manualshive.com logo in svg

D-Link xStack DGS-3120-48PC, Reference Manual

The D-Link xStack DGS-3120-48PC is a powerful network switch offering 48 Ethernet ports and PoE support. To fully understand and maximize its features, it is essential to refer to the Reference Manual. Download the comprehensive manual for free from our website for detailed instructions on optimizing your network setup.

Share
Download
background image

xStack

® 

DGS-3120 Series Managed Switch CLI Reference Guide 

705 

 

Parameters 

unit

 - (Optional) The attack log messages on the specified unit will be displayed. If unit ID is 

specified, then it will be referred to as the master unit. 

<unit_id 1-12>

 - Enter the unit ID value here. This value must be between 1 and n. 

index

 - (Optional) The list of index numbers of the entries that need to be displayed. For 

example, show attack_log index 1-5 will display the attack log messages from 1 to 5. 

<value_list>

 - Enter the index numbers of the entries that needs to be displayed here. 

If no parameter is specified, all entries in the attack log will be displayed. 

 

Restrictions 

None. 

 

Example 

To show dangerous messages on the master: 

DGS-3120-24TC:admin#  show attack_log index 1 

Command: show attack_log index 1 

 

Index   Date       Time      Level     Log Text 

----- ---------- -------- -------- --------------------------------------------- 

1      2008-10-17 15:00:14 CRIT(2)   Possible spoofing attack from IP: , MAC:  

                                     0A-00-00-5A-00-01, port: 1:3 

 

DGS-3120-24TC:admin#  

 

76-14

 

clear attack_log 

Description 

This command is used to clear the attack log. 

 

Format 

clear attack_log {unit <unit_id 1-12> | all} 

 

Parameters 

unit

 - (Optional) The attack log messages on the specified unit will be cleared. If specified, it will 

be referred to as the master unit. 

<unit_id 1-12>

 - Enter the unit ID number here. 

all

 - Specify that all the unit ID's information will be used. 

 

Restrictions 

Only Administrator and Operator-level users can issue this command. 

 

Example 

To clear the master’s attack log: 

Summary of Contents for xStack DGS-3120-48PC

Page 1: ...ll ...

Page 2: ...ntication Command List 162 Chapter 17 Configuration Command List 171 Chapter 18 Configuration Trap Command List 176 Chapter 19 Connectivity Fault Management CFM Command List EI Mode Only 178 Chapter 20 Connectivity Fault Management CFM Extension Command List EI Mode Only 206 Chapter 21 CPU Interface Filtering Command List 210 Chapter 22 Debug Software Command List 221 Chapter 23 DHCP Local Relay C...

Page 3: ... Chapter 50 Multiple Spanning Tree Protocol MSTP Command List 500 Chapter 51 Network Load Balancing NLB Command List 513 Chapter 52 Network Monitoring Command List 519 Chapter 53 OAM Commands EI Mode Only 526 Chapter 54 Peripherals Command List 534 Chapter 55 Ping Command List 540 Chapter 56 Port Security Command List 542 Chapter 57 Power over Ethernet PoE Command List 550 Chapter 58 Power Saving ...

Page 4: ...t Command List 710 Chapter 80 Time and SNTP Command List 715 Chapter 81 Trace Route Command List 722 Chapter 82 Traffic Control Command List 725 Chapter 83 Traffic Segmentation Command List 730 Chapter 84 Trusted Host Command List 732 Chapter 85 Unicast Routing Command List 736 Chapter 86 VLAN Trunking Command List 741 Chapter 87 Voice VLAN Command List 746 Chapter 88 Web Based Access Control WAC ...

Page 5: ...lows 115200 baud no parity 8 data bits 1 stop bit A computer running a terminal emulation program capable of emulating a VT 100 terminal and a serial port configured as above are then connected to the Switch s Console port via an included RS 232 to RJ 45 convertor cable With the serial port properly connected to a management computer the following screen should be visible If this screen does not a...

Page 6: ... prompt enter the commands config ipif System ipaddress xxx xxx xxx xxx yyy yyy yyy yyy Where the x s represent the IP address to be assigned to the IP interface named System and the y s represent the corresponding subnet mask Alternatively you can enter config ipif System ipaddress xxx xxx xxx xxx z Where the x s represent the IP address to be assigned to the IP interface named System and the z r...

Page 7: ...CE n Next Page ENTER Next Entry a All When entering a command without its required parameters the CLI will prompt you with a Next possible completions message DGS 3120 24TC admin config account Command config account Next possible completions username DGS 3120 24TC admin In this case the command config account was entered with the parameter username The CLI will then prompt to enter the username w...

Page 8: ...d is entered that is unrecognized by the CLI the top level commands will be displayed under the Available commands prompt GS 3120 24TC admin the Available commands cable_diag cd cfm change clear config copy create debug del delete dir disable download enable erase execute format login logout md move no ping ping6 rd reboot reconfig rename reset save show smtp telnet traceroute traceroute6 upload D...

Page 9: ...ports power_saving private_vlan pvid qinq radius rmon router_ports rspan safeguard_engine scheduling scheduling_mechanism serial_port session sflow sim snmp sntp ssh ssl stack_device stack_information stacking_mode storage_media_info stp switch syslog system_severity tech_support terminal time time_range traffic traffic_segmentation trap trusted_host utilization vlan vlan_translation vlan_trunk vo...

Page 10: ...values or arguments can be specified For example in the syntax reset config system force_agree users may choose configure or system in the command DO NOT TYPE THE BRACES parentheses Indicates at least one or more of the values or arguments in the preceding syntax enclosed by braces must be specified For example in the syntax config bpdu_protection ports portlist all state enable disable mode drop ...

Page 11: ... the displayed pages a Display the remaining pages The screen display will not pause again Enter Display the next line The screen display pauses when the show command output reaches the end of the page In the above example all of the possible next parameters for the show command are displayed At the next command prompt the up arrow was used to re enter the show command followed by the account para...

Page 12: ...terminal width default value 80 200 show terminal width config ports portlist all medium_type fiber copper speed auto 10_half 10_full 100_half 100_full 1000_full master slave flow_control enable disable learning enable disable state enable disable mdix auto normal cross description desc 1 32 clear_description show ports portlist description err_disabled details media_type 2 1 show session Descript...

Page 13: ...nd is used to display the current serial port settings Format show serial_port Parameters None Restrictions None Example To display the serial port setting DGS 3120 24TC admin show serial_port Command show serial_port Baud Rate 9600 Data Bits 8 Parity Bits None Stop Bits 1 Auto Logout 10 minutes DGS 3120 24TC admin 2 3 config serial_port Description This command is used to configure the serial bit...

Page 14: ...tes the device will auto logout 5_minutes When idle over 5 minutes the device will auto logout 10_minutes When idle over 10 minutes the device will auto logout 15_minutes When idle over 15 minutes the device will auto logout Restrictions Only Administrator and Operator level users can issue this command Example To configure baud rate DGS 3120 24TC admin config serial_port baud_rate 9600 Command co...

Page 15: ...escription This command is used to disable the pausing of the screen display when the show command output reaches the end of the page The default setting is enabled Format disable clipaging Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable pausing of the screen display when show command output reaches the end of the page DGS 3120 24T...

Page 16: ...trictions None Example To login the Switch with a user name dlink DGS 3120 24TC admin login Command login UserName dlink PassWord DGS 3120 24TC admin 2 7 logout Description This command is used to logout the facility Format logout Parameters None Restrictions None Example To logout current user ...

Page 17: ...2011 D Link Corporation All rights reserved UserName 2 8 Description This command is used to display the usage description for all commands or the specific one Format Parameters None Restrictions None Example To get ping command usage descriptions DGS 3120 24TC admin ping Command ping Command ping Usage ipaddr times value 1 255 timeout sec 1 99 Description Used to test the connectivity between net...

Page 18: ...een Format clear Parameters None Restrictions None Example To clear screen DGS 3120 24TC admin clear Command clear DGS 3120 24TC admin 2 10 show command_history Description The command is used to display command history Format show command_history Parameters None Restrictions None Example To display command history ...

Page 19: ...number of commands that the Switch can recall The Switch remembers upto the last 40 commands you entered Format config command_history value 1 40 Parameters value 1 40 Enter the number of commands that the Switch can recall This value must be between 1 and 40 Restrictions None Example To configure the number of command history DGS 3120 24TC admin config command_history 25 Command config command_hi...

Page 20: ...t the banner DGS 3120 24TC admin config greeting_message Command config greeting_message Greeting Messages Editor DGS 3120 24TC Gigabit Ethernet Switch Command Line Interface Firmware Build 2 00 010 Copyright C 2011 D Link Corporation All rights reserved Function Key Control Key Ctrl C Quit without save left right Ctrl W Save and quit up down Move cursor Ctrl D Delete line Ctrl X Erase all setting...

Page 21: ... All rights reserved DGS 3120 24TC admin 2 14 config command_prompt Description This command is used to modify the command prompt The current command prompt consists of four parts product name user level e g DGS 3120 24TC admin This command is used to modify the first part 1 product name with a string consisting of a maximum of 16 characters or to be replaced with the users login user name When us...

Page 22: ...h Description The command is used to set current terminal width The usage is described as below 1 Users login and configure the terminal width to 120 this configuration take effect on this login section If users implement save command the configuration is saved After users log out and log in again the terminal width is 120 2 If user did not save the configuration another user login the terminal wi...

Page 23: ...nal width Description The command is used to display the configuration of current terminal width Format show terminal width Parameters None Restrictions None Example To display the configuration of current terminal width DGS 3120 24TC admin show terminal width Command show terminal width Global terminal width 80 Current terminal width 80 DGS 3120 24TC admin 2 17 config ports Description This comma...

Page 24: ... set flow_control to enable or disable enable Specify that the flow control option will be enabled disable Specify that the flow control option will be disabled learning Optional You can turn on or turn off MAC address learning on one or more ports enable Specify that the learning option will be enabled disable Specify that the learning option will be disabled state Optional Enables or disables th...

Page 25: ...rts Format show ports portlist description err_disabled details media_type Parameters ports Specify a range of ports to be displayed portlist Optional Enter the list of ports to be configured here description Optional Indicates if port description will be included in the display err_disabled Optional Indicates if ports are disabled by some reasons will be displayed details Optional Displays the po...

Page 26: ...et MAC Address 00 01 02 03 04 10 Bandwidth 1000000Kbit Auto Negotiation Enabled Duplex Mode Full Duplex Flow Control Disabled MDI Auto Address Learning Enabled Last Clear of Counter 0 hours 10 mins ago BPDU Hardware Filtering Mode Disabled Queuing Strategy FIFO TX Load 0 100 0 bits sec 0 packets sec RX Load 0 100 0 bits sec 0 packets sec CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refres...

Page 27: ...sign config gvrp timer join leave leaveall value 100 100000 nni_bpdu_addr dot1d dot1ad show gvrp enable gvrp disable gvrp config private_vlan vlan_name 32 vid vlanid 2 4094 add isolated community remove vlan_name 32 vlanid vidlist show private_vlan vlan_name 32 vlanid vidlist 3 1 create vlan Description This command is used to create a VLAN on the Switch The VLAN ID must be always specified for cr...

Page 28: ...ame is conflict with the name of an existing VLAN then it will be renamed based on the following rule VLAN ID ALT collision count For example if this conflict is the second collision then the name will be VLAN100ALT2 Format create vlan vlanid vidlist type 1q_vlan private_vlan advertisement Parameters vlanid The VLAN ID list to be created vidlist Enter the VLAN ID list here type Optional Specify th...

Page 29: ...ng Restrictions Only Administrator Operator and Power User level users can issue this command Example To remove a vlan v1 DGS 3120 24TC admin delete vlan v1 Command delete vlan v1 Success DGS 3120 24TC admin 3 4 delete vlan vlanid Description This command is used to delete one or a number of previously configured VLAN by VID list Format delete vlan vlanid vidlist Parameters vlanid The VLAN ID list...

Page 30: ...r forbidden ports to the VLAN tagged Specify the additional ports as tagged untagged Specify the additional ports as untagged forbidden Specify the additional ports as forbidden delete Optional Specify to delete ports from the VLAN portlist Optional Enter the list of ports used for the configuration here advertisement Optional Specify the GVRP state of this VLAN enable Specify to enable advertisem...

Page 31: ...the list of ports used for the configuration here advertisement Optional Specify the GVRP state of this VLAN enable Specify to enable advertisement for this VLAN disable Specify to disable advertisement for this VLAN name Optional The new name of the VLAN vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long Restrictions Only Administrator Operator and Power User level us...

Page 32: ...portlist enable Specify that ingress checking will be enabled for the specified portlist disable Specify that ingress checking will be disabled for the specified portlist acceptable_frame Optional The type of frame will be accepted by the port There are two types tagged_only Only tagged packets can be accepted by this port admit_all All packets can be accepted pvid Optional Specify the PVID of the...

Page 33: ... 1 1 24 Current Tagged Ports Current Untagged Ports 1 1 1 24 Static Tagged Ports Static Untagged Ports 1 1 1 24 Forbidden Ports Total Static VLAN Entries 1 Total GVRP VLAN Entries 0 DGS 3120 24TC admin 3 9 show vlan ports Description This command is used to display the vlan information per ports Format show vlan ports portlist Parameters portlist Optional Enter the list of ports for which the VLAN...

Page 34: ...e VLAN ID Format show vlan vlanid vidlist Parameters vidlist Enter the VLAN ID to be displayed Restrictions None Example To display the VLAN configuration for VLAN ID 1 DGS 3120 24TC admin show vlan vlanid 1 Command show vlan vlanid 1 VID 1 VLAN Name default VLAN Type Static Advertisement Enabled Member Ports 1 1 1 24 Static Ports 1 1 1 24 Current Tagged Ports Current Untagged Ports 1 1 1 24 Stati...

Page 35: ...bled Enabled All Frames 1 2 1 Disabled Enabled All Frames 1 3 1 Disabled Enabled All Frames 1 4 1 Disabled Enabled All Frames 1 5 1 Disabled Enabled All Frames 1 6 1 Disabled Enabled All Frames 1 7 1 Disabled Enabled All Frames 1 8 1 Disabled Enabled All Frames 1 9 1 Disabled Enabled All Frames 1 10 1 Disabled Enabled All Frames 1 11 1 Disabled Enabled All Frames 1 12 1 Disabled Enabled All Frames...

Page 36: ...ith last item of VLAN list When user removes a port from the untagged membership of the PVID s VLAN the port s PVID will be assigned with default VLAN The default setting is enabled Format enable pvid auto_assign Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the auto assign PVID DGS 3120 24TC admin enable pvid auto_assi...

Page 37: ...sign Description This command is used to display the PVID auto assignment state Format show pvid auto_assign Parameters None Restrictions None Example To display PVID auto assignment state DGS 3120 24TC admin show pvid auto_assign Command show pvid auto_assign PVID Auto assignment Enabled DGS 3120 24TC admin 3 15 config gvrp Description The config gvrp timer command set the GVRP timer s value The ...

Page 38: ...n service provide site It can use 802 1d GVRP address 802 1ad service provider GVRP address or a user defined multicast address The range of the user defined address is 0180C2000000 0180C2FFFFFF dot1d Specify that the NNI BPDU protocol address value will be set to Dot1d dot1ad Specify that the NNI BPDU protocol address value will be set to Dot1ad Restrictions Only Administrator Operator and Power ...

Page 39: ...dmin 3 17 enable gvrp Description This commands is used to enable the Generic VLAN Registration Protocol GVRP Format enable gvrp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the generic VLAN Registration Protocol GVRP DGS 3120 24TC admin enable gvrp Command enable gvrp Success DGS 3120 24TC admin 3 18 disable gvrp Desc...

Page 40: ... 4094 add isolated community remove vlan_name 32 vlanid vidlist Parameters vlan_name 32 Specify the name of the private VLAN vid Specify the VLAN ID of the private VLAN vlanid 2 4094 Enter the VLAN ID used here This value must be between 1 and 4094 add Specify that a secondary VLAN will be added to the private VLAN isolated Specify the secondary VLAN as isolated VLAN community Specify the secondar...

Page 41: ...TC admin 3 20 show private vlan Description This command is used to show the private VLAN information Format show private_vlan vlan_name 32 vlanid vidlist Parameters vlan_name 32 Optional Specify the name of the private VLAN or its secondary VLAN This name can be up to 32 characters long vlanid Optional Specify the VLAN ID of the private VLAN or its secondary VLAN vidlist Enter the VLAN ID used he...

Page 42: ...VLAN 100 Promiscuous Ports 1 1 Trunk Ports 1 2 Isolated Ports 1 3 1 5 Isolated VLAN 20 Community Ports 1 6 1 8 Community VLAN 30 Community Ports 1 9 1 10 Community VLAN 40 Private VLAN 200 Promiscuous Ports 1 11 Trunk Ports 1 12 Isolated Ports 1 13 1 15 Isolated VLAN 20 Community Ports 1 16 1 18 Community VLAN 30 DGS 3120 24TC admin ...

Page 43: ...02 1x init port_based ports portlist all mac_based ports portlist all mac_address macaddr config 802 1x reauth port_based ports portlist all mac_based ports portlist all mac_address macaddr create 802 1x guest_vlan vlan_name 32 delete 802 1x guest_vlan vlan_name 32 config 802 1x guest_vlan ports portlist all state enable disable show 802 1x guest_vlan config radius add server_index 1 3 server_ip i...

Page 44: ...3120 24TC admin enable 802 1x Command enable 802 1x Success DGS 3120 24TC admin 4 2 disable 802 1x Description This command is used to disable the 802 1X function Format disable 802 1x Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the 802 1X function DGS 3120 24TC admin disable 802 1x Command disable 802 1x Success DGS...

Page 45: ...mand Example To create a 802 1x user test DGS 3120 24TC admin create 802 1x user test Command create 802 1x user test Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3120 24TC admin 4 4 delete 802 1x user Description This command is used to delete an 802 1X user Format delete 802 1x user username 15 Parameters username 15 Enter the username to be delet...

Page 46: ...isplay the 802 1X user Format show 802 1x user Parameters None Restrictions None Example To display the 802 1X user information DGS 3120 24TC admin show 802 1x user Command show 802 1x user Current Accounts Username Password test test Total Entries 1 DGS 3120 24TC admin 4 6 config 802 1x auth_protocol Description This command is used to configure the 802 1X auth protocol Format config 802 1x auth_...

Page 47: ... Description This command is used to globally control the forwarding of EAPOL PDU When 802 1X functionality is disabled globally or for a port and if 802 1X fwd_pdu is enabled both globally and for the port a received EAPOL packet on the port will be flooded in the same VLAN to those ports for which 802 1X fwd_pdu is enabled and 802 1X is disabled globally or just for the port The default state is...

Page 48: ...le Parameters portlist Enter the list of ports used for the configuration all Specify that all the ports will be used enable Enable forwarding EAPOL PDU receive on the ports disable Disable forwarding EAPOL PDU receive on the ports Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure 802 1X fwd_pdu for ports DGS 3120 24TC admin config 802 ...

Page 49: ... the RADIUS server DGS 3120 24TC admin config 802 1x authorization attributes radius disable Command config 802 1x authorization attributes radius disable Success DGS 3120 24TC admin 4 10 show 802 1x Description This command is used to display the 802 1X state or configurations Format show 802 1x auth_state auth_configuration ports portlist Parameters auth_state Optional Used to display 802 1X aut...

Page 50: ... n Next Page p Previous Page r Refresh 4 11 config 802 1x capability Description This command is used to configure the port capability Format config 802 1x capability ports portlist all authenticator none Parameters ports Specify a range of ports to be configured portlist Enter the list of ports used for the configuration here all Specify all ports to be configured authenticator The port that wish...

Page 51: ...s specified by config 802 1x auth_parameter command Format config 802 1x max_users value 1 448 no_limit Parameters value 1 448 Enter the maximum number of users This value must be between 1 and 448 no_limit Specify that the maximum user limit will be set to 448 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure 802 1X number of users to ...

Page 52: ...default value is 30 seconds and can be any integer value among 1 to 65535 sec 1 65535 Enter the tx period value here This value must be between 1 and 65535 seconds supp_timeout Optional The initialization value of the aWhile timer when timing out the supplicant Its default value is 30 seconds and can be any integer value among 1 to 65535 sec 1 65535 Enter the supplicant timeout value here This val...

Page 53: ...1x auth_mode Description This command is used to configure 802 1X authentication mode Format config 802 1x auth_mode port_based mac_based Parameters port_based Configure the authentication as port based mode mac_based Configure the authentication as MAC based mode Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the authentication mode...

Page 54: ...ication state machine of some or all DGS 3120 24TC admin config 802 1x init port_based ports all Command config 802 1x init port_based ports all Success DGS 3120 24TC admin 4 16 config 802 1x reauth Description This command is used to re authenticate the device connected to the port During the re authentication period the port status remains authorized until failed re authentication Format config ...

Page 55: ...ted The specific VLAN which assigned to guest VLAN can t be deleting Format create 802 1x guest_vlan vlan_name 32 Parameters vlan_name 32 Optional Specify the VLAN to be guest VLAN The VLAN name can be up to 32 characters long Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a VLAN named guestVLAN as 802 1X guest VLAN DGS 3120 24TC admin ...

Page 56: ...is used to configure guest VLAN setting If the specific port state is changed from enabled state to disable state this port will move to its original VLAN Format config 802 1x guest_vlan ports portlist all state enable disable Parameters ports A range of ports enable or disable guest VLAN function portlist Enter the list of ports used for the configuration here all Specify that all the port will b...

Page 57: ...scription This command is used to show the information of guest VLANs Format show 802 1x guest_vlan Parameters None Restrictions None Example To show 802 1X guest VLAN on the Switch DGS 3120 24TC admin show 802 1x guest_vlan Command show 802 1x guest_vlan Guest VLAN Setting Guest VLAN guestVLAN Enabled Guest VLAN Ports 1 2 1 8 DGS 3120 24TC admin 4 21 config radius add Description This command is ...

Page 58: ...etween the Switch and the RADIUS server The range is 1 to 65535 udp_port_number 1 65535 Enter the authentication port number here This value must be between 1 and 65535 acct_port Optional Specify the UDP port number which is used to transmit RADIUS accounting statistics between the Switch and the RADIUS server The range is 1 to 65535 udp_port_number 1 65535 Enter the accounting port number here Th...

Page 59: ...Only key Optional The key pre negotiated between switch and RADIUS server It is used to encrypt user s authentication data before being transmitted over internet The maximum length of the key is 32 password 32 Enter the key here The key can be up to 32 characters long auth_port Optional Specify the UDP port number which is used to transmit RADIUS authentication data between the Switch and the RADI...

Page 60: ...cify that the default re transmit value will be used Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure a radius server DGS 3120 24TC admin config radius 1 auth_port 60 Command config radius 1 auth_port 60 Success DGS 3120 24TC admin 4 24 show radius Description This command is used to display RADIUS server configurations Format show rad...

Page 61: ...rt 1813 Timeout 5 sec Retransmit 2 Key adfdslkfjefiefdkgjdassdwtgjk6y1w Total Entries 2 DGS 3120 24TC admin 4 25 show auth_statistics Description This command is used to display information of authenticator statistics Format show auth_statistics ports portlist Parameters ports Optional Specify a range of ports to be displayed portlist Enter the list of ports that will be displayed here Restriction...

