manualshive.com logo in svg

D-Link xStack DES-3500 Series, Cli Manual

The Cli Manual for the high-performance D-Link xStack DES-3500 Series is available for free download on manualshive.com. This comprehensive manual provides detailed instructions, configuration options, and troubleshooting tips to maximize the potential of your DES-3500 switches. Unlock the full potential of your network with this essential manual.

Share
Download
background image

DES-3500 Layer 2 Fast Ethernet Switch CLI Reference Manual

 

 

165

Command Parameters 

<hex 0x0-0xffffffff>| offset 16-31 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> 
<hex 0x0-0xffffffff> | {offset 32-47 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> 
<hex 0x0-0xffffffff> | {offset 48-63 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> 
<hex 0x0-0xffffffff> | {offset 64-79 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> 
<hex 0x0-0xffffffff>}]  

delete cpu 
access_profile 

profile_id <value 1-5> 

config cpu 
access_profile  

profile_id <value 1-5> [add access_id <value 1-65535> [ethernet {vlan  <vlan_name 32> | 
source_mac <macaddr> | destination_mac <macaddr> | 802.1p <value 0-7> | ethernet_type 
<hex 0x0-0xffff>} port [<portlist> | all] [permit | deny] | ip {vlan <vlan_name 32> | source_ip 
<ipaddr> | destination_ip <ipaddr> | dscp <value 0-63> | [icmp {type <value 0-255> | code 
<value 0-255>} | igmp {type <value 0-255>} | tcp {src_port <value 0-65535> | dst_port 
<value 0-65535> | urg | ack | psh | rst | syn | fin}]} | udp {src_port <value 0-65535> | dst_port 
<value 0-65535>} | protocol_id <value 0 - 255> {user_define <hex 0x0-0xffffffff>}]} port 
[<portlist> | all]  [permit | deny] | packet_content {offset_0-15 <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff>| offset_16-31 <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> | offset_32-47 <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> | offset_48-63 <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> | offset_64-79 <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff>} port [<portlist> | all] [permit | deny]] | delete 
access_id <value 1-65535>] 

show cpu 
access_profile 

profile_id <value 1-5> 

show 
cpu_interface_filtering 

 

config flow_meter 

[profile_id <value 1-255> | add access_id <value 1-65535> | rate <value 0-999936> 
rate_exceed drop] 

show flow_meter 

 

 

Access profiles allow users to establish criteria to determine whether or not the Switch will forward packets based on the 
information contained in each packet’s header. 

 

Creating an access profile is divided into two basic parts.  First, an access profile must be created using the 

create access_profile 

command.  For example, if users want to deny all traffic to the subnet 10.42.73.0 to 10.42.73.255, users must first 

create 

an 

access profile that instructs the Switch to examine all of the relevant fields of each frame. 

First create an access profile that uses IP addresses as the criteria for examination:

 

 

create access_profile ip source_ip_mask 255.255.255.0 profile_id 1 

 

Here we have created an access profile that will examine the IP field of each frame received by the Switch.  Each source IP 
address the Switch finds will be combined with the 

source_ip_mask

 with a logical AND operation.  The profile_id parameter is 

used to give the access profile an identifying number 

 in this case, 1 – and it is used to assign a priority in case a conflict occurs. 

The profile_id establishes a priority within the list of profiles.  A lower profile_id gives the rule a higher priority.  In case of a 
conflict in the rules entered for different profiles, the rule with the highest priority (lowest profile_id) will take precedence.  

See 

below for information regarding limitations on access profiles and access rules.

 

The 

deny 

parameter instructs the Switch to filter any frames that meet the criteria 

 in this case, when a logical AND operation 

between an IP address specified in the next step and the 

ip_source_mask

 match.  

The default for an access profile on the Switch is to 

permit

 traffic flow.  If users want to restrict traffic, users must use the 

deny

 

parameter. 

Now that an access profile has been created, users must add the criteria the Switch will use to decide if a given frame should be 
forwarded or filtered.  We will use the 

config access_profile

 command to create a new rule that defines the criteria we want. Let’s 

further specify in the new rule to deny access to a range of IP addresses through an individual port: Here, we want to filter any 
packets that have an IP source address between 10.42.73.0 and 10.42.73.255, and specify the port that will not be allowed: 

 

config access_profile profile_id 1 add access_id 1 ip source_ip 10.42.73.1 port 7 deny 

Summary of Contents for xStack DES-3500 Series

Page 1: ...CLI Manual ProductModel TM DES 3500 Series Layer2ManagedStackableFastEthernetSwitch Release5...

Page 2: ...MANDS 92 QOS COMMANDS 97 PORT MIRRORING COMMANDS 104 VLAN COMMANDS 107 ASYMMETRIC VLAN COMMANDS 112 LINK AGGREGATION COMMANDS 114 IP MAC BINDING 119 LIMITED IP MULTICAST ADDRESS 129 BASIC IP COMMANDS...

Page 3: ...G TABLE COMMANDS 203 MAC NOTIFICATION COMMANDS 205 ACCESS AUTHENTICATION CONTROL COMMANDS 209 SSH COMMANDS 229 SSL COMMANDS 236 D LINK SINGLE IP MANAGEMENT COMMANDS 242 COMMAND HISTORY LIST 253 TECHNI...

Page 4: ...the DES 3526 DES 3526DC and the DES 3550 Examples present in this manual may refer to any member of the xStack DES 3500 series and may show different port counts but are universal to this series of sw...

Page 5: ...nsole serial port as follows 1 Starting at the command line prompt enter the commands config ipif System ipaddress xxx xxx xxx xxx yyy yyy yyy yyy Where the x s represent the IP address to be assigned...

Page 6: ...he console interface is used by connecting the Switch to a VT100 compatible terminal or a computer running an ordinary terminal emulator program e g the HyperTerminal program included with the Windows...

Page 7: ...and Parameter Help In this case the command config account was entered with the parameter username The CLI will then prompt users to enter the username with the message Next possible completions Every...

Page 8: ...ere the what is the next parameter For example if users enter the show command with no additional parameters the CLI will then display all of the possible next parameters DES 3500 admin show Command s...

Page 9: ...rackets Example Command config ipif Engineering ipaddress 10 24 22 5 255 0 0 0 vlan Design state enable square brackets Purpose Encloses a required value or set of required arguments One value or argu...

Page 10: ...ommand previous to that displayed appears This way it is possible to review the command history for the current session Use the down arrow to progress sequentially forward through the command history...

Page 11: ...me 15 show account delete account username 15 username 15 force_agree show session show switch show serial_port config serial_port baud_rate 9600 19200 38400 115200 auto_logout never 2_minutes 5_minut...

Page 12: ...count admin dlink Enter a case sensitive new password Enter the new password again for confirmation Success DES 3500 admin NOTICE In case of lost passwords or password corruption please refer to the D...

Page 13: ...S 3500 admin show account Purpose Used to display user accounts Syntax show account Description Displays all user accounts created on the Switch Up to 8 user accounts can exist at one time Parameters...

