manualshive.com logo in svg

D-Link xStack DGS-3120-24PC, Cli Reference Manual

The D-Link xStack DGS-3120-24PC is an advanced network switch that offers high-performance and reliability. For hassle-free setup, refer to the detailed Hardware Installation Manual available for free download on our website. Ensure seamless installation of this exceptional product by accessing the manual at manualshive.com.

Share
Download
background image

xStack

® 

DGS-3120 Series Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 

286 

 

Chapter 23

 

Denial-of-Service (DoS) 

Attack Prevention 

Command List 

 

config dos_prevention dos_type

 [{land_attack | blat_attack | tcp_null_scan | tcp_xmasscan | 

tcp_synfin | tcp_syn_srcport_less_1024 | ping_death_attack | tcp_tiny_frag_attack}(1) | all] 
{action [drop] | state [enable | disable]}(1) 

show dos_prevention

 {land_attack | blat_attack | tcp_null_scan | tcp_xmasscan | tcp_synfin | 

tcp_syn_srcport_less_1024 | ping_death_attack | tcp_tiny_frag_attack} 

config dos_prevention trap

 [enable | disable] 

config dos_prevention log

 [enable | disable] 

 

23-1

 

config dos_prevention dos_type 

Description 

This command is used to prevent the DoS attack from specific ports. 

 

Format 

config dos_prevention dos_type [{land_attack | blat_attack | tcp_null_scan | tcp_xmasscan 
| tcp_synfin | tcp_syn_srcport_less_1024 | ping_death_attack | tcp_tiny_frag_attack}(1) | all] 
{action [drop] | state [enable | disable]}(1) 

 

Parameters 

land_attack

 - Specify the type of DoS attack as land attack. 

blat_attack

 - Specify the type of DoS attack as blat attack. 

tcp_null_scan

 - Specify the type of DoS attack as TCP null scan. 

tcp_xmasscan

 - Specify the type of DoS attack as TCP xmasscan. 

tcp_synfin

 - Specify the type of DoS attack as TCP synfin. 

tcp_syn_srcport_less_1024

 - Specify the type of DoS attack as tcp_syn_srcport_less_1024. 

ping_death_attack

 - Specify the type of DoS attack as ping_death_attack. 

tcp_tiny_frag_attack

 - Specify the type of DoS attack as tcp_tiny_frag_attack. 

all

 - Specify all types of DoS attack. 

action

 - When the DoS prevention is enabled, the following action can be taken. 

drop

 - Drop DoS attack packets. 

state

 - Specify the DoS attack prevention state. 

enable

 - Enable the DoS attack prevention. 

disable

 - Disable the DoS attack prevention. 

 

Restrictions 

Only Administrator, Operator and Power-User level users can issue this command. 

 

Example 

To configure land attack and blat attack prevention, the action is drop: 

Summary of Contents for xStack DGS-3120-24PC

Page 1: ......

Page 2: ...iguration Command List 193 Chapter 18 Configuration Trap Command List 198 Chapter 19 Connectivity Fault Management CFM Command List RI and EI Mode Only 200 Chapter 20 Connectivity Fault Management CFM Extension Command List RI and EI Mode Only 228 Chapter 21 CPU Interface Filtering Command List 232 Chapter 22 Debug Software Command List 243 Chapter 23 Denial of Service DoS Attack Prevention Comman...

Page 3: ...17 Chapter 50 Jumbo Frame Command List 541 Chapter 51 Layer 2 Protocol Tunneling L2PT Command List 543 Chapter 52 Link Aggregation Command List 547 Chapter 53 Link Layer Discovery Protocol LLDP Command List 554 Chapter 54 Loopback Detection LBD Command List 580 Chapter 55 Loopback Interface Command List RI Mode Only 586 Chapter 56 MAC Notification Command List 589 Chapter 57 MAC based Access Contr...

Page 4: ...ter 86 Remote Switched Port ANalyzer RSPAN Command List 855 Chapter 87 Routing Information Protocol RIP Command List RI Mode Only 861 Chapter 88 RIPng Command List RI Mode Only 866 Chapter 89 Routing Command List 872 Chapter 90 RPC PortMapper Command List 888 Chapter 91 Safeguard Engine Command List 890 Chapter 92 SD Card Management Command List 892 Chapter 93 Secure File Transfer Protocol SFTP Co...

Page 5: ...Chapter 114 Trusted Host Command List 1054 Chapter 115 UDP Helper Command List 1058 Chapter 116 Virtual Router Redundancy Protocol VRRP Command List RI Mode Only 1063 Chapter 117 VLAN Counter Command List RI and EI Mode Only 1071 Chapter 118 VLAN Trunking Command List 1076 Chapter 119 Voice VLAN Command List 1081 Chapter 120 Web Based Access Control WAC Command List 1092 Chapter 121 Weighted Rando...

Page 6: ...tch via the Serial Port The Switch s serial port s default settings are as follows 115200 baud no parity 8 data bits 1 stop bit A computer running a terminal emulation program capable of emulating a VT 100 terminal and a serial port configured as above are then connected to the Switch s Console port via an included RS 232 to RJ 45 convertor cable With the serial port properly connected to a manage...

Page 7: ... 00 501 Power On Self Test 100 MAC Address 10 BF 48 D0 E0 E0 H W Version B1 Please Wait Loading V4 00 015 Runtime Image 100 UART init 100 Starting runtime image Device Discovery The Switch s MAC address can also be found in the Web management program on the Switch Information Basic Settings window on the Configuration menu The IP address for the Switch must be set before it can be managed with the...

Page 8: ...d via Telnet SNMP MIB browser and the CLI or via the Web based management agent using the above IP address to connect to the Switch There are a number of helpful features included in the CLI Entering the command will display a list of all of the top level commands DGS 3120 24TC admin Command cable_diag ports cd cfm linktrace cfm lock md cfm loopback change drive clear clear address_binding dhcp_sn...

Page 9: ...l appear at the command prompt DGS 3120 24TC admin config account Command config account Next possible completions username 15 DGS 3120 24TC admin config account In the above example the command config account was entered without the required parameter username 15 the CLI returned the Next possible completions username 15 prompt The up arrow cursor control key was pressed to re enter the previous ...

Page 10: ... aaa access_profile account accounting acct_client address_binding arp_spoofing_prevention arpentry asymmetric_vlan attack_log auth_client auth_diagnostics auth_session_statistics auth_statistics authen authen_enable authen_login authen_policy authentication authorization autoconfig backup bandwidth_control boot_file bpdu_protection cfm command command_history community_encryption config cpu cpu_f...

Page 11: ...min In the above example all of the possible next parameters for the show command are displayed At the next command prompt the up arrow was used to re enter the show command followed by the account parameter The CLI then displays the user accounts configured on the Switch 1 3 Command Syntax Symbols Syntax Description angle brackets Encloses a variable or value Users must specify the variable or va...

Page 12: ...the legal range of the metric value 1 4 Line Editing Keys Keys Description Delete Delete character under cursor and shift remainder of line to left Backspace Delete character to left of cursor and shift remainder of line to left CTRL R Toggle on and off When toggled on inserts text and shifts previous text to right Left Arrow Move cursor to left Right Arrow Move cursor to right Tab Help user to se...

Page 13: ...r copper speed auto capability_advertised 10_half 10_full 100_half 100_full 1000_full 10_half 10_full 100_half 100_full 1000_full master slave auto_negotiation restart_an remote_fault_advertised disable offline link_fault auto_negotiation_error flow_control enable disable learning enable disable state enable disable mdix auto normal cross description desc 1 32 clear_description auto_speed_downgrad...

Page 14: ...n This command is used to display the current serial port settings Format show serial_port Parameters None Restrictions None Example To display the serial port setting DGS 3120 24TC admin show serial_port Command show serial_port Baud Rate 9600 Data Bits 8 Parity Bits None Stop Bits 1 Auto Logout 10 minutes DGS 3120 24TC admin 2 3 config serial_port Description This command is used to configure th...

Page 15: ... over 2 minutes the device will auto logout 5_minutes When idle over 5 minutes the device will auto logout 10_minutes When idle over 10 minutes the device will auto logout 15_minutes When idle over 15 minutes the device will auto logout Restrictions Only Administrator and Operator level users can issue this command Example To configure baud rate DGS 3120 24TC admin config serial_port baud_rate 960...

Page 16: ...e clipaging Description This command is used to disable the pausing of the screen display when the show command output reaches the end of the page The default setting is enabled Format disable clipaging Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable pausing of the screen display when show command output reaches the end of the page...

Page 17: ...ers None Restrictions None Example To login the Switch with a user name dlink DGS 3120 24TC admin login Command login UserName dlink PassWord DGS 3120 24TC admin 2 7 logout Description This command is used to logout the facility Format logout Parameters None Restrictions None Example To logout current user ...

Page 18: ...D Link Corporation All rights reserved UserName 2 8 Description This command is used to display the usage description for all commands in the cuurent login account level or the specific one Format Parameters None Restrictions None Example To get ping command usage descriptions DGS 3120 24TC admin ping Command ping Command ping Usage ipaddr times value 1 255 timeout sec 1 99 Description Used to tes...

Page 19: ... to clear screen Format clear Parameters None Restrictions None Example To clear screen DGS 3120 24TC admin clear Command clear DGS 3120 24TC admin 2 10 show command_history Description The command is used to display command history Format show command_history Parameters None Restrictions None Example To display command history ...

Page 20: ...onfigure the number of commands that the Switch can recall The Switch remembers upto the last 40 commands you entered Format config command_history value 1 40 Parameters value 1 40 Enter the number of commands that the Switch can recall This value must be between 1 and 40 Restrictions None Example To configure the number of command history DGS 3120 24TC admin config command_history 25 Command conf...

Page 21: ...mmand Example To edit the banner DGS 3120 24TC admin config greeting_message Command config greeting_message Greeting Messages Editor DGS 3120 24TC Gigabit Ethernet Switch Command Line Interface Firmware Build 4 00 015 Copyright C 2014 D Link Corporation All rights reserved Function Key Control Key Ctrl C Quit without save left right Ctrl W Save and quit up down Move cursor Ctrl D Delete line Ctrl...

Page 22: ...and is used to modify the command prompt The current command prompt consists of four parts product name user level e g DGS 3120 24TC admin This command is used to modify the first part 1 product name with a string consisting of a maximum of 16 characters or to be replaced with the users login user name When users issue the reset command the current command prompt will remain in tact Yet issuing th...

Page 23: ...rminal width to 120 this configuration take effect on this login section If users implement save command the configuration is saved After users log out and log in again the terminal width is 120 2 If user did not save the configuration another user login the terminal width is default value 3 If at the same time two CLI sessions are running once section configure to 120 width and save it the other ...

Page 24: ...l width Command show terminal width Global terminal width 80 Current terminal width 80 DGS 3120 24TC admin 2 17 config ports Description This command is used to configure the Switch s port settings Format config ports portlist all medium_type fiber copper speed auto capability_advertised 10_half 10_full 100_half 100_full 1000_full 10_half 10_full 100_half 100_full 1000_full master slave auto_negot...

Page 25: ...m the active configuration will be advertised at the next auto negotiation link_fault Local devices that disconnected due to link failure will be advertised at the next auto negotiation auto_negotiation_error The resolution that precludes operation between local devices and link partners will be advertised at the next auto negotiation flow_control Optional You can turn on or turn off flow control ...

Page 26: ...ommand config ports all medium_type copper speed auto Success DGS 3120 24TC admin 2 18 show ports Description This command is used to display the current configurations of a range of ports Format show ports portlist description err_disabled auto_negotiation details media_type Parameters portlist Optional Enter the list of ports to be configured here description Optional Indicates if port descripti...

Page 27: ...abits Ethernet MAC Address 00 01 02 03 04 10 Bandwidth 1000000Kbit Auto Negotiation Enabled Duplex Mode Full Duplex Flow Control Disabled MDI Auto Address Learning Enabled Last Clear of Counter 0 hours 10 mins ago BPDU Hardware Filtering Mode Disabled Queuing Strategy FIFO TX Load 0 100 0 bits sec 0 packets sec RX Load 0 100 0 bits sec 0 packets sec CTRL C ESC q Quit SPACE n Next Page p Previous P...

Page 28: ...uto_assign show pvid auto_assign config gvrp timer join leave leaveall value 100 100000 nni_bpdu_addr dot1d dot1ad show gvrp enable gvrp disable gvrp config private_vlan vlan_name 32 vid vlanid 2 4094 add isolated community remove vlan_name 32 vlanid vidlist show private_vlan vlan_name 32 vlanid vidlist 3 1 create vlan Description This command is used to create a VLAN on the Switch The VLAN ID mus...

Page 29: ... this VLAN name is conflict with the name of an existing VLAN then it will be renamed based on the following rule VLAN ID ALT collision count For example if this conflict is the second collision then the name will be VLAN100ALT2 Format create vlan vlanid vidlist type 1q_vlan private_vlan advertisement Parameters vlanid The VLAN ID list to be created vidlist Enter the VLAN ID list here type Optiona...

Page 30: ...characters long Restrictions Only Administrator Operator and Power User level users can issue this command Example To remove a vlan v1 DGS 3120 24TC admin delete vlan v1 Command delete vlan v1 Success DGS 3120 24TC admin 3 4 delete vlan vlanid Description This command is used to delete one or a number of previously configured VLAN by VID list Format delete vlan vlanid vidlist Parameters vlanid The...

Page 31: ...ed untagged or forbidden ports to the VLAN tagged Specify the additional ports as tagged untagged Specify the additional ports as untagged forbidden Specify the additional ports as forbidden delete Optional Specify to delete ports from the VLAN portlist Optional Enter the list of ports used for the configuration here advertisement Optional Specify the GVRP state of this VLAN enable Specify to enab...

Page 32: ...tional Enter the list of ports used for the configuration here advertisement Optional Specify the GVRP state of this VLAN enable Specify to enable advertisement for this VLAN disable Specify to disable advertisement for this VLAN name Optional The new name of the VLAN vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long Restrictions Only Administrator Operator and Power ...

Page 33: ...e specified portlist enable Specify that ingress checking will be enabled for the specified portlist disable Specify that ingress checking will be disabled for the specified portlist acceptable_frame Optional The type of frame will be accepted by the port There are two types tagged_only Only tagged packets can be accepted by this port admit_all All packets can be accepted pvid Optional Specify the...

Page 34: ...atic Ports 1 1 1 24 Current Tagged Ports Current Untagged Ports 1 1 1 24 Static Tagged Ports Static Untagged Ports 1 1 1 24 Forbidden Ports Total Static VLAN Entries 1 Total GVRP VLAN Entries 0 DGS 3120 24TC admin 3 9 show vlan ports Description This command is used to display the vlan information per ports Format show vlan ports portlist Parameters portlist Optional Enter the list of ports for wh...

Page 35: ...ion using the VLAN ID Format show vlan vlanid vidlist Parameters vidlist Enter the VLAN ID to be displayed Restrictions None Example To display the VLAN configuration for VLAN ID 1 DGS 3120 24TC admin show vlan vlanid 1 Command show vlan vlanid 1 VID 1 VLAN Name default VLAN Type Static Advertisement Enabled Member Ports 1 1 1 24 Static Ports 1 1 1 24 Current Tagged Ports Current Untagged Ports 1 ...

Page 36: ...isabled Enabled All Frames 1 2 1 Disabled Enabled All Frames 1 3 1 Disabled Enabled All Frames 1 4 1 Disabled Enabled All Frames 1 5 1 Disabled Enabled All Frames 1 6 1 Disabled Enabled All Frames 1 7 1 Disabled Enabled All Frames 1 8 1 Disabled Enabled All Frames 1 9 1 Disabled Enabled All Frames 1 10 1 Disabled Enabled All Frames 1 11 1 Disabled Enabled All Frames 1 12 1 Disabled Enabled All Fra...

Page 37: ... is updated with last item of VLAN list When user removes a port from the untagged membership of the PVID s VLAN the port s PVID will be assigned with default VLAN The default setting is enabled Format enable pvid auto_assign Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the auto assign PVID DGS 3120 24TC admin enable p...

Page 38: ...pvid auto_assign Description This command is used to display the PVID auto assignment state Format show pvid auto_assign Parameters None Restrictions None Example To display PVID auto assignment state DGS 3120 24TC admin show pvid auto_assign Command show pvid auto_assign PVID Auto assignment Enabled DGS 3120 24TC admin 3 15 config gvrp Description The config gvrp timer command set the GVRP timer ...

Page 39: ...determine the BPDU protocol address for GVRP in service provide site It can use 802 1d GVRP address 802 1ad service provider GVRP address or a user defined multicast address dot1d Specify that the NNI BPDU protocol address value will be set to Dot1d dot1ad Specify that the NNI BPDU protocol address value will be set to Dot1ad Restrictions Only Administrator Operator and Power User level users can ...

Page 40: ...S 3120 24TC admin 3 17 enable gvrp Description This command is used to enable the Generic VLAN Registration Protocol GVRP Format enable gvrp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the generic VLAN Registration Protocol GVRP DGS 3120 24TC admin enable gvrp Command enable gvrp Success DGS 3120 24TC admin 3 18 disab...

Page 41: ...eters vlan_name 32 Specify the name of the private VLAN vid Specify the VLAN ID of the private VLAN vlanid 2 4094 Enter the VLAN ID used here This value must be between 2 and 4094 add Specify that a secondary VLAN will be added to the private VLAN isolated Specify the secondary VLAN as isolated VLAN community Specify the secondary VLAN as community VLAN remove Specify that a secondary VLAN will be...

Page 42: ... VLAN or its secondary VLAN This name can be up to 32 characters long vlanid Optional Specify the VLAN ID of the private VLAN or its secondary VLAN vidlist Enter the VLAN ID used here Restrictions None Example To display private VLAN settings DGS 3120 24TC admin show private_vlan Command show private_vlan Private VLAN 100 Promiscuous Ports 1 1 Trunk Ports 1 2 Isolated Ports 1 3 1 5 Isolated VLAN 2...

Page 43: ...d config 802 1x init port_based ports portlist all mac_based ports portlist all mac_address macaddr config 802 1x reauth port_based ports portlist all mac_based ports portlist all mac_address macaddr create 802 1x guest_vlan vlan_name 32 delete 802 1x guest_vlan vlan_name 32 config 802 1x guest_vlan ports portlist all state enable disable show 802 1x guest_vlan config 802 1x trap state enable disa...

Page 44: ...function DGS 3120 24TC admin enable 802 1x Command enable 802 1x Success DGS 3120 24TC admin 4 2 disable 802 1x Description This command is used to disable the 802 1X function Format disable 802 1x Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the 802 1X function DGS 3120 24TC admin disable 802 1x Command disable 802 1...

Page 45: ...ssue this command Example To create a 802 1x user test DGS 3120 24TC admin create 802 1x user test Command create 802 1x user test Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3120 24TC admin 4 4 delete 802 1x user Description This command is used to delete an 802 1X user Format delete 802 1x user username 15 Parameters username 15 Enter the usernam...

Page 46: ...ed to display the 802 1X user Format show 802 1x user Parameters None Restrictions None Example To display the 802 1X user information DGS 3120 24TC admin show 802 1x user Command show 802 1x user Current Accounts Username Password test test Total Entries 1 DGS 3120 24TC admin 4 6 config 802 1x auth_protocol Description This command is used to configure the 802 1X authentication protocol Format co...

Page 47: ...d_pdu system Description This command is used to globally control the forwarding of EAPOL PDU When 802 1X functionality is disabled globally or for a port and if 802 1X fwd_pdu is enabled both globally and for the port a received EAPOL packet on the port will be flooded in the same VLAN to those ports for which 802 1X fwd_pdu is enabled and 802 1X is disabled globally or just for the port The defa...

Page 48: ... enable disable Parameters portlist Enter the list of ports used for the configuration all Specify that all the ports will be used enable Enable forwarding EAPOL PDU receive on the ports disable Disable forwarding EAPOL PDU receive on the ports Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure 802 1X fwd_pdu for ports DGS 3120 24TC admi...

Page 49: ...ssigned from the RADIUS server DGS 3120 24TC admin config 802 1x authorization attributes radius disable Command config 802 1x authorization attributes radius disable Success DGS 3120 24TC admin 4 10 show 802 1x Description This command is used to display the 802 1X state or configurations Format show 802 1x auth_state auth_configuration ports portlist Parameters auth_state Optional Used to displa...

Page 50: ...ACE n Next Page p Previous Page r Refresh 4 11 config 802 1x capability Description This command is used to configure the port capability Format config 802 1x capability ports portlist all authenticator none Parameters ports Specify a range of ports to be configured portlist Enter the list of ports used for the configuration here all Specify all ports to be configured authenticator Specify the por...

Page 51: ... limited It is specified by config 802 1x auth_parameter command Format config 802 1x max_users value 1 448 no_limit Parameters value 1 448 Enter the maximum number of users This value must be between 1 and 448 no_limit Specify that the maximum user limit will be set to 448 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure 802 1X number...

Page 52: ...r period The default value is 30 seconds and can be any integer value among 1 to 65535 sec 1 65535 Enter the tx period value here This value must be between 1 and 65535 seconds supp_timeout Optional The initialization value of the aWhile timer when timing out the supplicant Its default value is 30 seconds and can be any integer value among 1 to 65535 sec 1 65535 Enter the supplicant timeout value ...

Page 53: ... config 802 1x auth_mode Description This command is used to configure 802 1X authentication mode Format config 802 1x auth_mode port_based mac_based Parameters port_based Configure the authentication as port based mode mac_based Configure the authentication as MAC based mode Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the authent...

Page 54: ... the authentication state machine of some or all DGS 3120 24TC admin config 802 1x init port_based ports all Command config 802 1x init port_based ports all Success DGS 3120 24TC admin 4 16 config 802 1x reauth Description This command is used to re authenticate the device connected to the port During the re authentication period the port status remains authorized until failed re authentication Fo...

Page 55: ...VLAN must be existed The specific VLAN which assigned to guest VLAN can t be deleting Format create 802 1x guest_vlan vlan_name 32 Parameters vlan_name 32 Specify the VLAN to be guest VLAN The VLAN name can be up to 32 characters long Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a VLAN named guestVLAN as 802 1X guest VLAN DGS 3120 24T...

Page 56: ...d is used to configure guest VLAN setting If the specific port state is changed from enabled state to disable state this port will move to its original VLAN Format config 802 1x guest_vlan ports portlist all state enable disable Parameters ports A range of ports enable or disable guest VLAN function portlist Enter the list of ports used for the configuration here all Specify that all the port will...

Page 57: ...lan Description This command is used to show the information of guest VLANs Format show 802 1x guest_vlan Parameters None Restrictions None Example To show 802 1X guest VLAN on the Switch DGS 3120 24TC admin show 802 1x guest_vlan Command show 802 1x guest_vlan Guest VLAN Setting Guest VLAN guestVLAN Enabled Guest VLAN Ports 1 2 1 8 DGS 3120 24TC admin 4 21 config 802 1x trap state Description Thi...

Page 58: ...r Enter the IPv6 address of the RADIUS server here key The key pre negotiated between switch and the RADIUS server It is used to encrypt user s authentication data before being transmitted over internet The maximum length of the key is 32 password 32 Enter the password here The password can be up to 32 characters long encryption_key The key pre negotiated between the Switch and the RADIUS server I...

Page 59: ... Administrator Operator and Power User level users can issue this command Example To add a new RADIUS server DGS 3120 24TC admin config radius add 1 10 48 74 121 key dlink default Command config radius add 1 10 48 74 121 key dlink default Success DGS 3120 24TC admin 4 23 config radius delete Description This command is used to delete a RADIUS server Format config radius delete server_index 1 3 Par...

Page 60: ...d key string The maximum length of the plain text key is 56 bytes The encryption algorithm is based on DES auth_port Specify the UDP port number which is used to transmit RADIUS authentication data between the Switch and the RADIUS server The range is 1 to 65535 The default value is 1812 udp_port_number 1 65535 Enter the authentication port number here This value must be between 1 and 65535 defaul...

Page 61: ...display RADIUS server configurations Format show radius Parameters None Restrictions None Example To display RADIUS server configurations DGS 3120 24TC admin show radius Command show radius Index 1 IP Address 172 18 211 71 Auth Port 1812 Acct Port 1813 Timeout 5 sec Retransmit 2 Key 1234567 Index 2 IP Address 172 18 211 108 Auth Port 1812 Acct Port 1813 Timeout 5 sec Retransmit 2 Key adfdslkfjefie...

Page 62: ...will be displayed here Restrictions None Example To display authenticator statistics information for port 1 1 DGS 3120 24TC admin show auth_statistics ports 1 1 Command show auth_statistics ports 1 1 Port Number 1 1 EapolFramesRx 0 EapolFramesTx 9 EapolStartFramesRx 0 EapolReqIdFramesTx 6 EapolLogoffFramesRx 0 EapolReqFramesTx 0 EapolRespIdFramesRx 0 EapolRespFramesRx 0 InvalidEapolFramesRx 0 EapL...

Page 63: ... 3120 24TC admin show auth_diagnostics ports 1 1 Command show auth_diagnostics ports 1 1 Port Number 1 1 EntersConnecting 11 EapLogoffsWhileConnecting 0 EntersAuthenticating 0 SuccessWhileAuthenticating 0 TimeoutsWhileAuthenticating 0 FailWhileAuthenticating 0 ReauthsWhileAuthenticating 0 EapStartsWhileAuthenticating 0 EapLogoffWhileAuthenticating 0 ReauthsWhileAuthenticated 0 EapStartsWhileAuthen...

Page 64: ...xample To display authenticator session statistics information for port 1 1 DGS 3120 24TC admin show auth_session_statistics ports 1 1 Command show auth_session_statistics ports 1 1 Port Number 1 1 SessionOctetsRx 0 SessionOctetsTx 0 SessionFramesRx 0 SessionFramesTx 0 SessionId SessionAuthenticMethod Remote Authentication Server SessionTime 0 SessionTerminateCause SupplicantLogoff SessionUserName...

Page 65: ...er 0 radiusAuthClientRoundTripTime 0 radiusAuthClientAccessRequests 0 radiusAuthClientAccessRetransmissions 0 radiusAuthClientAccessAccepts 0 radiusAuthClientAccessRejects 0 radiusAuthClientAccessChallenges 0 radiusAuthClientMalformedAccessResponses 0 radiusAuthClientBadAuthenticators 0 radiusAuthClientPendingRequests 0 radiusAuthClientTimeouts 0 radiusAuthClientUnknownTypes 0 radiusAuthClientPack...

Page 66: ...tIdentifier D Link radiusAuthServerEntry radiusAccServerIndex 1 radiusAccServerAddress 0 0 0 0 radiusAccClientServerPortNumber 0 radiusAccClientRoundTripTime 0 radiusAccClientRequests 0 radiusAccClientRetransmissions 0 radiusAccClientResponses 0 radiusAccClientMalformedResponses 0 radiusAccClientBadAuthenticators 0 radiusAccClientPendingRequests 0 radiusAccClientTimeouts 0 radiusAccClientUnknownTy...

Page 67: ... protocol tacacs xtacacs tacacs radius delete authen server_group string 15 show authen server_group string 15 create authen server_host ipaddr protocol tacacs xtacacs tacacs radius port int 1 65535 key key_string 254 none encryption_key key_string 344 timeout int 1 255 retransmit int 1 20 config authen server_host ipaddr protocol tacacs xtacacs tacacs radius port int 1 65535 key key_string 254 no...

Page 68: ...1 255 retransmit int 1 20 config xtacacs server_host ipaddr port int 1 65535 timeout int 1 255 retransmit int 1 20 create tacacs server_host ipaddr port int 1 65535 key key_string 254 none encryption_key key_string 344 timeout int 1 255 config tacacs server_host ipaddr port int 1 65535 key key_string 254 none encryption_key key_string 344 timeout int 1 255 enable aaa_server_password_encryption dis...

Page 69: ...hen_policy_encryption Parameters None Restrictions Only Administrator level users can issue this command Example To disable the authentication policy encryption DGS 3120 24TC admin disable authen_policy_encryption Command disable authen_policy_encryption Success DGS 3120 24TC admin 5 3 enable password encryption Description This command is used to enable password encryption The user account config...

Page 70: ...ile and can be applied to the system later When password encryption is disabled if the user specifies the password in plain text form the password will be in plan text form However if the user specifies the password in encrypted form or if the password has been converted to encrypted form by the last enable password encryption command the password will still be in the encrypted form It can not be ...

Page 71: ...mat enable authen_policy Parameters None Restrictions Only Administrator level users can issue this command Example To enable system access authentication policy DGS 3120 24TC admin enable authen_policy Command enable authen_policy Success DGS 3120 24TC admin 5 6 disable authen_policy Description This command is used to disable system access authentication policy Disable system access authenticati...

Page 72: ...hat system access authentication policy is enabled or disabled Format show authen_policy Parameters None Restrictions Only Administrator level users can issue this command Example To display system access authentication policy DGS 3120 24TC admin show authen_policy Command show authen_policy Authentication Policy Enabled Authentication Policy Encryption Enabled DGS 3120 24TC admin 5 8 create authe...

Page 73: ...tication request will be sent to the second server host in tacacs group and so on If all server hosts in tacacs group are missing the authentication request will be sent to the first server host in tacacs group If all server hosts in tacacs group are missing the local account database in the device is used to authenticate this user When user logins the device successfully while using methods like ...

Page 74: ...tion Restrictions Only Administrator level users can issue this command Example To configure a user defined method list for user login DGS 3120 24TC admin config authen_login method_list_name login_list_1 method tacacs tacacs local Command config authen_login method_list_name login_list_1 method tacacs tacacs local Success DGS 3120 24TC admin 5 10 delete authen_login Description This command is us...

Page 75: ...r login Restrictions Only Administrator level users can issue this command Example To display a user defined method list for user login DGS 3120 24TC admin show authen_login method_list_name login_list_1 Command show authen_login method_list_name login_list_1 Method List Name Priority Method Name Comment login_list_1 1 tacacs Built in Group 2 tacacs Built in Group 3 mix_1 User defined Group 4 loca...

Page 76: ...cs group are missing the authentication request will be sent to the first server host in tacacs group If all server hosts in tacacs group are missing the local enable password in the device is used to authenticate this user s password Format config authen_enable default method_list_name string 15 method tacacs xtacacs tacacs radius server_group string 15 local _enable none Parameters default The d...

Page 77: ...ist of authentication methods for promoting user s privilege to Admin level Format delete authen_enable method_list_name string 15 Parameters string 15 The user defined method list name This value can be up to 15 characters long Restrictions Only Administrator level users can issue this command Example To delete a user defined method list for promoting user s privilege to Admin level DGS 3120 24TC...

Page 78: ...od_list_name enable_list_1 Command show authen_enable method_list_name enable_list_1 Method List Name Priority Method Name Comment enable_list_1 1 local_enable Keyword DGS 3120 24TC admin 5 16 config authen application Description This command is used to configure login or enable method list for all or the specified application Format config authen application console telnet ssh http all login ena...

Page 79: ...1 Success DGS 3120 24TC admin 5 17 show authen application Description This command is used to display the login enable method list for all applications Format show authen application Parameters None Restrictions Only Administrator level users can issue this command Example To display the login enable method list for all applications DGS 3120 24TC admin show authen application Command show authen ...

Page 80: ... server_group mix_1 Command create authen server_group mix_1 Success DGS 3120 24TC admin 5 19 config authen server_group Description This command is used to add or remove an authentication server host to or from the specified server group Built in server group tacacs xtacacs tacacs radius accepts the server host with the same protocol only but user defined server group can accept server hosts with...

Page 81: ...tion protocol will be used Restrictions Only Administrator level users can issue this command Example To add an authentication server host to an server group DGS 3120 24TC admin config authen server_group mix_1 add server_host 10 1 1 222 protocol tacacs Command config authen server_group mix_1 add server_host 10 1 1 222 protocol tacacs Success DGS 3120 24TC admin 5 20 delete authen server_group De...

Page 82: ...o 15 characters long Restrictions Only Administrator level users can issue this command Example To display all authentication server groups DGS 3120 24TC admin show authen server_group Command show authen server_group Group Name IP Address Protocol mix_1 10 1 1 222 TACACS 10 1 1 223 TACACS radius 10 1 1 224 RADIUS tacacs 10 1 1 225 TACACS tacacs 10 1 1 226 TACACS xtacacs 10 1 1 227 XTACACS Total E...

Page 83: ...ncryption will apply This value is meaningless for TACACS and XTACACS key_string 254 Enter the TACACS or the RADIUS key here This key can be up to 254 characters long none No encryption for TACACS and RADIUS authentication This value is meaningless for TACACS and XTACACS encryption_key Optional Specify the encryption key string for TACACS and RADIUS authentication key_string 344 Enter the encrypti...

Page 84: ...ADIUS authentication If the value is null no encryption will apply This value is meaningless for TACACS and XTACACS key_string 254 Enter the TACACS key here This value can be up to 254 characters long none No encryption for TACACS and RADIUS authentication This value is meaningless for TACACS and XTACACS encryption_key Optional Specify the encryption key string for TACACS and RADIUS authentication...

Page 85: ...acacs Server host s authentication protocol tacacs Server host s authentication protocol radius Server host s authentication protocol Restrictions Only Administrator level users can issue this command Example To delete an authentication server host DGS 3120 24TC admin delete authen server_host 10 1 1 222 protocol tacacs Command delete authen server_host 10 1 1 222 protocol tacacs Success DGS 3120 ...

Page 86: ...rmat config authen parameter response_timeout int 0 255 Parameters int 0 255 The amount of time for user input on console or telnet or SSH 0 means there is no time out This value must be between 0 and 255 Default value is 30 seconds Restrictions Only Administrator level users can issue this command Example To configure the amount of time waiting or user input to be 60 seconds DGS 3120 24TC admin c...

Page 87: ...nistrator level users can issue this command Example To configure the maximum attempts for user s trying to login or promote the privilege to be 9 DGS 3120 24TC admin config authen parameter attempt 9 Command config authen parameter attempt 9 Success DGS 3120 24TC admin 5 28 show authen parameter Description This command is used to display the parameters of authentication Format show authen parame...

Page 88: ...s to use either one of these 3 protocols to do enable authentication user must create a special account on the server host first which has a username enable and then configure its password as the enable password to support enable function This command can not be used when authentication policy is disabled Format enable admin Parameters None Restrictions None Example To enable administrator lever p...

Page 89: ...The length for a password in plain text form and SHA 1 encrypted form are different plain text Passwords can be from a minimum of 0 to a maximum of 15 characters SHA 1 The length of Encrypted passwords is fixed to 35 bytes longand the password is case sensitive Restrictions Only Administrator level users can issue this command Example To configure the administrator password DGS 3120 24TC admin con...

Page 90: ...nfig aaa server_group tacacs xtacacs tacacs radius group_name string 15 add delete server_host ipaddr protocol tacacs xtacacs tacacs radius Parameters tacacs Specify the built in TACACS server group xtacacs Specify the built in XTACACS server group tacacs Specify the built in TACACS server group radius Specify the built in RADIUS server group group_name Specify a user defined server group string 1...

Page 91: ...120 24TC admin 5 33 delete aaa server_group Description This command is used to delete a group of user defined AAA servers Format delete aaa server_group string 15 Parameters string 15 Specify the server group name to be deleted Restrictions Only Administrator level users can issue this command Example To delete a user defined AAA server group called mix_1 DGS 3120 24TC admin delete aaa server_gro...

Page 92: ...w aaa server_group Group Name IP Address Protocol mix_1 radius tacacs tacacs xtacacs Total Entries 5 DGS 3120 24TC admin 5 35 create accounting method_list_name Description This command is used to create a user defined list of accounting methods for accounting services on the Switch The maximum supported number of accounting method lists is 8 Format create accounting method_list_name string 15 Par...

Page 93: ...hod list of accounting methods string 15 Enter the name of the method list method Specify the protocol tacacs Specify the built in TACACS server group radius Specify the built in RADIUS server group server_group Specify the user defined server group If the group contains TACACS and XTACACS server it will be skipped in accounting string 15 Enter the name of server group none Specify no accounting R...

Page 94: ...lled shell_acct from switch DGS 3120 24TC admin delete accounting method_list_name shell_acct Command delete accounting method_list_name shell_acct Success DGS 3120 24TC admin 5 38 show accounting Description This command is used to display the list of accounting methods on the Switch Format show accounting default method_list_name string 15 all Parameters default Display the user defined list of ...

Page 95: ...trator Accounting service for all administrator level commands operator Accounting service for all operator level commands power_user Accounting service for all power user level commands user Accounting service for all user level commands method_list_name Specify accounting service by the AAA user defined method list specified by the create accounting method_list_name string 15 command string Ente...

Page 96: ...or RADIUS key_string 254 Enter the plain text key string for RADIUS none No encryption for RADIUS encryption_key Optional The encrypted form key string for RADIUS The encryption algorithm is based on DES key_string 344 Etner the string with maximum 344 characters timeout Optional Specify the time in second to wait for the server to reply int 1 255 Enter the value between 1 and 255 The default valu...

Page 97: ...ncrypted form key string for RADIUS The encryption algorithm is based on DES key_string 344 Etner the string with maximum 344 characters timeout Optional Specify the time in second to wait for the server to reply int 1 255 Enter the value between 1 and 255 The default value is 5 retransmit Optional Specify the count for re transmissions int 1 20 Enter the value between 1 and 20 The default value i...

Page 98: ...delete an AAA server host with an IP address of 10 1 1 222 that is running the TACACS protocol DGS 3120 24TC admin delete aaa server_host 10 1 1 222 protocol tacacs Command delete aaa server_host 10 1 1 222 protocol tacacs Success DGS 3120 24TC admin 5 43 show aaa server_host Description This command is used to display the AAA server hosts Format show aaa server_host Parameters None Restrictions O...

Page 99: ... IP address of the server host port Optional The port number of the TACACS server host int 1 65535 Enter the value between 1 and 65535 The default value is 49 timeout Optional Specify the time in second to wait for the server to reply int 1 255 Enter the value between 1 and 255 The default value is 5 retransmit Optional Specify the count for re transmissions int 1 20 Enter the value between 1 and ...

Page 100: ...e value between 1 and 255 The default value is 5 retransmit Optional Specify the count for re transmissions int 1 20 Enter the value between 1 and 20 The default value is 2 Restrictions Only Administrator level users can issue this command Example To configure the TACACS server host DGS 3120 24TC admin config tacacs server_host 10 1 1 223 retransmit 5 Command config tacacs server_host 10 1 1 223 r...

Page 101: ... server_host 10 1 1 224 port 15555 timeout 10 Success DGS 3120 24TC admin 5 47 config xtacacs server_host Description This command is used to configure a XTACACS server host Format config xtacacs server_host ipaddr port int 1 65535 timeout int 1 255 retransmit int 1 20 Parameters ipaddr Enter the IP address of the server host port Optional The port number of the XTACACS server host int 1 65535 Ent...

Page 102: ...er host int 1 65535 Enter the value between 1 and 65535 The default value is 49 key Optional Specify the key for TACACS key_string 254 Enter the plain text key string for TACACS none No encryption for RADIUS encryption_key Optional The encrypted form key string for TACACS The encryption algorithm is based on DES key_string 344 Etner the string with maximum 344 characters timeout Optional Specify t...

Page 103: ... encryption for RADIUS encryption_key Optional The encrypted form key string for TACACS The encryption algorithm is based on DES key_string 344 Etner the string with maximum 344 characters timeout Optional Specify the time in second to wait for the server to reply int 1 255 Enter the value between 1 and 255 The default value is 5 Restrictions Only Administrator level users can issue this command E...

Page 104: ...24TC admin 5 51 disable aaa_server_password_encryption Description This command is used to disable AAA server password encryption Format disable aaa_server_password_encryption Parameters None Restrictions Only Administrator level users can issue this command Example To disable AAA server password encryption DGS 3120 24TC admin disable aaa_server_password_encryption Command disable aaa_server_passw...

Page 105: ...nting Operator Command Service Method Accounting PowerUser Command Service Method Accounting User Command Service Method Authentication Policy Encryption Enabled DGS 3120 24TC admin 5 53 config accounting service Description This command is used to configure the state of the specified RADIUS accounting service Format config accounting service network shell system state enable radius_only method_li...

Page 106: ...the create accounting method_list_name string 15 command string 15 Enter the method list name default_method_list Optional Specify accounting service by the AAA default method list disable Specify to disable the specified accounting service Restrictions Only Administrator and Operator level users can issue this command Example Enable it to configure accounting shell state DGS 3120 24TC admin confi...

Page 107: ... Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 102 DGS 3120 24TC admin show accounting service Command show accounting service Accounting Service Network Enabled Shell Enabled System Enabled DGS 3120 24TC admin ...

Page 108: ...st syn fin udp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff protocol_id value 0 255 user_define hex 0x0 0xffffffff mask hex 0x0 0xffffffff packet_content offset_chunk_1 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_2 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_3 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_4 hex 0x0 0xffffff...

Page 109: ...fffff offset_chunk_3 value 0 31 hex 0x0 0xffffffff offset_chunk_4 value 0 31 hex 0x0 0xffffffff ipv6 class flowlabel source_ipv6_mask ipv6mask destination_ipv6_mask ipv6mask tcp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff udp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff icmp type code Parameters profile_id Specify the index of the access list profile value 1 6 Enter the ...

Page 110: ...the IP header length is 20 bytes hex 0x0 0xffffffff Enter a user defined mask value here packet_content_mask Specify the packet content mask Only one packet_content_mask profile can be created offset_chunk_1 Optional Specify that the offset chunk 1 will be used value 0 31 Enter the offset chunk 1 value here This value must be between 0 and 31 hex 0x0 0xffffffff Enter the offset chunk 1 mask here o...

Page 111: ...le_id 2 profile_name 2 ip vlan source_ip_mask 20 0 0 0 destination_ip_mask 10 0 0 0 dscp icmp type code Command create access_profile profile_id 2 profile_name t2 ip vlan source_ip_mask 20 0 0 0 destination_ip_mask 10 0 0 0 dscp icmp type code Success DGS 3120 24TC admin create access_profile profile_id 4 profile_name 4 packet_content_mask offset_chunk_1 3 0xFFFF offset_chunk_2 5 0xFF00 offset_chu...

Page 112: ...sk destination_mac macaddr mask macmask 802 1p value 0 7 ethernet_type hex 0x0 0xffff ip vlan vlan_name 32 vlan_id vlanid 1 4094 mask hex 0x0 0x0fff source_ip ipaddr mask netmask destination_ip ipaddr mask netmask dscp value 0 63 icmp type value 0 255 code value 0 255 igmp type value 0 255 tcp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff flag all urg ack ps...

Page 113: ...macmask Enter the source MAC mask used here destination_mac Optional Specify the destination MAC address macaddr Enter the destination MAC address used for this configuration here mask Optional Specify an additional mask parameter that can be configured macmask Enter the destination MAC mask here 802 1p Optional Specify the value of the 802 1p priority tag The priority tag ranges from 1 to 7 value...

Page 114: ... range value 0 65535 Enter the UDP source port value here This value must be between 0 and 65535 mask Optional Specify an additional mask parameter that can be configured hex 0x0 0xffff Enter the source port mask here dst_port Optional Specify the UDP destination port range value 0 65535 Enter the UDP destination port value here This value must be between 0 and 65535 mask Optional Specify an addit...

Page 115: ... port value 0 65535 Enter the UDP source port value here This value must be between 0 and 65535 mask Optional Specify an additional mask parameter that can be configured hex 0x0 0xffff Enter the UDP source port mask value here dst_port Specify the value of the IPv6 Layer 4 UDP destination port value 0 65535 Enter the UDP destination port value here This value must be between 0 and 65535 mask Optio...

Page 116: ...Specify the groupd ID value 1 4 Enter the value between 1 and 4 deny Specify that packets matching the access rule are filtered by the Switch time_range Optional Specify the name of the time range entry range_name 32 Enter the time range name here This name can be up to 32 characters long delete access_id Specify to delete the access ID The value range is 1 256 but the supported maximum number of ...

Page 117: ...ong Restrictions None Example To display the current access list table DGS 3120 24TC admin show access_profile Command show access_profile Access Profile Table Total User Set Rule Entries 4 Total Used HW Entries 5 Total Available HW Entries 1531 Profile ID 1 Profile name EtherACL Type Ethernet MASK on VLAN 0xFFF 802 1p Ethernet Type Available HW Entries 255 Rule ID 1 Ports 1 1 Match on VLAN ID 1 8...

Page 118: ...vailable HW Entries 254 Rule ID 1 Ports 1 3 Match on Class 0 Action Permit Profile ID 4 Profile name PCACL Type User Defined MASK on offset_chunk_1 0 value 0x00000000 offset_chunk_2 1 value 0x00000000 offset_chunk_3 2 value 0x00000000 offset_chunk_4 3 value 0x00000000 Available HW Entries 255 Rule ID 1 Ports 1 4 Match on offset_chunk_1 0 value 0x0000FFEE Mask 0x0000FFEE Action Permit Priority 1 Re...

Page 119: ...rofile profile_id 2 Access Profile Table Profile ID 2 Profile Name 2 Type Ethernet Mask on VLAN 0xF Source MAC FF FF FF 00 00 00 Destination MAC 00 00 00 FF FF FF Available HW Entries 255 Rule ID 22 Ports 1 7 Match on VLAN ID 8 Mask 0xFFF Source MAC 00 01 02 03 04 05 Mask FF FF FF FF FF FF Destination MAC 00 05 04 03 02 00 Mask FF FF FF FF FF 00 Action Deny DGS 3120 24TC admin The following exampl...

Page 120: ... single rate two color mode users may set the preferred bandwidth for this rule in Kbps and once the bandwidth has been exceeded overflowing packets will either be dropped or have a drop precedence set depending on the user configuration For single rate three color mode users need to specify the committed rate in Kbps the committed burst size and the excess burst size For the two rate three color ...

Page 121: ...1 and 256 A lower value denotes a higher priority rate This specifies the rate for single rate two color mode Specify the committed bandwidth in Kbps for the flow The value m and n are determined by the project value 0 1048576 Enter the rate for single rate two color mode here This value must be between 0 and 1048576 burst_size Optional This specifies the burst size for the single rate two color m...

Page 122: ... ACL counter option will be disabled violate Specify the action when a packet is mapped to the red color permit Permits the packet replace_dscp Optional Changes the DSCP of the packet value 0 63 Enter the replace DSCP value here This value must be between 0 and 63 drop Drops the packet counter Optional Specify the ACL counter This is optional The default is disable The resource may be limited so t...

Page 123: ... This value must be between 0 and 63 drop Drops the packet counter Optional Specify the ACL counter This is optional The default is disable The resource may be limited so that a counter cannot be turned on Counters will be cleared when the function is disabled enable Specify that the ACL counter option will be enabled disable Specify that the ACL counter option will be disabled delete Deletes the ...

Page 124: ...ion Profile ID 1 Aceess ID 1 Mode trTCM ColorBlind CIR Kbps 1000 CBS Kbyte 2000 PIR Kbps 2000 PBS Kbyte 2000 Action Conform Permit Counter Enabled Exceed Permit Replace DSCP 60 Counter Enabled Violate Drop Counter Disabled Total Entries 1 DGS 3120 24TC admin 6 7 config time_range Description This command is used to define a specific range of time to activate a function on the Switch by specifying ...

Page 125: ...ys Use a comma to separate specific days daylist Enter the weekdays that will be included in this configuration here For example mon fri Monday to Friday sun mon fri Sunday Monday and Friday delete Deletes a time range profile When a time_range profile has been associated with ACL entries deleting the time_range profile will fail Restrictions Only Administrator Operator and Power User level users ...

Page 126: ...2 00 00 Associated ACL Entries 2 10 3 8 DGS 3120 24TC admin 6 9 show current_config access_profile Description This command is used to display the ACL part of the current configuration when logged in with user level privileges The overall current configuration can be displayed by using the show config command which is accessible with administrator level privileges Format show current_config access...

Page 127: ...show current_config access_profile ACL create access_profile ethernet vlan profile_id 1 config access_profile profile_id 1 add access_id 1 ethernet vlan default port 1 permit create access_profile ip source_ip_mask 255 255 255 255 profile_id 2 config access_profile profile_id 2 add access_id 1 ip source_ip 10 10 10 10 port 2 deny DGS 3120 24TC admin ...

Page 128: ...t_port value 0 65535 mask hex 0x0 0xffff protocol_id value 0 255 user_define hex 0x0 0xffffffff mask hex 0x0 0xffffffff ipv6 class value 0 255 source_ipv6 ipv6addr mask ipv6mask destination_ipv6 ipv6addr mask ipv6mask tcp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff udp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff ic...

Page 129: ...ed here This value must be between 1 and 4 A lower value denotes a higher priority profile_name The name of the profile must be specified The maximum length is 32 characters name 1 32 Enter the profile name used here This name can be up to 32 characters long ethernet Specify this is an Ethernet mask vlan Optional Specify a VLAN mask hex 0x0 0x0fff Enter the VLAN mask used here source_mac Optional ...

Page 130: ...tional Specify the IPv6 class source_ipv6_mask Optional Specify an IPv6 source sub mask ipv6mask Enter the IPv6 source sub mask value here destination_ipv6_mask Specify an IPv6 destination sub mask ipv6mask Enter the IPv6 destination sub mask value here tcp Optional Specify that the following parameter are application to the TCP configuration src_port_mask Specify an IPv6 Layer 4 TCP source port m...

Page 131: ...le ID 1 DGS 3120 24TC admin delete egress_access_profile profile_id 1 Command delete egress_access_profile profile_id 1 Success DGS 3120 24TC admin 7 3 config egress_access_profile Description This command is used to configure egress access list entries Format config egress_access_profile profile_id value 1 4 profile_name name 1 32 add access_id auto_assign value 1 128 ethernet vlan vlan_name 32 v...

Page 132: ...r the VLAN name used for this configuration here This name can be up to 32 characters long vlanid Specify a VLAN ID vlanid 1 4094 Enter the VLAN ID used for this congfiguration here This value must be between 1 and 4094 source_mac Optional Specify the source MAC address macaddr Enter the source MAC address used here mask Specify that source MAC mask used macmask Enter the source MAC mask value her...

Page 133: ...t mask value here flag Optional Specify the TCP flag fields all Specify that the TCP flag field will be set to all urg Specify that the TCP flag field will be set to urg ack Specify that the TCP flag field will be set to ack psh Specify that the TCP flag field will be set to psh rst Specify that the TCP flag field will be set to rst syn Specify that the TCP flag field will be set to syn fin Specif...

Page 134: ...ing parameters configured will apply to the ICMP configuration type Specify that the rule will apply to the ICMP type traffic value value 0 255 Enter the ICMP traffic type value here This value must be between 0 and 255 code Specify that the rule will apply to the ICMP code traffic value value 0 255 Enter the ICMP code traffic value here This value must be between 0 and 255 vlan_based The rule app...

Page 135: ...le that when the packet go out switch which match the specified source IP DSCP and destination IP field it will not be dropped DGS 3120 24TC admin config egress_access_profile profile_id 2 add access_id auto_assign ip source_ip 10 0 0 1 dscp 25 destination_ip 10 90 90 90 port_group id 1 permit Command config egress_access_profile profile_id 2 add access_id auto_assign ip source_ip 10 0 0 1 dscp 25...

Page 136: ...name here This name can be up to 32 characters long If no parameter is specified will show the all egress access profile Restrictions None Example To display current egress access list table DGS 3120 24TC admin show egress_access_profile Command show egress_access_profile Egress Access Profile Table Total User Set Rule Entries 3 Total Used HW Entries 4 Total Available HW Entries 508 Profile ID 1 P...

Page 137: ...Rule ID 1 auto assign Ports 1 3 Match on DSCP 3 Action Permit Profile ID 3 Profile name IPv6 Type IPv6 MASK on Class Available HW Entries 126 Rule ID 1 auto assign Ports 1 4 Match on Class 10 Action Permit DGS 3120 24TC admin The following example displays an egress access profile that supports an entry mask for each rule ...