Page 62: ...apolFramesRx 0 EapLengthErrorFramesRx 0 LastEapolFrameVersion 0 LastEapolFrameSource 00 00 00 00 00 00 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 4 26 show auth_diagnostics Description This command is used to display information of authenticator diagnostics Format show auth_diagnostics ports portlist Parameters ports Optional Specify a range of ports to be displayed portlist Ent...

Page 63: ...henticated 0 EapLogoffWhileAuthenticated 0 BackendResponses 0 BackendAccessChallenges 0 BackendOtherRequestsToSupplicant 0 BackendNonNakResponsesFromSupplicant 0 BackendAuthSuccesses 0 BackendAuthFails 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 4 27 show auth_session_statistics Description This command is used to display information of authenticator session statistics Format s...

Page 64: ...x 0 SessionFramesTx 0 SessionId SessionAuthenticMethod Remote Authentication Server SessionTime 0 SessionTerminateCause SupplicantLogoff SessionUserName CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 4 28 show auth_client Description This command is used to display information of RADIUS authentication client Format show auth_client Parameters None Restrictions None Example To displa...

Page 65: ... radiusAuthClientAccessRetransmissions 0 radiusAuthClientAccessAccepts 0 radiusAuthClientAccessRejects 0 radiusAuthClientAccessChallenges 0 radiusAuthClientMalformedAccessResponses 0 radiusAuthClientBadAuthenticators 0 radiusAuthClientPendingRequests 0 radiusAuthClientTimeouts 0 radiusAuthClientUnknownTypes 0 radiusAuthClientPacketsDropped 0 DGS 3120 24TC admin 4 29 show acct_client Description Th...

Page 66: ...counting service Description This command is used to configure the state of the specified RADIUS accounting service Format config accounting service network shell system state enable disable Parameters network Accounting service for 802 1X port access control By default the service is disabled shell Accounting service for shell events When user logs on or out the Switch via the console Telnet or S...

Page 67: ...enable Success DGS 3120 24TC admin 4 31 show accounting service Description This command is used to show the status of RADIUS accounting services Format show accounting service Parameters None Restrictions None Example To show information of RADIUS accounting services DGS 3120 24TC admin show accounting service Command show accounting service Accounting Service Network Enabled Shell Enabled System...

Page 68: ...erver_group string 15 config authen server_group tacacs xtacacs tacacs radius string 15 add delete server_host ipaddr protocol tacacs xtacacs tacacs radius delete authen server_group string 15 show authen server_group string 15 create authen server_host ipaddr protocol tacacs xtacacs tacacs radius port int 1 65535 key key_string 254 none timeout int 1 255 retransmit int 1 20 config authen server_h...

Page 69: ...be applied to the system later When password encryption is disabled if the user specifies the password in plain text form the password will be in plan text form However if the user specifies the password in encrypted form or if the password has been converted to encrypted form by the last enable password encryption command the password will still be in the encrypted form It can not be reverted to ...

Page 70: ...then_policy Parameters None Restrictions Only Administrator level users can issue this command Example To enable system access authentication policy DGS 3120 24TC admin enable authen_policy Command enable authen_policy Success DGS 3120 24TC admin 5 4 disable authen_policy Description This command is used to disable system access authentication policy Disable system access authentication policy Whe...

Page 71: ...isplay that system access authentication policy is enabled or disabled Format show authen_policy Parameters None Restrictions Only Administrator level users can issue this command Example To display system access authentication policy DGS 3120 24TC admin show authen_policy Command show authen_policy Authentication Policy Enabled DGS 3120 24TC admin 5 6 create authen_login Description This command ...

Page 72: ...n If all server hosts in tacacs group are missing the authentication request will be sent to the first server host in tacacs group If all server hosts in tacacs group are missing the local account database in the device is used to authenticate this user When user logins the device successfully while using methods like tacacs xtacacs tacacs radius built in or user defined server groups or none the ...

Page 73: ... DGS 3120 24TC admin config authen_login method_list_name login_list_1 method tacacs tac acs local Command config authen_login method_list_name login_list_1 method tacacs tacac s local Success DGS 3120 24TC admin 5 8 delete authen_login Description This command is used to delete a user defined method list of authentication methods for user login Format delete authen_login method_list_name string 1...

Page 74: ...ictions Only Administrator level users can issue this command Example To display a user defined method list for user login DGS 3120 24TC admin show authen_login method_list_name login_list_1 Command show authen_login method_list_name login_list_1 Method List Name Priority Method Name Comment login_list_1 1 tacacs Built in Group 2 tacacs Built in Group 3 mix_1 User defined Group 4 local Keyword DGS...

Page 75: ... missing the authentication request will be sent to the first server host in tacacs group If all server hosts in tacacs group are missing the local enable password in the device is used to authenticate this user s password Format config authen_enable default method_list_name string 15 method tacacs xtacacs tacacs radius server_group string 15 local _enable none Parameters default The default metho...

Page 76: ...entication methods for promoting user s privilege to Admin level Format delete authen_enable method_list_name string 15 Parameters string 15 The user defined method list name This value can be up to 15 characters long Restrictions Only Administrator level users can issue this command Example To delete a user defined method list for promoting user s privilege to Admin level DGS 3120 24TC admin dele...

Page 77: ...g user s privilege to Admin level DGS 3120 24TC admin show authen_enable method_list_name enable_list_1 Command show authen_enable method_list_name enable_list_1 Method List Name Priority Method Name Comment enable_list_1 1 tacacs Built in Group 2 tacacs Built in Group 3 mix_1 User defined Group 4 local Keyword Total Entries 1 DGS 3120 24TC admin 5 14 config authen application Description This com...

Page 78: ... issue this command Example To configure the login method list for telnet DGS 3120 24TC admin config authen application telnet login method_list_name login_list_1 Command config authen application telnet login method_list_name login_list_1 Success DGS 3120 24TC admin 5 15 show authen application Description This command is used to display the login enable method list for all applications Format sh...

Page 79: ...ts as maximum Format create authen server_group string 15 Parameters string 15 The user defined server group name This value can be up to 15 characters long Restrictions Only Administrator level users can issue this command Example To create a user defined authentication server group DGS 3120 24TC admin create authen server_group mix_1 Command create authen server_group mix_1 Success DGS 3120 24TC...

Page 80: ...P address here protocol Specify the authentication protocol used tacacs Specify that the TACACS authentication protocol will be used xtacacs Specify that the XTACACS authentication protocol will be used tacacs Specify that the TACACS authentication protocol will be used radius Specify that the radius authentication protocol will be used Restrictions Only Administrator level users can issue this co...

Page 81: ...4TC admin delete authen server_group mix_1 Command delete authen server_group mix_1 Success DGS 3120 24TC admin 5 19 show authen server_group Description This command is used to display the authentication server groups Format show authen server_group string 15 Parameters string 15 Optional The built in or user defined server group name This value can be up to 15 characters long Restrictions Only A...

Page 82: ...acacs Server host s authentication protocol xtacacs Server host s authentication protocol tacacs Server host s authentication protocol radius Server host s authentication protocol port Optional The port number of authentication protocol for server host Default value for TACACS XTACACS TACACS is 49 Default value for RADIUS is 1812 int 1 65535 Enter the authentication protocol port number here This ...

Page 83: ...erver host s authentication protocol tacacs Server host s authentication protocol radius Server host s authentication protocol port Optional The port number of authentication protocol for server host Default value for TACACS XTACACS TACACS is 49 Default value for RADIUS is 1812 int 1 65535 Enter the port number here This value must be between 1 and 65535 key Optional The key for TACACS and RADIUS ...

Page 84: ...tacacs tacacs radius Parameters ipaddr Enter the server host s IP address protocol Specify that server host s authentication protocol tacacs Server host s authentication protocol xtacacs Server host s authentication protocol tacacs Server host s authentication protocol radius Server host s authentication protocol Restrictions Only Administrator level users can issue this command Example To delete ...

Page 85: ...ecret Total Entries 1 DGS 3120 24TC admin 5 24 config authen parameter response_timeout Description This command is used to configure the amount of time waiting or user input on console telnet SSH application Format config authen parameter response_timeout int 0 255 Parameters int 0 255 The amount of time for user input on console or telnet or SSH 0 means there is no time out This value must be be...

Page 86: ...t int 1 255 Parameters int 1 255 The amount of attempts for user s trying to login or promote the privilege on console or telnet or SSH This value must be between 1 and 255 Default value is 3 Restrictions Only Administrator level users can issue this command Example To configure the maximum attempts for user s trying to login or promote the privilege to be 9 DGS 3120 24TC admin config authen param...

Page 87: ...d the authentication method tacacs xtacacs tacacs user defined server groups local_enable or none will be used to authenticate the user Because TACACS XTACACS and RADIUS don t support enable function in itself if user wants to use either one of these 3 protocols to do enable authentication user must create a special account on the server host first which has a username enable and then configure it...

Page 88: ... I Format config admin local_enable encrypt plain_text sha_1 password Parameters encrypt Optional Specify the password form plain_text Specify the password in plain text form sha_1 Specify the password in SHA 1 encrypted form password Optional The password for promoting the privilege level The length for a password in plain text form and SHA 1 encrypted form are different plain text Passwords can ...

Page 89: ... fin udp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff protocol_id value 0 255 user_define hex 0x0 0xffffffff mask hex 0x0 0xffffffff packet_content offset_chunk_1 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_2 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_3 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_4 hex 0x0 0xffffffff mas...

Page 90: ...0 0xffffffff offset_chunk_2 value 0 31 hex 0x0 0xffffffff offset_chunk_3 value 0 31 hex 0x0 0xffffffff offset_chunk_4 value 0 31 hex 0x0 0xffffffff ipv6 class flowlabel source_ipv6_mask ipv6mask destination_ipv6_mask ipv6mask tcp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff udp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff icmp type code Option 1 packet_content_mask offset...

Page 91: ... protocol_id_mask Optional Specify that the rule applies to IP protocol ID traffic 0x0 0xff Enter the protocol ID mask here user_define_mask Optional Specify that the rule applies to the IP protocol ID and that the mask option behind the IP header length is 20 bytes hex 0x0 0xffffffff Enter a user defined mask value here packet_content_mask Specify the packet content mask Only one packet_content_m...

Page 92: ... 802 1p ethernet_type Command create access_profile profile_id 1 profile_name 1 ethernet vlan source_mac 00 00 00 00 00 01 destination_mac 00 00 00 00 00 02 802 1p ethernet_type Success DGS 3120 24TC admin create access_profile profile_id 2 profile_name 2 ip vlan source_ip_mask 20 0 0 0 destination_ip_mask 10 0 0 0 dscp icmp type code Command create access_profile profile_id 2 profile_name t2 ip v...

Page 93: ...e_id value 1 6 profile_name name 1 32 add access_id auto_assign value 1 256 ethernet vlan vlan_name 32 vlan_id vlanid 1 4094 mask hex 0x0 0x0fff source_mac macaddr mask macmask destination_mac macaddr mask macmask 802 1p value 0 7 ethernet_type hex0x0 0xffff ip vlan vlan_name 32 vlan_id vlanid 1 4094 mask hex 0x0 0x0fff source_ip ipaddr mask netmask destination_ip ipaddr mask netmask dscp value 0 ...

Page 94: ...ptional Specify the VLAN ID used vlanid 1 4094 Enter the VLAN ID used here This value must be between 1 and 4094 mask Optional Specify an additional mask parameter that can be configured hex 0x0 0x0fff Enter the mask value here source_mac Optional Specify the source MAC address macaddr Enter the source MAC address used for this configuration here mask Optional Specify an additional mask parameter ...

Page 95: ...in this configuration urg Specify that the TCP flag field will be set to urg ack Specify that the TCP flag field will be set to ack psh Specify that the TCP flag field will be set to psh rst Specify that the TCP flag field will be set to rst syn Specify that the TCP flag field will be set to syn fin Specify that the TCP flag field will be set to fin udp Specify to configure the UDP parameters src_...

Page 96: ...Enter the TCP source port value here This value must be between 0 and 65535 mask Specify an additional mask parameter that can be configured hex 0x0 0xffff Enter the TCP source port mask value here dst_port Optional Specify the value of the IPv6 Layer 4 TCP destination port value 0 65535 Enter the TCP destination port value here This value must be between 0 and 65535 mask Specify an additional mas...

Page 97: ...not bound with the flow_meter all matching packets are counted If the rule is bound with the flow_meter then the counter is overridden enable Specify that the ACL counter feature will be enabled disable Specify that the ACL counter feature will be disabled deny Specify that packets matching the access rule are filtered by the Switch mirror Specify that packets matching the access rules are copied ...

Page 98: ...profile name 1 32 Enter the profile name used here This name can be up to 32 characters long Restrictions None Example To display the current access list table DGS 3120 24TC admin show access_profile Command show access_profile Access Profile Table Total User Set Rule Entries 4 Total Used HW Entries 5 Total Available HW Entries 1531 Profile ID 1 Profile name EtherACL Type Ethernet MASK on VLAN 0xF...

Page 99: ... DSCP 0 Action Permit Profile ID 3 Profile name IPv6ACL Type IPv6 MASK on Class TCP Available HW Entries 254 Rule ID 1 Ports 1 3 Match on Class 0 Action Permit Profile ID 4 Profile name PCACL Type User Defined MASK on offset_chunk_1 0 value 0x00000000 offset_chunk_2 1 value 0x00000000 offset_chunk_3 2 value 0x00000000 offset_chunk_4 3 value 0x00000000 Available HW Entries 255 Rule ID 1 Ports 1 4 ...

Page 100: ...e profile_id 2 Command show access_profile profile_id 2 Access Profile Table Profile ID 2 Profile Name 2 Type Ethernet Mask on VLAN 0xF Source MAC FF FF FF 00 00 00 Destination MAC 00 00 00 FF FF FF Available HW Entries 255 Rule ID 22 Ports 1 7 Match on VLAN ID 8 Mask 0xFFF Source MAC 00 01 02 03 04 05 Mask FF FF FF FF FF FF Destination MAC 00 05 04 03 02 00 Mask FF FF FF FF FF 00 Action Deny DGS ...

Page 101: ...two color mode users may set the preferred bandwidth for this rule in Kbps and once the bandwidth has been exceeded overflowing packets will either be dropped or have a drop precedence set depending on the user configuration For single rate three color mode users need to specify the committed rate in Kbps the committed burst size and the excess burst size For the two rate three color mode users ne...

Page 102: ... the committed bandwidth in Kbps for the flow The value m and n are determined by the project value 0 1048576 Enter the rate for single rate two color mode here This value must be between 0 and 1048576 burst_size Optional This specifies the burst size for the single rate two color mode The unit is Kbytes value 0 131072 Enter the burst size value here This value must be between 0 and 131072 rate_ex...

Page 103: ...he packet replace_dscp Optional Changes the DSCP of the packet value 0 63 Enter the replace DSCP value here This value must be between 0 and 63 drop Drops the packet counter Optional Specify the ACL counter This is optional The default is disable The resource may be limited so that a counter cannot be turned on Counters will be cleared when the function is disabled enable Specify that the ACL coun...

Page 104: ...t counter Optional Specify the ACL counter This is optional The default is disable The resource may be limited so that a counter cannot be turned on Counters will be cleared when the function is disabled enable Specify that the ACL counter option will be enabled disable Specify that the ACL counter option will be disabled delete Deletes the specified flow_meter Restrictions Only Administrator Oper...

Page 105: ...0 PBS Kbyte 2000 Action Conform Permit Counter Enabled Exceed Permit Replace DSCP 60 Counter Enabled Violate Drop Counter Disabled Total Entries 1 DGS 3120 24TC admin 6 7 config time_range Description This command is used to define a specific range of time to activate a function on the Switch by specifying which time range in a day and which days in a week are covered in the time range Note that t...

Page 106: ...ekdays that will be included in this configuration here For example mon fri Monday to Friday sun mon fri Sunday Monday and Friday delete Deletes a time range profile When a time_range profile has been associated with ACL entries deleting the time_range profile will fail Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure a time range name...

Page 107: ...L Entries 2 10 3 8 DGS 3120 24TC admin 6 9 show current_config access_profile Description This command is used to display the ACL part of the current configuration when logged in with user level privileges The overall current configuration can be displayed by using the show config command which is accessible with administrator level privileges Format show current_config access_profile Parameters N...

Page 108: ..._config access_profile ACL create access_profile ethernet vlan profile_id 1 config access_profile profile_id 1 add access_id 1 ethernet vlan default port 1 permit create access_profile ip source_ip_mask 255 255 255 255 profile_id 2 config access_profile profile_id 2 add access_id 1 ip source_ip 10 10 10 10 port 2 deny DGS 3120 24TC admin ...

Page 109: ...5535 mask hex 0x0 0xffff protocol_id value 0 255 user_define hex 0x0 0xffffffff mask hex 0x0 0xffffffff ipv6 class value 0 255 source_ipv6 ipv6addr mask ipv6mask destination_ipv6 ipv6addr mask ipv6mask tcp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff udp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff icmp type value 0 ...

Page 110: ... must be between 1 and 4 profile_name The name of the profile must be specified The maximum length is 32 characters name 1 32 Enter the profile name used here This name can be up to 32 characters long ethernet Specify this is an Ethernet mask vlan Optional Specify a VLAN mask hex 0x0 0x0fff Enter the VLAN mask used here source_mac Optional Specify the source MAC mask macmask Enter the source MAC m...

Page 111: ...pv6_mask Optional Specify an IPv6 source sub mask ipv6mask Enter the IPv6 source sub mask value here destination_ipv6_mask Specify an IPv6 destination sub mask ipv6mask Enter the IPv6 destination sub mask value here tcp Optional Specify that the following parameter are application to the TCP configuration src_port_mask Specify an IPv6 Layer 4 TCP source port mask hex 0x0 0xffff Enter the Ipv6 TCP ...

Page 112: ...3120 24TC admin delete egress_access_profile profile_id 1 Command delete egress_access_profile profile_id 1 Success DGS 3120 24TC admin 7 3 config egress_access_profile Description This command is used to configure egress access list entries Format config egress_access_profile profile_id value 1 4 profile_name name 1 32 add access_id auto_assign value 1 128 ethernet vlan vlan_name 32 vlan_id vlani...

Page 113: ...me can be up to 32 characters long vlanid Specify a VLAN ID vlanid 1 4094 Enter the VLAN ID used for this congfiguration here This value must be between 1 and 4094 source_mac Optional Specify the source MAC address macaddr Enter the source MAC address used here mask Specify that source MAC mask used macmask Enter the source MAC mask value here destination_mac Specify the destination MAC address ma...

Page 114: ...Specify that the TCP flag field will be set to all urg Specify that the TCP flag field will be set to urg ack Specify that the TCP flag field will be set to ack psh Specify that the TCP flag field will be set to psh rst Specify that the TCP flag field will be set to rst syn Specify that the TCP flag field will be set to syn fin Specify that the TCP flag field will be set to fin udp Optional Specif...

Page 115: ...iguration type Specify that the rule will apply to the ICMP type traffic value value 0 255 Enter the ICMP traffic type value here This value must be between 0 and 255 code Specify that the rule will apply to the ICMP code traffic value value 0 255 Enter the ICMP code traffic value here This value must be between 0 and 255 vlan_based The rule applies on the specified VLAN vlan Specify the VLAN name...

Page 116: ...tch the specified source IP DSCP and destination IP field it will not be dropped DGS 3120 24TC admin config egress_access_profile profile_id 2 add access_id auto_assign ip source_ip 10 0 0 1 dscp 25 destination_ip 10 90 90 90 port_group id 1 permit Command config egress_access_profile profile_id 2 add access_id auto_assign ip source_ip 10 0 0 1 dscp 25 destination_ip 10 90 90 90 port_group id 1 pe...

Page 117: ...g If no parameter is specified will show the all egress access profile Restrictions None Example To display current egress access list table DGS 3120 24TC admin show egress_access_profile Command show egress_access_profile Egress Access Profile Table Total User Set Rule Entries 3 Total Used HW Entries 4 Total Available HW Entries 508 Profile ID 1 Profile name EthernetACL Type Ethernet MASK on VLAN...

Page 118: ...3 Match on DSCP 3 Action Permit Profile ID 3 Profile name IPv6 Type IPv6 MASK on Class Available HW Entries 126 Rule ID 1 auto assign Ports 1 4 Match on Class 10 Action Permit DGS 3120 24TC admin The following example displays an egress access profile that supports an entry mask for each rule ...

Page 119: ...to assign Ports 1 1 Match on 802 1p 0 Action Permit DGS 3120 24TC admin 7 5 show current_config egress_access_profile Description This command is used to display the egress ACL part of current configuration in user level of privilege The overall current configuration can be displayed by show config command which is accessible in administrator level of privilege Format show current_config egress_ac...

Page 120: ..._ip 10 90 90 90 dscp 25 port_group id 1 permit DGS 3120 24TC admin 7 6 config egress_flow_meter Description This command is used to configure the packet flow based metering based on an egress access profile and rule Format config egress_flow_meter profile_id value 1 4 profile_name name 1 32 access_id value 1 128 rate value 0 1048576 burst_size value 0 131072 rate_exceed drop_packet remark_dscp val...

Page 121: ...it is in Kbps PIR should always be equal to or greater than CIR value 0 1048576 Enter the peak information rate value here pbs Optional Specify the Peak Burst Size The unit is in Kbytes value 0 131072 Enter the peak burst size value here color_blind Optional Specify the meter mode to be color blind The default is color blind mode color_aware Optional Specify the meter mode to be color aware When t...

Page 122: ...the replace DSCP value here This value must be between 0 and 63 counter Optional Specify the ACL counter This is optional The default is disable The resource may be limited so that a counter cannot be turned on Counters will be cleared when the function is disabled enable Specify that the ACL counter parameter will be enabled disable Specify that the ACL counter parameter will be disabled exceed S...

Page 123: ...eter Description This command is used to display the egress flow based metering configuration Format show egress_flow_meter profile_id value 1 4 profile_name name 1 32 access_id value 1 128 Parameters profile_id Optional Specify the index of access list profile value 1 4 Enter the profile ID used here This value must be between 1 and 4 profile_name Optional Specify the name of the profile name 1 3...

Page 124: ... EBS Kbyte 200 Action Conform Permit Counter Enabled Exceed Permit Replace DSCP 60 Counter Enabled Violate Drop Counter Disabled Total Entries 2 DGS 3120 24TC admin 7 8 create port_group Description This command is used to create a port group Format create port_group id value 1 64 name name 16 Parameters id Specify the port group ID value 1 64 Enter the port group ID here This value must be betwee...

Page 125: ...ort group name name 16 Enter the port group name here This name can be up to 16 characters long add Add a port list to this port group delete Delete a port list from this port group portlist Enter a list of ports used for the configuration here all Specify that all the ports will be used for this configuration Restrictions Only Administrator and Operator level users can issue this command Example ...

Page 126: ...port_group id 2 Command delete port_group id 2 Success DGS 3120 24TC admin 7 11 show port_group Description This command is used to display the port group information Format show port_group id value 1 64 name name 16 Parameters id Optional Specify the port group ID value 1 64 Enter the port group ID used here This value must be between 1 and 64 name Optional Specify the port group name name 16 Ent...

Page 127: ...20 Series Managed Switch CLI Reference Guide 123 DGS 3120 24TC admin show port_group Command show port_group Port Group Table Port Group ID Port Group Name Ports 2 group2 1 1 1 3 Total Entries 1 DGS 3120 24TC admin ...