Page 14: ...command Parameters username Restrictions Only Administrator level users can issue this command Example usage To delete the user account System DES 3500 admin delete account System Command delete accou...

Page 15: ...itch Command show switch Device Type DES 3526 Fast Ethernet Switch Combo Port 1000Base T 1000Base T MAC Address 00 01 02 03 04 00 IP Address 10 41 44 22 Manual VLAN Name default Subnet Mask 255 0 0 0...

Page 16: ...te with the management host There are four options 9600 19200 38400 115200 never No time limit on the length of time the console can be open with no user input 2_minutes The console will log out the c...

Page 17: ...one screen of information Syntax disable clipaging Description This command is used to disable the pausing of the console screen at the end of each page when a command would display more than one scr...

Page 18: ...and Example usage To disable the Telnet protocol on the Switch DES 3500 admin disable telnet Command disable telnet Success DES 3500 admin telnet Purpose Used to Telnet another device on the network S...

Page 19: ...535 The well known port for the Web based management software is 80 Restrictions Only Administrator and Operator level users can issue this command Example usage To enable HTTP and configure port numb...

Page 20: ...ch s current configuration to non volatile RAM DES 3500 admin save Command save Saving all configurations to NV RAM Done DES 3500 admin reboot Purpose Used to restart the Switch Syntax reboot Descript...

Page 21: ...tings are restored on the Switch The Switch will save and reboot after the settings are changed to default Rebooting will clear all entries in the Forwarding Data Base If no parameter is specified the...

Page 22: ...in UserName logout Purpose Used to log out a user from the Switch s console Syntax logout Description This command terminates the current user s session on the Switch s console Parameters None Restric...

Page 23: ...rompt string 16 username default Description Administrator level users can use this command to change the command prompt Parameters string 16 The command prompt can be changed by entering a new name o...

Page 24: ...Only Administrator and Operator level users can issue this command Other restrictions include If the reset reset config command is executed the modified banner will remain modified However the reset s...

Page 25: ...ration All rights reserved DES 3500 admin enable greeting_message Purpose Used to enable viewing of the currently configured greeting message configured on the Switch Syntax enable greeting_message De...

Page 26: ...ence Manual 23 disable greeting_message Parameters None Restrictions None Example usage To disable viewing of the currently configured greeting message DES 3500 admin disable greeting_message Command...

Page 27: ...ports to be configured speed Allows the user to adjust the speed for a port or range of ports The user has a choice of the following auto Enables auto negotiation for the specified range of ports 10...

Page 28: ...ngs Connection Address Trap State Speed Duplex FlowCtrl Speed Duplex FlowCtrl Learning State 1 Enabled Auto Disabled Link Down Enabled Enabled 2 Enabled Auto Disabled Link Down Enabled Enabled 3 Enabl...

Page 29: ...abled Auto Disabled Link Down Enabled Enabled Description 5 Enabled Auto Disabled Link Down Enabled Enabled Description 6 Enabled Auto Disabled Link Down Enabled Enabled Description 7 Enabled Auto Dis...

Page 30: ...ble disable max_learning_addr max_lock_no 0 64 lock_address_mode Permanent DeleteOnTimeout DeleteOnReset Description This command allows for the configuration of the port security feature Only the por...

Page 31: ...port port Description This command is used to delete a single previously learned port security entry by port VLAN name and MAC address Parameters vlan name vlan_name 32 Enter the corresponding VLAN n...

Page 32: ...urity_entry port 6 Success DES 3500 admin show port_security Purpose Used to display the current port security configuration Syntax show port_security ports portlist Description This command is used t...

Page 33: ...curity trap log setting DES 3500 admin enable port_security trap_log Command enable port_security trap_log Success DES 3500 admin disable port_security trap_log Purpose Used to disable the trap log fo...

Page 34: ...lgorithms AuthPriv DES 56 bit encryption is added based on the CBC DES DES 56 standard The network management commands in the Command Line Interface CLI are listed along with the appropriate parameter...

Page 35: ...he user to an SNMP group that is also created by this command SNMP ensures Message integrity Ensures that packets have not been tampered with during transit Authentication Determines if an SNMP messag...

Page 36: ...be added using the DES 56 standard using priv_password 8 16 An alphanumeric string of between 8 and 16 characters that will be used to encrypt the contents of messages the host sends to the agent pri...

Page 37: ...initial V3 None None Total Entries 1 DES 3500 admin create snmp view Purpose Used to assign views to community strings to limit which MIB objects and SNMP manager can access Syntax create snmp view vi...

Page 38: ...that all of the SNMP views on the Switch will be deleted oid The object ID that identifies an object tree MIB tree that will be deleted from the Switch Restrictions Only Administrator and Operator le...

Page 39: ...ll be accessible to the SNMP community read_write or read_only level permission for the MIB objects accessible to the SNMP community Syntax create snmp community community_string 32 view view_name 32...

Page 40: ...ccess to MIB objects in the Switch s SNMP agent Restrictions Only Administrator and Operator level users can issue this command Example usage To delete the SNMP community string dlink DES 3500 admin d...

Page 41: ...An alphanumeric string that will be used to identify the SNMP engine on the Switch Restrictions Only Administrator and Operator level users can issue this command Example usage To give the SNMP agent...

Page 42: ...tion of authentication and encrypting packets over the network SNMP v3 adds Message integrity Ensures that packets have not been tampered with during transit Authentication Determines if an SNMP messa...

Page 43: ...P group the new SNMP user will be associated with Restrictions Only Administrator and Operator level users can issue this command Example usage To delete the SNMP group named sg1 DES 3500 admin delete...

Page 44: ...3 Security Level NoAuthNoPriv Group Name ReadGroup ReadView Name CommunityView WriteView Name Notify View Name CommunityView Security Model SNMPv1 Security Level NoAuthNoPriv Total Entries 5 DES 3500...

Page 45: ...o encryption of packets sent between the Switch and a remote SNMP manager auth_priv Specifies that authorization will be required and that packets sent between the Switch and a remote SNMP manger will...

Page 46: ...sts on the Switch DES 3500 admin show snmp host Command show snmp host SNMP Host Table Host IP Address SNMP Version Community Name SNMPv3 User Name 10 48 76 23 V2c private 10 48 74 100 V3 authpriv pub...

Page 47: ...level users can issue this command Example usage To create the trusted host network DES 3500 admin create trusted_host network 10 62 32 1 16 Command create trusted_host network 10 62 32 1 16 Success...

Page 48: ...bove Syntax delete trusted _host network network_address Description This command is used to delete a trusted host entry made using the create trusted_host network command above Parameters network_add...

Page 49: ...ge To enable SNMP trap support on the Switch DES 3500 admin enable snmp traps Command enable snmp traps Success DES 3500 admin enable snmp authenticate traps Purpose Used to enable SNMP authentication...

Page 50: ...traps Description This command is used to disable SNMP trap support on the Switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To prev...

Page 51: ...e the Switch contact to MIS Department II DES 3500 admin config snmp system_contact MIS Department II Command config snmp system_contact MIS Department II Success DES 3500 admin config snmp system_loc...