Page 138: ...FF 802 1p Available HW Entries 127 Rule ID 1 auto assign Ports 1 1 Match on 802 1p 0 Action Permit DGS 3120 24TC admin 7 5 show current_config egress_access_profile Description This command is used to display the egress ACL part of current configuration in user level of privilege The overall current configuration can be displayed by show config command which is accessible in administrator level of...

Page 139: ...d auto_assign ip source_ip 10 0 0 1 destination_ip 10 90 90 90 dscp 25 port_group id 1 permit DGS 3120 24TC admin 7 6 config egress_flow_meter Description This command is used to configure the packet flow based metering based on an egress access profile and rule Format config egress_flow_meter profile_id value 1 4 profile_name name 1 32 access_id value 1 128 rate value 0 1048576 burst_size value 0...

Page 140: ...131072 Enter the comitted burst size value here pir Specify the Peak Information Rate The unit is in Kbps PIR should always be equal to or greater than CIR value 0 1048576 Enter the peak information rate value here pbs Optional Specify the Peak Burst Size The unit is in Kbytes value 0 131072 Enter the peak burst size value here color_blind Optional Specify the meter mode to be color blind The defa...

Page 141: ...or permit Optional Permit the packet replace_dscp Changes the DSCP of the packet value 0 63 Enter the replace DSCP value here This value must be between 0 and 63 counter Optional Specify the ACL counter This is optional The default is disable The resource may be limited so that a counter cannot be turned on Counters will be cleared when the function is disabled enable Specify that the ACL counter ...

Page 142: ...show egress_flow_meter Description This command is used to display the egress flow based metering configuration Format show egress_flow_meter profile_id value 1 4 profile_name name 1 32 access_id value 1 128 Parameters profile_id Optional Specify the index of access list profile value 1 4 Enter the profile ID used here This value must be between 1 and 4 A lower value denotes a higher priority prof...

Page 143: ...CBS Kbyte 100 EBS Kbyte 200 Action Conform Permit Counter Enabled Exceed Permit Replace DSCP 60 Counter Enabled Violate Drop Counter Disabled Total Entries 2 DGS 3120 24TC admin 7 8 create port_group Description This command is used to create a port group Format create port_group id value 1 64 name name 16 Parameters id Specify the port group ID value 1 64 Enter the port group ID here This value m...

Page 144: ...Specify the port group name name 16 Enter the port group name here This name can be up to 16 characters long add Add a port list to this port group delete Delete a port list from this port group portlist Enter a list of ports used for the configuration here all Specify that all the ports will be used for this configuration Restrictions Only Administrator and Operator level users can issue this com...

Page 145: ...admin delete port_group id 2 Command delete port_group id 2 Success DGS 3120 24TC admin 7 11 show port_group Description This command is used to display the port group information Format show port_group id value 1 64 name name 16 Parameters id Optional Specify the port group ID value 1 64 Enter the port group ID used here This value must be between 1 and 64 name Optional Specify the port group nam...

Page 146: ...yer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 141 DGS 3120 24TC admin show port_group Command show port_group Port Group Table Port Group ID Port Group Name Ports 2 group2 1 1 1 3 Total Entries 1 DGS 3120 24TC admin ...

Page 147: ...t create arpentry ipaddr macaddr Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a static ARP entry for the IP address 10 48 74 121 and MAC address 00 50 BA 00 07 36 DGS 3120 24TC admin create arpentry 10 48 74 121 00...

Page 148: ...y 10 48 74 121 Command delete arpentry 10 48 74 121 Success DGS 3120 24TC admin 8 3 config arpentry Description This command is used to configure a static entry s MAC address in the ARP table Specify the IP address and MAC address of the entry Format config arpentry ipaddr macaddr Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address ab...

Page 149: ...t being accessed before it is dropped from the table Format config arp_aging time min 0 65535 Parameters min 0 65535 Enter the ARP age out time in minutes This value must be between 0 and 65535 minutes The default value is 20 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure ARP aging time to 30 minutes DGS 3120 24TC admin config arp_ag...

Page 150: ... show arpentry ipif ipif_name 12 ipaddress ipaddr static mac_address macaddr Parameters ipif Optional The name of the IP interface the end node or station for which the ARP table entry was made resides on ipif_name 12 Enter the IP interface name here This value can be up to 12 characters long ipaddress Optional The IP address of the end node or station ipaddr Enter the IP address here static Optio...

Page 151: ...Time 20 Interface IP Address MAC Address Type System 10 0 0 0 FF FF FF FF FF FF Local Broadcast System 10 1 1 1 00 02 03 04 05 06 Static System 10 1 1 2 00 02 03 04 05 06 Dynamic System 10 1 1 3 00 02 03 04 05 06 Static System 10 90 90 90 00 01 02 03 04 00 Local System 10 255 255 255 FF FF FF FF FF FF Local Broadcast Total Entries 6 DGS 3120 24TC admin ...

Page 152: ...arp_spoofing_prevention add gateway_ip ipaddr gateway_mac macaddr ports portlist all delete gateway_ip ipaddr Parameters add Specify to add an ARP spoofing prevention entry gateway_ip Specify a gateway IP address to be configured ipaddr Enter the IP address used for this configuration here gateway_mac Specify a gateway MAC address to be configured macaddr Enter the MAC address used for this config...

Page 153: ...y_mac 00 00 00 11 11 11 ports 1 1 1 2 Success DGS 3120 24TC admin 9 2 show arp_spoofing_prevention Description This command is used to show the ARP spoofing prevention entry Format show arp_spoofing_prevention Parameters None Restrictions None Example To display the ARP spoofing prevention entries DGS 3120 24TC admin show arp_spoofing_prevention Command show arp_spoofing_prevention Gateway IP Gate...

Page 154: ...e the asymmetric VLAN function on the Switch Format enable asymmetric_vlan Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable asymmetric VLANs DGS 3120 24TC admin enable asymmetric_vlan Command enable asymmetric_vlan Success DGS 3120 24TC admin 10 2 disable asymmetric_vlan Description This command is used to disable the asym...

Page 155: ...dmin disable asymmetric_vlan Command disable asymmetric_vlan Success DGS 3120 24TC admin 10 3 show asymmetric_vlan Description This command is used to display the asymmetric VLAN state on the Switch Format show asymmetric_vlan Parameters None Restrictions None Example To display the asymmetric VLAN state currently set on the Switch DGS 3120 24TC admin show asymmetric_vlan Command show asymmetric_v...

Page 156: ... TFTP server IP address from the DHCP server Then the Switch will download the configuration file from the TFTP server for configuration of the system Format enable autoconfig Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable autoconfig DGS 3120 24TC admin enable autoconfig Command enable autoconfig Success DGS 3120 24TC admin 11 2 di...

Page 157: ...n disable autoconfig Command disable autoconfig Success DGS 3120 24TC admin 11 3 show autoconfig Description This command is used to display if the auto configuration is enabled or disabled Format show autoconfig Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To show autoconfig status DGS 3120 24TC admin show autoconfig Command sh...

Page 158: ...isable ipv4 state enable disable dhcpv6_client enable disable rapid_commit ip_directed_broadcast enable disable dhcp_option12 hostname hostname 63 clear_hostname state enable disable delete ipif ipif_name 12 ipv6address ipv6networkaddr all enable ipif ipif_name 12 all disable ipif ipif_name 12 all show ipif ipif_name 12 enable ipif_ipv6_link_local_auto ipif_name 12 all disable ipif_ipv6_link_local...

Page 159: ... admin level user dlink DGS 3120 24TC admin create account admin dlink Command create account admin dlink Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3120 24TC admin To create the user level user Remote Manager DGS 3120 24TC admin create account user Remote Manager Command create account user Remote Manager Enter a case sensitive new password Enter...

Page 160: ...d form password the length is fixed to 35 bytes long The assword is case sensitive Restrictions Only Administrator level users can issue this command Example To configure the user password of dlink account DGS 3120 24TC admin config account dlink Command config account dlink Enter a old password Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3120 24TC...

Page 161: ...e Access Level admin Admin oper Operator power Power_user user User Total Entries 4 DGS 3120 24TC admin 12 4 delete account Description This command is used to delete an existing account Format delete account username 15 Parameters username 15 Name of the user who will be deleted Restrictions Only Administrator level users can issue this command Example To delete the user account System DGS 3120 2...

Page 162: ...S 3120 24TC Gigabit Ethernet Switch MAC Address 00 01 02 03 04 00 IP Address 10 90 90 90 Manual VLAN Name default Subnet Mask 255 0 0 0 Default Gateway 0 0 0 0 Boot PROM Version Build 3 00 501 Firmware Version Build 4 00 015 Hardware Version B1 Firmware Type RI Serial Number PVT93CB000001 System Name System Location System Uptime 0 days 0 hours 7 minutes 47 seconds System Contact Spanning Tree Dis...

Page 163: ...ts are numbered between 1 and 65535 The well known TCP port for the TELNET protocol is 23 Restrictions Only Administrator and Operator level users can issue this command Example To enable TELNET and configure port number DGS 3120 24TC admin enable telnet 23 Command enable telnet 23 Success DGS 3120 24TC admin 12 7 disable telnet Description This command is used to manage the Switch via TELNET base...

Page 164: ...t_number 1 65535 Parameters tcp_port_number 1 65535 Optional The TCP port number TCP ports are numbered between 1 and 65535 The well known TCP port for the WEB protocol is 80 Restrictions Only Administrator and Operator level users can issue this command Example To enable HTTP and configure port number DGS 3120 24TC admin enable web 80 Command enable web 80 Note SSL will be disabled if web is enab...

Page 165: ...120 24TC admin 12 10 reboot Description This command is used to restart the Switch Format reboot force_agree Parameters force_agree Optional When force_agree is specified the reboot command will be executed immediatedly without further confirmation Restrictions Only Administrator level users can issue this command Example To reboot the Switch DGS 3120 24TC admin reboot Command reboot Are you sure ...

Page 166: ...e will not do save neither reboot system Optional If you specify the system keyword all parameters are reset to default settings Then the Switch will do factory reset save and reboot force_agree Optional When force_agree is specified the reset command will be executed immediatedly without further confirmation Restrictions Only Administrator level users can issue this command Example To reset the S...

Page 167: ...0 24TC admin 12 13 create ipif RI and EI Mode Only Description This command is used to create an IP interface Format create ipif ipif_name 12 network_address vlan_name 32 secondary state enable disable proxy_arp enable disable local enable disable Parameters ipif Specify the name of the IP interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long network_add...

Page 168: ...and create ipif Inter2 192 168 16 1 24 default state enable secondary Success DGS 3120 24TC admin 12 14 config ipif Description This command is used to configure the IP interface Format config ipif ipif_name 12 ipaddress network_address vlan vlan_name 32 state enable disable proxy_arp enable disable local enable disable bootp dhcp ipv6 ipv6address ipv6networkaddr state enable disable ipv4 state en...

Page 169: ...Pv6 interface sate will be disabled ipv4 Specify that the IPv4 configuration will be done state Specify that the IPv4 interface state will be set to enabled or disabled enable Specify that the IPv4 interface sate will be enabled disable Specify that the IPv4 interface sate will be disabled dhcpv6_client Specify the DHCPv6 client state of the interface enable Enable the DHCPv6 client state of the i...

Page 170: ... of the IP interface ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long ipv6address Optional Specify the IPv6 network address The address should specify a host address and length of network prefix There can be multiple V6 addresses defined on an interface ipv6networkaddr Enter the IPv6 address used here all Specify that all the IP interfaces will be used R...

Page 171: ...can issue this command Example To enable an IP interface DGS 3120 24TC admin enable ipif newone Command enable ipif newone Success DGS 3120 24TC admin 12 17 disable ipif Description This command is used to disable an IP interface Format disable ipif ipif_name 12 all Parameters ipif_name Specify the name of the IP interface ipif_name 12 Enter the IP interface name used here This name can be up to 1...

Page 172: ...the IP interface name used here This name can be up to 12 characters long Restrictions None Example To display an IP interface DGS 3120 24TC admin show ipif Command show ipif IP Interface System VLAN Name default Interface Admin State Enabled IPv4 Address 10 90 90 90 8 Manual Primary Proxy ARP Disabled Local Disabled IP Directed Broadcast Disabled IPv4 State Enabled IPv6 SLAAC state Disabled Defau...

Page 173: ... Format enable ipif_ipv6_link_local_auto ipif_name 12 all Parameters ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long all Specify that all the IP interfaces will be used Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the IP interface for IPv6 link local automatic DGS 3120 24TC admin enable ipi...

Page 174: ...name 12 Parameters ipif_name 12 Optional Enter the Ip interface name used here This name can be up to 12 characters long Restrictions Only Administrator Operator and Power User level users can issue this command Example T o display the link local address automatic configuration state DGS 3120 24TC admin show ipif_ipv6_link_local_auto Command show ipif_ipv6_link_local_auto IPIF System Automatic Lin...

Page 175: ...efault route has higher route preference than it Format config ipif ipv6_autoconfig ipif_name 12 state enable disable default Parameters ipif_name 12 Enter the IP interface s name that will be configured here This name can be up 12 characters long state Specify the IPv6 automatic configuration s state enable Specify to enable IPv6 automatic configuration disable Specify to disable IPv6 automatic c...

Page 176: ...ration Thus BPDU protection can only be enabled on STP disabled port BPDU protection has high priority than fbpdu setting configured by configure STP command in determination of BPDU handling That is when fbpbu is configured to forward STP BPDU but BPDU protection is enabled then the port will not forward STP BPDU Format config bpdu_protection ports portlist all state enable disable mode drop bloc...

Page 177: ...isable and re enable the port Format config bpdu_protection recovery_timer sec 60 1000000 infinite Parameters recovery_timer Specified the bpdu_protection Auto Recovery recovery_timer The default value of recovery_timer is 60 sec 60 1000000 The timer in seconds used by the Auto Recovery mechanism to recover the port The valid range is 60 to 1000000 infinite The port will not be auto recovered Rest...

Page 178: ... of attack_detected and attack_cleared shall be trapped or logged Restrictions Only Administrator Operator and Power User level users can issue this command Example To config the bpdu_protection trap state as both for the entire switch DGS 3120 24TC admin config bpdu_protection trap both Command config bpdu_protection trap both Success DGS 3120 24TC admin 13 4 enable bpdu_protection Description Th...

Page 179: ... Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable bpdu_protection function globally for the entire switch DGS 3120 24TC admin disable bpdu_protection Command disable bpdu_protection Success DGS 3120 24TC admin 13 6 show bpdu_protection Description This command is used to display BPDU protection global configuration or per port configurat...

Page 180: ...otection Log Status Both DGS 3120 24TC admin To show the bpdu_protection status ports 1 12 DGS 3120 24TC admin show bpdu_protection ports 1 1 1 12 Command show bpdu_protection ports 1 1 1 12 Port State Mode Status 1 1 Enabled Drop Normal 1 2 Disabled Shutdown Normal 1 3 Disabled Shutdown Normal 1 4 Disabled Shutdown Normal 1 5 Disabled Shutdown Normal 1 6 Disabled Shutdown Normal 1 7 Disabled Shut...

Page 181: ...he test will obtain the distance of the cable Since the status is link up the cable will not have the short or open problem But the test may still detect the crosstalk problem When a port is in link down status the link down may be caused by many factors 1 When the port has a normal cable connection but the remote partner is powered off the cable diagnosis can still diagnose the health of the cabl...

Page 182: ... link partner is powered down with no errors and the link is down this command cannot detect the cable length When the link partner is powered down with errors this command can detect whether the error is open short or crosstalk In this case this command can also detect the distance of the error When there is no link partner with no errors this command can detect the cable length When there is no ...

Page 183: ...78 DGS 3120 24TC admin cable_diag ports 1 1 1 11 1 12 Command cable_diag ports 1 1 1 11 1 12 Perform Cable Diagnostics Port Type Link Status Test Result Cable Length M 1 1 1000BASE T Link Up OK 1 1 11 1000BASE T Link Down No Cable 1 12 1000BASE T Link Down No Cable DGS 3120 24TC admin ...

Page 184: ...downloading the configuration all configuration commands should not be logged When the user under AAA authentication the user name should not changed if user uses enable admin command to replace its privilege Format enable command logging Parameters None Restrictions Only Administrator level users can issue this command Example To enable the command logging function DGS 3120 24TC admin enable comm...

Page 185: ...mmand disable command logging Success DGS 3120 24TC admin 15 3 show command logging Description This command is used to display the Switch s general command logging configuration status Format show command logging Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To show the command logging configuration status DGS 3120 24TC admin show command ...

Page 186: ...xStack DGS 3120 Series Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 181 ...

Page 187: ... RI and EI Mode Only show authentication ports portlist enable authorization attributes disable authorization attributes show authorization config authentication server failover local permit block show authentication show authentication mac_format 16 1 create authentication guest_vlan RI and EI Mode Only Description This command is used to assign a static VLAN to be guest VLAN The specific VLAN wh...

Page 188: ... Specify the guest VLAN by VLAN name vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify the guest VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID here This ID must be between 1 and 4094 Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete guest VLAN configuration DGS 3120 24TC admin delete authentic...

Page 189: ...orts all Success DGS 3120 24TC admin 16 4 config authentication ports Description This command is used to configure security port s Format config authentication ports portlist all auth_mode port_based host_based vlanid vid_list state enable disable multi_authen_methods none any dot1x_impb impb_jwac impb_wac mac_impb mac_jwac 1 Parameters portlist Enter the list of ports to be configured here all S...

Page 190: ...irst and then IMPB will be verified Both authentications need to be passed impb_wac WAC will be verified first and then IMPB will be verified Both authentications need to be passed mac_impb MAC will be verified first and then IMPB will be verified Both authentications need to be passed mac_jwac MAC will be verified first and then JWAC will be verified Both authentications need to be passed Restric...

Page 191: ...rs 1 Use one delimiter e g aabbcc ddeeff 2 Use two delimiters e g aabb ccdd eeff 5 Use five delimiters e g aa bb cc dd ee ff Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the MAC address format to IEFT style DGS 3120 24TC admin config authentication mac_format case uppercase delimiter hyphen number 5 Command config authentication ma...

Page 192: ...1 1 1 24 Total Entries 1 DGS 3120 24TC admin 16 7 show authentication ports Description This command is used to display authentication setting on port s Format show authentication ports portlist Parameters portlist Enter a list of ports to be displayed If not specify the port list displays compound authentication setting of all ports Restrictions None Example This example displays authentication s...

Page 193: ...d 1 10 None Host based 1 11 None Host based 1 12 None Host based 1 13 None Host based 1 14 None Host based 1 15 None Host based 1 16 None Host based 1 17 None Host based 1 18 None Host based 1 19 None Host based 1 20 None Host based CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All 16 8 enable authorization attributes Description This command is used to enable authorization Format enable ...

Page 194: ...isable authorization Format disable authorization attributes Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example This example sets authorization global state disabled DGS 3120 24TC admin disable authorization attributes Command disable authorization attributes Success DGS 3120 24TC admin 16 10 show authorization Description This comman...

Page 195: ... Format config authentication server failover local permit block Parameters local Use local DB to authenticate the client permit The client is always regarded as authenticated block Block the client Default setting Restrictions Only Administrator Operator and Power User level users can issue this command Example Set authentication server auth fail over state DGS 3120 24TC admin config authenticati...

Page 196: ...configuration DGS 3120 24TC admin show authentication Command show authentication Authentication Server Failover Block DGS 3120 24TC admin 16 13 show authentication mac_format Description This command is used to display the authentication MAC format settings Format show authentication mac_format Parameters None Restrictions None Example To display the authentication MAC format settings ...

Page 197: ...Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 192 DGS 3120 24TC admin show authentication mac_format Command show authentication mac_format Case Uppercase Delimiter Hyphen Delimiter Number 5 DGS 3120 24TC admin ...

Page 198: ...followed by up to three filter strings ex stp A filter string is enclosed by symbol The following describes the meaning of the each filter type include includes lines that contain the specified filter string exclude excludes lines that contain the specified filter string begin The first line that contains the specified filter string will be the first line of the output The relationship of multiple...

Page 199: ...be up to 80 characters long include Optional Include lines that contain the specified filter string exclude Optional Exclude lines that contain the specified filter string begin Optional The first line that contains the specified filter string will be the first line of the output filter_string 80 A filter string is enclosed by symbol Thus the filter string itself cannot contain the character The f...

Page 200: ... disabled disable sim disable stp disable ssh Output truncated DGS 3120 24TC admin 17 2 config configuration Description This command is used to select a configuration file as the next boot up configuration or to apply a specific configuration to the system This command is required when multiple configuration files are supported Format config configuration unit unit_id pathname boot_up active Para...

Page 201: ... be specified If the configuration ID or configuration file name is not specified the next boot up configuration is implied Format save config pathname log all Parameters config Optional Specify to save the configuration to a file pathname The pathname specifies the absolute pathname on the device file system If pathname is not specified it refers to the boot up configuration file log Optional Spe...

Page 202: ...itch CLI Reference Guide 197 Format show boot_file Parameters None Restrictions None Example To display the boot file DGS 3120 24TC admin show boot_file Command show boot_file Bootup Firmware c runtime had Bootup Configuration c config cfg DGS 3120 24TC admin ...

Page 203: ...ding the trap by the SNMP agent when the configuration is saved in NVRAM enable Send the trap by the SNMP agent when the configuration is saved in NVRAM disable No trap will be send upload Optional Enable or disable sending the trap by the SNMP agent when successfully uploading configuration enable Send the trap by the SNMP agent when successfully uploading configuration disable No trap will be se...

Page 204: ...xStack DGS 3120 Series Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 199 ...

Page 205: ...uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 delete cfm ma string 22 ma_index uint 1 4294967295 md string 22 md_index uint 1 4294967295 delete cfm md string 22 md_index uint 1 4294967295 enable cfm disable cfm config cfm ports portlist state enable disable show cfm ports portlist show cfm md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid int 1 8191 ...

Page 206: ... must be between 1 and 4294967295 level Specify the maintenance domain level int 0 7 Enter the maintenance domain level here This value must be between 0 and 7 Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a maintenance domain called op_domain and assign a maintenance domain level of 2 DGS 3120 24TC admin create cfm md op_domain level ...

Page 207: ...he sender ID TLV none Do not transmit the sender ID TLV This is the default value chassis Transmit the sender ID TLV with the chassis ID information manage Transmit the sender ID TLV with the managed address information chassis_manage Transmit sender ID TLV with chassis ID information and manage address information Restrictions Only Administrator Operator and Power User level users can issue this ...

Page 208: ...ified for an MA can be located in different devices MEPs must be created on the ports of these devices explicitly An MEP will transmit a CCM packet periodically across the MA The receiving MEP will verify these received CCM packets from the other MEPs against this MEP list for the configuration integrity check Format config cfm ma string 22 ma_index uint 1 4294967295 md string 22 md_index uint 1 4...

Page 209: ...aintenance domain that this MA is associated with This is the default value ccm_interval Optional This is the CCM interval 100ms Specify that the CCM interval will be set to 100 milliseconds Not recommended 1sec Specify that the CCM interval will be set to 1 second 10sec Specify that the CCM interval will be set to 10 seconds This is the default value 1min Specify that the CCM interval will be set...

Page 210: ...tion name string 22 Enter the maintenance association name used here This name can be up to 22 characters long ma_index Specify the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 direction This is the MEP direction inward Specify the inward facing up MEP outward Specify the outward facing down MEP port ...

Page 211: ...cters long ma_index Specify the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 state Optional This is the MEP administrative state enable Specify that the MEP will be enabled disable Specify that the MEP will be disabled This is the default value ccm Optional This is the CCM transmission state enable Sp...

Page 212: ...n This command is used to delete a previously created MEP Format delete cfm mep mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 Parameters mepname Specify the MEP name string 32 Enter the MEP name used here This name can be up to 32 characters long mepid Specify the MEP ID int 1 8191 Enter the MEP ID used here This value must be be...

Page 213: ...x uint 1 4294967295 md string 22 md_index uint 1 4294967295 Parameters string 22 Enter the maintenance association name This name can be up to 22 characters long ma_index Specify the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 md Specify the maintenance domain name string 22 Enter the maintenance dom...

Page 214: ...t delete cfm md string 22 md_index uint 1 4294967295 Parameters string 22 Enter the maintenance domain name This name can be up to 22 characters long md_index Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295 Restrictions Only Administrator Operator and Power User level users can issue this command Examp...

Page 215: ...he CFM globally DGS 3120 24TC admin enable cfm Command enable cfm Success DGS 3120 24TC admin 19 11 disable cfm Description This command is used to disable the CFM globally Format disable cfm Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the CFM globally DGS 3120 24TC admin disable cfm Command disable cfm Success DGS 3...

Page 216: ...function is disabled on that port Format config cfm ports portlist state enable disable Parameters portlist Enter the list of ports used for this configuration here state Specify that the the CFM function will be enabled or disabled enable Specify that the the CFM function will be enabled disable Specify that the the CFM function will be disabled Restrictions Only Administrator Operator and Power ...

Page 217: ...nce domain name used here This name can be up to 22 characters long md_index Optional Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295 ma Optional Specify the maintenance association name string 22 Enter the maintenance association name used here This name can be up to 22 characters long ma_index Option...

Page 218: ...how cfm md op_domain Command show cfm md op_domain MD Index 1 MD Name op_domain MD Level 2 MIP Creation Explicit SenderID TLV None MA Index MA Name VID 1 op1 1 DGS 3120 24TC admin show cfm md op_domain ma op1 Command show cfm md op_domain ma op1 MA Index 1 MA Name op1 MA VID 1 MIP Creation Defer CCM Interval 1 second SenderID TLV Defer MEPID List 1 MEPID Direction Port Name MAC Address 1 Inward 1 ...

Page 219: ...f Sequence CCMs 0 received Cross connect CCMs 0 received Error CCMs 0 received Normal CCMs 0 received Port Status CCMs 0 received If Status CCMs 0 received CCMs transmitted 71 In order LBRs 0 received Out of order LBRs 0 received Next LTM Trans ID 0 Unexpected LTRs 0 received LBMs Transmitted 0 AIS PDUs 0 received AIS PDUs Transmitted 0 LCK PDUs 0 received LCK PDUs Transmitted 0 Remote MEPID MAC A...

Page 220: ...dex Optional Specify the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 Restrictions None Example To show the CFM faults DGS 3120 24TC admin show cfm fault Command show cfm fault MD Name MA Name MEPID Status AIS Status LCK Status op_domain op1 1 Cross connect CCM Received DGS 3120 24TC admin 19 16 show ...

Page 221: ... loopback test The MAC address represents the destination MEP or MIP that can be reached by this MAC address The MEP represents the source MEP to initiate the loopback message Format cfm loopback macaddr mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 num int 1 65535 length int 0 1500 pattern string 1500 pdu_priority int 0 7 Parame...

Page 222: ...1500 characters long pdu_priority Optional The 802 1p priority to be set in the transmitted LBMs If not specified it uses the same priority as CCMs and LTMs sent by the MA int 0 7 Enter the PDU priority value This value must be between 0 and 7 Restrictions Only Administrator Operator and Power User level users can issue this command Example To transmit a LBM DGS 3120 24TC admin cfm loopback 00 01 ...

Page 223: ...4 int 2 255 Enter the link trace message TTL value This value must be between 2 and 255 pdu_priority Optional The 802 1p priority to be set in the transmitted LTM If not specified it uses the same priority as CCMs sent by the MA int 0 7 Enter the PDU priority value This value must be between 0 and 7 Restrictions Only Administrator Operator and Power User level users can issue this command Example ...

Page 224: ...ex uint 1 4294967295 Enter the maintenance association index value This value must between 1 and 4294967295 trans_id Optional Specify the identifier of the transaction displayed uint Enter the transaction ID used Restrictions None Example To show the link trace reply when the all MPs reply LTRs function is enabled DGS 3120 24TC admin show cfm linktrace mepname mep1 trans_id 26 Command show cfm lin...

Page 225: ...4967295 mepid int 1 8191 mepname string 32 Parameters md Optional Specify the maintenance domain name string 22 Enter the maintenance domain name This name can be up to 22 characters long md_index Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value This value must be between 1 and 4294967295 ma Optional Specify the maintenance association name string 22 ...

Page 226: ...base entries All entries in the MIP CCM database will be shown A MIP CCM entry is similar to a FDB which keeps the forwarding port information of a MAC entry Format show cfm mipccm Parameters None Restrictions None Example To show MIP CCM database entries DGS 3120 24TC admin show cfm mipccm Command show cfm mipccm MA VID MAC Address Port opma 1 xx xx xx xx xx xx 2 opma 1 xx xx xx xx xx xx 3 Total ...

Page 227: ... this command Example To enable the all MPs reply LTRs function DGS 3120 24TC admin config cfm mp_ltr_all enable Command config cfm mp_ltr_all enable Success DGS 3120 24TC admin 19 23 show cfm mp_ltr_all Description This command is used to show the current configuration of the all MPs reply LTRs function Format show cfm mp_ltr_all Parameters None Restrictions None Example To show the configuration...

Page 228: ...up to 22 characters long md_index Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value This value must between 1 and 4294967295 ma Specify the maintenance association name string 22 Enter the maintenance association name This name can be up to 22 characters long ma_index Specify the maintenance association index uint 1 4294967295 Enter the maintenance ass...

Page 229: ...unters Format show cfm pkt_cnt ports portlist rx tx rx tx ccm Parameters ports Optional Specify the port counters to show If not specified all ports will be shown portlist Enter the list of ports used for this configuration here rx Optional Specify to display the RX counter tx Optional Specify to display the TX counter If not specified both of them will be shown rx Optional Specify to display the ...

Page 230: ... 4 3 578 578 0 0 0 0 4 578 578 0 0 0 0 5 578 578 0 0 0 0 6 578 578 0 0 0 0 7 578 578 0 0 0 0 8 578 578 0 0 0 0 9 578 578 0 0 0 0 10 578 578 0 0 0 0 11 578 578 0 0 0 0 12 578 578 0 0 0 0 DGS 3120 24TC admin show cfm pkt_cnt ccm Command show cfm pkt_cnt ccm CCM RX counters XCON Cross connect CCMs Error Error CCMs Normal Normal CCMs MEP Name VID Port Level Direction XCON Error Normal mep1 1 1 2 inwar...

Page 231: ...CCM RX counters Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear the CFM packet s RX TX counters DGS 3120 24TC admin clear cfm pkt_cnt Command clear cfm pkt_cnt Success DGS 3120 24TC clear cfm pkt_cnt ccm Command clear cfm pkt_cnt ccm Success DGS 3120 24TC admin 19 27 config cfm trap Description This command is used to configure the state ...

Page 232: ...ble the CFM trap state This is the default disable Disable the CFM trap state Restrictions Only Administrator Operator and Power User level users can issue this command Example DGS 3120 24TC admin config cfm trap ais state enable Command config cfm trap ais state enable Success DGS 3120 24TC admin ...

Page 233: ...ist NOTE This default client MD level is not a fixed value It may change when creating or deleting higher level MD and MA on the device When the most immediate client layer MIPs and MEPs do not exist the default client MD level cannot be calculated If the default client MD level cannot be calculated and user doesn t designate a client level the AIS and LCK PDU cannot be transmitted Format config c...

Page 234: ...nd Operator level users can issue this command Example To configure the AIS function enabled and client level is 5 DGS 3120 24TC admin config cfm ais md op domain ma op ma mepid 1 state enable level 5 Command config cfm ais md op domain ma op ma mepid 1 state enable level 5 Success DGS 3120 24TC admin 20 2 config cfm lock Description This command is used to configure the parameters of LCK function...

Page 235: ... LCK PDU The default client MD level is MD level at which the most immediate client layer MIPs and MEPs exist int 0 7 Enter the client level ID here This value must be between 0 and 7 state Optional Specify to enable or disable the LCK function enable Specify that the LCK function will be enabled disable Specify that the LCK function will be disabled Restrictions Only Administrator Operator and Po...

Page 236: ...which sends LCK frame int 1 8191 Enter the MEP ID value here This value must be between 1 and 8191 remote_mepid The peer MEP is the target of management action int 1 8191 Enter the remote MEP ID used here This value must be between 1 and 8191 action Specify to start or to stop the management lock function start Specify to start the management lock function stop Specify to stop the management lock ...

Page 237: ...4094 source_ip ipaddr destination_ip ipaddr dscp value 0 63 icmp type value 0 255 code value 0 255 igmp type value 0 255 tcp src_port value 0 65535 dst_port value 0 65535 flag all urg ack psh rst syn fin udp src_port value 0 65535 dst_port value 0 65535 protocol_id value 0 255 user_define hex 0x0 0xffffffff packet_content offset_0 15 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0...

Page 238: ...P code traffic igmp Specify that the rule applies to IGMP traffic type Optional Specify that the rule applies to IGMP type traffic tcp Specify that the rule applies to TCP traffic src_port_mask Optional Specify the TCP source port mask hex 0x0 0xffff Enter the source TCP port mask here dst_port_mask Optional Specify the TCP destination port mask hex 0x0 0xffff Enter the destination TCP port mask h...

Page 239: ...ecify the IPv6 class flowlabel Optional Specify the IPv6 flowlabel source_ipv6_mask Optional Specify an IPv6 source submask ipv6mask Enter the IPv6 source submask here destination_ipv6_mask Optional Specify an IPv6 destination submask ipv6mask Enter the IPv6 destination submask here tcp Optional Specify that the rule applies to TCP traffic src_port_mask Specify an IPv6 Layer 4 TCP source port mask...

Page 240: ...k 20 0 0 0 destination_ip_mask 10 0 0 0 dscp icmp type code Success DGS 3120 24TC admin 21 2 delete cpu access_profile Description This command is used to delete CPU access list rules Format delete cpu access_profile profile_id value 1 5 all Parameters profile_id Specify the index of access list profile value 1 5 Enter the profile ID value here This value must be between 1 and 5 all Specify that a...

Page 241: ...le ID value here This value must be between 1 and 5 access_id Specify the index of access list entry The range of this value is 1 100 value 1 100 Enter the access ID here This value must be between 1 and 100 ethernet Specify that the profile type will be Ethernet vlan Optional Specify the VLAN name used vlan_name 32 Enter the name of the VLAN here This name can be up to 32 characters long vlan_id ...

Page 242: ...fy that the TCP flag field mask will be set to urg ack Specify that the TCP flag field mask will be set to ack psh Specify that the TCP flag field mask will be set to psh rst Specify that the TCP flag field mask will be set to rst syn Specify that the TCP flag field mask will be set to syn fin Specify that the TCP flag field mask will be set to fin udp Specify that the rule applies to UDP traffic ...

Page 243: ...ameter that can be configured hex 0x0 0xffff Enter the TCP source port mask value here dst_port Optional Specify the value of the IPv6 Layer 4 TCP destination port value 0 65535 Enter the TCP destination port value here This value must be between 0 and 65535 mask Specify an additional mask parameter that can be configured hex 0x0 0xffff Enter the TCP destination port mask value here udp Optional S...

Page 244: ... 1 ip vlan default source_ip 20 2 2 3 destination_ip 10 1 1 252 dscp 3 icmp type 11 code 32 port 1 deny Command config cpu access_profile profile_id 1 add access_id 1 ip vlan default source_ip 20 2 2 3 destination_ip 10 1 1 252 dscp 3 icmp type 11 code 32 port 1 deny Success DGS 3120 24TC admin 21 4 enable cpu interface filtering Description This command is used to enable CPU interface filtering c...

Page 245: ...and Example To disable cpu_interface_filtering DGS 3120 24TC admin disable cpu_interface_filtering Command disable cpu_interface_filtering Success DGS 3120 24TC admin 21 6 show cpu access_profile Description This command is used to display current access list table Format show cpu access_profile profile_id value 1 5 Parameters profile_id Optional Specify the index of access list profile value 1 5 ...

Page 246: ...sabled CPU Interface Access Profile Table Total Unused Rule Entries 497 Total Used Rule Entries 3 Profile ID 1 Type IPv6 MASK on Source IPv6 Addr FFFF FFFF FFFF Unused Rule Entries 99 Rule ID 1 Ports 2 20 3 20 Match on Source IPv6 2103 16 16 Action Deny Profile ID 2 Type IPv4 MASK on Source IP 255 255 0 0 Unused Rule Entries 99 Rule ID 1 Ports 2 20 3 20 Match on Source IP 172 18 0 0 Action Deny ...

Page 247: ... Match on Source MAC 00 00 22 B0 61 51 Action Deny Profile ID 4 Type User Defined MASK on Offset 0 15 0xFFF000FF 0xFFFFFFFF 0xFFFFFFFF 0xFFFFFFFF Offset 16 31 0xFFFFFFFF 0xFFFFFFFF 0xFF00FFFF 0xFFFFFFFF Offset 32 47 0xFFFFFFFF 0xFFFFFFFF 0x000FFFFF 0xFFFFFFFF Offset 48 63 0xFFFFFFFF 0xFFFFFFFF 0xFFFFF000 0xFFFFFFFF Offset 64 79 0xFFFFFFFF 0xFFFFFFFF 0xFFFFFFFF 0xFFFFF000 Unused Rule Entries 100 DG...

Page 248: ... debug ripng state enable RI Mode Only debug ripng state disable RI Mode Only debug ripng show flag RI Mode Only debug ripng flag interface packet all rx tx route all state enable disable RI Mode Only no debug address_binding RI and EI Mode Only debug show address_binding binding_state_table nd_snooping dhcpv6_snooping RI and EI Mode Only debug ospf neighbor_state_change interface_state_change dr_...

Page 249: ...tion This command is used to dump clear or upload the software error log to a TFTP server Format debug error_log dump clear upload_toTFTP ipaddr path_filename 64 Parameters dump Display the debug message of the debug log clear Clear the debug log upload_toTFTP Upload the debug log to a TFTP server specified by IP address ipaddr Specify the IPv4 address of the TFTP server path_filename 64 The pathn...

Page 250: ...2C 801D703C 8013B8A4 802AE754 802A5E0C To clear the error log DGS 3120 24TC admin debug error_log clear Command debug error_log clear Success DGS 3120 24TC admin To upload the error log to TFTP server DGS 3120 24TC admin debug error_log upload_toTFTP 10 0 0 90 debug log txt Command debug error_log upload_toTFTP 10 0 0 90 debug log txt Connecting to server Done Upload error log Done DGS 3120 24TC a...

Page 251: ...the debug buffer Then the functions which will be used in the system s memory pool resources may fail to excute these commands successfully Use the debug buffer clear command to release the system s memroy pool resources manually Format debug buffer utilization dump clear upload_toTFTP ipaddr path_filename 64 Parameters utilization Display the debug buffer s state dump Display the debug message in...

Page 252: ...fer upload_toTFTP 10 0 0 90 debugcontent txt Connecting to server Done Upload debug file Done DGS 3120 24TC admin 22 4 debug output Description This command is used to set a specified module s debug message output to debug buffer or local console If the user uses the command in a Telnet session the error message also is output to the local console NOTE When selecting to output to the debug buffer ...

Page 253: ...TC admin 22 5 debug config error_reboot Description This command is used to set if the Switch needs to be rebooted when a fatal error occurs When the error occurs the watchdog timer will be disabled by the system first and then all debug information will be saved in NVRAM If the error_reboot is enabled the watchdog shall be enabled after all information is stored into NVRAM Format debug config err...

Page 254: ...tate enable disable Parameters enable Enable the debug state disable Disable the debug state Restrictions Only Administrator level users can issue this command Example To set the debug state to disabled DGS 3120 24TC admin debug config state disable Command debug config state disable Success DGS 3120 24TC admin 22 7 debug clear cpu port counter Description This command is used to clear cpu port co...

Page 255: ...tocol all IPv6 ICMP TCP UDP OSPFV3 all STACK by_priority Parameters portlist Specify a range of ports all Specify all ports by_cos Display by Cos by_reason Display by reason by_protocol Display by protocol types L2 Display by L2 protocol ARP Display by ARP protocol IPv4 Display by IPv4 protocol ICMP Display by ICMP TCP Display by TCP UDP Display by UDP multicast protocol Display by multicast proto...

Page 256: ...2 rx 0 tx 0 3 rx 0 tx 0 4 rx 0 tx 0 5 rx 0 tx 0 6 rx 0 tx 0 7 rx 0 tx 0 unknown rx 0 tx 0 total rx 0 tx 0 Ports 2 CoS 0 rx 0 tx 0 1 rx 0 tx 0 2 rx 0 tx 0 3 rx 0 tx 0 4 rx 0 tx 0 5 rx 0 tx 0 6 rx 0 tx 0 7 rx 0 tx 0 unknown rx 0 tx 0 total rx 0 tx 0 DGS 3120 24TC admin 22 9 debug show jwac auth_info Description This command is used to show debug information of JWAC Format debug show jwac auth_info P...

Page 257: ...F FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF Connection DB No Host Current AUTH DB _jwac_db_nodes No Host Ports AUTH Info _jwac_db_nodes port mac state last_bytes authing_cnt authed_cnt JWAC Web data jwac_web_auth_result_list CTRL...

Page 258: ...scription This command is used to enable the DHCPv6 client debug function Format debug dhcpv6_client state enable Parameters None Restrictions Only Administrator level users can issue this command Example To enabled the DHCPv6 client debug function DGS 3120 24TC admin debug dhcpv6_client state enable Command debug dhcpv6_client state enable Success DGS 3120 24TC admin 22 12 debug dhcpv6_client sta...

Page 259: ...120 24TC admin 22 13 debug dhcpv6_client output Description This command is used to set debug message to output to buffer or console Format debug dhcpv6_client output buffer console Parameters buffer Let the debug message output to buffer console Let the debug message output to console Restrictions Only Administrator level users can issue this command Example To set debug information to output to ...

Page 260: ...packet sending debug flag state Specify the state of the designated flags enable Enable the designated flags disable Disable the designated flags Restrictions Only Administrator level users can issue this command Example To enable DHCPv6client packet sending debug flags DGS 3120 24TC admin debug dhcpv6_client packet sending state enable Command debug dhcpv6_client packet sending state enable Succe...

Page 261: ...mand is used to disable DHCPv6 relay debug functions Format debug dhcpv6_relay state disable Parameters None Restrictions Only Administrator level users can issue this command Example To disable DHCPv6 relay debug functions DGS 3120 24TC admin debug dhcpv6_relay state disable Command debug dhcpv6_relay state disable Success DGS 3120 24TC admin 22 17 debug dhcpv6_relay output Description This comma...

Page 262: ... or disable the debug information flag of the DHCPv6 relay packet including packets receiving and sending Format debug dhcpv6_relay packet all receiving sending state enable disable Parameters all Set packet receiving and sending debug flags receiving Set packet receiving debug flag sending Set packet sending debug flag state Specify the state of the designated flags enable Enable the designated f...

Page 263: ... debug dhcpv6_relay hop_count state enable Command debug dhcpv6_relay hop_count state enable Success DGS 3120 24TC admin 22 20 debug address_binding RI and EI Mode Only Description This command is used to start the IMPB debug when the IMPB module receives an ARP IP packet or a DHCP packet Format debug address_binding event dhcp all state enable disable Parameters event To print out the debug messa...

Page 264: ... 24TC admin 22 21 debug ripng state enable RI Mode Only Description This command is used to enable the RIPng debug flag Format debug ripng state enable Parameters None Restrictions Only Administrator level users can issue this command Example To enable RIPng debug globally DGS 3120 24TC admin debug ripng state enable Command debug ripng state enable Success DGS 3120 24TC admin 22 22 debug ripng st...

Page 265: ...and debug ripng state disable Success DGS 3120 24TC admin 22 23 debug ripng show flag RI Mode Only Description This command is used to display the RIPng debug flag setting Format debug ripng show flag Parameters None Restrictions Only Administrator level users can issue this command Example To show the current RIPng debug flag setting DGS 3120 24TC admin debug ripng show flag Command debug ripng s...

Page 266: ...nd packets with debug flag route Optional The state of the RIPng route debug The default setting is disabled all Specify to configure all debug flags state Specify the designated flag status enable Enable the designated flags disable Disable designated flags Restrictions Only Administrator level users can issue this command Example To enable the ripng interface debug DGS 3120 24TC admin debug ripn...

Page 267: ...ess DGS 3120 24TC admin 22 26 debug show address_binding binding_state_table RI and EI Mode Only Description This command is used to display the ND snooping and DHCPv6 binding state table Format debug show address_binding binding_state_table nd_snooping dhcpv6_snooping Parameters nd_snooping Display the ND Snooping binding state table dhcpv6_snooping Display the DHCPv6 binding state table Restrict...

Page 268: ...f the OSPF interface state change debug dr_bdr_selection Optional Specify to include or exclude debug information for DR BDR selection lsa Specify the state of the designated debug flag all Specify to set all LSA debug flags originating Specify to set LSA originating debug flag installing Specify to set LSA installing debug flag receiving Specify to set LSA receiving debug flag flooding Specify to...

Page 269: ...te_change state enable Command debug ospf neighbor_state_change state enable Success DGS 3120 24TC admin To enable OSPF interface state change debug DGS 3120 24TC admin debug ospf interface_state_change state enable Command debug ospf interface_state_change state enable Success DGS 3120 24TC admin To enable all OSPF LSA debug flags DGS 3120 24TC admin debug ospf lsa all state enable Command debug ...

Page 270: ... OSPF statistic counters Format debug ospf clear counter packet neighbor spf Parameters packet Optional Specify to reset the OSPF packet counter neighbor Optional Specify to reset the OSPF neighbor event counter spf Optional Specify to reset the OSPF SPF event counter If the parameter is not specified all OSPF counters will be cleared Restrictions Only Administrator level users can issue this comm...

Page 271: ...enable Command debug ospf log state enable Success DGS 3120 24TC admin 22 30 debug ospf show counter RI Mode Only Description This command is used to display OSPF statistic counters Format debug ospf show counter packet neighbor spf Parameters packet Optional Specify to display the OSPF packet counter neighbor Optional Specify to display the OSPF neighbor event counter spf Optional Specify to disp...

Page 272: ...k 0 Drop 0 Auth Fail 0 Packet Sending Total 59 Hello 59 DD 0 LSR 0 LSU 0 LSAck 0 Neighbor State Change 0 SeqMismatch 0 SPF Calculation Intra 0 Inter 0 Extern 0 DGS 3120 24TC admin 22 31 debug ospf show detail external_link RI Mode Only Description This command is used to display all AS external LSAs with detail information Format debug ospf show detail external_link Parameters None Restrictions On...

Page 273: ...utingCapability 0 MC NOT Multicast Capable 0 N P NSSA Bit 0 EA Not Support Rcv And Fwd EA_LSA 0 DC Not Support Handling Of Demand Circuits 0 O O Bit Isn t Set 0 7 Bit Isn t Set LS Sequence Number 0x80000001 Length 36 Netmask 255 255 255 0 Metric 20 Forwarding Address 10 90 90 101 External Route Tag 0 Internal Field Del_flag 0x0 I_ref_count 0 Seq 0x80000001 Csum 0xd08e Rxtime 384 Txtime 0 Orgage 0 ...

Page 274: ...Seconds Options 0x2 0 0 Bit Isn t Set 1 E ExternalRoutingCapability 0 MC NOT Multicast Capable 0 N P NSSA Bit 0 EA Not Support Rcv And Fwd EA_LSA 0 DC Not Support Handling Of Demand Circuits 0 O O Bit Isn t Set 0 7 Bit Isn t Set LS Sequence Number 0x80000001 Length 32 Attached Router 10 90 90 91 Attached Router 1 1 1 1 Internal Field Del_flag 0x0 I_ref_count 0 Seq 0x80000001 Csum 0x4e99 Rxtime 4 T...

Page 275: ...C NOT Multicast Capable 0 N P NSSA Bit 0 EA Not Support Rcv And Fwd EA_LSA 0 DC Not Support Handling Of Demand Circuits 0 O O Bit Isn t Set 0 7 Bit Isn t Set LS Sequence Number 0x80000002 Length 36 Flags 0x0 0 B Not Area Border Router 0 E Not AS Boundary Router 0 V Not Virtual Link Endpoint Number Of Links 1 Type Transit ID 10 90 90 123 Data 10 90 90 91 Metric 1 Internal Field Del_flag 0x0 I_ref_c...

Page 276: ...tising Router 10 90 90 91 LS Age 10 Seconds Options 0x2 0 0 Bit Isn t Set 1 E ExternalRoutingCapability 0 MC NOT Multicast Capable 0 N P NSSA Bit 0 EA Not Support Rcv And Fwd EA_LSA 0 DC Not Support Handling Of Demand Circuits 0 O O Bit Isn t Set 0 7 Bit Isn t Set LS Sequence Number 0x80000001 Length 28 Netmask 255 255 255 0 Metric 1 Internal Field Del_flag 0x0 I_ref_count 0 Seq 0x80000001 Csum 0x...

Page 277: ...xternal Link AREA 0 0 0 1 NSSA External LSA Link State ID 0 0 0 0 Advertising Router 10 90 90 91 LS Age 855 Seconds Options 0x2 0 0 Bit Isn t Set 1 E ExternalRoutingCapability 0 MC NOT Multicast Capable 0 N P NSSA Bit 0 EA Not Support Rcv And Fwd EA_LSA 0 DC Not Support Handling Of Demand Circuits 0 O O Bit Isn t Set 0 7 Bit Isn t Set LS Sequence Number 0x80000002 Length 36 Netmask 0 0 0 0 Metric ...

Page 278: ...his command Example To display the current OSPF debug flag s settings DGS 3120 24TC admin debug ospf show flag Command debug ospf show flag Global State Disabled Current OSPF Flags Setting Neighbor State Change Interface State Change Lsa Originating Lsa Operating Lsa Receiving Lsa Flooding Packet Receiving Packet Sending Retransmission SPF Intra SPF Inter SPF Extern DGS 3120 24TC admin 22 37 debug...

Page 279: ...state DGS 3120 24TC admin debug ospf show log state Command debug ospf show log state OSPF Log State Enabled DGS 3120 24TC admin 22 38 debug ospf show redistribution RI Mode Only Description This command is used to display the current internal OSPF redistribute list Format debug ospf show redistribution Parameters None Restrictions Only Administrator level users can issue this command Example To d...

Page 280: ...ag 1 1 1 0 24 0 0 0 0 ON 2 0 0 0 0 OSPF ASE Table IP Nexthop State Type Tag 1 1 1 0 24 0 0 0 0 ON 2 0 0 0 0 DGS 3120 24TC admin 22 39 debug ospf show request_list RI Mode Only Description This command is used to display the current internal OSPF request list Format debug ospf show request_list Parameters None Restrictions Only Administrator level users can issue this command Example To display the...

Page 281: ... 0 RTID 90 2 0 1 LSID 192 194 135 0 RTID 90 2 0 1 LSID 192 194 136 0 RTID 90 2 0 1 LSID 192 194 137 0 RTID 90 2 0 1 LSID 192 194 138 0 RTID 90 2 0 1 DGS 3120 24TC admin 22 40 debug ospf show summary_list RI Mode Only Description This command is used to display the current internal OSPF summary list Format debug ospf show summary_list Parameters None Restrictions Only Administrator level users can ...

Page 282: ...e Only Description This command is used to set the OSPF debug global state Format debug ospf state enable disable Parameters enable Specify that the OSPF debug global state will be enabled disable Specify that the OSPF debug global state will be disabled Restrictions Only Administrator level users can issue this command Example To enable the OSPF debug global state DGS 3120 24TC admin debug ospf s...

Page 283: ...mers debug flag state Specify the state of the configured VRRP debug flag enable Specify that the configured VRRP debug flag will be enabled disable Specify that the configured VRRP debug flag will be disabled Restrictions Only Administrator level users can issue this command Example To enable the VRRP virtual router state change debug flag DGS 3120 24TC admin debug vrrp vr_state_change state enab...

