default set with the aaa authentication login command Command Mode Line Configuration Mode Command Default Level Level 15 Usage Guideline Once the default login authent...

Page 59: ...ult value is disabled Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline It supports authorization of users logged in the NAS CLI and assignment of CLI authority level 0 15 The aaa authorization exec function is effective on condition that Login authentication function has been enabled It can not enter the CLI if it fails to enable the aaa authorization exec You ...

Page 60: ...authorization Default The default value is disabled Command Mode Line Configuration Mode Command Default Level Level 15 Usage Guideline Once the default exec authorization method list has been configured it is applied to all terminals automatically Once the non default command authorization method list has been configured it is applied to the line instead of the default method list If you attempt ...

Page 61: ...bles the exec accounting function after enabling the login authentication After enabling the accounting function it sends the account start information to the security server when the users log in the NAS CLI and sends the account stop information to the security server when the users log out If it does not send the account start information to the security server when a user logs in it does not s...

Page 62: ...RADIUS server If the security server does not response it will not perform accounting After the configuration EXEC accounting is applied to the console After applying the login method list list 1 to the console when a user logs in from the console it sends the account start information to the security server when the user has logged into the NAS s CLI It also sends the account stop information to ...

Page 63: ...gin list 1 local DXS 3600 32S config aaa authorization exec list 1 local DXS 3600 32S config ip http authentication aaa login authentication list 1 DXS 3600 32S config ip http authentication aaa exec authorization list 1 DXS 3600 32S config Parameters The range is between 1 and 255 Default The default value is 3 Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline ...

Page 64: ...entication group Specifies to be followed by radius or a group name group radius means to use all RADIUS servers group group group_name means to use a specific RADIUS group created by means of the aaa group server radius global configuration command Default None Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline If the AAA network access security service such as ...

Page 65: ...ed users or interfaces will be authorized automatically Three different authorization methods can be specified If the access user authenticated method is specified in authorization method list the authorization attributes will be applied otherwise these attributes will be ignored Authenticated by method Authorization configure method Accept authorization attributes group radius group radius Yes gr...

Page 66: ... this feature is disabled Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline It performs accounting of user activities by sending record attributes to the security server Use the keyword start stop to set the user accounting option Example This example shows how to perform the accounting of a network service request from users using RADIUS and sends accounting me...

Page 67: ...S config aaa group server radius group 1 DXS 3600 32S config sg radius server 192 168 4 12 Warning Server 192 168 4 12 is not defended DXS 3600 32S config sg radius Parameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 15 Usage Guideline Use this command to show AAA security service global configuration Example This example shows how to display the global confi...

Page 68: ...AAA server group configuration Example This example shows how to display the AAA server group configuration DXS 3600 32S show aaa server group Group Name Type IP Address Authen_R RADIUS 10 10 10 1 10 10 10 2 Author_T TACACS 10 10 10 20 10 10 10 25 Authen_1X RADIUS 10 90 90 100 3 total server group s DXS 3600 32S Display Parameters Description Group Name Name of AAA serve group Type Type of Server ...

Page 69: ...on method list name Priority Priority of authentication method Method Name Name of authentication method exec Display the Exec authorization method list network Display the Network authorization method list Default None Command Mode Privileged EXEC Mode Command Default Level Level 15 Usage Guideline Use this command to display the AAA authorization method list Example This example shows how to dis...

Page 70: ...Level 15 Usage Guideline Use this command to display the AAA accounting method list Example This example shows how to display the AAA EXEC accounting method list DXS 3600 32S show aaa accounting exec Method List Priority Method Name default 1 RADIUS acct_ssh 1 Acct_R DXS 3600 32S Display Parameters Description Method List Accounting method list name Priority Priority of accounting method Method Na...

Page 71: ...horization Method List default Accounting Method List default Telnet Login Method List login_list_1 Enable Method List default Authorization Method List author_list_1 Accounting Method List SSH Login Method List login_list_2 Enable Method List default Authorization Method List Accounting Method List acct_list_1 HTTP Login Method List login_list_1 Authorization Method List author_list_1 Network Acc...

Page 72: ...Level 15 Usage Guideline Use this command to specify a VRF for an AAA RADIUS or TACACS server group This command enables dial access users to utilize AAA servers in different routing domains Example The following example shows how to configure the VRF user to reference the RADIUS server in a different VRF server group DXS 3600 32S configure terminal DXS 3600 32S config aaa group server radius sg_g...

Page 73: ...configuration parameters can be set in different address family modes The IPv4 VRF address family mode is used to configure the BGP instance relation to every VRF instance If no parameters are specified it will enter the IPv4 unicast address family mode Please note that only eBGP peers are supported in the IPv4 VRF address family To exit from the address family configuration mode use the exit addr...

Page 74: ...mask that BGP will aggregate For example the format of NETWORK ADDRESS can be 10 9 18 2 8 summary only Optional Filters all more specific routes from updates as set Optional Generates autonomous system set path information Default None Command Mode Router Configuration Command Default Level Level 8 EI Mode Only Command Usage Guideline Aggregates are used to minimize the size of routing tables Aggr...

Page 75: ...ack If multiple loopback interfaces are configured the loopback with the highest IP address is used If no loopback interface is configured the router ID is set to the highest IP address on a physical interface Command Mode Router Configuration Command Default Level Level 8 EI Mode Only Command Usage Guideline The bgp router id command is used to configure a fixed router ID for a local BGP routing ...

Page 76: ...nly Command Usage Guideline The MED as stated in RFC 1771 is an optional non transitive attribute that is a four octet non negative integer The value of this attribute may be used by the BGP best path selection process to discriminate among multiple exit points to a neighboring autonomous system The MED is one of the parameters that are considered when selecting the best path among many alternativ...

Page 77: ...shortest AS PATH list is preferred If still cannot determine the preferred route then lowest origin type is preferred If still cannot determine the preferred route then the lowest MED is preferred If still cannot determine the preferred route eBGP is preferred over iBGP paths Prefer the path with the lowest IGP metric to the BGP next hop Determine if multiple paths require installation in the rout...

Page 78: ...ig router bgp 65534 DXS 3600 32S config router bgp bestpath compare confed aspath DXS 3600 32S config router Parameters None Default BGP receives routes with identical eBGP paths from eBGP peers and selects the first route received as the best path Command Mode Router Configuration Command Default Level Level 8 EI Mode Only Command Usage Guideline When comparing similar routes from peers the BGP r...

Page 79: ... entering show ip bgp parameters command Example This example shows how the BGP routing process is configured to compare MED values for paths learned from confederation peers DXS 3600 32S configure terminal DXS 3600 32S config router bgp 65534 DXS 3600 32S config router bgp bestpath med confed DXS 3600 32S config router Parameters None Default By default this option is disabled Command Mode Router...

Page 80: ... Mode Router Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline When a single route reflector is deployed in a cluster and the cluster ID of the route reflector is 0 0 0 0 the cluster is identified by the router ID of the route reflector Otherwise the cluster is identified by the cluster ID This command is used to assign a cluster ID to a route reflector Multiple...

Page 81: ...e single AS into multiple subs ASs External peers interact with the confederation as if it is a single AS Each subs AS is fully meshed within itself and it has connections to other sub ASs within the confederation The next hop Multi Exit Discriminator MED and local preference information is preserved throughout the confederation allowing users to retain a single Interior Gateway Protocol IGP for a...

Page 82: ... DXS 3600 32S config router bgp confederation peers 21 22 23 24 25 DXS 3600 32S config router Example This example shows how to delete part of the AS numbers configured earlier DXS 3600 32S configure terminal DXS 3600 32S config router bgp 100 DXS 3600 32S config router no bgp confederation peers 21 22 DXS 3600 32S config router HALF LIFE Specifies the time in minutes after which the penalty of th...

Page 83: ...0 the route will not be dampened and the update message will be sent again Lastly the max suppress time is the longest time the route may be suppressed So it decides the maximum penalty a route may suffer regardless of the number of times that the prefix is dampened Here is the formula Maximum Penalty Reuse Value 2Max sup press time Half life You can verify your settings by entering the show ip bg...

Page 84: ...Pv4 unicast address family for BGP peer session establishment DXS 3600 32S configure terminal DXS 3600 32S config router bgp 10 DXS 3600 32S config router no bgp default ipv4 unicast DXS 3600 32S config router exit DXS 3600 32S config NUMBER Specifies the range of the local reference This value must be between 0 and 4294967295 Default By default this option is disabled BGP sets the default local p...

Page 85: ... then pick the best paths using the existing rules The comparison is made on a peer neighbor autonomous system basis and then the global basis The grouping and sorting of paths occurs immediately after this command was entered For the correct results all routers in the local autonomous system must have this command enabled or disabled This command can also be configured to enforce a deterministic ...

Page 86: ...eline This command is used to disable or enable the fast external fallover for BGP peering sessions with directly connected external peers The session will immediately reset if a link goes down Only directly connected peering sessions are supported If the BGP fast external fallover is disabled the BGP routing process will wait until the default hold timer expires 3 keepalives to reset the peering ...

Page 87: ...will be cleared and needs to be rebuilt If a soft reconfiguration inbound is enabled then the routing table can be rebuilt based on the stored route update information If a soft reconfiguration inbound is disabled then the local router will send a route refresh request to the neighbor to ask for the route refresh When the inbound session undergoes a soft reset with the prefix filter option and the...

Page 88: ... Guideline This command can be used to initiate a hard reset or soft reset of BGP neighbor sessions If a hard reset is applied to the inbound session the inbound session will be torn down and the local inbound routing table and the remote outbound routing table will be cleared If a soft reset is applied to the inbound session the session will not be rebuilt but the local inbound routing table will...

Page 89: ...needs to be rebuilt If a soft reset inbound is enabled then the routing table can be rebuilt based on the stored route updates information If a soft reset inbound is disabled then the local router will send the route refresh request to the neighbor to ask for the route refresh When the inbound session is soft reset with the prefix filter option and the capability orf prefix list is enabled in the ...

Page 90: ...ing the IP address Default None Command Mode Privileged Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline This command is used to clear stored route dampening information for the specified VRF If no keyword is specified the dampening information of all routes in the VRF instance will be cleared Example The following example clears route dampening information of 192 168 10 0 2...

Page 91: ... the sending direction then the local BGP will send a clear the routing table message and notify the remote neighbor for the prefix filter This is a way to notify the neighbor of the prefix filter whenever a change is made to the prefix filter Example The following example a soft reconfiguration is configured for all inbound eBGP peering sessions DXS 3600 32S clear ip bgp external soft in DXS 3600...

Page 92: ...lap statistics of the route matching the IP address NETWORK ADDRESS Optional Specifies to only clear dampening flap statistics of the route matching the network address N A Specifies to clear dampening flap statistics of all routes Default None Command Mode Privileged Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline This command is used to clear the accumulated penalties for...

Page 93: ...ote neighbor for the prefix filter When using the clear ip bgp peer group PEER GROUP NAME command without the soft parameter the BGP connection will be torn down so the following log message will be generated BGP 2 BGP connection is normally closed Peer ipaddress Where the ipaddress is the address of the peer After a while the connection will be rebuilt and the following log message will be genera...

Page 94: ...ghbor 172 18 1 1 activate DXS 3600 32S config router af exit address family DXS 3600 32S config router ACCESS LIST NAME Specifies the name of the access list The maximum length is 16 characters permit Specifies to permit access to the matching conditions deny Specifies to deny access to the matching conditions REGEXP Specifies a regular expression to match the BGP AS paths The maximum length is 80...

Page 95: ...up to 16 characters The syntax is general string that does not allow space permit Specifies the community to accept deny Specifies the community to reject COMMUNITY Specifies the community value which is a 32 bit integer It can be a user specified number represented by AA NN where AA AS number is the upper part of the word and NN community number user specified is the lower part of the word It can...

Page 96: ... the neighbor send community command If the permit rules exist in a community list routes with community that does not match any rule in the list will be denied If there are no rules or only deny rules to be configured in the community list all routes will be denied Use the show ip community list command to verify your settings Example This example shows how to define a standard community list nam...

Page 97: ...d facilitates transfer of local policies through different autonomous systems All names of the standard extcommunity list and expended extcommunity list must not be the same This command can be applied multiple times BGP extended community attributes exchanged between BGP peers are controlled by the neighbor send community command If permit rules exist in an extended community list routes with ext...

Page 98: ... Unicast VPNv4 and VRF Command Default Level Level 8 EI Mode Only Command Usage Guideline If you specify a BGP peer group by using the PEER GROUP NAME argument all the members of the peer group will inherit the characteristic configured with this command It is not allowed to disable an active peer group When using the no form of this command the exchange of addresses with a BGP neighbor is disable...

Page 99: ...S 3600 32S config router IP ADDRESS Specifies the IP address of the BGP peer PEER GROUP NAME Specifies the name of a Border Gateway Protocol BGP peer group The maximum length is 16 characters NUMBER Optional Specifies the maximum number of local AS to allow appearing in the AS path attribute of the update packets The value is from 1 to 10 If no number is supplied the default value of 3 times is us...

Page 100: ...cifies the address of the peer PEER GROUP NAME Specifies the name of the peer group Default Disabled Command Mode Address Family Configuration VRF Command Default Level Level 8 EI Mode Only Command Usage Guideline This command is used to prevent routing loops between routers within a VPN In the VPN the most typical application lies in that the two CE ends have the same AS number Normally these two...

Page 101: ...ing log message will be generated BGP 1 BGP connection is successfully established Peer ipaddress Where the ipaddress is the address of the peer Use the show ip bgp neighbors or show ip bgp peer group command to verify your settings Example The following example shows how to configure the router to advertise ORF Assume there are two routers R1 10 90 90 90 and R2 10 1 1 1 R2 has two BGP routes 172 ...

Page 102: ... a BGP speaker the local router to send the default route 0 0 0 0 0 to a specified neighbor to use as its default route If route map is specified the default route will be injected if the route map contains a match IP address statement Use the show ip bgp neighbors or show ip bgp peer group command to verify your settings Example This example shows how to advertisement the BGP default route to the...

Page 103: ...ode VRF Command Default Level Level 8 EI Mode Only Command Usage Guideline If you specify a BGP peer group by using the PEER GROUP NAME argument all the members of the peer group will inherit the characteristic description configured with this command Use the show ip bgp neighbors or show ip bgp peer group command to verify your settings Example This example shows how to configure a description fo...

Page 104: ...XS 3600 32S config router bgp 100 DXS 3600 32S config router neighbor 172 16 10 10 remote as 65101 DXS 3600 32S config router neighbor 172 16 10 10 ebgp multihop DXS 3600 32S config router IP ADDRESS Specifies the IP address of the BGP peer PEER GROUP NAME Specifies the name of a Border Gateway Protocol BGP peer group The maximum length is 16 characters ACCESS LIST NAME Specifies the name of an au...

Page 105: ...cifies the IP address of the BGP peer PEER GROUP NAME Specifies the name of a Border Gateway Protocol BGP peer group The maximum length is 16 characters MAXIMUM Specifies the maximum number of prefixes allowed from the specified neighbor The number of prefixes that can be configured is limited only by the available system resources on a router THRESHOLD Optional Integer specifying at what the perc...

Page 106: ...r 192 168 1 1 remote as 30000 DXS 3600 32S config router neighbor 192 168 1 1 maximum prefix 10000 warning only DXS 3600 32S config router IP ADDRESS Specifies the IP address of the BGP peer PEER GROUP NAME Specifies the name of a Border Gateway Protocol BGP peer group The maximum length is 16 characters Default This command is disabled by default Command Mode Router Configuration Mode Address Fam...

Page 107: ...nly Command Usage Guideline This command is used to configure the password for a BGP neighbor or BGP peer group The password setting will cause TCP connections between the peers to restart with MD5 authentication The same password need be configured between peers otherwise the TCP connection will fail A password can use special characters such as _ The maximum length of the password is 25 characte...

Page 108: ...peer group has been set a remote AS number A neighbor can be added to the peer group with no remote AS In this situation it inherits the peer group s remote AS automatically and its remote AS changes with the changing of peer group s remote AS If a BGP peer belongs to a peer group some attributes or actions can only be configured from the peer group The following is a list of them capability of pr...

Page 109: ... example shows how to add an existing peer 172 16 1 1 to a peer group named G1 DXS 3600 32S configure terminal DXS 3600 32S config router bgp 40000 DXS 3600 32S config router neighbor G1 peer group DXS 3600 32S config router neighbor 172 16 1 1 remote as 30000 DXS 3600 32S config router neighbor 172 16 1 1 peer group G1 DXS 3600 32S config router Example This example shows how to to add a new peer...

Page 110: ...outgoing advertisements to that neighbor Default All external and advertised address prefixes are distributed to BGP neighbor Command Mode Router Configuration Mode Address Family Configuration Mode IPv4 Unicast VPNv4 and VRF Command Default Level Level 8 EI Mode Only Command Usage Guideline The command is used to configure the filter related setting for a BGP neighbor or a peer group based on the...

Page 111: ...r belongs Range for 2 byte numbers is 1 to 65535 Range for 4 byte numbers is 1 to 4294967295 Default There are no BGP neighbor peers Command Mode Router Configuration Mode Address Family Configuration Mode VRF Command Default Level Level 8 EI Mode Only Command Usage Guideline If you specify a BGP peer group all the members of the peer group will inherit the characteristic configured with this comm...

Page 112: ...us system numbers follow the confederation portion of the autonomous path The private autonomous system values are 64512 to 65535 Use the show ip bgp neighbors or show ip bgp peer group command to verify your settings Example This example shows how to remove the private autonomous system number from the updates sent to 172 16 1 1 The AS path attribute of the updates advertised by 10 10 10 10 throu...

Page 113: ...rify your settings Example This example shows how to apply a route map named internal map to a BGP outgoing updates to 172 16 1 1 Firstly create a route map named internal map DXS 3600 32S configure terminal DXS 3600 32S config route map internal map DXS 3600 32S config route map set local preference 100 DXS 3600 32S config route map Example Then set the routing policy to neighbor 172 16 1 1 DXS 3...

Page 114: ...ning neighbors in the ordinary way When the router is in non reflection mode the router will exchange information with all the neighbors in the non reflection way An AS can have multiple clusters and a cluster can have more than one reflector for redundancy purposes Use the show ip bgp reflection command to verify your settings Example This example shows how to add a neighbor as the route reflecto...

Page 115: ...nfig router IP ADDRESS Specifies the IP address of the BGP peer PEER GROUP NAME Specifies the name of the BGP peer group The maximum length is 16 characters both Optional Specifies that both standard and extended communities will be sent standard Optional Specifies that only standard communities will be sent extended Optional Specifies that only extended communities will be sent Default None Comma...

Page 116: ...terminated suddenly Use the show ip bgp neighbors or show ip bgp peer group command to verify your settings Example This example shows how to disable any active session for the neighbor 172 16 10 10 DXS 3600 32S configure terminal DXS 3600 32S config router bgp 65100 DXS 3600 32S config router neighbor 172 16 10 10 shutdown DXS 3600 32S config router IP ADDRESS Specifies the IP address of the BGP ...

Page 117: ...an be 1 65535 AS number number The AS Number should be a public AS Number Both 2 bytes AS number and 4 bytes AS number works that is assigned to the user and the number is assigned from a numbering space that is administered by the user The number can be 1 4294967295 for 2 bytes AS number and 1 65535 for 4 bytes AS number Default No Site of Origin attribute configured by default Command Mode Addre...

Page 118: ...ssage that the software declares a peer dead The default is 180 seconds The range is from 0 to 65535 Default KEEPALIVE 60 seconds HOLDTIME 180 seconds Command Mode Router Configuration Mode Address Family Configuration Mode VRF Command Default Level Level 8 EI Mode Only Command Usage Guideline KEEP ALIVE specifies the interval at which a keepalive message is sent to its peers The system will decla...

Page 119: ...uppressed If a route map is configured relating to a BGP neighbor but the route map doesn t exist it means deny any If the route map exists but has no filter entry defined it will permit all Use the show ip bgp neighbors or show ip bgp peer group command to verify your settings Example This example shows the routes specified by a route map named internal map being unsuppressed for neighbor 172 16 ...

Page 120: ...0 32S configure terminal DXS 3600 32S config router bgp 100 DXS 3600 32S config router neighbor 172 16 10 10 update source vlan 3 DXS 3600 32S config router IP ADDRESS Specifies the IP address of the BGP peer PEER GROUP NAME Specifies the name of a Border Gateway Protocol BGP peer group The maximum length is 16 characters NUMBER Specifies the weight to assign Acceptable values are from 0 to 65535 ...

Page 121: ...as local to this autonomous system and adds it to the BGP routing table For exterior protocols the network command controls which networks are advertised Interior protocols use the network command to determine where to send updates The BGP will advertise a network entry if the router has the route information for this entry if synchronize state is enabled You can verify your settings by entering t...

Page 122: ... be between 0 and 4294967295 MAP NAME Optional Specifies a route map which will be used as the criteria to determine whether to redistribute specific routes Enter the route map name used here This name can be up to 16 characters long Default By default this option is disabled Command Mode Router Configuration Mode Address Family Configuration Mode IPv4 Unicast and VRF Command Default Level Level 8...

Page 123: ...The range for 2 byte numbers is 1 to 65535 The range for 4 byte numbers is 1 to 4294967295 Default No BGP routing process is enabled by default Command Mode Global Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline Each public autonomous system that directly connects to the Internet is assigned a unique number that identifies both the BGP routing process and the ...

Page 124: ...and and verifying a single named AS path access list Example This example shows how to display the content of IP AS path access list DXS 3600 32S show ip as path access list BGP AS Path Access List a1 permit 300 deny 200 Total Filter Entries 2 BGP AS Path Access List a2 permit 3 0 deny 20 Total Filter Entries 2 BGP AS Path Access List a3 permit 1 Total Filter Entries 1 Total AS Path Access List Nu...

Page 125: ...ed more than 160 characters this command will not show the totally information and the command of show ip bgp NETWORK ADDRESS can show the full information of this route especially the as path Example This example shows how to show the BGP routing table DXS 3600 32S show ip bgp BGP Local Router ID is 10 90 90 10 Status codes s suppressed d damped h history valid best i internal Origin codes i IGP ...

Page 126: ...p1 group2 As path is 400 100 200 300 500 501 502 503 504 505 506 507 508 509 510 511 512 513 514 515 516 517 518 519 520 521 522 523 524 525 526 527 528 529 530 531 532 533 534 535 536 53 1000 600 601 602 603 604 605 606 607 609 750 751 752 757 758 759 780 1005 1007 2000 2008 1010 2010 953 959 Next hop is 65 1 1 2 metric 1 from 65 1 1 102 177 221 0 3 Origin IGP Imetric 1 localpref 4294967295 weigh...

Page 127: ...k address longer prefixes Optional Displays the specified route and all more specific routes label Optional Specifies to display the BGP private labels of the routes which are assigned from MPLS Default None Command Mode Privileged Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline This command is used for show route information in IPv4 VPN address family and routes in all VRF...

Page 128: ... 1 1 10 0 0 10 i i 33 33 33 33 0 100 0 20 i 56 1 3 0 24 50 1 1 10 0 0 10 i i 33 33 33 33 0 100 0 20 i Route Distinguisher 1 100 VPN route s i 56 1 0 0 16 33 33 33 33 0 100 0 20 i i 56 1 1 0 24 33 33 33 33 0 100 0 20 i i 56 1 2 0 24 33 33 33 33 0 100 0 20 i i 56 1 3 0 24 33 33 33 33 0 100 0 20 i Route Distinguisher 1 106 default for VRF 106 56 1 1 0 24 0 0 0 0 0 32768 DXS 3600 32S Display Parameter...

Page 129: ...her is default for VPN route s Specify that the following routes are learned from PEs Path Autonomous system paths to the destination network From Specify the origin of this prefix In label Specify the label which would be assigned to other routes that origin from other PE Out label Specify the label which get form other PE neighbor Self Peer Specify that the route is originated from local no Spec...

Page 130: ...0 88 1 5 0 24 100 1 1 2 no 1000 89 1 1 0 24 10 1 1 3 no 16 89 1 2 0 24 10 1 1 3 no 17 99 1 1 0 24 Self Peer 1000 no Route Distinguisher 1 1 VPN route s 89 1 1 0 24 10 1 1 3 no 16 89 1 2 0 24 10 1 1 3 no 17 DXS 3600 32S Example The following example displays route 56 1 0 0 16 and its more specific routes with RD 1 100 DXS 3600 32S show ip bgp rd 1 100 56 1 0 0 16 longer prefixes BGP Local Router ID...

Page 131: ...ing a packet to the destination network An entry of 0 0 0 0 indicates that the router has some non BGP routes to this network Metric If shown this is the value of the inter autonomous system metric This field is frequently not used LocPrf Local preference value as set with the set local preference route map configuration command The default value is 100 Weight Weight of the route as set via autono...

Page 132: ...11 11 Status codes s suppressed d damped h history valid best i internal Origin codes i IGP e EGP incomplete Network From In Label Out Label Route Distinguisher 1 1 default for VRF VPN B 11 0 0 0 16 Self Peer 1000 no 89 1 1 0 24 10 1 1 3 no 16 99 1 1 0 24 Self Peer 1000 no DXS 3600 32S Example The following examply display route 56 1 0 0 16 and its more specific routes in VRF 100 DXS 3600 32S show...

Page 133: ... destination network An entry of 0 0 0 0 indicates that the router has some non BGP routes to this network Metric If shown this is the value of the inter autonomous system metric This field is frequently not used LocPrf Local preference value as set with the set local preference route map configuration command The default value is 100 Weight Weight of the route as set via autonomous system filters...

Page 134: ...nly Total Aggregate Address Number 2 DXS 3600 32S Display Parameters Description Network Address IP prefix with its mask length of the entry VRF Name Specifies the VRF name of the aggregate routes Options May be as set or summary only Total Aggregate Address Number The aggregate network number all Optional Specifies to display routes of all VPN and VRFs rd ASN NN Optional Specifies to display rout...

Page 135: ... 50 1 1 10 0 0 10 i i 33 33 33 33 0 100 0 20 i 56 1 3 0 24 50 1 1 10 0 0 10 i i 33 33 33 33 0 100 0 20 i DXS 3600 32S Display Parameters Description BGP Local Router ID The router identifier of the local BGP router Status codes Status of the table entry displayed at the beginning of each line It can be one or more of the following values s The table entry is suppressed d The table entry is damped ...

Page 136: ... no advertise A community string can be formed by multiple communities separated by a comma For example a community string is 200 1024 300 1025 400 1026 exact match Optional If specified communities need to match exactly If not specified then there are two cases 1 If internet is contained in the community list then all routes will match 2 If not then the community needs to be a subset of route s c...

Page 137: ...e entry is valid The table entry is the best entry to use for that network i The table entry was learned via an internal BGP iBGP session Origin codes Origin of the table entry displayed at the end of each line It can be one of the following values i Entry originated from an Interior Gateway Protocol IGP and was advertised with a network router configuration command e Entry originated from an Exte...

Page 138: ... list vrf 100 mycom BGP Local Router ID is 11 11 11 11 Status codes s suppressed d damped h history valid best i internal Origin codes i IGP e EGP incomplete IP Address Netmask Gateway Metric LocPrf Weight Path Route Distinguisher 1 100 default for VRF 100 56 1 1 0 24 50 1 1 10 0 0 10 i 56 1 2 0 24 50 1 1 10 0 0 10 i 56 1 3 0 24 50 1 1 10 0 0 10 i DXS 3600 32S Display Parameters Description BGP Lo...

Page 139: ...t via autonomous system filters Path Autonomous system paths to the destination network Parameters None Default None Command Mode Privileged Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline Use this command to display the detail of the confederation configured Example This example shows how to show the current settings of confederation DXS 3600 32S show ip bgp confederation ...

Page 140: ... valid best i internal Origin codes i IGP e EGP incomplete Network From Reuse Path d 10 0 0 0 8 172 16 232 177 00 18 4 100 d 10 2 0 0 16 172 16 232 177 00 28 5 100 DXS 3600 32S Display Parameters Description BGP Local Router ID The router identifier of the local BGP router Status codes Status of the table entry displayed at the beginning of each line It can be one or more of the following values s...

Page 141: ...s Reuse Value 750 Suppress Value 2000 MAX Suppress Time 60 mins Unreachable route s Half life 15 mins DXS 3600 32S Example The following example is to show the dampening configuration information by using the show ip bgp dampening parameters vrf command in privileged mode DXS 3600 32S show ip bgp dampening parameters vrf VPN A BGP Dampening for vrf VPN A BGP Dampening State Disabled BGP Dampening ...