Page 128: ...ntry ipaddr macaddr Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a static ARP entry for the IP address 10 48 74 121 and MAC address 00 50 BA 00 07 36 DGS 3120 24TC admin create arpentry 10 48 74 121 00 50 BA 00 07 ...

Page 129: ...1 Command delete arpentry 10 48 74 121 Success DGS 3120 24TC admin 8 3 config arpentry Description This command is used to configure a static entry s MAC address in the ARP table Specify the IP address and MAC address of the entry Format config arpentry ipaddr macaddr Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restricti...

Page 130: ...ssed before it is dropped from the table Format config arp_aging time min 0 65535 Parameters min 0 65535 Enter the ARP age out time in minutes This value must be between 0 and 65535 minutes The default value is 20 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure ARP aging time to 30 minutes DGS 3120 24TC admin config arp_aging time 30 ...

Page 131: ...ry ipif ipif_name 12 ipaddress ipaddr static mac_address macaddr Parameters ipif Optional The name of the IP interface the end node or station for which the ARP table entry was made resides on ipif_name 12 Enter the IP interface name here This value can be up to 12 characters long ipaddress Optional The IP address of the end node or station ipaddr Enter the IP address here static Optional Display ...

Page 132: ...rface IP Address MAC Address Type System 10 0 0 0 FF FF FF FF FF FF Local Broadcast System 10 1 1 1 00 02 03 04 05 06 Static System 10 1 1 2 00 02 03 04 05 06 Dynamic System 10 1 1 3 00 02 03 04 05 06 Static System 10 90 90 90 00 01 02 03 04 00 Local System 10 255 255 255 FF FF FF FF FF FF Local Broadcast Total Entries 6 DGS 3120 24TC admin ...

Page 133: ...ofing_prevention add gateway_ip ipaddr gateway_mac macaddr ports portlist all delete gateway_ip ipaddr Parameters add Specify to add an ARP spoofing prevention entry gateway_ip Specify a gateway IP address to be configured ipaddr Enter the IP address used for this configuration here gateway_mac Specify a gateway MAC address to be configured macaddr Enter the MAC address used for this configuration...

Page 134: ... admin 9 2 show arp_spoofing_prevention Description This command is used to show the ARP spoofing prevention entry Format show arp_spoofing_prevention Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To display the ARP spoofing prevention entries DGS 3120 24TC admin show arp_spoofing_prevention Command show arp_spoofing_prevention ARP Spoofing...

Page 135: ...tric VLAN function on the Switch Format enable asymmetric_vlan Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable asymmetric VLANs DGS 3120 24TC admin enable asymmetric_vlan Command enable asymmetric_vlan Success DGS 3120 24TC admin 10 2 disable asymmetric_vlan Description This command is used to disable the asymmetric VLAN ...

Page 136: ...asymmetric_vlan Command disable asymmetric_vlan Success DGS 3120 24TC admin 10 3 show asymmetric_vlan Description This command is used to display the asymmetric VLAN state on the Switch Format show asymmetric_vlan Parameters None Restrictions None Example To display the asymmetric VLAN state currently set on the Switch DGS 3120 24TC admin show asymmetric_vlan Command show asymmetric_vlan Asymmetri...

Page 137: ... IP address from the DHCP server Then the Switch will download the configuration file from the TFTP server for configuration of the system Format enable autoconfig Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable autoconfig DGS 3120 24TC admin enable autoconfig Command enable autoconfig Success DGS 3120 24TC admin 11 2 disable autoco...

Page 138: ...oconfig Command disable autoconfig Success DGS 3120 24TC admin 11 3 show autoconfig Description This command is used to display if the auto configuration is enabled or disabled Format show autoconfig Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To show autoconfig status DGS 3120 24TC admin show autoconfig Command show autoconfig...

Page 139: ...client enable disable dhcp_option12 hostname hostname 63 clear_hostname state enable disable delete ipif ipif_name 12 ipv6address ipv6networkaddr all EI Mode Only enable ipif ipif_name 12 all EI Mode Only disable ipif ipif_name 12 all EI Mode Only show ipif ipif_name 12 enable ipif_ipv6_link_local_auto ipif_name 12 all EI Mode Only disable ipif_ipv6_link_local_auto ipif_name 12 all EI Mode Only sh...

Page 140: ...ccount admin dlink Command create account admin dlink Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3120 24TC admin To create the user level user Remote Manager DGS 3120 24TC admin create account user Remote Manager Command create account user Remote Manager Enter a case sensitive new password Enter the new password again for confirmation Success DGS...

Page 141: ...d the length is fixed to 35 bytes long The assword is case sensitive Restrictions Only Administrator level users can issue this command Example To configure the user password of dlink account DGS 3120 24TC admin config account dlink Command config account dlink Enter a old password Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3120 24TC admin To conf...

Page 142: ...evel admin Admin oper Operator power Power_user user User Total Entries 4 DGS 3120 24TC admin 12 4 delete account Description This command is used to delete an existing account Format delete account username Parameters username Name of the user who will be deleted Restrictions Only Administrator level users can issue this command Example To delete the user account System DGS 3120 24TC admin delete...

Page 143: ...abit Ethernet Switch Unit ID 1 MAC Address 00 01 02 03 04 00 IP Address 10 90 90 90 Manual VLAN Name default Subnet Mask 255 0 0 0 Default Gateway 0 0 0 0 Boot PROM Version Build 1 00 010 Firmware Version Build 1 02 013 Hardware Version A1 Firmware Type EI Serial Number abcd1234 System Name System Location System Uptime 0 days 0 hours 22 minutes 53 seconds System Contact Spanning Tree Disabled GVR...

Page 144: ...red between 1 and 65535 The well known TCP port for the TELNET protocol is 23 Restrictions Only Administrator and Operator level users can issue this command Example To enable TELNET and configure port number DGS 3120 24TC admin enable telnet 23 Command enable telnet 23 Success DGS 3120 24TC admin 12 7 disable telnet Description This command is used to manage the Switch via TELNET based management...

Page 145: ...535 Parameters tcp_port_number 1 65535 Optional The TCP port number TCP ports are numbered between 1 and 65535 The well known TCP port for the WEB protocol is 80 Restrictions Only Administrator and Operator level users can issue this command Example To enable HTTP and configure port number DGS 3120 24TC admin enable web 80 Command enable web 80 Note SSL will be disabled if web is enabled Success D...

Page 146: ...in 12 10 reboot Description This command is used to restart the Switch Format reboot force_agree Parameters force_agree Optional When force_agree is specified the reboot command will be executed immediatedly without further confirmation Restrictions Only Administrator level users can issue this command Example To reboot the Switch DGS 3120 24TC admin reboot Command reboot Are you sure to proceed w...

Page 147: ... save neither reboot system Optional If you specify the system keyword all parameters are reset to default settings Then the Switch will do factory reset save and reboot force_agree Optional When force_agree is specified the reset command will be executed immediatedly without further confirmation Restrictions Only Administrator level users can issue this command Example To reset the Switch DGS 312...

Page 148: ...dmin 12 13 create ipif EI Mode Only Description This command is used to create an IP interface Format create ipif ipif_name 12 network_address vlan_name 32 secondary state enable disable proxy_arp enable disable local enable disable Parameters ipif Specify the name of the IP interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long network_address Optional S...

Page 149: ...ommand create ipif Inter2 192 168 16 1 24 default state enable secondary Success DGS 3120 24TC admin 12 14 config ipif Description This command is used to configure the IP interface Format config ipif ipif_name 12 ipaddress network_address vlan vlan_name 32 state enable disable proxy_arp enable disable local enable disable bootp dhcp ipv6 ipv6address ipv6networkaddr state enable disable ipv4 state...

Page 150: ...nabled or disabled EI Mode Only enable Specify that the IPv6 interface sate will be enabled disable Specify that the IPv6 interface sate will be disabled ipv4 Specify that the IPv4 configuration will be done state Specify that the IPv4 interface state will be set to enabled or disabled enable Specify that the IPv4 interface sate will be enabled disable Specify that the IPv4 interface sate will be ...

Page 151: ...e used here This name can be up to 12 characters long ipv6address Optional Specify the IPv6 network address The address should specify a host address and length of network prefix There can be multiple V6 addresses defined on an interface ipv6networkaddr Enter the IPv6 address used here all Specify that all the IP interfaces will be used Restrictions Only Administrator Operator and Power User level...

Page 152: ...pif newone Command enable ipif newone Success DGS 3120 24TC admin 12 17 disable ipif EI Mode Only Description This command is used to disable an IP interface Format disable ipif ipif_name 12 all Parameters ipif_name Specify the name of the IP interface ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long all Specify that all the IP interfaces will be disable...

Page 153: ...HCPv6 Client State Disabled Link Status LinkUp IPv4 Address 10 90 90 90 8 Manual Primary Proxy ARP Disabled Local Disabled IPv4 State Enabled IPv6 State Enabled DHCP Option12 State Disabled DHCP Option12 Host Name Total Entries 1 DGS 3120 24TC admin 12 19 enable ipif_ipv6_link_local_auto EI Mode Only Description This command is used to enable the auto configuration of link local address when there...

Page 154: ...enable the IP interface for IPv6 link local automatic DGS 3120 24TC admin enable ipif_ipv6_link_local_auto newone Command enable ipif_ipv6_link_local_auto newone Success DGS 3120 24TC admin 12 20 disable ipif_ipv6_link_local_auto EI Mode Only Description This command is used to disable the auto configuration of link local address when no IPv6 address are configured Format disable ipif_ipv6_link_lo...

Page 155: ... automatic configuration state Format show ipif_ipv6_link_local_auto ipif_name 12 Parameters ipif_name 12 Optional Enter the Ip interface name used here This name can be up to 12 characters long Restrictions Only Administrator Operator and Power User level users can issue this command Example T o display the link local address automatic configuration state DGS 3120 24TC admin show ipif_ipv6_link_l...

Page 156: ... protection can only be enabled on STP disabled port BPDU protection has high priority than fbpdu setting configured by configure STP command in determination of BPDU handling That is when fbpbu is configured to forward STP BPDU but BPDU protection is enabled then the port will not forward STP BPDU Format config bpdu_protection ports portlist all state enable disable mode drop block shutdown 1 Par...

Page 157: ...nable the port Format config bpdu_protection recovery_timer sec 60 1000000 infinite Parameters recovery_timer Specified the bpdu_protection Auto Recovery recovery_timer The default value of recovery_timer is 60 sec 60 1000000 The timer in seconds used by the Auto Recovery mechanism to recover the port The valid range is 60 to 1000000 infinite The port will not be auto recovered Restrictions Only A...

Page 158: ...tected and attack_cleared shall be trapped or logged Restrictions Only Administrator Operator and Power User level users can issue this command Example To config the bpdu_protection trap state as both for the entire switch DGS 3120 24TC admin config bpdu_protection trap both Commands config bpdu_protection trap both Success DGS 3120 24TC admin 13 4 enable bpdu_protection Description This command i...

Page 159: ... Only Administrator Operator and Power User level users can issue this command Example To disable bpdu_protection function globally for the entire switch DGS 3120 24TC admin disable bpdu_protection Commands disable bpdu_protection Success DGS 3120 24TC admin 13 6 show bpdu_protection Description This command is used to display BPDU protection global configuration or per port configuration and curr...

Page 160: ...U Protection Log State None DGS 3120 24TC admin To show the bpdu_protection status ports 1 12 DGS 3120 24TC admin show bpdu_protection ports 1 12 Commands show bpdu_protection ports 1 12 Port State Mode Status 1 Enabled shutdown Normal 2 Enabled shutdown Normal 3 Enabled shutdown Normal 4 Enabled shutdown Normal 5 Enabled shutdown Under Attack 6 Enabled shutdown Normal 7 Enabled shutdown Normal 8 ...

Page 161: ...ain the distance of the cable Since the status is link up the cable will not have the short or open problem But the test may still detect the crosstalk problem When a port is in link down status the link down may be caused by many factors 1 When the port has a normal cable connection but the remote partner is powered off the cable diagnosis can still diagnose the health of the cable as if the remo...

Page 162: ...n with no errors and the link is down this command cannot detect the cable length When the link partner is powered down with errors this command can detect whether the error is open short or crosstalk In this case this command can also detect the distance of the error When there is no link partner with no errors and the link is up this command can detect the cable length When there is no link part...

Page 163: ...1 11 and 12 DGS 3120 24TC admin cable_diag ports 1 1 1 11 1 12 Command cable_diag ports 1 1 1 11 1 12 Perform Cable Diagnostics Port Type Link Status Test Result Cable Length M 1 1 1000BASE T Link Up OK 1 1 11 1000BASE T Link Down No Cable 1 12 1000BASE T Link Down No Cable DGS 3120 24TC admin ...

Page 164: ...should not be logged When the user under AAA authentication the user name should not changed if user uses enable admin command to replace its privilege Format enable command logging Parameters None Restrictions Only Administrator level users can issue this command Example To enable the command logging function DGS 3120 24TC admin enable command logging Command enable command logging Success DGS 31...

Page 165: ...g Success DGS 3120 24TC admin 15 3 show command logging Description This command is used to display the Switch s general command logging configuration status Format show command logging Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To show the command logging configuration status DGS 3120 24TC admin show command logging Command show command...

Page 166: ...orization attributes disable authorization attributes show authorization config authentication server failover local permit block show authentication 16 1 create authentication guest_vlan EI Mode Only Description This command is used to assign a static VLAN to be guest VLAN The specific VLAN which assigned to guest VLAN must be existed The specific VLAN which assigned to guest VLAN can t be delete...

Page 167: ...guest VLAN by VLAN name vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify the guest VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID here This ID must be between 1 and 4094 Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete guest VLAN configuration DGS 3120 24TC admin delete authentication guest_v...

Page 168: ...tication ports Description This command is used to configure security port s Format config authentication ports portlist all auth_mode port_based host_based vlanid vid_list state enable disable multi_authen_methods none any dot1x_impb impb_jwac impb_wac mac_impb Parameters portlist Enter the list of ports to be configured here all Specify all ports on the Switch auth_mode Optional Specify the auth...

Page 169: ...ot1x will be verified first and then IMPB will be verified Both authentication need to be passed impb_jwac JWAC will be verified first and then IMPB will be verified Both authentication need to be passed impb_wac WAC will be verified first and then IMPB will be verified Both authentication need to be passed mac_impb MAC AC will be verified first and then IMPB will be verified Both authentication n...

Page 170: ...t VLAN VID 1 3 Guest VLAN Member Ports 1 1 1 8 Total Entries 2 DGS 3120 24TC admin 16 6 show authentication ports Description This command is used to display authentication setting on port s Format show authentication ports portlist Parameters portlist Enter a list of ports to be displayed If not specify the port list displays compound authentication setting of all ports Restrictions None Example ...

Page 171: ...20 8 802 1X_IMPB Host based 9 None Host based DGS 3120 24TC admin 16 7 enable authorization Description This command is used to enable authorization Format enable authorization attributes Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example This example sets authorization global state enabled DGS 3120 24TC admin enable authorization att...

Page 172: ... this command Example This example sets authorization global state disabled DGS 3120 24TC admin disable authorization attributes Command disable authorization attributes Success DGS 3120 24TC admin 16 9 show authorization Description This command is used to display authorization status Format show authorization Parameters None Restrictions None Example This example displays authorization status ...

Page 173: ...meters local Use local DB to authenticate the client permit The client is always regarded as authenticated block Block the client Default setting Restrictions Only Administrator Operator and Power User level users can issue this command Example Set authentication server auth fail over state DGS 3120 24TC admin config authentication server failover local Command config authentication server failove...

Page 174: ...GS 3120 24TC admin show authentication Command show authentication Authentication Server Failover Block DGS 3120 24TC admin show authentication Command show authentication Authentication Server Failover Permit DGS 3120 24TC admin show authentication Command show authentication Authentication Server Failover Local DGS 3120 24TC admin ...

Page 175: ...p to three filter strings ex stp A filter string is enclosed by symbol The following describes the meaning of the each filter type include includes lines that contain the specified filter string exclude excludes lines that contain the specified filter string begin The first line that contains the specified filter string will be the first line of the output The relationship of multiple filter strin...

Page 176: ...characters long include Optional Include lines that contain the specified filter string exclude Optional Exclude lines that contain the specified filter string begin Optional The first line that contains the specified filter string will be the first line of the output filter_string 80 A filter string is enclosed by symbol Thus the filter string itself cannot contain the character The filter string...

Page 177: ... state disabled disable sim disable stp disable ssh Output truncated DGS 3120 24TC admin 17 2 config configuration Description This command is used to select a configuration file as the next boot up configuration or to apply a specific configuration to the system This command is required when multiple configuration files are supported Format config configuration unit unit_id pathname boot_up activ...

Page 178: ... If the configuration ID or configuration file name is not specified the next boot up configuration is implied Format save config pathname log all Parameters config Optional Specify to save the configuration to a file pathname The pathname specifies the absolute pathname on the device file system If pathname is not specified it refers to the boot up configuration file log Optional Specify to save ...

Page 179: ...erence Guide 175 Format show boot_file Parameters None Restrictions None Example To display the boot file DGS 3120 24TC admin show boot_file Command show boot_file Bootup Firmware c runtime had Bootup Configuration c config cfg DGS 3120 24TC admin ...

Page 180: ... by the SNMP agent when the configuration is saved in NVRAM enable Send the trap by the SNMP agent when the configuration is saved in NVRAM disable No trap will be send upload Optional Enable or disable sending the trap by the SNMP agent when successfully uploading configuration enable Send the trap by the SNMP agent when successfully uploading configuration disable No trap will be send download O...

Page 181: ...xStack DGS 3120 Series Managed Switch CLI Reference Guide 177 ...

Page 182: ...5 ma string 22 ma_index uint 1 4294967295 delete cfm ma string 22 ma_index uint 1 4294967295 md string 22 md_index uint 1 4294967295 delete cfm md string 22 md_index uint 1 4294967295 enable cfm disable cfm config cfm ports portlist state enable disable show cfm ports portlist show cfm md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid int 1 8191 mepname string 3...

Page 183: ...ween 1 and 7294967295 level Specify the maintenance domain level int 0 7 Enter the maintenance domain level here This value must be between 0 and 7 Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a maintenance domain called op_domain and assign a maintenance domain level of 2 DGS 3120 24TC admin create cfm md op_domain level 2 Command cr...

Page 184: ... TLV none Do not transmit the sender ID TLV This is the default value chassis Transmit the sender ID TLV with the chassis ID information manage Transmit the sender ID TLV with the managed address information chassis_manage Transmit sender ID TLV with chassis ID information and manage address information Restrictions Only Administrator Operator and Power User level users can issue this command Exam...

Page 185: ... MA can be located in different devices MEPs must be created on the ports of these devices explicitly An MEP will transmit a CCM packet periodically across the MA The receiving MEP will verify these received CCM packets from the other MEPs against this MEP list for the configuration integrity check Format config cfm ma string 22 ma_index uint 1 4294967295 md string 22 md_index uint 1 4294967295 vl...

Page 186: ...aintenance domain that this MA is associated with This is the default value ccm_interval Optional This is the CCM interval 100ms Specify that the CCM interval will be set to 100 milliseconds Not recommended 1sec Specify that the CCM interval will be set to 1 second 10sec Specify that the CCM interval will be set to 10 seconds This is the default value 1min Specify that the CCM interval will be set...

Page 187: ...ring 22 Enter the maintenance association name used here This name can be up to 22 characters long ma_index Specify the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 direction This is the MEP direction inward Specify the inward facing up MEP outward Specify the outward facing down MEP port Specify the ...

Page 188: ..._index Specify the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 state Optional This is the MEP administrative state enable Specify that the MEP will be enabled disable Specify that the MEP will be disabled This is the default value ccm Optional This is the CCM transmission state enable Specify that th...

Page 189: ...nd is used to delete a previously created MEP Format delete cfm mep mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 Parameters mepname Specify the MEP name string 32 Enter the MEP name used here This name can be up to 32 characters long mepid Specify the MEP ID int 1 8191 Enter the MEP ID used here This value must be between 1 and ...

Page 190: ...967295 md string 22 md_index uint 1 4294967295 Parameters string 22 Enter the maintenance association name This name can be up to 22 characters long ma_index Specify the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 md Specify the maintenance domain name string 22 Enter the maintenance domain name used...

Page 191: ...md string 22 md_index uint 1 4294967295 Parameters string 22 Enter the maintenance domain name This name can be up to 22 characters long md_index Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295 Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete ...

Page 192: ...lly DGS 3120 24TC admin enable cfm Command enable cfm Success DGS 3120 24TC admin 19 11 disable cfm Description This command is used to disable the CFM globally Format disable cfm Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the CFM globally DGS 3120 24TC admin disable cfm Command disable cfm Success DGS 3120 24TC adm...

Page 193: ...disabled on that port Format config cfm ports portlist state enable disable Parameters portlist Enter the list of ports used for this configuration here state Specify that the the CFM function will be enabled or disabled enable Specify that the the CFM function will be enabled disable Specify that the the CFM function will be disabled Restrictions Only Administrator Operator and Power User level u...

Page 194: ...ame used here This name can be up to 22 characters long md_index Optional Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295 ma Optional Specify the maintenance association name string 22 Enter the maintenance association name used here This name can be up to 22 characters long ma_index Optional Specify t...

Page 195: ...p_domain Command show cfm md op_domain MD Index 1 MD Name op_domain MD Level 2 MIP Creation Explicit SenderID TLV None MA Index MA Name VID 1 op1 1 DGS 3120 24TC admin show cfm md op_domain ma op1 Command show cfm md op_domain ma op1 MA Index 1 MA Name op1 MA VID 1 MIP Creation Defer CCM Interval 1 second SenderID TLV Defer MEPID List 1 MEPID Direction Port Name MAC Address 1 Inward 1 2 mep1 00 01...

Page 196: ...Ms 0 received Cross connect CCMs 0 received Error CCMs 0 received Normal CCMs 0 received Port Status CCMs 0 received If Status CCMs 0 received CCMs transmitted 71 In order LBRs 0 received Out of order LBRs 0 received Next LTM Trans ID 0 Unexpected LTRs 0 received LBMs Transmitted 0 AIS PDUs 0 received AIS PDUs Transmitted 0 LCK PDUs 0 received LCK PDUs Transmitted 0 Remote MEPID MAC Address Status...

Page 197: ... Specify the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 Restrictions None Example To show the CFM faults DGS 3120 24TC admin show cfm fault Command show cfm fault MD Name MA Name MEPID Status AIS Status LCK Status op_domain op1 1 Cross connect CCM Received DGS 3120 24TC admin 19 16 show cfm port Des...

Page 198: ...MAC address represents the destination MEP or MIP that can be reached by this MAC address The MEP represents the source MEP to initiate the loopback message Format cfm loopback macaddr mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 num int 1 65535 length int 0 1500 pattern string 1500 pdu_priority int 0 7 Parameters macaddr Enter ...

Page 199: ...0 characters long pdu_priority Optional The 802 1p priority to be set in the transmitted LBMs If not specified it uses the same priority as CCMs and LTMs sent by the MA int 0 7 Enter the PDU priority value here This value must be between 0 and 7 Restrictions Only Administrator Operator and Power User level users can issue this command Example To transmit a LBM DGS 3120 24TC admin cfm loopback 00 0...

Page 200: ... value The default value is 64 int 2 255 Enter the link trace message TTL value here This value must be between 2 and 255 pdu_priority Optional The 802 1p priority to be set in the transmitted LTM If not specified it uses the same priority as CCMs sent by the MA int 0 7 Enter the PDU priority value here This value must be between 0 and 7 Restrictions Only Administrator Operator and Power User leve...