Page 284: ...Command debug vrrp timers state enable Success DGS 3120 24TC admin 22 43 debug vrrp clear counter RI Mode Only Description This command is used to reset the VRRP debug statistic counters Format debug vrrp clear counter Parameters None Restrictions Only Administrator level users can issue this command Example To clear VRRP statistic counters DGS 3120 24TC admin debug vrrp clear counter Command debu...

Page 285: ...y Administrator level users can issue this command Example To enable the VRRP debug log state DGS 3120 24TC admin debug vrrp log state enable Command debug vrrp log state enable Success DGS 3120 24TC admin 22 45 debug vrrp show counter RI Mode Only Description This command is used to display the VRRP debug statistic counters Format debug vrrp show counter Parameters None Restrictions Only Administ...

Page 286: ...g RI Mode Only Description This command is used to display VRRP debug flag settings Format debug vrrp show flag Parameters None Restrictions Only Administrator level users can issue this command Example To display VRRP debug flag settings DGS 3120 24TC admin debug vrrp show flag Command debug vrrp show flag Global State Disabled Current VRRP debug level setting virtual router state change packet r...

Page 287: ... the VRRP debug log state DGS 3120 24TC admin debug vrrp show log state Command debug vrrp show log state VRRP Debug Log State Enabled DGS 3120 24TC admin 22 48 debug vrrp state RI Mode Only Description The command is used to enable or disable the VRRP debug state Format debug vrrp state enable disable Parameters enable Specify that the VRRP debug state will be enabled disable Specify that the VRR...

Page 288: ...estrictions Only Administrator level users can issue this command Example To enable the PIM SSM debug function DGS 3120 24TC admin debug pim ssm Command debug pim ssm Success DGS 3120 24TC admin Once the PIM SSM debug enabled the debug information maybe outputted DGS 3120 24TC admin PIM_SSM 29 Oct 2012 11 04 12 IGMP v1 v2 Report for group 232 1 1 0 from 192 168 121 1 on n121 ignored Output truncat...

Page 289: ...20 24TC admin no debug pim ssm Command no debug pim ssm Success DGS 3120 24TC admin 22 51 debug show cpu utilization Description This command is used to display the total CPU utilization and CPU utilization per process Format debug show cpu utilization Parameters None Restrictions Only Administrator level users can issue this command Example This example shows how to turn on debugging for the show...

Page 290: ...h CLI Reference Guide 285 DGS 3120 24TC admin debug show cpu utilization Command debug show cpu utilization Five seconds 13 One minute 12 Five minutes 12 Process Name 5Sec 1Min 5Min OS_UTIL 88 88 88 bcmL2X 0 5 5 5 bcmCNTR 0 2 3 3 DDM_TIC 1 0 0 DGS 3120 24TC admin ...

Page 291: ...k tcp_tiny_frag_attack 1 all action drop state enable disable 1 Parameters land_attack Specify the type of DoS attack as land attack blat_attack Specify the type of DoS attack as blat attack tcp_null_scan Specify the type of DoS attack as TCP null scan tcp_xmasscan Specify the type of DoS attack as TCP xmasscan tcp_synfin Specify the type of DoS attack as TCP synfin tcp_syn_srcport_less_1024 Speci...

Page 292: ...4 ping_death_attack tcp_tiny_frag_attack Parameters land_attack Optional Specify the type of DoS attack as land attack blat_attack Optional Specify the type of DoS attack as blat attack tcp_null_scan Optional Specify the type of DoS attack as TCP null scan tcp_xmasscan Optional Specify the type of DoS attack as TCP xmasscan tcp_synfin Optional Specify the type of DoS attack as TCP synfin tcp_syn_s...

Page 293: ...cPort Less 1024 Disabled Drop Ping of Death Attack Disabled Drop TCP Tiny Fragment Attack Disabled Drop CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 23 3 config dos_prevention trap Description This command is used to enable or disable the DoS prevention trap state Format config dos_prevention trap enable disable Parameters enable Specify to enable DoS prevention trap state disable...

Page 294: ... used to enable or disable the DoS prevention log state Format config dos_prevention log enable disable Parameters enable Specify to enable DoS prevention log state disable Specify to disable DoS prevention log state Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable DoS prevention log state DGS 3120 24TC admin config dos_prevention log ena...

Page 295: ...t change of the source MAC address and gateway address DHCP option 82 will be automatically added Format config dhcp_local_relay vlan vlan_name 32 state enable disable Parameters vlan_name 32 Specify the VLAN name that the DHCP local relay function will be enabled This name can be up to 32 characters long state Enable or disable DHCP local relay for specified vlan enable Specify that the DHCP loca...

Page 296: ...l relay for specified VLAN enable Specify that the DHCP local relay function will be enabled disable Specify that the DHCP local relay function will be disabled Restrictions Only Administrator level users can issue this command Example To enable DHCP local relay for default VLAN DGS 3120 24TC admin config dhcp_local_relay vlan vlanid 1 state enable Command config dhcp_local_relay vlan vlanid 1 sta...

Page 297: ... used to globally disable the DHCP local relay function on the Switch Format disable dhcp_local_relay Parameters None Restrictions Only Administrator level users can issue this command Example To disable the DHCP local relay function DGS 3120 24TC admin disable dhcp_local_relay Command disable dhcp_local_relay Success DGS 3120 24TC admin 24 5 show dhcp_local_relay Description This command is used ...

Page 298: ...witch CLI Reference Guide 293 Restrictions None Example To display local dhcp relay status DGS 3120 24TC admin show dhcp_local_relay Command show dhcp_local_relay DHCP BOOTP Local Relay Status Disabled DHCP BOOTP Local Relay VID List 1 3 4 DGS 3120 24TC admin ...

Page 299: ...ipaddr drop config dhcp_relay option_61 delete mac_address macaddr string desc_long 255 all show dhcp_relay option_61 config dhcp_relay option_82 check enable disable config dhcp_relay option_82 circuit_id default user_define sentence 32 vendor1 vendor2 vendor3 vendor4 vendor5 vendor6 config dhcp_relay option_82 policy replace drop keep config dhcp_relay option_82 remote_id default user_define sen...

Page 300: ...ess DGS 3120 24TC admin 25 2 config dhcp_relay add Description This command is used to add an IP destination address to the Switch s DHCP relay table Used to configure a DHCP server for relay of packets Format config dhcp_relay add ipif ipif_name 12 ipaddr Parameters ipif_name The name of the IP interface which contains the IP address below ipif_name 12 Enter the IP interface name used here This n...

Page 301: ...d_list Enter the VLAN ID list used for this configuration here ipaddr Enter the DHCP BOOTP server IP address used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To add a DHCP BOOTP server 10 90 90 1 to VLAN 1 to 10 DGS 3120 24TC admin config dhcp_relay add vlanid 1 10 10 90 90 1 Command config dhcp_relay add vlanid 1 10 10 90 90 1 Success DG...

Page 302: ...then the configuration at the interface level has higher priority In this case the DHCP server configured on the VLAN will not be used to forward the DHCP packets Format config dhcp_relay delete vlanid vlan_id_list ipaddr Parameters vlanid Specify the VLAN ID list used for this configuration vlan_id_list Enter the VLAN ID list used for this configuration here ipaddr Enter the DHCP BOOTP server IP ...

Page 303: ...nd Example To enable the DHCP relay function DGS 3120 24TC admin enable dhcp_relay Command enable dhcp_relay Success DGS 3120 24TC admin 25 7 disable dhcp_relay Description This command is used to disable the DHCP relay function on the Switch Format disable dhcp_relay Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the D...

Page 304: ...iption This command is used to display the current DHCP relay configuration Format show dhcp_relay ipif ipif_name 12 Parameters ipif Optional Specify the IP interface name ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long If no parameter is specified the system will display all DHCP relay configuration Restrictions None Example To display DHCP relay confi...

Page 305: ...option_60 Description This command is used to decide whether DHCP relay will process the DHCP option 60 or not When option_60 is enabled if the packet does not have option 60 then the relay servers cannot be determined based on option 60 The relay servers will be determined based on either option 61 or per IPIF configured servers If the relay servers are determined based on option 60 or option 61 ...

Page 306: ...add string multiword 255 relay ipaddr exact match partial match Parameters string Specify the string used multiword 255 Enter the string value here This value can be up to 255 characters long relay Specify a relay server IP address ipaddr Enter the IP address used for this configuration here exact match The option 60 string in the packet must full match with the specified string partial match The ...

Page 307: ... will be the union of option 60 default relay servers and the relay servers determined by option 61 Format config dhcp_relay option_60 default relay ipaddr mode drop relay Parameters relay Specify the IP address used for the DHCP relay forward function ipaddr Enter the IP address used for this configuration here mode Specify the DHCP relay option 60 mode drop Specify to drop the packet that has no...

Page 308: ... is specified by the user ipaddr Optional Enter the IP address used for this configuration here Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete the DHCP relay option 60 string called abc DGS 3120 24TC admin delete dhcp_relay option_60 string abc relay 10 90 90 1 Command delete dhcp_relay option_60 string abc relay 10 90 90 1 Success DGS ...

Page 309: ...e packet does not have option 61 then the relay servers cannot be determined based on option 61 If the relay servers are determined based on option 60 or option 61 then per IPIF configured servers will be ignored If the relay servers are not determined either by option 60 or option 61 then per IPIF configured servers will be used to determine the relay servers Format config dhcp_relay option_61 st...

Page 310: ...on of these two sets of the servers Format config dhcp_relay option_61 add mac_address macaddr string desc_long 255 relay ipaddr drop Parameters mac_address The client s client ID which is the hardware address of client macaddr Enter the client s MAC address here string The client s client ID which is specified by administrator desc_long 255 Enter the client s description here This value can be up...

Page 311: ... and Power User level users can issue this command Example To configure the DHCP relay option 61 function DGS 3120 24TC admin config dhcp_relay option_61 default drop Command config dhcp_relay option_61 default drop Success DGS 3120 24TC admin 25 17 config dhcp_relay option_61 delete Description This command is used to delete an option 61 rule Format config dhcp_relay option_61 delete mac_address ...

Page 312: ...ion 61 entry DGS 3120 24TC admin config dhcp_relay option_61 delete mac_address 00 11 22 33 44 55 Command config dhcp_relay option_61 delete mac_address 00 11 22 33 44 55 Success DGS 3120 24TC admin 25 18 show dhcp_relay option_61 Description This command is used to show all rulers for option 61 Format show dhcp_relay option_61 Parameters None Restrictions None Example To display DHCP relay rulers...

Page 313: ...rmat config dhcp_relay option_82 check enable disable Parameters enable When the state is enabled the DHCP packet will be inserted with the option 82 field before being relayed to server The DHCP packet will be processed based on the behavior defined in check and policy setting disable When the state is disabled the DHCP packet will be relayed directly to server without further check and processin...

Page 314: ...allowed in the string vendor1 If configured to vendor1 the circuit ID uses the following format to communicate with Alcatel Lucent s server a b c d e f g h i j 1 0x10 0 6 VLAN Slot ID Port ID 1 6 MAC 1 byte 1 byte 1 byte 1 byte 2 bytes 2 bytes 2 bytes 1 byte 1 byte 6 bytes a Sub option type 1 means circuit ID b Length c Circuit ID s sub option s first tag it should be 0 d First tag s length it sho...

Page 315: ...to vendor5 the circuit ID uses the following format a b c d e f g h 1 n System name Space 0x20 e 0x65 t 0x74 h 0x68 Space 0x20 1 byte 1 byte 0 128 bytes 1 byte 1 byte 1 byte 1 byte 1 byte i j k l m n o Chass is ID 0x2F Slot ID 0x2F Port number 0x3A VLAN ID 1 2 bytes 1 byte 1 2 bytes 1 2 bytes 1 byte 1 byte 1 4 bytes a Sub option type 1 means circuit ID b Length c System name of the Switch NOTE If ...

Page 316: ... Character n F09 Character e F10 Character t F11 Chassis ID The number of the chassis For stand alone devices the chassis ID will always be 1 For stacked devices the chassis ID will be the unit ID F12 Slash F13 ASCII format string 0 F14 Slash F15 Port number The incoming port number DHCP client packets ASCII format string F16 Colon F17 cvlan is the client s VLAN ID The value ranges from 1 to 4094 ...

Page 317: ...has the option 82 field If the packet from the client side contains an Option 82 value the packet will be dropped If the packet from the client side doesn t contain an Option 82 value it inserts it s own Option 82 value into the packet keep Retain the existing option 82 field in the packet If the packet from the client side contains an Option 82 value it keeps the old Option 82 value If the packet...

Page 318: ...f configured to vendor3 the remote ID uses the following format a b c 2 n User defined 1 byte 1 byte Maximum 32 bytes a Sub option type 2 means remote ID b Length Total length of user defined string By default the length is 0 with no field value c Value User defined string that can be configured using the config dhcp_relay port_option_82 command The maximum length of the user defined string is 32 ...

Page 319: ...vel users can issue this command Example To enable DHCP relay option 82 state DGS 3120 24TC admin config dhcp_relay option_82 state enable Command config dhcp_relay option_82 state enable Success DGS 3120 24TC admin 25 24 config dhcp_relay server_cvid Description This command is used to configure DHCP relay agent destination IP address inner VLAN ID If the configure inner VID unequal to null the D...

Page 320: ... destination IP address inner VLAN ID Format show dhcp_relay server_cvid ipaddr Parameters ipaddr Enter the DHCP or BOOTP server IP address Restrictions None Example To display the DHCP server with the IP of 10 0 0 1 DGS 3120 24TC admin show dhcp_relay server_cvid 10 0 0 1 Command show dhcp_relay server_cvid 10 0 0 1 Server CVID 10 0 0 1 10 Total Entries 1 DGS 3120 24TC admin 25 26 config dhcp_rel...

Page 321: ... Administrators Operators and Power Users can issue this command Example To configure the vendor 3 circuit ID of port 1 to 12345678 DGS 3120 24TC admin config dhcp_relay port_option_82 1 1 circuit_id vendor3 12345678 Command config dhcp_relay port_option_82 1 1 circuit_id vendor3 12345678 Success DGS 3120 24TC admin 25 27 show dhcp_relay port_option_82 Description This command is used to display t...

Page 322: ... admin show dhcp_relay port_option_82 1 1 1 4 Command show dhcp_relay port_option_82 1 1 1 4 DHCP Relay Agent Information Option 82 Per port info Port Type Option 82 Remote ID Value Option 82 Circuit ID Value 1 1 vendor3 12345678 1 2 vendor3 1 3 vendor3 1 4 vendor3 Total Entries 4 DGS 3120 24TC admin ...

Page 323: ...ets number 0 10 config dhcp ping_timeout millisecond 10 2000 create dhcp pool manual_binding pool_name 12 ipaddr hardware_address macaddr type ethernet ieee802 delete dhcp pool manual_binding pool_name 12 ipaddr all clear dhcp binding pool_name 12 ipaddr all all show dhcp binding pool_name 12 show dhcp pool pool_name 12 show dhcp pool manual_binding pool_name 12 enable dhcp_server disable dhcp_ser...

Page 324: ...mmand is used to delete a DHCP server exclude address Format delete dhcp excluded_address begin_address ipaddr end_address ipaddr all Parameters begin_address Specify the starting address of the IP address range ipaddr Specify the starting address of the IP address range end_address Specify the ending address of the IP address range ipaddr Specify the ending address of the IP address range all Spe...

Page 325: ...le To display the DHCP server excluded addresses GS 3120 24TC admin show dhcp excluded_address Command show dhcp excluded_address Index Begin Address End Address 1 10 10 10 1 10 10 10 10 Total Entries 1 DGS 3120 24TC admin 26 4 create dhcp pool Description This command is used to create a DHCP pool by specifying a name After creating a DHCP pool use other DHCP pool configuration commands to config...

Page 326: ... all Specify to delete all the DHCP pools Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a DHCP pool DGS 3120 24TC admin delete dhcp pool dhcppool01 Command delete dhcp pool dhcppool01 Success DGS 3120 24TC admin 26 6 config dhcp pool network_addr Description This command is used to specify the network for the DHCP pool The addresses in...

Page 327: ...estrictions Only Administrator Operator and Power User level users can issue this command Example To configure the address range of the DHCP address pool DGS 3120 24TC admin config dhcp pool network_addr dhcppool01 10 10 10 0 24 Command config dhcp pool network_addr dhcppool01 10 10 10 0 24 Success DGS 3120 24TC admin 26 7 config dhcp pool domain_name Description This command is used to specify th...

Page 328: ...ice for the same pool the second command will overwrite the first command Format config dhcp pool dns_server pool_name 12 ipaddr ipaddr ipaddr Parameters pool_name 12 Specify the DHCP pooll name ipaddr Optional Specify the IP address of the DNS server Up to three IP addresses can be specified on one command line Restrictions Only Administrator Operator and Power User level users can issue this com...

Page 329: ...WINS server IP address DGS 3120 24TC admin config dhcp pool netbios_name_server dhcppool01 10 10 10 1 Command config dhcp pool netbios_name_server dhcppool01 10 10 10 1 Success DGS 3120 24TC admin 26 10 config dhcp pool netbios_node_type Description This command is used to specify the NetBIOS node type for a Microsoft DHCP client The NetBIOS node type for Microsoft DHCP clients can be one of four ...

Page 330: ...he default router should be on the same subnet as the client If the default router is not specified the default router information will not be provided to the client If this command is input twice for the same pool the second command will overwrite the first command The default router must be within the range the network defined for the DHCP pool Format config dhcp pool default_router pool_name 12...

Page 331: ...te Specify a lease of unlimited duration Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the lease of a pool DGS 3120 24TC admin config dhcp pool lease dhcppool01 infinite Command config dhcp pool lease dhcppool01 infinite Success DGS 3120 24TC admin 26 13 config dhcp pool boot_file Description This command is used to specify the name...

Page 332: ...ption This command is used by the DHCP client boot process typically a TFTP server If next server information is not specified it will not be provided to the client If this command is input twice for the same pool the second command will overwrite the first command Format config dhcp pool next_server pool_name 12 ipaddr Parameters pool_name 12 Specify the DHCP pool name ipaddr Optional Specify the...

Page 333: ... address Format config dhcp ping_packets number 0 10 Parameters number 0 10 Specify the number of ping packets 0 means there is no ping test The default value is 2 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure ping packets DGS 3120 24TC admin config dhcp ping_packets 4 Command config dhcp ping_packets 4 Success DGS 3120 24TC admin 2...

Page 334: ...the manual binding entry must be in a range within that the network uses for the DHCP pool If the user specifies a conflict IP address an error message will be returned If a number of manual binding entries are created and the network address for the pool is changed such that conflicts are generated those manual binding entries which conflict with the new network address will be automatically dele...

Page 335: ...ify the DHCP pool name ipaddr Specify the IP address which will be assigned to a specified client all Specify to delete all IP addresses Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete DHCP server manual binding DGS 3120 24TC admin delete dhcp pool manual_binding dhcppool01 10 10 10 1 Command delete dhcp pool manual_binding dhcppool01 10...

Page 336: ...binding dhcppool01 10 20 3 4 Success DGS 3120 24TC admin 26 20 show dhcp binding Description This command is used to display dynamic binding entries Format show dhcp binding pool_name 12 Parameters pool_name 12 Optional Specify a DHCP pool name Restrictions None Example To display dynamic binding entries for engineering DGS 3120 24TC admin show dhcp binding engineering Command show dhcp binding en...

Page 337: ... pool name Restrictions None Example To display the current DHCP pool information for engineering DGS 3120 24TC admin show dhcp pool engineering Command show dhcp pool engineering Pool Name engineering Network Address 10 10 10 0 24 Domain Name dlink com DNA Server 10 10 10 1 NetBIOS Name Server 10 10 10 1 NetBIOS Node Type broadcast Default Router 10 10 10 1 Pool Lease 10 days 0 hours 0 minutes Bo...

Page 338: ... 02 02 02 ethernet Total Entries 1 DGS 3120 24TC admin 26 23 enable dhcp_server Description This command is used to enable the DHCP server function If DHCP relay is enabled DHCP server cannot be enabled The opposite is also true For Layer 2 switches if DHCP client is enabled on the only interface then DHCP server cannot be enabled For layer 3 switches when the System interface is the only interfac...

Page 339: ...d to disable the DHCP server function on the switch Format disable dhcp_server Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the Switch s DHCP server DGS 3120 24TC admin disable dhcp_server Command disable dhcp_server Success DGS 3120 24TC admin 26 25 show dhcp_server Description This command is used to display the cur...

Page 340: ...0 24TC admin 26 26 clear dhcp conflict_ip Description This command is used to clear an entry or all entries from the conflict IP database Format clear dhcp conflict_ip ipaddr all Parameters ipaddr Specify the IP address to be cleared all Specify that all IP addresses will be cleared Restrictions None Example To clear an IP address 10 20 3 4 from the conflict database DGS 3120 24TC admin clear dhcp...

Page 341: ...n conflict will be moved to the conflict IP database The system will not attempt to bind the IP address in the conflict IP database unless the user clears it from the conflict IP database Format show dhcp conflict_ip ipaddr Parameters ipaddr Optional Specify the IP address to be displayed Restrictions None Example To display the entries in the DHCP conflict IP database DGS 3120 24TC admin show dhc...

Page 342: ...server screening With DHCP server screening function illegal DHCP server packet will be filtered This command is used to configure the state of the function for filtering of DHCP server packet and to add delete the DHCP server client binding entry This command is useful for projects that support per port control of the DHCP server screening function The filter can be based on the DHCP server IP ad...

Page 343: ... state Specify to enable or disable the filter DHCP server state enable Specify that the filter DHCP server state will be enabled disable Specify that the filter DHCP server state will be disabled illegal_server_log_suppress_duration Specify the same illegal DHCP server IP address detected will be logged only once within the duration The default value is 5 minutes 1min Specify that illegal server ...

Page 344: ...t filter list created on the Switch DGS 3120 24TC admin show filter dhcp_server Command show filter dhcp_server Enabled Ports 1 1 1 10 Trap State Disabled Log State Disabled Illegal Server Log Suppress Duration 5 minutes Permit DHCP Server Client Table Server IP Address Client MAC Address Port 10 1 1 1 00 00 00 00 00 01 1 1 1 24 Total Entries 1 DGS 3120 24TC admin 27 3 config filter dhcp_server lo...

Page 345: ...ig filter dhcp_server log disable Success DGS 3120 24TC admin 27 4 config filter dhcp_server trap Description This command is used to enable or disable the log function Format config filter dhcp_server trap enable disable Parameters enable Enable the trap function disable Disable the trap function Restrictions Only Administrator Operator and Power User level users can issue this command Example To...

Page 346: ... all ports will be used for this configuration Restrictions Only Administrators Operators and Power Users can issue this command Example To create a Filter DHCPv6 server permit entry on port 1 5 DGS 3120 24TC admin create filter dhcpv6_server permit sip 2200 5 ports 1 5 Command create filter dhcpv6_server permit sip 2200 5 ports 1 5 Success DGS 3120 24TC admin 27 6 config filter dhcpv6_server log ...

Page 347: ...ckets Format config filter dhcpv6_server ports portlist all state enable disable Parameters portlist Enter the list of ports used for this configuration here all Specify that all ports will be used for this configuration state Specify whether the port s filter DHCPv6 server function is enabled or disabled enable Specify that the filter option is enabled disable Specify that the filter option is di...

Page 348: ...strators Operators and Power Users can issue this command Example To enable the filter DHCPv6 server trap state DGS 3120 24TC admin config filter dhcpv6_server trap enable Command config filter dhcpv6_server trap enable Success DGS 3120 24TC admin 27 9 show filter dhcpv6_server Description This command is used to display the filter DHCPv6 server information Format show filter dhcpv6_server Paramet...

Page 349: ...ipv6addr Parameters ipv6addr Enter the source IPv6 address of the entry here Restrictions Only Administrators Operators and Power Users can issue this command Example To delete permit entry from the filter DHCPv6 server forward list DGS 3120 24TC admin delete filter dhcpv6_server permit sip 2200 4 Command delete filter dhcpv6_server permit sip 2200 4 Success DGS 3120 24TC admin 27 11 create filter...

Page 350: ...ermit sip 2200 5 ports 1 5 Command create filter icmpv6_ra_all_node permit sip 2200 5 ports 1 5 Success DGS 3120 24TC admin 27 12 config filter icmpv6_ra_all_node log Description This command is used to enable or disable the filter ICMPv6 RA All nodes log state Format config filter icmpv6_ra_all_node log enable disable Parameters enable Specify that the log for the filter ICMPv6 RA will be enabled...

Page 351: ...guration here all Specify that all ports will be used for this configuration state Specify whether the port s filter ICMPv6 RA all nodes packets function is enabled or disabled enable Specify that the filter ICMPv6 RA all nodes packets function is be enabled disable Specify that the filter ICMPv6 RA all nodes packets function is be disabled Restrictions Only Administrators Operators and Power User...

Page 352: ...ICMPv6 RA all nodes trap state DGS 3120 24TC admin config filter icmpv6_ra_all_node trap enable Command config filter icmpv6_ra_all_node trap enable Success DGS 3120 24TC admin 27 15 show filter icmpv6_ra_all_node Description This command is used to display the filter ICMPv6 RA all nodes information Format show filter icmpv6_ra_all_node Parameters None Restrictions None Example To display filter I...

Page 353: ... icmpv6_ra_all_node permit sip ipv6addr Parameters ipv6addr Enter the source IPv6 address of the entry which will be deleted in the filter ICMPv6 RA all nodes forward list Restrictions Only Administrators Operators and Power Users can issue this command Example To delete permit entry from the filter ICMPv6 RA all nodes forward list DGS 3120 24TC admin delete filter icmpv6_ra_all_node permit sip 22...

Page 354: ...cpv6_relay option_18 state enable disable check enable disable interface_id default cid vendor1 1 show dhcpv6_relay ipif ipif_name 12 config dhcpv6_local_relay vlan vlan_name 32 vlanid vlan_id state enable disable enable dhcpv6_local_relay disable dhcpv6_local_relay show dhcpv6_local_relay 28 1 enable dhcpv6_relay Description This command is used to enable the DHCPv6 relay function on the Switch F...

Page 355: ...and disable dhcpv6_relay Success DGS 3120 24TC admin 28 3 config dhcpv6_relay Description The command is used to add or delete an IPv6 address which is a destination to forward relay DHCPv6 packets Format config dhcpv6_relay add delete ipif ipif_name 12 ipv6addr Parameters add Add an IPv6 destination to the DHCPv6 relay table delete Delete an IPv6 destination from the DHCPv6 relay table ipif The I...

Page 356: ...y hop count of the Switch Format config dhcpv6_relay hop_count value 1 32 Parameters value 1 32 Enter the number of relay agents that have to be relayed in this message The range is from 1 to 32 The default value is 4 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the maximum hops of a DHCPv6 relay packet that can be transferred to 4...

Page 357: ...HCP packet will be processed based on the behavior defined in the check and remote ID type setting When the state is disabled the DHCP packet is relayed directly to the server Format config dhcpv6_relay option_37 state enable disable check enable disable remote_id default cid_with_user_define desc 128 user_define desc 128 vendor1 1 Parameters state Optional Specify DHCPv6 relay option 37 state ena...

Page 358: ...ay option_18 Description This command is used to configure the processing of Option 18 for the DHCPv6 relay function Both the DHCPv6 relay and DHCPv6 local relay functions use the same Interface ID format Local relay isn t concerned about the option state it adds to the packet Format config dhcpv6_relay option_18 state enable disable check enable disable interface_id default cid vendor1 1 Paramete...

Page 359: ..._18 state enable Command config dhcpv6_relay option_18 state enable Success DGS 3120 24TC admin config dhcpv6_relay option_18 check enable Command config dhcpv6_relay option_18 check enable Success DGS 3120 24TC admin config dhcpv6_relay option_18 interface_id default Command config dhcpv6_relay option_18 interface_id default Success DGS 3120 24TC admin config dhcpv6_relay option_18 interface_id c...

Page 360: ...ult DHCPv6 Relay Information Option 37 Remote ID IP Interface System DHCPv6 Relay Status Enabled Server Address 2001 DB8 1234 218 FEFF FEFB CC0E Total Entries 1 DGS 3120 24TC admin 28 9 config dhcpv6_local_relay vlan Description This command is used to enable or disable the DHCPv6 local relay function for a specified VLAN Format config dhcpv6_local_relay vlan vlan_name 32 vlanid vlan_id state enab...

Page 361: ...4TC admin 28 10 enable dhcpv6_local_relay Description This command is used to enable the DHCPv6 local relay function on the Switch Format enable dhcpv6_local_relay Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the DHCPv6 local relay function s global state DGS 3120 24TC admin enable dhcpv6_local_relay Command enable dhc...

Page 362: ...ble dhcpv6_local_relay Command disable dhcpv6_local_relay Success DGS 3120 24TC admin 28 12 show dhcpv6_local_relay Description This command is used to display the current DHCPv6 local relay configuration Format show dhcpv6_local_relay Parameters None Restrictions None Example To display the local DHCPv6 relay configuration DGS 3120 24TC admin show dhcpv6_local_relay Command show dhcpv6_local_rela...

Page 363: ...xStack DGS 3120 Series Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 358 ...

Page 364: ...r_dbm high_warning mw_or_dbm low_warning mw_or_dbm state enable disable shutdown alarm warning none reload_threshold config ddm power_unit mw dbm show ddm show ddm ports portlist status configuration 29 1 config ddm Description The command configures the DDM log and trap action when encountering an exceeding alarm or warning thresholds event Format config ddm trap log enable disable Parameters tra...

Page 365: ...none reload_threshold Parameters portlist Enter the range of ports to be configured here all Specify that all the optic ports operating parameters will be configured temperature_threshold Specify the threshold of the optic module s temperature in centigrade At least one parameter shall be specified for this threshold high_alarm Optional Specify the high threshold for the alarm When the operating p...

Page 366: ...the action associated with the alarm is taken mw_or_dbm Enter the high threshold alarm value used here low_alarm Optional Specify the low threshold for the alarm When the operating parameter falls below this value the action associated with the alarm is taken mw_or_dbm Enter the low threshold alarm value used here high_warning Optional Specify the high threshold for the warning When the operating ...

Page 367: ...cess DGS 3120 24TC admin To configure the port 21 s voltage threshold DGS 3120 24TC admin config ddm ports 1 21 voltage_threshold high_alarm 4 25 low_alarm 2 5 high_warning 3 5 low_warning 3 Command config ddm ports 1 21 voltage_threshold high_alarm 4 25 low_alarm 2 5 high_warning 3 5 low_warning 3 Success DGS 3120 24TC admin To configure the port 21 s bias current threshold DGS 3120 24TC admin co...

Page 368: ...he alarm DGS 3120 24TC admin config ddm ports 1 21 state enable shutdown alarm Command config ddm ports 1 21 state enable shutdown alarm Success DGS 3120 24TC admin 29 3 config ddm power_unit Description The command is used to configure the unit of DDM TX and RX power Format config ddm power_unit mw dbm Parameters mw Specify the DDM TX and RX power unit as mW dbm Specify the DDM TX and RX power un...

Page 369: ...ation values of the optic module of the specified ports There are two types of thresholds the administrative configuration and the operation configuration threshold For the optic port when a particular threshold was configured by user it will be shown in this command with a tag indicating that it is a threshold that user configured else it would be the threshold read from the optic module that is ...

Page 370: ...e p Previous Page r Refresh To display port 21 s configuration DGS 3120 24TC admin show ddm ports 1 21 configuration Command show ddm ports 1 21 configuration Port 1 21 DDM State Enabled Shutdown Alarm Threshold Temperature Voltage Bias Current TX Power RX Power in Celsius V mA mW mW High Alarm 84 9555 A 4 2500 A 7 2500 A 0 6250 A 4 5500 A Low Alarm 10 0000 A 2 5000 A 0 0040 A 0 0060 A 0 0100 A Hi...

Page 371: ...ong all Specify that all the IP interfaces will be used metric Allows the assignment of a DVMRP route cost to the above IP interface A DVMRP route cost is a relative number that represents the real cost of using this route in the construction of a multicast delivery tree It is similar to but not defined as the hop count in RIP value 1 31 Enter the metric value used here This value must be between ...

Page 372: ... 5 Command config dvmrp ipif System neighbor_timeout 30 metric 1 probe 5 Success DGS 3120 24TC admin 30 2 enable dvmrp Description This command is used to enable the DVMRP global state on the Switch Format enable dvmrp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable DVMRP DGS 3120 24TC admin enable dvmrp Command enable dv...

Page 373: ...and disable dvmrp Success DGS 3120 24TC admin 30 4 show dvmrp Description This command is used to display DVMRP configurations Format show dvmrp ipif ipif_name 12 Parameters ipif Optional Specify the IP interface name used for the display ipif_name 12 Enter the IP interface name used for the display here This name can be up to 12 characters long If no parameter is specified then all the IP interfa...

Page 374: ...RP neighbor table Format show dvmrp neighbor ipif ipif_name 12 ipaddress network_address Parameters ipif Optional Specify the IP interface name used for the display ipif_name 12 Enter the IP interface name used for the display here This name can be up to 12 characters long ipaddress Optional Specify the IP address and netmask of the destination used network_address Enter the IP address and netmask...

Page 375: ...g next hop table Format show dvmrp nexthop ipaddress network_address ipif ipif_name 12 Parameters ipaddress Optional Specify the IP address and netmask of the destination used network_address Enter the IP address and netmask of the destination used here ipif Optional Specify the IP interface name used for the display ipif_name 12 Enter the IP interface name used for the display here This name can ...

Page 376: ...m Leaf 30 0 0 0 8 ip2 Leaf Total Entries 6 DGS 3120 24TC admin 30 7 show dvmrp routing_table Description This command is used to display the DVMRP routing table Format show dvmrp routing_table ipaddress network_address Parameters ipaddress Optional Specify the IP address and netmask of the destination used network_address Enter the IP address and netmask of the destination used here If no paramete...

Page 377: ...TC admin show dvmrp routing_table Command show dvmrp routing_table DVMRP Routing Table Source Address Netmask Upstream Neighbor Metric Learned Interface Expire 10 0 0 0 8 10 90 90 90 2 Local System 20 0 0 0 16 20 1 1 1 2 Local ip2 30 0 0 0 24 30 1 1 1 2 Local ip3 Total Entries 3 DGS 3120 24TC admin ...

Page 378: ...DNS resolver name server to the Switch Format config name_server add ipaddr ipv6addr primary Parameters ipaddr Enter the DNS Resolver name server IPv4 address used here ipv6addr Enter the DNS Resolver name server IPv6 address used here primary Optional Specify that the name server is a primary name server Restrictions Only Administrators Operators and Power Users can issue this command Example To ...

Page 379: ...esolver name server 10 10 10 1 DGS 3120 24TC admin config name_server delete 10 10 10 10 Command config name_server delete 10 10 10 10 Success DGS 3120 24TC admin 31 3 config name_server timeout Description This command is used to configure the timeout value of a DNS Resolver name server Format config name_server timeout sec 1 60 Parameters timeout Specify the maximum time waiting for a responce f...

Page 380: ...DNS Resolver name servers and name server time out on the Switch Format show name_server Parameters None Restrictions None Example To display the current DNS Resolver name servers and name server time out DGS 3120 24TC admin show name_server Command show name_server Name Server Time Out 3 seconds Static Name Server Table Server IP Address Priority 20 20 20 20 Secondary 10 1 1 1 Primary Dynamic Nam...

Page 381: ...y Administrators Operators and Power Users can issue this command Example To create static host name www example com DGS 3120 24TC admin create host_name www example com 10 10 10 10 Command create host_name www example com 10 10 10 10 Success DGS 3120 24TC admin 31 6 delete host_name Description This command is used to delete the static or dynamic host name entries of the Switch Format delete host...

Page 382: ... show host_name static dynamic Parameters static Optional Specify to display the static host name entries dynamic Optional Specify to display the dynamic host name entries Restrictions None Example To display the static and dynamic host name entries DGS 3120 24TC admin show host_name Command show host_name Static Host Name Table Host Name www example1 com IP Address 20 20 20 20 IPv6 Address 3000 1...

Page 383: ...Resolver state of the Switch Format enable dns_resolver Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the DNS Resolver state to enabled DGS 3120 24TC admin enable dns_resolver Command enable dns_resolver Success DGS 3120 24TC admin 31 9 disable dns_resolver Description This command is used to disable the DNS Resolver state of...

Page 384: ...ch CLI Reference Guide 379 Restrictions Only Administrators Operators and Power Users can issue this command Example To configure the DNS Resolver state to disabled DGS 3120 24TC admin disable dns_resolver Command disable dns_resolver Success DGS 3120 24TC admin ...

Page 385: ...tion_code string 25 unit unit_id 1 6 Parameters string 25 Specify an activation code unit Optional Specify the Switch in the switch stack unit_id 1 6 Enter the unit ID value This value must be between 1 and 6 Restrictions Only Administrator level users can issue this command Example To install an activation code DGS 3120 24TC admin install dlms activation_code xBc7vNWsSpchuQkGZsTfPwcfa Command ins...

Page 386: ...it unit_id 1 6 Parameters unit Optional Specify the Swithc in the switch stack unit_id 1 6 Enter the unit ID value This value must be between 1 and 6 Restrictions None Example To display license information DGS 3120 24TC admin show dlms license Command show dlms license Device Default License EI DGS 3120 24TC admin ...

Page 387: ...t all state enable disable mode shutdown normal discovery_time sec 5 65535 1 Parameters portlist Specify a range of ports all Specify to select all ports state Specify these ports unidirectional link detection status enable Enable unidirectional link detection status disable Disable unidirectional link detection status mode Specify the mode when detecting unidirectional link shutdown If any unidir...

Page 388: ...on information Format show duld ports portlist Parameters portlist Optional Specify a range of ports Restrictions None Example To show ports 1 4 unidirectional link detection information DGS 3120 24TC admin show duld ports 1 1 1 4 Command show duld ports 1 1 1 4 Port Admin State Oper Status Mode Link Status Discovery Time Sec 1 1 Enabled Disabled Normal Unknown 5 1 2 Disabled Disabled Normal Unkno...

Page 389: ...meters portlist Specify a range of ports to be configured all Specify to configure all ports state Specify the EEE state The default is disabled enable Enable the EEE function for the specified port s disable Disable the EEE function for the specified port s Restrictions Only Administrator and Operator level users can issue this command Example To enable the EEE state on ports 1 2 1 5 DGS 3120 24T...

Page 390: ...list Optional Specify a list of ports to be displayed Restrictions None Example To display the EEE state DGS 3120 24TC admin show eee ports 1 1 1 6 1 9 Command show eee ports 1 1 1 6 1 9 Port State 1 1 Disabled 1 2 Enabled 1 3 Enabled 1 4 Enabled 1 5 Enabled 1 6 Disabled 1 9 Disabled DGS 3120 24TC admin ...

Page 391: ...onfig erps log enable disable config erps trap enable disable show erps raps_vlan vlanid 1 4094 sub_ring 35 1 enable erps Description This command is used to enable the global ERPS function on a switch When both the global state and the specified ring ERPS state are enabled the specified ring will be activated The global ERPS function cannot be enabled when any ERPS ring on the device is enabled a...

Page 392: ...e erps Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable ERPS DGS 3120 24TC admin disable erps Command disable erps Success DGS 3120 24TC admin 35 3 create erps raps_vlan Description This command is used to create an R APS VLAN on a switch Only one R APS VLAN should be used to transfer R APS messages Note that the R APS VL...

Page 393: ...5 4 delete erps raps_vlan Description This command is used to delete an R APS VLAN on a switch When an R APS VLAN is deleted all parameters related to this R APS VLAN will also be deleted This command can only be issued when the ring is not active Format delete erps raps_vlan vlanid 1 4094 Parameters vlanid 1 4094 Specify the VLAN which will be the R APS VLAN Restrictions Only Administrator Operat...

Page 394: ... an error message will be display and the configuration will fail The R APS VLAN cannot be the protected VLAN The protected VLAN can be one that has already been created or it can be used for a VLAN that has not yet been created Holdoff timer The Holdoff timer is used to filter out intermittent link faults when link failures occur during the protection switching process When a ring node detects a ...

Page 395: ...mer holdoff_time millisecond 0 10000 guard_time millisecond 10 2000 wtr_time min 1 12 Parameters raps_vlan Specify the R APS VLAN used vlanid 1 4094 Enter the VLAN ID used here state Specify to enable or disable the specified ring enable Enable the state of the specified ring disable Disable the state of the specified ring The default value is disabled ring_mel Specify the ring MEL of the R APS fu...

Page 396: ...he R APS timer used holdoff_time Optional Specify the holdoff time of the R APS function The default holdoff time is 0 milliseconds millisecond 0 10000 Enter the hold off time value here This value must be in the range of 0 to 10000 millseconds guard_time Optional Specify the guard time of the R APS function The default guard time is 500 milliseconds millisecond 10 2000 Enter the guard time value ...

Page 397: ...ccess DGS 3120 24TC admin To configure the ERPS timers for a specific R APS VLAN DGS 3120 24TC admin config erps raps_vlan 4094 timer holdoff_time 100 guard_time 1000 wtr_time 10 Command config erps raps_vlan 4094 timer holdoff_time 100 guard_time 1000 wtr_t ime 10 Success DGS 3120 24TC admin To configure the ring state of the ERPS DGS 3120 24TC admin config erps raps_vlan 4094 state enable Comman...

Page 398: ...ure the log state of ERPS events Format config erps log enable disable Parameters log Specify to enable or disable the ERPS log state enable Enter enable to enable the log state disable Enter disable to disable the log state The default value is disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the ERPS log state DGS 3120 24TC ...

Page 399: ...ic is able to be forwarded Blocking indicates that traffic is blocked by ERPS and a signal failure is not detected on the port Signal Fail indicates that a signal failure is detected on the port and traffic is blocked by ERPS The RPL owner administrative state could be configured to Enabled or Disabled But the RPL owner operational state may be different from the RPL owner administrative state for...

Page 400: ... MEL 2 Holdoff Time 0 milliseconds Guard Time 500 milliseconds WTR Time 5 minutes Current Ring State Idle R APS VLAN 4093 Ring Status Enabled West Port Virtual Channel East Port 10 Forwarding RPL Port None RPL Owner Disabled Protected VLANs 200 220 Ring MEL 2 Holdoff Time 0 milliseconds Guard Time 500 milliseconds WTR Time 5 minutes Current Ring State Idle Total Ring 2 DGS 3120 24TC admin DGS 3120...

Page 401: ...ltering_mode vlanid vidlist vlan vlan_name 32 36 1 create fdb Description This command is used to create a static entry in the unicast MAC address forwarding table database Format create fdb vlan_name 32 macaddr port port drop Parameters vlan_name 32 Specify a VLAN name associated with a MAC address The maximum length of the VLAN name is 32 bytes macaddr The MAC address to be added to the static f...

Page 402: ...the static forwarding table port The port number corresponding to the MAC destination address The switch will always forward traffic to the specified device through this port port Enter the port number corresponding to the MAC destination address here drop Specify the action drop to be taken Restrictions Only Administrator Operator and Power User level users can issue this command Example To creat...

Page 403: ...ictions Only Administrator Operator and Power User level users can issue this command Example To create a multicast MAC forwarding entry to the default VLAN DGS 3120 24TC admin create multicast_fdb default 01 00 5C 11 22 33 Command create multicast_fdb default 01 00 5C 11 22 33 Success DGS 3120 24TC admin 36 4 config multicast_fdb Description This command is used to configure the Switch s multicas...

Page 404: ...fy the FDB age out time in seconds The aging time affects the learning process of the Switch Dynamic forwarding table entries which are made up of the source MAC addresses and their associated port numbers are deleted from the table if they are not accessed within the aging time The aging time can be from 10 to 1000000 seconds with a default value of 300 seconds A very long aging time can result i...

Page 405: ...ximum name length is 32 vlan_name 32 The VLAN name can be up to 32 characters long all Specify all configured VLANs forward_all_groups Both the registered group and the unregistered group will be forwarded to all member ports of the specified VLAN where the multicast traffic comes in forward_unregistered_groups The unregistered group will be forwarded to all member ports of the VLAN where the mult...

Page 406: ...y DGS 3120 24TC admin delete fdb default 00 00 00 00 01 02 Command delete fdb default 00 00 00 00 01 02 Success DGS 3120 24TC admin 36 8 clear fdb Description This command is used to clear the Switch s forwarding database for dynamically learned MAC addresses Format clear fdb vlan vlan_name 32 port port all Parameters vlan Clears the FDB entry by specifying the VLAN name vlan_name 32 The name of t...

Page 407: ...itch Format show multicast_fdb vlan vlan_name 32 vlanid vidlist mac_address macaddr Parameters vlan Optional The name of the VLAN on which the MAC address resides vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Displays the entries for the VLANs indicated by VID list vidlist Enter the VLAN ID list here mac_address Optional Specify a MAC address f...

Page 408: ...r a specified port port Enter the port number here vlan Optional Displays the entries for a specific VLAN The maximum name length is 32 vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Displays the entries for the VLANs indicated by VID list vidlist Enter the VLAN ID list here mac_address Optional Displays a specific MAC address macaddr Enter the ...

Page 409: ...rity VID MAC Address Port Type Status Security Module 1 00 00 00 10 00 01 1 1 Dynamic Drop 802 1X 1 00 00 00 10 00 02 1 2 Static Forward WAC 1 00 00 00 10 00 04 1 4 Static Forward Port Security 1 00 00 00 10 00 0A 1 5 Static Forward MAC based Access Control 1 00 00 00 10 00 06 1 6 Dynamic Drop Compound Authentication Total Entries 5 DGS 3120 24TC admin 36 11 show multicast vlan_filtering_mode Desc...

Page 410: ... name can be up to 32 characters long If no parameter is specified the device will show all multicast filtering settings in the device Restrictions None Example To show the multicast vlan_filtering_mode for VLANs DGS 3120 24TC admin show multicast vlan_filtering_mode Command show multicast vlan_filtering_mode VLAN ID VLAN Name Multicast Filter Mode 1 default forward_unregistered_groups DGS 3120 24...

Page 411: ...disable Parameters portlist Specify the list of ports used all Specify that all the ports will be used for the configuration state Specify the state of the filter to block the NETBIOS packet enable Specify that the state will be enabled disable Specify that the state will be disabled Restrictions Only Administrator and Operator level users can issue this command Example To configure filter netbios...

Page 412: ...filter extensive_netbios portlist all state enable disable Parameters portlist Enter the list of ports used for this configuration here all Specify that all the ports will be used this configuration state Enable or disable the filter to block the NETBIOS packet over 802 3 frame enable Specify that the filter state will be enabled disable Specify that the filter state will be disabled Restrictions ...

Page 413: ...n This command is used to display the extensive netbios state on the Switch Format show filter extensive_netbios Parameters None Restrictions None Example To display the extensive_state created on the Switch DGS 3120 24TC admin show filter extensive_netbios Command show filter extensive_netbios Enabled Ports 1 3 DGS 3120 24TC admin ...

Page 414: ... pathname copy unit unit_id drive_id pathname unit unit_id drive_id pathname format unit unit_id drive_id fat16 fat32 label_name 38 1 show storage_media_info Description This command is used to display the information of the storage media available on the system There can be one or multiple media on the system The information for a media includes the drive number the media identification Format sh...

Page 415: ...drive unit unit_id drive_id Parameters unit Optional Specify a unit ID if in the stacking system If not specified it refers to the master unit unit_id Enter the unit ID value This value must be between 1 and 6 drive_id Specify the drive ID The format of drive_id is C D and so on Restrictions None Example To display the storage media s information DGS 3120 24TC admin change drive unit 3 c Command c...

Page 416: ...ue this command Example To make a directory DGS 3120 24TC admin md c abc Command md c abc Success DGS 3120 24TC admin 38 4 rd Description This command is used to remove a directory If there are files still existing in the directory this command will fail and return error message Format rd unit unit_id drive_id pathname Parameters unit Optional Specify a unit ID if in the stacking system If not spe...

Page 417: ...e is not specified Format cd pathname Parameters pathname Optional Specify the directory to be removed The path name can be specified either as a full path name or partial name For partial path name it indicates the file is in the current directory Restrictions None Example To change to other directory or display current directory path DGS 3120 24TC admin cd Command cd Current work directory unit2...

Page 418: ... Attr Size Update Time Name 1 CFG rw 29661 2000 04 01 05 54 38 config cfg 2 RUN rw 4879040 2000 03 26 03 15 11 B019 had 3 d 0 2000 04 01 05 17 36 system 29618 KB total 24727 KB free with boot up info b with backup info DGS 3120 24TC admin 38 7 rename Description This command is used to rename a file Note that for standalone device the unit argument is not needed This command is used to rename a fi...

Page 419: ...tory are softly deleted sequentially only the last one will exist Deleting copying renaming or moving the already softly deleted file is not acceptable System will prompt if the target file is a firmware or configuration file of which the type is bootup or backup Format del unit unit_id drive_id pathname recursive Parameters unit Optional Specify a unit ID if in the stacking system If not specifie...

Page 420: ...admin dir Command dir Directory of unit2 c Idx Info Attr Size Update Time Name 1 CFG rw 29661 2000 04 01 05 54 38 config cfg 2 RUN rw 4879040 2000 03 26 03 15 11 B019 had 3 d 0 2000 04 01 05 17 36 system 29618 KB total 24727 KB free with boot up info b with backup info DGS 3120 24TC admin 38 9 erase Description This command is used to delete a file stored in the file system System will prompt if t...

Page 421: ...Info Attr Size Update Time Name 1 CFG b rw 29661 2000 04 02 06 03 19 config2 cfg 2 CFG rw 29661 2000 04 01 05 54 38 config cfg 3 RUN rw 4879040 2000 03 26 03 15 11 B019 had 4 d 0 2000 04 01 05 17 36 system 29618 KB total 24697 KB free with boot up info b with backup info DGS 3120 24TC admin erase config2 cfg Command erase config2 cfg Success DGS 3120 24TC admin dir Command dir Directory of unit2 c...

Page 422: ...l Specify a unit ID if in the stacking system If not specified it refers to the master unit unit_id Enter the unit ID value This value must be between 1 and 6 drive_id Optional Enter the drive ID used here Examples are C or D pathname Specify the new path where the file will be moved The path name can be For partial path name it indicates the file is in the current directory Restrictions Only Admi...

Page 423: ...ional Enter the drive ID Examples are C or D pathname Specify the file to copy to The path name can be specified either as a full path name or partial name For partial path name it indicates the file is in the current directory Restrictions Only Administrator and Operator level users can issue this command Example To copy a file DGS 3120 24TC admin copy c log txt c log1 txt Command copy c log txt ...

Page 424: ...rnet Switch CLI Reference Guide 419 Restrictions Only Administrator and Operator level users can issue this command Example To format a drive DGS 3120 24TC admin format d fat32 aaaa Command format d fat32 aaaa Formatting Done Success DGS 3120 24TC admin ...

Page 425: ...enable or disable the sending of gratuitous ARP when the IP interface s status is up This is used to automatically announce the interface s IP address to other nodes Only one gratuitous ARP packet will be broadcasted Format config gratuitous_arp send ipif_status_up enable disable Parameters enable Enable the sending of gratuitous ARP when the IP interface s status is up disable Disable the sending...

Page 426: ...e default value Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable send gratuitous ARP request when duplicate IP is detected DGS 3120 24TC admin config gratuitous_arp send dup_ip_detected enable Command config gratuitous_arp send dup_ip_detected enable Success DGS 3120 24TC admin 39 3 config gratuitous_arp learning Description This command ...

Page 427: ...rp send periodically Description The command is used to configure the interval for periodical sending of gratuitous ARP request packet By default the interval is 0 Format config gratuitous_arp send periodically ipif ipif_name 12 interval value 0 65535 Parameters ipif Interface name of L3 interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long interval Peri...