Page 142: ...mple This example shows how to display the flap entries in the BGP routing table DXS 3600 32S show ip bgp dampening flap statistics BGP Local Router ID is 10 90 90 10 Status codes s suppressed d damped h history valid best i internal Origin codes i IGP e EGP incomplete Network From Flaps Duration Reuse Path d 10 0 0 0 8 172 29 232 177 4 00 13 31 00 18 10 100i d 10 2 0 0 16 172 29 232 177 4 00 02 4...

Page 143: ... Origin of the path is not clear Usually this is a router that is redistributed into BGP from an IGP Network IP prefix with its mask length of the entry dampened From The IP address of the peer advertised this route Reuse Time after which the route will be made available Format is HH MM SS Path Autonomous system paths of route that is being dampened Flaps Number of times that the route has flapped...

Page 144: ...3 33 33 33 0 100 0 20 i i 56 1 3 0 24 33 33 33 33 0 100 0 20 i DXS 3600 32S Display Parameters Description BGP Local Router ID The router identifier of the local BGP router Status codes Status of the table entry displayed at the beginning of each line It can be one or more of the following values s The table entry is suppressed d The table entry is damped h The table entry is damped and has been w...

Page 145: ...e IP address number or AS number number vrf VRF NAME Optional Specifies the VRF name The length of the VRF NAME is 12 characters Default None Command Mode Privileged Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline This command displays the routes which have inconsistent as originating autonomous systems Example This example shows the output from the show ip bgp inconsistent...

Page 146: ...or more of the following values s The table entry is suppressed d The table entry is damped h The table entry is damped and has been withdrawn by the neighbor The table entry is valid The table entry is the best entry to use for that network i The table entry was learned via an internal BGP iBGP session Origin codes Origin of the table entry displayed at the end of each line It can be one of the f...

Page 147: ...r The information may be the dynamic parameters configured to the neighbor routers received from or sent to the neighbor ORF filter received from the neighbor and the statistics information about the neighbor Example This example shows how to display all the neighbors DXS 3600 32S show ip bgp neighbors BGP neighbor 10 1 1 1 Internal Peer Session State Enabled Remote AS 1 Remote Router ID 0 0 0 0 B...

Page 148: ... Remote AS AS number of the neighbor Remote Router ID The router identifier of the local BGP router BGP State The Finite State Machine FSM of the neighbor The value may be Idle Connect Active Opensent Openconfirm and Established UP for Indicates how long the Established state last This field only display in the Established state Hold Time Indicates the maximum number of seconds that may elapse bet...

Page 149: ... to the neighbor Next Hop Self Indicates whether the local BGP enable the router as the next hop for the neighbor Remove Private As Indicates whether the configuration of removing the private AS from the AS path attribute in the updates sent to the neighbor is enabled or not AllowAS In Indicates whether the local BGP allow its own AS number appearing in the received BGP update packets from the nei...

Page 150: ...sk ge ORF Greater than or equal Indicates the length of the mask Prefix Max Count Show the maximum number of prefixes the local BGP can accept Prefix Warning Threshold Indicates in which percentage of the maximum prefixes the local BGP begin to log warning message Prefix Warning Only Indicates whether the local BGP terminate the session of the neighbor after the total BGP routes reach the maximum ...

Page 151: ...ow ip bgp neighbors 10 1 1 1 received prefix filter ip prefix list 10 1 1 1 1 1 2 entries seq 5 permit 8 8 8 0 24 le 32 seq 10 permit 9 9 9 0 24 le 32 DXS 3600 32S Display Parameters Description IP Prefix List Name of the IP prefix list received from the neighbor The name is made up by the IP address by the dotted decimal notation dot Address Family Identifier AFI dot Subsequent Address Family Ide...

Page 152: ... Metric If shown this is the value of the inter autonomous system metric This field is frequently not used LocPrf Local preference value as set with the set local preference route map configuration command The default value is 100 Weight Weight of the route as set via autonomous system filters Path Autonomous system paths to the destination network Example This example shows how to display all the...

Page 153: ...ith the set local preference route map configuration command The default value is 100 Weight Weight of the route as set via autonomous system filters Path Autonomous system paths to the destination network Example This example shows how to display the statistical information between 10 1 1 2 and 10 10 0 2 DXS 3600 32S show ip bgp neighbors 10 1 1 2 statistics BGP neighbor 10 1 1 2 External Peer Ac...

Page 154: ...kets received from the neighbor Updates receive Number of UPDATES packets received from the neighbor Keepalives receive Number of KEEPALIVES packets received from the neighbor Route Refresh receive Number of ROUTEREFRESH packets received from the neighbor Total receive Total packets received from the neighbor Connections Established Number of times that the local BGP establish the TCP connection w...

Page 155: ...etwork network address Route Map Specify the route map of this network to apply Total Network Number The number of BGP network vrf VRF NAME Optional Specifies the name of the VRF to display the route redistribution configuration in the IPv4 VRF address family Default None Command Mode Privileged Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline Use this command to check the r...

Page 156: ...s Source Protocol The source protocol of the redistribute operation Destination Protocol The destination protocol of the redistribute operation Of course it always is BGP Type Specify which part of route to be redistributed to bgp Metric Specify the BGP metric value for the redistributed routes RouteMapName Specifies a route map which will be used as the criteria to determine whether to redistribu...

Page 157: ...addresses below peer group Indicates the name of the peer group with the peer group members in the parentheses separated by comma all Optional Specifies to display routes of all VPN and VRFs rd ASN NN Optional Specifies to display routes with the specified Route Distinguisher The ASN NN can be IP address number or AS number number vrf VRF NAME Optional Specifies the VRF name The length of the VRF ...

Page 158: ...y is valid The table entry is the best entry to use for that network i The table entry was learned via an internal BGP iBGP session Origin codes Origin of the table entry displayed at the end of each line It can be one of the following values i Entry originated from an Interior Gateway Protocol IGP and was advertised with a network router configuration command e Entry originated from an Exterior G...

Page 159: ...The local AS number Hold Time The system will declare a peer as dead if a keepalive message is received that is more than the hold time Keepalive Interval Frequency that a BGP send keepalive message to peer Always Compare MED Enable or disable the comparison of the Multi Exit Discriminator MED for paths from the neighbors in different Autonomous Systems Deterministics MED Enable or disable to enfo...

Page 160: ... information of all BGP peer groups Default None Command Mode Privileged Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline Use this command to display the contents of the BGP peer group Example This example shows how to display the information of the peer group named mygroup DXS 3600 32S show ip bgp peer group mygroup BGP Peer Group mygroup Description Session State Enabled R...

Page 161: ...oup separated by comma AS Override Indicates whether the local BGP override the AS number of the peer with its own AS number in the routes received from the members of the peer group Site of Origin Indicates the Site of Origin value configured to the members of the peer group Next Hop Self Indicates whether the local BGP enable the router as the next hop for the members of this peer group Route Re...

Page 162: ...the ORF prefix list Send Mode Indicates whether the local BGP send ORF prefix list to the members of this peer group Receive Mode Indicates whether the local BGP receive ORF prefix list from the members of this peer group Password Show the password set on the TCP connection to the members of this peer group Prefix Max Count Show the maximum number of prefixes the local BGP can accept Prefix Warnin...

Page 163: ...0 100 0 20 i i 56 1 1 0 24 33 33 33 33 0 100 0 20 i i 56 1 2 0 24 33 33 33 33 0 100 0 20 i i 56 1 3 0 24 33 33 33 33 0 100 0 20 i DXS 3600 32S Display Parameters Description BGP Local Router ID The router identifier of the local BGP router Status codes Status of the table entry displayed at the beginning of each line It can be one or more of the following values s The table entry is suppressed d T...

Page 164: ... Mode Only Command Usage Guideline This command is used to display the state of all BGP neighbors connection also includes route id dampening state local AS number and so on Example This example shows how to display the BGP summary information DXS 3600 32S show ip bgp summary BGP Router Identifier 192 168 69 0 Local AS Number 100 BGP AS Path Entries 0 BGP Community Entries 0 Neighbor Ver AS MsgRcv...

Page 165: ...roup When the maximum number as set by the neighbor maximum prefix command is reached the string PfxRcd appears in the entry the neighbor is shut down and the connection is set to Idle An Admin entry with Idle status indicates that the connection has been shut down using the neighbor shutdown command COMMUNITY LIST NAME Specifies the community list name The maximum length is 16 characters Default ...

Page 166: ...0 Total Filter Entries 1 Total Community List Count 3 DXS 3600 32S Display Parameters Description Community List Name Name of this community list Type Type of this community list Standard Indicates that this entry is an standard community list with the well known community value internet local AS no advertise and no export or with the standard AA NN format Expanded Indicates that this entry is an ...

Page 167: ...e e1 Type Expanded permit _23 Total Filter Entries 1 Extended Community List Name s1 Type Standard permit RT 1 1 SoO 1 1 1 1 1 permit SoO 2 3 3 2 1 1 10 Total Filter Entries 2 Total Extended Community list Count 2 DXS 3600 32S Display Parameters Description Extended Community List Name Name of this extcommunity list Type Type of this community list Standard Indicates that this entry is a standard ...

Page 168: ...peer The range is from 0 to 65535 HOLD TIME Specifies the interval in seconds after not receiving a KEEPALIVE message that the software declares a BGP peer dead The range is from 0 to 65535 Default KEEP ALIVE 60 seconds HOLD TIME 180 seconds Command Mode Router Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline The suggested default value for the KEEPALIVE is 1 3...

Page 169: ...on is turned off Command Mode Privileged Mode Command Default Level Level 15 EI Mode Only Command Usage Guideline Use this command to turn on the BGP debug function while the global debug function has been turned on before Example This example shows how to turn on the BGP debug function DXS 3600 32S debug ip bgp DXS 3600 32S Parameters None Default By default the BGP FSM event debug switch is turn...

Page 170: ...40 HoldTime 180 RID 16 0 0 1 BGP Peer 10 1 1 10 RCV KEEPALIVE BGP Peer 10 1 1 10 RCV UPDATE withdraw 21 0 0 0 8 22 0 0 0 8 23 0 0 0 8 24 0 0 0 8 25 0 0 0 8 BGP Peer 10 1 1 10 RCV UPDATE attr Orign i As path 10 Next hop 10 1 1 10 Med 5 NLRI 21 0 0 0 8 22 0 0 0 8 BGP Peer 10 1 1 10 RCV NOTIFYCATION Code OPEN Message Error SubCode Bad Peer AS BGP Peer 10 1 1 10 RCV REFRESH afi 1 safi 1 BGP Peer 10 1 ...

Page 171: ... Default Level Level 15 EI Mode Only Command Usage Guideline Use this command to turn on BGP IP prefix list debug switch When IP prefix list is matching BGP information debug information will be print if BGP debug function is turned on Use the command debug ip bgp to turn on BGP debug function Example This example shows how to turn on BGP IP prefix list debug switch DXS 3600 32S debug ip bgp prefi...

Page 172: ...ing Ability Disabled Client to Client Ability Enabled Cluster Peers 1 1 1 1 Aggregate Next_Hop_Check Disabled Default Local Preference 100 Default Holdtime 150 Default Keepalive 50 Scan Time 60 BGP Active Flags BGP Active AF Flags BGP_AF_CFLAG_NETWORK_SYNC Note The address family is IPv4 BGP Active Redist Flags IPI_ROUTE_CONNECT Note The address family is IPv4 DXS 3600 32S vrf VRF NAME Optional Sp...

Page 173: ...red 0 Seconds AS Origination Interval Current Used 15 Seconds Connect Retry Interval Configured 0 Seconds Connect Retry Interval Current Used 0 Seconds EBGP Multihop 255 Weight 100 Next Hop Self Disabled Remove Private AS Disabled Allowas In Disabled Address Family IPv4 Unicast IPv4 Unicast Advertised and Received Soft Reconfiguration Inbound Enabled Community Sent to this Neighbor Both Standard a...

Page 174: ...terval 60 Seconds Advertisement Interval 5 Seconds AS Origination Interval 0 Seconds Connect Retry Interval 0 Seconds EBGP Multihop 1 Weight 100 Next Hop Self Disabled Remove Private AS Disabled Allowas In Disabled Route Reflector Client Enabled Soft Reconfiguration Inbound Enabled Community Sent to this Neighbor Both Standard and Extended Default Originate Enabled Incoming Update Prefix List prel...

Page 175: ...2 168 0 0 16 NULL 172 16 0 0 16 map1 Total Entries 2 DXS 3600 32S vrf VRF NAME Optional Specifies the VRF name The length of the VRF NAME is 12 characters Default None Command Mode Privileged Mode Command Default Level Level 15 EI Mode Only Command Usage Guideline Use this command to check internal status and detailed information of the BGP route aggregation Example This example shows how to displ...

Page 176: ...se List Size 256 Reuse Offset 19 Current dampened routes Damp Hinfo 484d9be8 index ptr event penalty binfo rn f5 484d9be8 1 1392 484d9ad8 484d9a90 f5 484d9b98 1 1392 484d9a00 484d99b8 f5 484d8080 1 1392 484d9928 484d98e0 f5 484d7fe8 1 1392 484d9808 484d9738 Damp Reuse List Info reuse_index index ptr penalty flap start_time t_updated suppress_time evt Damp reuse Hinfo 484d9be8 245 1 484d9be8 5010 6...

Page 177: ...terface Interface Information Name Index Network Flags Status VRF vlan1 0001 0 0 0 0 0 5 Down None vlan104 0004 104 1 1 9 16 5 Up None vlan105 0005 105 1 1 9 16 5 Up None vlan106 0006 106 1 1 9 16 5 Up None loopback1 0523 9 9 9 9 32 d Up None DXS 3600 32S Parameters None Default None Command Mode Privileged Mode Command Default Level Level 15 EI Mode Only Command Usage Guideline Use this command t...

Page 178: ...ormation about BGP route redistribution DXS 3600 32S debug ip bgp show redistribution Redistributed routes summary Network Type Next_hop 10 0 0 0 8 LOCAL 0 0 0 0 21 0 0 0 24 RIP 10 2 2 2 21 0 1 0 24 RIP 10 2 2 2 21 0 2 0 24 RIP 10 2 2 2 21 0 3 0 24 RIP 10 2 2 2 21 0 4 0 24 RIP 10 2 2 2 Total Entries 6 Redist list information No redist list exist DXS 3600 32S Parameters None Default None Command Mo...

Page 179: ...st Parameters None Default None Command Mode Privileged Mode Command Default Level Level 15 EI Mode Only Command Usage Guideline This command is used to show internal detailed information about the BGP community list Example This example shows how to display internal detailed information about the BGP community list DXS 3600 32S debug ip bgp show community list Community list list1 standard permit...

Page 180: ...ode Command Default Level Level 8 Usage Guideline You can configure a guest VLAN on one of these switch ports A static access port that belongs to a non private VLAN When configure authentication VLAN under host base mode to a port it cannot be a guest VLAN port A guest VLAN port cannot be a IGMP multicast VLAN port For each network access port on the switch you can configure a guest VLAN to provi...

Page 181: ...arameters Description VID The guest VLAN VID Member Ports The guest VLAN member ports port based Specifies that if one of the attached hosts passes the authentication all hosts on the same port will be granted access to the network If the user fails to authenticate this port will keep trying the next authentication host based Specifies that every user can be authenticated individually Default Auth...

Page 182: ...1 0 8 Host based TenGigabitEthernet1 0 9 Host based TenGigabitEthernet1 0 10 Host based TenGigabitEthernet1 0 11 Host based TenGigabitEthernet1 0 12 Host based TenGigabitEthernet1 0 13 Host based TenGigabitEthernet1 0 14 Host based TenGigabitEthernet1 0 15 Host based TenGigabitEthernet1 0 16 Host based TenGigabitEthernet1 0 17 Host based TenGigabitEthernet1 0 18 Host based TenGigabitEthernet1 0 19...

Page 183: ...stem running Example This example shows how the configuration information of the current device s configuration system running The field descriptions are self explanatory DXS 3600 32S show running config Building configuration Current configuration 108272 bytes DXS 3600 32S TenGigabit Ethernet Switch Configuration Firmware Build 1 10 023 Copyright C 2012 D Link Corporation All rights reserved DEVI...

Page 184: ...n the NVRAM Default None Command Mode Privileged Mode Command Default Level Level 15 Usage Guideline The command is used to execute the configuration by using the increment method This means that the new configuration will merge with the current configuration The existing configuration will not be cleared before applying of the new configuration To verify the executed result use the show running c...

Page 185: ...on FTP server For example user 123 192 168 0 1 80 config cfg vrf VRFNAME Specifies to use VPN routing and forwarding The VRF name can be up to 12 characters long flash Specifies that the configuration file is received from the NVRAM of the device FILENAME Specifies the name of the configuration file stored in the NVRAM For example config cfg default Specifies to reset the current running configura...

Page 186: ...e current running configuration with it Execute the command immediately and not to confirm again DXS 3600 32S configure replace ftp user 123 10 0 0 66 80 config cfg force Accessing ftp 10 0 0 66 config cfg Transmission start Transmission finished file length 45422 bytes Executing script file config cfg Executing done DXS 3600 32S Example This example shows how to replace the current running config...

Page 187: ... specified configuration file which is assumed to be a complete configuration not a partial configuration y n y Accessing tftp 10 0 0 66 config cfg Transmission start Transmission finished file length 45422 bytes Executing script file config cfg Executing done DXS 3600 32S FILENAME Specifies the name of the configuration file stored in the NVRAM For example config cfg Default The default startup c...

Page 188: ... to use VPN routing and forwarding The VRF name can be up to 12 characters long Default None Command Mode Privileged Mode Command Default Level Level 15 Usage Guideline The command can be used for Saving the current running configuration and setting it as the boot up configuration file If the boot up configuration file exists the boot up configuration file will be replaced by the current running c...

Page 189: ...on password 123 TCP port number of remote host 80 Destination filename config cfg Accessing ftp 10 0 0 66 config cfg Transmission start Transmission finished file length 45421 bytes DXS 3600 32S Example This example show hoe to upload the current running configuration as config cfg to the TFTP server using VPN DXS 3600 32S copy running config tftp vrf VPN1 Address of remote host 10 0 0 66 Destinat...

Page 190: ...file Saving the current running configuration to the NVRAM of device Uploading the current running configuration to the TFTP server Upload the boot up configuration to the RCP server Uploading the current running configuration to the FTP server Example This example shows how to execute the boot up configuration immediately by using the increment method DXS 3600 32S copy bootup config running confi...

Page 191: ... VPN DXS 3600 32S copy bootup config tftp vrf VPN1 Address of remote host 10 0 0 66 Destination filename config cfg Accessing tftp 10 0 0 66 config cfg Transmission start Transmission finished file length 45421 bytes DXS 3600 32S flash Specifies the configuration file is saved in the NVRAM of the device FILENAME Specifies the configuration file name For example config cfg tftp Specifies that the c...

Page 192: ...ration file exists the boot up configuration file will be replaced by the downloaded configuration file or else the downloaded configuration file will be saved as config cfg and be set to be the boot up configuration file To download a configuration file then save it to the NVRAM of the device use this command in the privileged mode copy tftp location filename ftp username password location tcppor...

Page 193: ...ent method DXS 3600 32S copy tftp running config Address of remote host 10 0 0 66 Source filename config cfg Destination filename running config y n y Accessing tftp 10 0 0 66 config cfg Transmission start Transmission finished file length 45421 bytes Executing script file config cfg Executing done DXS 3600 32S Example This example shows how to download the config cfg file from the FTP server then...

Page 194: ...g y n y Accessing ftp 10 0 0 66 config cfg Transmission start Transmission finished file length 45421 bytes Executing script file config cfg Executing done DXS 3600 32S Example This example show how to download the config cfg file from the TFTP server using VPN then save it and configure it to be the boot up configuration file DXS 3600 32S copy tftp 10 0 0 66 config cfg vrf VPN1 bootup config Addr...

Page 195: ...on applicable interfaces physical ports will be cleared Default None Command Mode Privileged EXEC Mode Command Default Level Level 12 Usage Guideline For now only physical port counters are provided Example This example shows how to clear counters of all interfaces DXS 3600 32S configure terminal DXS 3600 32S config clear counters DXS 3600 32S config INTERFACE ID Optional Specifies the interface I...

Page 196: ...s 0 InBroadcastPkts 0 OutOctets 0 OutUcastPkts 0 OutMulticastPkts 0 OutBroadcastPkts 0 Undersize packets 0 Oversize packets 0 Collisions 0 Fragments 0 Jabbers 0 CRC Alignment Errors 0 AlignmentErrors 0 FCSErrors 0 Dropped Packet Events Due to lack of resources 0 Packets Received Of Length In Octets 64 0 65 127 0 128 255 0 256 511 0 512 1023 0 1024 1518 0 CTRL C ESC q Quit SPACE n Next Page ENTER N...

Page 197: ...X sec RX sec Util 1 0 1 0 0 0 1 0 2 0 0 0 1 0 3 0 0 0 1 0 4 0 0 0 1 0 5 0 0 0 1 0 6 0 0 0 1 0 7 0 0 0 1 0 8 0 0 0 1 0 9 0 0 0 1 0 10 0 0 0 1 0 11 0 0 0 1 0 12 0 0 0 1 0 13 0 0 0 1 0 14 0 0 0 1 0 15 0 0 0 1 0 16 0 0 0 1 0 17 0 0 0 1 0 18 0 0 0 1 0 19 0 0 0 1 0 20 0 0 0 1 0 21 0 0 0 1 0 22 0 0 0 1 0 23 0 0 0 CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All ...

Page 198: ...rameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 15 Usage Guideline Use this command to show the system CPU utilization information in 5sec 1 min and 5 min Example This example shows how to show the CPU utilization information DXS 3600 32S show cpu CPU Utilization Five seconds 34 One minute 35 Five minutes 35 DXS 3600 32S ...

Page 199: ... example shows how to enable the debug state DXS 3600 32S configure terminal DXS 3600 32S config debug enable DXS 3600 32S config Example This example shows how to disable the debug state DXS 3600 32S configure terminal DXS 3600 32S config no debug DXS 3600 32S config Parameters None Default The default state of error reboot is enabled Command Mode Global Configuration Mode Command Default Level L...

Page 200: ... log information through TFTP to a location file Example This example shows how to copy error log information through a TFTP to a file name err log txt at 10 0 0 90 DXS 3600 32S configure terminal DXS 3600 32S config copy error log tftp 10 0 0 90 error log txt DXS 3600 32S config tftp Specifies to upload the debug buffer information through a TFTP server location Specifies the location of the TFTP...

Page 201: ...put to local console terminal Specifies the module s debug message output to the current session Default The default debug output is buffer Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline Use the command to set a specified module s debug message output to debug to the buffer or local console If the user uses the command in a Telnet session the error message wi...

Page 202: ...2 SOFTWARE FATAL ERROR Invalid mutex handle 806D6480 Current TASK bcmARL 0 TASK STACKTRACE 802ACE98 8018C814 8028FF44 8028352C 801D703C 8013B8A4 802AE754 802A5E0C 802A5D6C debug log 2 level fatal The Output contunues Parameters None Default None Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline The user can use the clear error log command to clear the error log ...

Page 203: ...ault None Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline This command is used to clear the debug buffer Example This example shows how to clear the debug buffer DXS 3600 32S configure terminal DXS 3600 32S config clear debug buffer DXS 3600 32S config utilization Specifies to show the utilization of the debug buffer Default None Command Mode EXEC Mode Command...

Page 204: ...de Command Default Level Level 15 Usage Guideline The command can show the debug buffer s status of the modules Example This example shows how to show the debug buffer s information DXS 3600 32S show debug status Debug Global State Disabled MSTP Disabled OSPFV2 Disabled BGP Disabled VRRP Disabled DXS 3600 32S Parameters None Default None Command Mode EXEC Mode Command Default Level Level 15 Usage ...

Page 205: ...d 1 10 023 Hardware Version Serial number D1234567890 MAC Address 00 01 02 03 04 00 MAC Address Number 65535 System Log Running Configuration Layer One Information The Output is Truncated tftp Specifies to upload the technical support information through a TFTP server location Specifies the location of the TFTP server filename Specifies the location filename of the upload technical support informa...

Page 206: ...mand can show the module version of the modules Example This example shows how to show the module version DXS 3600 32S debug show module_version FS 1 00 0010 CNT 1 00 0003 MIRROR 1 00 0001 VLAN 1 00 GVRP 1 00 QINQ 1 00 PROTOCOL_VLAN 1 00 IP_SUBNET_VLAN 1 00 MAC_BASED_VLAN 1 00 LLDP 1 00 0005 IGMP_Snooping 1 00 0001 DOT1X 2 00 0001 PORTSEC 2 00 0001 MBAC 1 13 0001 DHCP_CLIENT 1 00 0001 DHCP_RELAY 1...

Page 207: ...e Default By default this option is disabled Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline The DHCP relay can forward the DHCP requests to other servers and the returned DHCP response packets to the DHCP client serving as the relay for DHCP packets Example This example shows how to enable the DHCP relay option DXS 3600 32S configure terminal DXS 3600 32S conf...

Page 208: ...erver The DHCP Option 82 containes 2 sub options which are circuit ID sub option and remote ID sub option Example This example shows how to enable the ip dhcp relay information option82 function DXS 3600 32S configure terminal DXS 3600 32S config ip dhcp relay information option82 DXS 3600 32S config Parameters None Default By default this option is disabled Command Mode Global Configuration Mode ...

Page 209: ...tring needs exactly match the specified string The partial match is that the DHCP client string only needs partially match the specified string You can verify your settings by entering the show ip dhcp relay option60 command Example This example shows how to add an Option 60 string MSFT 5 0 relay entry to 10 90 90 1 DXS 3600 32S configure terminal DXS 3600 32S config ip dhcp relay option60 identif...

Page 210: ...on 60 Example This example shows how to show the result of the show ip dhcp relay option60 command DXS 3600 32S show ip dhcp relay option60 Default Servers 10 90 90 90 Matching Rules String Match Type IP Address MSFT 5 0 Exact Match 10 90 90 90 Total Entries 1 DXS 3600 32S Parameters None Default By default this option is disabled Command Mode Global Configuration Mode Command Default Level Level ...

Page 211: ...ket to a specific IP address drop Specifies to drop the packet Default None Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline This command adds a rule to determine the relay server based on Option 61 The matching rule can be based on either a MAC address or a user specified string Only one relay server can be specified for each MAC address or string You can verif...

Page 212: ... DXS 3600 32S config ip dhcp relay option61 default relay 10 90 90 90 DXS 3600 32S config Parameters None Default None Command Mode Privileged Mode Command Default Level Level 2 Usage Guideline This command is used to show the entries of the DHCP relay Option 61 Example This example shows the result of the show ip dhcp relay option61 command DXS 3600 32S show ip dhcp relay option61 Default Relay R...

Page 213: ...uideline Some DHCP clients need to download the operating system and the configuration file during the startup The DHCP server should provide the mapping file name required for the startup so that DHCP clients can download the file from the corresponding server such as TFTP The servers are defined by the next server command Example This example shows how to define the device conf file as the start...

Page 214: ... pools are to be deleted If you specify both the VRF name option and the option all automatic or on demand bindings in the specified pool only will be cleared If you specify the VRF name option and an IP address the specified binding will be deleted from the specified pool Example The example below clears the DHCP binding with the IP address 192 168 12 100 DXS 3600 32S clear ip dhcp binding 192 16...

Page 215: ...fied conflict If you do not specify the VRF name option and the option is specified it is assumed that all automatic or on demand conflicts in all VRF and non VRF pools are to be deleted If you specify both the VRF name option and the option all automatic or on demand conflicts in the specified pool only will be cleared If you specify the VRF name option and an IP address the specified conflict wi...

Page 216: ...efault No DNS server is defined by default Command Mode DHCP Address Pool Configuration Mode Command Default Level Level 8 Usage Guideline Define the DNS server for the DHCP client Example This example shows how to specify the DNS server 192 168 12 3 for the DHCP client DXS 3600 32S configure terminal DXS 3600 32S config ip dhcp pool pool1 DXS 3600 32S dhcp config dns server 192 168 12 3 DXS 3600 ...

Page 217: ...defined by manual binding Example This example shows how to define the MAC address 00d0 f838 bf3d with the type ethernet DXS 3600 32S configure terminal DXS 3600 32S config ip dhcp pool pool1 DXS 3600 32S dhcp config hardware address 00d0 f838 bf3d DXS 3600 32S dhcp config ip address Specifies to the IP address of the DHCP client netmask Specifies to define the network mask of DHCP client Default ...

Page 218: ...e Global Configuration Mode Command Default Level Level 8 Usage Guideline If the excluded IP address is not configured the DHCP server attempts to assign all IP addresses in the DHCP address pool This command can reserve some IP addresses for specific hosts to prevent these addresses are assigned to the DHCP client and define the excluded IP address accurately to reduce the conflict detecting time...