Page 52: ...estrictions Only Administrator and Operator level users can issue this command Example usage To configure the Switch name for DES 3526 Switch DES 3500 admin config snmp system_name DES 3526 Switch Com...

Page 53: ...escription This command is used in conjunction with the enable rmon command above to enable and disable remote monitoring RMON on the Switch Parameters None Restrictions Only Administrator and Operato...

Page 54: ...1 2 configuration ipaddr path_filename 64 increment Description This command is used to download a new firmware or a Switch configuration file from a TFTP server Parameters firmware_fromTFTP Download...

Page 55: ...nfiguration file When the file has been successfully loaded the message End of configuration file for DES 3526 appears followed by the command prompt DES 3500 admin disable authen_policy Command disab...

Page 56: ...information ID Version Size B Update Time From User 1 2 00 B19 1360471 00000 days 00 00 00 Serial Port PROM Unknown 2 4 01 B08 2052372 00000 days 00 00 56 10 53 13 94 Anonymous means boot up section T...

Page 57: ...ering this parameter will display configurations entered without being saved to NVRAM config_in_NVRAM Entering this parameter will display configurations entered and saved to NVRAM Restrictions None E...

Page 58: ...10 48 74 121 c cfg log txt Connecting to server Done Upload configuration Done DES 3500 admin enable autoconfig Purpose Used to activate the autoconfiguration function for the Switch This will load a...

Page 59: ...milar to the example below The configuration settings will be loaded in normal order DES 3526 Fast Ethernet Switch Command Line Interface Firmware Build 4 01 B19 Copyright C 2000 2004 D Link Corporati...

Page 60: ...ample usage To stop the autoconfiguration function DES 3500 admin disable autoconfig Command disable autoconfig Success DES 3500 admin show autoconfig Purpose Used to display the current autoconfig st...

Page 61: ...value 1 255 The number of individual ICMP echo messages to be sent A value of 0 will send an infinite ICMP echo messages The maximum value is 255 The default is 0 timeout sec 1 99 Defines the time ou...

Page 62: ...disable config syslog host all index 1 4 severity informational warning all facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr state enable disa...

Page 63: ...to display the error statistics for a range of ports Syntax show error ports portlist Description This command will display all of the packet error statistics collected and logged by the Switch for a...

Page 64: ...rt or range of ports to be displayed Restrictions None Example usage To display the port utilization statistics DES 3500 admin show utilization ports Command show utilization ports Port TX sec RX sec...

Page 65: ...r log Purpose Used to clear the Switch s history log Syntax clear log Description This command will clear the Switch s history log Parameters None Restrictions Only Administrator and Operator level us...

Page 66: ...500 Series Layer 2 Stackable Fast Ethernet Managed Switch User Manual enable syslog Purpose Used to enable the system log to be sent to a remote host Syntax enable syslog Description The enable syslog...

Page 67: ...y local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number state enable disable Description The create syslog host command is used to create a new syslog host index 1 4 Specifi...

Page 68: ...local use 2 messages will be sent to the remote host This corresponds to number 18 from the list above local3 Specifies that local use 3 messages will be sent to the remote host This corresponds to nu...

Page 69: ...dicates that the corresponding severity level is currently supported on the Switch Numerical Severity Code 0 Emergency system is unusable 1 Alert action must be taken immediately 2 Critical critical c...

Page 70: ...ocal use 2 messages will be sent to the remote host This corresponds to number 18 from the list above local3 Specifies that local use 3 messages will be sent to the remote host This corresponds to num...

Page 71: ...witch Parameters index 1 4 Specifies that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 all Specifies that the command will be applied to all h...

Page 72: ...or uploads and failed logins Critical Events classified as critical are fatal exceptions occurring on the Switch such as hardware failures or spoofing attacks Parameters Choose one of the following t...

Page 73: ...vel of an alert required for log entry or trap message Syntax show system_severity Description This command is used to display system_severity level of an alert required for log entry or trap message...

Page 74: ...switch utilizing the MSTP on a network will have a single MSTP configuration that will have the following three attributes a A configuration name defined by an alphanumeric string of up to 32 charact...

Page 75: ...tp Success DES 3500 admin disable stp Purpose Used to globally disable STP on the Switch Syntax disable stp Description This command allows the Spanning Tree Protocol to be globally disabled on the Sw...

Page 76: ...the Switch has spanning tree configuration values consistent with other devices on the bridged LAN If the value ages out and a BPDU has still not been received from the Root Bridge the Switch will st...

Page 77: ...isable Allows the forwarding of STP BPDU packets from other network devices when STP is disabled on the Switch The default is enable Restrictions Only Administrator and Operator level users can issue...

Page 78: ...raded to 802 1w RSTP or 802 1s MSTP on all or some portion of the segment edge true false auto true designates the port as an edge port Edge ports cannot create loops however an edge port can lose edg...

Page 79: ...is allows the forwarding of STP BPDU packets from other network devices when STP is disabled in the specified ports If users want to enable Forwarding BPDU on a per port basis the following settings m...

Page 80: ...level users can issue this command Example usage To create a spanning tree instance 2 DES 3500 admin create stp instance_id 2 Command create stp instance_id 2 Success DES 3500 admin config stp instan...

Page 81: ...stance_id 2 add_vlan 10 Command config stp instance_id 2 add_vlan 10 Success DES 3500 admin Example usage To remove VID 10 from instance ID 2 DES 3500 admin config stp instance_id 2 remove_vlan 10 Com...

Page 82: ...et the priority value for instance_id 2 as 4096 DES 3500 admin config stp priority 4096 instance_id 2 Command config stp priority 4096 instance_id 2 Success DES 3500 admin config stp mst_config_id Pur...

Page 83: ...instance_id previously configured on the Switch An entry of 0 will denote the CIST Common and Internal Spanning Tree internalCost This parameter is set to represent the relative cost of forwarding pa...

Page 84: ...ersion STP Compatible Max Age 20 Hello Time 2 Forward Delay 15 Max Age 20 TX Hold Count 3 Forwarding BPDU Enabled DES 3500 admin Status 2 STP enabled for RSTP DES 3500 admin show stp Command show stp...

Page 85: ...Hello Time 2 2 Port STP enabled Restricted role False Restricted TCN False External PathCost Auto 200000 Edge Port No No P2P Auto Yes Port Forward BPDU disabled Msti Designated Bridge Internal PathCo...

Page 86: ...Age 20 Forward Delay 15 Last Topology Change 856 Topology Changes Count 2987 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show stp mst_config_id Purpose Used to display the MSTP conf...

Page 87: ...ing_mode portlist all forward_all_groups forward_unregistered_groups filter_unregistered_groups show multicast port_filtering_mode portlist Each command is listed in detail in the following sections c...

Page 88: ...ple usage To create multicast MAC forwarding DES 3500 admin create multicast_fdb default 01 00 00 00 00 01 Command create multicast_fdb default 01 00 00 00 00 01 Success DES 3500 admin config multicas...