Page 201: ...maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must between 1 and 4294967295 trans_id Optional Specify the identifier of the transaction displayed uint Enter the transaction ID used here Restrictions None Example To show the link trace reply when the all MPs reply LTRs function is enabled DGS 3120 24TC admin show cfm linktrace mepname ...

Page 202: ... mepname string 32 Parameters md Optional Specify the maintenance domain name string 22 Enter the maintenance domain name her This name can be up to 22 characters long md_index Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295 ma Optional Specify the maintenance association name string 22 Enter the maint...

Page 203: ...All entries in the MIP CCM database will be shown A MIP CCM entry is similar to a FDB which keeps the forwarding port information of a MAC entry Format show cfm mipccm Parameters None Restrictions None Example To show MIP CCM database entries DGS 3120 24TC admin show cfm mipccm Command show cfm mipccm MA VID MAC Address Port opma 1 xx xx xx xx xx xx 2 opma 1 xx xx xx xx xx xx 3 Total 2 DGS 3120 24...

Page 204: ...d Example To enable the all MPs reply LTRs function DGS 3120 24TC admin config cfm mp_ltr_all enable Command config cfm mp_ltr_all enable Success DGS 3120 24TC admin 19 23 show cfm mp_ltr_all Description This command is used to show the current configuration of the all MPs reply LTRs function Format show cfm mp_ltr_all Parameters None Restrictions None Example To show the configuration of the all ...

Page 205: ...rs long md_index Specify the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must between 1 and 4294967295 ma Specify the maintenance association name string 22 Enter the maintenance association name her This name can be up to 22 characters long ma_index Specify the maintenance association index uint 1 4294967295 Enter the maintenance association...

Page 206: ... show cfm pkt_cnt ports portlist rx tx rx tx ccm Parameters ports Optional Specify the port counters to show If not specified all ports will be shown portlist Enter the list of ports used for this configuration here rx Optional Specify to display the RX counter tx Optional Specify to display the TX counter If not specified both of them will be shown rx Optional Specify to display the RX counter tx...

Page 207: ...0 0 0 0 4 578 578 0 0 0 0 5 578 578 0 0 0 0 6 578 578 0 0 0 0 7 578 578 0 0 0 0 8 578 578 0 0 0 0 9 578 578 0 0 0 0 10 578 578 0 0 0 0 11 578 578 0 0 0 0 12 578 578 0 0 0 0 DGS 3120 24TC admin show cfm pkt_cnt ccm Command show cfm pkt_cnt ccm CCM RX counters XCON Cross connect CCMs Error Error CCMs Normal Normal CCMs MEP Name VID Port Level Direction XCON Error Normal mep1 1 1 2 inward 9 8 100 mep...

Page 208: ...ers Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear the CFM packet s RX TX counters DGS 3120 24TC admin clear cfm pkt_cnt Command clear cfm pkt_cnt Success DGS 3120 24TC clear cfm pkt_cnt ccm Command clear cfm pkt_cnt ccm Success DGS 3120 24TC admin 19 27 config cfm trap Description This command is used to configure the state of the CFM t...

Page 209: ...trap state This is the default disable Disable the CFM trap state Restrictions Only Administrator Operator and Power User level users can issue this command Example DGS 3120 24TC admin config cfm trap ais state enable Command config cfm trap ais state enable Success DGS 3120 24TC admin ...

Page 210: ...ing higher level MD and MA on the device When the most immediate client layer MIPs and MEPs do not exist the default client MD level cannot be calculated If the default client MD level cannot be calculated and user doesn t designate a client level the AIS and LCK PDU cannot be transmitted Format config cfm ais md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid in...

Page 211: ...a op ma mepid 1 state enable level 5 Success DGS 3120 24TC admin 20 2 config cfm lock Description This command is used to configure the parameters of LCK function on a MEP The default client MD level is MD level at which the most immediate client layer MIPs and MEPs exist Note This default client MD level is not a fixed value It may change when creating or deleting higher level MD and MA on the de...

Page 212: ...Specify that the LCK function will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the LCK function enabled and client level is 5 DGS 3120 24TC admin config cfm lock md op domain ma op ma mepid 1 state enable level 5 Command config cfm lock md op domain ma op ma mepid 1 state enable level 5 Success DGS 3120 24TC admin 20 3...

Page 213: ...nt 1 8191 Enter the remote MEP ID used here This value must be between 1 and 8191 action Specify to start or to stop the management lock function start Specify to start the management lock function stop Specify to stop the management lock function Restrictions Only Administrator Operator and Power User level users can issue this command Example To start management lock DGS 3120 24TC admin cfm lock...

Page 214: ...ip ipaddr destination_ip ipaddr dscp value 0 63 icmp type value 0 255 code value 0 255 igmp type value 0 255 tcp src_port value 0 65535 dst_port value 0 65535 flag all urg ack psh rst syn fin udp src_port value 0 65535 dst_port value 0 65535 protocol_id value 0 255 user_define hex 0x0 0xffffffff packet_content offset_0 15 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff ...

Page 215: ...c igmp Specify that the rule applies to IGMP traffic type Optional Specify that the rule applies to IGMP type traffic tcp Specify that the rule applies to TCP traffic src_port_mask Optional Specify the TCP source port mask hex 0x0 0xffff Enter the source TCP port mask here dst_port_mask Optional Specify the TCP destination port mask hex 0x0 0xffff Enter the destination TCP port mask here flag_mask...

Page 216: ...6 class flowlabel Optional Specify the IPv6 flowlabel source_ipv6_mask Optional Specify an IPv6 source submask ipv6mask Enter the IPv6 source submask here destination_ipv6_mask Optional Specify an IPv6 destination submask ipv6mask Enter the IPv6 destination submask here tcp Optional Specify that the rule applies to TCP traffic src_port_mask Specify an IPv6 Layer 4 TCP source port mask hex 0x0 0xff...

Page 217: ...estination_ip_mask 10 0 0 0 dscp icmp type code Success DGS 3120 24TC admin 21 2 delete cpu access_profile Description This command is used to delete CPU access list rules Format delete cpu access_profile profile_id value 1 5 all Parameters profile_id Specify the index of access list profile value 1 5 Enter the profile ID value here This value must be between 1 and 5 all Specify that al the access...

Page 218: ...ere This value must be between 1 and 5 access_id Specify the index of access list entry The range of this value is 1 100 value 1 100 Enter the access ID here This value must be between 1 and 100 ethernet Specify that the profile type will be Ethernet vlan Optional Specify the VLAN name used vlan_name 32 Enter the name of the VLAN here This name can be up to 32 characters long vlan_id Optional Spec...

Page 219: ...CP flag field mask will be set to urg ack Specify that the TCP flag field mask will be set to ack psh Specify that the TCP flag field mask will be set to psh rst Specify that the TCP flag field mask will be set to rst syn Specify that the TCP flag field mask will be set to syn fin Specify that the TCP flag field mask will be set to fin udp Specify that the rule applies to UDP traffic src_port Opti...

Page 220: ...an be configured hex 0x0 0xffff Enter the TCP source port mask value here dst_port Optional Specify the value of the IPv6 Layer 4 TCP destination port value 0 65535 Enter the TCP destination port value here This value must be between 0 and 65535 mask Specify an additional mask parameter that can be configured hex 0x0 0xffff Enter the TCP destination port mask value here udp Optional Specify to con...

Page 221: ...fault source_ip 20 2 2 3 destination_ip 10 1 1 252 dscp 3 icmp type 11 code 32 port 1 deny Command config cpu access_profile profile_id 1 add access_id 1 ip vlan default source_ip 20 2 2 3 destination_ip 10 1 1 252 dscp 3 icmp type 11 code 32 port 1 deny Success DGS 3120 24TC admin 21 4 enable cpu interface filtering Description This command is used to enable CPU interface filtering control Format...

Page 222: ...To disable cpu_interface_filtering DGS 3120 24TC admin disable cpu_interface_filtering Command disable cpu_interface_filtering Success DGS 3120 24TC admin 21 6 show cpu access_profile Description This command is used to display current access list table Format show cpu access_profile profile_id value 1 5 Parameters profile_id Optional Specify the index of access list profile value 1 5 Enter the pr...

Page 223: ...ofile Table Total Unused Rule Entries 497 Total Used Rule Entries 3 Profile ID 1 Type IPv6 MASK on Source IPv6 Addr FFFF FFFF FFFF Unused Rule Entries 99 Rule ID 1 Ports 2 20 3 20 Match on Source IPv6 2103 16 16 Action Deny Profile ID 2 Type IPv4 MASK on Source IP 255 255 0 0 Unused Rule Entries 99 Rule ID 1 Ports 2 20 3 20 Match on Source IP 172 18 0 0 Action Deny Profile ID 3 Type Ethernet MASK ...

Page 224: ...B0 61 51 Action Deny Profile ID 4 Type User Defined MASK on Offset 0 15 0xFFF000FF 0xFFFFFFFF 0xFFFFFFFF 0xFFFFFFFF Offset 16 31 0xFFFFFFFF 0xFFFFFFFF 0xFF00FFFF 0xFFFFFFFF Offset 32 47 0xFFFFFFFF 0xFFFFFFFF 0x000FFFFF 0xFFFFFFFF Offset 48 63 0xFFFFFFFF 0xFFFFFFFF 0xFFFFF000 0xFFFFFFFF Offset 64 79 0xFFFFFFFF 0xFFFFFFFF 0xFFFFFFFF 0xFFFFF000 Unused Rule Entries 100 DGS 3120 24TC admin ...

Page 225: ...e disable EI Mode Only debug dhcpv6_relay output buffer console EI Mode Only debug dhcpv6_relay packet all receiving sending state enable disable EI Mode Only debug dhcpv6_relay hop_count state enable disable EI Mode Only 22 1 debug error_log Description This command is used to dump clear or upload the software error log to a TFTP server Format debug error_log dump clear upload_toTFTP ipaddr path_...

Page 226: ...13B8A4 802AE754 802A5E0C To clear the error log DGS 3120 24TC admin debug error_log clear Command debug error_log clear Success DGS 3120 24TC admin To upload the error log to TFTP server DGS 3120 24TC admin debug error_log upload_toTFTP 10 0 0 90 debug log txt Command debug error_log upload_toTFTP 10 0 0 90 debug log txt Connecting to server Done Upload error log Done DGS 3120 24TC admin 22 2 debu...

Page 227: ... an absolute pathname This value can be up to 64 characters long Restrictions Only Administrator users can issue this command Example To show the debug buffer s state DGS 3120 24TC admin debug buffer utilization Command debug buffer utilization Allocate from System memory pool Total size 2 MB Utilization rate 30 DGS 3120 24TC admin To clear the debug buffer DGS 3120 24TC admin debug buffer clear C...

Page 228: ...trator level users can issue this command Example To set all module debug message outputs to local console DGS 3120 24TC admin debug output all console Command debug output all console Success DGS 3120 24TC admin 22 4 debug config error_reboot Description This command is used to set if the Switch needs to be rebooted when a fatal error occurs When the error occurs the watchdog timer will be disabl...

Page 229: ...dmin 22 5 debug config state Description This command is used to set the state of the debug Format debug config state enable disable Parameters enable Enable the debug state disable Disable the debug state Restrictions Only Administrator level users can issue this command Example To set the debug state to disabled DGS 3120 24TC admin debug config state disable Command debug config state disable Su...

Page 230: ... FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF Connection DB No Host Curre...

Page 231: ...ient state enable Success DGS 3120 24TC admin 22 8 debug dhcpv6_client state disable EI Mode Only Description This command is used to disable the DHCPv6 client debug function Format debug dhcpv6_client state disable Parameters None Restrictions Only Administrator level users can issue this command Example To disabled the DHCPv6 client debug function DGS 3120 24TC admin debug dhcpv6_client state di...

Page 232: ...g dhcpv6_client output console Command debug dhcpv6_client output console Success DGS 3120 24TC admin 22 10 debug dhcpv6_client packet EI Mode Only Description This command is used to enable or disable debug information flag for DHCPv6 client packet including packet receiving and sending Format debug dhcpv6_client packet all receiving sending state enable disable Parameters all Set packet receivin...

Page 233: ...scription This command is used to enable DHCPv6 relay debug functions Format debug dhcpv6_relay state enable Parameters None Restrictions Only Administrator level users can issue this command Example To enabled the DHCPv6 relay debug function DGS 3120 24TC admin debug dhcpv6_relay state enable Command debug dhcpv6_relay state enable Success DGS 3120 24TC admin 22 12 debug dhcpv6_relay state disabl...

Page 234: ...g dhcpv6_relay output EI Mode Only Description This command is used to set the debug message to output to a buffer or a console Format debug dhcpv6_relay output buffer console Parameters buffer Let the debug message output to buffer console Let the debug message output to console Restrictions Only Administrator level users can issue this command Example To set debug information to output to a cons...

Page 235: ...nable Enable the designated flags disable Disable the designated flags Restrictions Only Administrator level users can issue this command Example To enabled the DHCPv6 relay packet sending debug DGS 3120 24TC admin debug dhcpv6_relay packet sending state enable Command debug dhcpv6_relay packet sending state enable Success DGS 3120 24TC admin 22 15 debug dhcpv6_relay hop_count state EI Mode Only D...

Page 236: ... Switch CLI Reference Guide 232 Example To enable debug information flag about the hop count DGS 3120 24TC admin debug dhcpv6_relay hop_count state enable Command debug dhcpv6_relay hop_count state enable Success DGS 3120 24TC admin ...

Page 237: ...source MAC address and gateway address DHCP option 82 will be automatically added Format config dhcp_local_relay vlan vlan_name 32 state enable disable Parameters vlan_name 32 Specify the VLAN name that the DHCP local relay function will be enabled This name can be up to 32 characters long state Enable or disable DHCP local relay for specified vlan enable Specify that the DHCP local relay function...

Page 238: ... enable Specify that the DHCP local relay function will be enabled disable Specify that the DHCP local relay function will be disabled Restrictions Only Administrator level users can issue this command EI Mode Only Example To enable DHCP local relay for default VLAN DGS 3120 24TC admin config dhcp_local_relay vlan vlanid 1 state enable Command config dhcp_local_relay vlan vlanid 1 state enable Suc...

Page 239: ...ally disable the DHCP local relay function on the Switch Format disable dhcp_local_relay Parameters None Restrictions Only Administrator level users can issue this command Example To disable the DHCP local relay function DGS 3120 24TC admin disable dhcp_local_relay Command disable dhcp_local_relay Success DGS 3120 24TC admin 23 5 show dhcp_local_relay Description This command is used to display th...

Page 240: ...erence Guide 236 Restrictions None Example To display local dhcp relay status DGS 3120 24TC admin show dhcp_local_relay Command show dhcp_local_relay DHCP BOOTP Local Relay Status Disabled DHCP BOOTP Local Relay VID List 1 3 4 DGS 3120 24TC admin ...

Page 241: ...ig dhcp_relay option_61 state enable disable config dhcp_relay option_61 add mac_address macaddr string desc_long 255 relay ipaddr drop config dhcp_relay option_61 default relay ipaddr drop config dhcp_relay option_61 delete mac_address macaddr string desc_long 255 all show dhcp_relay option_61 24 1 config dhcp_relay Description This command is used to configure the DHCP relay feature of the Switc...

Page 242: ...ace name used here This name can be up to 12 characters long ipaddr The DHCP BOOTP server IP address Restrictions Only Administrator Operator and Power User level users can issue this command Example To add a DHCP BOOTP server to the relay table DGS 3120 24TC admin config dhcp_relay add ipif System 10 43 21 12 Command config dhcp_relay add ipif System 10 43 21 12 Success DGS 3120 24TC admin 24 3 c...

Page 243: ...anid 1 10 10 43 21 12 Command config dhcp_relay add vlanid 1 10 10 43 21 12 Success DGS 3120 24TC admin To display the DHCP relay status DGS 3120 24TC admin show dhcp_relay Command show dhcp_relay DHCP BOOTP Relay Status Disabled DHCP BOOTP Hops Count Limit 4 DHCP BOOTP Relay Time Threshold 0 DHCP Vendor Class Identifier Option 60 State Disabled DHCP Client Identifier Option 61 State Disabled DHCP...

Page 244: ... DGS 3120 24TC admin config dhcp_relay delete ipif System 10 43 21 12 Command config dhcp_relay delete ipif System 10 43 21 12 Success DGS 3120 24TC admin 24 5 config dhcp_relay delete vlanid Description This command is used to delete an IP address as a destination to forward relay DHCP BOOTP packets If there is an IP interface in the VLAN and it has configured a DHCP server at the interface level...

Page 245: ...heck Optional When the state is enabled For packet come from client side the packet should not have the option 82 s field If the packet has this option field it will be dropped The default setting is disabled enable Specify that checking will be enabled disable Specify that checking will be disabled policy Optional Specify the policy used This option takes effect only when the check status is disa...

Page 246: ..._relay option_82 check disable Command config dhcp_relay option_82 check disable Success DGS 3120 24TC admin config dhcp_relay option_82 policy replace Command config dhcp_relay option_82 policy replace Success DGS 3120 24TC admin config dhcp_relay option_82 remote_id user_define D Link L2 Switch Command config dhcp_relay option_82 remote_id user_define D Link L2 Switch Success DGS 3120 24TC admin...

Page 247: ...disable the DHCP relay function on the Switch Format disable dhcp_relay Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the DHCP relay function DGS 3120 24TC admin disable dhcp_relay Command disable dhcp_relay Success DGS 3120 24TC admin 24 9 show dhcp_relay Description This command is used to display the current DHCP re...

Page 248: ...f System Command show dhcp_relay ipif System DHCP BOOTP Relay Status Disabled DHCP BOOTP Hops Count Limit 4 DHCP BOOTP Relay Time Threshold 0 DHCP Vendor Class Identifier Option 60 State Disabled DHCP Client Identifier Option 61 State Disabled DHCP Relay Agent Information Option 82 State Disabled DHCP Relay Agent Information Option 82 Check Disabled DHCP Relay Agent Information Option 82 Policy Re...

Page 249: ...nd is used to decide whether DHCP relay will process the DHCP option 60 or not When option_60 is enabled if the packet does not have option 60 then the relay servers cannot be determined based on option 60 The relay servers will be determined based on either option 61 or per IPIF configured servers If the relay servers are determined based on option 60 or option 61 then per IPIF configured servers...

Page 250: ...ltiword 255 relay ipaddr exact match partial match Parameters string Specify the string used multiword 255 Enter the string value here This value can be up to 255 characters long relay Specify a relay server IP address ipaddr Enter the IP address used for this configuration here exact match The option 60 string in the packet must full match with the specified string partial match The option 60 str...

Page 251: ...union of option 60 default relay servers and the relay servers determined by option 61 Format config dhcp_relay option_60 default relay ipaddr mode drop relay Parameters relay Specify the IP address used for the DHCP relay forward function ipaddr Enter the IP address used for this configuration here mode Specify the DHCP relay option 60 mode drop Specify to drop the packet that has no matching opt...

Page 252: ...d by the user ipaddr Optional Enter the IP address used for this configuration here Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete the DHCP relay option 60 string called abc DGS 3120 24TC admin delete dhcp_relay option_60 string abc relay 10 90 90 1 Command delete dhcp_relay option_60 string abc relay 10 90 90 1 Success DGS 3120 24TC ad...

Page 253: ... not have option 61 then the relay servers cannot be determined based on option 61 If the relay servers are determined based on option 60 or option 61 then per IPIF configured servers will be ignored If the relay servers are not determined either by option 60 or option 61 then per IPIF configured servers will be used to determine the relay servers Format config dhcp_relay option_61 state enable di...

Page 254: ...wo sets of the servers Format config dhcp_relay option_61 add mac_address macaddr string desc_long 255 relay ipaddr drop Parameters mac_address The client s client ID which is the hardware address of client macaddr Enter the client s MAC address here string The client s client ID which is specified by administrator desc_long 255 Enter the client s description here This value can be up to 255 chara...

Page 255: ...er level users can issue this command Example To configure the DHCP relay option 61 function DGS 3120 24TC admin config dhcp_relay option_61 default drop Command config dhcp_relay option_61 default drop Success DGS 3120 24TC admin 24 18 config dhcp_relay option_61 delete Description This command is used to delete an option 61 rule Format config dhcp_relay option_61 delete mac_address macaddr strin...

Page 256: ...DGS 3120 24TC admin config dhcp_relay option_61 delete mac_address 00 11 22 33 44 55 Command config dhcp_relay option_61 delete mac_address 00 11 22 33 44 55 Success DGS 3120 24TC admin 24 19 show dhcp_relay option_61 Description This command is used to show all rulers for option 61 Format show dhcp_relay option_61 Parameters None Restrictions None Example To display DHCP relay rulers for option 6...

Page 257: ...DGS 3120 24TC admin show dhcp_relay option_61 Command show dhcp_relay option_61 Default Relay Rule 10 90 90 200 Matching Rules Client ID Type Relay Rule abc String Drop abcde String 10 90 90 1 00 11 22 33 44 55 MAC Address Drop Total Entries 3 DGS 3120 24TC admin ...

Page 258: ...P server packets on the specific port and to specify to allow some DHCP server packets with pre defined server IP addresses and client MAC addresses With this function we can restrict the DHCP server to service specific DHCP clients This is useful when two DHCP servers are present on the network one of them provides the private IP address and one of them provides the IP address Enabling filtering ...

Page 259: ...ill be logged only once within the duration The default value is 5 minutes 1min Specify that illegal server log suppress duration value will be set to 1 minute 5min Specify that illegal server log suppress duration value will be set to 5 minutes 30min Specify that illegal server log suppress duration value will be set to 30 minutes Restrictions Only Administrator Operator and Power User level user...

Page 260: ...uppress Duration 5 minutes Permit DHCP Server Client Table Server IP Address Client MAC Address Port 10 1 1 1 00 00 00 00 00 01 1 1 1 24 Total Entries 1 DGS 3120 24TC admin 25 3 config filter dhcp_server log Description This command is used to enable or disable the log function Format config filter dhcp_server log enable disable Parameters enable Enable the log function disable Disable the log fun...

Page 261: ...s command is used to enable or disable the log function Format config filter dhcp_server trap enable disable Parameters enable Enable the trap function disable Disable the trap function Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the trap function DGS 3120 24TC admin config filter dhcp_server trap disable Command config filter dhcp_...

Page 262: ...name 12 26 1 enable dhcpv6_relay Description This command is used to enable the DHCPv6 relay function on the Switch Format enable dhcpv6_relay Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the DHCPv6 relay global state to enable DGS 3120 24TC admin enable dhcpv6_relay Command enable dhcpv6_relay Success DGS 3120 24TC...

Page 263: ...sed to add or delete an IPv6 address which is a destination to forward relay DHCPv6 packets Format config dhcpv6_relay add delete ipif ipif_name 12 ipv6addr Parameters add Add an IPv6 destination to the DHCPv6 relay table delete Delete an IPv6 destination from the DHCPv6 relay table ipif The IP information for DHCPv6 relay ipif_name 12 The name of the IP interface in which DHCPv6 relay is to be en...

Page 264: ...Enter the number of relay agents that have to be relayed in this message The range is from 1 to 32 The default value is 4 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the maximum hops of a DHCPv6 relay packet that can be transferred to 4 DGS 3120 24TC admin config dhcpv6_relay hop_count 4 Command config dhcpv6_relay hop_count 4 Suc...