Page 219: ...s 3 DXS 3600 32S configure terminal DXS 3600 32S config ip dhcp ping packet 3 DXS 3600 32S config milli seconds Specifies the time that the DHCP server waits for ping response in the range 10 to 2000 milliseconds Default The default timeout is 100 milliseconds Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline This command defines the time that the DHCP server wai...

Page 220: ...cp config days Specifies the lease time in days hours Optional Specifies the lease time in hours It is necessary to define the days before defining the hours minutes Optional Specifies the lease time in minutes It is necessary to define the days and hours before defining the minutes infinite Specifies an infinite lease time used Default The lease is 1 days by default Command Mode DHCP Address Pool...

Page 221: ...uration Mode Command Default Level Level 8 Usage Guideline When more than one WINS server is defined the former has higher priory The DHCP client will select the next WINS server only when its communication with the former WINS server fails Example This example shows how to specify the WINS server 192 168 12 3 for the DHCP client DXS 3600 32S configure terminal DXS 3600 32S config ip dhcp pool poo...

Page 222: ...igure terminal DXS 3600 32S config ip dhcp pool pool1 DXS 3600 32S dhcp config netbios node type h node DXS 3600 32S dhcp config net number Specifies the network number of the DHCP address pool net mask Specifies the network mask of the DHCP address pool If the network mask is not defined the natural network mask will be used by default Default No network number or network mask is defined by defau...

Page 223: ...d to configure one IP address at least Default None Command Mode DHCP Address Pool Configuration Mode Command Default Level Level 8 Usage Guideline Define the next server for the DHCP client Example This example shows how to specify the startup server 192 168 12 4 for the DHCP client DXS 3600 32S configure terminal DXS 3600 32S config ip dhcp pool pool1 DXS 3600 32S dhcp config next server 192 168...

Page 224: ...resses that are excluded from the legal assigned IP address DXS 3600 32S show ip dhcp excluded address Index Begin Address End Address 1 192 168 0 1 192 168 0 100 2 10 10 10 10 10 10 10 10 Total Entries 2 DXS 3600 32S Display Parameters Description Index List the index numbers Begin Address Lists the beginning addresses End Address Lists the ending addresses VRF VRFs configured on the DHCP server ...

Page 225: ...ype of the address binding The Automatic indicates an IP address is assigned automatically and the Manual indicates an IP address is assigned by manual VRF VRFs configured on the DHCP server vrf vrf name Optional Specifies the name of a VRF instance Default None Command Mode Privileged Mode Command Default Level Level 2 Usage Guideline This command can show the conflict address list and excluded a...

Page 226: ...me Server 10 10 10 1 NetBIOS Node Type broadcast Default Router 10 10 10 1 Pool Lease 10 days 0 hours 0 minutes Boot File boot cfg Next Server 10 10 10 2 DXS 3600 32S Display Parameters Description Pool Name The name of the pool VRF Name The VRF name to which the pool is associated Network Address The network address configured by command network Domain Name The suffix domain name string of the DH...

Page 227: ...ng Timeout 500 ms DXS 3600 32S Display Parameters Description DHCP Service The status of DHCP service Ping Packets Number of packets the ping operation will send Ping Timeout The timeout that the DHCP server waits for response vrf vrf name Specifies the name of the VRF to which the address pool is associated Default None Command Mode DHCP Address Pool Configuration Mode Command Default Level Level...

Page 228: ...Mode Only Command Usage Guideline This command enables DVMRP on the specified interface If you want to use DVMRP to forward multicast packets use the ip multicast routing command to enable the multicast global state To verify you configuration use the show ip dvmrp interface command Example This example shows how to enable DVMRP on interface VLAN 1 DXS 3600 32S configure terminal DXS 3600 32S conf...

Page 229: ... 1 XS 3600 32S config if ip dvmrp metric 30 DXS 3600 32S config if Example This example shows how to configure the DVMRP metric of VLAN 2 back to default DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 2 XS 3600 32S config if no ip dvmrp metric DXS 3600 32S config if IFNAME Specifies the interface name Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 ...

Page 230: ...None Command Mode Privileged EXEC Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline This command is used to display DVMRP neighbor information If no interface name is specified this command will display DVMRP neighbor information on all interfaces Example This example shows how to show all DVMRP neighbor information DXS 3600 32S show ip dvmrp neighbor Interface Neighbor Addre...

Page 231: ...rivileged EXEC Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline This command is used to display route information learned by DVMRP If no parameter added this command will display all the route information on the switch Example This example shows how to display all the route information learned by DVMRP DXS 3600 32S show ip dvmrp route DVMRP Routing Table Source Address Netma...

Page 232: ...DXS 3600 Series 10GbE Layer 2 3 Switch CLI Reference Guide 224 ...

Page 233: ...e The activation code is a set of codes which actives unlocks function on the appliance Example This example shows how to install an activation code on the switch The field descriptions are self explanatory The following example shows how to install a legal activation code DXS 3600 32S install dlms activation_code xBc7vNWsSpchuQkGZsTfPwcfa Success Please reboot the device to active the license DXS...

Page 234: ...ample shows how to display the license information on the switch DXS 3600 32S show dlms license Device Default License SI License Model Activation Code Time Remaining DXS 3600 32S SE LIC xBc7vNWsSpchuQkGZsTfPwAcb 33 weeks DXS 3600 32S SE LIC xBc7vNWsSpchuQkGZsTfPwAcc DXS 3600 32S SE LIC xBc7vNWsSpchuQkGZsTfPwAcd DXS 3600 32S SE LIC xBc8xTWsQpchxTkGZsTfPwBtt No Limited expired DXS 3600 32S ...

Page 235: ...lution function Example This example shows how to enable the DNS domain name resolution function DXS 3600 32S configure terminal DXS 3600 32S config ip domain lookup DXS 3600 32S config vrf string 1 12 Specifies the VRF that the IP reside in If no VRF name specified the global instance will be used ip address Specifies the IP address of the domain name server Default None Command Mode Global Confi...

Page 236: ...he IP address of the equipment Default None Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline To delete the host list use the no ip host host name ip address command Example This example shows how to configure the mapping of the host name www abc com and the IP address 192 168 5 243 DXS 3600 32S configure terminal DXS 3600 32S config ip host www abc com 192 168 5...

Page 237: ...Mode Privileged Mode Command Default Level Level 2 Usage Guideline Show the DNS related configuration information Example This example shows how to show the DNS related configuration information DXS 3600 32S show hosts Name servers are 192 168 5 134 Static Host Name Table Host Name IP Address www abc com 192 168 5 243 Total Static Entries 1 Dynamic Host Name Table Host Name IP Address TTL www yes ...

Page 238: ...tack A Land attack is a DoS attack that consists of sending a special poison spoofed packet to a computer causing it to lock up A Land attack involves IP packets where the source and destination address are set to address the same device The reason a Land attack works is because it causes the machine to reply to itself continuously Detect method Check whether the source address is equal to destina...

Page 239: ... be abnormal Detect method Check whether the packets source ports are less than 1024 packets Ping of Death A ping of death is a type of attack on a computer that involves sending a malformed or otherwise malicious ping to a computer A ping is normally 64 bytes in size many computers cannot handle a ping larger than the maximum IP packet size which is 65 535 bytes Sending a ping of this size can cr...

Page 240: ...sage Guideline This command is used to display attack defense information Example This example shows how to dispaly attack defense information DXS 3600 32S show defense Function Version 1 01 Defense Type State Action Land Attack Disabled Drop Blat Attack Disabled Drop TCP Null Scan Disabled Drop TCP Xmas Scan Disabled Drop TCP SYNFIN Disabled Drop TCP SYN SrcPort Less 1024 Disabled Drop Ping of De...

Page 241: ...nfigurations from a remote switch The Data Center Bridging eXchange Protocol DCBX is used by DCB devices to exchange configuration information with directly connected peers The protocol may also be used for misconfiguration detection and for the configuration of the peer The Willing mode indicates that the local port has been administratively configured to accept a configuration from the remote de...

Page 242: ...ro means using strict priority for the corresponding Traffic Class You need to enable the Switch to transmit LLDP DCBX ETS Recommendation TLVs to advertise the ETS recommendation If the command no ets recommand is issued without any keywords all ETS recommendation settings bandwidth and priority assignments will be reverted to their default values Example This example shows how to configure the re...

Page 243: ... specified interfaces Example This example shows how to display the ETS information on interface 1 0 1 DXS 3600 32S show ets interface tenGigabitEthernet 1 0 1 Interface Id TenGigabitEthernet 1 0 1 ETS Willing off Max Traffic Classes 8 Admin Traffic Class Setting CoSMapped CoSs Scheduler Bandwidth Queue ID Priorities Type Percentage 00 1 2 3 4 5 6 7 ETS 30 1 ETS 70 2 Strict 0 3 Strict 0 4 Strict 0...

Page 244: ...ion for interface 1 1 1 DXS 3600 32S show ets interface gigabitEthernet 1 1 1 recommend Interface Id gigabitEthernet 1 1 1 Recommended TC Setting CoS Mapped CoSs Scheduler Bandwidth Queue ID Priorities Type Percentage 0 0 1 2 3 4 5 6 7 ETS 30 1 ETS 70 2 Strict 0 3 Strict 0 4 Strict 0 5 Strict 0 6 Strict 0 7 Strict 0 DXS 3600 32S ...

Page 245: ...d the information of the files in the current directory is shown by default Example This example shows how to show the information of all files in the current directory DXS 3600 32S dir Directory of flash 1 rw 107389 2000 02 11 21 53 18 config cfg 2 rw 107455 2000 02 12 01 53 01 y 3 rw 5081096 2000 02 12 01 54 02 runtime had 4 d 0 2000 02 13 00 04 13 system 126002 KB total 120731 KB free DXS 3600 ...

Page 246: ...d 4 d 0 2000 02 13 00 04 13 system 126002 KB total 120731 KB free DXS 3600 32S directory Specifies the destination file or directory destine_file Specifies the destination file source_file Specifies the name of the file to copy including the path Default None Command Mode Privileged EXEC Mode Command Default Level Level 2 Usage Guideline Copy the specified file to a new file or a directory If the ...

Page 247: ...the tmp sub directory of the current directory DXS 3600 32S cd tmp DXS 3600 32S old_filename Specifies the old file name new_filename Specifies the new file name Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline Rename the specified file to a new file name Example This example shows how to rename the runtime had to the name of tmp had in current directory...

Page 248: ...ete empty directories Example This example shows how to delete the tmp directory in current directory and the directory does not contain any files DXS 3600 32S rmdir tmp Removed dir tmp DXS 3600 32S filename Specifies the name of file to be deleted including the path Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline This command does not support the wildc...

Page 249: ...t up image or backup image the operation will be fail Example This example shows how to delete the tmp txt file DXS 3600 32S del tmp txt DXS 3600 32S devname Specifies the name of the device to be formatted including the path fsname Specifies the name of the file system to be used on the device Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline This comman...

Page 250: ... Reference Guide 242 Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline This command shows the current working path Example This example shows how to show the current working path DXS 3600 32S pwd flash DXS 3600 32S ...

Page 251: ...meters SECONDS Specifies the aging time in seconds The valid range is 0 or 10 to 1000000 seconds 0 means that the aging function is disabled Default The default is 300 seconds Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline Set the aging time to 0 to disable the MAC address table aging out function Example This example shows how to set the aging time to 200 se...

Page 252: ...dynamic MAC address table DXS 3600 32S clear mac address table dynamic vlan 10 DXS 3600 32S Example This example shows how to remove the MAC address learned on Port 2 and in VLAN 10 from the dynamic MAC address table DXS 3600 32S clear mac address table dynamic interface tenGigabitEthernet 1 0 2 vlan 10 DXS 3600 32S Example This example shows how to remove the MAC address 00 09 00 70 00 07 from th...

Page 253: ...does not exist Example This example shows how to add the static address 00 00 22 0A 12 F4 to the MAC address table The user also specifies that when any packet received on VLAN 4 that has a destination MAC address of 00 00 22 0A 12 F4 will be forwarded to tenGigabitEthernet 1 0 1 DXS 3600 32S configure terminal DXS 3600 32S config mac address table static 00 00 22 0A 12 F4 vlan 4 interface tenGiga...

Page 254: ... of 00 00 00 0A 12 EE will be dropped DXS 3600 32S configure terminal DXS 3600 32S config mac address table filtering 00 00 00 0A 12 EE vlan 4 DXS 3600 32S config interval SECONDS Specifies the interval of sending the MAC address trap message the default is 1 second history size VALUE Specifies the maximum number of the entries in the MAC address notification table The range is 0 to 500 the defaul...

Page 255: ...cation trap when a MAC address is added on the interface removed Specifies to enable the MAC notification trap when a MAC address is removed from the interface Default By default this option is disabled Command Mode Interface Configuration Mode Command Default Level Level 12 Usage Guideline Used to configure the switch s MAC address table notification on interface Example This example shows how to...

Page 256: ...abled tenGigabitEthernet 1 0 3 Disabled Disabled tenGigabitEthernet 1 0 4 Disabled Disabled tenGigabitEthernet 1 0 5 Disabled Disabled tenGigabitEthernet 1 0 6 Disabled Disabled tenGigabitEthernet 1 0 7 Disabled Disabled tenGigabitEthernet 1 0 8 Disabled Disabled tenGigabitEthernet 1 0 9 Disabled Disabled tenGigabitEthernet 1 0 10 Disabled Disabled tenGigabitEthernet 1 0 11 Disabled Disabled tenGi...

Page 257: ... 00 03 40 11 22 EA Static tenGigabitEthernet 1 0 2 WAC 1 00 0D A2 02 FE 07 Static tenGigabitEthernet 1 0 6 802 1X 1 00 0D A2 02 FE 7A Static tenGigabitEthernet 1 0 6 802 1X 1 5C 02 4B 28 C4 82 Self CPU 1 5C D9 98 C9 C0 0F Static tenGigabitEthernet 1 0 1 JWAC 1 5C D9 98 C9 C0 93 Static tenGigabitEthernet 1 0 1 3 00 02 4B 28 C4 82 Static tenGigabitEthernet 1 0 6 3 00 02 4B 28 C4 CD Static tenGigabit...

Page 258: ...le filtering VLAN MAC Address Type Interface Protocol 1 00 00 00 0A 12 EE Drop Total Entries 1 DXS 3600 32S Example This example shows how to display all the MAC address table entries for VLAN 1 DXS 3600 32S show mac address table vlan 1 VLAN MAC Address Type Interface Protocol 1 00 00 00 EE 00 01 Dynamic tenGigabitEthernet 1 0 8 1 00 00 CD FE 00 05 Static tenGigabitEthernet 1 0 1 1 00 03 40 11 22...

Page 259: ... interfaces from a previous range Optional Specifies a range of interfaces Default None Command Mode Privilege EXEC Mode Command Default Level Level 12 Usage Guideline This command clears the GVRP counters If the INTERFACE ID is not specified then all GVRP counters will be cleared Example This example shows how to clear statistics on all interfaces DXS 3600 32S clear gvrp statistics DXS 3600 32S P...

Page 260: ...e terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if gvrp DXS 3600 32S config if VLAN ID Specifies a VLAN The range is 1 to 4094 You can specify a single VLAN ID a range of VLANs separated by a hyphen or a series of VLANs separated by comma all Specifies all VLANs Default All VLANs are able to be advertised Command Mode Interface Configuration Mode Command Defau...

Page 261: ...his example shows how to enable dynamic VLAN creation with the GVRP protocol DXS 3600 32S configure terminal DXS 3600 32S config gvrp DXS 3600 32S config gvrp dynamic vlan creation DXS 3600 32S config VLAN ID Specifies the VLAN ID used The range is 2 to 4094 You can specify a single VLAN ID a range of VLANs separated by a hyphen or a series of VLANs separated by comma If no VLAN ID specified for t...

Page 262: ...et the timer for leaving all groups The unit is in centiseconds TIMER VALUE Specifies the timer value used here This value must be between 1 and 65535 The timer value in centiseconds Default Join 20 Leave 60 Leave all 1000 Command Mode Interface Configuration Mode Command Default Level Level 12 Usage Guideline The value of these parameters must comply with the following rules 1 LEAVE_TIMER 3 JOIN_...

Page 263: ...net ports 1 2 DXS 3600 32S show gvrp interface tenGigabitEthernet 1 0 1 1 0 2 TGi1 GVRP Status Disabled Join Time 20 centiseconds Leave Time 60 centiseconds Leave All Time 500 centiseconds Advertise VLAN 1 4094 TGi2 GVRP Status Disabled Join Time 20 centiseconds Leave Time 60 centiseconds Leave All Time 1000 centiseconds Advertise VLAN 1 4094 DXS 3600 32S INTERFACE ID Optional Specifies the interf...

Page 264: ...ple shows how to display statistics for GVRP ports 1 2 DXS 3600 32S show gvrp statistics interface tenGigabitEthernet 1 0 1 1 0 2 Interface JoinEmpty JoinIn LeaveEmpty LeaveIn LeaveAll Empty TGi1 0 1 RX 0 0 0 0 0 0 TX 0 0 0 0 0 0 TGi1 0 2 RX 0 0 0 0 0 0 TX 0 0 0 0 0 0 DXS 3600 32S ...

Page 265: ...nly Command Usage Guideline The IGMP buffer includes a list that contains the dynamic multicast groups that the hosts in the direct subnet join If the device joins a group this group will be included in this list To delete all the dynamic group entries from the IGMP buffer use the clear ip igmp group command without parameters Example This example shows how to clear all entries from the IGMP cache...

Page 266: ...ify your setting Example This example shows how to add a host group member manually DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if ip igmp static group 233 3 3 3 DXS 3600 32S config if seconds Specifies the interval sending the group query message in the range1 to 25 in seconds Default 1 second Command Mode Interface Configuration Mode Command Default L...

Page 267: ...g the query interval of the ordinary member Use the show ip igmp interface command to verify your setting Example This example shows how to configure the query interval of ordinary member to 120 seconds on the interface VLAN 1 DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if ip igmp query interval 120 DXS 3600 32S config if seconds Specifies the maximum r...

Page 268: ...Robustness Variable 1 packet losses Use the show ip igmp interface command to verify your setting Example This example shows how to set the value of robustness variable to 3 on the interface VLAN 1 DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if ip igmp robustness variable 3 DXS 3600 32S config if 1 2 3 Specifies three version numbers ranging 1 to 3 Defa...

Page 269: ...n interface any IGMP report or leave messages received by the interface will be checked to determine whether its source IP is in the same network as the interface If it s not in the same network for a received report or leave message the message won t be processed by the IGMP protocol If the check is disabled the IGMP report or leave message with any source IP will be processed by the IGMP protoco...

Page 270: ...GMP router version is The IGMP running version on the interface as specified with the ip igmp version command IGMP query interval is Interval of the IGMP query message as specified with the ip igmp query interval command IGMP querier timeout is The querier role expiring time If this timer is running there s other IGMP querier on this LAN IGMP max query response time is Indicates the maximum allowe...

Page 271: ...ormation about all the multicast groups directly connected to the interface Information about a specific group is displayed if a group address is added to the command Example This example shows information about all the groups DXS 3600 32S show ip igmp groups Interface Multicast Group Uptime Group timer Last Reporter vlan1 228 0 0 1 00 00 17 00 04 18 10 1 4 25 vlan1 228 0 0 2 00 00 16 00 04 19 10 ...

Page 272: ...porter 10 0 31 1 IP Querier SELF Up Time 00 00 19 Group Timer 00 00 00 Group Mode Include V1 Host Timer 0 V2 Host Timer 0 Source List Table Source list Timer sec 162 1 18 1 260 162 1 18 2 260 162 1 18 3 260 162 1 18 4 260 Total Source Entries 4 Interface vlan1 Multicast Group 228 0 0 2 Last Reporter 10 1 4 25 IP Querier SELF Up Time 00 02 46 Group Timer 00 03 34 Group Mode Exclude V1 Host Timer 0 ...

Page 273: ... Reporter Specify the IP address of the host who sent the last IGMP report to this group IP Querier Specify the querier s IP address on this LAN SELF indicates this switch itself is the querier Up time Time of the multicast group being learned Group timer Time of the multicast group will be expired if no any more refresh VI Host Timer In seconds The non zero V1 Host Timer means the switch is runni...

Page 274: ... state and per interface state must be enabled You can verify your configuration through command show ip igmp snooping Example This example shows how to enable the IGMP Snooping global state DXS 3600 32S configure terminal DXS 3600 32S config ip igmp snooping DXS 3600 32S config Example This example shows how to disable the IGMP Snooping state on interface VLAN 1 DXS 3600 32S configure terminal DX...

Page 275: ...cifies an interface that cannot be multicast router interface INTERFACE TYPE Specifies the interface type Possible valid value is tenGigabitEthernet INTERFACE ID Specifies the port number Specifies a series of ports or separate a range of ports from a previous range No space before and after the comma Specifies a range of ports No space before and after the hyphen GROUP ID Specifies the port chann...

Page 276: ...onfig vlan ip igmp snooping mrouter forbidden port channel 1 DXS 3600 32S config vlan SECONDS Specifies the aging out time for dynamic router port in second The range is 10 to 65535 Default 300 seconds Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline When you enable IGMP Snooping the switch will consider an interface connected to a multicast router when receivin...

Page 277: ...can use show ip igmp snooping querier Example This example shows how to enable IGMP Snooping querier state on VLAN 1 DXS 3600 32S configure terminal DXS 3600 32S config vlan 1 DXS 3600 32S config vlan ip igmp snooping querier DXS 3600 32S config vlan Example This example shows how to disable IGMP Snooping querier state on VLAN 1 DXS 3600 32S configure terminal DXS 3600 32S config vlan 1 DXS 3600 3...

Page 278: ...vlan ip igmp snooping static group 235 0 0 0 interface tenGigabitEthernet 1 0 2 1 0 4 DXS 3600 32S config vlan Example This example shows how to delete interface 2 from group 235 0 0 0 in VLAN 1 DXS 3600 32S configure terminal DXS 3600 32S config vlan 1 DXS 3600 32S config vlan no ip igmp snooping static group 235 0 0 0 interface tenGigabitEthernet 1 0 2 DXS 3600 32S config vlan SECONDS Specifies ...

Page 279: ...he amount of time in seconds between general query transmissions The range is 1 to 31744 seconds Default 125 seconds Command Mode Interface Configuration Mode Command Default Level Level 8 Usage Guideline The query interval is the interval between General Queries sent by the Querier By varying the query interval an administrator may tune the number of IGMP messages on the network larger values cau...

Page 280: ...d IGMPv1 general query packet When configured to version 2 IGMP Snooping will only send IGMPv2 general query packet When configured to version 3 IGMP Snooping will only send IGMPv3 general query packet Querier Elect When configured to version 1 IGMP Snooping will always act as querier and will not initiate a new Querier electing no matter what the IGMP query packet it received When configured to v...

Page 281: ...Usage Guideline This command is used to display IGMP Snooping related configurations If no parameter is specified this command will display IGMP Snooping configurations on all VLANs Example This example shows how to display the IGMP Snooping configurations on all VLANs DXS 3600 32S show ip igmp snooping IGMP Snooping Global State Enabled Dynamic Mrouter Aging Time 300 seconds VLAN 1 Configuration ...

Page 282: ... state as specified with the ip igmp snooping querier command Version Specify the IGMP Snooping version Query Interval Specify the IGMP Snooping query interval which is configured by command ip igmp snooping query interval Max Response Time Indicates the max response time which is configured by command ip igmp snooping max response time VLAN ID Specifies the VLAN ID Display the specified VLAN info...

Page 283: ...l switch is querier and it won t be expired GROUP ADDRESS Specifies the group IP address you want to display If no group address specified all IGMP group information will be displayed VLAN ID Specifies the VLAN ID Display the specified VLAN information Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline This command is used to display IGMP Snooping dynamica...

Page 284: ...ID Group address Source address FM Exp sec Interface 1 230 1 1 1 14 1 1 11 EX 258 1 0 1 Total entries 1 DXS 3600 32S Display Parameters Description VLAN ID Displays the VLAN ID Group address Displays the Group IP address FM Group filter mode EX means exclude and IN means include Source address Displays the Source IP address Exp The expiring time of this group This group is auto created by protocol...

Page 285: ...ay the IGMP snooping static group information on VLAN 1 DXS 3600 32S show ip igmp snooping static group vlan 1 VLAN ID Group Address Interface 1 235 0 0 0 1 0 3 1 0 4 Total Entries 1 DXS 3600 32S Example This example shows how to display the IGMP snooping static group information for specific group 235 0 0 0 DXS 3600 32S show ip igmp snooping static group 235 0 0 0 VLAN ID Group Address Interface ...

Page 286: ...32S Example This example shows how to display the IGMP Snooping multicast router interface information on VLAN 1 DXS 3600 32S show ip igmp snooping mrouter vlan 1 VLAN ID Interface 1 1 0 1 static DXS 3600 32S Display Parameters Description static Static mrouter interface information which is configured by command ip igmp snooping vlan mrouter forbidden Forbidden mrouter interface information which...

Page 287: ...to display IGMP Snooping forwarding information on VLAN 1 DXS 3600 32S show ip igmp snooping forwarding table vlan 1 Group Source Forwarding Interface 225 0 0 3 10 71 57 1 1 0 3 1 0 10 225 0 0 4 10 71 57 1 1 0 3 1 0 8 225 0 0 5 10 71 57 1 1 0 1 1 0 7 Total Entries 3 DXS 3600 32S Display Parameters Description Group Group IP address of the multicast stream Source Source IP of the multicast stream F...

Page 288: ... v1 v2 v3 0 38 76 IGMP Report v1 v2 v3 0 0 0 IGMP Leave 0 VLAN 2 Group Number 1 Receive Statistics IGMP Query v1 v2 v3 0 0 2 IGMP Report v1 v2 v3 0 0 6 IGMP Leave 2 Transmit Statistics IGMP Query v1 v2 v3 0 0 6 IGMP Report v1 v2 v3 0 0 0 IGMP Leave 0 DXS 3600 32S Example This example shows how to display IGMP Snooping statistics counter information on VLAN 1 DXS 3600 32S show ip igmp snooping stat...

Page 289: ... Global Configuration Mode Command Default Level Level 8 Usage Guideline Users can verify the settings by entering the show interface out band command Example This example shows how to set the IP address 10 1 1 1 8 for out band interface 1 DXS 3600 32S configure terminal DXS 3600 32S config interface out band 1 DXS 3600 32S config if ip address 10 1 1 1 255 0 0 0 DXS 3600 32S config if int Specifi...

Page 290: ...Users can verify the settings by entering the show interface out band command Example This example shows how to shutdown the out band interface 1 DXS 3600 32S configure terminal DXS 3600 32S config interface out band 1 DXS 3600 32S config if shutdown DXS 3600 32S config if int Specifies the out band interface number Default None Command Mode EXEC Mode Command Default Level Level 3 Usage Guideline ...

Page 291: ...C Mode Command Default Level Level 3 Usage Guideline Use this command to display the loopback interface Example This example shows how to display the loopback interface DXS 3600 32S show interface loopback 2 Interface loopback2 Interface Admin State Enabled IPv4 Address 10 1 1 1 8 DXS 3600 32S ...

Page 292: ...uration Mode Command Default Level Level 8 Usage Guideline Standard IP access list is used by routing protocol Users can verify the settings by entering the show ip standard access list command Example This example shows how to create a standard IP access list and enter the standard IP access list configuration mode DXS 3600 32S configure terminal DXS 3600 32S config ip standard access list IPS DX...

Page 293: ...32S config std nacl NETWORK ADDRESS Specifies a specific network address Default None Command Mode Access List Configuration Mode Command Default Level Level 8 Usage Guideline One or multiple permit rules can be added to the list Users can verify the settings by entering the show ip standard access list command Example This example shows how to configure permit rules for a standard IP access list ...

Page 294: ... 125 1 2 2 20 Total Access List Number 1 DXS 3600 32S Display Parameters Description IP Standard Access List The name of standard IP access list It is specified with the command ip standard access list Total Entries Number The total number of rules in this standard IP access list Permit Deny Rules of the standard IP access list They are specified with the command permit and deny Total Access List ...

Page 295: ...a primary or secondary IP address for an interface An interface can have one primary IP address and multiple secondary IP addresses The primary IP address must set first if there is no primary IP address the secondary IP address can t set successful for an interface Also to remove the primary IP address needs remove all the secondary IP address first Currently this command is valid for the VLAN in...

Page 296: ...1 DXS 3600 32S config if ip address dhcp DXS 3600 32S config if Parameters None Default By default this option is disabled Command Mode Interface Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline This command enables the forwarding of IP directed broadcast on an interface where the broadcast becomes a physical broadcast The no form of this command disables the f...