Page 428: ...terface name of L3 interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long trap Specify to enable the trap function log Specify to enable the log function Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable system interface s gratuitous ARP log and trap DGS 3120 24TC admin enable gratuitous_arp ipif ...

Page 429: ...er User level users can issue this command Example To disable system interface s gratuitous ARP log and trap DGS 3120 24TC admin disable gratuitous_arp ipif System trap log Command disable gratuitous_arp ipif System trap log Success DGS 3120 24TC admin 39 7 show gratuitous_arp Description This command is used to display gratuitous ARP configuration Format show gratuitous_arp ipif ipif_name 12 Para...

Page 430: ... show gratuitous_arp Command show gratuitous_arp Send on IPIF Status Up Enabled Send on Duplicate IP Detected Enabled Gratuitous ARP Learning Enabled IP Interface Name System Gratuitous ARP Trap Enabled Gratuitous ARP Log Enabled Gratuitous ARP Periodical Send Interval 5 Total Entries 1 DGS 3120 24TC admin ...

Page 431: ... IP interface name used for this configuration ipif_name 12 Enter the IP interface name used for this configuration here This name can be up to 12 characters long all Specify that all the IP interfaces will be used version Specify the IGMP version used value 1 3 Enter the IGMP version number used here This value must be between 1 and 3 The default value is 3 query_interval Specify the time in seco...

Page 432: ...onfig igmp ipif System version 1 state enable Success DGS 3120 24TC admin To configure IGMPv2 for all IP interfaces DGS 3120 24TC admin config igmp all version 2 Command config igmp all version 2 Success DGS 3120 24TC admin 40 2 show igmp Description This command is used to display the IGMP configuration Format show igmp ipif ipif_name 12 Parameters ipif Optional Specify the IP interface name to b...

Page 433: ... show igmp group Description This command is used to display the switch s IGMP group table Format show igmp group group multicast_ipaddr ipif ipif_name 12 Parameters group Optional Specify the multicast group ID multicast_ipaddr Enter the multicast group ID value here ipif Optional Specify the IP interface name to be displayed ipif_name 12 Enter the IP interface name to be displayed here This name...

Page 434: ...terface will be checked to determine whether its source IP is in the same network as the interface If the check failed for a received report or leave message the message won t be processed by IGMP protocol If the check is disabled the IGMP report or leave message with any source IP will be processed by the IGMP protocol Format config igmp check_subscriber_source_network ipif ipif_name 12 all enabl...

Page 435: ...onal Specify the IP interface name to be displayed ipif_name 12 Enter the IP interface name to be displayed here This name can be up to 12 characters long If no parameter is specified the system will display all interfaces Restrictions None Example To show the status of the check subscriber for the received IGMP report leave messages on interface n20 DGS 3120 24TC admin show igmp check_subscriber_...

Page 436: ...mp static_group ipif ipif_name 12 group multicast_ipaddr Parameters ipif_name 12 Enter the IP interface name used for this configuration This name can be up to 12 characters long group Specify the multicast IP address used multicast_ipaddr Enter the multicast IP address used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To create an IGMP st...

Page 437: ...o delete the IGMP static group with the multicast IP address 225 0 0 2 on the IP interface System DGS 3120 24TC admin delete igmp static_group ipif System group 255 0 0 2 Command delete igmp static_group ipif System group 255 0 0 2 Success DGS 3120 24TC admin To delete all IGMP static groups on the IP interface n2 DGS 3120 24TC admin delete igmp static_group ipif n2 all Command delete igmp static_...

Page 438: ...ic groups on the interface n20 DGS 3120 24TC admin show igmp static_group ipif n20 Command show igmp static_group ipif n20 Interface Multicast Group n20 239 0 0 3 Total Entries 1 DGS 3120 24TC admin To display all IGMP static groups on all interfaces DGS 3120 24TC admin show igmp static_group Command show igmp static_group Interface Multicast Group System 225 0 0 1 System 225 0 0 2 n20 239 0 0 3 T...

Page 439: ...ource_ip ipaddr unsolicited_report_interval sec 0 25 1 show igmp_proxy group 41 1 enable igmp_proxy Description This command is used to enable the IGMP proxy on the switch Format enable igmp_proxy Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the IGMP proxy DGS 3120 24TC admin enable igmp_proxy Command enable igmp_proxy...

Page 440: ... snooping enabled VLAN Format config igmp_proxy downstream_if add delete vlan vlan_name 32 vlanid vidlist Parameters add Specify to add a downstream interface delete Specify to delete a downstream interface vlan Specify the VLAN by name or ID vlan_name 32 Specify a name of VLAN which will be added to or deleted from the IGMP proxy downstream interface The maximum length is 32 characters vlanid Spe...

Page 441: ...report_interval sec 0 25 1 Parameters vlan Specify the VLAN for the upstream interface vlan_name 32 Specify a VLAN name between 1 and 32 characters vlanid Specify the VLAN ID for the upstream interface 1 4094 Specify the VLAN ID between 1 and 4094 router_ports Specify a list of ports that are connected to multicast enabled routers add Specify to add the router ports delete Specify to delete the ro...

Page 442: ...m means group entry is determined by whether or not the chip is inserted Format show igmp_proxy group Parameters group Optional Specify the group information If the group is not specified the IGMP proxy configuration will be displayed Restrictions None Example To display IGMP proxy information DGS 3120 24TC admin show igmp_proxy Command show igmp_proxy IGMP Proxy Global State Enabled Upstream Inte...

Page 443: ... Guide 438 DGS 3120 24TC admin show igmp_proxy group Command show igmp_proxy group Dest V The destination VLAN A Active I Inactive Dest IP Source IP Dest V Member Ports Status 224 2 2 2 NULL 4 3 6 A 2 2 4 I 227 3 1 5 NULL 2 2 5 8 I 3 5 7 9 A Total Entries 2 DGS 3120 24TC admin ...

Page 444: ...y_interval sec 1 65535 max_response_time sec 1 25 robustness_variable value 1 7 last_member_query_interval sec 1 25 state enable disable version value 1 3 1 config igmp access_authentication ports all portlist state enable disable config router_ports vlan_name 32 vlanid vlanid_list add delete portlist config router_ports_forbidden vlan_name 32 vlanid vlanid_list add delete portlist enable igmp_sno...

Page 445: ...e of link layer topology changes caused by Spanning Tree operation or not ignore Specify that IGMP snooping will ignore link layer topology changes caused by Spanning Tree operation General queries won t be sent on the same domain of link layer topology changes process Specify that IGMP snooping will process link layer topology changes caused by Spanning Tree operation General queries will be sent...

Page 446: ...cket that the Switch can process on a specific port VLAN The rate is specified in packets per second The packets that exceed the limit will be dropped no_limit Configure the rate of the IGMP control packet to be unlimited that the Switch can process on a specific port VLAN The rate is specified in packets per second The packets that exceed the limit will be dropped The default setting is no_limit ...

Page 447: ...s calculated as follows robustness variable x query interval 1 x query response interval Other querier present interval Amount of time that must pass before a multicast router decides that there is no longer another multicast router that is the querier This interval is calculated as follows robustness variable x query interval 0 5 x query response interval Last member query count Number of group s...

Page 448: ...ntication ports Description This command is used to enable or disable the IGMP Access Control function for the specified ports If the IGMP Access Control function is enabled and the Switch receives an IGMP JOIN message the Switch will send the access request to the RADIUS server for authentication Format config igmp access_authentication ports all portlist state enable disable Parameters all Speci...

Page 449: ...rameters vlan_name 32 Specify the name of the VLAN on which the router port resides vlanid Specify the ID of the VLAN on which the router port resides vlanid_list Enter the VLAN ID here add Specify to add the router ports delete Specify to delete the router ports portlist Specify a range of ports to be configured Restrictions Only Administrator Operator and Power User level users can issue this co...

Page 450: ...tlist Specify a range of ports to be configured Restrictions Only Administrator Operator and Power User level users can issue this command Example To set up port range 1 10 to forbidden router ports of default VLAN DGS 3120 24TC admin config router_ports_forbidden default add 1 11 1 12 Command config router_ports_forbidden default add 1 11 1 12 Success DGS 3120 24TC admin 42 7 enable igmp_snooping...

Page 451: ... can issue this command Example To disable IGMP snooping on the Switch DGS 3120 24TC admin disable igmp_snooping Command disable igmp_snooping Success DGS 3120 24TC admin 42 9 create igmp_snooping static_group Description This command is used to create an IGMP snooping static group Member ports can be added to the static group The static member and the dynamic member port form the member ports of ...

Page 452: ...nly Administrator Operator and Power User level users can issue this command Example To create an IGMP snooping static group for VLAN 1 group 239 1 1 1 DGS 3120 24TC admin create igmp_snooping static_group vlan default 239 1 1 1 Command create igmp_snooping static_group vlan default 239 1 1 1 Success DGS 3120 24TC admin 42 10 delete igmp_snooping static_group Description This command is used to de...

Page 453: ...mber port learned by IGMP If this port is configured as a static member later then the IGMP protocol will stop operating on this port The IGMP protocol will resume once this port is removed from static member ports The static member port will only affect V2 IGMP operation Format config igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr add delete portlist Parameters vlan Specif...

Page 454: ...multicast group static members Format show igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr Parameters vlan Specify the name of the VLAN on which the static group resides vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Specify the ID of the VLAN on which the static group resides vlanid_list Enter the VLAN ID here ipaddr Specify the m...

Page 455: ...rts are learned later the entry will become an ordinary IGMP snooping entry That is the aging out mechanism will follow the ordinary IGMP snooping entry Format config igmp_snooping data_driven_learning all vlan_name vlan_name 32 vlanid vlanid_list state enable disable aged_out enable disable expiry_time sec 1 65535 1 Parameters all Specify all VLANs to be configured vlan_name Specify the VLAN name...

Page 456: ...top the learning of the new data driven groups Traffic for the new groups will be dropped Format config igmp_snooping data_driven_learning max_learned_entry value 1 1024 Parameters max_learned_entry Specify the maximum number of groups that can be learned by data driven The suggested default setting is 56 This default setting may vary depending on projects value 1 1024 Enter the maximum learning e...

Page 457: ... the group s IP address learned by data driven all Delete all IGMP snooping groups of specified VLANs Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete all the groups learned by data driven DGS 3120 24TC admin clear igmp_snooping data_driven_group all Command clear igmp_snooping data_driven_group all Success DGS 3120 24TC admin 42 16 show ...

Page 458: ... Query Interval 125 Max Response Time 10 Robustness Value 2 Last Member Query Interval 1 Querier State Disabled Querier Role Non Querier Querier IP 0 0 0 0 Querier Expiry Time 0 secs State Disabled Fast Leave Disabled Rate Limit pkt sec No Limitation Proxy Reporting Disabled Proxy Reporting Source IP 0 0 0 0 Version 3 Total Entries 1 DGS 3120 24TC admin 42 17 show igmp_snooping rate_limit Descript...

Page 459: ...list ports portlist ipaddr data_driven Parameters vlan Optional Specify the name of the VLAN for which you want to view IGMP snooping group information If VLAN ports and IP address are not specified the system will display all current IGMP snooping group information vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN for wh...

Page 460: ...ource Group 10 0 0 10 225 0 0 1 VLAN Name VID default 1 Member Ports 1 5 UP Time 6 Expiry Time 254 Filter Mode INCLUDE Source Group NULL 239 255 255 250 VLAN Name VID default 1 Member Ports 1 5 UP Time 2 Expiry Time 258 Filter Mode EXCLUDE Total Entries 3 DGS 3120 24TC admin DGS 3120 24TC admin show igmp_snooping group data_driven Command show igmp_snooping group data_driven Source Group NULL 225 ...

Page 461: ... Time 9 Expiry Time 259 Filter Mode EXCLUDE Source Group NULL 226 0 0 3 VLAN Name VID default 1 Member Ports Router Ports UP Time 1 Expiry Time 259 Filter Mode EXCLUDE Source Group NULL 239 255 255 250 VLAN Name VID default 1 Member Ports 1 5 UP Time 1 Expiry Time 259 Filter Mode EXCLUDE Total Entries 4 DGS 3120 24TC admin 42 19 show igmp_snooping forwarding Description This command is used to dis...

Page 462: ...nooping forwarding table entries of the Switch Restrictions None Example To show all IGMP snooping forwarding entries located on the Switch DGS 3120 24TC admin show igmp_snooping forwarding Command show igmp_snooping forwarding VLAN Name default Source IP 10 90 90 114 Multicast Group 225 0 0 0 Port Member 2 7 VLAN Name default Source IP 10 90 90 10 Multicast Group 225 0 0 1 Port Member 2 5 VLAN Na...

Page 463: ...gured forbidden Optional Displays forbidden router ports that have been statically configured If no parameter is specified the system will display all currently configured router ports on the Switch Restrictions None Example To display router ports DGS 3120 24TC admin show router_ports all Command show router_ports all VLAN Name default Static Router Port 1 1 1 10 Dynamic Router Port Router IP For...

Page 464: ...n show igmp_snooping statistics counter vlanid 1 Command show igmp_snooping statistics counter vlanid 1 VLAN Name default Group Number 10 Receive Statistics Query IGMP v1 Query 1 IGMP v2 Query 1 IGMP v3 Query 1 Total 3 Dropped By Rate Limitation 1 Dropped By Multicast VLAN 1 Report Leave IGMP v1 Report 0 IGMP v2 Report 10 IGMP v3 Report 10 IGMP v2 Leave 1 Total 21 Dropped By Rate Limitation 0 Drop...

Page 465: ...tatistics Query IGMP v1 Query 0 IGMP v2 Query 0 IGMP v3 Query 0 Total 0 Dropped By Rate Limitation 0 Dropped By Multicast VLAN 0 Report Leave IGMP v1 Report 0 IGMP v2 Report 100 IGMP v3 Report 0 IGMP v2 Leave 0 Total 100 Dropped By Rate Limitation 0 Dropped By Max Group Limitation 90 Dropped By Group Filter 0 Dropped By Multicast VLAN 0 Transmit Statistics Query IGMP v1 Query 0 IGMP v2 Query 0 IGM...

Page 466: ...None Example To display the IGMP Access Control status for ports 1 4 DGS 3120 24TC admin show igmp access_authentication ports 1 1 1 4 Command show igmp access_authentication ports 1 1 1 4 Port State 1 1 Enabled 1 2 Disabled 1 3 Disabled 1 4 Disabled DGS 3120 24TC admin To display the IGMP Access Control status for all ports DGS 3120 24TC admin show igmp access_authentication ports all Command sho...

Page 467: ...a All 42 23 clear igmp_snooping statistics counter Description This command is used to clear the IGMP snooping statistics counter Format clear igmp_snooping statistics counter Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear the IGMP snooping statistics counter DGS 3120 24TC admin clear igmp_snooping statistic counter Comma...

Page 468: ...hcp_snoop ipv6 all disable address_binding dhcp_snoop ipv6 all clear address_binding dhcp_snoop binding_entry ports portlist all ipv6 all show address_binding dhcp_snoop max_entry ports portlist show address_binding dhcp_snoop binding_entry port port show address_binding dhcp_snoop limit_rate ports portlist config address_binding dhcp_snoop max_entry ports portlist all limit value 1 50 no_limit ip...

Page 469: ... list of ports used for this configuration here all Specify that all the ports will be included Restrictions Only Administrator Operator and Power User level users can issue this command Example To create an IMPB entry DGS 3120 24TC admin create address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Command create address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 0...

Page 470: ...cify whether to allow ARP packets with a source IP address of 0 0 0 0 If the IP address 0 0 0 0 is not configured in the binding list and this setting is enabled ARP packets with the source IP address of 0 0 0 0 will be allowed If the IP address 0 0 0 0 is not configured in the binding list and this setting is disabled ARP packets with the source IP address of 0 0 0 0 will not be allowed This opti...

Page 471: ...to all the ports Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a static IPv6 IMPB entry that binds the IPv6 address fe80 240 5ff fe00 28 to the MAC address 00 00 00 00 00 11 DGS 3120 24TC admin create address_binding ip_mac ipv6address fe80 240 5ff fe00 28 mac_address 00 00 00 00 00 11 Command create address_binding ip_mac ipv6address ...

Page 472: ...s fe80 240 5ff fe00 28 mac_address 00 00 00 00 00 11 Command config address_binding ip_mac ipv6address FE80 240 5FF FE00 28 mac_address 00 00 00 00 00 11 Success DGS 3120 24TC admin 43 5 delete address_binding blocked Description This command is used to delete a blocked entry Format delete address_binding blocked all vlan_name vlan_name mac_address macaddr Parameters all Specify that all the entri...

Page 473: ...s of the entry in the database ipaddr Enter the IP address used mac_address Specify the MAC address used for this configuration macaddr Enter the MAC address used ipv6address Specify the learned IPv6 address of the entry in the database ipv6addr Enter the IPv6 address used mac_address Specify the MAC address used for this configuration macaddr Enter the MAC address used Restrictions Only Administr...

Page 474: ...here all Specify that all the ports will be used Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure an IMPB entry DGS 3120 24TC admin config address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Command config address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Success DGS 3120 24TC admin 43 8 show a...

Page 475: ...top Learning Threshold Mode 1 Disabled Disabled Disabled All Not Allow Forward 500 Normal 2 Disabled Disabled Disabled All Not Allow Forward 500 Normal 3 Disabled Disabled Disabled All Not Allow Forward 500 Normal 4 Disabled Disabled Disabled All Not Allow Forward 500 Normal 5 Disabled Disabled Disabled All Not Allow Forward 500 Normal 6 Disabled Disabled Disabled All Not Allow Forward 500 Normal ...

Page 476: ...ng blocked all VID VLAN Name MAC Address Port 1 default 00 0C 6E AA B9 C0 1 1 Total Entries 1 DGS 3120 24TC admin 43 10 show address_binding ip_mac Description This command is used to display the IMPB entries Format show address_binding ip_mac all ipaddress ipaddr ipv6address ipv6addr mac_address macaddr mac_address macaddr Parameters all Specify that all the IP addresses to be displayed ipaddress...

Page 477: ...n the port The auto learned IMPB entry will be mapped to a specific source port based on the MAC address learning function This entry will be created as an IP Inspection mode binding entry for this specific port Each entry is associated with a lease time When the lease time has expires the expired entry will be removed from the port The auto learned binding entry can be moved from one port to anot...

Page 478: ...y Administrator Operator and Power User level users can issue this command Example To enable DHCP IPv4 snooping mode DGS 3120 24TC admin enable address_binding dhcp_snoop Command enable address_binding dhcp_snoop Success DGS 3120 24TC admin 43 12 disable address_binding dhcp_snoop Description This command is used to disable DHCP snooping mode When the DHCP snooping function is disabled all of the ...

Page 479: ...portlist Enter the list of ports used all Specify that all the ports will be used ipv6 Optional Specify that IPv6 entries will be cleared all Optional Specify that all entries will be cleared Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear DHCP IPv4 snooping entries on ports 1 3 DGS 3120 24TC admin clear address_binding dhcp_snoop binding...

Page 480: ...covery Time 300 Seconds DGS 3120 24TC admin To display DHCP snooping maximun entry configuration DGS 3120 24TC admin show address_binding dhcp_snoop max_entry Command show address_binding dhcp_snoop max_entry Port Max Entry Max IPv6 Entry 1 1 No Limit No Limit 1 2 No Limit No Limit 1 3 No Limit No Limit 1 4 No Limit No Limit 1 5 No Limit No Limit 1 6 No Limit No Limit 1 7 No Limit No Limit 1 8 No ...

Page 481: ...ng binding entries DGS 3120 24TC admin show address_binding dhcp_snoop binding_entry Command show address_binding dhcp_snoop binding_entry S Status A Active I Inactive Time Left Time sec IP Address MAC Address S LT sec Port 10 62 58 35 00 0B 5D 05 34 0B A 35964 1 10 33 53 82 00 20 c3 56 b2 ef I 2590 2 Total Entries 2 DGS 3120 24TC admin 43 16 show address_binding dhcp_snoop limit_rate Description ...

Page 482: ...5 No Limit 1 6 No Limit 1 7 No Limit 1 8 No Limit 1 9 No Limit 1 10 No Limit 1 11 No Limit 1 12 No Limit 1 13 No Limit 1 14 No Limit 1 15 No Limit 1 16 No Limit 1 17 No Limit 1 18 No Limit 1 19 No Limit 1 20 No Limit 1 21 No Limit 1 22 No Limit 1 23 No Limit 1 24 No Limit DGS 3120 24TC admin 43 17 config address_binding dhcp_snoop max_entry Description This command is used to specify the maximum n...

Page 483: ...TC admin config address_binding dhcp_snoop max_entry ports 1 1 1 3 limit 10 Command config address_binding dhcp_snoop max_entry ports 1 1 1 3 limit 10 Success DGS 3120 24TC admin 43 18 config address_binding dhcp_snoop_entry filename Description This command is used to configure the autosave state of DHCPv4 Snooping binding entries NOTE This feature is only supported on devices that support extern...

Page 484: ..._binding nd_snoop Description This command is used to enable ND snooping on the switch Format enable address_binding nd_snoop Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the ND snooping function on the switch DGS 3120 24TC admin enable address_binding nd_snoop Command enable address_binding nd_snoop Success DGS 3120 2...

Page 485: ...the maximum number of entries that can be learned on a port with ND snooping Format config address_binding nd_snoop ports portlist all max_entry value 1 50 no_limit Parameters ports Specify the list of ports used for this configuration portlist Enter the list of ports used for this configuration here all Specify that all the ports will be usd for this configuration max_entry Specify the maximum nu...

Page 486: ...ng nd_snoop ports portlist Parameters ports Optional Specify the list of ports used for this display portlist Enter the list of ports used for this display here Restrictions None Example To show the ND snooping state DGS 3120 24TC admin show address_binding nd_snoop Command show address_binding nd_snoop ND Snoop Enabled DGS 3120 24TC admin To show the ND snooping maximum entry information for port...

Page 487: ..._binding nd_snoop binding_entry Command show address_binding nd_snoop binding_entry S Status A Active I Inactive Time Left Time sec IP Address MAC Address S LT sec Port 2001 2222 1111 7777 5555 6666 7777 8888 00 00 00 00 00 02 I 50 5 2001 1 00 00 00 00 03 02 A 100 6 Total Entries 2 DGS 3120 24TC admin 43 24 clear address_binding nd_snoop binding_entry ports Description This command is used to clea...

Page 488: ...GS 3120 24TC admin 43 25 enable address_binding trap_log Description This command is used to send traps and logs when the IMPB module detects an illegal IP and MAC address Format enable address_binding trap_log Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the IMPB traps and logs DGS 3120 24TC admin enable address_bindi...

Page 489: ...disable address_binding trap_log Success DGS 3120 24TC admin 43 27 config address_binding recover_learning Description This command is used to recover IMPB checking Format config address_binding recover_learning ports portlist all Parameters ports Specify the list of ports that need to recover the IMPB check portlist Enter the list of port used here all Specify that all the ports will be used Rest...

Page 490: ...an interface can receive per second value 1 2048 Enter the value between 1 and 2048 mode Specify the DHCP protection mode The default is shutdown drop Drop all the above rate limit DHCP packets when the port enters the under attack state shutdown Shut down the port when the port enters the under attack state no_limit Disable DHCP snooping rate limiting This is the default Restrictions Only Adminis...

Page 491: ..._timer 1000 Success DGS 3120 24TC admin 43 30 enable address_binding roaming Description This command is used to enable IMPB roaming When a client was authenticated on the specified port using the DHCP ND snooping function the Switch will allow this authenticated client VLAN ID and MAC address to change to another port if it detects a new DHCP ND process caused by the Station Move function This be...

Page 492: ...e MAC address learned at port 1 will not have chance to change to port 2 until the IMPB entry aged out NOTE For an inactive entry whether the roaming state is enabled or not it detects whether a new ARP or IP packet belongs to the same IP address from other ports The inactive entry will change the port and set state to active Format disable address_binding roaming Parameters None Restrictions Only...

Page 493: ...ding table DGS 3120 24TC admin download address_binding snoop_entry_fromTFTP 10 90 90 6 filename impb cfg Command download address_binding snoop_entry_fromTFTP 10 90 90 6 filename impb cfg Connecting to server Done Download DHCP Snooping Entry Done DGS 3120 24TC admin 43 33 upload address_binding snoop_entry_toTFTP Description This command is used to upload DHCPv4 Snooping binding entries by TFTP ...

Page 494: ... upload address_binding snoop_entry_toTFTP 10 90 90 6 filename impb cfg Connecting to server Done Upload DHCP Snooping Entry Done DGS 3120 24TC admin 43 34 save dhcp_snoop_entry Description This command is used to save the DHCPv4 Snooping binding entries Format save dhcp_snoop_entry Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To backup ...

Page 495: ...lticast interface that will be displayed ipif_name 12 Enter the IP Multicast interface name that will be displayed here This name can be up to 12 characters long protocol Optional Specify which kind of routing protocol the interface table will display inactive Specify that the protocol display feature will be inactive dvmrp Specify that the DVMRP protocol will be displayed pim Specify that the PIM...

Page 496: ...alue here ipaddress Optional Specify the network address used here network_address Enter the network address used here Restrictions None Example To display the IP multicast forwarding cache DGS 3120 24TC admin show ipmc cache Command show ipmc cache IP Multicast Forwarding Table Multicast Source Upstream Expire Routing Group Address Netmask Neighbor Time Protocol 224 1 1 1 10 48 74 121 8 10 48 75 ...

Page 497: ...ipif_name 12 route_source list_name 16 set add delete next_hop ipaddr metric uint 0 4294967294 metric_type type_1 type_2 delete route_map map_name map_name 16 all_seqence all show route_map map_name 16 45 1 create ip standard access_list Description This command is used to create an access list to filter routes Format create ip standard access_list list_name 16 Parameters list_name16 Enter the nam...

Page 498: ...trator Operator and Power User level users can issue this command Example To add an entry to the access list DGS 3120 24TC admin config ip standard access_list list1 add 10 10 10 0 24 permit Command config ip standard access_list list1 add 10 10 10 0 24 permit Success DGS 3120 24TC admin 45 3 delete ip standard access_list Description This command is used to delete an access list identified by the...

Page 499: ...to display the information of an access list Format show ip standard access_list list_name 16 Parameters list_name16 Optional Enter the name of the access list Restrictions None Example To display the information of an access list named list1 DGS 3120 24TC admin show ip standard access_list list1 Command show ip standard access_list list1 IP standard Access_list list1 Total entries number 1 filter...

Page 500: ... Format config route_map map_name 16 add delete sequence value 1 65535 deny permit sequence value 1 65535 match add delete ip next_hop address list_name 16 metric uint 0 4294967294 route_type internal external type_1 type_2 interface ipif_name 12 route_source list_name 16 set add delete next_hop ipaddr metric uint 0 4294967294 metric_type type_1 type_2 Parameters map_name 16 Enter the name of the ...

Page 501: ...ify to set the next hop of the routes ipaddr Enter the IP address of the next hop metric Specify to set the metric of the routes uint 0 4294967294 Enter the value of the metric metric_type Specify to set the type of metric of the routes type_1 Specify to set the metric of the routes to be the OSPF external type 1 metric type_2 Specify to set the metric of the routes to be the OSPF external type 2 ...

Page 502: ...can issue this command Example To delete the route map DGS 3120 24TC admin delete route_map map_name map1 Command delete route_map map_name map1 Success DGS 3120 24TC admin 45 8 show route_map Description This command is used to display the route map configuration Format show route_map map_name 16 Parameters mep_name 16 Optional Enter the route map name Restrictions None Example To display the rou...

Page 503: ... Ethernet Switch CLI Reference Guide 498 DGS 3120 24TC admin show route_map Command show route_map route_map map1 sequence 10 Permit Match clauses Set clauses sequence 20 Permit Match clauses Set clauses Total Route Map Count 1 DGS 3120 24TC admin ...

Page 504: ... 12 ipaddress network_address ipv6address ipv6networkaddr source ipaddr ipv6addr destination ipaddr ipv6addr show ip_tunnel tunnel_name 12 enable ip_tunnel tunnel_name 12 disable ip_tunnel tunnel_name 12 46 1 create ip_tunnel Description This command is used to create an IP tunnel interface Format create ip_tunnel tunnel_name 12 Parameters tunnel_name 12 Enter the IP tunnel interface name used her...

Page 505: ...sed to configure an IPv6 manual tunnel If this tunnel has previously been configured in another mode the tunnel s information will still exist in the database However whether the tunnel s former information is invalid or not will depend on the current mode IPv6 Manual tunnels are simple point to point tunnels that can be used within a site or between sites Format config ip_tunnel manual tunnel_nam...

Page 506: ... 2001 1 64 Success DGS 3120 24TC admin 46 4 config ip_tunnel 6to4 Description This command is used to configure an existing IPv6 tunnel as an IPv6 6to4 tunnel on the switch If this tunnel has previously been configured in another mode the tunnel s information will still exist in the database However whether the tunnel s former information is invalid or not will depend on the current mode A maximum...

Page 507: ...ipv6address 2002 A00 1 1 64 source 10 0 0 1 Command config ip_tunnel 6to4 tn2 ipv6address 2002 A00 1 1 64 source 10 0 0 1 Success DGS 3120 24TC admin 46 5 config ip_tunnel isatap Description This command is used to configure an existing IPv6 tunnel as an IPv6 ISATAP tunnel on the switch If this tunnel has previously been configured in another mode the tunnel s information will still exist in the d...

Page 508: ...ll exist in the database However whether the tunnel s former information is valid or not depends on the current mode GRE tunnels are simple point to point tunnels that can be used within a site or between sites Format config ip_tunnel gre tunnel_name 12 ipaddress network_address ipv6address ipv6networkaddr source ipaddr ipv6addr destination ipaddr ipv6addr 1 Parameters tunnel_name 12 Enter the IP ...

Page 509: ... interface s IPv4 address 2 0 0 1 8 DGS 3120 24TC admin config ip_tunnel gre tn1 source 1 0 0 1 destination 1 0 0 2 Command config ip_tunnel gre tn1 source 1 0 0 1 destination 1 0 0 2 Success DGS 3120 24TC admin config ip_tunnel gre tn1 ipaddress 2 0 0 1 8 ipv6address 2000 1 64 Command config ip_tunnel gre tn1 ipaddress 2 0 0 1 8 ipv6address 2000 1 64 Success DGS 3120 24TC admin To display the con...

Page 510: ...Tunnel Mode ISATAP IPv6 Link Local Address FE80 5EFE A00 1 128 IPv6 Global Unicast Address 2001 5EFE A00 1 64 Tunnel Source 10 0 0 1 Tunnel Destination Unknown DGS 3120 24TC admin 46 8 enable ip_tunnel Description This command is used to enable a single specified IP tunnel or all IP tunnels on the Switch Format enable ip_tunnel tunnel_name 12 Parameters tunnel_name 12 Optional Enter the IP tunnel ...

Page 511: ...pecified IP tunnel or all IP tunnels on the Switch Format disable ip_tunnel tunnel_name 12 Parameters tunnel_name 12 Optional Enter the IP tunnel interface name used here This name can be up to 12 characters long Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable an IP tunnel interface Tunnel name is tn2 DGS 3120 24TC admin disable ip_tunn...

Page 512: ...le disable other_config_flag enable disable min_rtr_adv_interval sec 3 1350 max_rtr_adv_interval sec 4 1800 1 RI Mode Only config ipv6 nd ra prefix_option ipif ipif_name 12 ipv6networkaddr preferred_life_time sec 0 4294967295 valid_life_time sec 0 4294967295 on_link_flag enable disable autonomous_flag enable disable 1 RI Mode Only 47 1 create ipv6 neighbor_cache Description This command is used to...

Page 513: ...v6 interface name ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long all Specify that all the interfaces will be used in this configuration ipv6addr The neighbor s address static Delete the static entry dynamic Delete those dynamic entries all All entries include static and dynamic entries will be deleted Restrictions Only Administrator Operator and Power User ...

Page 514: ...nd dynamic entries Restrictions None Example Show all neighbor cache entries of IP interface System DGS 3120 24TC admin show ipv6 neighbor_cache ipif System all Command show ipv6 neighbor_cache ipif System all 3FFC 1 State Static MAC Address 00 01 02 03 04 05 Port NA Interface System VID 1 Total Entries 1 DGS 3120 24TC admin 47 4 config ipv6 nd ns retrans_time Description This command is used to c...

Page 515: ...retrans_time 1000000 Command config ipv6 nd ns ipif Zira retrans_time 1000000 Success DGS 3120 24TC admin 47 5 show ipv6 nd Description This command is used to display information regarding neighbor detection on the Switch Format show ipv6 nd ipif ipif_name 12 Parameters ipif Optional The name of the interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long ...

Page 516: ...e IPv6 header for packets sent by hosts that receive this RA message value 0 255 Specify the value between 0 and 255 managed_flag Specify to enable or disable the function enable When set to enable it indicates that hosts receiving this RA must use a stateful address configuration protocol to obtain an address in addition to the addresses derived from the stateless address configuration disable Se...

Page 517: ...between 0 and 4294967295 milliseconds For an infinite valid lifetime the value can be set to 4294967295 valid_life_time Specify the number of seconds that an address based on the specified prefix using the stateless address configuration remains valid sec 0 4294967295 Specify the time between 0 and 4294967295 milliseconds For an infinite valid lifetime the value can be set to 4294967295 on_link_fl...

Page 518: ...e of prefix option to be 1000 seconds for the prefix 3ffe 501 ffff 100 64 which is the prefix of the ip1 interface DGS 3120 24TC admin config ipv6 nd ra prefix_option ipif ip1 3ffe 501 ffff 100 64 preferred_life_time 1000 Command config ipv6 nd ra prefix_option ipif ip1 3ffe 501 ffff 100 64 preferred_life_time 1000 Success DGS 3120 24TC admin ...

Page 519: ...efault route ipv6networkaddr Specify the destination network of the route RI and EI Mode Only ipif_name 12 Specify the interface for the route This name can be up to 12 characters long ipv6addr Specify the next hop address for this route ipv6addr Specify the next hop address for this route metric 1 65535 Optional Enter the metric value here The default setting is 1 This value must between 1 and 65...

Page 520: ...t Specify the default route ipv6networkaddr The destination network of the route RI and EI Mode Only ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long ipv6addr Specify the next hop address for the route ipv6addr Specify the next hop address for the route ip_tunnel Specify the IP tunnel interface of the route RI Mode Only tunnel_name 12 Enter the IP tunnel...

Page 521: ...y only the RIPng route entries RI Mode Only ospfv3 Optional Specify to display only the OSPFv3 route entries RI Mode Only hardware Optional Specify to display only the route entries which have been wrote into hardware table Example Show all the IPv6 routes DGS 3120 24PC admin show ipv6route Command show ipv6route IPv6 Prefix 1111 1111 64 Protocol Local Metric 1 Next Hop IPIF System IPv6 Prefix 210...

Page 522: ...ts portlist all state enable disable max_authenticating_host value 0 50 aging_time infinite min 1 1440 idle_time infinite min 1 1440 block_time sec 0 300 1 show jwac ports portlist config jwac radius_protocol local eap_md5 pap chap ms_chap ms_chapv2 create jwac user username 15 vlan vlanid 1 4094 config jwac user username 15 vlan vlanid 1 4094 delete jwac user username 15 all_users show jwac user ...

Page 523: ...rship change by JWAC after a host passes authentication The RADIUS server will share the server configuration defined by the 802 1X command set Format enable jwac Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable JWAC DGS 3120 24TC admin enable jwac Command enable jwac Success DGS 3120 24TC admin 49 2 disable jwac Descripti...

Page 524: ...he static FDB correctly before it can work properly Format config jwac quarantine_server_url string 128 ipv6 string 128 clear_quarantine_server_url ipv6 Parameters quarantine_server_url Specify the entire URL of the authentication page on the quarantine server string 128 Specify the entire URL of the authentication page on the quarantine server The quarantine server URL can be up to 128 characters...

Page 525: ...TTP Port 80 HTTP UDP Filtering Enabled Forcible Logout Enabled Redirect State Enabled Redirect Delay Time 1 Seconds Redirect Destination Quarantine Server Quarantine Server Quarantine Server IPv6 Q Server Monitor Disabled Q Server Error Timeout 30 Seconds RADIUS Auth Protocol PAP RADIUS Authorization Enabled Local Authorization Enabled Function Version 2 11 DGS 3120 24TC admin 49 5 enable jwac red...

Page 526: ...trator Operator and Power User level users can issue this command Example To enable JWAC redirect DGS 3120 24TC admin enable jwac redirect Command enable jwac redirect Success DGS 3120 24TC admin 49 6 disable jwac redirect Description This command is used to disable JWAC redirect When redirect is disabled only access to quarantine_server and the jwac_login_page from an unauthenticated host is allo...

Page 527: ...in_page Specify the unauthenticated host will be redirected to the jwac_login_page delay_time Specify the time interval after which the unauthenticated host will be redirected sec 0 10 Specify the time interval after which the unauthenticated host will be redirected The delay time must be between 0 and 10 seconds Restrictions Only Administrator Operator and Power User level users can issue this co...

Page 528: ...xample To enable JWAC forcible logout DGS 3120 24TC admin enable jwac forcible_logout Command enable jwac forcible_logout Success DGS 3120 24TC admin 49 9 disable jwac forcible_logout Description This command is used to disable JWAC forcible logout Format disable jwac forcible_logout Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example ...

Page 529: ...nabled all UDP and ICMP packets except DHCP and DNS packets from unauthenticated hosts will be dropped Format enable jwac udp_filtering Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable JWAC UDP filtering DGS 3120 24TC admin enable jwac udp_filtering Command enable jwac udp_filtering Success DGS 3120 24TC admin 49 11 disabl...

Page 530: ... When enabled the JWAC switch will monitor the quarantine server to ensure the server is okay If the Switch detects no quarantine server it will redirect all unauthenticated HTTP accesses to the JWAC Login Page forcibly if the redirect is enabled and the redirect destination is configured to be quarantine server Format enable jwac quarantine_server_monitor Parameters None Restrictions Only Adminis...

Page 531: ...Command disable jwac quarantine_server_monitor Success DGS 3120 24TC admin 49 14 config jwac quarantine_server_error_timeout Description This command is used to set the quarantine server error timeout When the quarantine server monitor is enabled the JWAC switch will periodically check if the quarantine works okay If the Switch does not receive any response from quarantine server during the config...

Page 532: ...mat config jwac virtual_ip ipaddr ipv6addr url string 128 clear Parameters ipaddr Specify the IP address of the virtual IP ipv6addr Specify the Ipv6 address of the virtual IP url Optional Specify the URL of the virtual IP string 128 Specify the URL of the virtual IP clear Clear the URL of the virtual IP Restrictions Only Administrator Operator and Power User level users can issue this command Exam...

Page 533: ...s for the update server network ipv6networkaddr To set a specific IPv6 network address use to separate the IPv6 address and the number of network mask bits If TCP port or UDP port number is not specified all TCP UDP ports are accessible tcp_port Optional Specify a TCP port number between 1 and 65535 port_number 1 65535 Specify a TCP port value between 1 and 65535 udp_port Optional Specify a UDP po...

Page 534: ...nfig jwac ports portlist all state enable disable max_authenticating_host value 0 50 aging_time infinite min 1 1440 idle_time infinite min 1 1440 block_time sec 0 300 1 Parameters portlist Specify a port range for setting the JWAC state all Specify to configure all switch ports JWAC state state Specify the port state of JWAC enable Specify to enable the JWAC port state disable Specify to disable t...

Page 535: ... value is 60 seconds sec 0 300 Specify a blocking time value between 0 and 300 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the JWAC port state DGS 3120 24TC admin config jwac ports 1 1 1 9 state enable Command config jwac ports 1 1 1 9 state enable Success DGS 3120 24TC admin 49 19 show jwac ports Description This command is used ...

Page 536: ... command supports the protocol Format config jwac radius_protocol local eap_md5 pap chap ms_chap ms_chapv2 Parameters local Specify the JWAC switch uses the local user DB to complete the authentication eap_md5 Specify the JWAC switch uses EAP MD5 to communicate with the RADIUS server pap Specify the JWAC switch uses PAP to communicate with the RADIUS server chap Specify the JWAC switch uses CHAP t...

Page 537: ...ID value must be between 1 and 4094 Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a JWAC user in the local database DGS 3120 24TC admin create jwac user 112233 Command create jwac user 112233 Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3120 24TC admin 49 22 config jwac user Description ...

Page 538: ...dmin 49 23 delete jwac Description This command is used to delete JWAC users from the local database Format delete jwac user username 15 all_users Parameters user Specify the user name to be deleted username 15 Specify the user name to be deleted The user name can be up to 15 characters long all_users Specify all user accounts in the local database will be deleted Restrictions Only Administrator O...

Page 539: ...n show jwac user Command show jwac user User Name Password VID 112233 12345 123 123 1 Total Entries 2 DGS 3120 24TC admin 49 25 clear jwac auth_state Description This command is used to clear authentication entries Format clear jwac auth_state ports all portlist authenticated authenticating blocked mac_addr macaddr Parameters ports Specify the port range to delete hosts on all Specify to delete al...

Page 540: ...le To delete authentication entries DGS 3120 24TC admin clear jwac auth_state ports all blocked Command clear jwac auth_state ports all blocked Success DGS 3120 24TC admin 49 26 show jwac auth_state ports Description This command is used to display information for JWAC client hosts Format show jwac auth_state ports portlist Parameters portlist Optional Specify a port range to show the JWAC authent...

Page 541: ... When the authorization is enabled for JWAC s RADIUS the authorized data assigned by the RADUIS server will be accepted if the global authorization network is enabled When the authorization is enabled for JWAC s local the authorized data assigned by the local database will be accepted Format config jwac authorization attributes radius enable disable local enable disable 1 Parameters radius If spec...

Page 542: ...update_server Description This command is used to display the JWAC update server Format show jwac update_server Parameters None Restrictions None Example To display the JWAC update server DGS 3120 24TC admin show jwac update_server Command show jwac update_server Index IP TCP UDP Port State 1 172 18 0 0 21 TCP 1 Active 2 172 18 0 0 21 TCP 2 Active 3 172 18 0 0 21 TCP 3 Active DGS 3120 24TC admin 4...

Page 543: ... of the authenticate page desc 16 Specify the password title of the authenticate page The password title description can be up to 16 characters long logout_window_title Specify the logout windown title mapping of the authenticate page desc 32 Specify the logout windown title mapping of the authenticate page The logout window title description can be up to 32 characters long notification_line Speci...

Page 544: ...ator and Power User level users can issue this command Example To customize the authenticate page DGS 3120 24TC admin config jwac authenticate_page japanese Command config jwac authenticate_page japanese Success DGS 3120 24TC admin 49 31 show jwac authenticate_page Description This command is used to display the element mapping of the customized authenticate page Format show jwac authenticate_page...

Page 545: ...rrent Page English Version English Page Element Page Title Login Window Title Authentication Login User Name Title User Name Password Title Password Logout Window Title Logout from the network Notification Japanese Page Element Page Title Login Window Title 社内 LAN 認証ログイン User Name Title ユーザ ID Password Title パスワード CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All ...

Page 546: ...mbo frame setting as enable Format enable jumbo_frame Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable the Jumbo frame DGS 3120 24TC admin enable jumbo_frame Command enable jumbo_frame The maximum size of jumbo frame is 13312 bytes Success DGS 3120 24TC admin 50 2 disable jumbo_frame Description This command is used to configure the ...

Page 547: ...20 24TC admin disable jumbo_frame Command disable jumbo_frame Success DGS 3120 24TC admin 50 3 show jumbo_frame Description This command is used to display the current configuration of jumbo frame Format show jumbo_frame Parameters None Restrictions None Example To show the Jumbo frame DGS 3120 24TC admin show jumbo_frame Command show jumbo_frame Jumbo Frame State Disabled Maximum Frame Size 1536 ...

Page 548: ...tunnel uni nni 51 1 enable l2protocol_tunnel Description This command is used to enable the Layer 2 protocol tunneling function Format enable l2protocol_tunnel Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the Layer 2 protocol tunneling function DGS 3120 24TC admin enable l2protocol_tunnel Command enable l2protocol_tunn...

Page 549: ...s 01 05 5D 00 00 00 for GVRP is 01 05 5D 00 00 21 for Layer 2 protocols MAC 01 00 0C CC CC CC is 01 05 5D 00 00 10 and for protocol MAC 01 00 0C CC CC CD is 01 05 5D 00 00 11 When QinQ is enabled an S TAG will be added to the Layer 2 PDU too The S TAG is assigned according QinQ VLAN configuration Format config l2protocol_tunnel ports portlist all type uni tunneled_protocol stp gvrp protocol_mac 01...

Page 550: ...estrictions Only Administrator Operator and Power User level users can issue this command Example To configure the STP tunneling on ports 1 4 DGS 3120 24TC admin config l2protocol_tunnel ports 1 1 1 4 type uni tunneled_protocol stp Command config l2protocol_tunnel ports 1 1 1 4 type uni tunneled_protocol stp Success DGS 3120 24TC admin 51 4 show l2protocol_tunnel Description This command is used t...

Page 551: ...d show l2protocol_tunnel Global State Enabled UNI Ports 1 1 1 4 NNI Ports DGS 3120 24TC admin To show Layer 2 protocol tunneling information summary DGS 3120 24TC admin show l2protocol_tunnel uni Command show l2protocol_tunnel uni UNI Tunneled Threshold Port Protocol packet sec 1 1 STP 0 1 2 STP 0 1 3 STP 0 1 4 STP 0 DGS 3120 24TC admin ...

Page 552: ... 1 create link_aggregation group_id Description This command is used to create a link aggregation group on the Switch Format create link_aggregation group_id value 1 32 type lacp static Parameters group_id Specify the group id The group number identifies each of the groups value 1 32 Enter the group ID value here This value must be between 1 and 32 type Optional Specify the group type is belong to...

Page 553: ...on group Format config link_aggregation group_id value 1 32 master_port port ports portlist state enable disable trap enable disable Parameters group_id Specify the group id The group number identifies each of the groups value 1 32 Enter the group ID value here This value must be between 1 and 32 master_port Optional Master port ID Specify which port by port number of the link aggregation group wi...

Page 554: ...er_port 1 5 ports 1 5 1 7 Success DGS 3120 24TC admin 52 4 config link_aggregation algorithm Description This command is used to configure the part of the packet examined by the Switch when selecting the egress port for transmitting load sharing data This feature is available using the address based load sharing algorithm only Format config link_aggregation algorithm mac_source mac_destination mac...

Page 555: ...2 5 show link_aggregation Description This command is used to display the current link aggregation configuration on the Switch Format show link_aggregation group_id value 1 32 algorithm Parameters group_id Optional Specify the group id The group number identifies each of the groups value 1 32 Enter the group ID value here This value must be between 1 and 32 algorithm Optional Allows you to specify...

Page 556: ...t 1 5 1 7 Active Port 7 Status Enabled Flooding Port 7 Trap Disabled Total Entries 1 DGS 3120 24TC admin Link aggregation group enable and no member linkup DGS 3120 24TC admin show link_aggregation Command show link_aggregation Link Aggregation Algorithm MAC Source Dest Group ID 1 Type LACP Master Port 1 5 Member Port 1 5 1 7 Active Port Status Enabled Flooding Port Trap Disabled Total Entries 1 D...

Page 557: ... used to configure per port LACP mode Format config lacp_port portlist mode active passive Parameters lacp_port Specified a range of ports to be configured portlist Enter the list of port used for the configuration here mode Specify the LACP mode used active Specify to set the LACP mode as active passive Specify to set the LACP mode as passive Restrictions Only Administrator Operator and Power Use...

Page 558: ...used for this configuration here If no parameter specified the system will display current LACP and all port status Restrictions None Example To show port LACP mode DGS 3120 24TC admin show lacp_port Command show lacp_port Port Activity 1 1 Passive 1 2 Passive 1 3 Passive 1 4 Passive 1 5 Passive 1 6 Passive 1 7 Passive 1 8 Passive 1 9 Passive 1 10 Passive 1 11 Passive 1 12 Passive 1 13 Passive 1 1...

Page 559: ...ow lldp mgt_addr ipv4 ipaddr ipv6 ipv6addr show lldp ports portlist show lldp local_ports portlist mode brief normal detailed show lldp remote_ports portlist mode brief normal detailed show lldp statistics show lldp statistics ports portlist config lldp_med fast_start repeat_count value 1 10 config lldp_med log state enable disable config lldp_med notification topo_change ports portlist all state ...

Page 560: ...le LLDP DGS 3120 24TC admin enable lldp Command enable lldp Success DGS 3120 24TC admin 53 2 disable lldp Description This command is used to stop sending and receiving of LLDP advertisement packet Format disable lldp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable LLDP DGS 3120 24TC admin disable lldp Command disable ll...

Page 561: ... between 2 and 10 tx_delay Specify the minimum interval between sending of LLDP messages due to constantly change of MIB content The default setting 2 seconds sec 1 8192 Enter the transmit delay value here This value must be between 1 and 8192 seconds reinit_delay Specify the the minimum time of reinitialization delay interval The default setting 2 seconds sec 1 10 Enter the re initiate delay valu...

Page 562: ...le basic_tlvs all port_description system_name system_description system_capabilities enable disable port_Id_subtype mac_address local dot1_tlv_pvid enable disable dot1_tlv_protocol_vid vlan all vlan_name 32 vlanid vidlist enable disable dot1_tlv_vlan_name vlan all vlan_name 32 vlanid vidlist enable disable dot1_tlv_protocol_identity all eapol lacp gvrp stp enable disable dot3_tlvs all mac_phy_con...

Page 563: ...d disable Specify that the basic TLV data types used from outbound LLDP advertisements will be disabled port_Id_subtype Specify the port ID TLV sub type The default subtype is local mac_address Specify the sub type of the port ID TLV using MacAddress 3 and the value uses MacAddress local Specify the sub type of the port ID TLV using Local 7 and the value uses the port number This is the default op...

Page 564: ...pe indicates it is possible for two ends of an IEEE 802 3 link to be configured with different duplex and or speed settings and still establish some limited network connectivity More precisely the information includes whether the port supported the auto negotiation function whether the function is enabled the auto negotiated advertised capability and the operational MAU type The default state is d...

Page 565: ...DGS 3120 24TC admin config lldp ports all basic_tlvs system_name enable Command config lldp ports all basic_tlvs system_name enable Success DGS 3120 24TC admin To configure exclude the vlan nameTLV from the outbound LLDP advertisements for all ports DGS 3120 24TC admin config lldp ports all dot1_tlv_protocol_vid vlan default enable Command config lldp ports all dot1_tlv_protocol_vid vlan default e...

Page 566: ...l_identity all enable Success DGS 3120 24TC admin To configure exclude the MAC PHY configuration status TLV from the outbound LLDP advertisements for all ports DGS 3120 24TC admin config lldp ports all dot3_tlvs mac_phy_configuration_status enable Command config lldp ports all dot3_tlvs mac_phy_configuration_status enable Success DGS 3120 24TC admin 53 6 config lldp forward_ message Description Th...

Page 567: ...tion status Format show lldp Parameters None Restrictions None Example To display the LLDP system level configuration status Command show lldp LLDP System Information Chassis ID Subtype MAC Address Chassis ID 00 01 02 03 04 00 System Name System Description Gigabit Ethernet Switch System Capabilities Repeater Bridge LLDP Configurations LLDP Status Enabled LLDP Forward Status Enabled Message TX Int...

Page 568: ...IPv6 address used for this configuration here Restrictions None Example To display management address information DGS 3120 24TC admin show lldp mgt_addr ipv4 192 168 254 10 Command show lldp mgt_addr ipv4 192 168 254 10 Address 1 Subtype IPV4 Address 192 168 254 10 IF type unknown OID 1 3 6 1 4 1 171 10 36 1 11 Advertising ports 1 1 1 5 1 7 2 10 2 20 DGS 3120 24TC admin 53 9 show lldp ports Descri...