Page 265: ...stem interface to enable DGS 3120 24TC admin config dhcpv6_relay ipif System state enable Command config dhcpv6_relay ipif System state enable Success DGS 3120 24TC admin 26 6 show dhcpv6_relay Description This command is used to display the current DHCPv6 relay configuration of the specified or all IP Interfaces Format show dhcpv6_relay ipif ipif_name 12 Parameters ipif Optional The IP informatio...

Page 266: ...262 DGS 3120 24TC admin show dhcpv6_relay Command show dhcpv6_relay DHCPv6 Relay Global State Disabled DHCPv6 Hops Count Limit 4 IP Interface System DHCPv6 Relay Status Enabled Server Address 2001 DB8 1234 218 FEFF FEFB CC0E Total Entries 1 DGS 3120 24TC admin ...

Page 267: ...le disable mode shutdown normal discovery_time sec 5 65535 1 Parameters portlist Specify a range of ports all Specify to select all ports state Specify these ports unidirectional link detection status enable Enable unidirectional link detection status disable Disable unidirectional link detection status mode Specify the mode when detecting unidirectional link shutdown If any unidirectional link is...

Page 268: ...n Format show duld ports portlist Parameters portlist Optional Specify a range of ports Restrictions None Example To show ports 1 4 unidirectional link detection information DGS 3120 24TC admin show duld ports 1 1 1 4 Command show duld ports 1 1 1 4 Port Admin State Oper Status Mode Link Status Discovery Time Sec 1 1 Enabled Disabled Normal Unknown 5 1 2 Disabled Disabled Normal Unknown 5 1 3 Disa...

Page 269: ...nable disable config erps trap enable disable show erps raps_vlan vlanid sub_ring 28 1 enable erps Description This command is used to enable the global ERPS function on a switch When both the global state and the specified ring ERPS state are enabled the specified ring will be activated The global ERPS function cannot be enabled when any ERPS ring on the device is enabled and the integrity of any...

Page 270: ... Operator and Power User level users can issue this command Example To disable ERPS DGS 3120 24TC admin disable erps Command disable erps Success DGS 3120 24TC admin 28 3 create erps raps_vlan Description This command is used to create an R APS VLAN on a switch Only one R APS VLAN should be used to transfer R APS messages Note that the R APS VLAN must already have been created by the create vlan c...

Page 271: ...command is used to delete an R APS VLAN on a switch When an R APS VLAN is deleted all parameters related to this R APS VLAN will also be deleted This command can only be issued when the ring is not active Format delete erps raps_vlan vlanid Parameters raps_vlan Specify the VLAN which will be the R APS VLAN vlanid Enter the VLAN ID used here Restrictions Only Administrator Operator and Power User l...

Page 272: ...message will be display and the configuration will fail The R APS VLAN cannot be the protected VLAN The protected VLAN can be one that has already been created or it can be used for a VLAN that has not yet been created Holdoff timer The Holdoff timer is used to filter out intermittent link faults when link failures occur during the protection switching process When a ring node detects a link failu...

Page 273: ...lisecond 0 10000 guard_time millisecond 10 2000 wtr_time min 5 12 Parameters raps_vlan Specify the R APS VLAN used vlanid Enter the VLAN ID used here state Specify to enable or disable the specified ring enable Enable the state of the specified ring disable Disable the state of the specified ring The default value is disabled ring_mel Specify the ring MEL of the R APS function The default ring MEL...

Page 274: ...off_time Optional Specify the holdoff time of the R APS function The default holdoff time is 0 milliseconds millisecond 0 10000 Enter the hold off time value here This value must be in the range of 0 to 10000 millseconds guard_time Optional Specify the guard time of the R APS function The default guard time is 500 milliseconds millisecond 10 2000 Enter the guard time value here This value must be ...

Page 275: ... add vlanid 10 20 Success DGS 3120 24TC admin To configure the ERPS timers for a specific R APS VLAN DGS 3120 24TC admin config erps raps_vlan 4094 holdoff_time 100 guard_time 1000 wtr_time 10 Command config erps raps_vlan 4094 holdoff_time 100 guard_time 1000 wtr_time 10 Success DGS 3120 24TC admin To configure the ring state of the ERPS DGS 3120 24TC admin config erps raps_vlan state enable Comm...

Page 276: ...tate of ERPS events Format config erps log enable disable Parameters log Specify to enable or disable the ERPS log state enable Enter enable to enable the log state disable Enter disable to disable the log state The default value is disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the ERPS log state DGS 3120 24TC admin config ...

Page 277: ... able to be forwarded Blocking indicates that traffic is blocked by ERPS and a signal failure is not detected on the port Signal Fail indicates that a signal failure is detected on the port and traffic is blocked by ERPS The RPL owner administrative state could be configured to Enabled or Disabled But the RPL owner operational state may be different from the RPL owner administrative state for exam...

Page 278: ...f Time 0 milliseconds Guard Time 500 milliseconds WTR Time 5 minutes Current Ring State Idle R APS VLAN 4093 Ring Status Enabled West Port Virtual Channel East Port 10 Forwarding RPL Port None RPL Owner Disabled Protected VLANs 200 220 Ring MEL 2 Holdoff Time 0 milliseconds Guard Time 500 milliseconds WTR Time 5 minutes Current Ring State Idle Total Ring 2 DGS 3120 24TC admin DGS 3120 24TC admin s...

Page 279: ...eters portlist Specify the list of ports used all Specify that all the ports will be used for the configuration state Specify the state of the filter to block the NETBIOS packet enable Specify that the state will be enabled disable Specify that the state will be disabled Restrictions Only Administrator and Operator level users can issue this command Example To configure filter netbios state DGS 31...

Page 280: ...BIOS packets over 802 3 flame on the specific ports Format config filter extensive_netbios portlist all state enable disable Parameters portlist Enter the list of ports used for this configuration here all Specify that all the ports will be used this configuration state Enable or disable the filter to block the NETBIOS packet over 802 3 frame enable Specify that the filter state will be enabled di...

Page 281: ... DGS 3120 24TC admin 29 4 show filter extensive_netbios Description This command is used to display the extensive netbios state on the Switch Format show filter extensive_netbios Parameters None Restrictions None Example To display the extensive_state created on the Switch DGS 3120 24TC admin show filter extensive_netbios Command show filter extensive_netbios Enabled ports 1 3 DGS 3120 24TC admin ...

Page 282: ... mac_address macaddr static aging_time security show multicast vlan_filtering_mode vlanid vidlist vlan vlan_name 32 30 1 create fdb Description This command is used to create a static entry in the unicast MAC address forwarding table database Format create fdb vlan_name 32 macaddr port port drop Parameters vlan_name 32 Specify a VLAN name associated with a MAC address The maximum length of the VLA...

Page 283: ...ist macaddr port port drop Parameters vidlist Specify a VLAN ID associated with a MAC address macaddr The MAC address to be added to the static forwarding table port The port number corresponding to the MAC destination address The switch will always forward traffic to the specified device through this port port Enter the port number corresponding to the MAC destination address here drop Specify th...

Page 284: ...length is 32 macaddr The multicasts MAC address to be added to the static forwarding table Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a multicast MAC forwarding entry to the default VLAN DGS 3120 24TC admin create multicast_fdb default 01 00 5E 00 00 00 Command create multicast_fdb default 01 00 5E 00 00 00 Success DGS 3120 24TC adm...

Page 285: ...y the FDB age out time in seconds The aging time affects the learning process of the Switch Dynamic forwarding table entries which are made up of the source MAC addresses and their associated port numbers are deleted from the table if they are not accessed within the aging time The aging time can be from 10 to 1000000 seconds with a default value of 300 seconds A very long aging time can result in...

Page 286: ...ngth is 32 vlan_name 32 The VLAN name can be up to 32 characters long all Specify all configured VLANs forward_all_groups Both the registered group and the unregistered group will be forwarded to all member ports of the specified VLAN where the multicast traffic comes in forward_unregistered_groups The unregistered group will be forwarded to all member ports of the VLAN where the multicast traffic...

Page 287: ... 24TC admin delete fdb default 00 00 00 00 01 02 Command delete fdb default 00 00 00 00 01 02 Success DGS 3120 24TC admin 30 8 clear fdb Description This command is used to clear the Switch s forwarding database for dynamically learned MAC addresses Format clear fdb vlan vlan_name 32 port port all Parameters vlan Clears the FDB entry by specifying the VLAN name vlan_name 32 The name of the VLAN on...

Page 288: ...show multicast_fdb vlan vlan_name 32 vlanid vidlist mac_address macaddr Parameters vlan Optional The name of the VLAN on which the MAC address resides vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Displays the entries for the VLANs indicated by VID list vidlist Enter the VLAN ID list here mac_address Optional Specify a MAC address for which FDB...

Page 289: ...d port port Enter the port number here vlan Optional Displays the entries for a specific VLAN The maximum name length is 32 vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Displays the entries for the VLANs indicated by VID list vidlist Enter the VLAN ID list here mac_address Optional Displays a specific MAC address macaddr Enter the MAC address ...

Page 290: ...op 802 1X 1 00 00 00 10 00 02 1 2 Static Forward WAC 1 00 00 00 10 00 04 1 4 Static Forward Port Security 1 00 00 00 10 00 0A 1 5 Static Forward MAC based Access Control 1 00 00 00 10 00 06 1 6 Dynamic Drop Compound Authentication Total Entries 5 DGS 3120 24TC admin 30 11 show multicast vlan_filtering_mode Description This command is used to show the multicast packet filtering mode for VLANs Note ...

Page 291: ...ll multicast filtering settings in the device Restrictions None Example To show the multicast vlan_filtering_mode for VLANs DGS 3120 24TC admin show multicast vlan_filtering_mode Command show multicast vlan_filtering_mode VLAN ID VLAN Name Multicast Filter Mode 1 default forward_unregistered_groups DGS 3120 24TC admin ...

Page 292: ...ive_id pathname copy unit unit_id drive_id pathname unit unit_id drive_id pathname format unit unit_id drive_id fat16 fat32 label_name 31 1 show storage_media_info Description This command is used to display the information of the storage media available on the system There can be one or multiple media on the system The information for a media includes the drive number the media identification For...

Page 293: ...hange drive unit unit_id drive_id Parameters unit Optional Specify a unit ID if in the stacking system If not specified it refers to the master unit unit_id Enter the unit ID here drive_id Specify the drive ID The format of drive_id is C D and so on Restrictions None Example To display the storage media s information DGS 3120 24TC admin change drive unit 3 c Command change drive unit 3 c Success D...

Page 294: ...nd Example To make a directory DGS 3120 24TC admin md c abc Command md c abc Success DGS 3120 24TC admin 31 4 rd Description This command is used to remove a directory If there are files still existing in the directory this command will fail and return error message Format rd unit unit_id drive_id pathname Parameters unit Optional Specify a unit ID if in the stacking system If not specified it ref...

Page 295: ...cified Format cd pathname Parameters pathname Optional Specify the directory to be removed The path name can be specified either as a full path name or partial name For partial path name it indicates the file is in the current directory Restrictions None Example To change to other directory or display current directory path DGS 3120 24TC admin cd Command cd Current work directory unit2 c DGS 3120 ...

Page 296: ...FG rw 29661 2000 04 01 05 54 38 config cfg 2 RUN rw 4879040 2000 03 26 03 15 11 B019 had 3 d 0 2000 04 01 05 17 36 system 29618 KB total 24727 KB free with boot up info b with backup info DGS 3120 24TC admin 31 7 rename Description This command is used to rename a file Note that for standalone device the unit argument is not needed This command is used to rename a file in the file system The pathn...

Page 297: ... softly deleted sequentially only the last one will exist Deleting copying renaming or moving the already softly deleted file is not acceptable System will prompt if the target file is a FW or configuration whose type is bootup or backup Format del unit unit_id drive_id pathname recursive Parameters unit Optional Specify a unit ID if in the stacking system If not specified it refers to the master ...

Page 298: ... 24TC admin dir Command dir Directory of unit2 c Idx Info Attr Size Update Time Name 1 CFG rw 29661 2000 04 01 05 54 38 config cfg 2 RUN rw 4879040 2000 03 26 03 15 11 B019 had 3 d 0 2000 04 01 05 17 36 system 29618 KB total 24727 KB free with boot up info b with backup info DGS 3120 24TC admin 31 9 erase Description This command is used to delete a file stored in the file system System will promp...

Page 299: ...e Update Time Name 1 CFG b rw 29661 2000 04 02 06 03 19 config2 cfg 2 CFG rw 29661 2000 04 01 05 54 38 config cfg 3 RUN rw 4879040 2000 03 26 03 15 11 B019 had 4 d 0 2000 04 01 05 17 36 system 29618 KB total 24697 KB free with boot up info b with backup info DGS 3120 24TC admin erase config2 cfg Command erase config2 cfg Success DGS 3120 24TC admin dir Command dir Directory of unit2 c Idx Info Att...

Page 300: ...acking system If not specified it refers to the master unit unitid 1 n Enter the unit ID here This value must be between 1 and n drive_id Optional Enter the drive ID used here Examples are C or D pathname Specify the new path where the file will be moved The path name can be For partial path name it indicates the file is in the current directory Restrictions Only Administrator and Operator level u...

Page 301: ...name Specify the file to copy to The path name can be specified either as a full path name or partial name For partial path name it indicates the file is in the current directory Restrictions Only Administrator and Operator level users can issue this command Example To copy a file DGS 3120 24TC admin copy c log txt c log1 txt Command copy c log txt c log1 txt Success DGS 3120 24TC admin 31 12 form...

Page 302: ...LI Reference Guide 298 Restrictions Only Administrator and Operator level users can issue this command Example To format a drive DGS 3120 24TC admin format d fat32 aaaa Command format d fat32 aaaa Formatting Done Success DGS 3120 24TC admin ...

Page 303: ...nterface s IP address to other nodes By default the state is disabled and only one gratuitous ARP packet will be broadcast Format config gratuitous_arp send ipif_status_up enable disable Parameters enable Enable sending of gratuitous ARP when IPIF status become up disable Disable sending of gratuitous ARP when IPIF status become up Restrictions Only Administrator Operator and Power User level user...

Page 304: ...us_arp send dup_ip_detected enable Command config gratuitous_arp send dup_ip_detected enable Success DGS 3120 24TC admin 32 3 config gratuitous_arp learning Description This command is used to configure gratuitous ARP learning Normally the system will only learn the ARP reply packet or a normal ARP request packet that asks for the MAC address that corresponds to the system s IP address The command...

Page 305: ... send periodically ipif ipif_name 12 interval value 0 65535 Parameters ipif Interface name of L3 interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long interval Periodically send gratuitous ARP interval time in seconds 0 means not send gratuitous ARP periodically value 0 65535 Enter the gratuitous ARP interval time here This value must be between 0 and 65...

Page 306: ...dministrator Operator and Power User level users can issue this command Example To enable system interface s gratuitous ARP log and trap DGS 3120 24TC admin enable gratuitous_arp ipif System trap log Command enable gratuitous_arp ipif System trap log Success DGS 3120 24TC admin 32 6 disable gratuitous_arp Description The command is used to disable gratuitous ARP trap and log state The switch can t...

Page 307: ...min disable gratuitous_arp ipif System trap log Command disable gratuitous_arp ipif System trap log Success DGS 3120 24TC admin 32 7 show gratuitous_arp Description This command is used to display gratuitous ARP configuration Format show gratuitous_arp ipif ipif_name Parameters ipif Optional Interface name of L3 interface ipif_name Enter the IP interface name here Restrictions None Example To disp...

Page 308: ...tous_arp Command show gratuitous_arp Send on IPIF Status Up Enabled Send on Duplicate IP Detected Enabled Gratuitous ARP Learning Enabled IP Interface Name System Gratuitous ARP Trap Enabled Gratuitous ARP Log Enabled Gratuitous ARP Periodical Send Interval 5 Total Entries 1 DGS 3120 24TC admin ...

Page 309: ...le fast_leave enable disable proxy_reporting state enable disable source_ip ipaddr 1 1 config igmp_snooping rate_limit ports portlist vlanid vlanid_list value 1 1000 no_limit config igmp_snooping querier vlan_name vlan_name 32 vlanid vlanid_list all query_interval sec 1 65535 max_response_time sec 1 25 robustness_variable value 1 7 last_member_query_interval sec 1 25 state enable disable version v...

Page 310: ...iven show mld_snooping forwarding vlan vlan_name 32 vlanid vlanid_list show mld_snooping mrouter_ports vlan vlan_name 32 vlanid vlanid_list all static dynamic forbidden create mld_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipv6addr delete mld_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipv6addr config mld_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipv...

Page 311: ...ave function proxy reporting Specify IGMP proxy reporting If enabled multiple IGMP reports or leave for a specific S G will be integrated into one report only before sending to the router port state Enable or disable the proxy reporting enable Enable the proxy reporting disable Disable the proxy reporting source_ip Specify the source IP of proxy reporting integrated report Default value is zero IP...

Page 312: ...general query transmissions the maximum time in seconds to wait for reports from members and the permitted packet loss that guarantees IGMP snooping Format config igmp_snooping querier vlan_name vlan_name 32 vlanid vlanid_list all query_interval sec 1 65535 max_response_time sec 1 25 robustness_variable value 1 7 last_member_query_interval sec 1 25 state enable disable version value 1 3 1 Paramete...

Page 313: ...e last member of a group On receiving a leave message the router will assume there are no local members on the interface if there are no reports received after the response time which is last member query interval robustness variable sec 1 25 Enter the last member query interval value here This value must be between 1 and 25 seconds state Optional If the state is enabled it allows the Switch to be...

Page 314: ...he RADIUS authentication function on the specified ports Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable IGMP Access Control for all ports DGS 3120 24TC admin config igmp access_authentication ports all state enable Command config igmp access_authentication ports all state enable Success DGS 3120 24TC admin 33 5 config router_ports Descr...

Page 315: ...orbidden router port will not propagate routing packets out Format config router_ports_forbidden vlan_name 32 vlanid vlanid_list add delete portlist Parameters vlan_name 32 Specify the name of the VLAN on which the router port resides vlanid Specify the ID of the VLAN on which the router port resides vlanid_list Enter the VLAN ID list here add Specify to add the router ports delete Specify to dele...

Page 316: ...Switch DGS 3120 24TC admin enable igmp_snooping Command enable igmp_snooping Success DGS 3120 24TC admin 33 8 disable igmp_snooping Description This command is used to disable IGMP snooping on the Switch Disabling IGMP snooping allows all IGMP and IP multicast traffic to flood within a given IP interface Note that disable igmp_snooping will also disable the forward multicast router only function F...

Page 317: ...s For a layer 3 device the device is also responsible to route the packet destined for this specific group to static member ports The static member port will only affect V2 IGMP operation The Reserved IP multicast address 224 0 0 X must be excluded from the configured group The VLAN must be created first before a static group can be created Format create igmp_snooping static_group vlan vlan_name 3...

Page 318: ...er port resides vlanid_list Enter the VLAN ID list here ipaddr Specify the multicast group IP address Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an IGMP snooping static group for VLAN 1 group 239 1 1 1 DGS 3120 24TC admin delete igmp_snooping static_group vlan default 239 1 1 1 Command delete igmp_snooping static_group vlan default ...

Page 319: ...r User level users can issue this command Example To unset port range 9 10 from IGMP snooping static member ports for group 239 1 1 1 on default VLAN DGS 3120 24TC admin config igmp_snooping static_group vlan default 239 1 1 1 delete 2 9 2 10 Command create igmp_snooping static_group vlan default 239 1 1 1 delete 2 9 2 10 Success DGS 3120 24TC admin 33 12 show igmp_snooping static_group Descriptio...

Page 320: ... care of the aging out of the entry For a data driven entry the entry can be specified not to be aged out or to be aged out by the aged timer When data driven learning is enabled and the data driven table is not full the multicast filtering mode for all ports is ignored That is the multicast packets will be forwarded to router ports If the data driven learning table is full the multicast packets w...

Page 321: ...tions Only Administrator Operator and Power User level users can issue this command Example To enable the data driven learning of an IGMP snooping group on the default VLAN DGS 3120 24TC admin config igmp_snooping data_driven_learning vlan default state enable Command config igmp_snooping data_driven_learning vlan default state enable Success DGS 3120 24TC admin 33 14 config igmp_snooping data_dri...

Page 322: ...ed by data driven Format clear igmp_snooping data_driven_group all vlan_name vlan_name 32 vlanid vlanid_list ipaddr all Parameters all Specify all VLANs to which IGMP snooping groups will be deleted vlan_name Specify the VLAN name vlan_name 32 Enter the VLAN name here vlanid Specify the VLAN ID vlanid_list Enter the VLAN ID here ipaddr Specify the group s IP address learned by data driven all Dele...

Page 323: ... Optional Specify the name of the VLAN for which you want to view the IGMP snooping configuration vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN for which you want to view the IGMP snooping configuration vlanid_list Enter the VLAN ID list here If the VLAN is not specified the system will display all current IGMP snoopi...

Page 324: ... Fast Leave Disabled Rate Limit No Limitation Proxy Reporting Disabled Proxy Reporting Source IP 0 0 0 0 Version 3 Data Driven Learning State Enabled Data Driven Learning Aged Out Disabled Data Driven Group Expiry Time 260 Total Entries 1 DGS 3120 24TC admin 33 17 show igmp_snooping rate_limit Description This command is used to display the IGMP snooping rate limit setting Format show igmp_snoopin...

Page 325: ... for which you want to view IGMP snooping group information If VLAN ports and IP address are not specified the system will display all current IGMP snooping group information vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN for which you want to view IGMP snooping group information vlanid_list Enter the VLAN ID list here...

Page 326: ...tries 3 DGS 3120 24TC admin DGS 3120 24TC admin show igmp_snooping group data_driven Command show igmp_snooping group data_driven Source Group NULL 225 0 0 5 VLAN Name VID default 1 Reports 0 Member Ports Router Ports 24 UP Time 3 days 50 mins Expiry Time 120 secs Filter Mode EXCLUDE Total Entries 1 DGS 3120 24TC admin To show IGMP snooping groups when only IGMP v2 is supported The third item is a...

Page 327: ...tion This command is used to display the Switch s current IGMP snooping forwarding table It provides an easy way for users to check the list of ports that the multicast group that comes from a specific sources will be forwarded to The packet comes from the source VLAN They will be forwarded to the forwarding VLAN The IGMP snooping further restricts the forwarding ports Format show igmp_snooping fo...

Page 328: ... 7 VLAN Name default Source IP 10 90 90 10 Multicast Group 225 0 0 1 Port Member 2 5 VLAN Name default Source IP 10 90 90 20 Multicast Group 225 0 0 2 Port Member 2 8 Total Entries 3 DGS 3120 24TC admin 33 20 show router_ports Description This command is used to display the currently configured router ports on the Switch Format show router_ports vlan vlan_name 32 vlanid vlanid_list all static dyna...

Page 329: ...l VLAN Name default Static Router Port 1 10 Dynamic Router Port Router IP 10 0 0 1 10 0 0 2 10 0 0 3 Forbidden router port VLAN Name vlan2 Static router port Dynamic router port 13 Router IP 10 0 0 4 10 0 0 5 10 0 0 6 Forbidden router port Total Entries 2 DGS 3120 24TC admin 33 21 show igmp_snooping statistics counter Description This command is used to display the statistics counter for IGMP prot...