Page 297: ...ault gateway to 10 1 1 1 DXS 3600 32S configure terminal DXS 3600 32S config interface out band 1 DXS 3600 32S config if ip default gateway 10 1 1 1 DXS 3600 32S config if interface name Optional Specifies the IP interface s name Use the interface type combined with the interface number as the interface s name Default None Command Mode Privileged Mode Command Default Level Level 3 Usage Guideline ...

Page 298: ...have multiple rule entries each is represented by a sequence number The rule with the lower sequence number will be evaluated first If the sequence number is not specified for the defined rule entry the sequence number will be automatically given The automatically given sequence number will be a multiple of 5 Therefore if the defined rule is the first rule in the prefix list the automatically give...

Page 299: ...while set the maximum prefix length to 24 DXS 3600 32S configure terminal DXS 3600 32S config ip prefix list my_pref permit 10 0 0 0 8 le 24 DXS 3600 32S config Example This example shows how to create and configure the IP prefix list named my_pref to deny routes from the 12 0 0 0 12 network while set minimum prefix length to 20 and maximum prefix length to 24 DXS 3600 32S configure terminal DXS 3...

Page 300: ...s matched Example This example shows how to clear the counter of all the IP prefix lists DXS 3600 32S clear ip prefix list counter all DXS 3600 32S PREFIX LIST NAME Optional Displays information of the specified IP prefix list Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline If no parameter is specified that all IP prefix lists information will be displa...

Page 301: ...DXS 3600 Series 10GbE Layer 2 3 Switch CLI Reference Guide 293 ...

Page 302: ...P multicast packet matches the source network in a multicast static route then it will be allowed only when it comes from the RPF interface and it will be RPF check failed if it comes from other interfaces If the source IP address of the received IP multicast packet does not match any multicast static route source network dynamic unicast route will be used by PIM for RPF check To verify you config...

Page 303: ...ing state When this command and any multicast routing protocol are both enabled IGMP will automatically be enabled on the interface and then the multicast routing forwarding can take effect To verify you configuration use the command show ip multicast routing Example This example shows how to enable global IP multicast routing DXS 3600 32S configure terminal DXS 3600 32S config ip multicast routin...

Page 304: ...he system DXS 3600 32S show ip mroute IP Multicast Routing Table Flags D Dense S Sparse V DVMRP s SSM Group F Register flag P Pruned R S G RPT bit set T SPT bit set Outgoing interface flags W Assert winner Timers Uptime Expires 10 71 57 210 235 0 0 4 00 02 53 00 00 37 flags ST Incoming interface vlan1 RPF Neighbor 1 2 0 1 Outgoing interface List vlan3 Forwarding 00 00 04 00 04 20 20 2 2 10 239 0 0...

Page 305: ...try is operating in PIM SM mode s SSM Group The entry is a member of an SSM group V DVMRP The entry is operating in DVMRP mode F Register Flag Status of whether the software is registering for a multicast source P Pruned Route has been pruned This information indicates that this switch has no outgoing for this group R S G RPT bit set Specify this switch is the RPT upstream for this group and this ...

Page 306: ...20 0 0 1 DXS 3600 32S show ip rpf 20 0 0 1 Source IP 20 0 0 1 RPF interface vlan3 RPF type unicast metric 4 DXS 3600 32S Example This example shows how to display RPF information for 30 0 0 1 DXS 3600 32S show ip rpf 30 0 0 1 Source IP 30 0 0 1 RPF interface vlan2 RPF type unicast metric 2 DXS 3600 32S Example This example shows how to display RPF information of 172 18 61 8 DXS 3600 32S show ip rp...

Page 307: ...erface Name IP Address Multicast Routing vlan1 10 90 90 90 8 PIM SM vlan2 1 0 90 3 8 DVMRP vlan3 2 4 2 2 8 PIM DM vlan4 3 4 4 3 8 N A Total Entries 4 DXS 3600 32S Example This example shows how to display multicast interface information on interface vlan1 DXS 3600 32S show ip multicast interface vlan1 Interface Name IP Address Multicast Routing vlan1 1 0 90 3 8 DVMRP Total Entries 1 DXS 3600 32S D...

Page 308: ... This example shows how to display IP multicast routing information DXS 3600 32S show ip multicast routing IP multicast routing state Disabled DXS 3600 32S Display Parameters Description IP multicast routing state This state can be modified by command ip multicast routing ...

Page 309: ...nd Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline Access to the specified LINE mode Example This example shows how to enter the LINE mode from LINE CONSOLE DXS 3600 32S configure terminal DXS 3600 32S config line console DXS 3600 32S config line minutes Specifies the minutes of specified timeout This value must be between 0 and 1439 seconds Optional Specifies the sec...

Page 310: ...iguration Mode Command Default Level Level 15 Usage Guideline This command sets the speed at which the terminal transmits packets It is only applicable for serial ports Example This example shows how to configure the rate of the serial port to 115200 bps DXS 3600 32S configure terminal DXS 3600 32S config line console DXS 3600 32S config line speed 115200 DXS 3600 32S config line console Displays ...

Page 311: ...nation address src ip Specifies that the switch should examine the IP source address src dst ip Specifies that the switch should examine the IP source and destination address Default Traffic is distributed according to the destination and source MAC addresses of the packets Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline None Example This example shows how to ...

Page 312: ...age Guideline The LACP system priority consists of the Layer 2 management MAC address and its priority value where the MAC address is fixed but the priority value is configurable If two priorities are equal then the smaller the MAC address is the higher the priority is All LACP groups on the switch share the system priority Changing the system priority may influence the whole aggregation groups on...

Page 313: ... static trunk If not specify the aggregate port is LACP Default By default the physical port does not belong to any aggregate port Command Mode Interface Configuration Mode Command Default Level Level 15 Usage Guideline When adding a port or port list to the aggregate port that does not exist a new aggregate port will be created automatically When the first port is added to the aggregate port the ...

Page 314: ...00 32S configure terminal DXS 3600 32S config interface range tenGigabitEthernet 1 0 1 1 0 2 DXS 3600 32S config if range port group mode active DXS 3600 32S config if range aggregate port number Specifies the number of the aggregate port summary Displays information of the designated aggregate port load balance Displays the global load balance Default None Command Mode EXEC Mode Command Default L...

Page 315: ...x3f 32768 2 SA 61440 00 d0 f8 00 00 02 0x3 0x2 0x3f 32768 3 SA 61440 00 d0 f8 00 00 02 0x3 0x3 0x3f 32768 4 SA 61440 00 d0 f8 00 00 02 0x1 0x4 0x37 32768 5 FP 0 00 00 00 00 00 00 0x0 0x0 0x0 0x0 DXS 3600 32S Display Parameters Description System priority Show the LACP system priority Working mode Show the aggregator port working mode Static Manual Trunk Dynamic LACP Local information Show the loca...

Page 316: ...ingle octet with these meanings bit0 LACP_Activity bit1 LACP_Timeout bit2 Aggregation bit3 Synchronization bit4 Collecting bit5 Distributing bit6 Defaulted bit7 Expired Partner information Partly show the LACP Partner information of the peer port Dev ID Partly show the system MAC information of the peer device Display Parameters Description ...

Page 317: ...end on the LLDP setting of each physical interface For the advertisement of LLDP packets the switch announces the information to its neighbor through physical interfaces For the receiving of LLDP packets the switch will learn the information from the LLDP packets advertised from the neighbor in the neighbor table Example This example shows how to enable the LLDP global setting DXS 3600 32S configu...

Page 318: ...the interval between consecutive transmissions of LLDP advertisements on each physical interface The range is from 5 second to 32768 second Default 30 seconds Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline This interval controls how often active ports retransmit advertisements to their neighbors Example This example shows how to set the LLDP message TX interv...

Page 319: ...hen the TTL for a given advertisement expires the advertised data is deleted from the neighbor switch s MIB Example This example shows how to set the LLDP message tx hold multiplier to 3 DXS 3600 32S configure terminal DXS 3600 32S config lldp message tx hold multiplier 3 DXS 3600 32S config Example This example shows how to set the LLDP message tx hold multiplier to the default value DXS 3600 32S...

Page 320: ...erval to 5 seconds DXS 3600 32S configure terminal DXS 3600 32S config lldp reinit delay 5 DXS 3600 32S config Example This example shows how to set the re init delay interval to default value DXS 3600 32S configure terminal DXS 3600 32S config no lldp reinit delay DXS 3600 32S config seconds Specifies the timer of the notification interval for sending notifications to configured SNMP trap receive...

Page 321: ...s to configured SNMP trap receiver s if an LLDP data change is detected in an advertisement received on the physical interface from an LLDP neighbor The definition of change includes new available information information timeout and information updates The changed type includes any data update insertion or removal Example This example shows how to set the SNMP notification state to enable for a ra...

Page 322: ...r setting the management address entry IPv4 DXS 3600 32S configure terminal DXS 3600 32S config interface range tenGigabitEthernet 1 0 1 1 0 2 DXS 3600 32S config if range lldp management address ipv4 10 1 1 1 DXS 3600 32S config if range Example This example shows how to delete the management address entry IPv4 from ports 1 to 2 DXS 3600 32S configure terminal DXS 3600 32S config interface range ...

Page 323: ...3600 32S config if port description Specifies the Port Description TLV to send or receive The Port Description TLV allows network management to advertise the IEEE 802 LAN station s port description system capabilities Specifies the System Capabilities TLV to send or receive The System Capabilities field shall contain a bit map of the capabilities that define the primary function s of the system sy...

Page 324: ...nal TLV that allows a bridge port to advertise a port and protocol VLAN ID vlan name Specifies the VLAN Name TLV to send or receive The VLAN Name TLV is an optional TLV that allows an IEEE 802 1Q compatible IEEE 802 LAN station to advertise the assigned name of any VLAN with which it is configured protocol identify Specifies the Protocol Identity TLV to send or receive The Protocol Identity TLV is...

Page 325: ...onfig if no lldp dot1 tlv select port vlan id DXS 3600 32S config if Example This example shows how to enable port and protocol vlan id TLV advertisement from VLAN 1 3 DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if lldp dot1 tlv select port and protocol vlan id interface 1 3 DXS 3600 32S config if Example This example shows how to disa...

Page 326: ... manual set overrideaction link aggregation Specifies the Link Aggregation TLV to send or receive The Link Aggregation TLV indicates whether the link is capable of being aggregated whether the link is currently in an aggregation and if in an aggregation the port identification of the aggregation power via mdi Specifies the Power via MDI TLV to send or receive Three IEEE 802 3 PMD implementations 1...

Page 327: ...e Default None Command Mode User EXEC Mode Command Default Level Level 3 Usage Guideline Used to show LLDP system global configurations Example This example shows how to display the LLDP system global configuration status DXS 3600 32S show lldp LLDP System Information Chassis ID Subtype MAC Address Chassis ID 00 01 02 03 04 00 System Name System Description TenGigabit Ethernet Switch System Capabi...

Page 328: ...6 1 4 1 171 10 127 1 Advertising Ports 1 0 1 1 0 5 DXS 3600 32S Example This example shows how to display all management address information DXS 3600 32S show lldp management address Address 1 Subtype IPv4 Address 192 168 254 10 IF Type IfIndex OID 1 3 6 1 4 1 171 10 127 1 Advertising Ports Total Entries 1 DXS 3600 32S interface interface id Specifies the valid physicla interface Optional Specifie...

Page 329: ...ement Address None Port VLAN ID Disabled Enabled Port_and_Protocol_VLAN_ID None Enabled VLAN Name None Enabled Protocol_Identity None MAC PHY Configuration Status Disabled Link Aggregation Disabled Maximum Frame Size Disabled DXS 3600 32S interface interface id Specifies the valid physical interface Optional Specifies a series of interfaces or separate a range of interfaces from a previous range N...

Page 330: ...gotiation Support Supported Auto Negotiation Enabled Not Enabled Auto Negotiation Advertised Capability 8000 hex Auto Negotiation Operational MAU Type 0000 hex Link Aggregation Aggregation Capability Aggregated Aggregation Status Not Currently in Aggregation Aggregation Port ID 0 Maximum Frame Size 1536 DXS 3600 32S Example This example shows how to display outbound LLDP advertisements for the int...

Page 331: ...0 01 02 03 05 00 Port Description D Link DXS 3600 32S R1 10 023 P ort 1 on Unit 1 DXS 3600 32S interface interface id Specifies the valid physical interface Optional Specifies a series of interfaces or separate a range of interfaces from a previous range No space before and after the comma Optional Specifies a range of interfaces No space before and after the hyphen brief Displays the information ...

Page 332: ...gotiation Support Supported Auto Negotiation Enabled Not Enabled Auto Negotiation Advertised Capability 8000 hex Auto Negotiation Operational MAU Type 0000 hex Link Aggregation Aggregation Capability Aggregated Aggregation Status Not Currently in Aggregation Aggregation Port ID 0 Maximum Frame Size 1536 DXS 3600 32S Example This example shows how to display outbound LLDP advertisements for an inte...

Page 333: ...06 Port Description D Link DXS 3600 32S R1 10 023 P ort 1 on Unit 1 DXS 3600 32S Parameters None Default None Command Mode User EXEC Mode Command Default Level Level 3 Usage Guideline The global LLDP statistics displays an overview of neighbor detection activity on the switch Example This example shows how to display global statistics information DXS 3600 32S show lldp statistic Last Change Time 6...

Page 334: ...xample This example shows how to display statistics information of an interface DXS 3600 32S show lldp statistic interface tenGigabitEthernet 1 0 1 Interface ID 1 0 1 LLDPStatsTXPortFramesTotal 27 LLDPStatsRXPortFramesDiscardedTotal 0 LLDPStatsRXPortFramesErrors 0 LLDPStatsRXPortFramesTotal 27 LLDPStatsRXPortTLVsDiscardedTotal 0 LLDPStatsRXPortTLVsUnrecognizedTotal 0 LLDPStatsRXPortAgeoutsTotal 0 ...

Page 335: ...o enable the LLDP DCBX setting DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if lldp dcbx run Example This example shows how to disable the LLDP DCBX setting DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if no lldp dcbx run ets configuration Specifies the ETS Configuration TLV ...

Page 336: ...ETS Configuration TLV advertisement DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if no lldp dcbx tlv_select ets configuration interface INTERFACE ID Specifies the valid interfaces that are physical interfaces Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline This command displays the LLDP DCBX ...

Page 337: ...t priority0 0 priority1 4 priority2 0 priority3 0 priority4 5 priority5 0 priority6 2 priority7 0 ETS Configuration Traffic Class Bandwidth TC0 0 TC1 50 TC2 0 TC3 0 TC4 50 TC5 0 TC6 0 TC7 0 ETS Configuration Traffic Selection Algorithm TC0 tsaVendorSpecific TC1 tsaVendorSpecific TC2 tsaVendorSpecific TC3 tsaVendorSpecific TC4 tsaVendorSpecific TC5 tsaVendorSpecific TC6 tsaVendorSpecific TC7 tsaVen...

Page 338: ...id interfaces that are physical interfaces Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline This command display the information learned from the neighbor parameters Example This example shows how to display a specific physical interface s remote information DXS 3600 32S show lldp dcbx remote interface tenGigabitEthernet 1 0 1 Port ID 1 0 1 Entity 1 Chas...

Page 339: ...VendorSpecific ETS Recommendation Traffic Class Bandwidth TC0 0 TC1 50 TC2 0 TC3 0 TC4 50 TC5 0 TC6 0 TC7 0 ETS Recommendation Traffic Selection Algorithm TC0 tsaVendorSpecific TC1 tsaVendorSpecific TC2 tsaVendorSpecific TC3 tsaVendorSpecific TC4 tsaVendorSpecific TC5 tsaVendorSpecific TC6 tsaVendorSpecific TC7 tsaVendorSpecific PFC Basic Configuration Willing Enabled MBC Enabled PFC capability En...

Page 340: ... Configuration Mode Command Default Level Level 12 Usage Guideline This command is used to configure the fast start repeat count When an LLDP MED Capabilities TLV is detected for an MSAP identifier not associated with an existing LLDP remote system MIB then the application layer shall start fast start mechanism and shall set the medFastStart timer to medFastStartRepeatCount times 1 Example This ex...

Page 341: ...annot transmit LLDP MED PDU Default No LLDP MED TLV is selected Command Mode Interface Configuration Mode Command Default Level Level 12 Usage Guideline This command is used to enable or disable transmit LLDP MED TLVs Setting non supported capability shall have no functional effect and will result in an inconsistent value error returned to the management application It s effectively disables LLDP ...

Page 342: ...567890 Manufacturer Name D Link Model Name DXS 3600 32S TenGigabit Ethernet Asset ID LLDP MED Configuration Fast Start Repeat Count 10 LLDP MED Log State Disabled DXS 3600 32S interface interface id Specifies the valid physical interface Optional Specifies a series of physical interfaces No space before and after the comma Optional Specifies a range of physical interfaces No space before and after...

Page 343: ...EC Mode Command Default Level Level 3 Usage Guideline This command displays the each physical interface information currently available for populating outbound LLDP MED advertisements Example This example shows how to displays the each physical interface information currently available for populating outbound LLDP MED advertisements DXS 3600 32S show lldp med local interface tenGigabitEthernet 1 0...

Page 344: ... Level Level 3 Usage Guideline Used to display the LLDP MED information learned from the neighbor Example This example shows how to display the LLDP MED information learned from the neighbor DXS 3600 32S show lldp med remote interface tenGigabitEthernet 1 0 1 Interface ID 1 0 1 Remote Entities Count 0 None DXS 3600 32S ...

Page 345: ...ode Command Default Level Level 15 Usage Guideline Use this command to view the current system memory state and usage information including the memory information about DRAM and FLASH Example This example shows the current memory usage information DXS 3600 32S show memory DRAM Utilization Total DRAM 524288 KB Used DRAM 309220 KB Utilization 58 Flash Memory Utilization Total Flash 126002 KB Used Fl...

Page 346: ...multaneously rx Specifies to monitor only the inbound frames tx Specifies to monitor only the outbound frames destination Specifies the destination port it can be one physical or a trunk member interface interface interface id Specifies the physical interface ID used acl Specifies the flow based mirror Only the ingress mirror is supported name Specifies the ACL name for the monitor session If the ...

Page 347: ... The source port is 5 destination port is 21 and it is a member of trunk group 1 only RX traffic are mirrored DXS 3600 32S configure terminal DXS 3600 32S config monitor session 1 source interface tenGigabitEthernet 1 0 1 1 0 3 DXS 3600 32S config monitor session 1 destination interface tenGigabitEthernet 1 0 9 acl mac_based_mirr DXS 3600 32S config monitor session 2 destination interface tenGigab...

Page 348: ...ay all the mirror sessions DXS 3600 32S show monitor sess num 1 src intf TenGigabitEthernet1 0 1 frame type Both TenGigabitEthernet1 0 2 frame type Both TenGigabitEthernet1 0 3 frame type Both dest intf TenGigabitEthernet1 0 9 acl name mac_based_mirr sess num 2 src intf TenGigabitEthernet1 0 5 frame type RX dest intf TenGigabitEthernet1 0 21 port group 1 acl name DXS 3600 32S Display Parameters De...

Page 349: ...DXS 3600 Series 10GbE Layer 2 3 Switch CLI Reference Guide 341 ...

Page 350: ...cast packets Default The default selection is forward unregistered Command Mode Interface Configuration Mode Command Default Level Level 8 Usage Guideline When a multicast packet arrives the switch will look up forwarding table for this packet If the lookup failed the destination group is an unregistered group A forwarding entry lookup failed multicast packet is called unregistered packet which wi...

Page 351: ...s how to display multicast filter mode information for all VLANs DXS 3600 32S show multicast filtering mode VLAN ID VLAN Name Multicast Filter Mode 1 default forward unregistered 2 VLAN002 forward all 3 VLAN003 filter unregistered DXS 3600 32S Example This example shows how to display multicast filter information for VLAN 1 DXS 3600 32S show multicast filtering mode vlan 1 VLAN ID VLAN Name Multic...

Page 352: ...ode to disable the MPLS forward on this interface mpls ip no mpls ip Parameters None Default Disabled Command Mode Global Configuration Mode Command Default Level Level 3 Usage Guideline This command enables MPLS function in the global level Example This example shows how to enable MPLS globally DXS 3600 32S configure terminal DXS 3600 32S config mpls ip DXS 3600 32S config Parameters None Default...

Page 353: ...and enabled on the interface Example This example shows how to enable MPLS on interface VLAN 1 DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if mpls ip DXS 3600 32S config if NETWORK PREFIX PREFIX LENGTH Specifies the FEC of the static FTN out label LABEL VALUE Specifies the out label of this FEC nexthop IP ADDRESS Specifies the next hop IP address of thi...

Page 354: ...configure one static VC FTN item DXS 3600 32S configure terminal DXS 3600 32S config mpls static l2vc ftn 2 10 1 1 1 out label 100 DXS 3600 32S config in label LABEL VALUE Specifies the incoming label value of the ILM forward action Specify the forward behavior of this ILM entry swap label Swap the top label in the label stack and forward the MPLS packets to next hop pop Pop the top label in the l...

Page 355: ...24 at transit LSR DXS 3600 32S configure terminal DXS 3600 32S config mpls static ilm in label 100 forward action swap label 200 nexthop 120 1 1 3 fec 172 18 10 0 24 DXS 3600 32S config Example This example shows how to configure a static ILM that pop label from 100 for prefix FEC 172 18 10 0 24 at egress LER DXS 3600 32S configure terminal DXS 3600 32S config mpls static ilm in label 100 forward ...

Page 356: ...ate Example This example shows how to enable the LDP trap state DXS 3600 32S configure terminal DXS 3600 32S config snmp server enable traps mpls ldp DXS 3600 32S config Parameters None Default Disabled Command Mode Interface Configuration Mode Command Default Level Level 15 Usage Guideline This command only can be applied on a Layer 3 VLAN interface Use the mpls label protocol ldp command in the ...

Page 357: ...w to configure the hello hold time of the VLAN 10 interface to 30 seconds DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 10 DXS 3600 32S config if mpls ldp hello holdtime 30 DXS 3600 32S config if SECONDS Specifies the link hello interval time in seconds The range is 1 65535 seconds Default 5 seconds Command Mode Interface Configuration Mode Command Default Level Level 15 Usage...

Page 358: ...sage DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 10 DXS 3600 32S config if mpls ldp targeted hello accept DXS 3600 32S config if IP ADDRESS Specifies the LSR ID of the targeted peer Default No targeted peer Command Mode Global Configuration Mode Command Default Level Level 3 Usage Guideline This command is used to create a targeted peer and enter the MPLS targeted peer confi...

Page 359: ...IPv4 address must be an IP address of an existing interface Default The LSR ID will be selected according the following rules 1 If a loopback interface is configured the LSR ID is set to the IP address of the loopback interface If multiple loopback interfaces are configured the loopback with the highest IP address will be used 2 If no loopback interface is configured the LSR ID is set to the highe...

Page 360: ...s the transport address by all interfaces If you configure the transport address to interface the IP address of each interface is used as the transport address If you configure the transport address to a specified IP address this address is used as transport address by all interfaces Note If LDP is running configuring the transport address will lead to LDP sessions restarting Note If LDP is runnin...

Page 361: ...trap log state is enabled LDP will send a trap log to SNMP server to notify the session establishment failure Example This example shows how to configure the maximum back off delay time to 1000 seconds DXS 3600 32S configure terminal DXS 3600 32S config mpls label protocol ldp DXS 3600 32S config mpls router backoff maximum 1000 SECONDS Specifies the keep alive hold time in seconds The range is 15...

Page 362: ...ch bindings It helps to speed up the setup of LSP in case there is a change in the next hop Note If LDP is running configuring label retention mode will lead to LDP sessions restart Example This example shows how to configure the label retention mode to conservative DXS 3600 32S configure terminal DXS 3600 32S config mpls label protocol ldp DXS 3600 32S config mpls router label retention mode cons...

Page 363: ...de Default Downstream Unsolicited Distribution Mode Command Mode Interface Configuration Mode Command Default Level Level 12 Usage Guideline This command only can be applied on Layer 3 VLAN interface This command is used to configure the label distribution method If the label distribution method is Downstream on Demand the downstream LSR advertises a label mapping when an upstream connection makes...

Page 364: ...d to LDP sessions restart Example This example shows how to enable LDP loop detection DXS 3600 32S configure terminal DXS 3600 32S config mpls label protocol ldp DXS 3600 32S config mpls router loop detection VALUE Specifies the maximum hop count allowed for loop detection The range is 1 255 Default The default value is 254 Command Mode MPLS Router Configuration Mode Command Default Level Level 15...

Page 365: ...ows how to configure the maximum path vector to 30 DXS 3600 32S configure terminal DXS 3600 32S config mpls label protocol ldp DXS 3600 32S config mpls router mpls ldp max path vector 30 Parameters None Default Egress LSR advertise Implicit NULL label Command Mode MPLS Router Configuration Mode Command Default Level Level 15 Usage Guideline This command is used to configure LDP Penultimate Hop Pop...

Page 366: ...tion will cause the LDP to restart Example This example shows how to enable LDP MD5 authentication DXS 3600 32S configure terminal DXS 3600 32S config mpls label protocol ldp DXS 3600 32S config mpls router md5 authentication IP ADDRESS Specifies the peer IP address The IP address will be the peer s LSR ID password PASSWORD Specifies the password The maximum length of the password is 32 characters...

Page 367: ... This example shows how to display the MPLS global configuration DXS 3600 32S show mpls MPLS Status Enabled LSP Trap Status Disabled DXS 3600 32S INTERFACE ID Optional Specifies the interface that will displayed If no interface is specified all MPLS enabled interfaces information will be displayed Default None Command Mode EXEC Mode Command Default Level Level 3 Usage Guideline This command is use...

Page 368: ...70 VLAN 10 172 18 1 1 5 VC11 192 1 1 1 100 70 VLAN 10 172 18 1 1 6 VC11 192 1 1 1 200 Total Entries 6 DXS 3600 32S Example This example shows how to display detailed MPLS label forwarding path information DXS 3600 32S show mpls forwarding table detail LSP 1 Type Transit Status Up FEC 201 1 1 0 24 Owner Static In Label 20 Out Label Swap 30 Next Hop 172 18 1 1 Out Interface VLAN 10 LSP 2 Type Transi...

Page 369: ... Label Next Hop Out Interface 201 10 10 0 24 500 172 10 1 1 VLAN 10 202 1 1 0 24 600 172 10 1 1 VLAN 10 VC11 192 1 1 1 100 70 172 18 1 1 VLAN 10 Total Entries 3 DXS 3600 32S Example This example shows how to display ILM information DXS 3600 32S show mpls forwarding table ilm FEC In Label Out Label Out Interface Next Hop 201 1 1 0 24 20 30 VLAN 10 172 18 1 1 172 1 1 1 32 50 VLAN 10 172 18 1 1 VC11 ...

Page 370: ...P Port 646 Max PDU Length 1500 Max Backoff 600 Seconds Transport Address 172 18 1 1 Keep Alive Time 40 Seconds LSP Control Mode Independent Label Retention Liberal Loop Detection Enabled Path Vector Limit 255 Hop Count Limit 255 Authentication Enabled PHP Implicit null Trap Status Enabled DXS 3600 32S INTERFACE ID Optional Specifies the interface that will displayed If no interface is specified di...

Page 371: ...ution Method DoD Interface if2 Admin State Enabled Oper State Disabled Targeted Hello Accept Acceptable Hello Interval 5 Sec Hello Hold Time 15 Sec Distribution Method DoD Total Entries 2 DXS 3600 32S IP ADDRESS Optional Specifies the targeted peer s IP address that will display If not specified all targeted peer information will be displayed Default None Command Mode EXEC Mode Command Default Lev...

Page 372: ...DP peer information DXS 3600 32S show mpls ldp discovery Local LDP Identifier 10 1 1 1 0 Discovery Sources Interfaces VLAN 10 ldp xmit recv LDP Id 172 23 0 77 0 VLAN 20 ldp xmit recv LDP Id 192 18 0 15 0 Targeted Hellos 10 1 1 1 10 133 0 33 ldp active xmit recv LDP Id 10 133 0 33 0 10 1 1 1 172 18 30 2 ldp passive xmit recv LDP Id 172 18 30 2 0 Total entries 4 DXS 3600 32S IP ADDRESS Specifies the...

Page 373: ... 1 1 1 0 Protocol Version 1 0 Transport address 192 1 1 1 Keep Alive Time 40 sec Distribution Method DU Loop Detect Disabled Path vector limit 1500 Max PDU Length 0 Peer 202 20 1 1 0 Protocol Version 1 0 Transport address 202 20 1 1 Keep Alive Time 40 sec Distribution Method DU Loop Detect Disabled Path vector limit 0 Max PDU Length 1500 Total Entries 3 DXS 3600 32S peer IP ADDRESS Specifies the I...