Page 569: ...led Management Address None Port VLAN ID Disabled Enabled Port_and_Protocol_VLAN_ID None Enabled VLAN Name None Enabled Protocol_Identity None MAC PHY Configuration Status Disabled Link Aggregation Disabled Maximum Frame Size Disabled DGS 3120 24TC admin 53 10 show lldp local_ports Description This command is used to display the per port information currently available for populating outbound LLDP...

Page 570: ...mode detailed Port ID 1 1 Port ID Subtype MAC Address Port ID 00 01 02 03 04 01 Port Description D Link DGS 3120 24TC R2 00 010 Port 1 on Unit 1 Port PVID 1 Management Address Count 2 Subtype IPv4 Address 0 0 0 0 IF Type IfIndex OID 1 3 6 1 4 1 171 10 117 1 1 Subtype IPv4 Address 10 90 90 90 IF Type IfIndex OID 1 3 6 1 4 1 171 10 117 1 1 PPVID Entries Count 0 None VLAN Name Entries Count 1 Entry 1...

Page 571: ...ent Address Count 2 PPVID Entries Count 0 VLAN Name Entries Count 1 Protocol Identity Entries Count 0 MAC PHY Configuration Status See Detail Link Aggregation See Detail Maximum Frame Size 1536 DGS 3120 24TC admin To display outbound LLDP advertisements for port 1 in brief mode DGS 3120 24TC admin show lldp local_ports 1 1 mode brief Command show lldp local_ports 1 1 mode brief Port ID 1 Port ID S...

Page 572: ...GS 3120 24TC admin show lldp remote_ports 1 1 1 2 mode brief Command show lldp remote_ports 1 1 1 2 mode brief Port ID 1 Remote Entities count 3 Entity 1 Chassis ID Subtype MACADDRESS Chassis ID 00 01 02 03 04 01 Port ID Subtype LOCAL Port ID 1 3 Port Description RMON Port 1 on Unit 3 Entity 2 Chassis ID Subtype MACADDRESS Chassis ID 00 01 02 03 04 02 Port ID Subtype LOCAL Port ID 1 4 Port Descrip...

Page 573: ...Unit 1 System Name Switch1 System Description Stackable Ethernet Switch System Capabilities Repeater Bridge Management Address count 1 Port VLAN ID 1 PPVID Entries count 5 VLAN Name Entries count 3 Protocol Id Entries count 2 MAC PHY Configuration Status See detail Power Via MDI See detail Link Aggregation See detail Maximum Frame Size 1536 Unknown TLVs count 2 Entity 2 Chassis ID Subtype MACADDRE...

Page 574: ...pe LOCAL Port ID 1 3 Port Description RMON Port 3 on Unit 1 System Name Switch1 System Description Stackable Ethernet Switch System Capabilities Repeater Bridge Management Address 10 90 90 91 Port VLAN ID 1 Management Address Address 1 Subtype IPV4 Address 192 168 254 10 IF type unknown OID 1 3 6 1 4 1 171 10 36 1 11 Address 2 Subtype IPV4 Address 192 168 254 11 IF type unknown OID 2 3 6 1 4 1 171...

Page 575: ...TP MAC PHY Configuration Status Auto negotiation support supported Auto negotiation status enabled Auto negotiation advertised capability xxxx hex Auto negotiation operational MAU type 0010 hex Power Via MDI Port class PSE PSE MDI pnower support supported PSE MDI power state enabled PSE pairs control ability uncontrollable PSE power pair signal power class 3 Link Aggregation Aggregation capability...

Page 576: ...ameters None Restrictions None Example To display global statistics information DGS 3120 24TC admin show lldp statistics Command show lldp statistics Last Change Time 6094 Number of Table Insert 1 Number of Table Delete 0 Number of Table Drop 0 Number of Table Ageout 0 DGS 3120 24TC admin 53 13 show lldp statistics ports Description This command is used to display per port LLDP statistics Format s...

Page 577: ...outsTotal 0 DGS 3120 24TC admin 53 14 config lldp_med fast_start repeat_count Description This command is used to configure the fast start repeat count When an LLDP MED Capabilities TLV is detected for an MSAP identifier not associated with an existing LLDP remote system MIB the application layer shall start the fast start mechanism and set the medFastStart timer to medFastStartRepeatCount times 1...

Page 578: ...is disabled Restrictions Only Administrator and Operator level users can issue this command Example To enable the log state of LLDP MED events DGS 3120 24TC admin config lldp_med log state enable Command config lldp_med log state enable Success DGS 3120 24TC admin 53 16 config lldp_med notification topo_change ports Description This command is used to enable or disable each port for sending topolo...

Page 579: ...le s objects in the LLDP MED MIB corresponding to the respective port will not be populated Format config lldp_med ports portlist all med_transmit_capabilities all capabilities network_policy power_pse inventory 1 state enable disable Parameters portlist Specify a range of ports to be configured all Specify to set all ports in the system med_transit_capabilities Select to send the LLDP MED TLV cap...

Page 580: ...n This command is used to display LLDP MED per port configuration for advertisement options Format show lldp_med ports portlist Parameters portlist Optional Specify a range of ports to be displayed If a port list is not specified information for all ports will be displayed Restrictions None Example To display LLDP MED configuration information for port 1 1 DGS 3120 24TC admin show lldp_med ports 1...

Page 581: ...ed LLDP MED System Information Device Class Network Connectivity Device Hardware Revision B1 Firmware Revision 3 00 501 Software Revision 4 00 015 Serial Number PVT93CB000001 Manufacturer Name D Link Model Name DGS 3120 24TC Gigabit Ethernet S Asset ID PoE Device Type PSE Device PoE PSE Power Source Primary LLDP MED Configuration Fast Start Repeat Count 4 LLDP MED Log State Enabled DGS 3120 24TC a...

Page 582: ... local_ports 1 1 Command show lldp_med local_ports 1 1 Port ID 1 1 LLDP MED Capabilities Support Capabilities Support Network Policy Support Location Identification Not Support Extended Power Via MDI PSE Not Support Extended Power Via MDI PD Not Support Inventory Support Network Policy None Extended Power Via MDI None DGS 3120 24TC admin 53 21 show lldp_med remote_ports Description This command is...

Page 583: ...MED capabilities LLDP MED Device Class Endpoint Device Class III LLDP MED Capabilities Support Capabilities Support Network Policy Support Location Identification Support Extended Power Via MDI Support Inventory Support LLDP MED Capabilities Enabled Capabilities Enabled Network Policy Enabled Location Identification Enabled Extended Power Via MDI Enabled Inventory Enabled Network Policy Applicatio...

Page 584: ...ocation Subtype CivicAddress Location Information Extended Power Via MDI Power Device Type PD Device Power Priority High Power Source From PSE Power Request 8 Watts Inventory Management Hardware Revision Firmware Revision Software Revision Serial Number Manufacturer Name Model Name Asset ID DGS 3120 24TC admin ...

Page 585: ...sm is disabled a user would need to manually recover a disabled port The default value for the recover timer is 60 seconds 0 0 is a special value that specifies that the auto recovery mechanism should be disabled When the auto recovery mechanism is disabled a user would need to manually recover a disabled port sec 60 1000000 Enter the recovery timer value here This value must be between 60 and 100...

Page 586: ...eters ports Specify the range of ports that LBD will be configured on portlist Enter a list of ports all To set all ports in the system you may use the all parameter state Specify whether the LBD function should be enabled or disabled on the ports specified in the port list The default state is disabled enable Specify to enable the LBD function disable Specify to disable the LBD function Restricti...

Page 587: ...Example To enable the LBD function globally DGS 3120 24TC admin enable loopdetect Command enable loopdetect Success DGS 3120 24TC admin 54 4 disable loopdetect Description This command is used to disable the LBD function globally on the Switch Format disable loopdetect Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the ...

Page 588: ...at show loopdetect Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To show the LBD global settings DGS 3120 24TC admin show loopdetect Command show loopdetect LBD Global Settings Status Disabled Mode Port based Interval 10 sec Recover Time 60 sec Trap State None Log State Enabled Function Version v4 04 DGS 3120 24TC admin 54 6 show loopdetect...

Page 589: ... loopdetect ports 1 9 Port Loopdetect State Loop Status 1 Enabled Normal 2 Enabled Normal 3 Enabled Normal 4 Enabled Normal 5 Enabled Loop 6 Enabled Normal 7 Enabled Loop 8 Enabled Normal 9 Enabled Normal DGS 3120 24TC admin 54 7 config loopdetect trap Description This command is used to configure the trap modes for LBD Format config loopdetect trap none loop_detected loop_cleared both Parameters ...

Page 590: ...ig loopdetect log Description This command is used to configure the log state for LBD The default value is enabled Format config loopdetect log state enable disable Parameters state Specify the state of the LBD log feature enable Enable the LBD log feature disable Disable the LBD log feature All LBD related logs will not be recorded Restrictions Only Administrator Operator and Power User level use...

Page 591: ...erface name used for this configuration here This name can be up to 12 characters long network_address Optional Enter the IPv4 network address of the loopback interface here It specifies a host address and length of network mask state Optional Specify the state of the loopback interface enable Specify that the loopback interface state will be enabled disable Specify that the loopback interface sta...

Page 592: ...state of the loopback interface enable Specify that the loopback interface state will be enabled disable Specify that the loopback interface state will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the loopback interface named loopback1 with subnet address 10 0 0 1 8 DGS 3120 24TC admin config loopback ipif loopback1 ipa...

Page 593: ...k ipif Description This command is used to display the information of the loopback interface Format show loopback ipif ipif_name 12 Parameters ipif_name 12 Optional Enter the IP interface name used for this configuration here This name can be up to 12 characters long Restrictions None Example To show the information of the loopback interface named loopback1 DGS 3120 24TC admin show loopback ipif l...

Page 594: ...56 1 enable mac_notification Description This command is used to enable global MAC address table notification on the Switch Format enable mac_notification Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable mac_notification function DGS 3120 24TC admin enable mac_notification Command enable mac_notification Success DGS 3120 2...

Page 595: ...7 historysize int 1 500 Parameters interval Optional The time in seconds between notifications sec 1 2147483647 Enter the interval time here This value must be between 1 and 2147483647 seconds historysize Optional This is maximum number of entries listed in the history log used for notification Up to 500 entries can be specified int 1 500 Enter the history log size here This value must be between ...

Page 596: ...this configuration enable Enable the port s MAC address table notification disable Disable the port s MAC address table notification Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable 7th port s mac address table notification DGS 3120 24TC admin config mac_notification ports 1 7 enable Command config mac_notification ports 1 7 enable Succes...

Page 597: ...Mac Notification Settings State Enabled Interval 1 History Size 500 DGS 3120 24TC admin 56 6 show mac_notification ports Description This command is used to display the port s Mac address table notification status settings Format show mac_notification ports portlist Parameters portlist Optional Enter a list of ports used for the configuration here Restrictions None Example To display all port s Ma...

Page 598: ...e 593 DGS 3120 24TC admin show mac_notification ports Command show mac_notification ports Port MAC Address Table Notification State 1 1 Disabled 1 2 Disabled 1 3 Disabled 1 4 Disabled 1 5 Disabled 1 6 Disabled 1 7 Disabled 1 8 Disabled 1 9 Disabled 1 10 Disabled DGS 3120 24TC admin ...

Page 599: ... ports all portlist mac_addr macaddr create mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 config mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan delete mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 config mac_based_access_control authorization attributes radius enable disable local ...

Page 600: ... Access Control Format disable mac_based_access_control Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the MAC based Access Control global state DGS 3120 24TC admin disable mac_based_access_control Command disable mac_based_access_control Success DGS 3120 24TC admin 57 3 config mac_based_access_control password Descript...

Page 601: ..._based_access_control password_type Description This command is used to chose the password type used for authentication via the RADIUS server Format config mac_based_access_control password_type manual_string client_mac_address Parameters manual_string Use the same password for all clients to communicate with the RADIUS server client_mac_address Use the client s MAC address as the password to comm...

Page 602: ...ontrol method local Command config mac_based_access_control method local Success DGS 3120 24TC admin 57 6 config mac_based_access_control guest_vlan Description This command is used to assign a specified port list to the MAC based Access Control guest VLAN Ports that are not contained in port list will be removed from the MAC based Access Control guest VLAN For detailed information on the operatio...

Page 603: ... based Access Control function is enabled for a port and the port is a MAC based Access Control guest VLAN member the port s will be removed from the original VLAN s member ports and added to MAC based Access Control guest VLAN member ports Before the authentication process starts the user is able to forward traffic under the guest VLAN After the authentication process the user will be able to acc...

Page 604: ...to infinite it means that authorized clients will not be aged out automatically min 1 1440 Enter the aging time value here This value must be between 1 and 1440 minutes block_time Optional If a host fails to pass the authentication the next authentication will not start within the block time unless the user clears the entry state manually If the block time is set to 0 it means do not block the cli...

Page 605: ...st_vlan Specify MAC based Access Control guest VLAN by name it must be a static 1Q VLAN vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long guest_vlanid Specify MAC based Access Control guest VLAN by VID it must be a static 1Q VLAN vlanid 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 Restrictions Only Administrator Operator and Power User level use...

Page 606: ...c_based_access_control guest_vlan default Command delete mac_based_access_control guest_vlan default Success DGS 3120 24TC admin 57 10 clear mac_based_access_control auth_state Description This command is used to clear the authentication state of a user or port The port or the user will return to an un authenticated state All the timers associated with the port or the user will be reset Format cle...

Page 607: ...s Control local database entry that will be used for authentication This command can also specify the VLAN that an authorized host will be assigned to Format create mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 Parameters mac Specify the MAC address that can pass local authentication macaddr Enter the MAC address used here vlan Optional Specify the target VLAN b...

Page 608: ...local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan Parameters mac Specify the authenticated host s MAC address macaddr Enter the MAC address used here vlan Specify the target VLAN by VLAN name When this host is authorized the host will be assigned to this VLAN vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify the target VLAN by VID When...

Page 609: ...ddress macaddr Enter the MAC address used here vlan Delete local database entries by specific target VLAN name vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Delete local database entries by specific target VLAN ID vlanid 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 Restrictions Only Administrator Operator and Power User level users ca...

Page 610: ... enable disable local enable disable 1 Parameters radius Optional If specified to enable the authorized attributes for example VLAN 802 1p default priority and ACL assigned by the RADUIS server will be accepted if the global authorization status is enabled The default state is enabled enable Specify that the radius attributes will be enabled disable Specify that the radius attributes will be disab...

Page 611: ... this configuration here If no parameter is specified the global MAC based Access Control settings will be displayed Restrictions None Examples To show the MAC based Access Control port configuration for ports 1 to 4 DGS 3120 24TC admin show mac_based_access_control ports 1 1 1 4 Command show mac_based_access_control ports 1 1 1 4 Port State Aging Time Block Time Auth Mode Max User min sec 1 1 Dis...

Page 612: ...ow mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 Parameters mac Optional Displays MAC based Access Control local database entries for a specific MAC address macaddr Enter the MAC address used here vlan Optional Displays MAC based Access Control local database entries for a specific target VLAN name vlan_name 32 Enter the VLAN name here This name can be up to 32 ...

Page 613: ...trol auth_state ports portlist Parameters ports Display authentication status by specific port portlist Optional Enter the list of port used for this configuration here If not specified port s it will display all of MAC based Access Control ports authentication status Restrictions None Example To display the MAC based Access Control authentication status on port 1 1 1 4 DGS 3120 24TC admin show ma...

Page 614: ...ictions Only Administrator Operator and Power User level users can issue this command Example To configure the maximum number of users of the MAC based Access Control system supports to 128 DGS 3120 24TC admin config mac_based_access_control max_users 128 Command config mac_based_access_control max_users 128 Success DGS 3120 24TC admin 57 19 config mac_based_access_control trap state Description T...

Page 615: ...able or disable generating of MAC based Access Control logs Format config mac_based_access_control log state enable disable Parameters enable Enable log for MAC based Access Control The log of MAC based Access Control will be generated disable Disable log for MAC based Access Control Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable log s...

Page 616: ...ation of the maximum entries supported for the static MAC based entry Format create mac_based_vlan mac_address macaddr vlan vlan_name 32 vlanid vlanid 1 4094 priority value 0 7 Parameters mac_address Specify the MAC address used macaddr Enter the MAC address here vlan The VLAN to be associated with the MAC address vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlan...

Page 617: ...AC address vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Optional Specify the VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 If no parameter is specified ALL static configured entries will be removed Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a stat...

Page 618: ...Optional Specify the VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 Restrictions None Example In the following example MAC address 00 80 c2 33 c3 45 is assigned to VLAN 300 by manual config It is assigned to VLAN 400 by Voice VLAN Since Voice VLAN has higher priority than manual configuration the manual configured entry will become inactive To display th...

Page 619: ...his key must be between 1 and 255 password 16 Enter an alphanumeric string of between 1 and 16 case sensitive characters used to generate the Message Digest which is in turn used to authenticate OSPF packets within the OSPF routing domain Restrictions Only Administrator and Operator level users can issue this command Example To create an MD5 key table DGS 3120 24TC admin create md5 key 1 dlink Com...

Page 620: ...e characters used to generate the Message Digest which is in turn used to authenticate OSPF packets within the OSPF routing domain Restrictions Only Administrator and Operator level users can issue this command Example To configure an MD5 key and password DGS 3120 24TC admin config md5 key 1 dlink1 Command config md5 key 1 dlink1 Success DGS 3120 24TC admin 59 3 delete md5 Description This command...

Page 621: ... key table Format show md5 key key_id 1 255 Parameters key Optional Specify that the MD5 key will be displayed key_id 1 255 Enter the MD5 key used here This key must be between 1 and 255 If no parameter is specified the system will display the MD5 key table Restrictions None Example To display the MD5 key table DGS 3120 24TC admin show md5 Command show md5 MD5 Key Table Configurations Key ID Key 1...

Page 622: ...s the source port If the target port is operating at a lower speed the source port will be forced to drop its operating speed to match that of the target port Format config mirror port port add delete source ports portlist rx tx both Parameters port The port that will receive the packets duplicated at the mirror port port Enter the port number to be configured here add Optional The mirror entry to...

Page 623: ...sed to enable mirror function without having to modify the mirror session configuration Format enable mirror Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable mirroring function DGS 3120 24TC admin enable mirror Command enable mirror Success DGS 3120 24TC admin 60 3 disable mirror Description This command is used to disable mirror fun...

Page 624: ...4TC admin disable mirror Command disable mirror Success DGS 3120 24TC admin 60 4 show mirror Description This command is used to display the current mirror function state and mirror session configuration on the Switch Format show mirror group_id value 1 4 Parameters group_id Optional Specify a mirror group ID value 1 4 Enter a mirro group identify value Restrictions None Example To display mirrori...

Page 625: ...alue 1 4 Enter a mirro group identify value Restrictions Only Administrator and Operator level users can issue this command Example To create mirror group 3 DGS 3120 24TC admin create mirror group_id 3 Command create mirror group_id 3 Success DGS 3120 24TC admin 60 6 config mirror group_id Description This command is used to configure mirror group s parameters It can configure mirror group s targe...

Page 626: ...he mirror group source ports will be mirrored to the mirror group target port both Both the received and sent packets on the mirror group source ports will be mirrored to the mirror group target port state Specify the mirror group state enable Enable the mirror group function disable Disable the mirror group function Restrictions Only Administrator and Operator level users can issue this command E...

Page 627: ...net Switch CLI Reference Guide 622 Restrictions Only Administrator and Operator level users can issue this command Example To delete mirror group 3 DGS 3120 24TC admin delete mirror group_id 3 Command delete mirror group_id 3 Success DGS 3120 24TC admin ...

Page 628: ...d query_interval Specify the time in seconds between general query transmissions sec 1 31744 Enter the query interval time This value must be between 1 and 31744 seconds The default value is 125 max_response_time Specify the maximum time in seconds to wait for reports from members sec 1 25 Enter the maximum response time here This value must be between 1 and 25 seconds The default value is 10 robu...

Page 629: ...P interface System DGS 3120 24TC admin config mld ipif System version 1 state enable Command config mld ipif System version 1 state enable Success DGS 3120 24TC admin 61 2 show mld Description This command is used to display the MLD configurations on the switch Format show mld ipif ipif_name 12 Parameters ipif Optional Specify the IP interface name ipif_name 12 Enter the IP interface name Restrict...

Page 630: ...p Description This command is used to display the MLD group member table Format show mld group ipif ipif_name 12 group ipv6addr Parameters ipif Optional Specify the IP interface name ipif_name 12 Enter the IP interface name group Optional Specify the IPv6 multicast group address ipv6addr Enter the IPv6 multicast group address Restrictions None Example To display all the MLD group member informatio...

Page 631: ... source_ip ipv6addr unsolicited_report_interval sec 0 25 1 show mld_proxy group 62 1 enable mld_proxy Description This command is used to enable the MLD proxy on the switch Format enable mld_proxy Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the MLD proxy DGS 3120 24TC admin enable mld_proxy Command enable mld_proxy Su...

Page 632: ...interface must be an MLD Snooping enabled VLAN Format config mld_proxy downstream_if add delete vlan vlan_name 32 vlanid vidlist Parameters add Specify to add a downstream interface delete Specify to delete a downstream interface vlan Specify the VLAN by name or ID vlan_name 32 Specify a name of VLAN which belong to the MLD proxy downstream interface The maximum length is 32 characters vlanid Spec...

Page 633: ...terval sec 0 25 1 Parameters vlan Specify the VLAN for the upstream interface vlan_name 32 Specify a VLAN name between 1 and 32 characters vlanid Specify the VLAN ID for the upstream interface vlanid 1 4094 Specify the VLAN ID between 1 and 4094 router_ports Specify a list of ports that are connected to multicast enabled routers add Specify to add the router ports delete Specify to delete the rout...

Page 634: ...rmation The display status item means group entry is determined by whether or not the chip has been inserted Format show mld_proxy group Parameters group Optional Specify the group information Restrictions None Example To display the MLD proxy s information DGS 3120 24TC admin show mld_proxy Command show mld_proxy MLD Proxy Global State Enabled Upstream Interface VLAN ID 1 Dynamic Router Ports 1 1...

Page 635: ... Guide 630 DGS 3120 24TC admin show mld_proxy group Command show mld_proxy group Source NULL Group FF1E 0202 Downstream VLAN 4 Member Ports 3 6 Status Active Source FF80 200 Group FF1E 0202 Downstream VLAN 2 Member Ports 2 5 8 Status Inactive Total Entries 2 DGS 3120 24TC admin ...

Page 636: ...w mld_snooping group vlan vlan_name 32 vlanid vlanid_list ports portlist ipv6addr data_driven show mld_snooping forwarding vlan vlan_name 32 vlanid vlanid_list show mld_snooping mrouter_ports vlan vlan_name 32 vlanid vlanid_list all static dynamic forbidden create mld_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipv6addr delete mld_snooping static_group vlan vlan_name 32 vlanid vlani...

Page 637: ...Specify that MLD snooping will ignore link layer topology changes caused by Spanning Tree operation General queries won t be sent on the same domain of link layer topology changes process Specify that MLD snooping will process link layer topology changes caused by Spanning Tree operation General queries will be sent on the same domain of link layer topology changes fast_done Enable or disable MLD ...

Page 638: ...e is used in calculating the following MLD message intervals value 1 7 Enter the robustness variable value here This value must be between 1 and 7 Group listener interval Amount of time that must pass before a multicast router decides there are no more listeners of a group on a network This interval is calculated as follows robustness variable query interval 1 query response interval Other querier...

Page 639: ...ription This command is used to designate a range of ports as being connected to multicast enabled routers This will ensure that all packets with such a router as its destination will reach the multicast enabled router regardless of protocol etc Format config mld_snooping mrouter_ports vlan vlan_name 32 vlanid vlanid_list add delete portlist Parameters vlan Specify the name of the VLAN on which th...

Page 640: ... VLAN name can be up to 32 characters long vlanid Specify the ID of the VLAN on which the router port resides vlanid_list Enter the VLAN ID list here add Specify to add the router ports delete Specify to delete the router ports portlist Specify a range of ports to be configured Restrictions Only Administrator Operator and Power User level users can issue this command Example To set up port range 1...

Page 641: ...ers of this multicast group Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable MLD snooping on the Switch DGS 3120 24TC admin enable mld_snooping Command enable mld_snooping Success DGS 3120 24TC admin 63 6 disable mld_snooping Description This command is used to disable MLD snooping on the Switch Format disable mld_snooping Parameters When...

Page 642: ... Switch Format show mld_snooping vlan vlan_name 32 vlanid vlanid_list Parameters vlan Optional Specify the name of the VLAN for which you want to view the IGMP snooping configuration vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN for which you want to view the IGMP snooping configuration vlanid_list Enter the VLAN ID l...

Page 643: ...nooping group vlan vlan_name 32 vlanid vlanid_list ports portlist ipv6addr data_driven Parameters vlan Optional Specify the name of the VLAN for which you want to view MLD snooping group information If VLAN and ports and IP address are not specified the system will display all current IGMP snooping group information vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters lon...

Page 644: ...ember port list is empty The multicast packets will be forwarded to the router ports If the router port list is empty the packet will be dropped DGS 3120 24TC admin show mld_snooping group Command show mld_snooping group Source Group 2001 1 FE1E 1 VLAN Name VID default 1 Member Ports 1 2 UP Time 26 Expiry Time 258 Filter Mode INCLUDE Source Group 2002 2 FE1E 1 VLAN Name VID default 1 Member Ports ...

Page 645: ...ill be forwarded to The packet comes from the source VLAN They will be forwarded to the forwarding VLAN The MLD snooping further restricts the forwarding ports Format show mld_snooping forwarding vlan vlan_name 32 vlanid vlanid_list Parameters vlan Optional Specify the name of the VLAN for which you want to view MLD snooping forwarding table information vlan_name 32 Enter the VLAN name here The VL...

Page 646: ... all static dynamic forbidden Parameters vlan Specify the name of the VLAN on which the router port resides vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Specify the ID of the VLAN on which the router port resides vlanid_list Enter the VLAN ID list here all Specify all VLANs on which the router port resides static Optional Displays router ports that hav...

Page 647: ... destined to the multicast group to the member ports For a layer 3 device the device is also responsible to route the packets destined for this specific group to static member ports The static member ports will only affect MLD V1 operation The Reserved IP multicast addresses FF0x 16 must be excluded from the configured group The VLAN must be created first before a static group can be created Forma...

Page 648: ...v6addr Specify the multicast group IP address Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an MLD snooping static group for VLAN named default group FF1E 1 DGS 3120 24TC admin delete mld_snooping static_group vlan default FF1E 1 Command delete mld_snooping static_group vlan default FF1E 1 Success DGS 3120 24TC admin 63 13 config mld_s...

Page 649: ...User level users can issue this command Example To unset port range 9 10 from MLD snooping static member ports for group FF1E 1 on default VLAN DGS 3120 24TC admin config mld_snooping static_group vlan default FF1E 1 delete 2 9 2 10 Command config mld_snooping static_group vlan default FF1E 1 delete 2 9 2 10 Success DGS 3120 24TC admin 63 14 show mld_snooping static_group Description This command ...

Page 650: ... by the aged timer When the data driven learning is enabled and the data driven table is not full the multicast filtering mode for all ports is ignored That is the multicast packets will be forwarded to router ports If the data driven learning table is full the multicast packets will be forwarded according to the multicast filtering mode Note that if a data driven group is created and MLD member p...

Page 651: ...dmin config mld_snooping data_driven_learning vlan_name default state enable Command config mld_snooping data_driven_learning vlan_name default state enable Success DGS 3120 24TC admin 63 16 config mld_snooping data_driven_learning max_learned_entry EI and SI Mode Only Description This command is used to configure the maximum number of groups that can be learned by data driven When the table is fu...

Page 652: ... all Specify all VLANs to which IGMP snooping groups will be deleted vlan_name Specify the VLAN name vlan_name 32 Enter the VLAN name here vlanid Specify the VLAN ID vlanid_list Enter the VLAN ID list here ipaddr Specify the group s IP address learned by data driven all Specify to clear all data driven groups of the specified VLAN Restrictions Only Administrator Operator and Power User level users...

Page 653: ...t of port here Restrictions None Example To show MLD snooping statistics counters DGS 3120 24TC admin show mld_snooping statistics counter vlanid 1 Command show mld_snooping statistics counter vlanid 1 VLAN Name default Total Groups 10 Receive Statistics Query MLD v1 Query 1 MLD v2 Query 1 Total 2 Dropped By Rate Limitation 1 Dropped By Multicast VLAN 1 Report Leave MLD v1 Report 0 MLD v2 Report 1...

Page 654: ...er Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear MLD snooping statistics counter DGS 3120 24TC admin clear mld_snooping statistic counter Command clear mld_snooping statistic counter Success DGS 3120 24TC admin 63 20 config mld_snooping rate_limit Description This command is used to configure the rate limit of MLD contro...

Page 655: ...r second The packets that exceed the limited rate will be dropped The default setting is no_limit Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the MLD snooping per port rate limit DGS 3120 24TC admin config mld_snooping rate_limit ports 1 1 100 Command config mld_snooping rate_limit ports 1 1 100 Success DGS 3120 24TC admin 63 21 s...

Page 656: ...tch CLI Reference Guide 651 DGS 3120 24TC admin show mld_snooping rate_limit ports 1 1 1 5 Command show mld_snooping rate_limit ports 1 1 1 5 Port Rate Limit pkt sec 1 1 100 1 2 No Limit 1 3 No Limit 1 4 No Limit 1 5 No Limit Total Entries 5 DGS 3120 24TC admin ...

Page 657: ...per port STP debug level on the specified ports Format debug stp config ports portlist all event bpdu state_machine all state disable brief detail Parameters portlist Specify the STP port range to debug all Specify to debug all ports on the Switch event Debug the external operation and event processing bpdu Debug the BPDU s that have been received and transmitted state_machine Debug the state chan...

Page 658: ...ator level users can issue this command Example To show STP debug information DGS 3120 24TC admin debug stp show information Command debug stp show information Warning only support local device Spanning Tree Debug Information Port Status In Hardware Table Instance 0 Port 1 1 FOR Port 1 2 FOR Port 1 3 FOR Port 1 4 FOR Port 1 5 FOR Port 1 6 FOR Port 1 7 FOR Port 1 8 FOR Port 1 9 FOR Port 1 10 FOR Po...

Page 659: ...to display the STP debug level on specified ports Format debug stp show flag ports portlist Parameters ports Optional Specify the STP ports to display portlist Enter the list of port used for this configuration here If no parameter is specified all ports on the Switch will be displayed Restrictions Only Administrator level users can issue this command Example To display the debug STP levels on all...

Page 660: ...ef Brief Brief 1 19 Brief Brief Brief 1 20 Brief Brief Brief 1 21 Brief Brief Brief 1 22 Brief Brief Brief 1 23 Brief Brief Brief 1 24 Brief Brief Brief DGS 3120 24TC admin 64 4 debug stp show counter Description This command is used to display the STP counters Format debug stp show counter ports portlist all Parameters ports Optional Specify the STP ports for display portlist Enter the list of po...

Page 661: ...ded BPDU 0 Global STP Disabled 0 Port STP Disabled 0 Invalid packet Format 0 Invalid Protocol 0 Configuration BPDU Length 0 TCN BPDU Length 0 RST BPDU Length 0 Invalid Type 0 Invalid Timers 0 DGS 3120 24TC admin 64 5 debug stp clear counter Description This command is used to clear the STP counters Format debug stp clear counter ports portlist all Parameters ports Specify the port range portlist E...

Page 662: ...te enable disable Parameters state Specify the STP debug state enable Enable the STP debug state disable Disable the STP debug state Restrictions Only Administrator level users can issue this command Example To configure the STP debug state to enable and then disable the STP debug state DGS 3120 24TC admin debug stp state enable Command debug stp state enable Success DGS 3120 24TC admin debug stp ...

Page 663: ...ew root traps enable Enable sending new root traps new_root Specify the state of sending topology change traps The default state is enable enable Enable sending topology change traps disable Enable sending topology change traps Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the sending state for STP traps DGS 3120 24TC admin config s...

Page 664: ...place 1 show max_mcast_group ports portlist vlanid vlanid_list ipv4 ipv6 show limited_multicast_addr ports portlist vlanid vlanid_list ipv4 ipv6 config cpu_filter l3_control_pkt portlist dvmrp pim igmp_query all state enable disable show cpu_filter l3_control_pkt ports portlist 65 1 create mcast_filter_profile Description This command is used to configure a multicast address profile Multiple range...

Page 665: ...e profile name can be up to 32 characters long profile_name Provides a meaningful description for the profile name 32 Enter the profile name The profile name can be up to 32 characters long add Specify to add a multicast address delete Specify to delete a multicast address mcast_address_list List of the multicast addresses to be put in the profile You can either specify a single multicast IP addre...

Page 666: ...ither specify a single IPv6 multicast IP address or a range of IPv6 multicast addresses connected by Restrictions Only Administrator Operator and Power User level users can issue this command Example To add the IPv6 multicast address range FF0E 100 0 0 20 FF0E 100 0 0 22 to profile ID 3 DGS 3120 24TC admin config mcast_filter_profile ipv6 profile_id 3 add FF0E 100 0 0 20 FF0E 100 0 0 22 Command co...

Page 667: ...OD DGS 3120 24TC admin delete mcast_filter_profile profile_name MOD Command delete mcast_filter_profile profile_name MOD Success DGS 3120 24TC admin 65 5 show mcast_filter_profile Description This command is used to display the defined multicast address profiles If the IPv4 or IPv6 option is not specified IPv4 is implied Format show mcast_filter_profile ipv4 ipv6 profile_id value 1 24 profile_name...

Page 668: ...rofile_id value 1 24 profile_name name 32 delete profile_id value 1 24 profile_name name 32 all access permit deny 1 Parameters ports Specify the range of ports to configure the multicast address filtering function portslist Enter the list of port to be configured here vlanid Specify the VLAN ID of the VLAN that the multicast address filtering function will be configured on vlanid_list Enter the V...

Page 669: ... the joined groups for a port or a VLAN have reached the maximum number the newly learned group will be dropped if the action is specified as drop The newly learned group will replace the eldest group if the action is specified as replace Format config max_mcast_group ports portlist vlanid vlanid_list ipv4 ipv6 max_group value 1 1024 infinite action drop replace 1 Parameters ports Specify the rang...

Page 670: ...mum number of multicast groups that a port can join If the IPv4 or IPv6 option is not specified IPv4 is implied Format show max_mcast_group ports portlist vlanid vlanid_list ipv4 ipv6 Parameters ports Specify the range of ports for displaying information about the maximum number of multicast groups that the specified ports can join portlist Optional Enter the list of ports to be configured here vl...

Page 671: ...figured on a port it limits the multicast groups operated by the IGMP or MLD snooping function and layer 3 functions When the function is configured on a VLAN it limits the multicast groups operated by the IGMP or MLD layer 3 functions If the IPv4 or IPv6 option is not specified IPv4 is implied Format show limited_multicast_addr ports portlist vlanid vlanid_list ipv4 ipv6 Parameters ports Specify ...

Page 672: ...ses 2 MOD 225 1 1 1 225 1 1 10 Port 1 3 Access Permit Profile ID Name Multicast Addresses 2 MOD 225 1 1 1 225 1 1 10 DGS 3120 24TC admin To show the limited multicast settings configured on VLAN 1 DGS 3120 24TC admin show limited_multicast_addr vlanid 1 Command show limited_multicast_addr vlanid 1 VLAN ID 1 Access Permit Profile ID Name Multicast Addresses 2 MOD 225 1 1 1 225 1 1 10 DGS 3120 24TC ...

Page 673: ... filtering function disable Disable the filtering function Restrictions Only Administrator Operator and Power User level users can issue this command Example To filter the DVMRP control packets on ports 1 to 2 DGS 3120 24TC admin config cpu_filter l3_control_pkt 1 1 1 2 dvmrp state enable Command config cpu_filter l3_control_pkt 1 1 1 2 dvmrp state enable Success DGS 3120 24TC admin 65 11 show cpu...

Page 674: ...t Switch CLI Reference Guide 669 DGS 3120 24TC admin show cpu_filter l3_control_pkt ports 1 1 1 2 Command show cpu_filter l3_control_pkt ports 1 1 1 2 Port IGMP Query DVMRP PIM 1 1 Disabled Enabled Disabled 1 2 Disabled Enabled Disabled DGS 3120 24TC admin ...

Page 675: ...ess_list delete igmp_snooping mld_snooping multicast_vlan_group_profile profile_name profile_name 1 32 all show igmp_snooping mld_snooping multicast_vlan_group_profile profile_name 1 32 config igmp_snooping mld_snooping multicast_vlan_group vlan_name 32 add delete profile_name profile_name 1 32 show igmp_snooping mld_snooping multicast_vlan_group vlan_name 32 delete igmp_snooping mld_snooping mult...

Page 676: ...y will be changed by the Switch based on the remap priority This flag will only take effect when the remap priority is set Restrictions Only Administrator Operator and Power User level users can issue this command Example To create an IGMP snooping multicast VLAN with the VLAN name mv1 and the VID 2 DGS 3120 24TC admin create igmp_snoop multicast_vlan mv1 2 Command create igmp_snoop multicast_vlan...

Page 677: ... or disabled enable Specify to enable the multicast VLAN for a chosen VLAN disable Specify to disable the multicast VLAN for a chosen VLAN replace_source_ip Before forwarding the report packet sent by the host the source IP address in the join packet must be replaced by this IP address If none is specified the source IP address will not be replaced ipaddr Enter the replace source IP address here n...

Page 678: ...e list of port to be configured here tag_member_port Specify that the port or range of ports will become tagged members of the multicast VLAN portlist Enter the list of port to be configured here source_port Specify the port or range of ports to be added to the multicast VLAN portlist Enter the list of port to be configured here untag_source_port Specify the source port or range of source ports as...

Page 679: ...s DGS 3120 24TC admin 66 4 create igmp_snooping mld_snooping multicast_vlan_group_profile Description This command is used to create an IGMP or MLD snooping multicast group profile on the Switch Format create igmp_snooping mld_snooping multicast_vlan_group_profile profile_name 1 32 Parameters igmp_snooping Specify that an IGMP snooping profile will be created mld_snooping Specify that an MLD snoop...

Page 680: ...ile The mcast_address_list can be a continuous single multicast address such as 225 1 1 1 225 1 1 3 225 1 1 8 a multicast address range such as 225 1 1 1 225 2 2 2 or both of types such as 225 1 1 1 225 1 1 18 225 1 1 20 delete Deletes a multicast address list to or from this multicast VLAN profile The mcast_address_list can be a continuous single multicast addresses such as 225 1 1 1 225 1 1 3 22...

Page 681: ... FF1E 1 FF1E 10 FF1E 20 delete Delete multicast address list to or from this multicast VLAN profile The mcast_v6address_list can be a continuous single multicast addresses such as FF1E 1 a multicast address range such as FF1E 1 FF1E 2 or both of them such as FF1E 1 FF1E 10 FF1E 20 mcast_v6address_list Enter the multicast VLAN IPv6 address here Restrictions Only Administrator Operator and Power Use...

Page 682: ... the name MOD DGS 3120 24TC admin delete igmp_snooping multicast_vlan_group_profile profile_name MOD Command delete igmp_snooping multicast_vlan_group_profile profile_name MOD Success DGS 3120 24TC admin 66 8 show igmp_snooping mld_snooping multicast_vlan_group_profile Description This command is used to show the IGMP snooping or MLD snooping multicast group profiles Format show igmp_snooping mld_...

Page 683: ...t is learned on only the multicast VLAN that this port is a member of Case 2 The join packet is learned with the multicast VLAN that contains the destination multicast group If the destination multicast group of the join packet cannot be classified into any multicast VLAN to which this port belongs then the join packet will be learned on the natural VLAN of the packet Note that a profile cannot ov...

Page 684: ...igmp_snooping mld_snooping multicast_vlan_group Description This command is used to show an IGMP snooping or MLD snooping multicast VLAN group Format show igmp_snooping mld_snooping multicast_vlan_group vlan_name 32 Parameters igmp_snooping Specify that IGMP snooping VLAN groups should be displayed mld_snooping Specify that MLD snooping VLAN groups should be displayed multicast_vlan_group Specify ...

Page 685: ...ator Operator and Power User level users can issue this command Example To delete an MLD snooping multicast VLAN called v1 DGS 3120 24TC admin delete mld_snooping multicat_vlan v1 Command delete mld_snooping multicat_vlan v1 Success DGS 3120 24TC admin 66 12 enable igmp_snooping mld_snooping multicast_vlan Description This command is used to control the status of the multicast VLAN function The co...

Page 686: ...nd disable igmp_snooping is used to disable the ordinary IGMP snooping function while the command disable mld_snooping is used to disable the ordinary MLD snooping function By default the multicast VLAN is disabled Format disable igmp_snooping mld_snooping multicast_vlan Parameters igmp_snooping Specify that the IGMP snooping multicast VLAN function should be disabled mld_snooping Specify that the...

Page 687: ...ecify that the IGMP snooping multicast VLAN function will be configured mld_snooping Specify that the MLD snooping multicast VLAN function will be configured multicast_vlan forward_unmatched Specify to enable or disable packet flooding on the multicast VLAN enable The packet will be flooded on the VLAN disable The packet will be dropped Restrictions Only Administrator Operator and Power User level...

Page 688: ...Enter the VLAN name here The VLAN name can be up to 32 characters long Restrictions None Example To display all IGMP snooping multicast VLANs DGS 3120 24TC admin show igmp_snooping multicast_vlan Command show igmp_snooping multicast_vlan IGMP Multicast VLAN Global State Disabled IGMP Multicast VLAN Forward Unmatched Disabled VLAN Name test VID 100 Member Untagged Ports 1 Tagged Member Ports Source...

Page 689: ...unicast_fdb Description This command is used to create the NLB unicast FDB entry Format create nlb unicast_fdb macaddr Parameters macaddr Specify the MAC address of the NLB unicast FDB entry to be created Restrictions Only Administrator Operator and Power User level users can issue this command Example To create an NLB unicast MAC forwarding entry for the product that support the VLAN information ...

Page 690: ...icast FDB entry for the product that support the VLAN information on the unicast forwarding DGS 3120 24TC admin config nlb unicast_fdb 02 BF 01 01 01 01 add 1 1 1 5 Command config nlb unicast_fdb 02 BF 01 01 01 01 add 1 1 1 5 Success DGS 3120 24TC admin 67 3 delete nlb unicast_fdb Description This command is used to delete the NLB unicast FDB entry Format delete nlb unicast_fdb macaddr Parameters ...

Page 691: ...egarding of the mode this destination Mac is the named the shared MAC The server uses its own MAC address rather than the shared MAC as the source MAC address of the reply packet The NLB multicast FDB entry will be mutual exclusive with the L2 multicast entry Format create nlb multicast_fdb vlan_name 32 vlanid vlanid 1 4094 macaddr Parameters multicast_fdb Specify the VLAN of the NLB multicast FDB...

Page 692: ...figured vlanid Specify the VLAN by the VLAN ID vlanid 1 4094 Enter the VLAN ID here macaddr Specify the Mac address of the NLB multicast FDB entry to be configured add Specify a list of forwarding ports to be added delete Specify a list of forwarding ports to be deleted portlist Enter the list of ports used for this configuration Restrictions Only Administrator Operator and Power User level users ...

Page 693: ...y the MAC address of the NLB multicast FDB entry to be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete NLB multicast FDB entry DGS 3120 24TC admin delete nlb multicast_fdb default 03 bf 01 01 01 01 Command delete nlb multicast_fdb default 03 bf 01 01 01 01 Success DGS 3120 24TC admin 67 7 show nlb fdb Description This command is ...

Page 694: ...bit Ethernet Switch CLI Reference Guide 689 DGS 3120 24TC admin show nlb fdb Command show nlb fdb MAC Address VLAN ID Egress Ports 03 bf 01 01 01 01 100 1 1 1 5 1 24 2 24 03 bf 01 01 01 01 1 1 1 1 5 1 24 2 24 Total Entries 2 DGS 3120 24TC admin ...

Page 695: ...ts show utilization dram unit unit_id show utilization flash unit unit_id clear counters ports portlist 68 1 show packet ports Description This command is used to display statistics about the packets sent and received by the Switch Format show packet ports portlist Parameters portlist Specify a range of ports to be displayed Restrictions None Example To display the packets analysis for port 7 of t...

Page 696: ... 1518 0 0 Unicast RX 0 0 Multicast RX 0 0 Broadcast RX 0 0 Frame Type Total Total sec RX Bytes 0 0 RX Frames 0 0 TX Bytes 0 0 TX Frames 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 68 2 show error ports Description This command is used to display the error statistics for a range of ports Format show errors ports portlist Parameters portlist Specify a range of ports to be displ...

Page 697: ...agment 0 Excessive Collision 0 Jabber 0 Single Collision 0 Drop Pkts 0 Collision 0 Symbol Error 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 68 3 show utilization Description This command is used to display real time CPU or port utilization statistics Format show utilization cpu ports Parameters cpu Specify to display information regarding the CPU ports Specify to display ports ...

Page 698: ...0 1 10 0 0 0 1 11 0 0 0 1 12 0 0 0 1 13 0 0 0 1 14 0 0 0 1 15 0 0 0 1 16 0 0 0 1 17 0 0 0 1 18 0 0 0 1 19 0 0 0 1 20 0 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh To display the CPU utilization DGS 3120 24TC admin show utilization cpu Command show utilization cpu CPU Utilization Five seconds 10 One minute 10 Five minutes 10 CTRL C ESC q Quit SPACE n Next Page p Previous Page ...

Page 699: ...ion dram Command show utilization dram Unit 1 DRAM utilization Total DRAM 131072 KB Used DRAM 128128 KB Utilization 97 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 68 5 show utilization flash Description This command is used to show the flash memory utilization Format show utilization flash unit unit_id Parameters unit Optional Specify the Switch unit ID to be displayed unit_id En...

Page 700: ...configured The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then highest switch number and the highest port number of the range also separeted by a colon are specified The beginning and end of the port list range are seperated by a dash portlist Enter a list of ports used for the configuration here If no parameter is s...

Page 701: ...OAM discovery If a port s is active it initiates the discovery Otherwise it reacts to the discovery received from peer Disabling a port s OAM will cause the port to send out a dying gasp event to peers and then disconnect the established OAM link The link monitoring parameter is used to configure port Ethernet OAM link monitoring error symbols The link monitoring function provides a mechanism to d...

Page 702: ...of threshold is 1 symbol error range 0 4294967295 Specify the range from 0 to 4294967295 window The range is 1000 to 60000 ms The default value is 1000ms millisecond 1000 60000 The range is 1000 to 60000 ms notify_state Specify the event notification status The default state is enable enable Specify to enable event notification disable Specify to disable event notification error_frame Specify the ...

Page 703: ...command ignore Specify to ignore the received Ethernet OAM remote loopback command The default method is ignore Restrictions Only Administrator and Operator level users can issue this command Example To configure Ethernet OAM on ports 1 to 2 in active mode DGS 3120 24TC admin config ethernet_oam ports 1 2 mode active Command config ethernet_oam ports 1 2 mode active Success DGS 3120 24TC admin To ...

Page 704: ...nfigure the error frame period threshold to10 and period to 1000000 ms for port 1 DGS 3120 24TC admin config ethernet_oam ports 1 link_monitor error_frame_period threshold 10 window 1000000 notify_state enable Command config ethernet_oam ports 1 link_monitor error_frame_period threshold 10 window 1000000 notify_state enable Success DGS 3120 24TC admin To configure a dying gasp event for port 1 DGS...

Page 705: ... The remote OAM entity rejects the local device Operational The local OAM entity learns that both it and the remote OAM entity have accepted the peering NonOperHalfDuplex Since Ethernet OAM functions are not designed to work completely over half duplex port This value indicates Ethernet OAM is enabled but the port is in half duplex operation 3 OAM mode passive or active 4 Maximum OAMPDU size The l...

Page 706: ...OAM event log and syslog Format show ethernet_oam ports portlist status configuration statistics event_log index value_list Parameters portlist Optional Specify the range of ports to display status Specify to display the Ethernet OAM status configuration Specify to display the Ethernet OAM configuration statistics Specify to display Ethernet OAM statistics event_log Specify to display the Ethernet...

Page 707: ...onse OAMPDU TX 0 Variable Response OAMPDU RX 0 Organization Specific OAMPDUs TX 0 Organization Specific OAMPDUs RX 0 Unsupported OAMPDU TX 0 Unsupported OAMPDU RX 0 Frames Lost Due To OAM 0 DGS 3120 24TC admin 69 3 clear ethernet_oam ports Description This command is used to clear Ethernet OAM information Format clear ethernet_oam ports portlist all event_log statistics Parameters portlist Specify...

Page 708: ...DGS 3120 24TC admin clear ethernet_oam ports 1 statistics Command clear ethernet_oam ports 1 statistics Success DGS 3120 24TC admin To clear port 1 OAM events DGS 3120 24TC admin clear ethernet_oam ports 1 event_log Command clear ethernet_oam ports 1 event_log Success DGS 3120 24TC admin ...

Page 709: ...te ospf area area_id show ospf area area_id create ospf host_route ipaddr area area_id metric value 1 65535 config ospf host_route ipaddr area area_id metric value 1 65535 1 delete ospf host_route ipaddr show ospf host_route ipaddr config ospf router_id ipaddr create ospf virtual_link area_id neighbor_id hello_interval sec 1 65535 dead_interval sec 1 65535 authentication none simple password 8 md5...

Page 710: ...hat router down An interval between 1 and 65535 seconds can be specified The Dead Interval must be evenly divisable by the Hello Interval sec 1 65535 Enter the dead interval value here This value must be between 1 and 65535 seconds authentication Optional Specify that authentication value none Specify that the authentication value will be set to none simple Specify that a simple text password must...

Page 711: ...ork address format is IP address prefix length lsdb_type Specify the Link State Database LSDB type of address aggregation summary Specify the LSDB type as summary advertise Optional Allows for the advertisement of the summary LSAs enable Specify that the advertisement trigger will be enabled disable Specify that the advertisement trigger will be disabled nssa_ext Specify the LSDB type as a Not So ...

Page 712: ...f the summary LSAs enable Specify that the advertisement trigger will be enabled disable Specify that the advertisement trigger will be disabled nssa_ext Specify the LSDB type as a Not So Stub Area External Route NSSA EXT advertise Optional Allows for the advertisement of aggregated NSSA external route enable Specify that the advertisement trigger will be enabled disable Specify that the advertise...

Page 713: ...e nssa_ext Specify the NSSA EXT type Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an OSPF area aggregation entry DGS 3120 24TC admin delete ospf aggregation 10 48 74 122 192 168 0 1 16 lsdb_type summary Command delete ospf aggregation 10 48 74 122 192 168 0 1 16 lsdb_type summary Success DGS 3120 24TC admin 70 5 show ospf aggregation ...

Page 714: ...ed throughout the entire AS However OSPF allows certain areas to be configured as stub areas AS external advertisements are not flooded into throughout stub areas routing to AS external destinations in these areas is based on a per area default only This reduces the topological database size and therefore the memory requirements for a stub area s internal routers normal Specify that the OSPF area ...

Page 715: ...s are not flooded into throughout stub areas routing to AS external destinations in these areas is based on a per area default only This reduces the topological database size and therefore the memory requirements for a stub area s internal routers normal Specify that the OSPF area type will be set to normal stub Specify that the OSPF area type will be set to STUB nssa Specify that the OSPF area ty...

Page 716: ...used to delete an OSPF area Format delete ospf area area_id Parameters area_id Enter the OSPF area ID used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an OSPF area DGS 3120 24TC admin delete ospf area 10 48 74 122 Command delete ospf area 10 48 74 122 Success DGS 3120 24TC admin 70 9 show ospf area Description This command is us...