Page 330: ...ive Statistics Query IGMP v1 Query 1 IGMP v2 Query 1 IGMP v3 Query 1 Total 3 Dropped By Rate Limitation 1 Dropped By Multicast VLAN 1 Report Leave IGMP v1 Report 0 IGMP v2 Report 10 IGMP v3 Report 10 IGMP v2 Leave 1 Total 21 Dropped By Rate Limitation 0 Dropped By Max Group Limitation 90 Dropped By Group Filter 0 Dropped By Multicast VLAN 1 Transmit Statistics Query IGMP v1 Query 1 IGMP v2 Query 1...

Page 331: ...ropped By Multicast VLAN 0 Report Leave IGMP v1 Report 0 IGMP v2 Report 100 IGMP v3 Report 0 IGMP v2 Leave 0 Total 100 Dropped By Rate Limitation 0 Dropped By Max Group Limitation 90 Dropped By Group Filter 0 Dropped By Multicast VLAN 0 Transmit Statistics Query IGMP v1 Query 0 IGMP v2 Query 0 IGMP v3 Query 0 Total 0 Report Leave IGMP v1 Report 0 IGMP v2 Report 0 IGMP v3 Report 0 IGMP v2 Leave 0 T...

Page 332: ...thentication ports 1 1 1 4 Command show igmp access_authentication ports 1 1 1 4 Port State 1 1 Enabled 1 2 Disabled 1 3 Disabled 1 4 Disabled DGS 3120 24TC admin To display the IGMP Access Control status for all ports DGS 3120 24TC admin show igmp access_authentication ports all Command show igmp access_authentication ports all Port State 1 1 Enabled 1 2 Disabled 1 3 Disabled 1 4 Disabled 1 5 Dis...

Page 333: ...erator and Power User level users can issue this command Example To clear the IGMP snooping statistics counter DGS 3120 24TC admin clear igmp_snooping statistic counter Command clear igmp_snooping statistic counter Success DGS 3120 24TC admin 33 24 config mld_snooping Description This command is used to configure MLD snooping on the Switch Format config mld_snooping vlan_name vlan_name 32 vlanid v...

Page 334: ...ting source_ip Specify the source IP of proxy reporting integrated report Default value is zero IP ipv6addr Enter the Ipv6 address Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure MLD snooping DGS 3120 24TC admin config mld_snooping default state enable Command config mld_snooping default state enable Success DGS 3120 24TC admin 33 25 ...

Page 335: ...y count Number of group specific queries sent before the router assumes there are no local listeners of a group The default number is the value of the robustness variable By default the robustness variable is set to 2 You might want to increase this value if you expect a subnet to be loosely last_listener_query_interval Optional Specify the maximum amount of time between group specific query messa...

Page 336: ...er port resides vlanid_list Enter the VLAN ID list here add Specify to add the router ports delete Specify to delete the router ports portlist Specify a range of ports to be configured UnitID port number Restrictions Only Administrator Operator and Power User level users can issue this command Example To set up static router ports DGS 3120 24TC admin config mld_snooping mrouter_ports vlan default ...

Page 337: ...vlan default add 1 11 Success DGS 3120 24TC admin 33 28 enable mld_snooping Description This command is used to enable MLD snooping on the Switch The forward_mcrouter_only function is disabled by default The enable mld_snooping forward_mcrouter_only command will enable the MLD snooping function and the forward multicast router only function If forward multicast router only is enabled the Switch wi...

Page 338: ... the multicast group that the port is reported and the router will be a default member of this multicast group The multicast packet destined for this multicast group will be forwarded to all the members of this multicast group Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable MLD snooping on the Switch DGS 3120 24TC admin disable mld_snoo...

Page 339: ...nooping DGS 3120 24TC admin show mld_snooping Command show mld_snooping MLD Snooping Global State Enabled Data Driven Learning Max Entries 128 VLAN Name default Query Interval 125 Max Response Time 10 Robustness Value 2 Last Listener Query Interval 1 Querier State Enabled Querier Role Non Querier Querier IP Querier Expiry Time 0 secs State Disabled Fast Done Disabled Rate Limit No Limitation Proxy...

Page 340: ... of ports for which you want to view MLD snooping group information portlist Enter the list of port here ipv6addr Optional Specify the group IPv6 address for which you want to view MLD snooping group information data_driven Optional Display the data driven groups Restrictions None Example To show an MLD snooping group when MLD v2 is supported The first item means that for ports 1 2 the data from t...

Page 341: ...de EXCLUDE Source Group NULL FE1E 2 VLAN Name VID default 1 Member Ports 4 5 UP Time 40 Expiry Time 205 Filter Mode EXCLUDE Source Group NULL FF1E 5 VLAN Name VID default 1 Reports 0 Member Ports Router Ports 24 UP Time 100 Expiry Time 200 Filter Mode EXCLUDE Total Entries 4 DGS 3120 24TC admin DGS 3120 24TC admin show mld_snooping group data_driven Command show mld_snooping group data_driven Sour...

Page 342: ... the VLAN for which you want to view MLD snooping forwarding table information vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN for which you want to view MLD snooping forwarding table information vlanid_list Enter the VLAN ID list here If no parameter is specified the system will display all current MLD snooping forward...

Page 343: ... router ports that have been statically configured dynamic Optional Displays router ports that have been dynamically configured forbidden Optional Displays forbidden router ports that have been statically configured If no parameter is specified the system will display all currently configured router ports on the Switch Restrictions None Example To display the mld_snooping router ports DGS 3120 24T...

Page 344: ...lan Specify the name of the VLAN on which the static group resides vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Specify the ID of the VLAN on which the static group resides vlanid_list Enter the VLAN ID list here ipv6addr Specify the multicast group IPv6 address Restrictions Only Administrator Operator and Power User level users can issue this command ...

Page 345: ...ple suppose that a port is a dynamic member port learned by MLD If this port is configured as a static member later then the MLD protocol will stop operating on this port The MLD protocol will resume once this port is removed from static member ports The static member port will only affect MLD V1 operation Format config mld_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipv6addr add de...

Page 346: ... vlanid_list ipv6addr Parameters vlan Optional Specify the name of the VLAN on which the static group resides vlan_name 32 Enter the VLAN name here The VLAN name can be up to 32 characters long vlanid Optional Specify the ID of the VLAN on which the static group resides vlanid_list Enter the VLAN ID list here ipv6addr Optional Specify the multicast group IPv6 address Restrictions None Example To d...

Page 347: ...anid_list state enable disable aged_out enable disable expiry_time sec 1 65535 1 Parameters all Specify that all VLANs are to be configured vlan_name Specify the VLAN name to be configured vlan_name 32 Enter the VLAN name here vlanid Specify the VLAN ID to be configured vlanid_list Enter the VLAN ID list here state Optional Specify to enable or disable the data driven learning of MLD snooping grou...

Page 348: ...setting is 56 This default setting may vary depending on project value 1 1024 Enter the maximum learned entry value here This value must be between 1 and 1024 Restrictions Only Administrator Operator and Power User level users can issue this command Example To set the maximum number of groups that can be learned by data driven DGS 3120 24TC admin config mld_snooping data_driven_learning max_learne...

Page 349: ...en DGS 3120 24TC admin clear mld_snooping data_driven_group all Command clear mld_snooping data_driven_group all Success DGS 3120 24TC admin 33 41 show mld_snooping statistic counter Description This command is used to display the statistics counter for IGMP protocol packets that are received by the Switch since IGMP snooping was enabled Format show mld _snooping statistic counter vlan vlan_name v...

Page 350: ... Report Leave MLD v1 Report 0 MLD v2 Report 10 MLD v1 Done 1 Total 11 Dropped By Rate Limitation 0 Dropped By Max Group Limitation 90 Dropped By Group Filter 0 Dropped By Multicast VLAN 1 Transmit Statistics Query MLD v1 Query 1 MLD v2 Query 1 Total 2 Report Leave MLD v1 Report 0 MLD v2 Report 10 MLD v1 Done 1 Total 11 Total Entries 1 DGS 3120 24TC admin 33 42 clear mld_snooping statistic counter ...

Page 351: ...rts Specify a range of ports to be configured portlist Enter the range of ports to be configured here vlanid Specify a range of VLANs to be configured vlanid_list Enter the VLAN ID list here value 1 1024 Configure the rate limit of MLD control packets that the Switch can process on a specific port or VLAN The rate is specified in packet per second The packets that exceed the limited rate will be d...

Page 352: ...ed by each port Format show mld_snooping rate_limit ports portlist vlanid vlanid_list Parameters ports Specify a list of ports portlist Enter the range of ports to be configured here vlanid Specify a list of VLANs vlanid_list Enter the VLAN ID list here Restrictions None Example To configure the mld_snooping per port rate_limit DGS 3120 24TC admin show mld_snooping rate_limit ports 1 15 Command sh...

Page 353: ...ddress macaddr blocked all vlan_name vlan_name mac_address macaddr ports portlist enable address_binding dhcp_snoop disable address_binding dhcp_snoop clear address_binding dhcp_snoop binding_entry ports portlist all show address_binding dhcp_snoop max_entry ports portlist show address_binding dhcp_snoop binding_entry port port config address_binding dhcp_snoop max_entry ports portlist all limit v...

Page 354: ...e ports will be used arp_inspection Optional Specify that the ARP inspection option will be configured strict In this mode all packets are dropped by default until a legal ARP or IP packets are detected loose In this mode all packets are forwarded by default until an illegal ARP or broadcast IP packets are detected If not specified strict or loose default is strict disable Disable ARP inspection f...

Page 355: ...ith a new address will be dropped int 0 500 Enter the stop learning threshold value here This value must be between 0 and 500 Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable IMPB on port 1 DGS 3120 24TC admin config address_binding ip_mac ports 1 1 arp_inspection strict Command config address_binding ip_mac ports 1 1 arp_inspection stric...

Page 356: ... all Specify that all the MAC address will be used ipaddress Specify the learned IP address of the entry in the database ipaddr Enter the IP address used mac_address Specify the MAC address used for this configuration macaddr Enter the MAC address used Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a blocked address DGS 3120 24TC admin ...

Page 357: ...cify that all the ports will be used Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure an IMPB entry DGS 3120 24TC admin config address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Command config address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Success DGS 3120 24TC admin 34 6 show address_bindi...

Page 358: ...Disabled IPv4 Not Allow Forward 500 Normal 1 6 Disabled Disabled IPv4 Not Allow Forward 500 Normal 1 7 Disabled Disabled IPv4 Not Allow Forward 500 Normal 1 8 Disabled Disabled IPv4 Not Allow Forward 500 Normal 1 9 Disabled Disabled IPv4 Not Allow Forward 500 Normal 1 10 Disabled Disabled IPv4 Not Allow Forward 500 Normal 1 11 Disabled Disabled IPv4 Not Allow Forward 500 Normal 1 12 Disabled Disab...

Page 359: ..._binding blocked all Command show address_binding blocked all VID VLAN Name MAC Address Port 1 default 00 0C 6E AA B9 C0 1 1 Total Entries 1 DGS 3120 24TC admin 34 8 show address_binding ip_mac Description This command is used to display the IMPB entries Format show address_binding ip_mac all ipaddress ipaddr mac_address macaddr mac_address macaddr Parameters all Specify that all the IP addresses ...

Page 360: ...se time has expires the expired entry will be removed from the port The auto learned binding entry can be moved from one port to another port if the DHCP snooping function has learned that the MAC address has moved to a different port If a situation occurs where a binding entry learned by DHCP snooping conflicts with a statically configured entry The binding relation has conflicted For example if ...

Page 361: ...C admin 34 10 disable address_binding dhcp_snoop Description This command is used to disable DHCP snooping mode When the DHCP snooping function is disabled all of the auto learned binding entries will be removed Format disable address_binding dhcp_snoop Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable DHCP IPv4 snooping m...

Page 362: ...o clear DHCP IPv4 snooping entries on ports 1 3 DGS 3120 24TC admin clear address_binding dhcp_snoop binding_entry ports 1 3 Command clear address_binding dhcp_snoop binding_entry ports 1 3 Success DGS 3120 24TC admin 34 12 show address_binding dhcp_snoop Description This command is used to display the DHCP snooping configuration and learning database Format show address_binding dhcp_snoop max_ent...

Page 363: ...t Max Entry 1 1 No Limit 1 2 No Limit 1 3 No Limit 1 4 No Limit 1 5 No Limit 1 6 No Limit 1 7 No Limit 1 8 No Limit 1 9 No Limit 1 10 No Limit 1 11 No Limit 1 12 No Limit 1 13 No Limit 1 14 No Limit 1 15 No Limit 1 16 No Limit 1 17 No Limit 1 18 No Limit 1 19 No Limit 1 20 No Limit CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All 34 13 show address_binding dhcp_snoop binding_entry Descri...

Page 364: ...binding dhcp_snoop max_entry Description This command is used to specify the maximum number of entries that can be learned by a specified port Format config address_binding dhcp_snoop max_entry ports portlist all limit value 1 50 no_limit Parameters ports Specify the list of ports you would like to set the maximum number of entries that can be learned portlist Enter the list of ports used here all...

Page 365: ...p_log Description This command is used to send traps and logs when the IMPB module detects an illegal IP and MAC address Format enable address_binding trap_log Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the IMPB traps and logs DGS 3120 24TC admin enable address_binding trap_log Command enable address_binding trap_log...

Page 366: ...ription This command is used to recover IMPB checking Format config address_binding recover_learning ports portlist all Parameters ports Specify the list of ports that need to recover the IMPB check portlist Enter the list of port used here all Specify that all the ports will be used Restrictions Only Administrator Operator and Power User level users can issue this command Example To recover IMPB ...

Page 367: ...s state This parameter configures the IMPB debug state to be enabled or disabled enable Specify that the state will be enabled disable Specify that the state will be disabled Restrictions Only Administrator users can issue this command Example To print out all debug IMPB messages DGS 3120 24TC admin debug address_binding all state enable Command debug address_binding all state enable Success DGS 3...

Page 368: ...ed Switch CLI Reference Guide 364 Example To stop IMPB debug starting when the IMPB module receives an ARP IP or DHCP packet DGS 3120 24TC admin no debug address_binding Command no debug address_binding Success DGS 3120 24TC admin ...

Page 369: ...ache Description This command is used to add a static neighbor on an IPv6 interface Format create ipv6 neighbor_cache ipif ipif_name 12 ipv6addr macaddr Parameters ipif Specify the interface s name ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long ipv6addr The address of the neighbor macaddr The MAC address of the neighbor Restrictions Only Administrator Opera...

Page 370: ...n ipv6addr The neighbor s address static Delete the static entry dynamic Delete those dynamic entries all All entries include static and dynamic entries will be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example Delete a neighbor cache entry on IP interface System DGS 3120 24TC admin delete ipv6 neighbor_cache ipif System 3ffc 1 Command delet...

Page 371: ...Interface System VID 1 Total Entries 1 DGS 3120 24TC admin 35 4 config ipv6 nd ns retrans_time Description This command is used to configure the IPv6 ND neighbor solicitation retransmit time which is between retransmissions of neighbor solicitation messages to a neighbor when resolving the address or when probing the reachability of a neighbor Format config ipv6 nd ns ipif ipif_name 12 retrans_tim...

Page 372: ...r detection on the Switch Format show ipv6 nd ipif ipif_name 12 Parameters ipif Optional The name of the interface ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long If no IP interface is specified it will show the IPv6 ND related configuration of all interfaces Restrictions Only Administrator Operator and Power User level users can issue this command Example T...

Page 373: ...work of the route ipif_name 12 Specify the interface for the route This name can be up to 12 characters long ipv6addr Specify the next hop address for this route ipv6addr Specify the next hop address for this route metric 1 65535 Optional Enter the metric value here The default setting is 1 This value must between 1 and 65535 primary Optional Specify the route as the primary route to the destinati...

Page 374: ... route ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long ipv6addr Specify the next hop address for the default route ipv6addr Specify the next hop address for the default route all Specify that all static created routes will be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example Delete an IPv6 static ...

Page 375: ...to be displayed static Optional Specify to display only the static route entries hardware Optional Specify to display only the route entries which have been wrote into hardware table Example Show all the IPv6 routes DGS 3120 24TC admin show ipv6route Command show ipv6route IPv6 Prefix 0 Protocol Static Metric 1 Next Hop 3001 254 IPIF System Backup Primary Status Inactive Total Entries 1 DGS 3120 2...

Page 376: ...ll state enable disable max_authenticating_host value 0 50 aging_time infinite min 1 1440 idle_time infinite min 1 1440 block_time sec 0 300 1 show jwac ports portlist config jwac radius_protocol local eap_md5 pap chap ms_chap ms_chapv2 create jwac user username 15 vlan vlanid 1 4094 config jwac user username 15 vlan vlanid 1 4094 delete jwac user username 15 all_users show jwac user clear jwac au...

Page 377: ...p change by JWAC after a host passes authentication The RADIUS server will share the server configuration defined by the 802 1X command set Format enable jwac Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable JWAC DGS 3120 24TC admin enable jwac Command enable jwac Success DGS 3120 24TC admin 37 2 disable jwac Description T...

Page 378: ... correctly before it can work properly Format config jwac quarantine_server_url string 128 ipv6 string 128 clear_quarantine_server_url ipv6 Parameters quarantine_server_url Specify the entire URL of the authentication page on the quarantine server string 128 Specify the entire URL of the authentication page on the quarantine server The quarantine server URL can be up to 128 characters long ipv6 Sp...

Page 379: ...HTTP UDP Filtering Enabled Forcible Logout Enabled Redirect State Enabled Redirect Delay Time 1 Seconds Redirect Destination Quarantine Server Quarantine Server Quarantine Server IPv6 Q Server Monitor Disabled Q Server Error Timeout 30 Seconds RADIUS Auth Protocol PAP RADIUS Authorization Enabled Local Authorization Enabled Function Version 2 11 DGS 3120 24TC admin 37 5 enable jwac redirect Descri...

Page 380: ...trator Operator and Power User level users can issue this command Example DGS 3120 24TC admin enable jwac redirect Command enable jwac redirect Success DGS 3120 24TC admin 37 6 disable jwac redirect Description This command is used to disable JWAC redirect When redirect is disabled only access to quarantine_server and the jwac_login_page from an unauthenticated host is allowed all other Web access...

Page 381: ...fy the unauthenticated host will be redirected to the jwac_login_page delay_time Specify the time interval after which the unauthenticated host will be redirected sec 0 10 Specify the time interval after which the unauthenticated host will be redirected The delay time must be between 0 and 10 seconds Restrictions Only Administrator Operator and Power User level users can issue this command Example...

Page 382: ...able JWAC forcible logout DGS 3120 24TC admin enable jwac forcible_logout Command enable jwac forcible_logout Success DGS 3120 24TC admin 37 9 disable jwac forcible_logout Description This command is used to disable JWAC forcible logout Format disable jwac forcible_logout Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable J...

Page 383: ...ckets except DHCP and DNS packets from unauthenticated hosts will be dropped enable jwac udp_filtering Format enable jwac udp_filtering Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable JWAC UDP filtering DGS 3120 24TC admin enable jwac udp_filtering Command enable jwac udp_filtering Success DGS 3120 24TC admin 37 11 disabl...

Page 384: ... the JWAC switch will monitor the quarantine server to ensure the server is okay If the Switch detects no quarantine server it will redirect all unauthenticated HTTP accesses to the JWAC Login Page forcibly if the redirect is enabled and the redirect destination is configured to be quarantine server Format enable jwac quarantine_server_monitor Parameters None Restrictions Only Administrator Operat...

Page 385: ...le jwac quarantine_server_monitor Success DGS 3120 24TC admin 37 14 config jwac quarantine_server_error_timeout Description This command is used to set the quarantine server error timeout When the quarantine server monitor is enabled the JWAC switch will periodically check if the quarantine works okay If the Switch does not receive any response from quarantine server during the configured error ti...

Page 386: ...tual_ip ipaddr ipv6addr url string 128 clear Parameters ipaddr Specify the IP address of the virtual IP ipv6addr Specify the Ipv6 address of the virtual IP EI Mode Only url Optional Specify the URL of the virtual IP string 128 Specify the URL of the virtual IP clear Clear the URL of the virtual IP Restrictions Only Administrator Operator and Power User level users can issue this command Example To...

Page 387: ...rver network EI Mode Only ipv6networkaddr To set a specific IPv6 network address use to separate the IPv6 address and the number of network mask bits If TCP port or UDP port number is not specified all TCP UDP ports are accessible tcp_port Optional Specify a TCP port number between 1 and 65535 port_number 1 65535 Specify a TCP port value between 1 and 65535 udp_port Optional Specify a UDP port num...

Page 388: ...ts portlist all state enable disable max_authenticating_host value 0 50 aging_time infinite min 1 1440 idle_time infinite min 1 1440 block_time sec 0 300 1 Parameters portlist Specify a port range for setting the JWAC state all Specify to configure all switch ports JWAC state state Specify the port state of JWAC enable Specify to enable the JWAC port state disable Specify to disable the JWAC port ...

Page 389: ...is 60 seconds sec 0 300 Specify a blocking time value between 0 and 300 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the JWAC port state DGS 3120 24TC admin config jwac ports 1 9 state enable Command config jwac ports 1 9 state enable Success DGS 3120 24TC admin 37 19 show jwac ports Description This command is used to display the ...

Page 390: ...rts the protocol Format config jwac radius_protocol local eap_md5 pap chap ms_chap ms_chapv2 Parameters local Specify the JWAC switch uses the local user DB to complete the authentication eap_md5 Specify the JWAC switch uses EAP MD5 to communicate with the RADIUS server pap Specify the JWAC switch uses PAP to communicate with the RADIUS server chap Specify the JWAC switch uses CHAP to communicate ...

Page 391: ... be between 1 and 4094 Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a JWAC user in the local database DGS 3120 24TC admin create jwac user 112233 Command create jwac user 112233 Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3120 24TC admin 37 22 config jwac user Description This command ...

Page 392: ...lete jwac Description This command is used to delete JWAC users from the local database Format delete jwac user username 15 all_users Parameters user Specify the user name to be deleted username 15 Specify the user name to be deleted The user name can be up to 15 characters long all_users Specify all user accounts in the local database will be deleted Restrictions Only Administrator Operator and P...

Page 393: ...user Command show jwac user User Name Password VID 112233 12345 123 123 1 Total Entries 2 DGS 3120 24TC admin 37 25 clear jwac auth_state Description This command is used to clear authentication entries Format clear jwac auth_state ports all portlist authenticated authenticating blocked mac_addr macaddr Parameters ports Specify the port range to delete hosts on all Specify to delete all ports port...

Page 394: ...te authentication entries DGS 3120 24TC admin clear jwac auth_state ports all blocked Command clear jwac auth_state ports all blocked Success DGS 3120 24TC admin 37 26 show jwac auth_state ports Description This command is used to display information for JWAC client hosts Format show jwac auth_state ports portlist Parameters portlist Optional Specify a port range to show the JWAC authentication en...

Page 395: ...zation is enabled for JWAC s RADIUS the authorized data assigned by the RADUIS server will be accepted if the global authorization network is enabled When the authorization is enabled for JWAC s local the authorized data assigned by the local database will be accepted Format config jwac authorization attributes radius enable disable local enable disable 1 Parameters radius If specified to enable t...

Page 396: ... Description This command is used to display the JWAC update server Format show jwac update_server Parameters None Restrictions None Example To display the JWAC update server DGS 3120 24TC admin show jwac update_server Command show jwac update_server Index IP TCP UDP Port State 1 172 18 0 0 21 TCP 1 Active 2 172 18 0 0 21 TCP 2 Active 3 172 18 0 0 21 TCP 3 Active DGS 3120 24TC admin 37 29 config j...