Page 374: ...tail Peer 10 1 1 2 0 Status OPERATIONAL Role Active Keep Alive Sec 40 Remain Time Sec 20 Create Time 2009 12 1 14 10 30 Distribution Method DU Loop Detection Enabled Path Vector Limit 255 Max PDU Length 1500 Address List 10 1 1 2 172 18 1 1 Total Entries 1 DXS 3600 32S Example This example shows how to display LDP session statistics for peer 10 1 1 2 DXS 3600 32S show mpls ldp session peer 10 1 1 ...

Page 375: ...am 10 1 1 2 Out label 30 Downstream 192 1 1 1 FEC 172 18 2 0 24 State Established In label 50 Upstream 20 1 1 3 Out label 60 Downstream 120 1 1 1 Total Entries 2 DXS 3600 32S Parameters None Default None Command Mode EXEC Mode Command Default Level Level 3 Usage Guideline This command is used to display LDP global statistic information Example This example shows how to display LDP global statistic...

Page 376: ...es the IPv4 prefix FEC which the LSP connectivity will check times VALUE Specifies the number of times to resend the same packet The value range is 1 255 and the default value of times is 4 timeout SECONDS Specifies the timeout interval in seconds for an MPLS request packet The value range is 1 99 seconds and the default value is 2 seconds Default None Command Mode EXEC Mode Command Default Level ...

Page 377: ...t Request time out Ping Statistics for 110 1 1 0 24 Packets Sent 4 Received 0 Lost 4 DXS 3600 32S NETWORK PREFIX PREFIX LENGTH Specifies the IPv4 prefix FEC used to check LSP connectivity timeout SECONDS Specifies the timeout interval in seconds for an MPLS request packet The value range is 1 99 seconds and the default value is 2 seconds Default None Command Mode EXEC Mode Command Default Level Le...

Page 378: ...er rule When creating a new rule and the SN option is not specified the SN value will begin from 10 and will then be incremented by 10 When removing a rule and the SN option is not specified all rules will be removed The SN range is 1 10000 permit Specifies to permit LDP establishing LSP for the following IP prefix FEC deny Specifies not to permit LDP establishing LSP for the following IP prefix F...

Page 379: ...onfig mpls router lsp trigger 10 permit ip 192 1 1 0 24 DXS 3600 32S config mpls router lsp trigger 20 deny any DXS 3600 32S config mpls router Example This example shows how to clear all LSP trigger filter rules DXS 3600 32S configure terminal DXS 3600 32S config mpls label protocol ldp DXS 3600 32S config mpls router no lsp trigger DXS 3600 32S config mpls router SN Optional Specifies the sequen...

Page 380: ...n MPLS QoS policy with the name of policy1 DXS 3600 32S configure terminal DXS 3600 32S config mpls qos policy policy1 DXS 3600 32S config mpls qos Parameters None Default Disabled Command Mode MPLS QoS Configuration Mode Command Default Level Level 15 Usage Guideline Use this command in the MPLS QoS configuration mode to configure to trust the incoming label s topmost EXP as priority If the EXP i...

Page 381: ... 10GbE Layer 2 3 Switch CLI Reference Guide 373 Default Inbound mapping EXP 0 1 2 3 4 5 6 7 priority 2 0 1 3 4 5 6 7 Outbound mapping No setting Command Mode MPLS QoS Configuration Mode Command Default Level Level 15 ...

Page 382: ...S packets the EXP will be set to zero The follows table show the outbound EXP mapping summary If there is an outbound setting that maps a priority to an EXP and another setting that maps all priorities to other EXPs the setting that maps the specified priority has higher priority For example 1 Class map outbound priority 1 EXP 6 2 Class map outbound EXP 3 Apply the QoS policy to FEC 10 1 1 0 24 Th...

Page 383: ...xp 5 priority 5 DXS 3600 32S config mpls qos class map inbound exp 6 7 priority 6 DXS 3600 32S config mpls qos class map outbound priority 1 exp 6 DXS 3600 32S config mpls qos class map outbound exp 3 DXS 3600 32S config mpls qos ip NETWORK PREFIX PREFIX LENGTH Specifies the IP prefix FEC If not specified the no form of this command will remove all binding FECs for the policy Default None Command ...

Page 384: ...gs DXS 3600 32S show mpls qos MPLS QoS Policy policy1 Trust EXP Inbound Mapping EXP 0 1 2 3 4 5 6 7 Priority 0 1 2 3 4 5 6 6 Outbound Mapping Priority 0 1 2 3 4 5 6 7 EXP 3 6 3 3 3 3 3 3 Binding FECs 172 18 1 0 24 110 1 1 0 24 Total Entries 1 DXS 3600 32S Example This example shows how to displays the MPLS QoS setting for FEC 172 18 1 0 24 DXS 3600 32S show mpls qos ip 172 18 1 0 24 FEC 172 18 1 0...

Page 385: ...ult the times is infinity the timeout is 1 second Command Mode Privileged Mode Command Default Level Level 1 Usage Guideline This command tests the connectivity of a network Example This example shows how to tests the connectivity of a network DXS 3600 32S ping ip 192 168 69 66 Reply from 192 168 69 66 time 10ms Reply from 192 168 69 66 time 10ms Reply from 192 168 69 66 time 10ms Reply from 192 1...

Page 386: ...de Privileged Mode Command Default Level Level 1 Usage Guideline This command is used to trace the routed path between the switch and a destination end station Example This example shows how to trace the routed path between the switch and a destination end station DXS 3600 32S traceroute 30 1 1 1 10 ms 20 1 1 1 10 ms 30 1 1 1 Trace complete DXS 3600 32S ...

Page 387: ...l area Users can not create an existed area Use the no form of this command to remove a specified OSPF area and its configuration including the removal of the area based configuration commands such as area default cost area nssa Users can not remove the backbone area There is a limitation about number of OSPF areas and it depends on project Users can verify the settings by entering the show ip osp...

Page 388: ...ter ospf DXS 3600 32S config router area 0 0 0 1 stub DXS 3600 32S config router area 0 0 0 1 default cost 20 DXS 3600 32S config router area id Specifies the ID for the NSSA area The ID should be specified as an IP address no summary Optional Specifies to prohibit summary routes advertised into the NSSA area This function only take effect when the router is an ABR translate Optional Specifies if ...

Page 389: ...f area command Example This example shows how to assign OSPF area 0 0 0 2 to be a NSSA area and leak type 7 LSA into other areas DXS 3600 32S configure terminal DXS 3600 32S config router ospf DXS 3600 32S config router area 0 0 0 1 nssa no summary DXS 3600 32S config router area 0 0 0 2 nssa translate DXS 3600 32S config router area id Specifies the area from which the routes will be summarized T...

Page 390: ...b area The ID should be specified as an IP address no summary Optional Specifies to prohibit summary routes advertised into the stub area this will make the stub area becomes a totally stub area Default By default no stub area is configured By default no summary is not specified Command Mode Router Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline The command no...

Page 391: ...de Only Command Usage Guideline In the OSPF routing domain all areas must be connected with the backbone area If an area disconnects from the backbone area it requires establish a virtual link to connect the backbone area Otherwise the network communication will become abnormal The virtual link requires a connection between two ABR The area that belongs to both ABR is called the transition area A ...

Page 392: ...S configure terminal DXS 3600 32S config clear ip ospf process DXS 3600 32S config Example This example shows how to restart the OSPF instance in VRF VPN A DXS 3600 32S configure terminal DXS 3600 32S config clear ip ospf process vrf VPN A DXS 3600 32S config always Optional Always generate the default route regardless of existence of a local default route metric metric value Optional Specifies th...

Page 393: ...default metric value of OSPF redistributed routes The value range is 1 to 16777214 Default The default metric value of OSPF redistributed routes is 20 Command Mode Router Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline The default metric command is used in conjunction with the redistribute command to cause the OSPF to use the default metric value for the redis...

Page 394: ...loop Users can verify the settings by entering the show ip route preference command Example This example shows how to change route preference of OSPF routes DXS 3600 32S configure terminal DXS 3600 32S config router ospf DXS 3600 32S config router route preference ospf intra area 50 DXS 3600 32S config router list name Specifies to use one access list ipif_name Optional Specifies the name of the i...

Page 395: ... authentication or MD5 authentication Use no ip ospf authentication or ip ospf authentication null command to remove the authentication Users can verify the settings by entering the show ip ospf interface command Example This example shows how to set the System interface VLAN 1 authentication type to simple password DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S ...

Page 396: ...ng that does not allow space Default By default no key is configured Command Mode Interface Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline This command creates a password key that is inserted into the OSPF header when the router originates routing protocol packets Assign a separate password to each network for different interfaces Routers on the same network ...

Page 397: ...by entering the show ip ospf interface command Example This example shows how to set System interface s OSPF interface cost to 2 DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if ip ospf cost 2 DXS 3600 32S config if seconds Specifies the interval in seconds The value range is 1 to 65535 Default The default interval is 40 seconds Command Mode Interface Con...

Page 398: ...horter hello interval ensures faster detection of topological changes but generates more routing traffic and might cause routing instability Please note that the dead interval can not be less than the hello interval and must be multiple times as hello interval Users can verify the settings by entering the show ip ospf interface command Example This example shows how to set the hello interval of Sy...

Page 399: ...other Normally all neighboring routers on the interface use the same key Users can verify the settings by entering the show ip ospf interface command Example This example shows how to set the System interface VLAN 1 authentication type to MD5 DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if ip ospf authentication message digest DXS 3600 32S config if ip o...

Page 400: ... of the area to be associated with the OSPF address range Default All interfaces belong to backbone area The OSPF is disabled on each interface Command Mode Router Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline OSPF routing can be enabled per IPv4 subnet basis Each subnet can belong to one particular OSPF area Use no form of this command to remove the subnet ...

Page 401: ...assive interface default DXS 3600 32S config router Example This example shows how to set the System interface to be passive DXS 3600 32S configure terminal DXS 3600 32S config router ospf DXS 3600 32S config router passive interface interface System DXS 3600 32S config router connected Specifies to redistribute connected routes to OSPF static Specifies to redistribute static routes to OSPF rip Sp...

Page 402: ...xternal metric only considers the advertised metric to reach the destination By default connected and static route will not be re distributed either Use the redistribute or the default information router configuration commands make the router becomes an ASBR If a metric is not specified metric will be the value set by default metric command If no value specified by default metric routes redistribu...

Page 403: ...2S configure terminal DXS 3600 32S config router ospf DXS 3600 32S config router Example This example shows how to disable OSPF DXS 3600 32S configure terminal DXS 3600 32S config no router ospf DXS 3600 32S config Example This example show how to create a new OSPF instance in VRF VPN A and enter router configuration mode DXS 3600 32S configure terminal DXS 3600 32S config router ospf vrf VPN A DX...

Page 404: ... to auto select DXS 3600 32S configure terminal DXS 3600 32S config router ospf DXS 3600 32S config router no router id DXS 3600 32S config router vrf vrf name Optional Specifies to show brief information about the OSPF VRF instance Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline Display general OSPF protocol information It provides...

Page 405: ...terval Interval Status 4 4 4 4 1 1 1 1 10 60 MD5 Up OSPF Area Aggregation Settings Area ID Aggregated LSDB Advertise Network Address Type 0 0 0 1 192 168 0 0 16 NSSA Ext Enabled OSPF Redistribution Settings Source Destination Type Metric RouteMapName Protocol Protocol RIP OSPF Type 1 5 DXS 3600 32S Display Parameters Description Interface Name of the interface IP Address IP address of the source u...

Page 406: ...Status When the other endpoint is reachable according to routing table the virtual link is link up Or it is link down Area ID The area from which the routes will be summarized It is specified with the command area range Aggregated Network Address The network segment whose routes are to be aggregated It is specified with the command area range LSDB Type If the area is normal it is used for summary ...

Page 407: ...0 100 1 1 1 24 0 0 0 0 Disabled Link Up 1 OSPF Area Settings Area ID Type Stub Import Summary LSA Stub Default Cost Translate 0 0 0 0 Normal None None None Virtual Interface Configuration Transit Virtual Hello Dead Authentication Link Area ID Neighbor Router Interval Interval Status OSPF Area Aggregation Settings Area ID Aggregated LSDB Advertise Network Address Type OSPF Redistribution Settings S...

Page 408: ...A outside to other areas It is only for NSSA area and specified with the command area nssa Example This example shows how to check OSPF areas 0 0 0 0 detail information DXS 3600 32S show ip ospf area 0 0 0 0 Area ID 0 0 0 0 Area Type Normal SPF algorithm runs for area 0 0 0 0 0 time Number of LSA in this area 0 Checksum Sum 0x0 Number of ABR in this area 0 Number of ASBR in this area 0 DXS 3600 32...

Page 409: ...n in stub and NSSA area adv device router id Optional Specifies to display the LSA information generated by the specified advertising device self originate Optional Specifies to display the LSA information generated by the device itself Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline In following cases the detailed information of LS...

Page 410: ... 1 1 0 Advertising Router 1 1 1 1 Link State Age 120 Checksum 0x66BB LS Sequence Number 0x8000000F Area ID 0 0 0 0 LS Type Router Link Link State ID 2 2 2 2 0 Advertising Router 2 2 2 2 Link State Age 126 Checksum 0x332 LS Sequence Number 0x80000014 DXS 3600 32S Example This example shows detailed information of all LSAs originated by self DXS 3600 32S show ip ospf database self originate Area ID ...

Page 411: ...lo Interval 10 Dead Interval 60 Transmit Delay 1 Retransmit Time 5 Authentication MD5 MD5 Key ID for Authentication 10 Passive Mode Enabled DXS 3600 32S Example This example shows information of System interfaces DXS 3600 32S show ip ospf interface System Interface Name System IP Address 10 1 1 1 24 Link Up Network Medium Type BROADCAST Metric 1 Area ID 0 0 0 0 Administrative State Enabled Priorit...

Page 412: ...encies belonging to this interface It is not configurable and always is 5 Authentication The authentication type used on this interface It is specified with the command ip ospf authentication Passive Mode The status of passive It is specified with the command passive interface Distribute List In The inbound filter used on this interface It is specified with the command distribute list in ipaddr Op...

Page 413: ...bor state has changed area id Optional Specifies the area ID which the virtual link belongs to neighbor id Optional Specifies the router ID of peer of virtual link vrf vrf name Optional Specifies to show virtual link information about the OSPF VRF instance Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline Use this command to show virt...

Page 414: ...al Specifies to show virtual neighbor information about the OSPF VRF instance Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline Use this command to display information of OSPF neighbors on virtual links If the area id and neighbor id is specified only the virtual neighbor with the same area ID and neighbor ID will be displayed If no p...

Page 415: ...d Default Level Level 15 EI Mode Only Command Usage Guideline Use this command to turn on or turn off OSPF debug function while the global debug function has been turned on before Example This example shows how to turn on the OSPF debug function DXS 3600 32S debug ip ospf DXS 3600 32S Parameters None Default By default the OSPF neighbor state debug switch is turned off Command Mode Privileged EXEC...

Page 416: ...rface state debug information will print When DR selection happens debug information will also print if OSPF debug function is turned on Use the command debug ip ospf to turn on the OSPF debug function Example This example shows how to turn on the OSPF interface state debug switch DXS 3600 32S debug ip ospf interface DXS 3600 32S intf 10 1 1 1 up tic 10 intf 100 1 1 1 down tic 20 OSPF Select DR 2 ...

Page 417: ...ed on Use the command debug ip ospf to turn on the OSPF debug function Example This example shows how to turn on the OSPF LSA flooding debug switch DXS 3600 32S debug ip ospf lsa flooding DXS 3600 32S Received LSA type 1 id 2 2 2 2 from nbr 2 2 2 2 in area 0 0 0 0 seq 80000001 csum fe3a tic 15 Flood LSAs in area 0 0 0 0 tic 15 Parameters None Default By default the OSPF packet receiving debug swit...

Page 418: ... to turn on the OSPF packet transmitting debug switch DXS 3600 32S debug ip ospf packet transmitting DXS 3600 32S Send out a Hello on interface 10 1 1 1 dst 255 0 0 5 tic 200 Send out a Hello on interface 100 1 1 1 dst 255 0 0 5 tic 220 Parameters None Default By default the OSPF SPF calculation switch is turned off Command Mode Privileged EXEC Mode Command Default Level Level 15 EI Mode Only Comm...

Page 419: ...ample This example shows how to turn on the OSPF timer debug switch DXS 3600 32S debug ip ospf timer DXS 3600 32S Start Hello timer at interface 10 90 90 90 tic 20 Wait timer expired at interface 10 90 90 90 tic 100 Parameters None Default By default the OSPF virtual link switch is turned off Command Mode Privileged EXEC Mode Command Default Level Level 15 EI Mode Only Command Usage Guideline Use ...

Page 420: ...32S Add an OSPF route level 1 dst 172 18 1 1 mask 255 255 255 0 nh cnt 1 cost 10 cost2 0 tic 300 Parameters None Default By default the OSPF redistribution switch is turned off Command Mode Privileged EXEC Mode Command Default Level Level 15 EI Mode Only Command Usage Guideline Use this command to turn on or turn off OSPF redistribution debug switch When one route of other protocol is redistribute...

Page 421: ...t Receiving Total 5 Hello 5 DD 0 LSR 0 LSU 0 LSAck 0 Drop 0 Auth Fail 0 Packet Sending Total 5 Hello 5 DD 0 LSR 0 LSU 0 LSAck 0 Neighbor State Change 3 SeqMismatch 0 SPF Calculation Intra 1 Inter 1 Extern 1 DXS 3600 32S packet Specifies to reset the OSPF packet counter neighbor Specifies to reset the OSPF neighbor counter spf Specifies to reset the OSPF SPF event counter Default None Command Mode ...

Page 422: ...er Default None Command Mode Privileged EXEC Mode Command Default Level Level 15 EI Mode Only Command Usage Guideline Use this command to check detailed information about OSPF LSDB Example This example displays detailed information about Router LSA DXS 3600 32S debug ip ospf show database rt link OSPF Phase2 RT Link AREA 0 0 0 0 Router LSA Link State ID 100 1 1 2 Advertising Router 100 1 1 2 LS Ag...

Page 423: ...bor 90 2 0 1 IP 1 1 1 2 LSID 192 194 134 0 RTID 90 2 0 1 Type 257 Seq 0x8000002f LSID 192 194 135 0 RTID 90 2 0 1 Type 257 Seq 0x8000002f LSID 192 194 136 0 RTID 90 2 0 1 Type 257 Seq 0x8000002f LSID 192 194 137 0 RTID 90 2 0 1 Type 257 Seq 0x8000002f LSID 192 194 138 0 RTID 90 2 0 1 Type 257 Seq 0x8000002f DXS 3600 32S Parameters None Default None Command Mode Privileged EXEC Mode Command Default...

Page 424: ...ommand to check the LSA information on summary list which is used to exchange with neighbors Example This example displays the LSA information on summary list DXS 3600 32S debug ip ospf show summary list OSPF Summary List Area 0 0 0 0 Circuit 1 1 1 1 Neighbor 90 2 0 1 IP 1 1 1 2 LSID 1 1 1 1 RTID 1 1 1 1 Circuit 2 2 2 1 Circuit 10 1 1 6 DXS 3600 32S Parameters None Default None Command Mode Privil...

Page 425: ...o login local no login and no login authentication at the same time configure Specifies to clear all the configurations on the DUT Default None Command Mode EXEC Mode in Password Recovery Mode Command Default Level Level 1 Usage Guideline When the password is lost or the username information is lost the user can enter the password recovery mode and use this command to clear the level clear the use...

Page 426: ...Command Default Level Level 15 Usage Guideline This command is used to enable the password recover option The no form of this command is usd to disable this option Example This example shows how to disabled the password recover option DXS 3600 32S configure ter DXS 3600 32S config no password recover DXS 3600 32S config Example This example shows how to enable the password recover option DXS 3600 ...

Page 427: ...stem info Device Type DXS 3600 32S TenGigabit Ethernet Switch MAC Address 00 01 02 03 04 00 IP Address 0 0 0 0 Manual VLAN Name default Subnet Mask 0 0 0 0 Default Gateway 0 0 0 0 Boot PROM Version Build 1 10 007 Firmware Version Build 1 10 023 Hardware Version Firmware Type EI Serial Number D1234567890 System Name System Location System Uptime 0 days 0 hours 0 minutes 41 seconds System Contact DX...

Page 428: ...d Current Temperature Celsius 20 Power 1 Active Power 2 Fail FAN 1 Speed Middle 10598 RPM FAN 2 Speed Middle 10485 RPM FAN 3 Speed Middle 10743 RPM DXS 3600 32S Parameters None Default None Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline Use the command to enable the sending of log packets about peripheral devices Use the no command to disable the sending of l...

Page 429: ... the ports which want to configure Default None Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline To configure the attribute of the port interface use this command the enter port configure mode Example This example shows how to configure the attributes of the port interface DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DX...

Page 430: ...re DXS 3600 32S config if range 10 Specifies to set the port interface speed to 10Mbps 100 Specifies to set the port interface speed to 100Mbps 1000 Specifies to set the port interface speed to 1Gbps 10G Specifies to set the port interface speed to 10Gbps 40G Specifies to set the port interface speed to 40Gbps auto Specifies to set the port interface speed to auto negotiation Default 10G Command M...

Page 431: ... DXS 3600 32S config if shutdown DXS 3600 32S config if exit DXS 3600 32S config interface range tenGigabitEthernet 1 0 1 1 0 10 DXS 3600 32S config if range no shutdown DXS 3600 32S config if range WORD Specifies to set the description of the port interface Default None Command Mode Port Configuration Mode Command Default Level Level 15 Usage Guideline None Example This example shows how to speci...

Page 432: ...thernet 1 0 1 DXS 3600 32S config if duplex full DXS 3600 32S config if exit DXS 3600 32S config interface range tenGigabitEthernet 1 0 1 1 0 10 DXS 3600 32S config if range no duplex DXS 3600 32S config if range auto Specifies that the flow control will be set to auto negotiate on Specifies that the flow control option will be enabled off Specifies that the flow control option will be disabled De...

Page 433: ...gabitEthernet 1 0 1 DXS 3600 32S config if mtu 1234 DXS 3600 32S config if exit DXS 3600 32S config interface range tenGigabitEthernet 1 0 1 1 0 10 DXS 3600 32S config if range no mtu DXS 3600 32S config if range Parameters None Default By default this option is enabled Command Mode Port Configuration Mode Command Default Level Level 15 Usage Guideline To set the port interface send trap when port...

Page 434: ...tus Disabled Hardware 10GBASE R MTU 1536 PhysAddress 00 01 02 03 05 00 AdminDuplex Full OperDuplex Link Down AdminSpeed 10G OperSpeed Link Down FlowControlAdminStatus Enabled FlowControlOperStatus Link Down Link Trap Status Disabled DXS 3600 32S Example This example shows how to display the interface description of port 1 DXS 3600 32S show interface tenGigabitEthernet 1 0 1 description Interface S...

Page 435: ...G 3rd port mode 40G 4th port mode 40G DXS 3600 32S 1st_port Specifies to the configure the first port mode 2nd_port Specifies to the configure the second port mode 3rd_port Specifies to the configure the third port mode 4th_port Specifies to the configure the fourth port mode 4 10g Specifies to the configure the all the port modes 40g Specifies to the configure the 40 Gigabit port mode Default Non...

Page 436: ... number of port secure MAC address reaches the maximum limit allowed on the port the port will become error disabled and be shut down immediately When a security violation occurred an SNMP trap is not sent but a syslog message is logged Default The default is to disabled port security for all ports The default violation mode is protect mode Command Mode Interface Configuration Mode Command Default...

Page 437: ...erwise apply it to only the automatically learned secure addresses time Specifies the aging time for the secure address on this port Its range is from 1 to 1440 in minutes The aging time is the absolute time which means that an address will be deleted automatically after the time specified expires after the address becomes the secure address of the port type Specifies to set the aging type absolut...

Page 438: ...32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if no switchport port security aging static DXS 3600 32S config if Example This example shows how to recover the port security aging time type for interface tenGigabitEthernet 1 0 1 DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if no switchp...

Page 439: ...icky learning is disabled and enters the switchport port security mac address sticky mac address interface configuration command an error message will prompt and the sticky secure MAC address is not added to the running configuration file If the port is trunk port or hybrid port or dot1q tunnel port when no VLAN ID is specified the MAC address will be added to native VLAN and otherwise it will be ...

Page 440: ...r interface tenGigabitEthernet 1 0 1 DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if switchport mode trunk DXS 3600 32S config if no switchport port security mac address 00d0 f800 073c vlan 3 DXS 3600 32S config if Example This example shows how to delete the sticky MAC address to dynamic MAC addresses on specified VLAN for interface te...

Page 441: ...AC addresses from the address table When you enter an interface id the command deletes secure the MAC address from the interface Example This example shows how to delete the all secure addresses from the MAC address table DXS 3600 32S clear port security all DXS 3600 32S Example This example shows how to delete a specified secure address from MAC address table DXS 3600 32S clear port security conf...

Page 442: ...otect TenGigabitEthernet1 0 6 128 0 Protect TenGigabitEthernet1 0 7 128 0 Protect TenGigabitEthernet1 0 8 128 0 Protect TenGigabitEthernet1 0 9 128 0 Protect TenGigabitEthernet1 0 10 128 0 Protect TenGigabitEthernet1 0 11 128 0 Protect TenGigabitEthernet1 0 12 128 0 Protect TenGigabitEthernet1 0 13 128 0 Protect TenGigabitEthernet1 0 14 128 0 Protect TenGigabitEthernet1 0 15 128 0 Protect TenGigab...

Page 443: ... mins 1 00d0 f800 073c Configured GigabitEthernet1 0 1 1 1 00d0 f800 3cc9 Dynamic GigabitEthernet1 0 3 2 Total Addresses 2 DXS 3600 32S Example This example shows how to display the secure MAC address on the specified interface DXS 3600 32S show port security address interface tenGigabitEthernet 1 1 VLAN MAC Address Type Ports Remaining Time mins 1 00d0 f800 073d Sticky GigabitEthernet1 0 1 1 I To...

Page 444: ...rfaces or separate a range of interfaces from a previous range No space before and after the comma Optional Specifies a range of interfaces No space before and after the hyphen rx Specifies to clear the counter of received PFC frames tx Specifies to clear the counter of transmitted PFC frames both Specifies to clear the counter of received and transmitted PFC frames Default None Command Mode Privi...

Page 445: ...ties is disabled on an interface the interface defaults to the IEEE 802 3x flow control setting When PFC of any priority is enabled the interface will pause a CoS on which PFC is enabled and a pause frame for that CoS is received Meanwhile a pause frame will be transmitted if the congestion is detected on the PFC enabled CoS This command is used to turn on the Priority Flow Control PFC willing fea...

Page 446: ...rities ing Frame s Frame s eth1 1 8 0 1 2 3 4 5 6 7 0 1 3 4 5 on 4294967295 4294967295 eth1 2 8 0 1 2 3 4 5 6 7 0 1 2 3 4 5 6 7 off 4294967295 4294967295 eth1 3 8 on 0 0 Output Truncated Display Parameters Description PFC Cap PFC capability indicates the device s limitation of how many traffic classes may simultaneously support PFC Oper PFC On Priorities The list CoS that the operational PFC is on...

Page 447: ...ion network Default None Command Mode Privileged EXEC Mode Command Default Level Level 8 Usage Guideline Use this command to remove all the static routes or the specified static routes from the IP routing table If there area multi paths to one destination all these static routes will be removed Users can verify the settings by entering the show ip route static command Example This example shows ho...

Page 448: ...ence of static default route to 90 in VRF VPN A DXS 3600 32S configure terminal DXS 3600 32S config route preference vrf VPN A default 90 vrf vrf name Optional Specifies to set the route preference of VRF routing table value Specifies the preference of the static route The value range is 1 999 Default The default value of the static default route s preference is 60 Command Mode Global Configuratio...

Page 449: ...ystem working correctly For example if IP MTU is larger than MTU at the egress port the packet larger than MTU but less than IP MTU may be dropped by the egress port Use show ip interface to see the current setting of IP MTU Example This example shows how to set the IP MTU of interface vlan1 to 800 bytes DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if ip...

Page 450: ...port is executed only sip is available for the key If the no form of this command has the keywords not in the saved settings the command runs properly If using the no form of this command without any keywords the configuration will go back to the default settings Use show ip ecmp load balance to check the current setting of load balancing algorithm Example This example shows how to set the load ba...

Page 451: ...n 20 0 0 0 8 and nexthop 10 1 1 254 DXS 3600 32S configure terminal DXS 3600 32S config ip route 20 0 0 0 255 0 0 0 10 1 1 254 DXS 3600 32S config Example This example shows how to add a static weighted multipath route entry with destination 30 0 0 0 8 and two nexthops 10 1 1 253 10 1 1 254 DXS 3600 32S configure terminal DXS 3600 32S config ip route 30 0 0 0 255 0 0 0 10 1 1 253 weight 1 DXS 3600...