Page 717: ...ion This command is used to create an OSPF host route Format create ospf host_route ipaddr area area_id metric value 1 65535 Parameters ipaddr Enter the host s IP address used here area Optional Specify a 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain area_id Enter the area ID value here metric Optional Specify a metric that wil...

Page 718: ...ber in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain area_id Enter the area ID value here metric Optional Specify a metric that will be advertised value 1 65535 Enter the metric value used here This value must be between 1 and 65535 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure a...

Page 719: ...Example To delete an OSPF host route DGS 3120 24TC admin delete ospf host_route 10 48 74 122 Command delete ospf host_route 10 48 74 122 Success DGS 3120 24TC admin 70 13 show ospf host_route Description This command is used to display the current OSPF host route table Format show ospf host_route ipaddr Parameters ipaddr Optional Enter the host s IP address used here Restrictions None Example To d...

Page 720: ... router ID for the Switch Each Switch that is configured to run OSPF must have a unique router ID Format config ospf router_id ipaddr Parameters ipaddr Enter the router s IP address here Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the router ID for the Switch DGS 3120 24TC admin config ospf router_id 10 48 74 122 Command config os...

Page 721: ...fication of the length of time between the receipt of Hello packets from a neighbor router before the selected area declares that router down An interval between 1 and 65535 seconds can be specified The Dead Interval must be evenly divisable by the Hello Interval sec 1 65535 Enter the dead interval used here This value must be between 1 and 65535 authentication Optional Specify the authentication ...

Page 722: ... specification of the length of time between the receipt of Hello packets from a neighbor router before the selected area declares that router down An interval between 1 and 65535 seconds can be specified The Dead Interval must be evenly divisable by the Hello Interval sec 1 65535 Enter the dead interval used here This value must be between 1 and 65535 authentication Optional Specify the authentic...

Page 723: ...dmin delete ospf virtual_link 10 1 1 1 20 1 1 1 Command delete ospf virtual_link 10 1 1 1 20 1 1 1 Success DGS 3120 24TC admin 70 18 show ospf virtual_link Description This command is used to display the current OSPF virtual link configuration Format show ospf virtual_link area_id neighbor_id Parameters area_id Optional Specify a 32 bit number in the form of an IP address xxx xxx xxx xxx that uniq...

Page 724: ... Status 10 1 1 1 20 1 1 1 30 60 None Down Total Entries 1 DGS 3120 24TC admin 70 19 enable ospf Description This command is used to enable OSPF on the Switch Format enable ospf Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable OSPF on the Switch DGS 3120 24TC admin enable ospf Command enable ospf Success DGS 3120 24TC admin...

Page 725: ... Success DGS 3120 24TC admin 70 21 show ospf Description This command is used to display the current OSPF information on the Switch Format show ospf ipif ipif_name 12 all Parameters ipif Optional Specify the IP interface name ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long all Specify that all the IP interfaces will be displayed If no parameter is specified ...

Page 726: ...dvertise_router ipaddr type rtrlink netlink summary assummary asextlink nssa_ext stub Parameters area Optional Specify a 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain area_id Enter the area ID used here advertise_router Optional Specify the IP address of the advertising router ipaddr Enter the advertising router s IP address he...

Page 727: ...k 50 48 75 73 50 48 75 73 0x80000001 1 0 0 0 Summary 50 48 75 73 40 0 0 0 8 1 0x80000001 1 0 0 0 Summary 50 48 75 73 50 0 0 0 8 1 0x80000001 0 0 0 0 ASExtLink 50 48 75 73 1 2 0 0 16 20 0x80000001 Total Entries 6 DGS 3120 24TC admin 70 23 show ospf neighbor Description This command is used to display the OSPF neighbor information on a per interface basis Format show ospf neighbor ipaddr Parameters ...

Page 728: ...r in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain neighbor_id Optional Specify the OSPF router ID for the remote area This is a 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the remote area s Area Border Router If no parameter is specified the system will display all OSPF virtual link neighbor information ...

Page 729: ... is the default option mettype Optional Specify the type of LSA that contains the default external route imported into OSPF 1 Specify that this default external route will be calculated using the metric by adding the interface cost to the metric entered in the metric field 2 Specify that this default external route will be calculated using the metric entered in the metric field without change This...

Page 730: ...efix inter_area_router asextlink link_lsa intra_area_prefix show ospfv3 neighbor neighbor_id ipif ipif_name 12 show ospfv3 virtual_neighbor area_id neighbor_id create ospfv3 virtual_link area_id neighbor_id hello_interval sec 1 65535 dead_interval sec 1 65535 instance value 0 255 config ospfv3 virtual_link area_id neighbor_id hello_interval sec 1 65535 dead_interval sec 1 65535 instance value 0 25...

Page 731: ...nd Example To configure OSPFv3 router ID DGS 3120 24TC admin config ospfv3 router_id 1 1 1 1 Command config ospfv3 router_id 1 1 1 1 Success DGS 3120 24TC admin 71 2 enable ospfv3 Description This command is used to enable OSPFv3 on the Switch Format enable ospfv3 Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable OSPFv3 DGS...

Page 732: ... OSPFv3 interface all Specify to configure all OSPFv3 interfaces area Optional Specify the OSPFv3 area ID It is a 32 bit number in the form of an IPv4 address that uniquely identifies the OSPFv3 area in the OSPFv3 domain area_id Enter the OSPFv3 area ID priority Optional Specify the priority used in the election of the Designated Router DR value 0 255 Enter a value between 0 and 255 The default va...

Page 733: ... Passive interface does not advertise to any other routers except those within its OSPFv3 intranet When this field is disabled it denotes an active interface Its default setting is Disabled enable Specify to be passive interface disable Specify to be active interface Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure an OSPFv3 interface ...

Page 734: ...0 0 0 Normal None None Total Entries 1 Virtual Interface Configuration CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All 71 6 create ospfv3 area Description This command is used to create an OSPFv3 area Format create ospfv3 area area_id type normal stub stub_summary enable disable metric value 0 65535 Parameters area_id Enter the OSPFv3 area ID It is a 32 bit number in the form of an IPv4...

Page 735: ... is used to configure an OSPFv3 area The backbone area 0 0 0 0 can not be configured to be stub area Format config ospfv3 area area_id type normal stub stub_summary enable disable metric value 0 65535 Parameters area_id Enter the OSPFv3 area ID It is a 32 bit number in the form of an IPv4 address that uniquely identifies the OSPFv3 area in the OSPFv3 domain type The OSPFv3 area mode of operation n...

Page 736: ...leted Format delete ospfv3 area area_id Parameters area_id Enter the OSPFv3 area ID It is a 32 bit number in the form of an IPv4 address that uniquely identifies the OSPFv3 area in the OSPFv3 domain Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an OSPFv3 area DGS 3120 24TC admin delete ospfv3 area 2 2 2 2 Command delete ospfv3 area 2 2...

Page 737: ...command is used to create an OSPFv3 area aggregation Format create ospfv3 aggregation area_id ipv6networkaddr advertise enable disable Parameters area_id Enter the OSPFv3 area ID where the aggregation belongs to ipv6networkaddr Enter the IPv6 network address of the aggregation advertise Specify whether to use this aggregation to aggregate the intra area routes when it advertises these routes to an...

Page 738: ...tion advertise Specify whether to use this aggregation to aggregate the intra area routes when it advertises these routes to another area enable OSPFv3 ABR Area Border Router will use this aggregation to aggregate the intra area routes when it advertises these routes to another area disable OSPFv3 ABR will not use this aggregation to aggregate the intra area routes when it advertises these routes ...

Page 739: ...d Power User level users can issue this command Example To delete an OSPFv3 area aggregation DGS 3120 24TC admin delete ospfv3 aggregation 2 2 2 2 2000 16 Command delete ospfv3 aggregation 2 2 2 2 2000 16 Success DGS 3120 24TC admin 71 13 show ospfv3 aggregation Description This command is used to display OSPFv3 area aggregation configurations Format show ospfv3 aggregation area_id Parameters area...

Page 740: ...extlink link_lsa intra_area_prefix Parameters area Optional Specify to only display the LSAs that belong to this area area_id Enter the area ID type Optional Specify to only display the LSAs of the specific type The detail information for these LSAs displays at the same time rtrlink Specify to only display Router LSA netlink Specify to only display Network LSA inter_area_prefix Specify to only dis...

Page 741: ...ea 0 0 0 0 Link State ID ADV Router Age Seq Ref LSA Type 0 0 0 1 2 2 2 2 684 0x80000004 0x2001 Total Entries 3 DGS 3120 24TC admin 71 15 show ospfv3 neighbor Description This command is used to display OSPFv3 neighbor information Format show ospfv3 neighbor neighbor_id ipif ipif_name 12 Parameters neighbor_id Optional Specify the neighbor ID ipif Optional Specify the interface where the neighbor i...

Page 742: ...al neighbor information Format show ospfv3 virtual_neighbor area_id neighbor_id Parameters area_id Optional Specify the transit area where the virtual neighbor is built neighbor_id Optional Specify the virtural neighbor router ID Restrictions None Example To display OSPFv3 virtual neighbor DGS 3120 24TC admin show ospfv3 virtual_neighbor Command show ospfv3 virtual_neighbor Transit Router ID of Vi...

Page 743: ...router before the selected area declares that the router is down The dead interval must be evenly divisible by the hello interval sec 1 65535 Enter the interval between 1 and 65535 seconds The default value is 60 instance Optional The instance ID on the virtual link Support for multiple instances on a link is accomplished through an instance ID contained in the OSPFv3 packet header If the instance...

Page 744: ... ID on the virtual link Support for multiple instances on a link is accomplished through an instance ID contained in the OSPFv3 packet header If the instance ID configured on the interface and that of a received OSPFv3 packets do not match the interface discards the packet and no neighbor relationship can be established value 0 255 Enter a value between 0 and 255 Restrictions Only Administrator Op...

Page 745: ...on This command is used to display OSPFv3 virtual link configurations Format show ospfv3 virtual_link area_id neighbor_id Parameters area_id Optional Specify a 32 bit number in the form of an IPv4 address that uniquely identifies the OSPFv3 area in the OSPFv3 domain This area is the transit area where the virtual link is built neighbor_id Optional Specify a 32 bit number in the form of an IPv4 add...

Page 746: ...1 2 metric value 1 16777214 Parameters local Redistribute local routes into OSPFv3 static Redistribute static routes into OSPFv3 ripng Redistribute RIPng routes into OSPFv3 mettype Optional Allow the selection of one of two methods for calculating the metric value 1 1 calculates the metric for other routing protocols to OSPFv3 by adding the destination s interface cost to the metric entered in the...

Page 747: ...utes into OSPFv3 mettype Optional Allow the selection of one of two methods for calculating the metric value 1 1 calculates the metric for other routing protocols to OSPFv3 by adding the destination s interface cost to the metric entered in the Metric field 2 2 uses the metric entered in the Metric field without change If the metric type is not specified it will be type 2 metric Optional Specify t...

Page 748: ...v3 src local static ripng Parameters local Specify not to redistribute local routes into OSPFv3 static Specify not to redistribute static routes into OSPFv3 ripng Specify not to redistribute RIPng routes into OSPFv3 Restrictions Only Administrator Operator and Power User level users can issue this command Example To remove OSPFv3 route redistribution DGS 3120 24TC admin delete ipv6route redistribu...

Page 749: ...covery mode NOTE This command does not take effect until being saved Format enable password_recovery Parameters None Restrictions Only Administrator level users can issue this command Example To enable the password recovery mode DGS 3120 24TC admin enable password_recovery Command enable password_recovery Success DGS 3120 24TC admin 72 2 disable password_recovery Description This command is used t...

Page 750: ...he password recovery state is enabled the user can reboot the Switch and enter the Password Recovery mode Otherwise the user will not be able to enter the special recovery mode NOTE Only the NV RAM configuration will take effect when the Switch restarts the running configuration does not take effect until being saved That means the password recovery is determined by the state stored in the NV RAM ...

Page 751: ...abit Ethernet Switch CLI Reference Guide 746 Example To display the password recovery state DGS 3120 24TC admin show password_recovery Command show password_recovery Running Configuration Enabled NV RAM Configuration Enabled DGS 3120 24TC admin ...

Page 752: ...ystem Within fan s status display for example there are three fans on the left of the Switch if three fans is working normally there will display OK in the Left Fan field If some fans work failed such as fan 1 3 there will only display the failed fans in the Left Fan field such as 1 3 Fail In the same way the Right Fan Back Fan is same to Left Fan Because there is only one CPU Fan if it is working...

Page 753: ...Switch CLI Reference Guide 748 73 2 show environment Description This command is used to display current status of power s and fan s on the system Format show environment Parameters None Restrictions None Example To display the standalone device environment ...

Page 754: ...eshold Celsius 40 Fan Low Temperature Threshold Celsius 35 Unit 3 Internal Power Active External Power Fail Right Fan 1 Speed Low 3000 RPM Right Fan 2 Speed Low 3000 RPM Current Temperature Celsius 37 Fan High Temperature Threshold Celsius 40 Fan Low Temperature Threshold Celsius 35 DGS 3120 24TC admin 73 3 config temperature threshold Description This command is used to configure the warning thre...

Page 755: ...nfigure the trap and log state for temperature warning event Format config temperature trap log state enable disable Parameters trap state Specify the trap state for the warning temperature event enable Enable trap state for warning temperature event The default state is enabled disable Disable trap state for warning temperature event log state Specify the log state for the warning temperature eve...

Page 756: ...vel users can issue this command Example To configure the warning fan traps state DGS 3120 24TC admin config fan trap state enable Command config fan trap state enable Success DGS 3120 24TC admin 73 6 config power trap state Description This command is used to configure the trap state for power warning event Format config power trap state enable disable Parameters enable Enable trap state for warn...

Page 757: ...inite sec 1 3600 Parameters timeout Optional Specify the timeout value after which the port LEDs will return to normal infinite Specify that the port LEDs will stay on until the disable light command was issued sec 1 3600 Enter the timeout value here This value must be between 1 and 3600 seconds By default this value is 300 seconds Restrictions Only Administrator Operator and Power User level user...

Page 758: ... Reference Guide 753 Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To return all the port LEDs to the normal state DGS 3120 24TC admin disable light Command disable light Success DGS 3120 24TC admin ...

Page 759: ...paddr Parameters ipaddr Specify the IP address of the host domain_name 255 Enter the domain name of the host times Optional The number of individual ICMP echo messages to be sent A value of 0 will send an infinite ICMP echo messages The maximum value is 255 The default is 0 indicating infinity Press the CTRL C to break the ping test value 1 255 Enter the number of individual ICMP echo messages to ...

Page 760: ...c 1 99 source_ip ipv6addr Parameters ipv6addr Enter the IPv6 address here domain_name 255 Enter the domain name of the host times Optional The number of individual ICMP echo messages to be sent A value of 0 will send an infinite ICMP echo messages The maximum value is 255 The default is 0 indicating infinity Press the CTRL C to break the ping test value 1 255 Enter the number of individual ICMP ec...

Page 761: ...20 24TC admin ping6 3000 1 times 4 Command ping6 3000 1 times 4 Reply from 3000 1 bytes 100 time 10ms Reply from 3000 1 bytes 100 time 10ms Reply from 3000 1 bytes 100 time 10ms Reply from 3000 1 bytes 100 time 10ms Ping Statistics for 3000 1 Packets Sent 4 Received 4 Lost 0 DGS 3120 24TC admin ...

Page 762: ...on This command is used to create a policy route and define the route s name Format create policy_route name policyroute_name 32 Parameters policyroute_name 32 The policy route name The maximum length is 32 characters Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a policy route named danilo DGS 3120 24TC admin create policy_route name ...

Page 763: ...l display an error message k If the ACL rule action is drop these packets will not forward and the policy route will not be implemented l When a packet passes from the policy route its TTL will decrease by 1 m If a user deletes an ACL rule that is linked to a policy rule the system will display an error message Format config policy_route name policyroute_name 32 acl profile_id value 1 6 access_id ...

Page 764: ...olicy_route name danilo acl profile_id 1 access_id 1 nexthop 20 1 1 100 state enable Success DGS 3120 24TC admin 75 4 show policy_route Description This command is used to display the Switch s current policy route rules Format show policy_route Parameters None Restrictions None Example To display the Switch s current policy route rules DGS 3120 24TC admin show policy_route Command show policy_rout...

Page 765: ...earning_addr Description This command is used to set the maximum number of port security entries that can be authorized system wide There are four levels of limitations on the learned entry number for the entire system for a port for a VLAN and for a specific VLAN on a port If any limitation is exceeded the new entry will be discarded The setting for system level maximum learned users must be grea...

Page 766: ...ns that no user can be authorized by the port security function on this port If the setting is smaller than the number of current learned entries on the port the command will be rejected The default value is 32 max_lock_no 0 3072 Enter the maximum number of port security entries that can be learned here This value must be between 0 and 3072 action Specify the action to be taken when the number of ...

Page 767: ...scription This command is used to set the maximum number of port security entries that can be learned on a specific VLAN There are four levels that limit the number of learned entries the entire system a port a VLAN and a specific VLAN on a port If any limitation is exceeded the new entry will be discarded Format config port_security vlan vlan_name 32 vlanid vidlist max_learning_addr max_lock_no 0...

Page 768: ..._entry vlan vlan_name 32 vlanid vlanid 1 4094 mac_address macaddr Parameters vlan Specify the VLAN by VLAN name vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify the VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID list here This value must be between 1 and 4094 mac_address Specify the MAC address of the entry macaddr Enter the MAC address used here Rest...

Page 769: ...vlanid Optional Specify a list of VLANs by VLAN ID vidlist Enter the VLAN ID list here Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear the port security entries on port 6 DGS 3120 24TC admin clear port_security_entry ports 6 Command clear port_security_entry ports 6 Success DGS 3120 24TC admin 76 6 show port_security_entry Description Thi...

Page 770: ...Total Entries 1 DGS 3120 24TC admin 76 7 show port_security Description This command is used to display the port security related information including state maximum learned addresses and lock address mode on a port and or on a VLAN If both ports and vlanid or vlan_name are specified configurations matching any of these parameters will be displayed Format show port_security ports portlist vlan vla...

Page 771: ... sending of port security traps When the port security trap is enabled if there is a new MAC that violates the pre defined port security configuration a trap will be sent out with the information about the MAC address and port If the port security trap is disabled no trap will be sent out for a MAC address violation Format config port_security trap state enable disable Parameters enable Enable por...

Page 772: ...y configuration the MAC port and other relevant information will be logged otherwise no log will be generated Format config port_security log state enable disable Parameters enable Enable port security log disable Disable port security log Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the port security log DGS 3120 24TC admin config po...

Page 773: ...nits all supported PoE units in the system will be configured unitlist Enter the list of units that will be configured here all Specify that all the units will be configured power_limit Optional Configure the power budget of PoE system The range of value which can be specified is determined by the system Normally the minimum setting is 37 W and the maximum setting is 760 W The actual range will de...

Page 774: ...er_limit 250 power_disconnect_method deny_low_priority_port Success DGS 3120 24PC admin 77 2 config poe ports Description This command is used to configure the PoE port settings Based on 802 3af there are 5 kinds of PD classes class 0 class 1 class 2 and class 3 The power consumption ranges for them are 0 44 12 95W 0 44 3 84W 3 84 6 49W 6 49 12 95W and 12 95 29 5W respectively The five pre defined...

Page 775: ...ime range priority Optional Port priority determines the priority the system attempts to supply the power to port There are three levels of priority that can be selected critical high and low When multiple ports happen to have the same level of priority the port ID will be used to determine the priority The lower port ID has higher priority The setting of priority will affect the ordering of suppl...

Page 776: ..._define 1000 Command config poe ports 1 5 state enable priority critical power_limit user_define 1000 Success DGS 3120 24PC admin 77 3 show poe system Description This command is used to display the setting and actual values of the whole PoE system Format show poe system units unitlist Parameters units Optional Specified units that will be displayed unitlist Enter the unit list that will be displa...

Page 777: ...Legacy PD Disabled If Power Disconnection Method is set to deny next port then the system can not utilize out of its maximum power capacity The maximum unused watt is 19W DGS 3120 24PC admin 77 4 show poe ports Description This command is used to display the setting and actual values of PoE port Format show poe ports portlist Parameters portlist Optional Specified a list of ports to be displayed I...

Page 778: ...fined 0 0 0 0 OFF Interim state during line detection 1 2 Enabled Low 15400 User defined 0 0 0 0 OFF Interim state during line detection 1 3 Enabled Low 15400 User defined 0 0 0 0 OFF Interim state during line detection 1 4 Enabled Low 15400 User defined 0 0 0 0 OFF Interim state during line detection 1 5 Enabled Low 15400 User defined 0 0 0 0 OFF Interim state during line detection 1 6 Enabled Lo...

Page 779: ... continuously monitor energy on the cable The moment energy is detected the port will turn on fully as to the IEEE specification s requirements The power saving function is performed while no link is detected and it will not affect the port capabilities while the link is up When a link is detected on the port for a shorter cable the power consumption will be reduced by lowering the signal amplitud...

Page 780: ...Success DGS 3120 24TC admin 78 2 config power_saving hibernation Description This command is used to add or delete the power saving schedule on system hibernation When the system enters hibernation mode the Switch changes to a low power state and is idle It shuts down all the ports and all network function does not work Only the console connection will work via the RS232 port Format config power_s...

Page 781: ...e time_range range_name 32 clear_time_range Parameters add Specify to add a time range delete Specify to delete a time range time_range Specify the name of the time range range_name32 Enter a name for maximum 32 characters clear_time_range Specify to clear all the time range of port LED Restrictions Only Administrator and Operator level users can issue this command Example To add a time range name...

Page 782: ...Restrictions Only Administrator and Operator level users can issue this command Example To add a time range named range_1 on port 1 DGS 3120 24TC admin config power_saving port 1 1 add time_range range_1 Command config power_saving port 1 1 add time_range range_1 Success DGS 3120 24TC admin To delete a time range named range_2 on port 1 DGS 3120 24TC admin config power_saving port 1 1 delete time_...

Page 783: ...y the power saving function setting DGS 3120 24TC admin show power_saving Command show power_saving Link Detection State Enabled Length Detection State Disabled Power Saving Configuration On System Hibernation State Disabled Power Saving Configuration On Port LED State Disabled Power Saving Configuration On Port State Disabled DGS 3120 24TC admin 78 6 config led state Description This command is u...

Page 784: ... DGS 3120 24TC admin config led state disable Command config led state disable Success DGS 3120 24TC admin 78 7 show led Description This command is used to display the setting of all port s LED admin state Format show led Parameters None Restrictions None Example To display the setting of all port s LED admin state DGS 3120 24TC admin show led Command show led Port LED State Enabled DGS 3120 24TC...

Page 785: ...discover and request packet if the tag is absent and remove the circuit ID tag from the received PPPoE offer and session confirmation packet The insert circuit ID contains the following information Client MAC address Device ID and Port number By default Switch IP address is used as the device ID to encode the circuit ID option Format config pppoe circuit_id_insertion state enable disable Parameter...

Page 786: ...etting is enable enable Enable port s PPPoE circuit ID insertion function disable Disable port s PPPoE circuit ID insertion function circuit_id Configure the device ID part for encoding of the circuit ID option mac The MAC address of the Switch will be used to encode the circuit ID option ip The Switch s IP address will be used to encode the circuit ID option This is the default udf A user specifi...

Page 787: ...ion ports Description This command is used to display Switch s port PPPoE Circuit ID insertion configuration Format show pppoe circuit_id_insertion ports portlist Parameters portlist Optional Specify a list of ports to be displayed Restrictions None Example To display port 2 5 PPPoE circuit ID insertion configuration DGS 3120 24TC admin show pppoe circuit_id_insertion ports 1 2 1 5 Command show pp...

Page 788: ...xStack DGS 3120 Series Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 783 DGS 3120 24TC admin ...

Page 789: ...pim last_hop_spt_switchover never immediately show pim ipmroute create pim static_rp group network_address rp ipaddr delete pim static_rp group network_address show pim static_rp show pim rpset create pim register_checksum_include_data rp_address ipaddr delete pim register_checksum_include_data rp_address ipaddr show pim register_checksum_include_data_rp_list config pim ssm state enable disable gr...

Page 790: ...ol mode will be set to sparse dense mode dr_priority Specify the priority for DR Designated Router election The DR will forward multicast traffic from a unicast source to the appropriate RP Rendezvous Point The router with the highest priority value will be elected as the DR in the VLAN When multiple routers are configured with the same highest priority value the router with the highest IP addres ...

Page 791: ...this command Example To enable PIM DGS 3120 24TC admin enable pim Command enable pim Success DGS 3120 24TC admin 80 3 disable pim Description This command is used to disable PIM on the switch Format disable pim Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable PIM DGS 3120 24TC admin disable pim Command disable pim Success...

Page 792: ... This name can be up to 12 characters long ipaddress Optional Specify the IP address and netmask of the destination network_address Enter the destination IP address and netmask used here If no parameter is specified the system will display all the PIM neighbor addresses in the table Restrictions None Example To display PIM neighbor address table DGS 3120 24TC admin show pim neighbor Command show p...

Page 793: ...Mode State System 10 90 90 90 8 10 90 90 90 30 60 DM Disabled Total Entries 1 DGS 3120 24TC admin 80 6 config pim cbsr Description This command is used to configure the BSR Bootstrap Router candidate feature and parameters used by this Switch The BSR elected will keep all the routers in the PIM SM domain informed of the currently assigned RP for each multicast group As a rule there should be multi...

Page 794: ...e the RP value 0 32 Enter the hash mask lenght value here This value must be between 0 and 32 The default value is 30 seconds bootstrap_period Specify the interval between originating Bootstrap message value 1 255 Enter the bootstrap period value used here This value must be between 1 and 255 The default value is 60 seconds Restrictions Only Administrator Operator and Power User level users can is...

Page 795: ...o set the time Candidate RP CRP advertisements are valid on the PIM SM enabled network If CRP advertisements are not received by the BSR within this time frame the CRP is removed from the list of candidates An entry of 0 will send out one advertisement that states to the BSR that it should be immediately removed from CRP status on the PIM SM network value 0 255 Enter the hold time for the RP here ...

Page 796: ... range into a C RP serve list for PIM SM Format create pim crp group network_address rp ipif_name 12 Parameters group Specify the multicast group address for this Switch to become a Candidate RP This address must be a class D address network_address Enter the group network address used here rp Specify that the interface will act as C RP for the group ipif_name 12 Enter the IP interface name used h...

Page 797: ...his address must be a class ID address Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a multicast group range from the C RP server list DGS 3120 24TC admin delete pim crp group 224 1 2 3 32 Command delete pim crp group 224 1 2 3 32 Success DGS 3120 24TC admin 80 11 show pim crp Description This command is used to list all the candidate ...

Page 798: ... to be never the last hop router will always receive the multicast data from the shared tree When the mode is set to immediately the last hop router will always receive the multicast data from the shortest path tree Format config pim last_hop_spt_switchover never immediately Parameters never Specify that the router will always receive multicast data from the shared tree immediately Specify that th...

Page 799: ...ow pim ipmroute PIM IP Multicast Route Table UA Upstream AssertTimer AM Assert Metric AMPref Assert MetricPref ARB Assert RPTBit Group Address Source Address UA AM AMPref ARB Flag Type Mode 225 0 0 0 12 90 90 90 32 0 0 0 0 RPT G ASM 225 0 0 1 12 90 90 90 32 0 0 0 0 RPT G ASM 225 0 0 5 12 90 90 90 32 0 0 0 0 RPT G ASM 225 7 7 5 12 90 90 90 32 0 0 0 0 RPT G ASM 226 0 0 0 12 90 90 90 32 0 0 0 0 RPT G...

Page 800: ... IP address used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a static RP DGS 3120 24TC admin create pim static_rp group 239 1 1 0 24 rp 10 52 33 18 Command create pim static_rp group 239 1 1 0 24 rp 10 52 33 18 Success DGS 3120 24TC admin 80 15 delete pim static_rp group Description This command is used to delete a static RP For...

Page 801: ... 1 0 24 Success DGS 3120 24TC admin 80 16 show pim static_rp Description This command is used to list all the static RP settings Format show pim static_rp Parameters None Restrictions None Example To list all the static RP settings DGS 3120 24TC admin show pim static_rp Command show pim static_rp PIM Static RP Table Group RP Address 224 1 2 0 24 10 52 33 4 239 1 1 0 24 10 52 33 18 Total Entries 2 ...

Page 802: ...196 Dynamic 224 0 0 0 4 10 54 71 9 0 0 Static Total Entries 2 DGS 3120 24TC admin 80 18 create pim register_checksum_include_data rp_address Description This command is used to decide the checksum in register packet will include the data portion or not As defined in RFC 4601 the checksum for Registers is done only on the first 8 bytes of the packet including the PIM header and the next 4 bytes exc...

Page 803: ...DGS 3120 24TC admin create pim register_checksum_include_data rp_address 24 1 2 3 Command create pim register_checksum_include_data rp_address 24 1 2 3 Success DGS 3120 24TC admin 80 19 delete pim register_checksum_include_data rp_address Description This command is used to delete the register checksum including the data for the specific RP address Format delete pim register_checksum_include_data ...

Page 804: ...clude_data_rp_list Description This command is used to list all the RPs of the registered checksum including the data Format show pim register_checksum_include_data_rp_list Parameters None Restrictions None Example To list all the RPs of the registered checksum including the data DGS 3120 24TC admin show pim register_checksum_include_data_rp_list Command show pim register_checksum_include_data_rp_...

Page 805: ...enabled disable Specify that the SSM service model will be disabled group_range Specify the group address range for the SSM service in IPv4 default The default indicates that the group address range is 232 0 0 0 8 network_address Enter the group address range for the SSM service here Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure PIM...

Page 806: ...Managed Gigabit Ethernet Switch CLI Reference Guide 801 Example To display PIM SSM state and group range DGS 3120 24TC admin show pim ssm Command show pim ssm SSM Service Model State Enabled SSM Group 232 0 0 0 8 DGS 3120 24TC admin ...

Page 807: ...ddr ipif ipif_name 12 show pim6 mroute s_g rpt group ipv6addr source ipv6addr ipif ipif_name 12 create pim6 static_rp group ipv6networkaddr rp ipv6addr override_dynamic delete pim6 static_rp group ipv6networkaddr config pim6 embedded_rp state enable disable show pim6 crp show pim6 static_rp show pim6 rpset config pim6 register_checksum_calculate include_data not_include_data config pim6 register_p...

Page 808: ... value of zero represents not to send PIM Join Prune message on this interface sec 0 18000 Enter the time between 0 and 18000 seconds The default value is 60 dr_priority Specify the Designated Router Priority value inserted into the DR Priority option in PIM6 Hello message transmitted on this interface Numerically higher values for this parameter indicate higher priorities uint 0 4294967294 Enter ...

Page 809: ...or the PIM6 protocol related parameters on all interfaces DGS 3120 24TC admin show pim6 Command show pim6 PIM6 Global State Disabled Last Hop SPT Switchover Never Register Probe Interval 5 sec Register Suppression Timeout 60 sec Keepalive Period 210 sec Register Checksum Calculate Not Include Data Embedded RP State Disabled PIM6 SM Interface Table DR Hello J P BSR Interface Priority Interval Inter...

Page 810: ...in 81 3 config pim6 cbsr Description This command is used to set the C BSR state the priority and the hash mask length of the candidate bootstrap router on an interface Format config pim6 cbsr ipif ipif_name 12 state enable disable priority value 0 255 hash_masklen value 0 128 1 Parameters ipif Specify the IP interface ipif_name 12 Enter the IP interface name This name can be up to 12 characters l...

Page 811: ...ash_masklen 126 Command config pim6 cbsr ipif System state enable priority 64 hash_masklen 126 Success DGS 3120 24TC admin 81 4 show pim6 cbsr Description This command is used to display the candidate bootstrap router related information Format show pim6 cbsr Parameters None Restrictions None Example To show C BSR settings on the Switch DGS 3120 24TC admin show pim6 cbsr Command show pim6 cbsr PIM...

Page 812: ...is 192 interval Specify the C RP advertisement interval in seconds sec 1 16383 Enter the interval between 1 and 16383 seconds The default value is 60 Restrictions Only Administrator Operator and Power User level users can issue this command Example To set the C RP priority and the interval on the interface System DGS 3120 24TC admin config pim6 crp rp System priority 60 interval 60 Command config ...

Page 813: ...ption This command is used to delete a multicast group range from the C RP serve list Format delete pim6 crp group ipv6networkaddr Parameters ipv6networkaddr Specify the multicast group address range of the C RP entry to be removed from C RP serve list Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a multicast group range FF1E 12EF 1023...

Page 814: ...r an IPv6 network DGS 3120 24TC admin enable pim6 Command enable pim6 Success DGS 3120 24TC admin 81 9 disable pim6 Description This command is used to disable the PIM global state for an IPv6 network Format disable pim6 Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable PIM SM for an IPv6 network DGS 3120 24TC admin disabl...

Page 815: ...tely Specify to immediately switch to SPT The last hop router switches from shared tree to shortest path tree on the first multicast data arrived Restrictions Only Administrator Operator and Power User level users can issue this command Example To set the SPT switchover mode to never DGS 3120 24TC admin config pim6 last_hop_spt_switchover never Command config pim6 last_hop_spt_switchover never Suc...

Page 816: ...mand show pim6 neighbor ipif n20 Neighbor Info on Interface n20 Neighbor Address FE80 11FF 4CD8 Neighbor Up Time 00 00 50 Neighbor Expiry Time 00 01 50 Neighbor DR Priority Present True Neighbor DR Priority 1 Total Entries 1 DGS 3120 24TC admin 81 12 show pim6 mroute Description This command is used to display the multicast routing information generated by PIM6 Format show pim6 mroute group ipv6ad...

Page 817: ... Source 2001 1111 Upstream n2 Outgoing n10 Group FF13 102 Source 2001 3F6D Upstream n2 Outgoing n20 Group FF13 100 Source 2001 1111 rpt Upstream n1 RP Address 3FFE 10 10 153 Outgoing Total Entries 4 DGS 3120 24TC admin 81 13 show pim6 mroute star_g Description This command is used to display the multicast routing information for G entries generated by PIM6 Format show pim6 mroute star_g group ipv6...

Page 818: ...n2 RP Address 3FFE 10 10 153 Total Entries 3 DGS 3120 24TC admin 81 14 show pim6 mroute s_g Description This command is used to display the multicast routing information for S G or S G rpt entries generated by PIM6 Format show pim6 mroute s_g rpt group ipv6addr source ipv6addr ipif ipif_name 12 Parameters rpt Optional Specify the S G rpt entry group Optional Specify the IPv6 multicast group addres...

Page 819: ...tatic_rp group Description This command is used to create a static RP In general a static RP cannot override a dynamic RP If override_dynamic is configured the static RP will override any dynamically learned RP Format create pim6 static_rp group ipv6networkaddr rp ipv6addr override_dynamic Parameters ipv6networkaddr Specify the multicast group network address for this static RP rp Specify the IPv6...

Page 820: ...group ipv6networkaddr Parameters ipv6networkaddr Specify the multicast group network address for this static RP Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a static RP DGS 3120 24TC admin delete pim6 static_rp group FF02 11 64 Command delete pim6 static_rp group FF02 11 64 Success DGS 3120 24TC admin 81 17 config pim6 embedded_rp sta...

Page 821: ...in config pim6 embedded_rp state enable Command config pim6 embedded_rp state enable Success DGS 3120 24TC admin 81 18 show pim6 crp Description This command is used to display all candidate rendezvous point C RP related information Format show pim6 crp Parameters None Restrictions None Example To show C RP information DGS 3120 24TC admin show pim6 crp Command show pim6 crp PIM6 Candidate RP Table...

Page 822: ...pim6 static_rp Parameters None Restrictions None Example To show the static RP DGS 3120 24TC admin show pim6 static_rp Command show pim6 static_rp PIM6 Static RP Table Group FF02 64 RP Address 3000 12 Override Dynamic False Total Entries 1 DGS 3120 24TC admin 81 20 show pim6 rpset Description This command is used to display all the active RP information Format show pim6 rpset Parameters None ...

Page 823: ...atic Total Entries 2 DGS 3120 24TC admin 81 21 config pim6 register_checksum_calculate Description This command is used to decide whether the checksum in register packet will include the data portion Format config pim6 register_checksum_calculate include_data not_include_data Parameters include_data When specified to calculate the checksum in IPv6 PIM register packets the data portion is included ...

Page 824: ...gister_probe_time sec 1 127 Parameters sec 1 127 Enter the time before the Register Stop Timer RST expires when a DR may send a Null Register to the RP to cause it to resend a Register Stop message The default value is 5 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the register probe time to be 20 seconds DGS 3120 24TC admin config...

Page 825: ...sion_time 120 Success DGS 3120 24TC admin 81 24 config pim6 keepalive_period Description This command is used to configure the PIM6 SM multicast routing entry Keepalive Timer Format config pim6 keepalive_period sec 120 65535 Parameters sec 120 655535 Enter the period during which the PIM router will maintain the S G state in the absence of explicit S G local membership or S G join messages receive...

Page 826: ...7 delete protocol_group group_id int 1 16 all show port dot1v ports portlist 82 1 create dot1v_protocol_group Description This command is used to create a protocol group for protocol VLAN function Format create dot1v_protocol_group group_id int 1 16 group_name name 32 Parameters group_id The ID of protocol group which is used to identify a set of protocols int 1 16 Enter the group ID used here gro...

Page 827: ...t the protocol will be added to the specified group delete Specify that the protocol will be removed from the specified group protocol The protocol value is used to identify a protocol of the frame type specified ethernet_2 Specify that the Ethernet 2 protocol will be used ieee802 3_snap Specify that the IEEE 802 3 Snap protocol will be used ieee802 3_llc Specify that the IEEE 802 3 LLC protocol w...

Page 828: ...n delete dot1v_protocol_group group_id 100 Command delete dot1v_protocol_group group_id 100 Success DGS 3120 24TC admin 82 4 show dot1v_protocol_group Description This command is used to display the protocols defined in a protocol group Format show dot1v_protocol_group group_id int 1 16 group_name name 32 Parameters group_id Optional Specify the ID of the group to be displayed int 1 16 Enter the g...

Page 829: ...orts used for the configuration here all Specify that all the ports will be used for this configuration add Specify that the group specified will be added protocol_group Specify that parameters for the group will follow group_id Specify the group ID of the protocol group int 1 16 Enter the group ID used here group_name Specify the name of the protocol group name 32 Enter the name of the group used...

Page 830: ...p_id 10 vlan marketing 1 Command config port dot1v ports 1 3 add protocol_group group_id 10 vlan marketing 1 Success DGS 3120 24TC admin 82 6 show port dot1v Description This command is used to display the VLAN to be associated with untagged packet ingressed from a port based on the protocol group Format show port dot1v ports portlist Parameters ports Optional Specify a range of ports to be displa...

Page 831: ...gabit Ethernet Switch CLI Reference Guide 826 DGS 3120 24TC admin show port dot1v ports 1 1 Command show port dot1v ports 1 1 Port 1 1 Protocol Group ID VLAN Name Protocol Priority 1 default 2 VLAN2 3 VLAN3 4 VLAN4 Success DGS 3120 24TC admin ...

Page 832: ...4094 priority priority 0 7 delete vlan_translation ports portlist all cvid vidlist show vlan_translation ports portlist cvid vidlist 83 1 enable qinq Description This command is used to enable QinQ When QinQ is enabled all network port roles will be NNI ports all existing static VLANs will run as S VLAN all dynamic learned L2 address will be cleared all dynamic registered VLAN entries will be clea...

Page 833: ...l be disabled To run GVRP on the Switch the administrator should enable GVRP manually Format disable qinq Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable QinQ DGS 3120 24TC admin disable qinq Command disable qinq Success DGS 3120 24TC admin 83 3 config qinq inner_tpid Description The command is used to configure the inne...

Page 834: ...y the port role in QinQ mode uni Specify that the port is connecting to the customer network nni Specify that the port is connecting to the service provider network missdrop Optional Specify the state of the miss drop of ports option enable Specify that the miss drop of ports option will be enabled disable Specify that the miss drop of ports option will be disabled outer_tpid Optional Specify the ...

Page 835: ...rts 1 1 1 4 role nni outer_tpid 0x88A8 Command config qinq ports 1 1 1 4 role nni outer_tpid 0x88A8 Success DGS 3120 24TC admin 83 5 show qinq Description This command is used to display the global QinQ status Format show qinq Parameters None Restrictions None Example To display the global QinQ status DGS 3120 24TC admin show qinq Command show qinq QinQ Status Enabled DGS 3120 24TC admin 83 6 show...

Page 836: ...n show qinq inner_tpid Command show qinq inner_tpid Inner TPID 0x9100 DGS 3120 24TC admin 83 7 show qinq ports Description This command is used to display the QinQ configuration of the ports Format show qinq ports portlist Parameters ports Specify a list of ports to be displayed portlist Optional Enter the list of ports to be displayed here Restrictions None Example To show the QinQ mode for ports...

Page 837: ...ered to C VLAN Tag or stripped Format create vlan_translation ports portlist all add cvid vidlist replace cvid vlanid 1 4094 svid vlanid 1 4094 priority priority 0 7 Parameters ports Specify a list of ports to be configured portlist Enter the list of ports to be configured here all Specify that all the ports will be used for the configuration add Specify to add an S Tag to the packet cvid Specify ...

Page 838: ...vid 30 svid 300 Command create vlan_translation ports 1 1 add cvid 30 svid 300 Success DGS 3120 24TC admin 83 9 delete vlan_translation ports Description This command is used to delete translation relationships between the C VLAN and the S VLAN Format delete vlan_translation ports portlist all cvid vidlist Parameters ports Specify a list of ports to be configured portlist Enter the list of ports t...

Page 839: ...les Format show vlan_translation ports portlist cvid vidlist Parameters ports Optional Specify a list of ports to be displayed portlist Enter the list of ports to be displayed here cvid Optional Specify the rules for the specified CVIDs vidlist Enter the CVID value used here Restrictions None Example To show C VLANs based on VLAN translation rules in the system DGS 3120 24TC admin show vlan_transl...

Page 840: ...ty dscp_list to priority 0 7 dscp_dscp dscp_list to dscp 0 63 show dscp map portlist dscp_priority dscp_dscp dscp dscp_list 84 1 config bandwidth_control Description This command is used to configure the port bandwidth limit control Format config bandwidth_control portlist all rx_rate no_limit value 8 10240000 tx_rate no_limit value 8 10240000 Parameters portlist Specify a range of ports to be con...

Page 841: ...uccess DGS 3120 24TC admin 84 2 show bandwidth_control Description This command is used to display the port bandwidth configurations The bandwidth can also be assigned by the RADIUS server through the authentication process If RADIUS server has assigned the bandwidth then the RADIUS assigned bandwidth will be the effective bandwidth The authentication with the RADIUS sever can be per port or per u...

Page 842: ...ify a range of ports to be configured portlist Enter the list of port used for this configuration here all For set all ports in the system you may use all parameter If no parameter is specified system will set all ports cos_id_list Specify a list of priority queues The priority queue number is ranged from 0 to 7 min_rate Optional Specify that one of the parameters below no_limit or value m n will ...

Page 843: ...GS 3120 24TC admin config per_queue bandwidth_control ports 1 1 1 10 1 min_rate 130 max_rate 1000 Command config per_queue bandwidth_control ports 1 1 1 10 1 min_rate 130 max_rate 1000 Granularity TX 8 Actual Rate MIN 128 MAX 1000 Success DGS 3120 24TC admin 84 4 show per_queue bandwidth_control Description This command is used to display per port CoS bandwidth control settings Format show per_que...

Page 844: ...ange of ports to be configured portlist Enter the list of port used for this configuration here class_id 0 7 This specifies the 8 hardware priority queues which the config scheduling command will apply to The four hardware priority queues are identified by number from 0 to 7 with the 0 queue being the lowest priority strict The queue will operate in strict mode weight Specify the weights for weigh...

Page 845: ... strict All queues operate in strict mode wrr Each queue operates based on its setting Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the traffic scheduling mechanism for each CoS queue DGS 3120 24TC admin config scheduling_mechanism strict Command config scheduling_mechanism strict Success DGS 3120 24TC admin To configure the traffi...

Page 846: ...ity queues for example DGS 3120 24TC admin show scheduling 1 1 Command show scheduling 1 1 QOS Output Scheduling On Port 1 1 Class ID Weight Class 0 1 Class 1 2 Class 2 3 Class 3 4 Class 4 5 Class 5 6 Class 6 7 Class 7 8 DGS 3120 24TC admin 84 8 show scheduling_mechanism Description This command is used to show the traffic scheduling mechanism Format show scheduling_mechanism portlist Parameters p...

Page 847: ... 1 16 Strict 1 17 Strict 1 18 Strict 1 19 Strict 1 20 Strict 1 21 Strict 1 22 Strict 1 23 Strict 1 24 Strict DGS 3120 24TC admin 84 9 config 802 1p user_priority Description This command is used to map the 802 1p user priority of an incoming packet to one of the eight hardware queues available on the Switch Format config 802 1p user_priority priority 0 7 class_id 0 7 Parameters priority 0 7 The 80...

Page 848: ...nd Power User level users can issue this command Example To configure the 802 1p user priority DGS 3120 24TC admin config 802 1p user_priority 1 3 Command config 802 1p user_priority 1 3 Success DGS 3120 24TC admin 84 10 show 802 1p user_priority Description This command is used to display 802 1p user priority for ports Format show 802 1p user_priority Parameters None Restrictions None Example To ...

Page 849: ...ty is to be configured That is a range of ports for which all untagged packets received will be assigned the priority specified below The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the ...

Page 850: ...th the RADIUS sever can be per port or port user For per port authentication the priority assigned by RADIUS server will be the effective port default priority For per user authentication the priority assigned by RADIUS will not be the effective port default priority whereas it will become the priority associated with MAC address Note that only devices supporting MAC based VLAN can provide per use...

Page 851: ... 24TC admin 84 13 enable hol_prevention Description This command is used to enable head of line prevention on the Switch Format enable hol_prevention Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable HOL prevention on the Switch DGS 3120 24TC admin enable hol_prevention Command enable hol_prevention Success DGS 3120 24TC ad...

Page 852: ... can issue this command Example To disable HOL prevention on the Switch DGS 3120 24TC admin disable hol_prevention Command disable hol_prevention Success DGS 3120 24TC admin 84 15 show hol_prevention Description This command is used to display head of line prevention state on the Switch Format show hol_prevention Parameters None Restrictions None Example To display HOL prevention state on the Swit...

Page 853: ...ration here all Specify that the command apply to all ports on the Switch state Enable or disable to trust DSCP By default DSCP trust is disabled enable Specify that the DSCP trust state will be enabled disable Specify that the DSCP trust state will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example Enable DSCP trust on ports 1 1 1 8 DGS ...

Page 854: ...ing The mapping of DSCP to priority will be used to determine the priority of the packet which will be then used to determine the scheduling queue when the port is in DSCP trust state The mapping of DSCP to color will be used to determine the initial color of the packet when the policing function of the packet is color aware and the packet is DSCP trusted The DSCP to DSCP mapping is used in the sw...

Page 855: ...0 63 Specify the result DSCP of mapping Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the mapping of the DSCP priority to priority 1 DGS 3120 24TC admin config dscp map 1 1 1 8 dscp_priority 1 to 1 Command config dscp map 1 1 1 8 dscp_priority 1 to 1 Success DGS 3120 24TC admin To configure the global mapping of the DSCP priority to...

Page 856: ...trictions None Example In case of project support per port configure show DSCP map configuration on port 1 1 DGS 3120 24TC admin show dscp map 1 1 dscp_dscp Command show dscp map 1 1 dscp_dscp DSCP to DSCP Mapping Port 1 1 0 1 2 3 4 5 6 7 8 9 0 0 1 2 3 4 5 6 7 8 9 1 10 11 12 13 14 15 16 17 18 19 2 20 21 22 23 24 25 26 27 28 29 3 30 31 32 33 34 35 36 37 38 39 4 40 41 42 43 44 45 46 47 48 49 5 50 51...

Page 857: ...the system is saved by using the save command the configuration of the reboot schedule also won t be saved Format config reboot schedule in min 1 43200 at end_time hh mm date ddmthyyyy save_before_reboot Parameters in Specify that the reboot will start after this time interval has passed min 1 43200 Enter the time value used here This value must be between 1 and 43200 minutes at Specify that the r...

Page 858: ... This example shows how to reboot the device at 1 September 2013 23 00 and save all configurations before rebooting DGS 3120 24TC admin config reboot schedule at 23 00 01sep2013 save_before_reboot Command config reboot schedule at 23 00 01sep2013 save_before_reboot Success DGS 3120 24TC admin 85 2 show reboot schedule Description This command is used to display the reboot schedule status Format sh...

Page 859: ...at 1 Sep 2013 23 00 00 in 26234 minutes Save before reboot Yes DGS 3120 24TC admin 85 3 delete reboot schedule Description This command is used to delete the reboot schedule Format delete reboot schedule Parameters None Restrictions None Example This example shows how to delete the reboot schedule DGS 3120 24TC admin delete reboot schedule Command delete reboot schedule Success DGS 3120 24TC admin...

Page 860: ...nction is to mirror packets to a remote switch A packet travels from the Switch where the monitored packet is received passing through the intermediate switch and then to the Switch where the sniffer is attached The first switch is also named the source switch To make the RSPAN function work the RSPAN VLAN source setting must be configured on the source switch For the intermediate and the last swi...

Page 861: ...ed to disable the RSPAN function Format disable rspan Parameters None Restrictions Only Administrator and Operator level users can issue this command Example Configure RSPAN state to disabled DGS 3120 24TC admin disable rspan Command disable rspan Success DGS 3120 24TC admin 86 3 create rspan vlan Description This command is used to create the RSPAN VLAN Up to 16 RSPAN VLANs can be created Format ...

Page 862: ...vlan vlan_name v2 Command create rspan vlan vlan_name v2 Success DGS 3120 24TC admin To create an RSPAN VLAN entry by VLAN ID 3 DGS 3120 24TC admin create rspan vlan vlan_id 3 Command create rspan vlan vlan_id 3 Success DGS 3120 24TC admin 86 4 delete rspan vlan Description This command is used to delete RSPAN VLANs Format delete rspan vlan vlan_name vlan_name vlan_id vlanid 1 4094 Parameters vlan...

Page 863: ...e VLAN name here vlan_id Specify the RSPAN VLAN by VLAN ID value 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 redirect Specify output portlist for the RSPAN VLAN packets If the redirect port is a Link Aggregation port there will perform the Link Aggregation behavior for RSPAN packets add Specify to add output ports for the RSPAN VLAN packets delete Specify to delete output p...

Page 864: ... entry for per flow RSPAN without any source ports DGS 3120 24TC admin config rspan vlan vlan_id 2 source Command config rspan vlan vlan_id 2 source Success DGS 3120 24TC admin To add redirect ports for special RSPAN VLAN on intermediate or destination switch DGS 3120 24TC admin config rspan vlan vlan_name vlan2 redirect add ports 1 18 1 19 Command config rspan vlan vlan_name vlan2 redirect add po...

Page 865: ...ame here vlan_id Optional Specify the RSPAN VLAN by VLAN ID value 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 Restrictions None Example Display the specific settings DGS 3120 24TC admin show rspan Command show rspan RSPAN Enabled RSPAN VLAN ID 2 Mirror Group ID 1 Target Port Source Port RX 1 2 1 5 TX RSPAN VLAN ID 3 Total RSPAN VLAN 2 DGS 3120 24TC admin ...

Page 866: ...e_list_in access_list list_name 16 none 1 config rip timers update sec 5 65535 timeout sec 5 65535 garbage_collection sec 5 65535 1 show rip ipif ipif_name 12 87 1 enable rip Description This command is used to enable RIP for the Switch The default setting is disabled Format enable rip Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Exampl...