Page 89: ...Layer 2 Fast Ethernet Switch CLI Reference Manual 86 DES 3500 admin config multicast_fdb default 01 00 00 00 00 01 add 1 5 Command config multicast_fdb default 01 00 00 00 00 01 add 1 5 Success DES 35...

Page 90: ...warding table in which case the Switch will broadcast the packet to all ports negating many of the benefits of having a switch Parameters sec 10 1000000 The aging time for the MAC address forwarding d...

Page 91: ...will always forward traffic to the specified device through this port all Clears all dynamic entries to the Switch s forwarding database Restrictions Only Administrator and Operator level users can i...

Page 92: ...hat is present in the forwarding database table static Displays the static MAC address entries aging_time Displays the aging time for the MAC address forwarding database Restrictions None Example usag...

Page 93: ...filter_unregistered_groups The user may set the filtering mode to any of these three options Restrictions Only Administrator and Operator level users can issue this command Example usage To configure...

Page 94: ...oups 6 forward_unregistered_groups 7 forward_unregistered_groups 8 forward_unregistered_groups 9 forward_unregistered_groups 10 forward_unregistered_groups 11 forward_unregistered_groups 12 forward_un...

Page 95: ...disabled port and returning it to an Enabled status Otherwise the Shutdown Forever mode will be Auto Recovery after 5 mins To utilize this method of Storm Control choose the Shutdown option of the Act...

Page 96: ...s well which will provide packet count samplings from the Switch s chip to determine if a Packet Storm is occurring threshold value 0 255000 The upper threshold at which the specified traffic control...

Page 97: ...p_list 1 ports 1 8 DES 3500 admin config traffic control 1 broadcast enable threshold 10 Command config traffic control 1 broadcast enable threshold 10 Traffic control port_list shutdown mode 1 8 Warn...

Page 98: ...0 Disabled 128000 2 1 9 16 Disabled 128000 Disabled 128000 Disabled 128000 3 1 17 24 Disabled 128000 Disabled 128000 Disabled 128000 DES 3500 admin config traffic control_trap Purpose Used to configur...

Page 99: ...Reference Manual 96 To configure notifications to be sent when a packet storm control has been detected and cleared by the Switch DES 3500 admin config traffic control trap both Command config traffic...

Page 100: ...kets the highest hardware priority queue will begin transmitting any packets it may have received The commands in the Command Line Interface CLI are listed along with the appropriate parameters in the...

Page 101: ...n issue this command Example usage To configure bandwidth control DES 3500 admin config bandwidth_control 1 10 tx_rate 10 Command config bandwidth_control 1 10 tx_rate 10 Success DES 3500 admin show b...

Page 102: ...s have transmitted 3 packets The process will then repeat The max_latency parameter allows users to specify the maximum amount of time that packets are delayed before being transmitted to a given hard...

Page 103: ...show scheduling Command show scheduling QOS Output Scheduling Class ID MAX Packets MAX Latency Class 0 100 150 Class 1 99 100 Class 2 91 101 Class 3 21 201 DES 3500 admin config 802 1p user_priority...

Page 104: ...ple usage To configure 802 1 user priority on the Switch DES 3500 admin config 802 1p user_priority 1 3 Command config 802 1p user_priority 1 3 Success DES 3500 admin show 802 1p user_priority Purpose...

Page 105: ...priority value to assign to untagged packets received by the Switch or a range of ports on the Switch Restrictions Only Administrator and Operator level users can issue this command Example usage To c...

Page 106: ...Reference Manual 103 DES 3500 admin show 802 1p default_priority Command show 802 1p default_priority Port Priority 1 0 2 0 3 0 4 0 5 0 6 0 7 0 8 0 9 0 10 0 11 0 12 0 13 0 14 0 15 0 16 0 17 0 18 0 19...

Page 107: ...d by or sent by one or both is mirrored to the Target port Parameters port This specifies the Target port the port where mirrored packets will be received The target port must be configured in the sam...

Page 108: ...and then turn the port mirroring on and off without having to modify the port mirroring configuration Parameters None Restrictions Only Administrator and Operator level users can issue this command Ex...

Page 109: ...rrent port mirroring configuration on the Switch Syntax show mirror Description This command displays the current port mirroring configuration on the Switch Parameters None Restrictions None Example u...

Page 110: ...the following sections create vlan Purpose Used to create a VLAN on the Switch Syntax create vlan vlan_name 32 tag vlanid 1 4094 advertisement Description This command allows the user to create a VLA...

Page 111: ...t list of a previously configured VLAN The user can specify the additional ports as tagging untagging or forbidden The default is to assign the ports as untagging Parameters vlan_name 32 The name of t...

Page 112: ...cified port list acceptable_frame tagged_only admit_all This parameter states the frame type that will be accepted by the Switch for this function tagged_only implies that only VLAN tagged frames will...

Page 113: ...and Level Administrator and Operator Example usage To disable the Generic VLAN Registration Protocol GVRP DES 3500 admin disable gvrp Command disable gvrp Success DES 3500 admin show vlan Purpose Used...

Page 114: ...e Switch Syntax show gvrp portlist Description This command displays the GVRP status for a port list on the Switch Parameters portlist Specifies a port or range of ports for which the GVRP status is t...

Page 115: ...nd enables the asymmetric VLAN function on the Switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To enable asymmetric VLANs DES 3500...

Page 116: ...n the Switch Syntax show asymmetric_vlan Description This command displays the asymmetric VLAN state on the Switch Parameters None Restrictions None Example usage To display the asymmetric VLAN state...

Page 117: ...e identifier Parameters value Specifies the group ID The Switch allows up to 6 link aggregation groups to be configured The group number identifies each of the groups type Specify the type of link agg...

Page 118: ...was created with the create link_aggregation command above The DES 3500 supports link aggregation cross box which specifies that link aggregation groups may be spread over multiple switches in the swi...

Page 119: ...tion Indicates that the Switch should examine the IP destination address ip_source_dest Indicates that the Switch should examine the IP source address and the destination address Restrictions Only Adm...

Page 120: ...ive LACP ports are capable of processing and sending LACP control frames This allows LACP compliant devices to negotiate the aggregated link so the group may be changed dynamically as needs require In...

Page 121: ...e currently configured Parameters portlist Specifies a port or range of ports to be configured If no parameter is specified the system will display the current LACP status for all ports Restrictions N...

Page 122: ...AC Binding Setting window All others will be discarded To configure the ACL mode the user must first create an IP MAC binding using the create address_binding ip_mac ipaddress command and select the m...

Page 123: ...P MAC Binding entry Syntax create address_binding ip_mac ipaddress ipaddr mac_address macaddr ports portlist all mode arp acl Description This command will create an IP MAC Binding entry Parameters ip...

Page 124: ...access_profile Command show access_profile Access Profile Table Access Profile ID 1 Type Packet Content Filter Owner Address_binding Masks Offset 0 15 0x00000000 0000ffff ffffffff 00000000 Offset 16...

Page 125: ...binding entry created here All other packets with a different IP address will be discarded by the Switch This mode can only be used if the ACL Mode has been enabled in the IP MAC Binding Ports window...