Page 452: ...s to show the route preference of OSPF inter area route ospfExt1 Optional Specifies to show the route preference of OSPF external type 1 route ospfExt2 Optional Specifies to show the route preference of OSPF external type 2 route ebgp Optional Specifies to show the route preference of BGP AS external route ibgp Optional Specifies to show the route preference of BGP AS internal route Default None C...

Page 453: ...S 3600 32S show ip route preference rip Route Preference Settings Protocol Preference RIP 100 DXS 3600 32S Display Parameters Description Protocol The route type Preference Route Preference OSPF Intra OSPF intra area route type OSPF Inter OSPF inter area route type OSPF ExtT1 OSPF AS external type 1 route OSPF ExtT2 OSPF AS external type 2 route Example This example shows how to check the route pr...

Page 454: ...efix matched route will be displayed net mask Optional Specify the destination netmask of the route want to be displayed count Optional Specifies to show the number of active route connected Optional Specifies to show only connected routes static Optional Specifies to show only static routes One static route may be active or inactive rip Optional Specifies to show only RIP routes ospf Optional Spe...

Page 455: ...ress Netmask Gateway Cost Protocol Backup Weight Status 20 1 1 0 24 10 1 1 9 1 Static Primary None Active 30 1 1 0 24 10 1 1 9 1 Static None 2 Active 30 1 1 0 24 10 1 1 89 1 Static None 2 Inactive Total Entries 3 DXS 3600 32S Example This example shows how to check all static weighted multi path routes DXS 3600 32S show ip route weight Routing Table IP Address Netmask Gateway Cost Protocol Weight ...

Page 456: ... 1 1 253 ip10 1 Static 10 0 0 0 8 0 0 0 0 ip10 1 Connected Total Entries 1 DXS 3600 32S Display Parameters Description IP Address Netmask The network address of destination Gateway The IP address of next router Interface The name of the outgoing interface Cost The metric of route Protocol The route type Weight The weight of static weighted multipath route Status The status of static route If be ac...

Page 457: ...all interfaces Command Mode Interface Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline This command enables PIM protocol on the specified interface An interface can be configured to be in dense mode sparse mode or sparse dense mode If you want to use PIM to forward multicast packets use ip multicast routing command to enable multicast global state To verify you...

Page 458: ...ure the query interval of VLAN 2 back to default DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 2 DXS 3600 32S config if no ip pim query interval DXS 3600 32S config if SECONDS Specifies the interval to send the join prune message in the range 1 to 18724 seconds Default 60 seconds Command Mode Global Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Gu...

Page 459: ...val DXS 3600 32S config PRIORITY Specifies that the larger the value is the higher the priority will be The range is 0 to 4294967294 Default The default value is 1 Command Mode Interface Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline The switch with the biggest priority would be selected as DR on a LAN If several switches have the same DR priority the one wit...

Page 460: ...er Please be noted the parameter Register Probe Time in RFC 4601 is fixed to 5 Because the value of the Register Probe Time must be less than half the value of the Register Suppression Time to prevent a possible negative value in the setting of the Register Stop Timer the minimal value for Register Suppression Time is 11 To verify your configuration use command show ip pim Example This example sho...

Page 461: ... will be selected this may change the static RP address The number of ACL entry configured to static RP is limited and the total number of group range configured to static RP is also limited If any limitation exceeded no more static RP can be created To verify your configuration you can use show ip pim Example This example shows how to configure the static RP address 172 18 62 1 with a group range...

Page 462: ...roups This command can cause the router to send a PIM Version 2 message advertising itself as a candidate RP to the BSR and set the parameter of this CRP To specify an interface as the candidate RP of a specific group execute this command with ACL One interface can only configure one ACL The number of ACL entry configured to candidate RP is limited and the total number of group range configured to...

Page 463: ...the router In PIM SM mode initially the multicast traffic from the source will be flowing along the RPT share tree to the receiver After the first packet arrives at the last hop router for each group of traffic it can operate in one of the following two modes With mode infinity the traffic keeps following the share tree With mode 0 the source tree will be established and the traffic switchover to ...

Page 464: ...used with the IP address of the candidate RP and the multicast group address to calculate the hash algorithm used by the router to determine which CRP on the PIM SM enabled network will be the RP The range is 0 to 32 PRIORITY Specifies to configure the priority for a BSR candidate The candidate with the highest priority is preferred If the priority values are the same the router with the highest I...

Page 465: ... a register packet in which the checksum will include the data portion or not Default The checksum in the register message to any RP doesn t include the data portion Command Mode Global Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline This command is used to decide the checksum in register packet will include the data portion or not As defined in RFC 4601 the c...

Page 466: ...roup address range includes multiple networks only the first group network will work To verify your configuration use command show ip pim Example This example shows how to configure the PIM SSM function enable use default group address range DXS 3600 32S configure terminal DXS 3600 32S config ip pim ssm default DXS 3600 32S config Example This example shows how to configure the PIM SSM function en...

Page 467: ...n1 Address 10 90 90 90 DR 10 90 90 90 Hello period 30 seconds Next hello in 29 seconds Neighbor 10 2 0 2 10 2 0 5 DXS 3600 32S Display Parameters Description IP Address The IP Address of the interface displayed Interface The name of the interface Mode The mode of PIM of this interface To change mode of PIM use the ip pim command state The PIM DM state of this interface Nbr count The numbers of nei...

Page 468: ... neighbor expires Mode The mode of this interface To configure this value use command ip pim Parameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline This command is used to show BSR information Example This example displays PIM BSR information DXS 3600 32S show ip pim sparse mode bsr router PIMv2 Bootstrap information This S...

Page 469: ... advertisement will be sent Next bootstrap message in Time in hours minutes and seconds in which the next bootstrap message is due from this BSR Holdtime The hold time of the candidate RP this value is configured by ip pim rp candidate Candidate RP Candidate RP information of this switch IFNAME Specifies the interface to display the neighbor If no IFNAME specified all interface s neighbor would be...

Page 470: ... IP Address The IP Address of the interface displayed Interface The name of the interface Mode The mode of PIM of this interface To change mode of PIM use ip pim command state The PIM DM state of this interface Nbr count The number of neighbors connect to this interface Neighbors List address of the neighbors below Join Prune interval The period join message of PIM SM if this switch has outgoing f...

Page 471: ...0 0 0 11 static RP 172 18 254 1 DXS 3600 32S Display Parameters Description Groups Group range mapping to the RP below RP Address of the rendezvous point for that group RP hold time Hold time of the RP static Group to mapping information from the static rendezvous point configuration Create by command ip pim rp address expires Time in hours minutes and seconds after which the information about can...

Page 472: ...atic rendezvous point configuration RP Address of the rendezvous point for that group Parameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline Use this command to display global information of PIM Example This example shows global information of PIM DXS 3600 32S show ip pim Register Suppression Time 100 Register Keepalive Tim...

Page 473: ...will include data portion To configure this value use command ip pim old register checksum Parameters None Default By default this option is disabled Command Mode Privileged EXEC Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline When PIM SSM is enabled some types of IGMP packet referring to multicast address in the SSM range will be ignored by IGMP module group record MODE_IS...

Page 474: ...Group Record Type 2 for group 232 0 0 0 from 12 34 3 3 on vlan1 ignored Example Following debug trace message will be output when Switch receives IGMPv3 report with Group Record Type CHANGE_TO_EXCLUDE_MODE referring to SSM group 232 0 0 0 from source IP 12 34 3 3 on interface vlan1 PIM_SSM 20 Dec 2010 10 52 11 IGMP Group Record Type 4 for group 232 0 0 0 from 12 34 3 3 on vlan1 ignored Example Thi...

Page 475: ...licy This command enters the policy map class configuration mode The user can use the following command to define the QoS policy for the class set Remark specify field of packets that match this classification police Defines a policer for the classified traffic no Remove a remark action or policer The user can use policy map global configuration command to identify the policy map and enter the pol...

Page 476: ...match statement from a class map A class map that attached to a policy map can not be modified before it was attached from the policy map with no class command Example This example shows how to configure the class map called class1 with one match criterion which is an access list called 10 DXS 3600 32S configure terminal DXS 3600 32S config class map class1 DXS 3600 32S config cmap match access gr...

Page 477: ... is 0 Command Mode Interface Configuration Mode Command Default Level Level 15 Usage Guideline Only physical ports are valid for this command Use mls qos cos command to specify the default CoS of the port The CoS of the packets will be the packet s CoS if the packets are tagged and will be the port default CoS if the packet is untagged Example This example shows how to set the default CoS to 4 for...

Page 478: ...ng rr Specifies all queues of a port in round robin scheduling wrr Specifies the queues of a port in frame count weighted round robin scheduling If the weight of a queue be configured to zero the queue is in SP scheduling mode wdrr Specifies the queues of a port in frame length weighted round robin scheduling If the weight of a queue be configured to zero the queue is in SP scheduling mode ets Spe...

Page 479: ...erations First the DSCP will be mapped to a CoS value which will be subsequently used to determine the CoS queue The DSCP to COS map is configured by the mls qos map dscp cos command The CoS to queue map is configured by the priority queue cos map command If the arriving packet is a non IP packet the CoS is trusted The resulting COS mapped from DSCP will also be the CoS in the transmitted packet W...

Page 480: ...pecify action set dscp transmit and set 1p transmit for a color packet at one time but can not specify the action transmit and drop for it The algorithm of color classify is described following The two token buckets are initially at time 0 full that is the token count Tbc 0 CBS and the token count Tbe 0 EBS Thereafter the token counts Tbc and Tbe are updated bps times per second as follows a If Tb...

Page 481: ...ction drop DXS 3600 32S config pmap c exit DXS 3600 32S config pmap exit DXS 3600 32S config interface tenGigabitEthernet 1 0 3 DXS 3600 32S config if service policy input policy1 DXS 3600 32S config if cir cir Specifies the committed information rate in kbps at which the first token bucket is updated bc cbs Optional Specifies the committed burst size in Kbytes used by the first token bucket for p...

Page 482: ... second up to PBS and the token count Tbc is incremented by one cir times per second up to CBS When a packet of size B bytes arrives at time t the following happens a If Tbp t B 0 the packet is red else b If Tbc t B 0 the packet is yellow and Tbp is decremented by B else c The packet is green and both Tbp and Tbc are decremented by B The pir must be equal to or greater than the cir The PBS and the...

Page 483: ...ault None Command Mode Policy map Class Configuration Mode Command Default Level Level 15 Usage Guideline Use this command to limit bandwidth of appointed flow and specify the method of handling the excessive part If not specify exceed action the default action drop will be used In the policy map class configuration mode only one policer can be bind at one time Example This example shows how to co...

Page 484: ...modify the policy map information that attached to one or more interfaces they must first use no form of service policy interface configuration command to detach it from these interfaces Example This example shows how to create a policy map called policy1 When attached to the ingress port it matches all the incoming traffic defined in class1 sets the COS to 5 and polices the traffic at an average ...

Page 485: ... to assign the CoS priority 3 5 6 to CoS queue 2 DXS 3600 32S configure terminal DXS 3600 32S config priority queue cos map 2 3 5 6 DXS 3600 32S config queue id Specifies the CoS queue to assign bandwidth min Specifies the minimal guaranteed bandwidth in Kbps allocated to a specified COS max Specifies the maximum bandwidth in Kbps for a specified COS Default No limitation Command Mode Interface Co...

Page 486: ...00 2000 DXS 3600 32S config if input Specifies the input rate limit output Specifies the output rate limit bps Specifies the bandwidth limitation in Kbps burst size Specifies the burst traffic limit in Kbyte Default No limitation Command Mode Interface Configuration Mode Command Default Level Level 15 Usage Guideline Only physical ports are valid for this command Example This example shows how to ...

Page 487: ...r the packet The range is 0 to 63 cos cos Specifies to assign a new CoS value to the packet The range is 0 to 7 cos queue cos queue Specifies to assign the CoS queue to the packets This action will overwrite the original CoS queue selection Default None Command Mode Policy map Class Configuration Mode Command Default Level Level 15 Usage Guideline The set command is used to set the DSCP field or t...

Page 488: ...e is not specified all class map information will be displayed Example This example shows the output from the show class map command DXS 3600 32S show class map Class Map class1 Match access group 101 Class Map class2 Match access group 8 DXS 3600 32S INTERFACE ID Specifies the interface ID for which the QoS configure information will be displayed You can specify multiple interface IDs which are s...

Page 489: ...ive 0 Attached input policy map policy1 Attached output policy map policy2 DXS 3600 32S Parameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 15 Usage Guideline This command displays information about QoS maps Example This example shows the output from the show mls qos maps command DXS 3600 32S show mls qos maps DSCP COS DSCP COS DSCP COS DSCP COS 0 1 1 1 2 1 3...

Page 490: ...ne This command displays information about CoS to queue map and QoS scheduling Example This example shows how to output from the show mls qos queueing command DXS 3600 32S show mls qos queueing interface tenGigabitEthernet 1 0 1 CoS queue map CoS UC QID MC QID 0 2 1 1 0 0 2 1 0 3 3 1 4 4 2 5 5 2 6 6 3 7 7 3 Interface TGi1 0 1 WRR bandwidth weights QID Weights 0 1 1 1 2 1 3 1 4 1 5 1 6 1 7 1 WDRR b...

Page 491: ...ed Example This example shows how to display the rate information of tenGigabitEthernet 1 0 1 DXS 3600 32S show mls qos rate limit interface tenGigabitEthernet 1 0 1 Interface TenGigabitEthernet1 0 1 rate limit input no limit Effective no limit output no limit Effective no limit queue rate limit QID 0 minimum rate no limit maximum rate no limit QID 1 minimum rate no limit maximum rate no limit QID...

Page 492: ...s map name Specifies the name of the class for the class map The name can be a maximum of 32 alphanumeric characters policy map name Specifies the name of a policy map that contains the class configuration to be displayed The name can be a maximum of 32 alphanumeric characters Default None Command Mode Privileged EXEC Mode Command Default Level Level 15 Usage Guideline If no policy map name is spe...

Page 493: ...of a queue is set to zero the scheduling mode must be SP WDRR and the queue must be in SP scheduling mode Example This example shows how to configure the queue weight of WDRR scheduling mode DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if wrr queue bandwidth 1 2 3 4 5 6 7 8 DXS 3600 32S config if weight1 weight8 Specifies the weight val...

Page 494: ...DXS 3600 Series 10GbE Layer 2 3 Switch CLI Reference Guide 486 ...

Page 495: ...clear QCN counters of CP s on the specified interface s If the command clear qcn counters is issued with the all keyword the QCN counters of all CP s on all interfaces will be cleared Example This example shows how to reset QCN counters on all interfaces DXS 3600 32S clear qcn counters all DXS 3600 32S Parameters None Default Disabled Command Mode Global Configuration Mode Command Default Level Le...

Page 496: ... 32S configure terminal DXS 3600 32S config qcn cnm transmit priority 1 DXS 3600 32S config CNPV PRIORITY VALUE Specifies the IEEE 802 1p priority value to be the Congestion Notification Priority Value CNPV The valid priority range of CNPV is 0 to 7 admin defense mode disable interior interior ready edge Optional Specifies the default CND defense mode for this CNPV on all interfaces This setting c...

Page 497: ...e the setting for this CNPV If the qcn cnpv CNPV PRIORITY VALUE command is issued without any optional keywords If the specified CNPV PRIORITY VALUE is CNPV all the configured settings will be retained Else if the specified CNPV PRIORITY VALUE is not CNPV the specified CNPV PRIORITY VALUE is assigned as a CNPV and the corresponding settings will be filled with the default value When an IEEE 802 1p...

Page 498: ...ate priority are specified by administrator auto The default CND defense mode and alternate priority are controlled automatically comp The default CND defense mode and alternate priority are determined by global setting If not specified the default defense mode choice is comp Default None Command Mode Interface Configuration Mode Command Default Level Level 12 Usage Guideline The command is availa...

Page 499: ...100 to 4294967295 weight CPWEIGHT VALUE Specifies the weight change in queue length in the calculation of cpFb which is used to determine the value of the Quantized Feedback The valid weight range is 10 to 10 sample base SAMPLEBASE VALUE Specifies the minimum number of octets to en queue in the Congestion Point s queue between transmissions of Congestion Notification Messages The valid sample base...

Page 500: ... difference between the current and the desired queue lengths The second is a weight factor cpW times the difference between the current and the previous queue lengths cpQDelta A multiple of the first derivative of the queue size is subtracted from the current non optimality of the queue so that if the queue length is moving toward the set point cpQSp cpFb will be closer to 0 than if the queue len...

Page 501: ...red Portlist CNPV 2 Auto Alternate Priority 0 Errored Portlist Output Truncated DXS 3600 32S PRIORIT VALUE Specifies the priority value to display in the configuration and status The valid priority value range is 0 to 7 You can specify multiple priority values which are separated by or INTERFACE ID Optional Specifies the interface to display QCN CNPV information Valid interfaces are physical inter...

Page 502: ...DXS 3600 32S show qcn cnpv 1 interface tenGigabitEthernet 1 0 1 CNPV 1 Interface Id TGi 1 0 1 Defense Mode Choice Comp Admin Defense Mode Disabled Auto Defense Mode Interior Alternate Priority 0 Defense Mode Active Interior Alternate Priority Active 0 Corresponding CP Queue ID 0 DXS 3600 32S Display Parameters Description Corresponding CP Index Display the status for the CP CP Index status indicat...

Page 503: ...Mode Command Default Level Level 3 Usage Guideline Use this command to display the CP information for the specified interface s When teh command show qcn cp is issued with the optional keyword counters only the active CPs will be showed Example This example shows how to display CP information for the interface Gi1 1 with the CP index 1 DXS 3600 32S show qcn cp interface tenGigabitEthernet 1 0 1 qu...

Page 504: ...ommand to display the corresponding interface ID and CP index for the specified CP Identifier Example This example shows how to display the interface ID and CP index for CP Identifier 0011223344550101 DXS 3600 32S show qcn cpid 9094e408dc000140 CP Identifier 9094e408dc000140 QCN Component Id 1 Interface Index TGi 1 0 1 CP Index 1 DXS 3600 32S ...

Page 505: ...nge is 1 to 65535 acct port Specifies the UDP port used for RADIUS accounting If not specified the port number defaults to 1813 port number Specifies the number of the UDP port used for RADIUS accounting The range is 1 to 65535 key Specifies the shared password for the network access server device to communicate with the RADIUS security server text string Specifies the text of the shared password ...

Page 506: ...word is the basis for communications between the device and the RADIUS security server In order to allow the device to communicate with the RADIUS security server you must define the same shared password on the device and the RADIUS security server Example This example shows how to define the shared password aaa for the RADIUS security server DXS 3600 32S configure terminal DXS 3600 32S config rad...

Page 507: ...Usage Guideline Use this command to show all RADIUS statistics Example This example shows the output for the show radius statistics command DXS 3600 32S show radius statistics RADIUS Server 192 168 12 1 Auth Port 1812 Acct Port 1813 Auth Acct Round Trip Time 0 0 Access Requests 0 NA Access Accepts 0 NA Access Rejects 0 NA Access Challenges 0 NA Acct Request NA 0 Acct Response NA 0 Retransmissions ...

Page 508: ...ets include packets with an invalid length Bad authenticators or Signature attributes or unknown types are not included as malformed responses Bad Authenticators The number of RADIUS Response packets containing invalid authenticators or Signature attributes received from this server Pending Requests The number of RADIUS Request packets destined for this server that have not yet timed out or receiv...

Page 509: ... Key A shared password for the network access server device to communicate with the RADIUS security server Retransmit The number of packet retransmissions before the device considers that the RADIUS security server does not respond Timeout Set the time for the device to wait for a response from the security server after retransmitting the RADIUS packet The unit is seconds Default Key A default sha...

Page 510: ...e Add an RMON collection statistic for the specified interface on the switch Example This example shows how to add a statistic entry DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if rmon collection stats 100 DXS 3600 32S config if Example This example shows how to remove a statistic entry DXS 3600 32S configure terminal DXS 3600 32S conf...

Page 511: ...no rmon collection history 100 DXS 3600 32S config if number Specifies the alarm index in the range of 1 to 65535 variable Specifies the variable to be monitored by the alarm in integer interval Specifies the sampling interval in the range of 1 to 2147483647 absolute Specifies each sampling value compared with the upper and lower limits delta Specifies the difference with previous sampling value c...

Page 512: ...s to record the event trap Specifies to send the trap message to the NMS when the event is triggered community Specifies the community string used for sending the SNMP trap message description description string Specifies the description of the event Default None Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline Add the RMON event information on the switch Examp...

Page 513: ...kts 0 CRCAlignErrors 0 UndersizePkts 0 OversizePkts 0 Fragments 0 Jabbers 0 Collisions 0 Pkts64Octets 0 Pkts65to127Octets 0 Pkts128to255Octets 0 Pkts256to511Octets 0 Pkts512to1023Octets 0 Pkts1024to1518Octets 0 Owner monitor Statistics 2 Data Source 1 3 6 1 2 1 2 2 1 1 2 DropEvents 0 Octets 0 CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All Parameters None Default None Command Mode Privi...

Page 514: ...t SPACE n Next Page ENTER Next Entry a All Parameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline Alarm is the third group in RMON It monitors a specific management information base MIB object at the specified interval When the value of this MIB object is higher than the predefined upper limit or lower than the predefined lower limit an alarm w...

Page 515: ...t Level Level 3 Usage Guideline Event is the ninth group in RMON It determines to generate a log entry or a SNMP Trap message when an event is generated due to alarms Example This example shows how to display the RMON event information DXS 3600 32S show rmon event Entry 1 Description des Event Type log and trap Community public Last Time Sent 0d 4h 46m 3s Owner test Log 1 Log Time 0d 4h 46m 3s Log...

Page 516: ...sets the route preference of the RIP routes A route preference is a rating of the trustworthiness of a routing information source such as an individual router or a group of routers In general the higher the value the lower the trust rating is You can verify your settings by entering the show ip route preference command Example This example shows how to set the route preference of RIP routes to 120...

Page 517: ...r RIP route DXS 3600 32S configure terminal DXS 3600 32S config ip standard access list list1 DXS 3600 32S config ip acl permit 172 18 0 0 16 DXS 3600 32S config ip acl exit DXS 3600 32S config router rip DXS 3600 32S config router distribute list list1 in vlan1 DXS 3600 32S config router Parameters None Default By default no authentication is used by RIP interface Command Mode Interface Configura...

Page 518: ...thentication To exchange RIP information directly the password must be identify You can configure the authentication text password and authentication mode individually When enable the simple password authentication the plaintext password should be used If the plaintext password is not configured the update packets should be sent and received without password The configuration of authentication tex...

Page 519: ...w ip rip interface command Example This example shows how to configure the interface vlan1 to not receive RIP packets DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if no ip rip receive enable The configuration of authentication is cleared because only Version 2 supports authentication DXS 3600 32S config if 1 Optional Specifies to accept RIP Version 1 pac...

Page 520: ...efault Level Level 8 EI Mode Only Command Usage Guideline Use the no form of this command to prevent from sending RIP packets on the interface the RIP protocol should not send out RIP packets On one interface whose receiving packets is disabled or Version 1 disabling sending packets will cause the configuration of authentication on this interface to be cleared and can t be restored when enable int...

Page 521: ...S 3600 32S config interface vlan 1 DXS 3600 32S config if ip rip send version 2 DXS 3600 32S config if Parameters None Default By default this function is disabled Command Mode Interface Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline Use this command to broadcast RIP version 2 updates to hosts that do not listen to multicast broadcast Version 2 updates reques...

Page 522: ...y entering the show ip rip command Example This example shows how to enable RIP on the interface vlan1 10 0 0 0 8 DXS 3600 32S configure terminal DXS 3600 32S config router rip DXS 3600 32S config router network 10 0 0 0 DXS 3600 32S config router Example This example shows how to enable RIP on interface ip100 associated to VRF VPN A 100 1 1 1 24 DXS 3600 32S configure terminal DXS 3600 32S config...

Page 523: ...ilter the routes and use the route map set clauses to set the metric of routes redistributed into RIP domain You can verify your settings by entering the show ip rip command Example This example shows how to configure the redistribution of static routes to RIP DXS 3600 32S configure terminal DXS 3600 32S config router rip DXS 3600 32S config router redistribute static DXS 3600 32S config router Ex...

Page 524: ...col The no form of this command will disable RIP function You can verify your settings by entering the show ip rip command Example This example shows how to enable RIP and enter the RIP router configuration mode DXS 3600 32S configure terminal DXS 3600 32S config router rip DXS 3600 32S config router vrf vrf name Optional Specifies to display information about the RIP VRF instance Default None Com...

Page 525: ...3600 32S Example This example shows how to check RIP information in VRF VPN A DXS 3600 32S show ip rip vrf VPN A VRF VPN A RIP Global State Enabled Update Time 40 seconds Timeout Time 120 seconds Garbage Collection Time 120 seconds RIP Interface Settings Interface IP Address TX Mode RX Mode Authen State tication ip100 100 1 1 1 24 V1 Only V1 or V2 Disabled Disabled Total Entries 1 RIP Redistributi...

Page 526: ...enable command and the version command Authentication The authentication type of RIP interfaces It is specified with the ip rip authentication mode command State Administrative state of RIP interfaces It is specified with the network command Source Protocol The source route domain of redistribution It is specified with the redistribute command Destination Protocols The destination route domain of ...

Page 527: ... Interface Metric 1 Administrative State Disabled TX Mode V1 Broadcast RX Mode V1 or V2 Authentication Disabled Total Entries 1 DXS 3600 32S Display Parameters Description Interface Name The name of RIP interfaces IP Address The IP address of RIP interfaces Interface Metric The metric used by RIP interfaces to send update Administrative State Administrative state of RIP interfaces It is specified ...

Page 528: ... Configuration Mode Router Address Family Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline The basic timers parameters for RIP are adjustable Although the RIP protocol does not require the router process RIP protocol with same basic timers otherwise RIP is executing a distributed asynchronous routing algorithm These timers are suggested to be the same for all r...

Page 529: ...will be cleared You can verify your settings by entering the show ip rip interface command Example This example shows how to configure the global RIP version to Version 2 DXS 3600 32S configure terminal DXS 3600 32S config router rip DXS 3600 32S config router version 2 DXS 3600 32S config router Example This example shows how to configure RIP global version to version 2 in VRF VPN A DXS 3600 32S ...

Page 530: ...VPN A DXS 3600 32S config router af Parameters None Default None Command Mode Address Family Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline This command is used to exit the address family configuration mode Example This example show how to exit the address family configuration mode DXS 3600 32S configure terminal DXS 3600 32S config router rip DXS 3600 32S co...

Page 531: ...e default value of the sequence number of the first clause is 10 Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline The route map can be used in route redistribution and route filtering A route map could be configured with multiple permit deny clauses which can have multiple match or set commands The clause with lower sequence number has higher priority If the rou...

Page 532: ...ifferent path access list the old one will be overwritten You can verify your settings by entering the show route map command Example This example shows how to add a match clause to match AS path access list DXS 3600 32S configure terminal DXS 3600 32S config route map rmap1 permit 10 DXS 3600 32S config route map match as path PATH_AC DXS 3600 32S config route map COMMUNITY LIST NAME Specifies th...

Page 533: ...p match community A COMMUNITY exact DXS 3600 32S config route map EXTCOMMUNITY LIST NAME Specifies the name of the BGP extended community list The length is up to 16 characters Default None Command Mode Route Map Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline The BGP extended community list is created with the command ip extcommunity list Only one community l...

Page 534: ...config route map match interface System DXS 3600 32S config route map ACCESS LIST NAME Specifies the name of a standard IP access list The maximum length is 16 characters PREFIX LIST NAME Specifies the name of an IP prefix list The maximum length is 16 characters Default None Command Mode Route Map Configuration Mode Command Default Level Level 8 Usage Guideline The standard IP access list is crea...

Page 535: ...supported for matching the next hop of routes at one time The next hop of routes is testes with the specified standard IP access list or prefix list You can verify your settings by entering the show route map command Example This example shows how to add a match command to match destination network address of routes using standard IP access list DXS 3600 32S configure terminal DXS 3600 32S config ...

Page 536: ...S config ip acl exit DXS 3600 32S config route map rmap1 permit 10 DXS 3600 32S config route map match ip route source LocalServer DXS 3600 32S config route map NUMBER Specifies the metric of routes The range is 0 to 4294967294 Default None Command Mode Route Map Configuration Mode Command Default Level Level 8 Usage Guideline You can verify your settings by entering the show route map command Exa...

Page 537: ...IST Specifies the path list to be appended before the autonomous system path of the route It could be an AS number or a list of AS numbers separated by comma Default None Command Mode Route Map Configuration Mode Command Default Level Level 8 EI Mode Only Command Usage Guideline Use this command to change the length of the autonomous system path of BGP route This can affect the best path selection...