Page 867: ...pif_name Specify the IP interface name used for this configuration ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long all Specify that all the IP interfaces will be used in this configuration authentication Specify to set the state of authentication enable Specify that the authentication state will be enabled password 16 When the authentication state is en...

Page 868: ...on will not take effective until user create the access list list_name 16 Enter the access list name none Do not filter receiving RIP routes Restrictions Only Administrator Operator and Power User level users can issue this command Example To change the RIP receive mode for the IP interface System DGS 3120 24TC admin config rip ipif System rx_mode v1_only Command config rip ipif System rx_mode v1_...

Page 869: ...ction 240 Success DGS 3120 24TC admin 87 5 show rip Description This command is used to display the RIP configuration for one or all IP interfaces Format show rip ipif ipif_name 12 Parameters ipif Optional Specify the IP interface name used for this configuration ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long If no parameter is specified the system wil...

Page 870: ...show rip Command show rip RIP Global State Enabled Update Time 30 seconds Timeout Time 180 seconds Garbage Collection Time 120 seconds RIP Interface Settings Interface IP Address TX Mode RX Mode Authen State tication System 10 90 90 90 8 Disabled V1 Only Disabled Disabled Total Entries 1 DGS 3120 24TC admin ...

Page 871: ...te redistribute dst ripng src local static ospfv3 metric value 0 16 config ipv6route redistribute dst ripng src local static ospfv3 metric value 0 16 delete ipv6route redistribute dst ripng src local static ospfv3 88 1 enable ripng Description This command is used to enable RIPng globally Format enable ripng Parameters None Restrictions Only Administrator Operator and Power User level users can is...

Page 872: ...split_horizon poison_reverse update sec 5 65535 expire sec 1 65535 garbage_collection sec 1 65535 1 Parameters method Specify the method of RIPng no_horizon Specify not to use any horizon split_horizon Specify to use basic split horizon poison_reverse Specify to use poison reverse update Specify the update timer sec 5 65535 Enter the time in second between 5 and 65535 expire Specify the expiry tim...

Page 873: ...ll Specify all interfaces to be configured state Specify the RIPng state on the selected interfaces enable Specify to enable the RIPng state disable Specify to disable the RIPng state metric The cost value of an interface The RIPng route that was learned from the interface will add this value as a new route metric The default value is 1 value 1 15 Enter the value between 1 and 15 Restrictions Only...

Page 874: ...led Method Poison Reverse Update Time 30 seconds Expire Time 180 seconds Garbage Collection Time 120 seconds Interface State Metric int8 Disabled 1 int14 Disabled 1 Total Entries 2 IPv6 Route Redistribution Settings Source Destination Type Metric Protocol Protocol Local RIPng All 6 Static RIPng All Transparency Total Entries 2 DGS 3120 24TC admin 88 6 create ipv6route redistribute dst ripng src De...

Page 875: ...eate RIPng route redistribution DGS 3120 24TC admin create ipv6route redistribute dst ripng src local Command create ipv6route redistribute dst ripng src local Success DGS 3120 24TC admin 88 7 config ipv6route redistribute dst ripng src Description This command is used to configure the metric to be associated with the redistributed routes imported from a specified protocol to RIPng protocol Format...

Page 876: ...mand is used to remove RIPng route redistribution to stop importing routes from other routing domain into RIPng domain Format delete ipv6route redistribute dst ripng src local static ospfv3 Parameters local Specify not to redistribute local routes into RIPng static Specify not to redistribute static routes into RIPng ospfv3 Specify not to redistribute OSPFv3 routes into RIPng Restrictions Only Adm...

Page 877: ...cal static ospf RI Mode Only show route redistribute RI Mode Only show route redistribute dst ospf src local static rip RI Mode Only show route redistribute dst rip src local static ospf RI Mode Only config ecmp algorithm ip_destination ip_source crc_low crc_high tcp_udp_port RI Mode Only show ecmp algorithm RI Mode Only show ipfdb ip_address ipaddr interface ipif_name 12 port port show route pref...

Page 878: ...and EI Mode Only value 1 4 Enter the weight value used here This value must be between 1 and 4 null0 Specify the null interface as the next hop RI Mode Only ip_tunnel Specify the IP tunnel interface of the next hop RI Mode Only tunnel_name 12 Enter the IP tunnel interface name Restrictions Only Administrator Operator and Power User level users can issue this command Example To add a floating stati...

Page 879: ...hardware Parameters network_address Optional Specify the destination network address of the route to be displayed RI and EI Mode Only ipaddr Optional Specify the destination IP address of the route to be displayed The longest prefix matched route will be displayed RI and EI Mode Only static Optional Specify to display only static routes One static route may be active or inactive rip Optional Speci...

Page 880: ...rence of static route The default value is 60 default Configure the preference of default route The default value is 1 rip Configure the preference of RIP route The default value is 100 ospfIntra Configure the preference of OSPF intra area route The default value is 80 ospfInter Configure the preference of OSPF inter area route The default value is 90 ospfExt1 Configure the preference of OSPF exte...

Page 881: ...eld is OSPF If the metric type is not specified it will be type 2 metric Optional Specify the metric for the redistributed routes value 0 16777214 Enter the value between 0 and 16777214 If it is not specified or specified as 0 the redistributed routes will be associated with the default metric 20 route_map Optional Specify the route map for the redistributed routes map_name 16 Enter the name of th...

Page 882: ...tes will be associated with the default metric 20 route_map Optional Specify the route map for the redistributed routes map_name 16 Enter the name of the route map no_route_map Optional Specify to remove the route map associated with the redistributed routes Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure route redistributions DGS 312...

Page 883: ...ap_name 16 Parameters local Redistribute local routes into RIP static Redistribute static routes into RIP ospf Redistribute OSPF routes into RIP all Redistribute both OSPF AS internal and OSPF AS external routes into RIP internal Only redistribute OSPF AS internal routes external Only redistribute OSPF AS external routes including type 1 and type 2 routes type_1 Only redistribute OSPF AS internal ...

Page 884: ...ly redistribute OSPF AS internal routes external Only redistribute OSPF AS external routes including type 1 and type 2 routes type_1 Only redistribute OSPF AS internal type 1 routes type_2 Only redistribute OSPF AS internal type 2 routes inter e1 Only redistribute OSPF AS internal type 1 and OSPF AS internal routes inter e2 Only redistribute OSPF AS internal type 2 and OSPF AS internal routes metr...

Page 885: ...ocol as static ospf Specify the source protocol as OSPF Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete route redistribution settings DGS 3120 24TC admin delete route redistribute dst rip src local Command delete route redistribute dst rip src local Success DGS 3120 24TC admin 89 11 show route redistribute RI Mode Only Description This c...

Page 886: ... 24TC admin 89 12 show route redistribute dst ospf RI Mode Only Description This command is used to display the redistribution with the target protocol OSPF Format show route redistribute dst ospf src local static rip Parameters src Optional Specify the source protocol local Display the redistribution with the source local static Display the redistribution with the source static rip Display the re...

Page 887: ...th the target protocol RIP Format show route redistribute dst rip src local static ospf Parameters src Optional Specify the source protocol local Display the redistribution with the source local static Display the redistribution with the source static rip Display the redistribution with the source protocol RIP Restrictions None Example To display the redistribution with the target protocol RIP DGS...

Page 888: ...onal Specify to include the lower 5 bits of the source IP in the ECMP algorithm crc_low Optional Specify to include the lower 5 bits of the CRC in the ECMP algorithm crc_high Optional Specify to include the upper 5 bits of the CRC in the ECMP algorithm tcp_udp_port Optional Specify to include the TCP or UDP port in the ECMP algorithm Restrictions Only Administrator Operator and Power User level us...

Page 889: ...3120 24TC admin 89 16 show ipfdb Description This command is used to display the current network address forwarding database Format show ipfdb ip_address ipaddr interface ipif_name 12 port port Parameters ip_address Optional Displays the specified host IP address ipaddr Enter the IP address used here interface Optional Specify a IP interface ipif_name 12 Enter the IP interface name here This name ...

Page 890: ...pf ospfIntra ospfInter ospfExt1 ospfExt2 Parameters local Optional Display the preference of local route static Optional Display the preference of static route default Optional Display the preference of default route rip Optional Display the preference of RIP route ospf Optional Display the preference of OSPF route ospfIntra Optional Display the preference of OSPF intra area route ospfInter Option...

Page 891: ...2 115 DGS 3120 24TC admin 89 18 enable ecmp ospf RI Mode Only Description This command is used to activate the OSPF ECMP function Format enable ecmp ospf Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the OSPF ECMP function DGS 3120 24TC admin enable ecmp ospf Command enable ecmp ospf Success DGS 3120 24TC admin 89 19 di...

Page 892: ...e Guide 887 Format disable ecmp ospf Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the OSPF ECMP function DGS 3120 24TC admin disable ecmp ospf Command disable ecmp ospf Success DGS 3120 24TC admin ...

Page 893: ...lter state all Specify all ports to be configured for the RPC portmapper filter state state Specify the RPC portmapper filter state enable Enable the RPC portmapper filter on specified ports disable Disable the RPC portmapper filter on specified ports Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable RPC portmapper filter on unit 1 port 1 ...

Page 894: ...it Ethernet Switch CLI Reference Guide 889 Parameters None Restrictions None Example To display the RPC portmapper state DGS 3120 24TC admin show filter rpc_portmapper Command show filter rpc_portmapper Enabled Ports 1 1 1 10 DGS 3120 24TC admin ...

Page 895: ...on falling threshold the range is between 20 100 if the CPU utilization is lower than the falling threshold the Switch enters normal mode 20 100 Enter the utilization falling value here This value must be between 20 and 100 trap_log Optional Configure the state of CPU protection related trap log mechanism to enable or disable If set to enable trap and log will be active while cpu protection curren...

Page 896: ...d_engine Description This command is used to show safeguard engine information Format show safeguard_engine Parameters None Restrictions None Example To show safeguard_engine information DGS 3120 24TC admin show safeguard_engine Command show safeguard_engine Safeguard Engine State Disabled Safeguard Engine Current Status Normal Mode CPU Utilization Information Rising Threshold 30 Falling Threshold...

Page 897: ...em If the time range does not exist the schedule will still be created without prompt But the schedule will not take effective until the time range is created To create an existed entry the device will feedback a success message and does no change for the existed schedule The maximum of schedules backup is 15 Format create backup config log time_range range_name 32 filename pathname state enable d...

Page 898: ... configuration log Schedule to back up log time_range The schedule to back up the configuration or log range_name32 Enter the name of the time range Maximum 32 characters filename The backup filename of the configuration or log pathname Enter the backup file path name state Optional Enable or disable the backup schedule when the schedule is created enable Enable the backup schedule disable Disable...

Page 899: ... Enter the name of the time range Maximum 32 characters filename Optional The backup filename of the configuration or log that wants to be deleted pathname Enter the backup file path name Restrictions Only Administrator and Operator level users can issue this command Example To delete all the schedules DGS 3120 24TC admin delete backup config all Command delete backup config all Success DGS 3120 2...

Page 900: ...ed schedule The maximum of schedules execute is 15 Format create execute_config time_range range_name 32 config pathname state enable disable increment reset Parameters range_name32 Enter the time range for schedule to execute the configuration Maximum 32 characters config The filename of the configuration on file system pathname Enter the configuration file path name state Optional Enable or disa...

Page 901: ...xecute the configuration Maximum 32 characters config The filename of the configuration on file system pathname Enter the configuration file path name state Optional Enable or disable the executive schedules enable Enable the executive schedule disable Disable the executive schedule increment Optional The current configuration will not be reset before executing the configuration reset Optional The...

Page 902: ...figuration to be deleted range_name 32 Enter the time range to be deleted Maximum 32 characters config Optional The configuration file name on file system pathname Enter the configuration file path name Restrictions Only Administrator level users can issue this command Example To delete all the schedule of executing configuration DGS 3120 24TC admin delete execute_config all Command delete execute...

Page 903: ...configuration on file system Format execute config pathname increment Parameters pathname The configuration filename on file system increment Optional If not specified the current configuration will be reset before executing the configuration If specified the current configuration will not be reset before executing the configuration Restrictions Only Administrator level users can issue this comman...

Page 904: ...erver runs as a subsystem of SSH server SSH server is required to be enabled before enabling SFTP server Format enable sftp server Parameters None Restrictions Only Administrators Operators and Power Users can issue this command Example To enable SFTP server globally DGS 3120 24TC admin enable sftp server Command enable sftp server Success DGS 3120 24TC admin 93 2 disable sftp server Description T...

Page 905: ...nfigure parameters for SFTP server Format config sftp server timeout sec 30 600 Parameters timeout Specify the idle timer for SFTP server If the SFTP server detects no operation after this duration for a specific SFTP session it will close this SFTP session The default value is 120 seconds sec 30 600 Enter the SFTP server timeout value here This value must be between 30 and 600 seconds Restriction...

Page 906: ...on This command is used to show the parameters of the SFTP server Format show sftp server Parameters None Restrictions None Example To show the parameters of the SFTP server DGS 3120 24TC admin show sftp server Command show sftp server The SFTP Server Configuration Protocol Version 3 State Enabled Session Idle Timeout 600 sec DGS 3120 24TC admin ...

Page 907: ...sh client_pubkey_owner key_id int 1 8 add remove user username 15 show ssh client_pub_key 94 1 config ssh algorithm Description This command is used to configure SSH service algorithm Format config ssh algorithm 3DES AES128 AES192 AES256 arcfour blowfish cast128 twofish128 twofish192 twofish256 MD5 SHA1 RSA DSA enable disable Parameters 3DES The 3DES cipher is three key triple DES encrypt decrypt ...

Page 908: ...er User level users can issue this command Example To enable SSH server public key algorithm DGS 3120 24TC admin config ssh algorithm DSA enable Command config ssh algorithm DSA enable Success DGS 3120 24TC admin 94 2 show ssh algorithm Description This command is used to show the SSH service algorithm Format show ssh algorithm Parameters None Restrictions None Example To show server algorithm ...

Page 909: ... SHA1 Enabled Public Key Algorithm RSA Enabled DSA Enabled DGS 3120 24TC admin 94 3 config ssh authmode Description This command is used to configure user authentication method for SSH Format config ssh authmode password publickey hostbased enable disable Parameters password Specify user authentication method publickey Specify user authentication method hostbased Specify user authentication method...

Page 910: ...4 4 show ssh authmode Description This command is used to show the user authentication method Format show ssh authmode Parameters None Restrictions None Example To show user authentication method DGS 3120 24TC admin show ssh authmode Command show ssh authmode The SSH Authentication Method Password Enabled Public Key Enabled Host based Enabled DGS 3120 24TC admin 94 5 config ssh user Description Th...

Page 911: ... host domain name and IP address domain_name 32 Specify host name if configuring Host based method ipaddr Specify host IP address if configuring Host based method ipv6addr Specify host IPv6 address if configuring Host based method password Specify user authentication method publickey Specify user authentication method Restrictions Only Administrator level users can issue this command Example To up...

Page 912: ...cify SSH server connection time out in the unit of second sec 30 600 Enter the connection time out value here This value must be between 30 and 600 seconds authfail Optional Specify user maximum fail attempts int 2 20 Enter the user maximum fail attempts value here This value must be between 2 and 20 rekey Optional Specify time to re generate session key There are 10 minutes 30 minutes 60 minutes ...

Page 913: ...Success DGS 3120 24TC admin 94 8 enable ssh Description This command is used to enable SSH server services Format enable ssh Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable SSH server DGS 3120 24TC admin enable ssh Command enable ssh Success DGS 3120 24TC admin 94 9 disable ssh Description This command is used to disable ...

Page 914: ...Power User level users can issue this command Example To disable the SSH server services DGS 3120 24TC admin disable ssh Command disable ssh Success DGS 3120 24TC admin 94 10 show ssh server Description This command is used to show the SSH server general information Format show ssh server Parameters None Restrictions None Example To show SSH server ...

Page 915: ...dary authentication after using SSH public key authentication If this method is specified the login user using SSH public key authentication can execute command directly with the initial privilege level of the login user disable Specify to need a secondary username password authentication after using SSH public key authentication If this method is specified the login user using SSH public key auth...

Page 916: ... absolute path name If path name is not specified it refers to the TFTP server path path_filename 64 Enter the source file path This can be up to 64 characters long Restrictions Only Administrator level users can issue this command Example To download a SSH public key file named id_rsa_keys from TFTP server 169 168 10 100 to the switch DGS 3120 24TC admin download ssh client_pub_key 169 168 10 100...

Page 917: ...ip Once the authorized public keys file each line of the file contains one key is downloaded to the switch each key will be automatically assigned an index which starts from one The administrator can associate the public key with a user account based on the index NOTE Each time the authorized public keys file is downloaded to the switch the previous configuration about the relationship between use...

Page 918: ... command Example This example shows how to associate a public key with the index of 1 to the user account named User1 DGS 3120 24TC admin config ssh client_pubkey_owner key_id 1 add user User1 Command config ssh client_pubkey_owner key_id 1 add user User1 Success DGS 3120 24TC admin 94 15 show ssh client_pub_key Description This command is used to display the client SSH public key Format show ssh ...

Page 919: ...P TA8SR7q0tZcywKcTujES0Ue muoyy tJhTZuI2B2Z4A4ufJ1yCR9NTWrL4mhJNJOspGLssBeHbf6HtGwyInYm5MJBqeoht0RrS8NIa2VWsvQc xQQSoNeS7J5ROvfSpgTdYBsTosJUHzBvNsGy4w1S0 rsa key 20110603 Key ID 2 User Name User1 Key ssh rsa AAAAB3NzaC1yc2EAAAABJQAAAIBJv3BYQ7DeO0mDatPa wG3j 5yhBZw9mY xw1ovskDE6 os7swVj w3wK Tt40GJVdVVF7w195prYA tYcBFy5iJpnwykwwxD09BMVwHhvZs9 U4LaAek2USarYfQU7ZoNof OC3F86EPtsUJ2s98rMAa6DYqRS JyH Ip...

Page 920: ... download the certificate to the device according to the certificate level The user can download the specified certificate to the device which must according to desired key exchange algorithm For RSA key exchange the user must download RSA type certificate and for DHS_DSS is using the DSA certificate for key exchange Format download ssl certificate ipaddr certfilename path_filename 64 keyfilename ...

Page 921: ...ptional Specify the cipher suite combination used for this configuration RSA_with_RC4_128_MD5 Specify to use the RSA key exchange with RC4 128 bit encryption using the MD5 hash RSA_with_3DES_EDE_CBC_SHA Specify to use the RSA key exchange with 3DES EDE CBC encryption using the SHA hash DHE_DSS_with_3DES_EDE_CBC_SHA Specify to use the DHE DSS key exchange with 3DES EDE CBC encryption using the SHA ...

Page 922: ...or this configuration RSA_with_RC4_128_MD5 Specify to use the RSA key exchange with RC4 128 bit encryption using the MD5 hash RSA_with_3DES_EDE_CBC_SHA Specify to use the RSA key exchange with 3DES EDE CBC encryption using the SHA hash DHE_DSS_with_3DES_EDE_CBC_SHA Specify to use the DHE DSS key exchange with 3DES EDE CBC encryption using the SHA hash RSA_EXPORT_with_RC4_40_MD5 Specify to use the ...

Page 923: ...rs can issue this command Example To delete a certificate DGS 3120 24TC admin delete ssl certificate web_ca2 cer Command delete ssl certificate web_ca2 cer Success DGS 3120 24TC admin 95 5 show ssl Description This command is used to display the certificate status User must download specified certificate type according to desired key exchange algorithm The options may be no certificate RSA type or...

Page 924: ...CBC_SHA 0x0013 Enabled RSA_EXPORT_WITH_RC4_40_MD5 0x0003 Enabled DGS 3120 24TC admin To show certificate DGS 3120 24TC admin show ssl certificate Command show ssl certificate DGS 3120 24TC admin 95 6 show ssl cachetimeout Description This command is used to show cahce timeout value which is designed for dlktimer library to remove the session id after expired In order to support the resume session ...

Page 925: ...rver and invoking the dlktimer library to remove this session id by cache timeout value The unit of argument s value is second and it s boundary is between 60 1 minute and 86400 24 hours Default value is 600 seconds Format config ssl cachetimeout value 60 86400 Parameters timeout Specify the SSL cache timeout value attributes value 60 86400 Enter the timeout value here This value must be between 6...

Page 926: ...rtificates to constitute the SSL certificate chain cert_list Specify chain of certifications on the Switch Restrictions Only Administrator level users can issue this command Example To configure SSL chain of certifications DGS 3120 24TC admin config ssl certificate chain web_ca2 cer server crt Command config ssl certificate chain web_ca2 cer server crt Success DGS 3120 24TC admin ...

Page 927: ... mst_ports portlist instance_id value 0 15 internalCost auto value 1 200000000 priority value 0 240 config stp ports portlist externalCost auto value 1 200000000 hellotime value 1 2 migrate yes no edge true false auto p2p true false auto state enable disable restricted_role true false restricted_tcn true false fbpdu enable disable show stp ports portlist config stp priority value 0 61440 instance_...

Page 928: ...or and Power User level users can issue this command Example To disable STP DGS 3120 24TC admin disable stp Command disable stp Success DGS 3120 24TC admin 96 3 config stp Description This command is used to configure the bridge parameters global settings Format config stp maxage value 6 40 maxhops value 6 40 hellotime value 1 2 forwarddelay value 4 30 txholdcount value 1 10 fbpdu enable disable n...

Page 929: ...mbers of BPDU transmitted in a time interval value 1 10 Enter the transmitted BPDU restriction value here This value must be between 1 and 10 fbpdu Optional To decide if the bridge will flood STP BPDU when STP functionality is disabled enable Specify that the bridge will flood STP BPDU when STP functionality is disabled disable Specify that the bridge will not flood STP BPDU when STP functionality...

Page 930: ...logy Change Trap Enabled NNI BPDU Address dot1d DGS 3120 24TC admin 96 5 create stp instance_id Description This command is used to create an MST Instance without mapping the corresponding VLANs Format create stp instance_id value 1 15 Parameters instance_id Specify the MSTP instance ID Instance 0 represents for default instance CIST value 1 15 Enter the MSTP instance ID here This value must be be...

Page 931: ... default instance CIST value 1 15 Enter the MSTP instance ID here This value must be between 1 and 15 add_vlan Specify to map the specified VLAN list to an existing MST instance remove_vlan Specify to delete the specified VLAN list from an existing MST instance vidlist Specify a list of VLANs by VLAN ID Restrictions Only Administrator Operator and Power User level users can issue this command Exam...

Page 932: ...ce DGS 3120 24TC admin delete stp instance_id 2 Command delete stp instance_id 2 Success DGS 3120 24TC admin 96 8 config stp mst_config_id Description This command is used to change the name or the revision level of the MST configuration identification Format config stp mst_config_id revision_level int 0 65535 name string Parameters name Optional Specify the name given for a specific MST region st...

Page 933: ...C admin 96 9 show stp mst_config_id Description This command is used to show the MST configuration identification Format show stp mst_config_id Parameters None Restrictions None Example show STP MST configuration ID DGS 3120 24TC admin show stp mst_config_id Command show stp mst_config_id Current MST Configuration Identification Configuration Name 00 22 22 22 22 00 Revision Level 0 MSTI ID Vid lis...

Page 934: ...ons Only Administrator Operator and Power User level users can issue this command Example To configure STP MST ports DGS 3120 24TC admin config stp mst_ports 1 1 instance_id 0 internalCost auto Command config stp mst_ports 1 1 instance_id 0 internalCost auto Success DGS 3120 24TC admin 96 11 config stp ports Description This command is used to configure all the parameters of ports except for Inter...

Page 935: ...on the port s is enabled disable Specify that STP functionality on the port s is disabled restricted_role Optional To decide if this port not to be selected as Root Port The default value is false true Specify that the port cannot be specified as the root port false Specify that the port can be specified as the root port restricted_tcn Optional To decide if this port not to propagate topology chan...

Page 936: ...ort Index 1 1 Hello Time 2 2 Port STP Enabled External PathCost Auto 200000 Edge Port False No P2P Auto Yes Port RestrictedRole False Port RestrictedTCN False Port Forward BPDU Disabled MSTI Designated Bridge Internal PathCost Prio Status Role 0 8000 000102030400 200000 128 Forwarding Designated 2 N A 200000 128 Forwarding NonStp CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 96 13 ...

Page 937: ...e_id 0 Success DGS 3120 24TC admin 96 14 config stp trap Description This command is used to enable or disable sending STP traps Format config stp trap topo_change disable enable new_root enable disable Parameters topo_change Specify enable or disable sending topology change traps disable Disable sending topology change traps enable Enable sending topology change traps new_root Specify enable or d...

Page 938: ...ower User level users can issue this command Example To configure STP version DGS 3120 24TC admin config stp version mstp Command config stp version mstp Success DGS 3120 24TC admin To config STP version with the same value of old configuration DGS 3120 24TC admin config stp version mstp Command config stp version mstp Configure value is the same with current value Success DGS 3120 24TC admin 96 1...

Page 939: ...dmin show stp instance Command show stp instance STP Instance Settings Instance Type CIST Instance Status Enabled Instance Priority 32768 bridge priority 32768 sys ID ext 0 STP Instance Operational Status Designated Root Bridge 32768 00 22 22 22 22 00 External Root Cost 0 Regional Root Bridge 32768 00 22 22 22 22 00 Internal Root Cost 0 Designated Bridge 32768 00 22 22 22 22 00 Root Port None Max ...

Page 940: ...7 1 enable surveillance_vlan Description This command is used to enable surveillance VLAN globally To enable the surveillance VLAN a name must be assigned to the sureveillance VLAN and there must be an existing static 802 1Q VLAN To change the surveillance VLAN ID the surveillance VLAN function has to be disabled and then re issue the enable command Format enable surveillance_vlan vlan_name 32 vla...

Page 941: ...ommand disable surveillance_vlan Success DGS 3120 24TC admin 97 3 config surveillance_vlan priority Description This command is used to configure the surveillance VLAN priority which is associated with the surveillance VLAN traffic to distinguish the QoS of the surveillance traffic from the data traffic Format config surveillance_vlan priority int 0 7 Parameters int 0 7 Enter the priority of the s...

Page 942: ...fined OUI MAC address macmask The user defined OUI MAC address mask component_type Optional Specify the surveillance components that could be auto detected by surveillance VLAN vms Specify the Video Manage Server VMS to be auto detected by surveillance VLAN vms_client Specify the VMS client to be auto detected by surveillance VLAN video_encoder Specify the video encoder to be auto detected by surv...

Page 943: ...state on ports 4 6 of unit 1 DGS 3120 24TC admin config surveillance_vlan ports 1 4 1 6 state enable Command config surveillance_vlan ports 1 4 1 6 state enable Success DGS 3120 24TC admin 97 6 config surveillance_vlan aging_time Description This command is used to set the aging time of the surveillance VLAN The aging time is used to remove a port from the surveillance VLAN if the port is an autom...

Page 944: ... used to configure the log state of the surveillance VLAN Format config surveillance_vlan log state enable disable Parameters enable Specify to enable the log state of the surveillance VLAN disable Specify to disable the log state of the surveillance VLAN Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the log state of the surveillance V...

Page 945: ...isplayed device Optional The Surveillance devices that are learned through their OUI ports Optional Specify a range of ports to be displayed portlist Enter a range of ports to be displayed Restrictions None Example To display the surveillance VLAN global information when surveillance VLAN is enabled GS 3120 24TC admin show surveillance_vlan Command show surveillance_vlan Surveillance VLAN State En...

Page 946: ... sflow flow_sampler show sflow counter_poller show sflow analyzer_server 98 1 create sflow flow_sampler Description This command is used to create the sFlow flow sampler By configuring the sampling function for a port a sample packet received by this port will be encapsulated and forwarded to analyzer server at the specified interval Format create sflow flow_sampler ports portlist all analyzer_ser...

Page 947: ...ate a new one Format config sflow flow_sampler ports portlist all rate value 0 65535 maxheadersize value 18 256 Parameters ports Specify the list of ports to be configured portlist Enter the list of ports that will be used for this configuration here all Specify all ports on the Switch rate Optional The sampling rate for packet Rx sampling The configured rate value multiplied by x is the actual ra...

Page 948: ...t of ports to be configured portlist Enter the list of ports that will be used for this configuration here all Specify all ports on the Switch Restrictions Only Administrator and Operator level users can issue this command Example Delete the sFlow sampler port 1 DGS 3120 24TC admin delete sflow flow_sampler ports 1 1 Command delete sflow flow_sampler ports 1 1 Success DGS 3120 24TC admin 98 4 crea...

Page 949: ...s command Example Create sFlow counter poller which sample port 1 to analyzer server 1 DGS 3120 24TC admin create sflow counter_poller ports 1 1 analyzer_server_id 1 Command create sflow counter_poller ports 1 1 analyzer_server_id 1 Success DGS 3120 24TC admin 98 5 config sflow counter_poller Description This command is used to configure the sFlow counter poller parameters If the user wants the ch...

Page 950: ...ports Specify the list of ports to delete the counter poller portlist Enter the list of ports that will be used for this configuration here all Specify all ports on the Switch Restrictions Only Administrator and Operator level users can issue this command Example Delete sFlow counter poller on port 1 DGS 3120 24TC admin delete sflow counter_poller ports 1 1 Command delete sflow counter_poller port...

Page 951: ...ss is 0 and the entry is not active ipaddr Enter the IP address used for the configuration here collectorport Optional The destination UDP port for sending the sFlow datagram If not specified the default value is 6364 The specified UDP port number can NOT conflict with other applications udp_port_number 1 65535 Enter the destination UDP port number here This value must be between 1 and 65535 maxda...

Page 952: ... packets will not be sent to this server ipaddr Enter the IP address used for the configuration here collectorport Optional The destination UDP port for sending the sFlow datagram If not specified the default value is 6364 udp_port_number 1 65535 Enter the destination port number here This value must be between 1 and 65535 maxdatagramsize Optional The maximum number of data bytes that can be packe...

Page 953: ... can issue this command Example To delete an analyzer server DGS 3120 24TC admin delete sflow analyzer_server 1 Command delete sflow analyzer_server 1 Success DGS 3120 24TC admin 98 10 enable sflow Description This command is used to enable the sFlow function on the Switch Format enable sflow Parameters None Restrictions Only Administrator and Operator level users can issue this command Example En...

Page 954: ...tions Only Administrator and Operator level users can issue this command Example Disable the sFlow globally DGS 3120 24TC admin disable sflow Command disable sflow Success DGS 3120 24TC admin 98 12 show sflow Description This command is used to show the sFlow information sFlow Address The IPv4 address associated with this agent sFlow State The current state of the sFlow agent Format show sflow Par...

Page 955: ...e displayed rate value There are two types of rates The Configured Rate is configured by the user In order to limit the number of packets sent to the CPU when the rate of traffic to the CPU is high the sampling rate will be decreased This is specified as the active rate Format show sflow flow_sampler Parameters None Restrictions None Example To show the sFlow flow sampler information of ports whic...

Page 956: ...formation of ports which have been created DGS 3120 24TC admin show sflow counter_poller Command show sflow counter_poller Port Analyzer Server ID Polling Interval sec 1 1 1 Disable Total Entries 1 DGS 3120 24TC admin 98 15 show sflow analyzer_server Description This command is used to show the sFlow analyzer server information The Timeout field specifies the time configured by user The Current Co...

Page 957: ... analyzer_server Command show sflow analyzer_server sFlow Analyzer_server Information Server ID 1 Owner sflow Timeout 400 Current Countdown Time 400 Collector Address 10 90 90 90 Collector Port 6343 Max Datagram Size 1400 Server ID 2 Owner monitor Timeout Infinite Current Countdown Time Infinite Collector Address 10 0 0 1 Collector Port 65524 Max Datagram Size 300 Total Entries 2 DGS 3120 24TC adm...

Page 958: ...el to dump the device overall operation information The output includes the following information Basic System information System log Running configuration Layer 1 information Layer 2 information Layer 3 information Application OS status Controller s status This command can be interrupted by Ctrl C or ESC when it is executing Format show tech_support Parameters None Restrictions Only Administrator...

Page 959: ...d 3 00 501 Firmware Version Build 4 00 015 Hardware Version B1 Serial number PVT93CB000002 MAC Address 10 BF 48 D0 E0 E0 MAC Address Number 65535 STACKING 2013 11 30 09 38 25 Topology Information Stable Topology My Box ID 1 Role Master Box Cnt 1 Topology Type Duplex Chain Unit Prio Device Runtime Stacking ID rity Role MAC Type option version version 1 32 32 Master 10 BF 48 D0 E0 E0 DGS 3120 24TC 0...

Page 960: ...rupted by Ctrl C or ESC when it is executing Format upload tech_support_toTFTP ipaddr path_filename 64 Parameters ipaddr Specify the IP address of TFTP server path_filename 64 Specify the file name to store the information of technique s support in TFTP server The max size of the file name is 64 Restrictions Only Administrator and Operator level users can issue this command Example To upload the i...

Page 961: ...4 add mail_receiver mail_addr 254 delete mail_receiver index 1 8 1 show smtp smtp send_testmsg 100 1 enable smtp Description This command is used to enable the SMTP status Format enable smtp Parameters None Restrictions Only Administrator level users can issue this command Example To enable SMTP status DGS 3120 24TC admin enable smtp Command enable smtp Success DGS 3120 24TC admin 100 2 disable sm...

Page 962: ...eceiver mail_addr 254 delete mail_receiver index 1 8 1 Parameters server Specify the SMTP server IP address ipaddr Enter the SMTP server IP address server_port Specify the SMTP server port port_number 1 65535 Enter the port number between 1 and 65535 self_mail_addr Specify the sender s mail address mail_addr 254 Enter the mail address with maximum of 254 characters add mail_receiver Specify to add...

Page 963: ...onfigure a mail source address DGS 3120 24TC admin config smtp self_mail_addr mail dlink com Command config smtp self_mail_addr mail dlink com Success DGS 3120 24TC admin To add a mail destination address DGS 3120 24TC admin config smtp add mail_receiver receiver dlink com Command config smtp add mail_receiver receiver dlink com Success DGS 3120 24TC admin To delete a mail destination address DGS ...

Page 964: ...on DGS 3120 24TC admin show smtp Command show smtp SMTP Status Disabled SMTP Server Address 172 18 208 9 SMTP Server Port 25 Self Mail Address mail dlink com Index Mail Receiver Address 1 receiver dlink com 2 3 4 5 6 7 8 DGS 3120 24TC admin 100 5 smtp send_testmsg Description This command is used to test whether the SMTP server can be reached Format smtp send_testmsg Parameters None ...

Page 965: ...0 Restrictions Only Administrator level users can issue this command Example To test whether the SMTP server can be reached DGS 3120 24TC admin smtp send_testmsg Command smtp send_testmsg Subject e mail heading Content e mail content Sending mail please wait Success DGS 3120 24TC admin ...

Page 966: ...ups create snmp view view_name 32 oid view_type included excluded delete snmp view view_name 32 all oid show snmp view view_name 32 enable snmp disable snmp create snmp host ipaddr v6host ipv6addr v1 v2c v3 noauth_nopriv auth_nopriv auth_priv auth_string 32 delete snmp host ipaddr v6host ipv6addr show snmp show snmp host ipaddr show snmp v6host ipv6addr config snmp engineID snmp_engineID 10 64 sho...

Page 967: ... view view_name 32 read_only read_write Parameters community An alphanumeric string of up to 32 characters used to authentication of users wanting access to the Switch s SNMP agent community_string Enter the community string value here view_name Specify to view a MIB name view_name 32 Enter the MIB view name here This name can be up to 32 characters long readonly Allows the user using the above co...

Page 968: ...Bs on the Switch read_write Specify that SNMP community members using the community string created can read from and write to the contents of the MIBs on the Switch Restrictions Only Administrator level users can issue this command Example To create a secure SNMP community string DGS 3120 24TC admin create snmp community_masking view restricted read_only Command create snmp community_masking view ...

Page 969: ...n This command is used to display the community string configurations Format show snmp community community_string 32 Parameters community_string 32 Optional Specify the Community string If not specify community string all community string information will be displayed Restrictions None Example To display SNMP community DGS 3120 24TC admin show snmp community Command show snmp community SNMP Commun...

Page 970: ...tication level auth_password 8 20 Enter the SHA authentication password here This value must be between 8 and 20 characters priv Optional A privacy key used by DES it is hex string type none Specify that no encryption will be used for the privacy key des Specify that the DES encryption will be used for the privacy key priv_password 8 16 Enter the DES password value here This value must be between ...

Page 971: ...d to remove a user from an SNMP group and delete the associated group in SNMP group Format delete snmp user username 32 Parameters username 32 The name of the user on the host that connects to the agent The range is 1 to 32 Restrictions Only Administrator level users can issue this command Example To delete a SNMP user user123 DGS 3120 24TC admin delete snmp user user123 Command delete snmp user u...

Page 972: ...ame of the group groupname 32 Enter the group name here This name can be up to 32 characters long v1 The least secure of the possible security models v2c The second least secure of the possible security models v3 The most secure of the possible noauth_nopriv Neither support packet authentication nor encrypting auth_nopriv Support packet authentication auth_priv Support packet authentication and en...

Page 973: ...d create snmp group group123 v3 auth_priv read_view CommunityView write_view CommunityView notify_view CommunityView Success DGS 3120 24TC admin 101 9 delete snmp group Description This command is used to remove a SNMP group Format delete snmp group groupname 32 Parameters groupname 32 The name of the group will be deleted Restrictions Only Administrator level users can issue this command Example ...

Page 974: ...eference Guide 969 101 10 show snmp groups Description This command is used to display the names of groups on the Switch and the security model level the status of the different views Format show snmp groups Parameters None Restrictions None Example To show SNMP groups ...

Page 975: ...p Name initial ReadView Name restricted WriteView Name Notify View Name restricted Securiy Model SNMPv3 Securiy Level NoAuthNoPriv Group Name WriteGroup ReadView Name CommunityView WriteView Name CommunityView Notify View Name CommunityView Securiy Model SNMPv2 Securiy Level NoAuthNoPriv Total Entries 10 DGS 3120 24TC admin 101 11 create snmp view Description This command is used to assign views t...

Page 976: ...and create snmp view view123 1 3 6 view_type included Success DGS 3120 24TC admin 101 12 delete snmp view Description This command is used to remove a view record Format delete snmp view view_name 32 all oid Parameters view View name to be deleted view_name 32 Enter the view name here The name can be up to 32 characters long all Specify that all view records will be removed oid Object Identified t...

Page 977: ...ample To show SNMP view DGS 3120 24TC admin show snmp view Command show snmp view Vacm View Table Settings View Name Subtree View Type view123 1 3 6 Included restricted 1 3 6 1 2 1 1 Included restricted 1 3 6 1 2 1 11 Included restricted 1 3 6 1 6 3 10 2 1 Included restricted 1 3 6 1 6 3 11 2 1 Included restricted 1 3 6 1 6 3 15 1 1 Included CommunityView 1 Included CommunityView 1 3 6 1 6 3 Exclu...

Page 978: ...enable SNMP DGS 3120 24TC admin enable snmp Command enable snmp Success DGS 3120 24TC admin 101 15 disable snmp Description This command is used to disable the SNMP function Format disable snmp Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable SNMP DGS 3120 24TC admin disable snmp Command disable snmp Success DGS 3120 24TC admin ...

Page 979: ...y models v3 The most secure of the possible noauth_nopriv Neither support packet authentication nor encrypting auth_nopriv Support packet authentication auth_priv Support packet authentication and encrypting auth_string 32 Authentication string If the v1 or v2 is specified the auth_string presents the community string and it must be one of the entries in community table If the v3 is specified the ...

Page 980: ...ipient for which the traps are targeted ipv6addr Enter the IPv6 address used for the configuration here Restrictions Only Administrator level users can issue this command Example To delete SNMP host 10 0 0 1 DGS 3120 24TC admin delete snmp host 10 0 0 1 Command delete snmp host 10 0 0 1 Success DGS 3120 24TC admin 101 18 show snmp Description This command is used to display SNMP status Format show...

Page 981: ...paddr Parameters host Optional The IP address of the recipient for which the traps are targeted ipaddr Enter the IP address used for the configuration here If no parameter specified all SNMP hosts will be displayed Restrictions None Example To show SNMP host DGS 3120 24TC admin show snmp host Command show snmp host SNMP Host Table Host IP Address SNMP Version Community Name SNMPv3 User Name 10 90 ...

Page 982: ...s will be displayed Restrictions None Example To show SNMP host DGS 3120 24TC admin show snmp v6host Command show snmp v6host SNMP Host Table Host IPv6 Address 3FFE 3 SNMP Version V3 na np Community Name SNMPv3 User Name initial Host IPv6 Address 3FFE 2 SNMP Version V2c Community Name SNMPv3 User Name private Host IPv6 Address 3FFE 1 SNMP Version V1 Community Name SNMPv3 User Name public Host IPv6...

Page 983: ...el users can issue this command Example To configure SNMP engine ID to 1023457890 DGS 3120 24TC admin config snmp engineID 1023457890 Command config snmp engineID 1023457890 Success DGS 3120 24TC admin 101 22 show snmp engineID Description The show snmp engineID command displays the identification of the SNMP engine on the Switch The default value is suggested in RFC2271 The very first bit is 1 an...

Page 984: ...ame sw_name Parameters system_name A maximum of 128 characters is allowed And NULL string is accepted sw_name Optional Enter the system name used here Restrictions Only Administrator and Operator level users can issue this command Example To configure the Switch name for DGS XXXXS Stackable Switch DGS 3120 24TC admin config snmp system_name DGS XXXXS Stackable Switch Command config snmp system_nam...

Page 985: ...config snmp system_location HQ 5F Success DGS 3120 24TC admin 101 25 config snmp system_contact Description This command is used to enter the name of a contact person who is responsible for the Switch Format config snmp system_contact sw_contact Parameters system_contact A maximum of 128 characters is allowed And NULL string is accepted sw_contact Optional Enter the system contact string here Rest...

Page 986: ...rator level users can issue this command Example To enable SNMP trap support DGS 3120 24TC admin enable snmp traps Command enable snmp traps Success DGS 3120 24TC admin 101 27 disable snmp traps Description This command is used to disable SNMP trap support on the Switch Format disable snmp traps Parameters None Restrictions Only Administrator and Operator level users can issue this command Example...

Page 987: ...rap support Format enable snmp authenticate_traps Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable SNMP authentication trap support DGS 3120 24TC admin enable snmp authenticate_traps Command enable snmp authenticate_traps Success DGS 3120 24TC admin 101 29 disable snmp authenticate_traps Description This command is used to disable SN...

Page 988: ...ble snmp linkchange_traps Description This command is used to configure the sending of linkchange traps Format enable snmp linkchange_traps Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable the sending of linkchange traps DGS 3120 24TC admin enable snmp linkchange_traps Command enable snmp linkchange_traps Success DGS 3120 24TC admin ...

Page 989: ...gure the sending of linkchange traps and per port control for sending of change trap Format config snmp linkchange_traps ports all portlist enable disable Parameters all To specify all ports portlist To specify a port range enable Enable sending of the link change trap for this port disable Disable sending of the link change trap for this port Restrictions Only Administrator and Operator level use...

Page 990: ...Only Administrator level users can issue this command Example To configure the trap for coldstart event DGS 3120 24TC admin config snmp coldstart_traps enable Command config snmp coldstart_traps enable Success DGS 3120 24TC admin 101 34 config snmp warmstart_traps Description This command is used to configure the trap state for warmstart event Format config snmp warmstart_traps enable disable Para...

Page 991: ...ow snmp traps linkchange_traps ports portlist Parameters linkchange_traps Optional Specify that the SNMP trap sending status will be displayed ports Optional Specify the ports for the display portlist Enter the list of ports used for the display here Restrictions None Example DGS 3120 24TC admin show snmp traps Command show snmp traps SNMP Traps Enabled Authenticate Traps Enabled Linkchange Traps ...

Page 992: ...alling alarm The default state is enabled enable Specify that the falling alarm function will be enabled disable Specify that the falling alarm function will be disabled Restrictions Only Administrator level users can issue this command Example To configure the trap state for RMON events DGS 3120 24TC admin config rmon trap rising_alarm disable Command config rmon trap rising_alarm disable Success...

Page 993: ...tion state on SNMP community string Format enable community_encryption Parameters None Restrictions Only Administrator level users can issue this command Example To enable the encryption state on SNMP community string DGS 3120 24TC admin enable community_encryption Command enable community_encryption Success DGS 3120 24TC admin 101 39 disable community_encryption Description This command is used t...

Page 994: ...tion Command disable community_encryption Success DGS 3120 24TC admin 101 40 show community_encryption Description This command is used to display the encryption state on SNMP community string Format show community_encryption Parameters None Restrictions None Example To display the encryption state on SNMP community string DGS 3120 24TC admin show community_encryption Command show community_encryp...

Page 995: ...roupname 64 candidate dp_interval sec 30 90 hold_time sec 100 255 download sim_ms firmware_from_tftp configuration_from_tftp ipaddr path_filename members mslist 1 32 all upload sim_ms configuration_to_tftp log_to_tftp ipaddr path_filename members mslist all 102 1 enable sim Description This command is used to configure the single IP management on the Switch as enabled Format enable sim Parameters ...

Page 996: ...splay the current information of the specific sort of devices Format show sim candidates candidate_id 1 100 members member_id 1 32 group commander_mac macaddr neighbor Parameters candidates Optional Specify the candidate devices candidate_id 1 100 Optional Enter the candidate device ID here This value must be between 1 and 100 members Optional Specify the member devices member_id 1 32 Optional Ent...

Page 997: ... Interval 30 sec Hold Time 100 sec DGS 3120 24TC admin To show the candidate information in summary if user specify candidate id it would show information in detail DGS 3120 24TC admin show sim candidate Command show sim candidates ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 Product Code L2 Switch 40 1 00 B01 Device Name 01 2 00 55 55 00 55 00 Prod...

Page 998: ...tion in summary if user specify group name it will show information in detail DGS 3120 24TC admin show sim group Command show sim group SIM Group Name default ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 01 DES XXXXS L2 Switch 40 1 00 B01 aaaaaaaaaaaaaaaa bbbbbbbbbbbbbbb 2 00 55 55 02 55 00 SIM Group Name SIM2 ID MAC Address Platform Hold Firmware Devi...

Page 999: ... command is used to re telnet to member Format reconfig member_id value 1 32 exit Parameters member_id Specify the serial number of the member value 1 32 Enter the serial number of the member here exit Specify to exit from the telnet session Restrictions Only Administrator Operator and Power User level users can issue this command Example To re telnet to member DGS 3120 24TC admin reconfig member_...

Page 1000: ...r the member ID of the member to be removed from the group here This value must be between 1 and 32 Restrictions Only Administrator Operator and Power User level users can issue this command Example To add a member DGS 3120 24TC admin config sim_group add 2 Command config sim_group add 2 Please wait for ACK SIM Configure Success Success DGS 3120 24TC admin To delete a member DGS 3120 24TC admin co...

Page 1001: ...ry time here in seconds This value must be between 30 and 90 seconds hold_time The time in seconds the device holds the discovery result sec 100 255 Enter the hold time here in seconds This value must be between 100 and 255 Restrictions Only Administrator Operator and Power User level users can issue this command Example To transfer to commander DGS 3120 24TC admin config sim commander Command con...

Page 1002: ...ftp ipaddr path_filename members mslist 1 32 all Parameters firmware_from_tftp Specify that the firmware will be downloaded from the TFTP server configuration_from_tftp Specify that the configuration will be downloaded from the TFTP server ipaddr Specify the IP address of the TFTP server path_filename Specify the file path of the firmware or configuration in the TFTP server members Optional Specif...

Page 1003: ...This device is updating firmware Please wait several minutes Download Status ID MAC Address Result 1 00 01 02 03 04 00 Success DGS 3120 24TC admin 102 8 upload sim_ms Description This command is used to upload configuration to TFTP server Format upload sim_ms configuration_to_tftp log_to_tftp ipaddr path_filename members mslist all Parameters configuration_to_tftp Specify that the configuration wi...

Page 1004: ... This device is uploading configuration Please wait several minutes Upload Status ID MAC Address Result 1 00 1A 2D 00 12 12 Success DGS 3120 24TC admin 102 9 config sim trap Description This command is used to control sending of traps issued from the member switch Format config sim trap enable disable Parameters enable Enable the trap state disable Disable the trap state Restrictions Only Administ...

Page 1005: ...his command is used to configure the priority of switch which will determines which box becomes master A lower number means a higher priority The new priority will take effect after the Switch was rebooted or when the topology changed Format config box_priority current_box_id value 1 6 priority value 1 63 Parameters current_box_id Specify the Switch being configured The range is 1 m where the m is...

Page 1006: ...er range is 1 m where the m is determined by device type For example to the DGS3120 Series it is 6 value 1 6 Enter the current box ID here This value must be between 1 and 6 new_box_id Specify the new ID assigned to the box The parameter range is 1 m auto Allows the box ID to be assigned automatically by the stack system The new box ID will take effect after the next boot value 1 6 Enter the new b...

Page 1007: ...action after the timer reaches 0 If topology change is detected again before the count down timer reaches 0 the count down timer will be reset It is suggested for the user not to do any command regarding read write of flash for example download firmware save show config in flash upload copy show slave s dangerous log Message 3 Stack Topology Status Configuring the new device When this message is s...

Page 1008: ...g State Enabled Box User Prio Prom Runtime H W ID Set Type Exist rity MAC version version version 1 Auto DGS 3120 24TC Exist 1 00 01 02 03 04 00 3 00 501 4 00 015 B1 2 NOT_EXIST No 3 NOT_EXIST No 4 NOT_EXIST No 5 NOT_EXIST No 6 NOT_EXIST No DGS 3120 24TC admin 103 4 show stack_device Description This command is used to display the information for devices in the stack Format show stack_device Param...

Page 1009: ...nged under standalone mode only Format config stacking_mode disable enable Parameters stacking_mode Enable or disable the Switch s stacking capability enable Specify that the Switch s stacking capabilty will be enabled disable Specify that the Switch s stacking capabilty will be disabled Restrictions Only Administrator level users can issue this command Example To enable stacking mode DGS 3120 24T...

Page 1010: ...t still uses old priority setting and MAC to compare device priority After stacking is stable master s priority will become zero If stacking topology change again Master will use priority zero and MAC address to determine who new primary master is Format config stacking force_master_role state enable disable Parameters force_master_role Enable or disable the Switch s Stacking Force Master Role sta...

Page 1011: ...arameters enable Enable the Switch s stacking trap disable Disable the Switch s stacking trap Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the stacking trap state DGS 3120 24TC admin config stacking trap state enable Command config stacking trap state enable Success DGS 3120 24TC admin 103 9 config stacking log state Description This ...

Page 1012: ...erence Guide 1007 Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the stacking log state DGS 3120 24TC admin config stacking log state enable Command config stacking log state enable Success DGS 3120 24TC admin ...

Page 1013: ...heck by IP multicast route protocol rpf_address Specify the RPF address of the static multicast route entry that is created on the Switch If the source IP address of the received IP multicast packet matches the network of a static multicast route entry the RPF address of the static multicast route entry will be used to check whether the IP multicast packet is received from legal upstream interface...

Page 1014: ...ute entries Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a static multicast route entry DGS 3120 24TC admin delete ipmroute 11 0 0 0 8 Command delete ipmroute 11 0 0 0 8 Success DGS 3120 24TC admin 104 3 show ipmroute Description This command is used to display static multicast route entries on the Switch Format show ipmroute network_...

Page 1015: ...ies Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 1010 DGS 3120 24TC admin show ipmroute Command show ipmroute Index Source IP Address RPF IP Address 1 11 0 0 0 8 20 1 1 1 Total Entries 1 DGS 3120 24TC admin ...