Page 126: ...rts all allow_zeroip enable config address_binding ip_mac ports Purpose Used to configure an IP MAC state to enable or disable for specified ports Syntax config address_binding ip_mac ports portlist a...

Page 127: ...ers all For IP_MAC binding all specifies all the IP MAC binding entries for Blocked Address Binding entries all specifies all the blocked VLANs and their bound physical addresses ipaddr The IP address...

Page 128: ...and the physical address of the device To delete all the Blocked Address Binding entries toggle all Parameters ipaddr The IP address of the device where the IP MAC binding is made macaddr The MAC addr...

Page 129: ...not display the commands for creating the IP MAC ACL mode access profile entries Example usage To enable IP MAC Binding ACL mode on the Switch DES 3500 admin enable address_binding acl_mode Command en...

Page 130: ...uration set on the Switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To enable sending of IP MAC Binding trap log messages on the Swi...

Page 131: ...t Switch CLI Reference Manual 128 Example usage To disable sending of IP MAC Binding trap log messages on the Switch DES 3500 admin disable address_binding trap_log Command disable address_binding tra...

Page 132: ...ch command is listed in detail in the following sections create multicast_range Purpose Used to create create a multicast address profile Syntax create multicast_range range_name from multicast_ipaddr...

Page 133: ...ast range profile with its profile name DES 3500 admin delete multicast_range M Range 2 Command delete multicast_range M Range 2 Success DES 3500 admin show multicast_range Purpose Used to create disp...

Page 134: ...ulticast address range on a specific port or range of ports Restrictions Only Administrator and Operator level users can issue this command Example usage To configure the limited multicast address on...

Page 135: ...DES 3500 Layer 2 Fast Ethernet Switch CLI Reference Manual 132...

Page 136: ...identify this IP interface ipaddress network_address IP address and netmask of the IP interface to be created Users can specify the address and mask information using the traditional format for exampl...

Page 137: ...usly saved configuration file for current use Syntax enable autoconfig Description When autoconfig is enabled on the Switch the DHCP reply will contain a configuration file and path name It will then...

Page 138: ...h CLI Reference Manual 135 DES 3500 admin enable autoconfig Command enable autoconfig Success DES 3500 admin NOTE More detailed information for this command and related commands can be found in the se...

Page 139: ...vlan vlan_name 32 show igmp_snooping group vlan vlan_name 32 create igmp_snooping multicast_vlan vlan_name 32 vlanid 2 4094 config igmp_snooping multicast_vlan vlan_name 32 member_port portlist source...

Page 140: ...ccess DES 3500 admin config router_ports Purpose Used to configure ports as router ports Syntax config router_ports vlan_name 32 add delete portlist Description This command allows users to designate...

Page 141: ...Syntax enable igmp_snooping forward_mcrouter_only Description This command allows users to enable IGMP snooping on the Switch If forward_mcrouter_only is specified the Switch will only forward all mul...

Page 142: ...sable forwarding all multicast traffic to a multicast enabled router DES 3500 admin disable igmp_snooping forward_mcrouter_only Command disable igmp_snooping forward_mcrouter_only Success DES 3500 adm...

Page 143: ..._snooping group vlan vlan_name 32 Description This command will display the current IGMP snooping group configuration on the Switch Parameters vlan_name 32 The name of the VLAN for which to view IGMP...

Page 144: ...of the VLAN on which the router port resides static Displays router ports that have been statically configured dynamic Displays router ports that have been dynamically configured Restrictions None Ex...

Page 145: ...ticast group 224 0 0 2 MAC address 01 00 5E 00 00 02 Port Member 17 Total Entries 1 DES 3500 admin show igmp_snooping group Purpose Used to display the current IGMP snooping configuration on the Switc...

Page 146: ...ge To create a multicast VLAN DES 3500 admin show igmp_snooping group Command show igmp_snooping group VLAN Name default Multicast group 224 0 0 2 MAC address 01 00 5E 00 00 02 Reports 1 Port Member 2...

Page 147: ...VLAN These ports will receive multicast traffic from the source port Remember the source port cannot be the same as any member port source port portlist Enter a port on the Switch to be designated as...

Page 148: ...nity Success DES 3500 admin show igmp_snooping multicast_vlan Purpose Used to show the settings for a multicast VLAN previously created on the switch Syntax show igmp_snooping multicast_vlan vlan_name...

Page 149: ...c 0 65535 Description This command is used to configure the DHCP BOOTP relay feature Parameters hops value 1 16 Specifies the maximum number of relay agent hops that the DHCP packets can cross time se...

Page 150: ...le disable Description This command is used to configure the state of DHCP relay agent information option 82 of the switch Parameters enable When this field is toggled to Enabled the relay agent will...

Page 151: ...d to configure the checking mechanism of DHCP BOOTP relay agent information option 82 of the switch Parameters enable When the field is toggled to enable the relay agent will check the validity of the...

Page 152: ...To configure DHCP relay option 82 policy DES 3500 admin config dhcp_relay option_82 policy replace Command config dhcp_relay option_82 policy replace Success DES 3500 admin show dhcp_relay Purpose Us...

Page 153: ...OTP relay function on the Switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To enable DHCP relay DES 3500 admin enable dhcp_relay Com...

Page 154: ...th enable disable config 802 1x auth_protocol radius eap radius pap config 802 1x init port_based ports portlist all mac_based ports portlist all mac_address macaddr config 802 1x auth_mode port_based...

Page 155: ...x on the Switch DES 3500 admin disable 802 1x Command disable 802 1x Success DES 3500 admin show 802 1x auth_configuration Purpose Used to display the current configuration of the 802 1x server on the...

Page 156: ...tion failure and the start of a new authentication attempt TxPeriod Shows the time to wait for a response from a supplicant user to send EAP Request Identity packets SuppTimeout Shows the time to wait...

Page 157: ...ion process Authorized means that the user was authenticated and can access the network Unauthorized means that the user was not authenticated and cannot access the network Restrictions None Example u...

Page 158: ...the port based or MAC based 802 1x authentication feature on the Switch Parameters port_based mac_based ports The Switch allows users to authenticate 802 1x by either port or MAC address Restrictions...

Page 159: ...enable_reauth enable disable Description The config 802 1x auth_parameter command is used to configure the 802 1x Authentication parameters on a range of ports The default parameter will return all po...

Page 160: ...20 DES 3500 admin config 802 1x auth_parameter ports 1 20 direction both Command config 802 1x auth_parameter ports 1 20 direction both Success DES 3500 admin config 802 1x auth_protocol Purpose Used...

Page 161: ...ts all Success DES 3500 admin config 802 1x reauth Purpose Used to configure the 802 1x re authentication feature of the Switch Syntax config 802 1x reauth port_based ports portlist all mac_based port...

Page 162: ...oth the auth_port and acct_port settings auth_port udp_port_number 1 65535 The UDP port number for authentication requests The default is 1812 acct_port udp_port_number 1 65535 The UDP port number for...