Page 538: ... configure terminal DXS 3600 32S config route map mapdampending permit 10 DXS 3600 32S config route map set community 2 1 DXS 3600 32S config route map HALF LIFE Specifies the time in minutes after which the penalty of the reachable routes is decreased by half The range is 1 to 45 REUSE Specifies that if the penalty of a route is lower than this value the route is unsuppressed The range is 1 to 20...

Page 539: ... route map set dampening 14 500 900 60 15 DXS 3600 32S config route map IP ADDRESS Specifies the IP address the next hop peer address This setting will take effect for both the ingress and egress directions When set next hop to peer s address for ingress direction the next hop will be set to the neighbor peer address For egress direction the next hop associated with the route in the packet will be...

Page 540: ...is local preference will be overwritten if the local preference is ingress set by the route map For the connected routes the default local preference will be used for them in the best path selection This will take effect for both ingress and egress directions You can verify your settings by entering the show route map command Example This example shows how to add a set command to modify the local ...

Page 541: ...S config route map type 1 Specifies the OSPF external type 1 metric type 2 Specifies the OSPF external type 2 metric Default None Command Mode Route Map Configuration Mode Command Default Level Level 8 Usage Guideline This command is only applied to the routes redistributed to OSPF You can verify your settings by entering the show route map command Example This example shows how to add a set comma...

Page 542: ...ngs by entering the show route map command Example This example shows how to add a set command to modify the origin code of routes DXS 3600 32S configure terminal DXS 3600 32S config route map maporigin permit 10 DXS 3600 32S config route map match as path PATH_ACL DXS 3600 32S config route map set origin egp DXS 3600 32S config route map NUMBER Specifies the value of the weight The range is 0 to ...

Page 543: ...his example shows information of route map rmap1 DXS 3600 32S show route map rmap1 route map rmap1 sequence 10 Permit Match clauses as path PATH_AC community ALPHA COMMUNITY exact interface System ip address Strict Control ip next hop Strict Control route source LocalServer metric 5 route type internal Set clauses dampening 14 500 900 60 15 DXS 3600 32S Display Parameters Description Route Map The...

Page 544: ...aiting for the SSH client to respond is 120 seconds Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline This parameter is only applied to the negotiation phase If the negotiation phase has not completed during the time specified by this parameter the connection be disconnected directly After the execution shell starts the CLI based timers will start Note The modifi...

Page 545: ...r can not be well known port number and can no be occupied by other applications Default The default TCP port number for the SSH server is 22 Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline By default the SSH server listens on TCP port number 22 If you want it to listen on other TCP port number in order to avoid regular SSH attacks or for other personal reasons...

Page 546: ...None Command Mode Privileged EXEC Mode Command Default Level Level 8 Usage Guideline This command is used to show the version and configuration information of the SSH server Example This example shows the SSH version and configuration information DXS 3600 32S show ip ssh server Version 2 0 State Enabled Server port number 2244 Connection timeout 240 secs Authentication retries 5 times DXS 3600 32S...

Page 547: ...enabled the remote SNMP manager can query SNMP agents and send SNMP traps This command will shield the SNMP agent service and related configuration by executing the no snmp server command Example This example shows how to enable the SNMP global setting DXS 3600 32S configure terminal DXS 3600 32S config snmp server DXS 3600 32S config Example This example shows how to disable the SNMP global setti...

Page 548: ...l Configuration Mode Command Default Level Level 12 Usage Guideline Configure the system name information on the switch Example This example shows how to set up the system name information with string test DXS 3600 32S configure terminal DXS 3600 32S config snmp server name test DXS 3600 32S config Example This example shows how to set system name information to default value DXS 3600 32S configur...

Page 549: ... in detail The syntax is general string that allows space Default No system location string is set Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline Configure the system location information on the switch Example This example shows how to set up the system location information with string test DXS 3600 32S configure terminal DXS 3600 32S config snmp server locat...

Page 550: ...mmunityView 1 3 6 1 6 3 Excluded CommunityView 1 3 6 1 6 3 1 Included Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline You use this command to create a view for the MIB object trees The user will need to specify the view when they use the snmp server group command to define a user group Example This example shows how to set a MIB view to interfacesMibView DXS 3...

Page 551: ...restricted public SNMPv1 noauth CommunityView None CommunityView public SNMPv2c noauth CommunityView None CommunityView private SNMPv1 noauth CommunityView CommunityView CommunityView private SNMPv2c noauth CommunityView CommunityView CommunityView Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline An SNMP group defines the access method the read view the write v...

Page 552: ...eries of digits masking the true characters of the string auth Optional Specifies which authentication level should be used md5 Specifies the HMAC MD5 96 authentication level sha Specifies the HMAC SHA 96 authentication level AUTH PASSWORD Specifies the password used for authentication des56 Specifies the 56 bit DES algorithm for encryption PRIV PASSWORD Specifies the password used for privacy Def...

Page 553: ... NAME Optional Specifies the name of a previously defined view The view defines the objects available to the SNMP community ro Optional Specifies read only access Authorized management stations are only able to retrieve MIB objects rw Optional Specifies read write access Authorized management stations are able to both retrieve and modify MIB objects Default There are two communities in the default...

Page 554: ...3600 32S config snmp server enable traps DXS 3600 32S config Example This example shows how to disable the SNMP traps DXS 3600 32S configure terminal DXS 3600 32S config no snmp server enable traps DXS 3600 32S config IP ADDRESS Specifies the IPv4 address of the SNMP notification host vrf NAME Optional Specifies association with one VRF version Optional Specifies the version of the SNMP used to se...

Page 555: ... for the group associated with this SNMP host If the binding variables associated with this notification are out of this notification view then this notification will not send to this host Even more if the IP access list associated with does not include the IP address of the host this notification won t be sent out either For V3 host the argument of COMMUNITY STRING refers to a user created by the...

Page 556: ...w snmp community Community Name private Community Index private Community SecurityName private storage type nonVolatile active Community Name public Community Index public Community SecurityName public storage type nonVolatile active DXS 3600 32S Parameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline This command can view the SNMP users configu...

Page 557: ...View GroupName public SecurityModel v2c SecurityLevel NoAuthNoPriv ReadView CommunityView WriteView NotifyView CommunityView GroupName initial SecurityModel v3 SecurityLevel NoAuthNoPriv ReadView restricted WriteView NotifyView restricted GroupName private SecurityModel v1 SecurityLevel NoAuthNoPriv ReadView CommunityView WriteView CommunityView NotifyView CommunityView GroupName private SecurityM...

Page 558: ...ude 1 3 6 1 6 3 10 2 1 restricted Include 1 3 6 1 6 3 11 2 1 restricted Include 1 3 6 1 6 3 15 1 1 CommunityView Include 1 CommunityView Exclude 1 3 6 1 6 3 CommunityView Include 1 3 6 1 6 3 1 DXS 3600 32S Parameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline Used this command can view the SNMP host configured on the current SNMP agent Example...

Page 559: ...0 32S configure terminal DXS 3600 32S config sntp enable DXS 3600 32S config IP ADDRESS Specifies the IP address of the NTP server Default By default no NTP server is configured Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline SNTP is a compact client only version of the NTP SNTP can only receive the time from NTP servers it cannot be used to provide time servi...

Page 560: ...0 32S config SECONDS Specifies the synchronization interval from 30 to 99999 seconds Default 720 seconds Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline Use this command to set the query interval You can verify your settings by entering the show sntp command Example This example shows how to set the poll interval to 100 seconds DXS 3600 32S configure terminal ...

Page 561: ...nced Indicates the server chosen for synchronization HH MM SS Specifies the current time in the format of Hour 24 hour Minute Second DDMMMYYYY Specifies the current date DD Current day 1 31 in the month MMM Current month jan feb mar apr may jun jul aug sep oct nov dec YYYY Current year 2000 2100 Default None Command Mode Privileged EXEC Mode Command Default Level Level 8 Usage Guideline Use this c...

Page 562: ...rnally keeps time in UTC so this command is used only for display purposes and when the time is manually set You can verify your settings by entering the show clock command Example This example shows how to set the time zone to Pacific Standard Time which is 8 hours behind UTC DXS 3600 32S configure terminal DXS 3600 32S config clock timezone 8 DXS 3600 32S config repeating Specifies that the summ...

Page 563: ... 32S configure terminal DXS 3600 32S config clock summer time repeating 1 sun 4 2 00 last sun 10 2 00 DXS 3600 32S config Example This example shows how to specify the exact date and time In the following example the daylight saving time summer time is configured to start on 2011 October 12 at 2 a m and end on 2012 April 26 at 2 a m DXS 3600 32S configure terminal DXS 3600 32S config clock summer ...

Page 564: ...DXS 3600 Series 10GbE Layer 2 3 Switch CLI Reference Guide 556 ...

Page 565: ...d time SECONDS max age SECONDS Parameters None Default By default this option is disabled Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline The spanning tree no spanning tree command allows the Spanning Tree Protocol to be globally enabled disabled on the switch Example This example shows how to enable STP mode is the default mode DXS 3600 32S configure terminal ...

Page 566: ...the BPDU message The default setting is 20 seconds The range is 6 to 40 seconds Default The default value of hello time is 2 The default value of forward time is 15 The default value of max age is 20 Command Mode Global Configuration Mode Command Default Level Level 8 Usage Guideline There are some constraints on the relationship of the three timers Please refer to the following formulas 2 Bridge_...

Page 567: ...ering this parameter could slow convergence in some scenarios We recommend that you do not change the value from the default setting Example This example shows how to configure the tx hold count value DXS 3600 32S configure terminal DXS 3600 32S config spanning tree tx hold count 5 Success DXS 3600 32S config MAX COUNT Specifies the MSTP maximum hop number The range is 6 to 40 hops Default The def...

Page 568: ...states Example This example shows how to configure the running version of STP module to RSTP DXS 3600 32S configure terminal DXS 3600 32S config spanning tree mode rstp Success DXS 3600 32S config 12 2000 02 15 00 46 00 INFO 6 Spanning Tree version change new version RSTP DXS 3600 32S config Parameters None Default By default all VLANs are mapped to the CIST instance 0 name is bridge mac and the r...

Page 569: ...he VLANs to be mapped to the specified instance Valid values are from 1 to 4094 Default All VLANs are mapped to the CIST instance in default Command Mode MST Configuration Mode Command Default Level Level 8 Usage Guideline This command is used to map VLANs to the MST instance When mapping VLAN s to a MST instance if this instance is not exist this instance will be created automatically User can us...

Page 570: ... 02 15 00 56 55 INFO 6 Spanning Tree MST configuration ID name and revision level change name region1 revision level 0 DXS 3600 32S config mst REVISION Specifies the same given name with different revision level also represents for different MST region The range is 0 to 65535 Default Default value for revision level is 0 Command Mode MST Configuration Mode Command Default Level Level 8 Usage Guide...

Page 571: ...an instance Valid values are from 0 to 200000000 and 0 means auto port priority PRIORITY Optional Specifies the port priority for an instance Valid values are from 0 to 240 in increments of 16 Default The default port priority is 128 Command Mode Interface Configuration Mode Command Default Level Level 8 Usage Guideline Higher cost values indicate higher costs Smaller port priority priority values...

Page 572: ...perated in the configured mode either in RSTP or MSTP mode Otherwise the port will be operated in STP mode RSTP and MST have built in compatibility mechanisms that allow them to interact properly with other versions of IEEE spanning tree or other regions For example a bridge running RSTP can send 802 1D BPDUs on one of its ports when it is connected to a legacy bridge An MST bridge can detect that...

Page 573: ...tree command allows the Spanning Tree Protocol to be enabled disabled on the switch interface Example This example shows how to enable STP on an interface DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if spanning tree Success DXS 3600 32S config if SECONDS Specifies the time interval to send one BPDU at the Designated Port The default se...

Page 574: ...external path cost DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if spanning tree externalcost 22 Success DXS 3600 32S config if disabled Specifies to disable the portfast on the interface Default The default vaule is disabled Command Mode Interface Configuration Mode Command Default Level Level 8 Usage Guideline You should use this comm...

Page 575: ...3600 32S config if spanning tree autoedge Success DXS 3600 32S config if Parameters None Default By default this option is disabled Command Mode Interface Configuration Mode Command Default Level Level 8 Usage Guideline BPDU guard prevents a port from being a root port BPDUs Typically this feature is used in a service provider environment where the network administrator wants to prevent a low spee...

Page 576: ... to point to point shared Specifies to forcibly set the link type of the interface to shared Default For a full duplex interface its link type is set to a point to point link For a half duplex interface its link type is set to shared Command Mode Interface Configuration Mode Command Default Level Level 8 Usage Guideline A full duplex port is considered to have a point to point connection On the op...

Page 577: ...nt bridges external to a core region of the network causing address flushing in that region possibly because those bridges are not under the full control of the administrator or MAC_Operational for the attached LANs transitions frequently Example This example shows how to configure TCN filtering DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S con...

Page 578: ...splay the global configuration of STP about forward time DXS 3600 32S show spanning tree forward time BridgeForwardDelay 16 DXS 3600 32S Example This example shows how to display the global configuration of STP about hello time DXS 3600 32S show spanning tree hello time BridgeHelloTime 1 DXS 3600 32S Example This example shows how to display the global configuration of STP about max age DXS 3600 3...

Page 579: ...spanning tree interface tenGigabitEthernet 1 0 1 PortAdminExternalCost 22 operExternalPortPathCost 200000 PortAdminPortFast Disabled PortAutoEdge Enabled PortOperPortFast Disabled PortAdminLinkType point to point PortOperP2PLinkType point to point PortRootGuard Enabled PortTcGuard Enabled MST 0 vlans mapped 1 4094 PortState Disabled PortPriority 128 PortDesignatedRoot 0000 0000 0000 0000 PortDesig...

Page 580: ...r interface INTERFACE ID Specifies the interface number Default None Command Mode EXEC Mode Command Default Level Level 3 Usage Guideline Show about MSTP information Example This example shows the MST configuration DXS 3600 32S show spanning tree mst configuration Multi spanning tree protocol Disabled Name region1 Revision Level 2 Instance VLANS Mapped CIST 1 4094 DXS 3600 32S Example This example...

Page 581: ...ce information DXS 3600 32S show spanning tree mst instance 0 MST 0 vlans mapped 1 4094 BridgeAddr 0001 0203 0400 Priority 32768 TimeSinceTopologyChange 0d 0h 0m 0s TopologyChanges 0 DesignatedRoot 0000 0000 0000 0000 RootCost 0 RootPort 0 CistRegionRoot 0000 0000 0000 0000 CistPathCost 0 DXS 3600 32S ...

Page 582: ...ne Too many broadcast multicast or unknown unicast packets received on a port may cause storm and thus slow network A device can implement the storm suppression to a broadcast a multicast or a unicast storm respectively When excessive broadcast multicast or unknown unicast packets are received the switch temporarily prohibits forwarding of relevant types of packets until data streams are recovered...

Page 583: ...r rise threshold is reached drop Specifies the storm control discard packets that exceed the rise threshold Default The default setting of the action is block storm packets Command Mode Interface Configuration Mode Command Default Level Level 15 Usage Guideline If the port shutdown you must use the no storm control action or the no storm control broadcast multicast unicast commands to recover the ...

Page 584: ...ccess DXS 3600 32S config interface interface id Optional Specifies a port to display storm control information broadcast Optional Displays storm control information for broadcast packets multicast Optional Displays storm control information for multicast packets unicast Optional Displays storm control information for unicast packets Default None Command Mode Privileged EXEC Mode Command Default L...

Page 585: ...17 Broadcast Drop Disabled TenGigabitEthernet1 0 18 Broadcast Drop Disabled TenGigabitEthernet1 0 19 Broadcast Drop Disabled TenGigabitEthernet1 0 20 Broadcast Drop Disabled TenGigabitEthernet1 0 21 Broadcast Drop Disabled TenGigabitEthernet1 0 22 Broadcast Drop Disabled TenGigabitEthernet1 0 23 Broadcast Drop Disabled TenGigabitEthernet1 0 24 Broadcast Drop Disabled DXS 3600 32S Example This exam...

Page 586: ...uested to output if the username and password is correct It will output INFO 6 Successful login through Console Username s otherwise output WARN 4 Login failed through Console Username s Example This example shows how to login to the device DXS 3600 32S login Username admin Password DXS 3600 32S 14 2011 12 23 07 58 18 INFO 6 Logout through Console Username admin 15 2011 12 23 07 58 18 INFO 6 Succe...

Page 587: ...pecifies to identify the privilege level that will be entered when you use this username to login If not specified the privilege level is 1 Default By default there is no username or password configured on this switch Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline This command is used to create a local user database for the purpose of authentication Example T...

Page 588: ...pecifies the encrypted pasword password used This password must be between 1 to 26 characters long Leading spaces will be ignored and spaces in between or at the end are regarded as part of the password Default By default there is no password specified Command Mode Line Configuration Mode Command Default Level Level 15 Usage Guideline None Example This example shows how to create a password of 123...

Page 589: ...igher level If the privilege level have a password configured the user needs to input the required password before access to the higher privilege level will be given If the user inputs the incorrect password three times the switch will stop requesting the user to input the password and return to current privilege level Example This example shows how to enable the privilege level of 15 DXS 3600 32S...

Page 590: ...ble a password with the privilege level of 15 DXS 3600 32S configure terminal DXS 3600 32S config enable password level 15 12345 DXS 3600 32S config Parameters None Default By default no encryption is applied Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline Various passwords are displayed in the form of plain text unless it is directly configured in the cipher ...

Page 591: ...vilege level Specifies the execution right level 1 15 of a command reset Specifies to restore the command execution rights to its default level command string Specifies the command string of the level that will be changed All the commands beginnig with this string will be changes Default No privilege Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline Privilege is...

Page 592: ...r than 1 such as Console VTY window Memory buffer Flash and syslog host Example This example shows how to turn on logging of system messages DXS 3600 32S configure terminal DXS 3600 32S config logging on DXS 3600 32S config IP ADDRESS Specifies the IP address of the syslog server vrf VRF NAME Specifies the name of the routing forwarding instance Default By default don t send system log messages to...

Page 593: ... Level Level 15 Usage Guideline When a log severity is set here the log messages at or below that severity will be displayed on the console The following table is description about the level Severity Level Description Emergency 0 System is unusable Alert 1 Action must be taken immediately Critical 2 Critical conditions Error 3 Error conditions Warning 4 Warning conditions Notice 5 Normal but signi...

Page 594: ...yslog server at address 10 90 90 4 DXS 3600 32S configure terminal DXS 3600 32S config logging server 10 90 90 4 DXS 3600 32S config logging trap 6 DXS 3600 32S config interface INTERFACE ID Specifies the interface which IP address that will be used as source to send logs to log server IP ADDRESS Specifies the source IPV4 address that will be used as source to send logs to log server Default None ...

Page 595: ...m 3 System daemons 4 Security authorization messages 5 Messages generated internally by syslogd 6 Line printer sub system 7 Network news sub system 8 UUCP sub system 9 Clock daemon 10 Security authorization messages 11 FTP daemon 12 NTP sub system 13 Log audit 14 Log alert 15 Clock daemon 16 Local use 0 local0 17 Local use 1 local1 18 Local use 2 local2 19 Local use 3 local3 20 Local use 4 local4 ...

Page 596: ... enable the log statistics function DXS 3600 32S configure terminal DXS 3600 32S config logging count DXS 3600 32S config Parameters None Default None Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline This command clears the log packets from the memory buffer You cannot clear the statistics of the log packets Example This example shows how to clear the log packe...

Page 597: ...slog Source IP Interface Configuration IP Interface vlan1 IPv4 Address 192 168 69 123 DXS 3600 32S Parameters None Default None Command Mode EXEC Mode Command Default Level Level 15 Usage Guideline To use the log packet statistics function run logging count in the global configuration mode The show logging count can show the information of a log Example This example shows the log statistics DXS 36...

Page 598: ...formation is at or below the set level will not be displayed Example This example shows how to disable record logs into flash DXS 3600 32S configure terminal DXS 3600 32S config logging buffered write delay infinite DXS 3600 32S config Parameters None Default None Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline As log entries are created and store in the DRAM ...

Page 599: ... TACACS client and server The maximum length of the key is 254 Default No specified TACACS host Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline To use TACACS to implement AAA security service you must define TACACS secure server You can define one or multiple TACACS secure servers by using tacacs server Example This example shows how to define a TACACS secure ...

Page 600: ...ig seconds Specifies the timeout value used The range is from 1 to 1000 seconds Default 5 seconds Command Mode Global Configuration Mode Command Default Level Level 15 Usage Guideline Use this command to adjust the timeout time of reply packet When we need to specify different timeout time to every server use timeout option in host command We can set a timeout to all the servers that have not set ...

Page 601: ...pts Total Packets Sent Number of packets sent to the TACACS server Total Packets Recv Number of packets received from the TACACS server Reference Count Number of authentication requests from the TACACS server Parameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 15 Usage Guideline Use this command to show all TACACS server hosts Example This example shows the o...

Page 602: ...DXS 3600 Series 10GbE Layer 2 3 Switch CLI Reference Guide 594 Default Timeout The global timeout time waiting for the server when communicating with TACACS server Display Parameters Description ...

Page 603: ...lt Level Level 8 Usage Guideline This command enables the TELNET server service on the switch It allows communication with and management of the switch using the TELNET protocol Example This example shows how to enable the TELNET server on the switch DXS 3600 32S configure terminal DXS 3600 32S config ip telnet server enable DXS 3600 32S config vrf string 1 12 Specifies the VRF of the TELNET serve...

Page 604: ...Command Mode Privileged Mode Command Default Level Level 8 Usage Guideline This command is used to display the TELNET server information Example This example shows how to display the TELNET server information DXS 3600 32S show ip telnet server Server State Enabled DXS 3600 32S ...

Page 605: ...f the time range is binded to an ACL profile or a PoE port if PoE is supported the deletion will fail Example This example shows how to enter time range configure mode DXS 3600 32S configure terminal DXS 3600 32S config time range a DXS 3600 32S config time range Example This example shows how to delete a time range DXS 3600 32S configure terminal DXS 3600 32S config no time range a Success DXS 36...

Page 606: ...3600 32S config time range time1 DXS 3600 32S config time range periodic sun tue 1 00 to 2 00 Success DXS 3600 32S config time range Parameters None Default None Command Mode Global Configuration Mode Command Default Level Level 4 Usage Guideline None Example This example shows how to display all existing time range DXS 3600 32S show time range Time Range Information Range Name time1 Weekdays Sun ...

Page 607: ...ce list Default The main interface is not isolated Command Mode Interface Configuration Mode Command Default Level Level 15 Usage Guideline After the interface is isolated to a specified interface the interface can not switch on L2 and route on L3 to the specified interface But the specified interface to it has no limit If not specified all interfaces will be included Use the show protected ports ...

Page 608: ...xample shows how to display the switch port s protected unidirectional information for interface 1 DXS 3600 32S show switchport protected interface tenGigabitEthernet 1 0 1 Function Version 1 01 Interface Unidirectional Portlist TenGigabitEthernet1 0 1 1 2 1 4 1 26 DXS 3600 32S ...

Page 609: ...e transmitted file Otherwise show the failure information Only configuration and firmware files can be transmitted by TFTP Example This example shows how to download a firmware named firmware had from a TFTP server DXS 3600 32S copy tftp 192 168 0 27 firmware had flash run had Address of remote host 192 168 0 27 Source filename firmware had Destination filename run had Accessing tftp 192 168 0 27 ...

Page 610: ...e is not set the switch attempts to load and execute the first executable image Example This example shows how to configure the firmware had file as the boot up image DXS 3600 32S configure terminal DXS 3600 32S config boot system flash firmware had DXS 3600 32S config Parameters None Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 Usage Guideline Used to display the b...

Page 611: ... parameters for the specified VLAN When the user enters the VLAN ID of a new VLAN the VLAN will be automatically created If the new VLAN is a port allowed VLAN the port will join to the new VLAN automatically The user can use the no vlan command to remove VLANs The default VLAN cannot be removed The dynamic VLAN that is created through GVRP cannot be removed through this command If the VLAN is use...

Page 612: ...an 1000 1005 DXS 3600 32S config VLAN NAME Specifies the VLAN name This name is an ASCII string from 1 to 32 characters that must be unique within the administrative domain The syntax is a general string that does not allow spaces Default The default VLAN name is VLANxxxx where xxxx represents four numeric digits including the leading zeros that are equal to the VLAN ID Command Mode VLAN Configura...

Page 613: ... The user can specify multiple VLANs for a hybrid port Packets on a hybrid can be received and transmitted in tagged form or untagged form Creating a link aggregation doesn t need the VLAN setting of its member ports are same as The VLAN setting of the new link aggregation is default value The VLAN setting of member ports become inactive Once a member port is removed from the link aggregation grou...

Page 614: ...ID Specifies the VLAN list that will be added or removed from Optional Specifies a series of VLANs or separate a range of VLANs from a previous range No space is required before and after the comma Optional Specifies a range of VLANs No space is required before and after the hyphen Default By default a port that is set to trunk mode allows all VLANs Command Mode Interface Configuration Mode Comman...

Page 615: ...ault no VLAN memberships are configured for a hybrid port Command Mode Interface Configuration Mode Command Default Level Level 12 Usage Guideline The command can only be configured on physical ports or port channels that are set to hybrid mode or dot1q tunnel mode The command can be used to setting the VLAN membership of a hybrid port If the port has already been the tagged member of a VLAN addin...

Page 616: ...he following example the user configures interface port 1 to become a trunk interface and configure its native VLAN to 20 DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if switchport mode trunk DXS 3600 32S config if switchport native vlan 20 DXS 3600 32S config if tagged only Specifies that only tagged frames will be accepted by the inte...

Page 617: ...d Command Mode Interface Configuration Mode Command Default Level Level 12 Usage Guideline The valid interfaces for this command are physical ports or link aggregation groups You can use the ingress checking interface command to enable ingress checking on interfaces If ingress checking is enabled if the port is not member port of the VLAN that has been classified for the received packet the packet...

Page 618: ... terminal DXS 3600 32S config vlan 101 DXS 3600 32S config vlan mac base 00 80 cc 00 00 11 priority 4 DXS 3600 32S config vlan NETWORK PREFIX PREFIX LENGTH Specifies the network prefix and the prefix length in the form of A B C D x IPV6 NETWORK PREFIX PREFIX LENGTH Specities the IPv6 network prefix and the prefix length in the form of x x x x x x x x n The prefix length of IPv6 network address sha...

Page 619: ...mma use a hyphen to designate a range of VLAN ID interface Optional Displays the port PVID ingress checking acceptable frame type information INTERFACE ID Specifies the port to display Optional Specifies a series of ports or separate a range of ports from a previous range No space before and after the comma Optional Specifies a range of ports No space before and after the hyphen subnet base Option...

Page 620: ...2S Example This example displays the PVID ingress checking and acceptable frame type information for ports 1 4 DXS 3600 32S show vlan interface tenGigabitEthernet 1 0 1 1 0 4 TGi1 0 1 VLAN mode Trunk Trunk allowed VLAN 1 4094 Dynamic Tagged VLAN Native VLAN 20 GVRP State Disabled Forbidden VLAN Ingress checking Enabled Acceptable frame type Tagged Only TGi1 0 2 VLAN mode Access Access VLAN 1 Ingre...

Page 621: ...ample This example displays the subnet based VLAN table DXS 3600 32S show vlan subnet base Subnet VLAN ID Priority 20 0 0 0 8 100 0 192 0 0 0 8 100 4 3FFE 22 33 44 64 100 0 Total Entries 3 DXS 3600 32S PROFILE ID Specifies the profile ID to add or delete frame type Specifies the frame type that will be bound to the entry ethernet2 Specifies the operational protocol value of Ethernet II type frames...

Page 622: ...mand Default Level Level 12 Usage Guideline The valid interfaces for this command are either physical ports or link aggregation groups The command can only be configured on hybrid port or dot1q tunnel port The user can use the protocol vlan profile interface command to bind a protocol VLAN group with a VLAN id As a result the packet received by the port that matches the specified protocol group wi...

Page 623: ... of interfaces from a previous range No space is required before or after the comma Optional Specifies a range of interfaces No space is required before or after the hyphen Default None Command Mode EXEC Mode Command Default Level Level 3 Usage Guideline The user can use the show protocol vlan command to display the current protocol VLAN status The user can display the protocol VLAN group list tab...

Page 624: ...on and directly enter the VPLS configuration mode The VPLS name is used to locally identify a unique VPLS in a device Example This example show how to create a VPLS with the name of vpls100 and enter the VPLS configuration mode DXS 3600 32S configure terminal DXS 3600 32S config vpls vpls100 DXS 3600 32S config vpls Example This example shows how to delete a VPLS with the name of vpls100 DXS 3600 ...