Page 1016: ...y specify this parameter the least IPv4 address and the smallest IPv6 address of ipif_name will be used as source IP addresses ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long ipaddr Optional Enter the IP address used for the configuration here ipv6addr Optional Enter the IPv6 address used for the configuration here none Specify to clear the configured source...

Page 1017: ...og source IP interface Format show syslog source_ipif Parameters None Restrictions None Example Show syslog source IP interface DGS 3120 24TC admin show syslog source_ipif Command show syslog source_ipif Syslog Source IP Interface Configuration IP Interface ipif3 IPv4 Address 14 0 0 5 IPv6 Address None DGS 3120 24TC admin 105 3 config trap source_ipif Description This command is used to configure ...

Page 1018: ...ress used for the configuration here none Specify to clear the configured source IP interface Restrictions Only Administrator and Operator level users can issue this command Example Configure trap source IP interface DGS 3120 24TC admin config trap source_ipif System Command config trap source_ipif System Success DGS 3120 24TC admin To clear the configured trap source IP interface DGS 3120 24TC ad...

Page 1019: ...it Ethernet Switch CLI Reference Guide 1014 Example Show trap source IP interface DGS 3120 24TC admin show trap source_ip Command show trap source_ip Trap Source IP Interface Configuration IP Interface System IPv4 Address None DGS 3120 24TC admin ...

Page 1020: ...dp_port_number state enable disable config syslog host index 1 4 all severity emergency alert critical error warning notice informational debug level 0 7 facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr ipv6addr state enable disable 1 delete syslog host index 1 4 all show syslog host index 1 4 config log_save_timing time_interval min 1 6553...

Page 1021: ...ule can be obtained by using the show log_support_module command Use a comma to separate multiple modules module_list Enter the module list value here emergency Optional Severity level 0 alert Optional Severity level 1 critical Optional Severity level 2 error Optional Severity level 3 warning Optional Severity level 4 notice Optional Severity level 5 informational Optional Severity level 6 debug O...

Page 1022: ..._software_module Description This command is used to display the protocols or applications that support the enhanced log The enhanced log adds the module name and module ID Network administrators can display logs by module name or module ID Format show log_software_module Parameters None Restrictions None Example To display the protocols or applications that support the enhanced log DGS 3120 24TC ...

Page 1023: ...g messages DGS 3120 24TC admin enable syslog Command enable syslog Success DGS 3120 24TC admin 106 5 disable syslog Description This command is used to disable the sending of syslog messages Format disable syslog Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable the sending of syslog messages DGS 3120 24TC admin disable syslog Comman...

Page 1024: ...s of messages to a specific host When the user chooses a specific level for a specific host messages which are at that severity level or higher will be reported to that host Format create syslog host index 1 4 ipaddress ipaddr ipv6addr severity emergency alert critical error warning notice informational debug level 0 7 facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_p...

Page 1025: ...lity will be set to local 4 local5 Specify that the user defined facility will be set to local 5 local6 Specify that the user defined facility will be set to local 6 local7 Specify that the user defined facility will be set to local 7 udp_port Optional Specify the UDP port number udp_port_number Enter the UDP port number used here state Optional The syslog protocol is used for the transmission of ...

Page 1026: ... the syslog packet when it is sent to a specific syslog server local0 Specify that the user defined facility will be set to local 0 local1 Specify that the user defined facility will be set to local 1 local2 Specify that the user defined facility will be set to local 2 local3 Specify that the user defined facility will be set to local 3 local4 Specify that the user defined facility will be set to ...

Page 1027: ... Parameters host The host index or all hosts index Enter the host index value here all Specify that all the host indexes will be used Restrictions Only Administrator and Operator level users can issue this command Example To delete the specific syslog host DGS 3120 24TC admin delete syslog host 4 Command delete syslog host 4 Success DGS 3120 24TC admin 106 10 show syslog host Description This comm...

Page 1028: ... This command is used to set the method for saving the log Format config log_save_timing time_interval min 1 65535 on_demand log_trigger Parameters time_interval Save log to flash every xxx minutes If no new log events occur in this period don t save min 1 65535 Enter the time interval value here This value must be between 1 and 65535 minutes on_demand Save log to flash whenever the user enters th...

Page 1029: ..._timing Command show log_save_timing Saving Log Method On_demand DGS 3120 24TC admin 106 13 show attack_log Description This command is used to display the attack log messages The attack log message refers to log messages driven by modules such as DOS and the IP MAC port binding module This type of log message may generate a large amount of messages and quickly cause the system to run out of syste...

Page 1030: ...og will be displayed Restrictions None Example To show dangerous messages on the master DGS 3120 24TC admin show attack_log index 1 Command show attack_log index 1 Index Date Time Level Log Text 1 2008 10 17 15 00 14 CRIT 2 Possible spoofing attack from IP MAC 0A 00 00 5A 00 01 port 1 3 DGS 3120 24TC admin 106 14 clear attack_log Description This command is used to clear the attack log Format clea...

Page 1031: ...xStack DGS 3120 Series Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 1026 DGS 3120 24TC admin clear attack_log Command clear attack_log Success DGS 3120 24TC admin ...

Page 1032: ...al error warning notice information debug level 0 7 Parameters trap Specify the severity level control for traps log Specify the severity level control for the log all Specify the severity level control for traps and the log emergency Severity level 0 alert Severity level 1 critical Severity level 2 error Severity level 3 warning Severity level 4 notice Severity level 5 information Severity level ...

Page 1033: ...ommand is used to display the severity level controls for the system Format show system_severity Parameters None Restrictions None Example To show severity level control for system DGS 3120 24TC admin show system_severity Command show system_severity System Severity Trap warning 4 System Severity Log information 6 DGS 3120 24TC admin ...

Page 1034: ...in_name 255 ipv6addr tcp_port value 1 65535 Parameters ipaddr The IP address of the Telnet server domain_name 255 Enter the domain name of the Telnet server ipv6addr The IPv6 address of the Telnet server tcp_port Optional Specify the telnet server port number to be connected If not specified the default port is 23 value 1 65535 Enter the TCP port number used here This value must be between 1 and 6...

Page 1035: ...id all dest_file pathname boot_up cfg_fromTFTP ipaddr ipv6addr domain_name 255 src_file path_filename 64 unit unit_id all increment dest_file pathname Parameters firmware_fromTFTP Specify to download firmware from a TFTP server ipaddr The IP address of the TFTP server ipv6addr The IPv6 address of the TFTP server domain_name 255 Enter the domain name of the TFTP server src_file Optional Used to ide...

Page 1036: ...boot_up configuration file Restrictions Only Administrator level users can issue this command Example To download firmware from TFTP DGS 3120 24TC admin download firmware_fromTFTP 10 54 71 1 src_file px had Command download firmware_fromTFTP 10 54 71 1 src_file px had Connecting to server Done Download firmware Done Do not power off Please wait programming flash Done DGS 3120 24TC admin To downloa...

Page 1037: ... to 80 characters long filter_string 80 Optional A filter string is enclosed by symbol Thus the filter string itself cannot contain the character The filter string is case sensitive This string can be up to 80 characters long include Optional Specify to include lines that contain the specified filter string exclude Optional Specify to exclude lines that contain the specified filter string begin Op...

Page 1038: ...e must be between 1 and 6 firmware_toTFTP Specify that the firmware file will be uploaded to the TFTP server ipaddr The IP address of the TFTP server ipv6addr The IPv6 address of the TFTP server domain_name 255 Enter the domain name of the TFTP server dest_file Used to identify the parameter path_filename path_filename 64 The pathname specifies the pathname on the TFTP server It can be a relative ...

Page 1039: ...fg Command upload cfg_toTFTP 10 90 90 99 dest_file 111 cfg unit 1 src_file c config cfg Connecting to server Done Upload configuration Done DGS 3120 24TC admin In case that the designated file does not exist DGS 3120 24TC admin upload cfg_toTFTP 10 90 90 99 dest_file 111 cfg unit 1 src_file c config2 cfg Command upload cfg_toTFTP 10 90 90 99 dest_file 111 cfg unit 1 src_file c config2 cfg No such ...

Page 1040: ...l s_date start_date 1 31 s_mth start_mth 1 12 s_time start_time hh mm e_date end_date 1 31 e_mth end_mth 1 12 e_time end_time hh mm offset 30 60 90 120 show time 110 1 config sntp Description This command is used to change SNTP configurations Format config sntp primary ipaddr secondary ipaddr poll interval int 30 99999 Parameters primary Optional SNTP primary server IP address ipaddr Enter the IP ...

Page 1041: ...r s time first Format cconfig sntp ipv6server primary ipv6addr secondary ipv6addr 1 Parameters primary Optional SNTP primary server IPv6 address ipaddr Enter the IP address used for this configuration here secondary Optional SNTP secondary server IPv6 address ipaddr Enter the IP address used for this configuration here Restrictions Only Administrator Operator and Power User level users can issue t...

Page 1042: ...stem Clock SNTP Status Disabled IPv4 Primary SNTP Server None IPv4 Secondary SNTP Server None IPv6 Primary SNTP Server None IPv6 Secondary SNTP Server None SNTP Poll Interval 720 sec DGS 3120 24TC admin 110 4 enable sntp Description This command is used to turn on SNTP support Format enable sntp Parameters None Restrictions Only Administrator and Operator level users can issue this command Example...

Page 1043: ... Administrator and Operator level users can issue this command Example To disable SNTP DGS 3120 24TC admin disable sntp Command disable sntp Success DGS 3120 24TC admin 110 6 config time Description This command is used to configure time and date settings of the device Format config time date ddmthyyyy time hh mm ss Parameters date ddmthyyyy Specify the system clock date An example would look like...

Page 1044: ...minute 0 59 Parameters operator Optional Specify the operator of time zone Specify that time should be added or subtracted to or from the GMT hour Optional Specify the hour of time zone gmt_hour 0 13 Enter the hour value of the time zone here This value must be between 0 and 13 min Optional Specify the minute of time zone minute 0 59 Enter the minute value of the time zone here This value must be ...

Page 1045: ... month number of Daylight Saving Time start_mth 1 12 Enter the starting month number of Daylight Saving Time here This value must be between 1 and 12 end_mth 1 12 Enter the ending month number of Daylight Saving Time here This value must be between 1 and 12 s_time e_time Optional Configure the start end time of Daylight Saving Time start_time hh mm Enter the starting time of Daylight Saving Time h...

Page 1046: ... minutes 60 Specify that the offset range will 60 minutes 90 Specify that the offset range will 90 minutes 120 Specify that the offset range will 120 minutes Restrictions Only Administrator and Operator level users can issue this command Example To configure time DGS 3120 24TC admin config dst repeating s_week 2 s_day tue s_mth 4 s_time 15 00 e_week 2 e_day wed e_mth 10 e_time 15 30 offset 30 Comm...

Page 1047: ...show time Command show time Current Time Source System Clock Boot Time 9 May 2011 06 20 55 Current Time 9 May 2011 07 46 10 Time Zone GMT 00 00 Daylight Saving Time Disabled Offset In Minutes 60 Repeating From Apr 1st Sun 00 00 To Oct last Sun 00 00 Annual From 29 Apr 00 00 To 12 Oct 00 00 DGS 3120 24TC admin ...

Page 1048: ...er of routers that a trace route packet can pass The traceroute command will cross while seeking the network path between two devices The range for the TTL is 1 to 60 hops value 1 60 Enter the time to live value here This value must be between 1 and 60 port Optional The port number The value range is from 30000 to 64900 value 30000 64900 Enter the port number here This value must be between 30000 ...

Page 1049: ...route packet can pass The traceroute command will cross while seeking the network path between two devices The range for the TTL is 1 to 60 hops value 1 60 Enter the time to live value here This value must be between 1 and 60 port Optional The port number The value range is from 30000 to 64900 value 30000 64900 Enter the port number here This value must be between 30000 and 64900 timeout Optional ...

Page 1050: ... probe 3 1 10 ms 1345 142 11 2 10 ms 2011 14 100 3 10 ms 3000 1 Trace complete DGS 3120 24TC admin Trace the IPv6 routed path between the Switch and 1210 100 11 with port 40000 DGS 3120 24TC admin traceroute6 1210 100 11 port 40000 Command traceroute6 1210 100 11 port 40000 1 10 ms 3100 25 2 10 ms 4130 100 3 10 ms 1210 100 11 Trace complete DGS 3120 24TC admin ...

Page 1051: ...ld value 0 1488100 countdown min 0 min3 30 disable time_interval sec 5 600 Parameters portlist Used to specify a range of ports to be configured all Specify that all the ports will be used for this configuration broadcast Optional Enable or disable broadcast storm control enable Specify that broadcast storm control will be enabled disable Specify that broadcast storm control will be disabled multi...

Page 1052: ...tion parameter min 0 0 disables the forever state meaning that the port will not enter the shutdown forever state min 3 30 Enter the countdown timer value here This value must be between 3 and 30 disable Specify that the countdown timer will be disabled time_interval Optional The sampling interval of received packet counts The possible value will be m n seconds The parameter is not applicable if d...

Page 1053: ...e this command Example To enable both the occurred mode and cleared mode traffic control traps DGS 3120 24TC admin config traffic trap both Command config traffic trap both Success DGS 3120 24TC admin 112 3 show traffic control Description This command is used to display the current traffic control settings Format show traffic control portlist Parameters portlist Optional Used to specify the range...

Page 1054: ...tdown 5 10 1 1 1 1 7 Enabled Disabled Disabled shutdown 5 10 1 1 1 1 8 Enabled Disabled Disabled shutdown 5 10 1 1 1 1 9 Enabled Disabled Disabled shutdown 5 10 1 1 1 1 10 Enabled Disabled Disabled shutdown 5 10 1 1 1 DGS 3120 24TC admin 112 4 config traffic control log state Description This command is used to configure the traffic control log state When the log state is enabled traffic control s...

Page 1055: ...time min 0 min 1 65535 Parameters auto_recover_time The time allowed for auto recovery from shutdown for a port The default value is 0 so no auto recovery is possible the port remains in shutdown forever mode This requires manual entry of the CLI command config ports portlist all state enable to return the port to a forwarding state The default value is 0 which means disable auto recover mode shut...

Page 1056: ...xStack DGS 3120 Series Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 1051 ...

Page 1057: ... all Specify that all the ports will be used for this configuration forward_list Specify a range of port forwarding domain null Specify a range of port forwarding domain is null all Specify all ports to be configured portlist Specify a range of ports to be configured Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure traffic segmentation...

Page 1058: ...e system will display all current traffic segmentation tables Restrictions None Example To display traffic segmentation table DGS 3120 24TC admin show traffic_segmentation 1 1 1 10 Command show traffic_segmentation 1 1 1 10 Traffic Segmentation Table Port Forward Portlist 1 1 1 11 1 15 1 2 1 11 1 15 1 3 1 11 1 15 1 4 1 11 1 15 1 5 1 11 1 15 1 6 1 11 1 15 1 7 1 11 1 15 1 8 1 11 1 15 1 9 1 11 1 15 1...

Page 1059: ...hing to prevent any IP address from accessing the Switch provided the user knows the Username and Password When the access interface is not specified the trusted host will be created for all interfaces Format create trusted_host ipaddr ipv6addr network network_address ipv6_prefix ipv6networkaddr snmp telnet ssh http https ping Parameters ipaddr The IP address of the trusted host ipv6addr The IPv6 ...

Page 1060: ...nfiguration here ipv6addr The IPv6 address of the trusted host ipv6addr Enter the IPv6 address used for this configuration here network The network address of the trusted network network_address Enter the network address used for this configuration here ipv6_prefix The IPv6 subnet prefix of the trusted network ipv6networkaddr Enter the IPv6 subnet prefix here all All trusted hosts will be deleted ...

Page 1061: ...ete Delete interfaces for that trusted host snmp Optional Specify trusted host for SNMP telnet Optional Specify trusted host for TELNET ssh Optional Specify trusted host for SSH http Optional Specify trusted host for HTTP https Optional Specify trusted host for HTTPs ping Optional Specify trusted host for PING all Optional Specify trusted host for all application Restrictions Only Administrator an...

Page 1062: ...LI Reference Guide 1057 Restrictions None Example To display trusted host DGS 3120 24TC admin show trusted_host Command show trusted_host Management Stations IP Address Access Interface 10 48 74 121 SNMP Telnet SSH HTTP HTTPs Ping Total Entries 1 DGS 3120 24TC admin ...

Page 1063: ...r config udp_helper delete ipif ipif_name 12 ipaddr show udp_helper udp_port ipif ipif_name 12 115 1 enable udp_helper Description This command is used to enable the UDP helper function on the Switch Format enable udp_helper Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the UDP helper function DGS 3120 24TC admin enable...

Page 1064: ...r udp_port add time tacacs dns tftp netbios ns netbios ds port_number 0 65535 Parameters time Time service The UDP port is 37 tacacs Terminal Access Controller Access Control System service The UDP port number is 49 dns Domain Naming System The UDP port number is 53 tftp Trivial File Transfer Protocol The UDP port number is 69 netbios ns NetBIOS Name Server The UDP port number is 137 netbios ds Ne...

Page 1065: ...is 49 dns Domain Naming System The UDP port number is 53 tftp Trivial File Transfer Protocol The UDP port number is 69 netbios ns NetBIOS Name Server The UDP port number is 137 netbios ds NetBIOS Datagram Server The UDP port number is 138 port_number 0 65535 Specify other UDP ports except the port 67 and 68 These two ports are reserved for DHCP function Restrictions Only Administrator Operator and...

Page 1066: ...m 20 0 0 90 Success DGS 3120 24TC admin 115 6 config udp_helper delete ipif Description This command is used to delete a UDP helper server address for specific interface of the Switch Format config udp_helper delete ipif ipif_name 12 ipaddr Parameters ipif_name 12 Enter the name of the IP interface that receives UDP broadcast ipaddr Enter the UDP helper server IP address Restrictions Only Administ...

Page 1067: ...ameters udp_port Optional Specify the UDP port configured for the UDP helper ipif Optional Specify the name of the IP interface to be configured for the UDP helper ipif_name 12 Enter the name of the IP interface Restrictions None Example To display the current UDP Helper configuration DGS 3120 24TC admin show udp_helper Command show udp_helper UDP Helper Status Enabled Application UDP Port User Ap...

Page 1068: ...ddress ipaddr advertisement_interval int 1 255 preempt true false critical_ip ipaddr critical_ip_state enable disable config vrrp ipif ipif_name 12 authtype none simple authdata string 8 ip authdata string 16 delete vrrp vrid vrid 1 255 ipif ipif_name 12 show vrrp ipif ipif_name 12 vrid vrid 1 255 config vrrp trap state enable disable 116 1 enable vrrp Description This command is used to enable VR...

Page 1069: ... 1 255 ipif ipif_name 12 ipaddress ipaddr state enable disable priority int 1 254 advertisement_interval int 1 255 preempt true false critical_ip ipaddr critical_ip_state enable disable Parameters vrid Specify the ID of the Virtual Router used vrid 1 255 Enter the Virtual Router ID used here This value must be between 1 and 255 ipif Specify the IP interface used for this configuration ipif_name 12...

Page 1070: ...l IP address of a real device on the network If the connection from the virtual router to this IP address fails the virtual router will automatically be disabled A new Master will be elected from the backup routers participating in the VRRP group Different critical IP addresses may be assigned to different routers participating in the VRRP group and can therefore define multiple routes to the Inte...

Page 1071: ...rity is set higher than the masters priority it will become the master instead of the current one false Specify if the backup router s priority is higher than the masters priority it will not become the master until the master failed critical_ip Optional specifies an IP address that will provide the most direct route to the Internet or other critical network connections from this virtual router Th...

Page 1072: ... the authentication algorithm will be set to IP authentication header on this interface authdata Specify the authentication data used in the IP authentication header algorithm string 16 Enter the authentication data used in the IP authentication header algorithm here This value can be up to 16 characters long Restrictions Only Administrator Operator and Power User level users can issue this comman...

Page 1073: ...dmin 116 7 show vrrp Description This command is used to display the VRRP settings Format show vrrp ipif ipif_name 12 vrid vrid 1 255 Parameters ipif Optional Specify the IP interface name to be displayed ipif_name 12 Enter the IP interface name to be displayed here This name can be up to 12 characters long vrid Optional Specify the Virtual Router ID to be displayed vrid 1 255 Enter the Virtual Ro...

Page 1074: ...00 Master IP Address 10 90 90 90 Critical IP Address 0 0 0 0 Checking Critical IP Disabled Advertisement Interval 1 Sec s Preempt Mode True Virtual Router Up Time 621430 centi secs Total Entries 1 DGS 3120 24TC admin 116 8 config vrrp trap state Description This command is used to enable or disable the VRRP trap state Format config vrrp trap state enable disable Parameters enable Specify to enable...

Page 1075: ...Stack DGS 3120 Series Layer 3 Managed Gigabit Ethernet Switch CLI Reference Guide 1070 DGS 3120 24TC admin config vrrp trap state enable Command config vrrp trap state enable Success DGS 3120 24TC admin ...

Page 1076: ...d if the direction is not specified Format create vlan_counter vlan vlan_name vlanid vidlist ports portlist all all_frame broadcast multicast unicast packet byte rx tx Parameters vlan Specify the VLAN name that will be used for this configuration vlan_name Enter the VLAN name that will be used for this configuration vlanid Specify the VLAN ID that will be used for this configuration vidlist Enter ...

Page 1077: ... 3120 24TC admin create vlan_counter vlanid 4 ports 1 5 unicast packet tx Command create vlan_counter vlanid 4 ports 1 5 unicast packet tx Success DGS 3120 24TC admin 117 2 clear vlan_counter statistics Description This command is used to clear statistics gathered by VLAN control entries for VLAN traffic flow statistics Format clear vlan_counter statistics all vlan vlan_name vlanid vidlist all por...

Page 1078: ...hat will be used for this configuration vlanid Specify the VLAN ID that will be used for this configuration vidlist Enter the VLAN ID that will be used for this configuration ports Optional Specify the list of ports that will be used for this configuration portlist Enter the list of ports that will be used for this configuration all Specify that all ports will be used for this configuration all_fr...

Page 1079: ...be used for this display vlan_name Enter the VLAN name that will be used for this display vlanid Optional Specify the VLAN ID that will be used for this display vidlist Enter the VLAN ID that will be used for this display rx Optional Specify that the control entries for ingress traffic will be displayed tx Optional Specify that the control entries for egress traffic will be displayed Restrictions ...

Page 1080: ...s display ports Optional Specify the list of ports that will be used for this display portlist Enter the list of ports that will be used for this display all Specify that all ports will be used for this display rx Optional Specify that the statistics to be displayed is counted on ingress traffic tx Optional Specify that the statistics to be displayed is counted on egress traffic Restrictions None ...

Page 1081: ... the VLAN trunk function When the VLAN trunk function is enabled the VLAN trunk ports shall be able to forward all tagged frames with any VID Format enable vlan_trunk Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable the VLAN Trunk DGS 3120 24TC admin enable vlan_trunk Command enable vlan_trunk Success DGS 3120 24TC admin 118 2 disabl...

Page 1082: ...he VLAN trunk globally all VLANs automatically created by VLAN Trunk enabled shall be destroyed and all the automatically added port membership will be removed A VLAN trunk port and a non VLAN trunk port cannot be grouped as an aggregated link To change the VLAN trunk setting for an aggregated link the user must apply the command to the master port However this setting will disappear as the aggreg...

Page 1083: ... state enable Success DGS 3120 24TC admin Port 6 is LA 1 member port port 7 is LA 2 master port DGS 3120 24PC admin config vlan_trunk ports 1 6 1 7 state enable Command config vlan_trunk ports 1 6 1 7 state enable Success DGS 3120 24PC admin config vlan_trunk ports 1 7 state disable Command config vlan_trunk ports 1 7 state disable Success DGS 3120 24PC admin config vlan_trunk ports 1 6 1 7 state ...

Page 1084: ...is LA 1 member port port 7 is LA 1 master port DGS 3120 24TC admin config vlan_trunk ports 1 7 state disable Command config vlan_trunk ports 1 7 state disable Success DGS 3120 24TC admin config vlan_trunk ports 1 6 1 7 state disable Command config vlan_trunk ports 1 6 1 7 state disable Success DGS 3120 24TC admin 118 4 show vlan_trunk Description This command is used to show the VLAN trunk configu...

Page 1085: ... VLAN Trunk State Enabled VLAN Trunk Member Ports 1 1 1 5 1 7 VID 1 VLAN Name default VLAN TYPE static Advertisement Enabled Member ports 1 1 1 24 2 1 2 24 Static ports 1 1 1 24 2 1 2 24 Current Tagged ports Current Untagged ports 1 1 1 24 2 1 2 24 Static Tagged ports Static Untagged ports 1 1 1 24 2 1 2 24 Forbidden ports VID 2 VLAN Name v1 VLAN TYPE static Advertisement Disabled Member ports 1 2...

Page 1086: ...vice 119 1 enable voice_vlan Description This command is used to enable the global voice VLAN function on a switch To enable the voice VLAN the voice VLAN must be also assigned At the same time the VLAN must be an existing static 802 1Q VLAN To change the voice VLAN the user must disable the voice VLAN function and re issue this command By default the global voice VLAN state is disabled Format ena...

Page 1087: ...istrator Operator and Power User level users can issue this command Example To disable the voice VLAN DGS 3120 24TC admin disable voice_vlan Command disable voice_vlan Success DGS 3120 24TC admin 119 3 config voice_vlan priority Description This command is used to configure the voice VLAN priority The voice VLAN priority will be the priority associated with the voice VLAN traffic to distinguish th...

Page 1088: ...r defined OUI cannot be the same as the pre defined OUI The following are the pre defined voice traffic s OUI OUI Vendor Mnemonic name 00 E0 BB 3COM 3com 00 03 6B Cisco cisco 00 E0 75 Veritel veritel 00 D0 1E Pingtel pingtel 00 01 E3 Siemens siemens 00 60 B9 NEC Philips nec philips 00 0F E2 Huawei 3COM huawei 3com 00 09 6E Avaya avaya Format config voice_vlan oui add delete macaddr macmask descrip...

Page 1089: ... will be disabled mode The voice VLAN mode The default mode is auto auto Specify that the voice VLAN mode will be set to auto tag When the port is working in auto tagged mode and learns about a voice device through the device s OUI it will join the voice VLAN as a tagged member automatically When the voice device sends voice VLAN tagged packets the Switch will change its priority When the voice de...

Page 1090: ...ice VLAN The aging time is used to remove a port from voice VLAN if the port is an automatic VLAN member When the last voice device stops sending traffic and the MAC address of this voice device is aged out the voice VLAN aging timer will be started The port will be removed from the voice VLAN after expiration of the voice VLAN aging timer If the voice traffic resumes during the aging time the agi...

Page 1091: ...bled a log will be triggered Format config voice_vlan log state enable disable Parameters enable Specify that the sending of a voice VLAN log will be enabled disable Specify that the sending of a voice VLAN log will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the log state for voice VLAN DGS 3120 24TC admin config voice_v...

Page 1092: ...rity 5 Aging Time 60 minutes Log State Enabled Member Ports 1 2 1 5 Dynamic Member Ports DGS 3120 24TC admin To display the voice VLAN global information when voice VLAN is disabled DGS 3120 24TC admin show voice_vlan Command show voice_vlan Voice VLAN State Disabled Voice VLAN Unassigned Priority 5 Aging Time 60 minutes Log State Enabled DGS 3120 24TC admin 119 9 show voice_vlan oui Description T...

Page 1093: ...A 0B 00 00 00 FF FF FF 00 00 00 00 0F E2 00 00 00 FF FF FF 00 00 00 Huawei 3COM 00 60 B9 00 00 00 FF FF FF 00 00 00 NEC Philips 00 D0 1E 00 00 00 FF FF FF 00 00 00 Pingtel 00 E0 75 00 00 00 FF FF FF 00 00 00 Veritel 00 E0 BB 00 00 00 FF FF FF 00 00 00 3COM Total Entries 9 DGS 3120 24TC admin 119 10 show voice_vlan ports Description This command is used to show the port voice VLAN information Forma...

Page 1094: ...C admin 119 11 show voice_vlan voice device Description This command is used to show voice devices that are connected to the ports The start time is the time when the device is detected on this port and the activate time is the latest time the device sent traffic Format show voice_vlan voice_device ports portlist Parameters ports Optional Specify the list of ports to be configured here portlist En...

Page 1095: ...008 10 6 15 00 1 1 00 E0 BB 00 00 03 2008 10 6 14 20 2008 10 6 15 30 1 2 00 03 6B 00 00 01 2008 10 6 17 15 2008 10 6 18 00 1 4 00 E0 75 00 00 02 2008 10 6 18 15 2008 10 6 20 00 1 5 00 01 E3 01 02 03 2008 10 6 18 30 2008 10 6 20 30 Total Entries 6 DGS 3120 24TC admin 119 12 show voice_vlan lldp_med voice_device Description This command is used to show the voice devices being discovered by the LLDP ...

Page 1096: ... Local Port 1 1 Chassis ID Subtype MAC Address Chassis ID 00 E0 BB 00 00 11 Port ID Subtype Network Address Port ID 172 18 1 1 Create Time 10 6 2008 09 00 Remain Time 120 Seconds Index 2 Local Port 1 3 Chassis ID Subtype MAC Address Chassis ID 00 E0 BB 00 00 12 Port ID Subtype Network Address Port ID 172 18 1 2 Create Time 10 6 2008 09 00 Remain Time 120 Seconds Total Entries 2 DGS 3120 24TC admin...

Page 1097: ...ig wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan config wac authorization attributes radius enable disable local enable disable 1 config wac authentication_page element default page_title desc 128 login_window_title desc 64 user_name_title desc 32 password_title desc 32 logout_window_title desc 64 notification_line value 1 5 desc 128 show wac show wac ports portlist show w...

Page 1098: ...c Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable WAC DGS 3120 24TC admin disable wac Command disable wac Success DGS 3120 24TC admin 120 3 config wac ports Description This command is used to configure state and other parameters of the ports Format config wac ports portlist all state enable disable aging_time infinite m...

Page 1099: ...t be between 1 and 1440 minutes block_time Optional If a host fails to pass the authentication it will be blocked for a period specified by block_time sec 0 300 Enter the blocking time here This value must be between 0 and 300 seconds Restrictions Only Administrator Operator and Power User level users can issue this command Example To config state and other parameters of the ports DGS 3120 24TC ad...

Page 1100: ...cted to the default redirect path after successful authentication When the string is cleared the client will not be redirected to another URL after successful authentication Format config wac default_redirpath string 128 Parameters string 128 The URL that the client will be redirected to after successful authentication By default the redirected path is cleared This value can be up to 128 character...

Page 1101: ...irect URL DGS 3120 24TC admin config wac clear_default_redirpath Command config wac clear_default_redirpath Success DGS 3120 24TC admin 120 7 config wac virtual_ip Description This command is used to configure the virtual IP address for WAC The virtual IP of WAC is used to accept authentication request from unauthenticated host Only requests sent to this IP will get response correctly This IP does...

Page 1102: ...umber for HTTPS is 443 If no protocol specified the protocol is HTTP The HTTP cannot run at TCP port 443 and the HTTPS cannot run at TCP port 80 Format config wac switch_http_port tcp_port_number 1 65535 http https Parameters tcp_port_number 1 65535 A TCP port which the WAC Switch listens to and uses to finish the authenticating process The range of port number is 1 65535 http Optional To specify ...

Page 1103: ...ated hosts which will uses this user account to pass authentication vlan_name 32 Enter the name of the VLAN here This name can be up to 32 characters long vlanid Optional Specify the target VLAN ID for authenticated hosts which will uses this user account to pass authentication vlanid 1 4094 Enter the VLAN ID used here This value must be between 1 and 4094 Restrictions Only Administrator Operator ...

Page 1104: ... can be configured Format config wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan Parameters user The user name to be configured username 15 Enter the username used here This name can be up to 32 characters long vlan Specify the VLAN name for authenticated host which uses this user account to pass authentication vlan_name 32 Enter the name of the VLAN here This name can be up...

Page 1105: ...radius Optional If specified to enable the authorized data assigned by the RADUIS server will be accepted if the global authorization network is enabled The default state is enabled enable Specify that the authorized data assigned by the RADUIS server will be accepted disable Specify that the authorized data assigned by the RADUIS server will not be accepted local Optional If specified to enable t...

Page 1106: ...age desc 32 Enter a description with maximum of 32 characters password_title Specify to configure the password title of the authentication page desc 32 Enter a description with maximum of 64 characters logout_window_title Specify to configure the logout window title of the authentication page desc 64 Enter a description with maximum of 64 characters notification_line Specify to set the notificatio...

Page 1107: ...tate Disabled Method Local Redirect Path Virtual IP 0 0 0 0 Virtual IPv6 Switch HTTP Port 80 HTTP RADIUS Authorization Enabled Local Authorization Enabled Trap State Disabled DGS 3120 24TC admin 120 15 show wac ports Description This command is used to display the port level setting Format show wac ports portlist Parameters ports Specify a range of member ports to show the status portlist Optional...

Page 1108: ... 120 1 2 Enabled 60 30 120 1 3 Enabled 120 60 120 DGS 3120 24TC admin 120 16 show wac user Description This command is used to show web authentication account Format show wac user Parameters None Restrictions None Example To show WAC local user DGS 3120 24TC admin show wac user Command show wac user User Name Password VID Jim pasx 1000 Total Entries 1 DGS 3120 24TC admin 120 17 show wac auth_state...

Page 1109: ...X VLAN ID is 20 and the assigned VLAN ID is 1234 in this example 3 MAC 00 00 00 00 00 03 failed to pass authentication the VID field will be shown as indicating that packets with SA 00 00 00 00 00 03 will be dropped no matter which VLAN these packets are from 4 MAC 00 00 00 00 00 04 attempts to start authentication the VID field will be shown as until authentication completed Supposed that ports 1...

Page 1110: ...enticating 10 1 2 00 00 00 00 00 10 P 2040 Authenticated 1234 2 1440 20 1 3 00 00 00 00 00 20 P 2045 Authenticating 5 1 3 00 00 00 00 00 21 P 2045 Blocked 100 Total Authenticating Hosts 2 Total Authenticated Hosts 3 Total Blocked Hosts 2 DGS 3120 24TC admin 120 18 show wac authenticate_page Description This command is used to show the elements of the customized authenticate pages Format show wac a...

Page 1111: ...ted authenticating blocked macaddr macaddr Parameters ports Specify the list of ports whose WAC state will be cleared portlist Enter a list of ports used for the configuration here all Specify that all the ports will be used for this configuration authenticated Optional Specified to clear all authenticated users for a port authenticating Optional Specified to clear all authenticating users for a p...

Page 1112: ...at config wac trap state enable disable Parameters enable Specify to enable the WAC trap state disable Specify to disable the WAC trap state Restrictions Only Administrators Operators and Power Users can issue this command Example This example show how to enable the WAC trap state DGS 3120 24TC admin config wac trap state enable Command config wac trap state enable Success DGS 3120 24TC admin ...

Page 1113: ...l cos class_id 0 7 profile default profile_id int 2 128 profile_name 32 weight int 0 15 profile default profile_id int 2 128 profile_name 32 weight int 0 15 delete wred profile profile_id int 2 128 profile_name 32 all show wred ports portlist show wred profile default profile_id int 2 128 profile_name 32 121 1 enable wred Description This command is used to enable the WRED global state Format enab...

Page 1114: ... global state DGS 3120 24TC admin disable wred Command disable wred Success DGS 3120 24TC admin 121 3 create wred profile Description This command is used to create a WRED profile Format create wred profile int 2 128 profile_name profile_name 32 Parameters int 2 128 Specify the WRED profile ID to be added profile_name Specify the profile name to be added profile_name 32 Enter the profile name Rest...

Page 1115: ...cify the yellow packets to be dropped red Optional Specify the red packets to be dropped min_threshold Specify the minimum threshold value used If the queue size is higher than this value then the color yellow will be assigned to it If the queue size is lower than this value then the color green will be assigned to it and then it will be guaranteed not to be dropped Yellow packet behavior depends ...

Page 1116: ...os Specify the hardware priority queues class_id 0 7 Enter the priority between 0 and 7 profile Specify the profile to be used default Specify the default profile to be used profile_id Specify the profile ID to be used int 2 128 Enter the profile ID between 2 and 128 profile_name 32 Specify the profile name to be used weight Specify the weight of average queue size formular int 0 15 Enter the weig...

Page 1117: ...Parameters profile_id Specify the profile ID to be deleted int 2 128 Enter the profile ID between 2 and 128 profile_name 32 Specify the profile name to be delete all Specify all profiles to be delete Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete the profile 2 DGS 3120 24TC admin delete wred profile all Command delete wred profile all S...

Page 1118: ...1 Class_ID Weight Profile_id Profile_Name 0 9 1 default 1 9 1 default 2 2 2 profilename 3 9 1 default 4 9 1 default 5 9 1 default 6 9 1 default 7 9 1 default Port 1 2 Class_ID Weight Profile_id Profile_Name 0 9 1 default 1 9 1 default 2 9 1 default 3 9 1 default 4 9 1 default 5 9 1 default 6 9 1 default 7 9 1 default DGS 3120 24TC admin 121 8 show wred profile Description This command is used to d...

Page 1119: ...ED profile information DGS 3120 24TC admin show wred profile Command show wred profile Total Profile Number 2 WRED Profile ID 1 Profile Name default Packet Type Min Threshold Max Threshold Max Drop Rate TCP GREEN 50 100 50 TCP YELLOW 50 100 50 TCP RED 50 100 50 NON TCP GREEN 50 100 50 NON TCP YELLOW 50 100 50 NON TCP RED 50 100 50 WRED Profile ID 2 Profile Name profilename Packet Type Min Threshol...

Page 1120: ...s necessary for the user needs to attach a terminal or PC with terminal emulation to the console port of the Switch 2 Power on the Switch After the runtime image and UART init are loaded to 100 the Switch will allow 2 seconds for the user to press the hotkey Shift 6 to enter the Password Recovery Mode Once the Switch enters the Password Recovery Mode all ports on the Switch will be disabled and al...

Page 1121: ...ce Guide 1116 Command Parameters reset password username The reset password command resets the password of the specified user If a username is not specified the passwords of all users will be reset show account The show account command displays all previously created accounts ...

Page 1122: ...nfiguration and log saved to flash Unit unitID Configuration and log saved to flash by console Username username IP ipaddr Informational by console and IP ipaddr are XOR shown in log string which means if user login by console there will no IP information for logging Internal Power failed Unit unitID Internal Power failed Critical Internal Power is recovered Unit unitID Internal Power is recovered...

Page 1123: ...e and IP ipaddr are XOR shown in log string which means if user login by console there will no IP information for logging Log message successfully uploaded Log message successfully uploaded by console Username username IP ipaddr Informational by console and IP ipaddr are XOR shown in log string which means if user login by console there will no IP information for logging Log message upload was uns...

Page 1124: ...ame username Warning There are no IP and MAC if login by console Logout through Console Unit unitID Logout through Console Username username Informational There are no IP and MAC if login by console Console session timed out Unit unitID Console session timed out Username username Informational There are no IP and MAC if login by console Web Successful login through Web Successful login through Web...

Page 1125: ... InstanceID Informational Spannnig Tree instance deleted Spanning Tree instance deleted Instance InstanceID Informational Spanning Tree Version changed Spanning Tree version change new version new_version Informational Spanning Tree MST configuration ID name and revision level changed Spanning Tree MST configuration ID name and revision level change name name revision level revision_level Informat...

Page 1126: ...ername username Warning Successful login through Web SSL authenticated by AAA local method Successful login through Web SSL from userIP authenticated by AAA local method Username username Informational Login failed through Web SSL authenticated by AAA local method Login failed through Web SSL from userIP authenticated by AAA local method Username username Warning Successful login through Telnet au...

Page 1127: ...ue to AAA server timeout or improper configuration Username username Warning Successful login through Web SSL authenticated by AAA server Successful login through Web SSL from userIP authenticated by AAA server serverIP Username username Informational Login failed through Web SSL authenticated by AAA server Login failed through Web SSL from userIP authenticated by AAA server serverIP Username user...

Page 1128: ... authenticated by AAA local_enable method Username username Informational Enable Admin failed through Telnet authenticated by AAA local_enable method Enable Admin failed through Telnet from userIP authenticated by AAA local_enable method Username username Warning Successful Enable Admin through SSH authenticated by AAA local_enable method Successful Enable Admin through SSH from userIP authenticat...

Page 1129: ...ed by AAA server serverIP Username username Informational Enable Admin failed through Web SSL authenticated by AAA server Enable Admin failed through Web SSL from userIP authenticated by AAA server serverIP Username username Warning Enable Admin failed through Web SSL due to AAA server timeout or improper configuration Enable Admin failed through Web SSL from userIP due to AAA server timeout or im...

Page 1130: ... client is authenticated by RADIUS server successfully This 802 1p default priority will be assigned to the port RADIUS server ipaddr assigned 802 1p default priority priority to port unitID portNum account username Informational Failed to assign ACL profiles rules from RADIUS server RADIUS server ipaddr assigns username ACL failure at port unitID portNum string Warning 802 1X 802 1X Authenticatio...

Page 1131: ...mational When a client host fails to authenticate WAC unauthenticated user User Name string IP ipaddr ipv6address MAC macaddr Port unitID portNum Warning The authorized user number on whole device reaches the max user limit WAC enters stop learning state Warning per system The authorized user number on whole device is below the max user limit in a time interval WAC recovers from stop learning stat...

Page 1132: ...icast storm cleared Port unitID portNum Multicast storm has cleared Informational Port shut down due to a packet storm Port unitID portNum is currently shut down due to a packet storm Warning Loop Back Dection Port loop occurred Port unitID portNum LBD loop occurred Port blocked Critical Port loop detection restarted after interval time Port unitID portNum LBD port recovered Loop detection restart...

Page 1133: ...id MAC macaddr Warning Can not receive remote MEP s CCM packet CFM remote down MD Level mdlevel VLAN vlanid Local Port unitID portNum Direction mepdirection Warning Remote MEP s MAC reports an error status CFM remote MAC error MD Level mdlevel VLAN vlanid Local Port unitID portNum Direction mepdirection Warning Remote MEP detects CFM defects CFM remote detects a defect MD Level mdlevel VLAN vlanid...

Page 1134: ...ration error Error when execute configuration filename line lineno at time time range Warning Schedule backup fail Backup type filename at time time range failure Warning Execute configuration success Execute configuration filename success at time time range Informational Schedule backup success Backup type filename success at time time range Informational LLDP LLDP MED Topology change detected LL...

Page 1135: ... of one received VRRP advertisement message Authentication type mismatch on VR vr id at interface intf name Warning Authentication checking fail of one received VRRP advertisement message Authentication fail on VR vr id at interface intf name Auth type auth type Warning Checksum error of one received VRRP advertisement message Received an ADV msg with incorrect checksum on VR vr id at interface in...

Page 1136: ...when adding a virtual MAC into switch L3 table The box where the MAC is learned from is invalid Failed to add virtual IP vrrp ip addr MAC vrrp mac addr into L3 table Box id mac box is invalid Error Failed when adding a virtual MAC into switch chip s L3 table Failed to add virtual IP vrrp ip addr MAC vrrp mac addr into chip L3 table Errcode vrrp errcode Error Failed when deleting a virtual MAC from...

Page 1137: ...ngViolationTrap When the IP MAC Binding trap is enabled if there s a new MAC that violates the pre defined port security configuration a trap will be sent out Binding 1 swIpMacBindingPortIndex 2 swIpMacBindingViolationIP 3 swIpMacBindingViolationMac 1 3 6 1 4 1 171 12 23 5 0 1 swIpMacBindingIPv6ViolationTrap When the IP MAC Binding trap is enabled if there s a new MAC that violates the pre defined...

Page 1138: ...dSucc ess The trap is sent when a MAC based Access Control host is successfully logged in Binding 1 swMacBasedAuthInfoMacIndex 2 swMacBasedAuthInfoPortIndex 3 swMacBasedAuthVID 1 3 6 1 4 1 171 12 35 11 1 0 1 swMacBasedAccessControlLoggedFail The trap is sent when a MAC based Access Control host login fails Binding 1 swMacBasedAuthInfoMacIndex 2 swMacBasedAuthInfoPortIndex 3 swMacBasedAuthVID 1 3 6...

Page 1139: ...erated Binding 1 swERPSNodeId 1 3 6 1 4 1 171 12 78 4 0 3 dot1agCfmFaultAlarm A MEP has a persistent defect condition A notification fault alarm is sent to the management entity with the OID of the MEP that has detected the fault Binding 1 dot1agCfmMepHighestPrDefect 1 3 111 2 802 1 1 8 0 1 swCFMExtAISOccurred A notification is generated when local MEP enters AIS status Binding 1 dot1agCfmMdIndex ...

Page 1140: ...saved uploaded or downloaded Binding 1 unitID 2 agentCfgOperate 3 agentLoginUserName 1 3 6 1 4 1 171 12 1 7 2 0 9 swPowerFailure Power Failure notification Binding 1 swPowerUnitIndex 2 swPowerID 3 swPowerStatus 1 3 6 1 4 1 171 12 11 2 2 2 0 2 swPowerRecover Power Recover notification Binding 1 swPowerUnitIndex 2 swPowerID 3 swPowerStatus 1 3 6 1 4 1 171 12 11 2 2 2 0 3 swUnitInsert Unit Hot Insert...

Page 1141: ...1 swDdmPort 2 swDdmThresholdType 3 swDdmThresholdExceedType 4 swDdmThresholdExceedOrRecover 1 3 6 1 4 1 171 12 72 4 0 2 dot3OamNonThresholdEvent A dot3OamNonThresholdEvent notification is sent when a local or remote non threshold crossing event is detected A local event is detected by the local entity while a remote event is detected by the reception of an Ethernet OAM Event Notification OAMPDU th...

Page 1142: ...in an agent role has detected that the ifOperStatus object for one of its communication links is about to enter the down state from some other state but not from the notPresent state This other state is indicated by the included value of ifOperStatus Binding 1 ifIndex 2 ifAdminStatus 3 ifOperStatus 1 3 6 1 6 3 1 1 5 3 linkUp A linkUp trap signifies that the SNMP entity acting in an agent role has ...

Page 1143: ...at is generated when an alarm entry crosses its falling threshold and generates an event that is configured for sending SNMP traps Binding 1 alarmIndex 2 alarmVariable 3 alarmSampleType 4 alarmValue 5 alarmFallingThreshold 1 3 6 1 2 1 16 0 2 LLDP This trap is initialed when a LLDP entry is added to or deleted from remote DB 1 3 6 1 2 1 1 3 0 1 3 6 1 6 3 1 1 4 1 0 1 0 8802 1 1 2 1 2 2 1 0 8802 1 1 ...

Page 1144: ...ted whenever the counter pimInvalidJoinPruneMsgsRcvd is incremented subject to the rate limit specified by pimInvalidJoinPruneNotificationPeriod Binding objects 1 pimGroupMappingPimMode 2 pimInvalidJoinPruneAddressType 3 pimInvalidJoinPruneOrigin 4 pimInvalidJoinPruneGroup 5 pimInvalidJoinPruneRp 6 pimNeighborUpTime 1 3 6 1 2 1 157 0 3 pimRPMappingChange A pimRPMappingChange notification signifies...

Page 1145: ... 2 swWACLoggedSuccess The trap is sent when a WAC client pass the authentication Binding objects 1 swWACAuthStatePort 2 swWACAuthStateOriginalVid 3 swWACAuthStateMACAddr 4 swWACAuthUserName 5 swWACClientAddrType 6 swWACClientAddress 1 3 6 1 4 1 171 12 27 11 1 0 1 swWACLoggedFail The trap is sent when a WAC client failed to pass the authentication Binding objects 1 swWACAuthStatePort 2 swWACAuthSta...

Page 1146: ... Required Attribute Specific Field Used to assign the bandwidth of a port Unit Kbits Required If the user has configured the bandwidth attribute of the RADIUS server for example ingress bandwidth 1000Kbps and the 802 1X authentication is successful the device will assign the bandwidth according to the RADIUS server to the port However if the user does not configure the bandwidth attribute and auth...

Page 1147: ... Server To use VLAN assignment RFC3580 defines the following tunnel attributes in RADIUS packets The table below shows the parameters for a VLAN RADIUS Tunnel Attribute Description Value Usage Tunnel Type This attribute indicates the tunneling protocol s to be used in the case of a tunnel initiator or the tunneling protocol in use in the case of a tunnel terminatior 13 VLAN Required Tunnel Medium ...

Page 1148: ... the requested VLAN To assign ACL by RADIUS Server the proper parameters should be configured on the RADIUS Server The table below shows the parameters for an ACL The parameters of the Vendor Specific Attribute are RADIUS Tunnel Attribute Description Value Usage Vendor ID Defines the vendor 171 DLINK Required Vendor Type Defines the attribute 12 for ACL profile 13 for ACL rule Required Attribute S...

Page 1149: ... refer to Appendix E RADIUS Attributes Assignment IETF standard RADIUS attributes are defined in the RFC 2865 Remote Authentication Dial In User Service RADIUS RFC 2866 RADIUS Accounting RFC 2868 RADIUS Attributes for Tunnel Protocol Support and RFC 2869 RADIUS Extensions The following table lists the IETF RADIUS attributes supported by the D Link switch 1 RADIUS Authentication Attributes Number I...

Page 1150: ...ting Attributes Number IETF Attribute 1 User Name 4 NAS IP Address 5 NAS Port 6 Service Type 8 Framed IP Address 31 Calling Station ID 32 NAS Identifier 40 Acct Status Type 41 Acct Delay Time 42 Acct Input Octets 43 Acct Output Octets 44 Acct Session ID 45 Acct Authentic 46 Acct Session Time 47 Acct Input Packets 48 Acct Output Packets 49 Acct Terminate Cause 52 Acct Input Gigawords 53 Acct Output...

Reviews:

No comments

Related manuals for xStack DGS-3120-24PC

D-Link Air DCS-1000W Setting-Up Manual preview
Air DCS-1000W
Brand: D-Link Pages: 13
Vanguard 340 Installation Manual preview
340
Brand: Vanguard Pages: 121
Aaeon UP Squared 6000 Edge Computing Kit User Manual preview
UP Squared 6000 Edge Computing Kit
Brand: Aaeon Pages: 59
H3C SR8800 IM-FW-II Command Reference Manual preview
SR8800 IM-FW-II
Brand: H3C Pages: 107
3Com MSR 50 Series Safety Information Manual preview
MSR 50 Series
Brand: 3Com Pages: 12
H3C S9500 Series Operating Manual preview
S9500 Series
Brand: H3C Pages: 16
H3C H3C S3600 Series Datasheet preview
H3C S3600 Series
Brand: H3C Pages: 10
H3C MSR 930 Installation Manual preview
MSR 930
Brand: H3C Pages: 42
H3C MSR 800 Installation, Quick Start preview
MSR 800
Brand: H3C Pages: 2
H3C H3C S7500E Series Instruction Manual preview
H3C S7500E Series
Brand: H3C Pages: 34
H3C MSR Series Manual preview
MSR Series
Brand: H3C Pages: 33
H3C CR16000-F Configuration Manual preview
CR16000-F
Brand: H3C Pages: 14
H3C MSR 3600 Hardware Information And Specifications preview
MSR 3600
Brand: H3C Pages: 56
H3C H3C S7500E Series Configuration Manual preview
H3C S7500E Series
Brand: H3C Pages: 112
H3C S3100-52P Command Manual preview
S3100-52P
Brand: H3C Pages: 15
H3C SR8800 IM-FW-II Manual preview
SR8800 IM-FW-II
Brand: H3C Pages: 5
H3C H3C S7500E Series Installation Manual preview
H3C S7500E Series
Brand: H3C Pages: 50
H3C MSR810 Manual preview
MSR810
Brand: H3C Pages: 37

Brands by name

Popular brands

Load more brands