Page 397: ...enticate page desc 16 Specify the password title of the authenticate page The password title description can be up to 16 characters long logout_window_title Specify the logout windown title mapping of the authenticate page desc 32 Specify the logout windown title mapping of the authenticate page The logout window title description can be up to 32 characters long notification_line Specify this para...

Page 398: ...r User level users can issue this command Example To customize the authenticate page DGS 3120 24TC admin config jwac authenticate_page japanese Command config jwac authenticate_page japanese Success DGS 3120 24TC admin 37 31 show jwac authenticate_page Description This command is used to display the element mapping of the customized authenticate page Format show jwac authenticate_page Parameters N...

Page 399: ...nglish Version English Page Element Page Title Login Window Title Authentication Login User Name Title User Name Password Title Password Logout Window Title Logout from the network Notification Japanese Page Element Page Title Login Window Title 社内 LAN 認証ログイン User Name Title ユーザ ID Password Title パスワード CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All ...

Page 400: ...ting as enable Format enable jumbo_frame Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable the Jumbo frame DGS 3120 24TC admin enable jumbo_frame Command enable jumbo_frame The maximum size of jumbo frame is 13312 bytes Success DGS 3120 24TC admin 38 2 disable jumbo_frame Description This command is used to configure the jumbo frame s...

Page 401: ...n disable jumbo_frame Command disable jumbo_frame Success DGS 3120 24TC admin 38 3 show jumbo_frame Description This command is used to display the current configuration of jumbo frame Format show jumbo_frame Parameters None Restrictions None Example To show the Jumbo frame DGS 3120 24TC admin show jumbo_frame Command show jumbo_frame Jumbo Frame State Disabled Maximum Frame Size 1536 Bytes DGS 31...

Page 402: ...ni 39 1 enable l2protocol_tunnel Description This command is used to enable the Layer 2 protocol tunneling function Format enable l2protocol_tunnel Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the Layer 2 protocol tunneling function DGS 3120 24TC admin enable l2protocol_tunnel Command enable l2protocol_tunnel Success D...

Page 403: ... 00 00 for GVRP is 01 05 5D 00 00 21 for Layer 2 protocols MAC 01 00 0C CC CC CC is 01 05 5D 00 00 10 and for protocol MAC 01 00 0C CC CC CD is 01 05 5D 00 00 11 When QinQ is enabled an S TAG will be added to the Layer 2 PDU too The S TAG is assigned according QinQ VLAN configuration Format config l2protocol_tunnel ports portlist all type uni tunneled_protocol stp gvrp protocol_mac 01 00 0C CC CC ...

Page 404: ...nly Administrator Operator and Power User level users can issue this command Example To configure the STP tunneling on ports 1 4 DGS 3120 24TC admin config l2protocol_tunnel ports 1 1 1 4 type uni tunneled_protocol stp Command config l2protocol_tunnel ports 1 1 1 4 type uni tunneled_protocol stp Success DGS 3120 24TC admin 39 4 show l2protocol_tunnel Description This command is used to display Lay...

Page 405: ...ocol_tunnel Global State Enabled UNI Ports 1 1 1 4 NNI Ports DGS 3120 24TC admin To show Layer 2 protocol tunneling information summary DGS 3120 24TC admin show l2protocol_tunnel uni Command show l2protocol_tunnel uni UNI Tunneled Threshold Port Protocol packet sec 1 1 STP 0 1 2 STP 0 1 3 STP 0 1 4 STP 0 DGS 3120 24TC admin ...

Page 406: ...tion This command is used to create a link aggregation group on the Switch Format create link_aggregation group_id value 1 32 type lacp static Parameters group_id Specify the group id The number of link aggregation groups is project dependency The group number identifies each of the groups value 1 32 Enter the group ID value here This value must be between 1 and 32 type Optional Specify the group ...

Page 407: ...d is used to configure a previously created link aggregation group Format config link_aggregation group_id value 1 32 master_port port ports portlist state enable disable trap enable disable Parameters group_id Specify the group id The group number identifies each of the groups value 1 32 Enter the group ID value here This value must be between 1 and 32 master_port Optional Master port ID Specify ...

Page 408: ...nfig link_aggregation group_id 1 master_port 1 5 ports 1 5 1 7 Success DGS 3120 24TC admin 40 4 config link_aggregation algorithm Description This command is used to configure the part of the packet examined by the Switch when selecting the egress port for transmitting load sharing data This feature is available using the address based load sharing algorithm only Format config link_aggregation alg...

Page 409: ...show link_aggregation Description This command is used to display the current link aggregation configuration on the Switch Format show link_aggregation group_id value 1 32 algorithm Parameters group_id Optional Specify the group id The group number identifies each of the groups value 1 32 Enter the group ID value here This value must be between 1 and 32 algorithm Optional Allows you to specify the...

Page 410: ...ctive Port Status Enabled Flooding Port 7 Trap Disabled Total Entries 1 DGS 3120 24TC admin Link aggregation group enable and no member linkup DGS 3120 24TC admin show link_aggregation Command show link_aggregation Link Aggregation Algorithm MAC Source Dest Group ID 1 Type LACP Master Port 1 5 Member Port 1 5 1 7 Active Port Status Enabled Flooding Port Trap Disabled Total Entries 1 DGS 3120 24TC ...

Page 411: ...per port LACP mode Format config lacp_port portlist mode active passive Parameters lacp_port Specified a range of ports to be configured UnitID port number portlist Enter the list of port used for the configuration here mode Specify the LACP mode used active Specify to set the LACP mode as active passive Specify to set the LACP mode as passive Restrictions Only Administrator Operator and Power Use...

Page 412: ...rts to be configured UnitID port number portlist Enter the list of ports used for this configuration here If no parameter specified the system will display current LACP and all port status Restrictions None Example To show port lacp mode DGS 3120 24TC admin show lacp_port Command show lacp_port Port Activity 1 Active 2 Active 3 Active 4 Active 5 Active 6 Active 7 Active 8 Active 9 Active 10 Active...

Page 413: ...pv6 ipv6addr show lldp ports portlist show lldp local_ports portlist mode brief normal detailed show lldp remote_ports portlist mode brief normal detailed show lldp statistics show lldp statistics ports portlist config lldp_med fast_start repeat_count value 1 10 config lldp_med log state enable disable config lldp_med notification topo_change ports portlist all state enable disable config lldp_med...

Page 414: ...120 24TC admin enable lldp Command enable lldp Success DGS 3120 24TC admin 41 2 disable lldp Description This command is used to stop sending and receiving of LLDP advertisement packet Format disable lldp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable LLDP DGS 3120 24TC admin disable lldp Command disable lldp Success DG...

Page 415: ...d 10 tx_delay Specify the minimum interval between sending of LLDP messages due to constantly change of MIB content The default setting 2 seconds sec 1 8192 Enter the transmit delay value here This value must be between 1 and 8192 seconds reinit_delay Specify the the minimum time of reinitialization delay interval The default setting 2 seconds sec 1 10 Enter the re initiate delay value here This v...

Page 416: ...isable basic_tlvs all port_description system_name system_description system_capabilities enable disable dot1_tlv_pvid enable disable dot1_tlv_protocol_vid vlan all vlan_name 32 vlanid vidlist enable disable dot1_tlv_vlan_name vlan all vlan_name 32 vlanid vidlist enable disable dot1_tlv_protocol_identity all eapol lacp gvrp stp enable disable dot3_tlvs all mac_phy_configuration_status link_aggrega...

Page 417: ...ertisements will be disabled dot1_tlv_pvid This TLV optional data type determines whether the IEEE 802 1 organizationally defined port VLAN ID TLV transmission is allowed on a given LLDP transmission capable port The default state is disable enable Specify that the Dot1 TLV PVID option will be enabled disable Specify that the Dot1 TLV PVID option will be disabled dot1_tlv_protocol_vid This TLV opt...

Page 418: ...e auto negotiation function whether the function is enabled the auto negotiated advertised capability and the operational MAU type The default state is disabled link_aggregation Optional This TLV optional data type indicates that LLDP agent should transmit Link Aggregation TLV This type indicates the current link aggregation status of IEEE 802 3 MACs More precisely the information should include w...

Page 419: ...in config lldp ports all basic_tlvs system_name enable Command config lldp ports all basic_tlvs system_name enable Success DGS 3120 24TC admin To configure exclude the vlan nameTLV from the outbound LLDP advertisements for all ports DGS 3120 24TC admin config lldp ports all dot1_tlv_pvid enable Command config lldp ports all dot1_tlv_pvid enable Success DGS 3120 24TC admin To configure exclude the ...

Page 420: ...ll enable Success DGS 3120 24TC admin To configure exclude the MAC PHY configuration status TLV from the outbound LLDP advertisements for all ports DGS 3120 24TC admin config lldp ports all dot3_tlvs mac_phy_configuration_status enable Command config lldp ports all dot3_tlvs mac_phy_configuration_status enable Success DGS 3120 24TC admin 41 6 config lldp forward_ message Description This command i...

Page 421: ...Format show lldp Parameters None Restrictions None Example To display the LLDP system level configuration status Command show lldp LLDP System Information Chassis ID Subtype MAC Address Chassis ID 00 01 02 03 04 00 System Name System Description Gigabit Ethernet Switch System Capabilities Repeater Bridge LLDP Configurations LLDP Status Enabled LLDP Forward Status Enabled Message TX Interval 30 Mes...

Page 422: ... used for this configuration here Restrictions None Example To display management address information DGS 3120 24TC admin show lldp mgt_addr ipv4 192 168 254 10 Command show lldp mgt_addr ipv4 192 168 254 10 Address 1 Subtype IPV4 Address 192 168 254 10 IF type unknown OID 1 3 6 1 4 1 171 10 36 1 11 Advertising ports 1 1 1 5 1 7 2 10 2 20 DGS 3120 24TC admin 41 9 show lldp ports Description This c...

Page 423: ...t Address None Port VLAN ID Disabled Enabled Port_and_Protocol_VLAN_ID None Enabled VLAN Name None Enabled Protocol_Identity None MAC PHY Configuration Status Disabled Link Aggregation Disabled Maximum Frame Size Disabled DGS 3120 24TC admin 41 10 show lldp local_ports Description This command is used to display the per port information currently available for populating outbound LLDP advertisemen...

Page 424: ... Port ID 1 1 Port ID Subtype MAC Address Port ID 00 01 02 03 04 01 Port Description D Link DGS 3120 24TC R2 00 010 Port 1 on Unit 1 Port PVID 1 Management Address Count 2 Subtype IPv4 Address 0 0 0 0 IF Type IfIndex OID 1 3 6 1 4 1 171 10 117 1 1 Subtype IPv4 Address 10 90 90 90 IF Type IfIndex OID 1 3 6 1 4 1 171 10 117 1 1 PPVID Entries Count 0 None VLAN Name Entries Count 1 Entry 1 VLAN ID 1 VL...

Page 425: ...ount 2 PPVID Entries Count 0 VLAN Name Entries Count 1 Protocol Identity Entries Count 0 MAC PHY Configuration Status See Detail Link Aggregation See Detail Maximum Frame Size 1536 DGS 3120 24TC admin To display outbound LLDP advertisements for port 1 in brief mode DGS 3120 24TC admin show lldp local_ports 1 1 mode brief Command show lldp local_ports 1 1 mode brief Port ID 1 Port ID Subtype LOCAL ...

Page 426: ...admin show lldp remote_ports 1 1 1 2 mode brief Command show lldp remote_ports 1 1 1 2 mode brief Port ID 1 Remote Entities count 3 Entity 1 Chassis ID Subtype MACADDRESS Chassis ID 00 01 02 03 04 01 Port ID Subtype LOCAL Port ID 1 3 Port Description RMON Port 1 on Unit 3 Entity 2 Chassis ID Subtype MACADDRESS Chassis ID 00 01 02 03 04 02 Port ID Subtype LOCAL Port ID 1 4 Port Description RMON Por...

Page 427: ... Name Switch1 System Description Stackable Ethernet Switch System Capabilities Repeater Bridge Management Address count 1 Port VLAN ID 1 PPVID Entries count 5 VLAN Name Entries count 3 Protocol Id Entries count 2 MAC PHY Configuration Status See detail Power Via MDI See detail Link Aggregation See detail Maximum Frame Size 1536 Unknown TLVs count 2 Entity 2 Chassis ID Subtype MACADDRESS Chassis ID...

Page 428: ...t ID 1 3 Port Description RMON Port 3 on Unit 1 System Name Switch1 System Description Stackable Ethernet Switch System Capabilities Repeater Bridge Management Address 10 90 90 91 Port VLAN ID 1 Management Address Address 1 Subtype IPV4 Address 192 168 254 10 IF type unknown OID 1 3 6 1 4 1 171 10 36 1 11 Address 2 Subtype IPV4 Address 192 168 254 11 IF type unknown OID 2 3 6 1 4 1 171 10 36 1 11 ...

Page 429: ...nfiguration Status Auto negotiation support supported Auto negotiation status enabled Auto negotiation advertised capability xxxx hex Auto negotiation operational MAU type 0010 hex Power Via MDI Port class PSE PSE MDI pnower support supported PSE MDI power state enabled PSE pairs control ability uncontrollable PSE power pair signal power class 3 Link Aggregation Aggregation capability aggregated A...

Page 430: ... Restrictions None Example To display global statistics information DGS 3120 24TC admin show lldp statistics Command show lldp statistics Last Change Time 6094 Number of Table Insert 1 Number of Table Delete 0 Number of Table Drop 0 Number of Table Ageout 0 DGS 3120 24TC admin 41 13 show lldp statistics ports Description This command is used to display per port LLDP statistics Format show lldp sta...

Page 431: ...GS 3120 24TC admin 41 14 config lldp_med fast_start repeat_count Description This command is used to configure the fast start repeat count When an LLDP MED Capabilities TLV is detected for an MSAP identifier not associated with an existing LLDP remote system MIB the application layer shall start the fast start mechanism and set the medFastStart timer to medFastStartRepeatCount times 1 The default ...

Page 432: ...Restrictions Only Administrator and Operator level users can issue this command Example To enable the log state of LLDP MED events DGS 3120 24TC admin config lldp_med log state enable Command config lldp_med log state enable Success DGS 3120 24TC admin 41 16 config lldp_med notification topo_change ports Description This command is used to enable or disable each port for sending topology change no...

Page 433: ... the LLDP MED MIB corresponding to the respective port will not be populated Format config lldp_med ports portlist all med_transmit_capabilities all capabilities network_policy power_pse inventory 1 state enable disable Parameters portlist Specify a range of ports to be configured all Specify to set all ports in the system med_transit_capabilities Select to send the LLDP MED TLV capabilities speci...

Page 434: ...and is used to display LLDP MED per port configuration for advertisement options Format show lldp_med ports portlist Parameters portlist Optional Specify a range of ports to be displayed If a port list is not specified information for all ports will be displayed Restrictions None Example To display LLDP MED configuration information for port 1 DGS 3120 24TC admin show lldp_med ports 1 1 Command sh...

Page 435: ...D System Information Device Class Network Connectivity Device Hardware Revision A1 Firmware Revision 2 00 003 Software Revision 2 00 010 Serial Number abcd1234 Manufacturer Name D Link Model Name DGS 3120 24TC Gigabit Ethernet S Asset ID PoE Device Type PSE Device PoE PSE Power Source Primary LLDP MED Configuration Fast Start Repeat Count 5 LLDP MED Log State Enabled DGS 3120 24TC admin 41 20 show...

Page 436: ... 1 Command show lldp_med local_ports 1 1 Port ID 1 1 LLDP MED Capabilities Support Capabilities Support Network Policy Support Location Identification Not Support Extended Power Via MDI PSE Not Support Extended Power Via MDI PD Not Support Inventory Support Network Policy None Extended Power Via MDI None DGS 3120 24TC admin 41 21 show lldp_med remote_ports Description This command is used to displ...

Page 437: ...ies LLDP MED Device Class Endpoint Device Class III LLDP MED Capabilities Support Capabilities Support Network Policy Support Location Identification Support Extended Power Via MDI Support Inventory Support LLDP MED Capabilities Enabled Capabilities Enabled Network Policy Enabled Location Identification Enabled Extended Power Via MDI Enabled Inventory Enabled Network Policy Application Type Voice ...

Page 438: ...pe CivicAddress Location Information Extended Power Via MDI Power Device Type PD Device Power Priority High Power Source From PSE Power Request 8 Watts Inventory Management Hardware Revision Firmware Revision Software Revision Serial Number Manufacturer Name Model Name Asset ID DGS 3120 24TC admin ...

Page 439: ...abled a user would need to manually recover a disabled port The default value for the recover timer is 60 seconds value 0 0 is a special value that specifies that the auto recovery mechanism should be disabled When the auto recovery mechanism is disabled a user would need to manually recover a disabled port sec 60 1000000 Enter the recovery timer value here This value must be between 60 and 100000...

Page 440: ...Specify the range of ports that LBD will be configured on portlist Enter a list of ports all To set all ports in the system you may use the all parameter state Specify whether the LBD function should be enabled or disabled on the ports specified in the port list The default state is disabled enable Specify to enable the LBD function disable Specify to disable the LBD function Restrictions Only Adm...

Page 441: ...able the LBD function globally DGS 3120 24TC admin enable loopdetect Command enable loopdetect Success DGS 3120 24TC admin 42 4 disable loopdetect Description This command is used to disable the LBD function globally on the Switch Format disable loopdetect Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the LBD function ...

Page 442: ...arameters None Restrictions Only Administrator and Operator level users can issue this command Example To show the LBD global settings DGS 3120 24TC admin show loopdetect Command show loopdetect LBD Global Settings Status Disabled Mode Port based Interval 10 sec Recover Time 60 sec Trap State None Log State Enabled DGS 3120 24TC admin 42 6 show loopdetect ports Description This command is used to ...

Page 443: ...abled Normal 3 Enabled Normal 4 Enabled Normal 5 Enabled Loop 6 Enabled Normal 7 Enabled Loop 8 Enabled Normal 9 Enabled Normal DGS 3120 24TC admin 42 7 config loopdetect trap Description This command is used to configure the trap modes for LBD Format config loopdetect trap none loop_detected loop_cleared both Parameters none There is no trap in the LBD function loop_detected Trap will only be sen...

Page 444: ...igure the log state for LBD The default value is enabled Format config loopdetect log state enable disable Parameters state Specify the state of the LBD log feature enable Enable the LBD log feature disable Disable the LBD log feature All LBD related logs will not be recorded Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the log state ...

Page 445: ...able mac_notification Description This command is used to enable global MAC address table notification on the Switch Format enable mac_notification Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable mac_notification function DGS 3120 24TC admin enable mac_notification Command enable mac_notification Success DGS 3120 24TC admin 43 2 dis...

Page 446: ...e int 1 500 Parameters interval Optional The time in seconds between notifications sec 1 2147483647 Enter the interval time here This value must be between 1 and 2147483647 seconds historysize Optional This is maximum number of entries listed in the history log used for notification Up to 500 entries can be specified int 1 500 Enter the history log size here This value must be between 1 and 500 Re...

Page 447: ...nfiguration enable Enable the port s MAC address table notification disable Disable the port s MAC address table notification Restrictions Only Administrator and Operator level users can issue this command Example To enable 7th port s mac address table notification DGS 3120 24TC admin config mac_notification ports 1 7 enable Command config mac_notification ports 1 7 enable Success DGS 3120 24TC ad...

Page 448: ...ion Settings State Enabled Interval 1 History Size 500 DGS 3120 24TC admin 43 6 show mac_notification ports Description This command is used to display the port s Mac address table notification status settings Format show mac_notification ports portlist Parameters portlist Optional Enter a list of ports used for the configuration here Restrictions None Example To display all port s Mac address tab...

Page 449: ...20 24TC admin show mac_notification ports Command show mac_notification ports Port MAC Address Table Notification State 1 1 Disabled 1 2 Disabled 1 3 Disabled 1 4 Disabled 1 5 Disabled 1 6 Disabled 1 7 Disabled 1 8 Disabled 1 9 Disabled 1 10 Disabled DGS 3120 24TC admin ...

Page 450: ...d_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 config mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan delete mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 config mac_based_access_control authorization attributes radius enable disable local enable disable 1 show mac_based_access_control ports...

Page 451: ...rol Format disable mac_based_access_control Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the MAC based Access Control global state DGS 3120 24TC admin disable mac_based_access_control Command disable mac_based_access_control Success DGS 3120 24TC admin 44 3 config mac_based_access_control password Description This com...

Page 452: ...fig mac_based_access_control password switch Success DGS 3120 24TC admin 44 4 config mac_based_access_control method Description This command is used to configure the MAC based Access Control authentication method Format config mac_based_access_control method local radius Parameters local Specify to authenticate via the local database radius Specify to authenticate via a RADIUS server Restrictions...

Page 453: ...d Access Control guest VLAN membership DGS 3120 24TC admin config mac_based_access_control guest_vlan ports 1 8 Command config mac_based_access_control guest_vlan ports 1 8 Success DGS 3120 24TC admin 44 6 config mac_based_access_control ports Description This command is used to configure MAC based Access Control port s setting When the MAC based Access Control function is enabled for a port and t...

Page 454: ...s Control function is enabled or disabled enable Specify that the port s MAC based Access Control states will be enabled disable Specify that the port s MAC based Access Control states will be disabled mode Optional Specify the MAC based access control port mode used port_based Specify that the MAC based access control port mode will be set to port based host_based Specify that the MAC based acces...

Page 455: ...rts 1 1 1 8 aging_time infinite block_time 120 Command config mac_based_access_control ports 1 1 1 8 aging_time infinite block_time 120 Success DGS 3120 24TC admin 44 7 create mac_based_access_control Description This command is used to assign a static 802 1Q VLAN as a MAC based Access Control guest VLAN Format create mac_based_access_control guest_vlan vlan_name 32 guest_vlanid vlanid 1 4094 Para...

Page 456: ... VLAN name here This name can be up to 32 characters long guest_vlanid Specify the VID of the MAC based Access Control s guest VLAN vlanid 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete the MAC based Access Control guest VLAN called default DGS 3120 24TC admin delete ma...

Page 457: ...r all ports DGS 3120 24TC admin clear mac_based_access_control auth_state ports all Command clear mac_based_access_control auth_state ports all Success DGS 3120 24TC admin To delete the MAC based Access Control authentication information for the host that has a MAC address of 00 00 00 47 04 65 DGS 3120 24TC admin clear mac_based_access_control auth_state mac_addr 00 00 00 47 04 65 Command clear ma...

Page 458: ...l be assigned to the default VLAN after the host has been authorized DGS 3120 24TC admin create mac_based_access_control_local mac 00 00 00 00 00 01 vlan default Command create mac_based_access_control_local mac 00 00 00 00 00 01 vlan default Success DGS 3120 24TC admin 44 11 config mac_based_access_control_local Description This command is used to configure a MAC based Access Control local databa...

Page 459: ..._access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 Parameters mac Delete local database entry by specific MAC address macaddr Enter the MAC address used here vlan Delete local database entries by specific target VLAN name vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Delete local database entries by specific target VLAN ID vlanid 1 409...

Page 460: ...attributes assigned by the local database will be accepted Format config mac_based_access_control authorization attributes radius enable disable local enable disable 1 Parameters radius Optional If specified to enable the authorized attributes for example VLAN 802 1p default priority and ACL assigned by the RADUIS server will be accepted if the global authorization status is enabled The default st...