Page 163: ...that a password and encryption key will be used between the Switch and the RADIUS server passwd 32 The shared secret key used by the RADIUS server and the Switch Up to 32 characters can be used auth_p...

Page 164: ...led the necessary 802 1x software yet would still like limited access rights on the Switch Parameters vlan_name 32 Enter an alphanumeric string of no more than 32 characters to define a pre existing V...

Page 165: ...VLAN as enabled DES 3500 admin config 802 1x guest_vlan ports 1 5 state enable Command config 802 1x guest_vlan ports 1 5 state enable Success DES 3500 admin show 802 1x guest_vlan Purpose Used to vi...

Page 166: ...sary 802 1x software yet would still like limited access rights on the Switch Parameters vlan_name 32 Enter the VLAN name of the Guest 802 1x VLAN to be deleted Restrictions User Account Command Level...

Page 167: ...ue 1 255 all config access_profile profile_id value 1 255 add access_id value 1 65535 ethernet vlan vlan_name 32 source_mac macaddr destination_mac macaddr 802 1p value 0 7 ethernet_type hex 0x0 0xfff...

Page 168: ...Creating an access profile is divided into two basic parts First an access profile must be created using the create access_profile command For example if users want to deny all traffic to the subnet 1...

Page 169: ...0 33 40 200 41 48 200 49 Gigabit 100 50 Gigabit 100 Total Rules 800 It is important to keep this in mind when setting up VLANs as well Access rules applied to a VLAN require that a rule be created for...

Page 170: ...ask source_ip_mask netmask Specifies an IP address mask for the source IP address destination_ip_mask netmask Specifies an IP address mask for the destination IP address dscp Specifies that the Switch...

Page 171: ...n 1 255 yet remember only 9 access profiles can be created on the Switch Restrictions Only Administrator and Operator level users can issue this command Example usage To create an access list rules DE...

Page 172: ...0xffffffff port portlist permit priority value 0 7 replace_priority replace_dscp_with value 0 63 deny delete access_id value 1 65535 Description The config access_profile command is used to configure...

Page 173: ...access profile will apply only to packets that have this TCP destination port in their TCP header flag_mask Enter the type of TCP flag to be masked all all flags are selected urg TCP control flag urg...

Page 174: ...ase see the introduction to this chapter Restrictions Only Administrator and Operator level users can issue this command Example usage To configure the access profile with the profile ID of 1 to filte...

Page 175: ...0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset 16 31 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset 32 47 hex 0x0 0xffffffff hex 0x0...

Page 176: ...the switch will examine each frame s Universal Datagram Protocol UDP field src_port_mask hex 0x0 0xffff Specifies a UDP port mask for the source port dst_port_mask hex 0x0 0xffff Specifies a UDP port...

Page 177: ...0 0xffff port portlist all ip vlan vlan_name 32 source_ip ipaddr destination_ip ipaddr dscp value 0 63 icmp type value 0 255 code value 0 255 igmp type value 0 255 tcp src_port value 0 65535 dst_port...

Page 178: ...file will apply to this ICMP code igmp Specifies that the Switch will examine the Internet Group Management Protocol IGMP field within each packet type value 0 255 Specifies that the access profile wi...

Page 179: ...lan default source_ip 20 2 2 3 destination_ip 10 1 1 252 dscp 3 icmp type 11 code 32 port 1 deny Command config cpu access_profile profile_id 10 add access_id 1 ip vlan default source_ip 20 2 2 3 dest...

Page 180: ...Only administrator level users can issue this command Example usage To show the CPU filtering state on the Switch DES 3500 admin show cpu access_profile Command show cpu access_profile CPU Interface...

Page 181: ...pu_interface_filtering command is used view the current running state of the CPU interface filtering mechanism on the Switch Parameters None Restrictions Only administrator level users can issue this...

Page 182: ...the above specified access profile The value is used to index the rule created For information on number of rules that can be created for a given port lease see the introduction to this chapter rate v...

Page 183: ...Manual 180 To show the ACL flow meter state on the Switch DES 3500 admin show flow_meter Command show flow_meter Flow Metering Information Profile Id Access Id Metering Rate Kbps Rate Exceed Action 1...

Page 184: ...acket flow NOTICE When the Safeguard Engine is enabled the Switch will allot bandwidth to various traffic flows ARP IP using the FFP Fast Filter Processor metering table to control the CPU utilization...

Page 185: ...uccess DES 3500 admin show safeguard_engine Purpose Used to display current Safeguard Engine settings Syntax show safeguard_engine Description This will list the current status and type of the Safegua...

Page 186: ...that the DHCP Server filter function must be enabled first Once all setting is done all DHCP Server packets will be filtered from a specific port except those that meet the Server IP Address and Clien...

Page 187: ...P client state Enable Disable the DHCP filter state ports portlist The port number to which the DHCP filter will be applied Restrictions Only Administrator and Operator level users can issue this comm...

Page 188: ...from the specified ports Parameters portlist The list of port numbers to which the NetBIOS filter will be applied state enable disable Used to enable disable the NetBIOS filter on the switch Restrict...

Page 189: ...ate enable disable Used to enable disable the NetBIOS filter on the switch Restrictions Only Administrator and Operator level users can issue this command Enabling the NetBIOS filter will create one a...

Page 190: ...DES 3500 Layer 2 Fast Ethernet Switch CLI Reference Manual 187 DES 3500 admin show filter extensive_netbios Command show filter extensive_netbios Enabled ports 1 3 DES 3500admin...

Page 191: ...based Description Used to configure loop back detection on the switch Parameters recover_timer The time interval in seconds used by the Auto Recovery mechanism to decide how long to check if the loop...

Page 192: ...mand config loopdetect ports 1 5 enable Success DES 3500 admin enable loopdetect Purpose Used to globally enable loop back detection on the switch Syntax enable loopdetect Description Used to globally...

Page 193: ...ect Command show loop detect LBD Global Settings LBD Status Enabled LBD Interval 20 LBD Recover Time 60 DES 3500 admin show loopdetect ports Purpose Used to display the current per port loop back dete...

Page 194: ...s from the ports specified in the portlist above null No ports are specified portlist Specifies a range of ports for the forwarding list This list must be on the same Switch previously specified for t...

Page 195: ...tation configuration on the Switch DES 3500 admin show traffic_segmentation Command show traffic_segmentation Traffic Segmentation Table Port Forward Portlist 1 1 26 2 1 26 3 1 26 4 1 26 5 1 26 6 1 26...

Page 196: ...e_mth end_mth 1 12 e_time end_time hh mm offset 30 60 90 120 show time Each command is listed in detail in the following sections config sntp Purpose Used to setup SNTP service Syntax config sntp pri...

Page 197: ...00 admin show sntp Command show sntp Current Time Source System Clock SNTP Disabled SNTP Primary Server 10 1 1 1 SNTP Secondary Server 10 1 1 2 SNTP Poll Interval 30 sec DES 3500 admin enable sntp Pur...

Page 198: ...tem time and date settings These will be overridden if SNTP is configured and enabled Parameters date Express the date using two numerical characters for the day of the month three alphabetical charac...