Page 625: ...el Level 15 Usage Guideline This command is used to set the type of emulated service in a VPLS in VPLS configuration mode All pseudowires of a VPLS should have same encapsulation as the type of emulated service in the VPLS The service type of a VPLS can be modified only when there is no pseudowire existed in this VPLS Example This example shows how to set the service type of a VPLS to Ethernet raw...

Page 626: ... not be forwarded to this pseudowire and the packets from this pseudowire must not be forwarded to other network pseudowires in the VPLS It is the split horizon rule spoke Specifies that a peer is used as a spoke pseudowire in H VPLS topology The packets from other pseudowires in a VPLS can be forwarded to this pseudowire and the packets from this pseudowire can be forwarded to other pseudowires i...

Page 627: ...15 Usage Guideline This command is used to create a backup peer for PW redundancy of an H VPLS in the VPLS configuration mode To reach PW redundancy in an H VPLS the device will act as an MTU s and there should be one primary pseudowire and one backup pseudowire configured In a normal situation the primary pseudowire is link up and the backup pseudowire is link standby The packet forwarding betwee...

Page 628: ...terface Configuration Mode Ethernet Interface or Ethernet VLAN Interface Mode Command Default Level Level 15 Usage Guideline This command is used to create a local AC in a VPLS A local AC could be an Ethernet based AC which is created in an Ethernet interface or an Ethernet VLAN based AC which is created in Ethernet VLAN interface All local ACs in a VPLS should have same AC type Example This examp...

Page 629: ...med vpls100 DXS 3600 32S configure terminal DXS 3600 32S config interface GigabitEthernet 1 0 1 DXS 3600 32S config encapsulation dot1q 100 DXS 3600 32S config subif no xconnect vpls vpls100 DXS 3600 32S config subif VPLS NAME Optional Specifies the VPLS name This name can be up to 32 characters long detail Optional Specifies to display detailed VPLS information Default None Command Mode EXEC Mode...

Page 630: ... 5 5 Spoke Down Local ACs Local AC Oper Status Eth1 0 17 VLAN100 Up VPLS Name vpls101 Operate Status Up VPLS ID 101 Service Type Tagged MTU 1500 Peers via Pseudowires VC ID Peer Type Oper Status 101 3 3 3 3 Network Down 101 1 1 1 1 Network Up 101 5 5 5 5 Spoke Down Local ACs Local AC Oper Status Eth1 0 17 VLAN101 Up Total Entries 2 DXS 3600 32S Example This example shows how to display detailed in...

Page 631: ...rs long peer Optional Specifies a peer in a VPLS IP ADDRESS Optional Specifies the LSR ID that is used to identify the PE which the peer is belongs to VC ID Optional Specifies the pseudowire ID This ID must be between 1 and 4294967295 ac Optional Specifies a local AC in a VPLS interface INTERFACE ID Optional Specifies the Ethernet interface of a local AC vlan VLAN ID Optional Specifies that a loca...

Page 632: ...PLS Name MAC Address Peer VC ID IP or AC vpls100 00 08 A1 79 9A DF 101 1 1 1 1 vpls100 00 08 A1 79 9A E0 101 1 1 1 1 vpls100 00 08 A1 79 9A E1 101 1 1 1 1 vpls100 00 08 A1 79 9A E2 101 1 1 1 1 vpls100 00 08 A1 79 9A E3 101 1 1 1 1 vpls100 00 08 A1 79 9A E4 101 1 1 1 1 vpls100 00 08 A1 79 9A E5 101 1 1 1 1 vpls100 00 08 A1 79 9A E6 101 1 1 1 1 Total Entries 8 DXS 3600 32S Example This example shows...

Page 633: ...A1 79 9A E6 Eth1 0 21 VLAN101 Total Entries 8 DXS 3600 32S Example This example shows how to display a specified VPLS MAC address in a VPLS named vpls100 DXS 3600 32S show mac address table vpls vpls100 address 00 08 A1 79 9A DF VPLS Name MAC Address Peer VC ID IP or AC vpls100 00 08 A1 79 9A DF Eth1 0 21 VLAN101 Total Entries 1 DXS 3600 32S Example This example shows how to display a specified VP...

Page 634: ...le This example shows how to clear all VPLS MAC addresses DXS 3600 32S clear mac address table vpls dynamic DXS 3600 32S Example This example shows how to clear VPLS MAC addresses for a VPLS DXS 3600 32S clear mac address table vpls dynamic vpls100 DXS 3600 32S Example This example shows how to clear a VPLS MAC address for a peer of a VPLS DXS 3600 32S clear mac address table vpls dynamic vpls100 ...

Page 635: ...0 1 1 2 vpls100 Tagged Standby 5 120 1 1 2 vpls101 Tagged Up Total Entries 5 DXS 3600 32S Example This example shows how to detailed VC information for a VPLS DXS 3600 32S show mpls l2transport vc 5 detail VC ID 5 Peer IP Address 120 1 1 2 Operate Status Up Local AC vpls101 Status Up Remote AC Status Up MPLS VC Labels Local 19 Remote 19 Outbound Tunnel label 103 MTU Local 1500 Remote 1500 Group ID...

Page 636: ...Configuration Mode Command Default Level Level 15 Usage Guideline When creating the VPWS on a physical port or link aggregation group the service is Ethernet based and this Ethernet port or link aggregation group is the AC When creating the VPWS on a VLAN sub interface of a port interface the service is Ethernet VLAN based and this VLAN sub interface of the port interface is the AC The interface t...

Page 637: ...ig mpls router exit DXS 3600 32S config interface GigabitEthernet 1 0 1 DXS 3600 32S config if encapsulation dot1q 10 DXS 3600 32S config subif xconnect 2 110 1 1 1 encapsulation mpls VC ID Specifies to display the specified PW ID only detail Specifies to display detailed PW information Default None Command Mode EXEC Mode Command Default Level Level 3 Usage Guideline None Example This example is u...

Page 638: ... RX Bytes 0 RX Packets 0 TX Bytes 0 TX Packets 0 Total Entries 1 DXS 3600 32S Example This example is used to display detailed information of VC 3 belonged to PW redundancy DXS 3600 32S show mpls l2transport vc 3 detail VC ID 3 Peer IP Address 140 1 1 2 Operate Status Up Primary Local AC Eth1 0 1 VLAN4 Status Up Remote AC Status Up MPLS VC Labels Local 17 Remote 17 Outbound Tunnel label 101 MTU Lo...

Page 639: ...he packet forwarding in the VPWS service will work in the primary pseudowire But when the LDP hello procedure or other situations are found when the primary pseudowire link down happens the backup pseudowire will be changed to link up to manage packet forwarding in the VPWS service After the primary pseudowire was recovered to link up again the backup pseudowire will toggle back to link standby an...

Page 640: ...e The authentication is applied to all virtual routers on this interface The devices in the same VRRP group must have the same authentication password Use the command show vrrp to verify your settings Example This example shows how to configure one interface s VRRP authentication DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if vrrp authentication test DX...

Page 641: ...l router and specifies its IP address All routers in the same VRRP group must be configured with the same virtual router ID and IP address A virtual router group is represented by a virtual router ID The IP address of the virtual router is the default router configured on hosts The virtual router s IP address can be a real address configured on the routers or an unused IP address If the virtual ro...

Page 642: ... time In non preempt mode the master will not be preempted unless the incoming router is the IP address owner of the virtual router Use the command show vrrp to verify your settings Example This example shows how to configure the router for VRRP group 7 to preempt the current master router DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if vrrp 7 preempt DX...

Page 643: ...to configure the priority of VRRP group 7 to be 200 on interface vlan1 DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S config if vrrp 7 priority 200 DXS 3600 32S config if Example This example shows how to reset the priority of VRRP group 7 to the default value on interface vlan1 DXS 3600 32S configure terminal DXS 3600 32S config interface vlan 1 DXS 3600 32S con...

Page 644: ...formation about the virtual routers that belong to specified interface vrid Displays the detailed information about the specified virtual router The valid range is from 1 to 255 brief Displays brief information Default None Command Mode Privileged EXEC Mode Command Default Level Level 3 EI Mode Only Command Usage Guideline Use this command to show the VRRP related setting and status Example This e...

Page 645: ...Advertisement Interval is 1 seconds Preemption is enabled Priority is 100 Master Router is 10 1 1 1 vlan2 Group 1 State is Init Virtual IP Address is 100 1 1 100 Virtual MAC Address is 00 00 5E 00 01 01 Advertisement Interval is 1 seconds Preemption is enabled Priority is 100 Authentication is enabled Authentication Text is 12345678 Master Router is 100 1 1 1 DXS 3600 32S Example This example show...

Page 646: ... Parameters Description Interface Interface name the virtual routers belong to Grp Group ID the identifier of virtual router as specified with the vrrp ip command Pri The priority of virtual router as specified with the vrrp priority command Own Y represents IP address owner Pre The preempt mode of virtual router as specified with the vrrp preempt command Y represents the preempt mode is enabled S...

Page 647: ...n ADV msg with incorrect checksum on VR 1 at interface vlan1 Received an ADV msg with incorrect checksum on VR 1 at interface vlan1 Received an ADV msg with incorrect checksum on VR 1 at interface vlan1 Parameters None Default By default the VRRP event debug switch is turned off Command Mode Privileged EXEC Mode Command Default Level Level 8 Usage Guideline Use this command to turn on or turn off ...

Page 648: ...nterface vlan1 priority 255 Send out an ADV msg at VR 1 at interface vlan1 priority 255 Parameters None Default By default the VRRP state debug switch is turned off Command Mode Privileged EXEC Mode Command Default Level Level 8 Usage Guideline Use this command to turn on or turn off the VRRP state debug switch Example This example shows how to turn on the VRRP state debug switch DXS 3600 32S debu...

Page 649: ...DXS 3600 Series 10GbE Layer 2 3 Switch CLI Reference Guide 641 ...

Page 650: ... range is from 1 to 1000 type Specifies the profile types Different profiles can match different fields ethernet The profile can match L2 fields ip The profile can match L3 IP fields ipv6 The profile can match IPv6 destination or source address Default No VLAN mapping profile Command Mode Global Configuration Mode Command Default Level Level 12 Usage Guideline A VLAN mapping profile can be used to...

Page 651: ... applied on an interface the switch tests the incoming packets according the rules of the profile If the packets match a rule the action of the rule will be taken The action may be adding or replacing the outer VID Optional you can specify the priority of the new outer TAG or specify the packets new inner VID If no specified the priority of the new outer TAG is the incoming port default priority a...

Page 652: ...s will be displayed Default None Command Mode EXEC Mode Command Default Level Level 3 Usage Guideline Use this command to display previously configured VLAN mapping profile information Example This example shows all VLAN mapping profile information DXS 3600 32S show vlan mapping profile VLAN mapping profile 1 type ethernet rule 10 match src ip 100 1 1 0 24 dot1q tunnel outer vid 100 rule 20 match ...

Page 653: ...ing profile configuration is cleaned Example This example shows how to configure a VLAN mapping profile and apply it to UNI port 1 The customer packets that go to 100 1 1 0 24 will be added to S VLAN 100 and the packets that go to 200 1 1 0 24 will be added to S VLAN 200 DXS 3600 32S configure terminal DXS 3600 32S config vlan mapping profile 1 type ip DXS 3600 32S config vlan map rule 10 match sr...

Page 654: ...LAN mapping rule that is configured on this port the service VLAN will be assigned according the C VLAN based VLAN mapping rule The service VLAN will be assigned according to the port based VLAN of this port If the inner priority trust is enabled on this port the L2 priority in the C VLAN tag will be copied to the service VLAN Otherwise the priority in the service VLAN tag is the default priority ...

Page 655: ... TPID in the service VLAN tag will be set according the configuration Setting port to no trunk mode leads to its outer TPID reset to default value Example This example shows how to set the TPID of interface port 1 to 0x88A8 DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if switchport mode trunk DXS 3600 32S config if frame tag tpid 0x88a8...

Page 656: ...ets is used to match the VLAN translation rule The outer VLAN of the matched packet is replaced by translated service VLAN and the original inner VLAN is no modified Moreover you can configure 2 2 VLAN translation rule by specified inner vlan parameter In this case the original inner VLAN of the matched packet will be replaced by the specified new inner VLAN too Usually the 2 1 and 2 2 VLAN transl...

Page 657: ...600 32S config interface tenGigabitEthernet 1 0 3 DXS 3600 32S config if switchport mode trunk DXS 3600 32S config if switchport vlan mapping 10 original inner vlan 20 100 DXS 3600 32S config if Parameters None Default No trust dot1q priority set Command Mode Interface Configuration Mode Command Default Level Level 12 Usage Guideline This command is available for on physical ports or link aggregat...

Page 658: ...AN 10 DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 1 DXS 3600 32S config if switchport mode dot1q tunnel DXS 3600 32S config if insert dot1q tag 10 DXS 3600 32S config if Parameters None Default VLAN mapping miss dropping is disabled Command Mode Interface Configuration Mode Command Default Level Level 12 Usage Guideline This command is available for on phys...

Page 659: ...all 802 1Q tunnel port configurations DXS 3600 32S show dot1q tunnel dot1q Tunnel Interface TGi1 0 1 Trust inner priority Enabled VLAN mapping miss drop Enabled Insert dot1q tag VLAN10 dot1q Tunnel Interface TGi1 0 2 Trust inner priority Disabled VLAN mapping miss drop Disabled DXS 3600 32S interface INTERFACE ID Optional Specifies the interfaces that will be displayed If not specified display the...

Page 660: ... Command Default Level Level 3 Usage Guideline Use this command to display the VLAN mapping configuration Example This example shows all VLAN mappings DXS 3600 32S show vlan mapping Interface Original VLAN Translated VLAN Priority Status TGi1 0 1 1 translate 100 Active TGi1 0 1 2 translate 102 Active TGi1 0 1 3 translate 103 Active TGi1 0 2 1 10 dot1q tunnel 200 Active TGi1 0 3 10 20 translate 100...

Page 661: ...d a new RIP routing instance will be created Then use the command show ip rip vrf to check the settings If the no form of this command is executed the related routing instance will be removed and the command line will exit address family mode Example This example shows how to create a new RIP routing instance of VRF VPN A DXS 3600 32S configure terminal DXS 3600 32S config ip vrf VPN A DXS 3600 32...

Page 662: ... exit address family DXS 3600 32S config router route map Specifies the name of import route map of the VRF Default By default no import route map is specified to a VRF instance Command Mode VRF Configuration Mode Command Default Level Level 15 Usage Guideline This command is used to set the import route map of one VRF This is used by BGP to distribute VPN routing information One VRF only has one ...

Page 663: ...VRF instances and it is project dependent Use the command show ip vrf and show ip route vrf to check the settings Example This example shows how to create and delete a VRF instance DXS 3600 32S configure terminal DXS 3600 32S config ip vrf VPN A DXS 3600 32S config vrf exit DXS 3600 32S config no ip vrf VPN A DXS 3600 32S config vrf name Specifies the name of the VRF Default By default no interfac...

Page 664: ...active route If the user only wants to get a warning set the warning only option Use the command show ip vrf details vrf name to check the settings Example This example shows how to set the VRF VPN A s routes limit to 100 DXS 3600 32S configure terminal DXS 3600 32S config ip vrf VPN A DXS 3600 32S config vrf maximum routes 100 warning only DXS 3600 32S config vrf route distinguisher Specifies the...

Page 665: ...ault no route target is specified for one VRF Command Mode VRF Configuration Mode Command Default Level Level 15 Usage Guideline This command is used to add a route target to one VRF One VRF can have multiple route targets Use the command show ip vrf detail to check the settings Example This example shows how to create a VRF instance VPN A and add an import and export target DXS 3600 32S configure...

Page 666: ...eck detailed information about VRF VPN A DXS 3600 32S show ip vrf details VPN A VRF VPN A Default RD 100 1 Interfaces ip100 Export VPN Route target Communities RT 100 1 Import VPN Route target Communities RT 100 1 Import Route map rmap1 Route Warning Limit 5 Current Count 0 DXS 3600 32S Example This example shows how to check interfaces associated with VRFs DXS 3600 32S show ip vrf interfaces Inte...

Page 667: ... will be set profile id Specifies the WRED profile that will be applied If not specified the WRED profile 1 will be applied Default WRED is disabled Command Mode Interface Configuration Mode Command Default Level Level 15 Usage Guideline Only physical ports are valid for this command When a packet arrives the current average queue size is calculated by the hardware The weight value is set by the c...

Page 668: ...ue to 5 DXS 3600 32S configure terminal DXS 3600 32S config interface tenGigabitEthernet 1 0 3 DXS 3600 32S config if random detect exponential weight 5 exponent 10 Success DXS 3600 32S config if id Specifies the ID of the WRED profile that will be set tcp Specifies the WRED drop parameters for TCP packet to be set If not specified the same WRED drop parameter will be set for both type of traffic ...

Page 669: ...onfig random detect profile 10 min threshold 30 max threshold 50 max drop rate 10 Success DXS 3600 32S config Example This example shows how to configure the WRED drop parameter for TCP yellow and red packets on profile 10 DXS 3600 32S configure terminal DXS 3600 32S config random detect profile 10 tcp yellow red min threshold 20 max threshold 40 max drop rate 5 Success DXS 3600 32S config interfa...

Page 670: ...Exp weight constant Profile 0 Disabled 9 1 1 Disabled 9 1 2 Disabled 9 1 3 Disabled 9 1 4 Disabled 9 1 5 Enabled 10 10 6 Disabled 9 1 7 Disabled 9 1 DXS 3600 32S interface INTERFACE ID Specifies the interface ID for which the WRED drop counter will be displayed You can specify multiple interface IDs which are separated by commas or hyphens No spaces are allowed before or after the commas or hyphen...

Page 671: ...d Default None Command Mode EXEC Mode Command Default Level Level 15 Usage Guideline Use this command to display the WRED profile setting Example This example shows how to display the WRED profile 1 setting DXS 3600 32S show random detect profile 1 WRED Profile 1 Packet Type Min Threshold Max Threshold Max Drop Rate TCP GREEN 20 80 0 TCP YELLOW 20 80 0 TCP RED 20 80 0 NON TCP GREEN 20 80 0 NON TCP...

Page 672: ... port of the device It is necessary for the user needs to attach a terminal or PC with terminal emulation to the console port of the switch 2 Power on the Switch After the UART init is loaded to 100 the Switch will allow 2 seconds for the user to press the hotkey Shift 6 to enter the Password Recovery Mode Once the Switch enters the Password Recovery Mode all ports on the Switch will be disabled 1...

Page 673: ...n The user s session Username Represent current login user Ipaddr Represent client IP address macaddr Represent client MAC address Informational Event description Firmware upgrade was unsuccessful Log Message TFTP 2 Firmware upgrade by session was unsuccessfully Username username IP ipaddr MAC macaddr Parameters description session The user s session Username Represent current login user Ipaddr Re...

Page 674: ...ername Represent current login user Ipaddr Represent client IP address macaddr Represent client MAC address Informational Event description Configuration upload was unsuccessful Log Message TFTP 8 Configuration upload by session was unsuccessful Username username IP ipaddr MAC macaddr Parameters description session The user s session Username Represent current login user Ipaddr Represent client IP...

Page 675: ...s of the TELNET client username The user name that used to login to the TELNET server Warning Event description Logout from TELNET Log Message Logout from TELNET Username username IP ipaddr Parameters description ipaddr The IP address of the TELNET client username The user name that used to logout from the TELNET server Informational Event description TELNET session timed out Log Message TELNET se...

Page 676: ...n ipaddr The IP address of the RADIUS server vlanID The VID of the RADIUS assigned VLAN interface id The interface name Username The user that is being authenticated Informational Event description The ingress bandwidth assigned from the RADIUS server after the RADIUS client was authenticated by the RADIUS server successfully This ingress bandwidth will be assigned to the port Log Message RADIUS s...

Page 677: ...ure at port interface id string Parameters description ipaddr The IP address of the RADIUS server interface id The interface name Username The user that is being authenticated string The failed RADIUS ACL command string Warning LLDP MED Event description LLDP MED topology change detected Log Message LLDP MED topology change detected on port portNum chassis id chassisType chassisID port id portType...

Page 678: ... 4 5 interfaceName 5 6 agentCircuitId 6 7 local 7 portID The port ID deviceClass The LLDP MED device type Notice Event description Incompatible LLDP MED TLV set detected Log Message Incompatible LLDP MED TLV set detected on port portNum chassis id chassisType chassisID port id portType portID device class deviceClass Parameters description portNum The port number chassisType The chassis ID sub typ...

Page 679: ...efined error code or sub error code in RFC 4271 Log Message BGP 4 BGP Notify unkown Error code num Sub Error code num Peer ipaddr Parameters description num The Error Code or Error Subcode defined in RFC 4271 ipaddr The IP address of the BGP peer Warning Event description Received a BGP update packet but the next hop points to a local interface Log Message BGP 5 BGP Update Attr NHop Erroneous NHop...

Page 680: ...bute from new 4 bytes AS peer Peer ipaddr Parameters description ipaddr The IP address of the BGP peer Warning Event description BGP received AS_CONFED_SEQUENCE or AS_CONFED_SET path segment type in AS4 PATH attribute Log Message BGP 12 Received AS_CONFED_SEQUENCE or AS_CONFED_SET path segment type in AS4 PATH attribute Peer ipaddr Parameters description ipaddr The IP address of the BGP peer Warni...

Page 681: ...nterface administrator state changed Log Message OSPF protocol on interface intf name changed state to Enabled Disabled Parameters description intf name The name of the OSPF interface Informational Event description One OSPF interface changed from one area to another Log Message OSPF interface intf name changed from area area id to area area id Parameters description intf name The name of the OSPF...

Page 682: ...Loading to Full Parameters description nbr id Neighbor s router ID Notice Event description One OSPF virtual neighbor state changed from Full to Down Log Message OSPF nbr nbr id on virtual link changed state from Full to Down Parameters description nbr id The neighbor s router ID Notice Event description The OSPF router ID was changed Log Message The OSPF router ID changed to router id Parameters ...

Page 683: ...ect checksum on VR vr id at interface intf name Parameters description vr id The VRRP virtual router ID intf name The virtual router s interface name Warning Event description Virtual router ID mismatched on one received VRRP advertisement message Log Message Received advertisment message virtual router ID mismatched VR vr id at interface intf name Parameters description vr id The VRRP virtual rou...

Page 684: ...ion vrrp mac addr The VRRP virtual MAC address vrrp errcode The error code of the VRRP protocol behaviour Error Event description Failed when adding a virtual MAC into the switch s L3 table The L3 table is full Log Message Failed to add virtual IP vrrp ip addr MAC vrrp mac addr into the switch s L3 table L3 table is full Parameters description vrrp ip addr The VRRP virtual IP address vrrp mac addr...

Page 685: ...c addr from the switch s L3 table Errcode vrrp errcode Parameters description vrrp ip addr The VRRP virtual IP address vrrp mac addr The VRRP virtual MAC address vrrp errcode The error code of the VRRP protocol behavior Error WEB Event description Successful login through Web Log Message Successful login through Web Username username IP ipaddr Parameters description username The user name that use...

Page 686: ...dr The IP address username The user name Warning Event description Logout Log Message Logout through Console Telnet Web SSL SSH Username username IP ipaddr Parameters description ipaddr The IP address username The user name Informational Event description Session timed out Log Message Console Telnet Web SSL SSH session timed out Username username IP ipaddr Parameters description ipaddr The IP addr...

Page 687: ...paddr authenticated by AAA local server ipaddr Username username Parameters description local Enable admin by AAA local method server Enable admin by AAA server method ipaddr The IP address username The user name Warning Event description Successful login authenticated by AAA local or none or server Log Message Successful login through Console TELNET Web SSL SSH from ipaddr authenticated by AAA lo...

Page 688: ...to a packet storm Log Message interface id is currently shut down due to a packet storm Parameters description interface id The interface name Warning MSTP Debug Event description Topology changed Log Message Topology changed Instance InstanceID port portNum MAC macaddr Parameters description InstanceID The instance ID portNum The port ID macaddr The MAC address Notice Event description Spanning T...

Page 689: ...tance ID Informational Event description Spanning Tree Version changed Log Message Spanning Tree version changed New version new_version Parameters description new_version The new STP version Informational Event description Spanning Tree MST configuration ID name and revision level changed Log Message Spanning Tree MST configuration ID name and revision level changed name name revision level revis...

Page 690: ...ense model AC string25 Parameters Description license model The license model name string25 The activation code Critical Event Description License successfully installed Log Message License successfully installed license license model AC string25 Parameters Description license model The license model name string25 The activation code Informational Event Description The activation code is unbound L...

Page 691: ...P ID Informational Event description LSP is down Log Message LSP lsp_id is down Parameters description lsp_id The deleted LSP ID Informational VPWS Event description Pseudowire link down Log Message Pseudowire ID vc_id peer IP ipaddr link down Parameters description vc_id The link down pseudowire ID ipaddr The peer IP address of the link down pseudowire Informational Event description Pseudowire l...

Page 692: ...ption vpls_name The name of the link down VPLS Informational LACP Event description Link Aggregation Group link up Log Message Link Aggregation Group group_id link up Parameters description group_id The group ID of the link down aggregation group Informational Event description Link Aggregation Group link down Log Message Link Aggregation Group group_id link down Parameters description group_id Th...

Page 693: ... Topology Change Timer immediately subsequent to its election Implementation of this trap is optional 1 3 6 1 2 1 17 0 1 topologyChange A topologyChange trap is sent by a bridge when any of its configured ports transitions from the Learning state to the Forwarding state or from the Forwarding state to the Blocking state The trap is not sent if a newRoot trap is sent for the same transition Impleme...

Page 694: ... 6 1 2 1 16 0 2 MPLS mplsXCUp This notification is generated when the mplsXCOperStatus object for one or more contiguous entries in the mplsXCTable is about to enter the up state from another state 1 3 6 1 2 1 10 166 2 0 1 mplsXCDown This notification is generated when the mplsXCOperStatus object for one or more contiguous entries in the mplsXCTable is about to enter the up state from another stat...

Page 695: ...d by the included value of ifOperStatus Binding objects 1 ifIndex 2 if AdminStatus 3 ifOperStatus 1 3 6 1 6 3 1 1 5 4 linkDown A linkDown trap signifies that the SNMP entity acting in an agent role has detected that the ifOperStatus object for one of its communication links is about to enter the down state from some other state but not from the notPresent state This other state is indicated by the...

Reviews:

No comments

Related manuals for DXS-3600-16S

D-Box HaptiSync Hub User Manual preview
HaptiSync Hub
Brand: D-Box Pages: 27
WAGO 852-111 Mounting, Installation And Handling preview
852-111
Brand: WAGO Pages: 39
H3C S5560S-EI Series Troubleshooting Manual preview
S5560S-EI Series
Brand: H3C Pages: 37
3Com OfficeConnect WX4400 Reference Manual preview
OfficeConnect WX4400
Brand: 3Com Pages: 528
StarTech.com SV431DHD4KU User Manual preview
SV431DHD4KU
Brand: StarTech.com Pages: 24
SMART-AVI RDU-8P Quick Start Manual preview
RDU-8P
Brand: SMART-AVI Pages: 2
Clas Ohlson 36-2824 Quick Start Manual preview
36-2824
Brand: Clas Ohlson Pages: 5
Eaton LPC25-16FUSE Instruction Leaflet preview
LPC25-16FUSE
Brand: Eaton Pages: 2
H3C S5130S-EI series Hardware Information preview
S5130S-EI series
Brand: H3C Pages: 67
Shinybow USA SB-8804LCM Instruction Manual preview
SB-8804LCM
Brand: Shinybow USA Pages: 16
J-Tech Digital JTECH-4KPIP0401 Operating Instructions Manual preview
JTECH-4KPIP0401
Brand: J-Tech Digital Pages: 10
Madison M8000-C Installation And Maintenance preview
M8000-C
Brand: Madison Pages: 2
H3C S5500-28C-EI Installation Manual preview
S5500-28C-EI
Brand: H3C Pages: 96
NVision NV8288 User Manual preview
NV8288
Brand: NVision Pages: 86
Kathrein EXE 1512 Manual preview
EXE 1512
Brand: Kathrein Pages: 41
National Instruments CPS-8910 Getting Started Manual preview
CPS-8910
Brand: National Instruments Pages: 8
Sun Oracle Sun Datacenter InfiniBand Switch 36 Hardware Security Manual preview
Sun Datacenter InfiniBand Switch 36
Brand: Sun Oracle Pages: 12
Linksys LGS310C Quick Start Manual preview
LGS310C
Brand: Linksys Pages: 4

Brands by name

Popular brands

Load more brands