Page 199: ...time zone settings DES 3500 admin config time_zone operator hour 2 min 30 Command config time_zone operator hour 2 min 30 Success DES 3500 admin config dst Purpose Used to enable and configure time ad...

Page 200: ...ay of the week in which DST begins start_day sun sat The day of the week in which DST begins expressed using a three character abbreviation sun mon tue wed thu fri sat e_day Configure the day of the w...

Page 201: ...rrent time settings and status Syntax show time Description This will display system time and date configuration as well as display current system time Parameters None Restrictions None Example usage...

Page 202: ...d node or station macaddr The MAC address corresponding to the IP address above Restrictions Only Administrator and Operator level users can issue this command The Switch supports up to 255 static ARP...

Page 203: ...r station all Deletes all ARP entries Restrictions Only Administrator and Operator level users can issue this command Example Usage To delete an entry of IP address 10 48 74 121 from the ARP table DES...

Page 204: ...RP Aging Time 30 Interface IP Address MAC Address Type System 10 0 0 0 FF FF FF FF FF FF Local Broadcast System 10 1 1 169 00 50 BA 70 E4 4E Dynamic System 10 1 1 254 00 01 30 FA 5F 00 Dynamic System...

Page 205: ...tion This command is used to remove dynamic ARP table entries from the Switch s ARP table Static ARP table entries are not affected Parameters None Restrictions Only Administrator and Operator level u...

Page 206: ...next hop router metric 1 65535 Allows the entry of a routing protocol metric entry representing the number of routers between the Switch and the IP address above The default setting is 1 Restrictions...

Page 207: ...rent IP routing table Syntax show iproute Description This command will display the Switch s current IP routing table Parameters None Restrictions None Example usage To display the contents of the IP...

Page 208: ...ac_notification Description This command is used to enable MAC address notification without changing configuration Parameters None Restrictions Only administrator level users can issue this command Ex...

Page 209: ...al 1 historysize 500 Success DES 3500 admin config mac_notification ports Purpose Used to configure MAC address notification status settings Syntax config mac_notification ports portlist all enable di...

Page 210: ...portlist Description This command is used to display the Switch s MAC address table notification status settings Parameters portlist Specify a port or group of ports to be viewed Entering this comman...

Page 211: ...DES 3500 Layer 2 Fast Ethernet Switch CLI Reference Manual 208 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh...

Page 212: ...CS TACACS RADIUS server to verify and the server will respond with one of three messages A The server verifies the username and password and the user is granted normal user privileges on the Switch B...

Page 213: ...lnet ssh http all login enable default method_list_name string 15 show authen application create authen server_group string 15 config authen server_group tacacs xtacacs tacacs radius string 15 add del...

Page 214: ...n_policy Description This command will disable the administrator defined authentication policy for users trying to access the Switch When disabled the Switch will access the local user account databas...

Page 215: ...authen_login Purpose Used to configure a user defined or default method list of authentication methods for user login Syntax config authen_login default method_list_name string 15 method tacacs xtacac...

Page 216: ...fined server group previously configured on the Switch local Adding this parameter will require the user to be authenticated using the local user account database on the Switch none Adding this parame...

Page 217: ...hentication methods for users logging on to the Switch Syntax delete authen_login method_list_name string 15 Description This command is used to delete a list for authentication methods for user login...

Page 218: ...ication necessary to access any function on the Switch Restrictions User Account Command Level Administrator Example usage To view the authentication login method list named Trinity DES 3500 admin sho...

Page 219: ...S host in the server group If no verification is found the Switch will send an authentication request to the second TACACS host in the server group and so on until the list is exhausted At that point...

Page 220: ...om a remote RADIUS server server_group string 15 Adding this parameter will require the user to be authenticated using a user defined server group previously configured on the Switch local_enable Addi...

Page 221: ...ethod list of authentication methods for promoting user level privileges to Administrator level privileges Parameters default Entering this parameter will display the default method list for users att...

Page 222: ...ing a previously configured method list Parameters application Choose the application to configure The user may choose one of the following five options to configure console Choose this parameter to c...

Page 223: ...authen application Command show authen application Application Login Method List Enable Method List Console default default Telnet Trinity default SSH default default HTTP default default DES 3500 adm...

Page 224: ...n authentication request The default value is 5 seconds retransmit int 1 255 Enter the value in the retransmit field to change how many times the device will resend an authentication request when the...

Page 225: ...set a unique port number for higher security key key_string 254 Authentication key to be shared with a configured TACACS or RADIUS server only Specify an alphanumeric string up to 254 characters or ch...

Page 226: ...t Purpose Used to view a user defined authentication server host Syntax show authen server_host Description This command is used to view user defined authentication server hosts previously created on...

Page 227: ...ser defined authentication server group Syntax config authen server_group tacacs xtacacs tacacs radius string 15 add delete server_host ipaddr protocol tacacs xtacacs tacacs radius Description This co...

Page 228: ...using the XTACACS authentication protocol tacacs Use this parameter to define the protocol if the server host is using the TACACS authentication protocol radius Use this parameter to define the proto...

Page 229: ...urrently set on the Switch DES 3500 admin show authen server_group Command show authen server_group Group Name IP Address Protocol Darren 10 53 13 2 TACACS tacacs 10 53 13 94 TACACS tacacs This group...

Page 230: ...o set the maximum number of authentication attempts at 5 DES 3500 admin config authen parameter attempt 5 Command config authen parameter attempt 5 Success DES 3500 admin show authen parameter Purpose...

Page 231: ...Restrictions User Account Command Level Administrator Example usage To enable administrator privileges on the Switch DES 3500 admin enable admin Password DES 3500 admin config admin local_enable Purp...

Page 232: ...ally enable SSH on the Switch using the enable ssh command After following the above steps users can configure an SSH Client on the remote PC and manage the Switch using secure in band communication T...

Page 233: ...uthentication mode for users attempting to access the Switch Parameters password This parameter may be chosen if the administrator wishes to use a locally configured password for authentication on the...

Page 234: ...maxsession int 1 8 timeout sec 120 600 authfail int 2 20 rekey 10min 30min 60min never Description This command allows users to configure the SSH server Parameters maxsession int 1 8 Allows the user...

Page 235: ...on 8 Connection timeout 300 Authfail attempts 2 Rekey timeout never port 22 DES 3500 admin config ssh user Purpose Used to configure the SSH user Syntax config ssh user username 15 authmode hostbased...

Page 236: ...00 admin config ssh user Trinity authmode Password Command config ssh user Trinity authmode Password Success DES 3500 admin show ssh user authmode Purpose Used to display the SSH user setting Syntax s...

Page 237: ...owfish encryption algorithm cast128 This parameter will enable or disable the Cast128 encryption algorithm twofish128 This parameter will enable or disable the twofish128 encryption algorithm twofish1...

Page 238: ...recognized by the SSH server Syntax config ssh regenerate hostkey Description This command is used to regenerate the hostkey to be recognized by the SSH server Periodically the SSH server will make a...

Page 239: ...ryption code defined by the Data Encryption Standard DES to create the encrypted text 3 Hash Algorithm This part of the ciphersuite allows the user to choose a message digest function which will deter...

Page 240: ...C Block Cipher 3DES_EDE encryption and the SHA Hash Algorithm DHE_DSS_with_3DES_EDE_CBC_SHA This ciphersuite combines the DSA Diffie Hellman key exchange CBC Block Cipher 3DES_EDE encryption and SHA H...

Page 241: ...E_CBC_SHA This ciphersuite combines the DSA Diffie Hellman key exchange CBC Block Cipher 3DES_EDE encryption and SHA Hash Algorithm RSA_EXPORT_with_RC4_40_MD5 This ciphersuite combines the RSA Export...

Page 242: ...cachetimeout timeout 7200 Command config ssl cachetimeout timeout 7200 Success DES 3500 admin show ssl cachetimeout Purpose Used to show the SSL cache timeout Syntax show ssl cachetimeout Description...

Page 243: ...e SSL function on the Switch Syntax download certificate_fromTFTP ipaddr certfilename path_filename 64 keyfilename path_filename 64 Description This command is used to download a certificate file for...

Page 244: ...DES 3500 admin DES 3500 admin download certificate_fromTFTP 10 53 13 94 certfilename c cert der keyfilename c pkey der Command download certificate_fromTFTP 10 53 13 94 certfilename c cert der keyfile...

Page 245: ...le IP group It is connected to the Member Switches through its management VLAN Member Switch MS This is a switch that has joined a single IP group and is accessible from the CS and it takes on the fol...

Page 246: ...e Switch is still powered down if it has become the member of another group or if it has been configured to be a Commander Switch the rediscovery process cannot occur This version will support multipl...

Page 247: ...ed to disable Single IP Management SIM on the Switch Syntax disable sim Description This command will disable SIM globally on the Switch Parameters None Restrictions Only administrator level users can...

Page 248: ...de that candidate s ID number listed from 1 to 32 members member_id 1 32 Entering this parameter will display information concerning members of the SIM group To view a specific member include that mem...

Page 249: ...Switch 40 4 01 B19 The Man 2 00 55 55 00 55 00 DES 3526 L2 Switch 140 4 01 B19 default master Total Entries 2 DES 3500 admin To show other groups information in summary if group is specified DES 3500...

Page 250: ...3500 Layer 2 Fast Ethernet Switch CLI Reference Manual 247 Port MAC Address Role 23 00 35 26 00 11 99 Commander 23 00 35 26 00 11 91 Member 24 00 35 26 00 11 90 Candidate Total Entries 3 DES 3500 adm...

Page 251: ...Command reconfig member_id 2 DES 3500 admin Login config sim_group Purpose Used to add candidates and delete members from the SIM group Syntax config sim add candidate_id 1 32 password delete member_...

Page 252: ...30 to 90 seconds hold time sec 100 300 Using this parameter the user may set the time in seconds the CS will hold information sent to it from other switches utilizing the discovery interval protocol T...

Page 253: ...iguration ipaddr path_filename members mslist all Description This command will download a firmware file or configuration file to a specified device from a TFTP server Parameters firmware Specify this...

Page 254: ...Please wait Download Status ID MAC Address Result 1 00 01 02 03 04 00 Success 2 00 07 06 05 04 03 Success 3 00 07 06 05 04 03 Success DES 3500 admin upload sim_ms Purpose User to upload a configurati...

Page 255: ...LI Reference Manual 252 To upload configuration files to a TFTP server DES 3500 admin upload sim_ms configuration 10 55 47 1 D configuration txt 1 Command upload sim_ms configuration 10 55 47 1 D conf...

Page 256: ...d will list all the corresponding parameters for the specified command along with a brief description of the commands function and similar commands having the same words in the command Restrictions No...

Page 257: ...nds in the Command Line Interface CLI Syntax dir Description This command will display all of the commands available through the Command Line Interface CLI Parameters None Restrictions None Example us...

Page 258: ...atest executed commands may be viewed Restrictions None Example usage To configure the command history DES 3500 admin config command_history 20 Command config command_history 20 Success DES 3500 admin...

Page 259: ...Link Aggregation Control IEEE 802 3x Full duplex Flow Control IEEE 802 3 Nway auto negotiation Protocols CSMA CD Data Transfer Rates Ethernet Fast Ethernet Gigabit Ethernet Fiber Optic Half duplex Ful...

Page 260: ...nsing Dimensions For DES 3526 DES 3526DC 441 W x 207 D x 44 H mm 19 inch 1U Rack mount size For DES 3550 441 W 309 D 44 H mm Weight For DES 3526 2 56 kg For DES 3526DC 2 5 kg For DES 3550 5Kg EMI CE c...

Reviews:

No comments

Related manuals for xStack DES-3500 Series

La Toulousaine 1400 Installation Manual preview
1400
Brand: La Toulousaine Pages: 6
Water Witch 217 Installation Instructions preview
217
Brand: Water Witch Pages: 2
Jabra Link 950 USB-A How Do preview
Link 950 USB-A
Brand: Jabra Pages: 4
Jabra LINK 14201-20 - DATASHEET FOR TOSHIBA PHONES Datasheet preview
LINK 14201-20 - DATASHEET FOR TOSHIBA PHONES
Brand: Jabra Pages: 2
Raritan MCCAT18 Specifications preview
MCCAT18
Brand: Raritan Pages: 4
N-Tron 7014 Series Firmware Upgrade Procedure preview
7014 Series
Brand: N-Tron Pages: 5
LevelOne GSW-0509 Quick Installation Manual preview
GSW-0509
Brand: LevelOne Pages: 17
Epicenter Centerpoint 2x16 Installation And User Manual preview
Centerpoint 2x16
Brand: Epicenter Pages: 25
Edimax ES-5500G V2 Datasheet preview
ES-5500G V2
Brand: Edimax Pages: 2
H3C S6890-54HF Installation, Quick Start preview
S6890-54HF
Brand: H3C Pages: 3
AMX AVS-OP-2416-340 Specifications preview
AVS-OP-2416-340
Brand: AMX Pages: 1
Ev-ent Hire ENTERTAINMENT HUB Instructions preview
ENTERTAINMENT HUB
Brand: Ev-ent Hire Pages: 5
AEB 725A Assembly & Instruction Manual preview
725A
Brand: AEB Pages: 10
Maiwe MISCOM8028GX-4XGF-16GF-8GC User Manual preview
MISCOM8028GX-4XGF-16GF-8GC
Brand: Maiwe Pages: 7
WIKA RLS-7000 Operating Instructions Manual preview
RLS-7000
Brand: WIKA Pages: 76
PABX TC-2000 A Instruction Manual preview
TC-2000 A
Brand: PABX Pages: 16
ExaSAN SW08-Q4 User Manual preview
SW08-Q4
Brand: ExaSAN Pages: 44
CYP CH-2537TXWPUS Operation Manuals preview
CH-2537TXWPUS
Brand: CYP Pages: 44

Brands by name

Popular brands

Load more brands