Page 461: ...rtlist Optional Enter the list of port used for this configuration here If no parameter is specified the global MAC based Access Control settings will be displayed Restrictions None Example To show the MAC based Access Control port configuration for ports 1 to 4 DGS 3120 24TC admin show mac_based_access_control ports 1 1 1 4 Command show mac_based_access_control ports 1 1 1 4 Port State Aging Time...

Page 462: ...4094 If the parameter is no specified displays all MAC based Access Control local database entries Restrictions None Example To show MAC based Access Control local database for the VLAN called default DGS 3120 24TC admin show mac_based_access_control_local vlan default Command show mac_based_access_control_local vlan default MAC Address VID 00 00 00 00 00 01 1 00 00 00 00 00 04 1 Total Entries 2 D...

Page 463: ...ccess_control max_users Description This command is used to configure the maximum number of authorized clients Format config mac_based_access_control max_users value 1 1000 no_limit Parameters max_users Specify to set the maximum number of authorized clients on the whole device N is project dependent value 1 1000 Enter the maximum users here This value must be between 1 and 1000 no_limit Specify t...

Page 464: ...cess Control will be sent out disable Disable trap for MAC based Access Control Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable trap state of MAC based Access Control DGS 3120 24TC admin config mac_based_access_control trap state enable Command config mac_based_access_control trap state enable Success DGS 3120 24TC admin 44 19 config mac...

Page 465: ...trol Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable log state of MAC based Access Control DGS 3120 24TC admin config mac_based_access_control log state disable Command config mac_based_access_control log state disable Success DGS 3120 24TC admin ...

Page 466: ...on of the maximum entries supported for the static MAC based entry Format create mac_based_vlan mac_address macaddr vlan vlan_name 32 vlanid vlanid 1 4094 Parameters mac_address Specify the MAC address used macaddr Enter the MAC address here vlan The VLAN to be associated with the MAC address vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify the VLAN by...

Page 467: ...lan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Optional Specify the VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 If no parameter is specified ALL static configured entries will be removed Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a static MAC based...

Page 468: ...cify the VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 Restrictions None Example In the following example MAC address 00 80 c2 33 c3 45 is assigned to VLAN 300 by manual config It is assigned to VLAN 400 by Voice VLAN Since Voice VLAN has higher priority than manual configuration the manual configured entry will become inactive To display the MAC based ...

Page 469: ...ror port port add delete source ports portlist rx tx both Parameters port The port that will receive the packets duplicated at the mirror port port Enter the port number to be configured here add Optional The mirror entry to be added delete Optional The mirror entry to be deleted source ports Optional The port that will be mirrored All packets entering and leaving the source port can be duplicated...

Page 470: ...ns Only Administrator and Operator level users can issue this command Example To enable mirroring function DGS 3120 24TC admin enable mirror Command enable mirror Success DGS 3120 24TC admin 46 3 disable mirror Description This command is used to disable mirror function without having to modify the mirror session configuration Format disable mirror Parameters None Restrictions Only Administrator a...

Page 471: ...4 show mirror Description This command is used to display the current mirror function state and mirror session configuration on the Switch Format show mirror Parameters None Restrictions None Example To display mirroring configuration DGS 3120 24TC admin show mirror Command show mirror Current Settings Mirror Status Disabled Target Port 2 1 Mirrored Port RX 1 1 TX 1 1 DGS 3120 24TC admin ...

Page 472: ... debug level on the specified ports Format debug stp config ports portlist all event bpdu state_machine all state disable brief detail Parameters portlist Specify the STP port range to debug all Specify to debug all ports on the Switch event Debug the external operation and event processing bpdu Debug the BPDU s that have been received and transmitted state_machine Debug the state change of the ST...

Page 473: ...sers can issue this command Example To show STP debug information DGS 3120 24TC admin debug stp show information Command debug stp show information Warning only support local device Spanning Tree Debug Information Port Status In Hardware Table Instance 0 Port 1 1 FOR Port 1 2 FOR Port 1 3 FOR Port 1 4 FOR Port 1 5 FOR Port 1 6 FOR Port 1 7 FOR Port 1 8 FOR Port 1 9 FOR Port 1 10 FOR Port 1 11 FOR ...

Page 474: ...P debug level on specified ports Format debug stp show flag ports portlist Parameters ports Optional Specify the STP ports to display portlist Optional Enter the list of port used for this configuration here If no parameter is specified all ports on the Switch will be displayed Restrictions Only Administrator level users can issue this command Example To display the debug STP levels on all ports D...

Page 475: ...f 1 19 Brief Brief Brief 1 20 Brief Brief Brief 1 21 Brief Brief Brief 1 22 Brief Brief Brief 1 23 Brief Brief Brief 1 24 Brief Brief Brief DGS 3120 24TC admin 47 4 debug stp show counter Description This command is used to display the STP counters Format debug stp show counter ports portlist all Parameters ports Optional Specify the STP ports for display portlist Enter the list of port used for t...

Page 476: ...obal STP Disabled 0 Port STP Disabled 0 Invalid packet Format 0 Invalid Protocol 0 Configuration BPDU Length 0 TCN BPDU Length 0 RST BPDU Length 0 Invalid Type 0 Invalid Timers 0 DGS 3120 24TC admin 47 5 debug stp clear counter Description This command is used to clear the STP counters Format debug stp clear counter ports portlist all Parameters ports Specify the port range portlist Enter the list...

Page 477: ...able Parameters state Specify the STP debug state enable Enable the STP debug state disable Disable the STP debug state Restrictions Only Administrator level users can issue this command Example To configure the STP debug state to enable and then disable the STP debug state DGS 3120 24TC admin debug stp state enable Command debug stp state enable Success DGS 3120 24TC admin debug stp state disable...

Page 478: ... enable Enable sending new root traps new_root Specify the state of sending topology change traps The default state is enable enable Enable sending topology change traps disable Enable sending topology change traps Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the sending state for STP traps DGS 3120 24TC admin config stp trap new_r...

Page 479: ...up ports portlist vlanid vlanid_list ipv4 ipv6 show limited_multicast_addr ports portlist vlanid vlanid_list ipv4 ipv6 config cpu_filter l3_control_pkt portlist dvmrp pim igmp_query all state enable disable show cpu_filter l3_control_pkt ports portlist 48 1 create mcast_filter_profile Description This command is used to configure a multicast address profile Multiple ranges of multicast addresses c...

Page 480: ...name can be up to 32 characters long profile_name Provides a meaningful description for the profile name 32 Enter the profile name here THe profile name can be up to 32 characters long add Specify to add a multicast address delete Specify to delete a multicast address mcast_address_list List of the multicast addresses to be put in the profile You can either specify a single multicast IP address or...

Page 481: ... multicast IP address or a range of IPv6 multicast addresses connected by Restrictions Only Administrator Operator and Power User level users can issue this command Example To add the IPv6 multicast address range FFF0E 100 0 0 20 FFF0E 100 0 0 22 to profile ID 3 DGS 3120 24TC admin config mcast_filter_profile profile_id 3 add FF0E 100 0 0 20 FF0E 100 0 0 22 Command config mcast_filter_profile prof...

Page 482: ..._profile profile_name MOD Command delete mcast_filter_profile profile_name MOD Total entries 2 DGS 3120 24TC admin 48 5 show mcast_filter_profile Description This command is used to display the defined multicast address profiles If the IPv4 or IPv6 option is not specified IPv4 is implied Format show mcast_filter_profile ipv4 ipv6 profile_id value 1 24 profile_name name 32 Parameters ipv4 Optional ...

Page 483: ...d_list ipv4 ipv6 add profile_id value 1 24 profile_name name 32 delete profile_id value 1 24 profile_name name 32 all access permit deny 1 Parameters ports Specify the range of ports to configure the multicast address filtering function portslist Enter the list of port to be configured here vlanid Specify the VLAN ID of the VLAN that the multicast address filtering function will be configured on v...

Page 484: ...fied as drop The newly learned group will replace the eldest group if the action is specified as replace Format config max_mcast_group ports portlist vlanid vlanid_list ipv4 ipv6 max_group value 1 1024 infinite action drop replace 1 Parameters ports Specify the range of ports to configure the max_mcast_group portlist Enter the list of ports to be configured here vlanid Specify the VLAN ID to confi...

Page 485: ...the IPv4 or IPv6 option is not specified IPv4 is implied Format show max_mcast_group ports portlist vlanid vlanid_list ipv4 ipv6 Parameters ports Specify the range of ports for displaying information about the maximum number of multicast groups that the specified ports can join portlist Optional Enter the list of ports to be configured here vlanid Specify the VLAN ID for displaying the maximum num...

Page 486: ...on a port it limits the multicast groups operated by the IGMP or MLD snooping function and layer 3 functions When the function is configured on a VLAN it limits the multicast groups operated by the IGMP or MLD layer 3 functions If the IPv4 or IPv6 option is not specified IPv4 is implied Format show limited_multicast_addr ports portlist vlanid vlanid_list ipv4 ipv6 Parameters ports Specify the rang...

Page 487: ...62 200 Port 3 Access Deny Profile ID Name Multicast Addresses 1 customer 224 19 62 34 224 19 162 200 DGS 3120 24TC admin To show the limited multicast settings configured on VLAN 1 DGS 3120 24TC admin show limited_multicast_addr vlan 1 Command show limited_multicast_addr vlan 1 VLAN ID 1 Access Deny Profile ID Name Multicast Addresses 1 customer 224 19 62 34 224 19 162 200 Success DGS 3120 24TC ad...

Page 488: ...function disable Disable the filtering function Restrictions Only Administrator Operator and Power User level users can issue this command Example To filter the DVMRP control packets on ports 1 to 2 DGS 3120 24TC admin config cpu_filter l3_control_pkt 1 1 1 2 dvmrp state enable Command config cpu_filter l3_control_pkt 1 1 1 2 dvmrp state enable Success DGS 3120 24TC admin 48 11 show cpu_filter l3_...

Page 489: ...Reference Guide 485 DGS 3120 24TC admin show cpu_filter l3_control_pkt ports 1 1 1 2 Command show cpu_filter l3_control_pkt ports 1 1 1 2 Port IGMP Query DVMRP PIM 1 1 Disabled Enabled Disabled 1 2 Disabled Enabled Disabled DGS 3120 24TC admin ...

Page 490: ...rofile_name profile_name 1 32 all show igmp_snooping mld_snooping multicast_vlan_group_profile profile_name 1 32 config igmp_snooping mld_snooping multicast_vlan_group vlan_name 32 add delete profile_name profile_name 1 32 show igmp_snooping mld_snooping multicast_vlan_group vlan_name 32 delete igmp_snooping mld_snooping multicast_vlan vlan_name 32 enable igmp_snooping mld_snooping multicast_vlan ...

Page 491: ...ity will be changed by the Switch based on the remap priority This flag will only take effect when the remap priority is set Restrictions Only Administrator Operator and Power User level users can issue this command Example To create an IGMP snooping multicast VLAN with the VLAN name mv1 and the VID 2 DGS 3120 24TC admin create igmp_snoop multicast_vlan mv1 2 Command create igmp_snoop multicast_vl...

Page 492: ...list of port to be configured here state Used to specify if the multicast VLAN for a chosen VLAN should be enabled or disabled enable Specify to enable the multicast VLAN for a chosen VLAN disable Specify to disable the multicast VLAN for a chosen VLAN replace_source_ip Before forwarding the report packet sent by the host the source IP address in the join packet must be replaced by this IP address...

Page 493: ...ied range of ports will become untagged members of the multicast VLAN portlist Enter the list of port to be configured here tag_member_port Specify that the port or range of ports will become tagged members of the multicast VLAN portlist Enter the list of port to be configured here source_port Specify the port or range of ports to be added to the multicast VLAN portlist Enter the list of port to b...

Page 494: ...ooping multicast group profile on the Switch Format create igmp_snooping mld_snooping multicast_vlan_group_profile profile_name 1 32 Parameters igmp_snooping Specify that an IGMP snooping profile will be created mld_snooping Specify that an MLD snooping profile will be created multicast_vlan_group_profile Specify the multicast VLAN profile name The maximum length is 32 characters profile_name 1 32...

Page 495: ...225 1 1 18 225 1 1 20 delete Deletes a multicast address list to or from this multicast VLAN profile The mcast_address_list can be a continuous single multicast addresses such as 225 1 1 1 225 1 1 3 225 1 1 8 or a multicast address range such as 225 1 1 1 225 2 2 2 or both types such as 225 1 1 1 225 1 1 18 225 1 1 20 mcast_address_list Enter the multicast VLAN IP address here Restrictions Only Ad...

Page 496: ...es such as FF1E 1 a multicast address range such as FF1E 1 FF1E 2 or both of them such as FF1E 1 FF1E 10 FF1E 20 mcast_v6address_list Enter the multicast VLAN IPv6 address here Restrictions Only Administrator Operator and Power User level users can issue this command Example To add a multicast address or range to an MLD snooping multicast VLAN profile with name MOD DGS 3120 24TC admin config mld_s...

Page 497: ... MOD Command delete igmp_snooping multicast_vlan_group_profile profile_name MOD Success DGS 3120 24TC admin 49 8 show igmp_snooping mld_snooping multicast_vlan_group_profile Description This command is used to show the IGMP snooping or MLD snooping multicast group profiles Format show igmp_snooping mld_snooping multicast_vlan_group_profile profile_name 1 32 Parameters igmp_snooping Specify that an...

Page 498: ...ination multicast group If the destination multicast group of the join packet cannot be classified into any multicast VLAN to which this port belongs then the join packet will be learned on the natural VLAN of the packet Note that a profile cannot overlap in different multicast VLANs Multiple profiles can be added to a multicast VLAN Format config igmp_snooping mld_snooping multicast_vlan_group vl...

Page 499: ...g multicast VLAN group Format show igmp_snooping mld_snooping multicast_vlan_group vlan_name 32 Parameters igmp_snooping Specify that IGMP snooping VLAN groups should be displayed mld_snooping Specify that MLD snooping VLAN groups should be displayed multicast_vlan_group Specify the the name of the multicast VLAN to be displayed vlan_name 32 Optional Enter the VLAN name here The VLAN name can be u...

Page 500: ... and Power User level users can issue this command Example To delete an MLD snooping multicast VLAN called v1 DGS 3120 24TC admin delete mld_snooping multicat_vlan v1 Command delete mld_snooping multicat_vlan v1 Success DGS 3120 24TC admin 49 12 enable igmp_snooping mld_snooping multicast_vlan Description This command is used to control the status of the multicast VLAN function The command disable...

Page 501: ...mp_snooping is used to disable the ordinary IGMP snooping function while the command disable mld_snooping is used to disable the ordinary MLD snooping function By default the multicast VLAN is disabled Format disable igmp_snooping mld_snooping multicast_vlan Parameters igmp_snooping Specify that the IGMP snooping multicast VLAN function should be disabled mld_snooping Specify that the MLD snooping...

Page 502: ...he IGMP snooping multicast VLAN function will be configured mld_snooping Specify that the MLD snooping multicast VLAN function will be configured multicast_vlan forward_unmatched Specify to enable or disable packet flooding on the multicast VLAN enable The packet will be flooded on the VLAN disable The packet will be dropped Restrictions Only Administrator Operator and Power User level users can i...

Page 503: ...N name here The VLAN name can be up to 32 characters long Restrictions None Example To display all IGMP snooping multicast VLANs DGS 3120 24TC admin show igmp_snooping multicast_vlan Command show igmp_snooping multicast_vlan IGMP Multicast VLAN Global State Disabled IGMP Multicast VLAN Forward Unmatched Disabled VLAN Name test VID 100 Member Untagged Ports 1 Tagged Member Ports Source Ports 3 Unta...

Page 504: ...ts portlist instance_id value 0 15 internalCost auto value 1 200000000 priority value 0 240 config stp ports portlist externalCost auto value 1 200000000 hellotime value 1 2 migrate yes no edge true false auto p2p true false auto state enable disable restricted_role true false restricted_tcn true false fbpdu enable disable show stp ports portlist config stp priority value 0 61440 instance_id value...

Page 505: ... User level users can issue this command Example To disable STP DGS 3120 24TC admin disable stp Command disable stp Success DGS 3120 24TC admin 50 3 config stp Description This command is used to configure the bridge parameters global settings Format config stp maxage value 6 40 maxhops value 6 40 hellotime value 1 2 forwarddelay value 4 30 txholdcount value 1 10 fbpdu enable disable nni_bpdu_addr...

Page 506: ... Enter the transmitted BPDU restriction value here This value must be between 1 and 10 fbpdu Optional To decide if the bridge will flood STP BPDU when STP functionality is disabled enable Specify that the bridge will flood STP BPDU when STP functionality is disabled disable Specify that the bridge will not flood STP BPDU when STP functionality is disabled nni_bpdu_addr Optional Used to determine t...

Page 507: ...y Change Trap Enabled NNI BPDU Address dot1d DGS 3120 24TC admin 50 5 create stp instance_id Description This command is used to create an MST Instance without mapping the corresponding VLANs Format create stp instance_id value 1 15 Parameters instance_id Specify the MSTP instance ID Instance 0 represents for default instance CIST value 1 15 Enter the MSTP instance ID here This value must be betwe...

Page 508: ... the MSTP instance ID here This value must be between 1 and 15 add_vlan Specify to map the specified VLAN list to an existing MST instance remove_vlan Specify to delete the specified VLAN list from an existing MST instance vidlist Specify a list of VLANs by VLAN ID Restrictions Only Administrator Operator and Power User level users can issue this command Example To map a VLAN ID to an MSTP instanc...

Page 509: ...4TC admin delete stp instance_id 2 Command delete stp instance_id 2 Success DGS 3120 24TC admin 50 8 config stp mst_config_id Description This command is used to change the name or the revision level of the MST configuration identification Format config stp mst_config_id revision_level int 0 65535 name string Parameters name Optional Specify the name given for a specific MST region string Enter th...

Page 510: ... show stp mst_config_id Description This command is used to show the MST configuration identification Format show stp mst_config_id Parameters None Restrictions None Example show STP MST configuration ID DGS 3120 24TC admin show stp mst_config_id Command show stp mst_config_id Current MST Configuration Identification Configuration Name 00 22 22 22 22 00 Revision Level 0 MSTI ID Vid list CIST 1 409...

Page 511: ...inistrator Operator and Power User level users can issue this command Example To configure STP MST ports DGS 3120 24TC admin config stp mst_ports 1 1 instance_id 0 internalCost auto Command config stp mst_ports 1 1 instance_id 0 internalCost auto Success DGS 3120 24TC admin 50 11 config stp ports Description This command is used to configure all the parameters of ports except for Internal Path Cos...

Page 512: ...is enabled disable Specify that STP functionality on the port s is disabled restricted_role Optional To decide if this port not to be selected as Root Port The default value is false true Specify that the port can be specified as the root port false Specify that the port can not be specified as the root port restricted_tcn Optional To decide if this port not to propagate topology change The defaul...

Page 513: ...to Yes Port RestrictedRole False Port RestrictedTCN False Port Forward BPDU Disabled MSTI Designated Bridge Internal PathCost Prio Status Role 0 N A 200000 128 Disabled Disabled CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 50 13 config stp priority Description This command is used to configure the instance priority Format config stp priority value 0 61440 instance_id value 0 15 Pa...

Page 514: ... Format config stp trap topo_change disable enable new_root enable disable Parameters topo_change Specify enable or disable sending topology change traps disable Disable sending topology change traps enable Enable sending topology change traps new_root Specify enable or disable sending new root traps enable Enable sending new root traps disable Disable sending new root traps Restrictions Only Admi...

Page 515: ...users can issue this command Example To configure STP version DGS 3120 24TC admin config stp version mstp Command config stp version mstp Success DGS 3120 24TC admin To config STP version with the same value of old configuration DGS 3120 24TC admin config stp version mstp Command config stp version mstp Configure value is the same with current value Success DGS 3120 24TC admin 50 16 show stp insta...

Page 516: ... instance Command show stp instance STP Instance Settings Instance Type CIST Instance Status Enabled Instance Priority 32768 bridge priority 32768 sys ID ext 0 STP Instance Operational Status Designated Root Bridge 32768 00 22 22 22 22 00 External Root Cost 0 Regional Root Bridge 32768 00 22 22 22 22 00 Internal Root Cost 0 Designated Bridge 32768 00 22 22 22 22 00 Root Port None Max Age 20 Forwar...

Page 517: ...This command is used to create the NLB unicast FDB entry Format create nlb unicast_fdb vlan_name 32 vlanid vlanid macaddr Parameters vlan_name 32 Specify the VLAN name of the NLB unicast FDB entry to be created vlanid Specify the VLAN ID of the NLB unicast FDB entry to be created vlanid Enter the ID of the VLAN macaddr Specify the MAC address of the NLB unicast FDB entry to be created Restrictions...

Page 518: ...cify to delete the ports portlist Specify a list of forwarding ports to be added or removed Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure NLB unicast FDB entry for the product that support the VLAN information on the unicast forwarding DGS 3120 24TC admin config nlb unicast_fdb vlanid 1 02 bf 01 01 01 01 add 1 1 1 5 Command config n...

Page 519: ...ents will be forwarded to all servers but will only be processed by one of them The server can work in two different modes unicast mode and multicast mode In unicast mode the client use unicast MAC address as the destination MAC to reach the server In multicast mode the client use the multicast MAC address as the destination MAC to reach the server Regarding of the mode this destination Mac is the...

Page 520: ... to be configured vlanid Specify the VLAN by the VLAN ID vlanid Enter the VLAN ID here macaddr Specify the Mac address of the NLB multicast FDB entry to be configured add Specify a list of forwarding ports to be added delete Specify a list of forwarding ports to be deleted portlist Enter the list of ports used for this configuration Restrictions Only Administrator Operator and Power User level use...

Page 521: ... the NLB multicast FDB entry to be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete NLB multicast FDB entry DGS 3120 24TC admin delete nlb multicast_fdb default 03 bf 01 01 01 01 Command delete nlb multicast_fdb default 03 bf 01 01 01 01 Success DGS 3120 24TC admin 51 7 show nlb fdb Description This command is used to show the NLB...

Page 522: ... Switch CLI Reference Guide 518 DGS 3120 24TC admin show nlb fdb Command show nlb fdb MAC Address VLAN ID Egress Ports 03 bf 01 01 01 01 100 1 1 1 5 1 24 2 24 03 bf 01 01 01 01 1 1 1 1 5 1 24 2 24 Total Entries 2 DGS 3120 24TC admin ...

Page 523: ...zation dram unit unit_id show utilization flash unit unit_id clear counters ports portlist 52 1 show packet ports Description This command is used to display statistics about the packets sent and received by the Switch Format show packet ports portlist Parameters portlist Specify a range of ports to be displayed Restrictions None Example To display the packets analysis for port 7 of the unit 1 ...

Page 524: ...cast RX 0 0 Multicast RX 0 0 Broadcast RX 0 0 Frame Type Total Total sec RX Bytes 0 0 RX Frames 0 0 TX Bytes 0 0 TX Frames 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 52 2 show error ports Description This command is used to display the error statistics for a range of ports Format show errors ports portlist Parameters portlist Specify a range of ports to be displayed Restrict...

Page 525: ...Excessive Collision 0 Jabber 0 Single Collision 0 Drop Pkts 0 Collision 0 Symbol Error 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 52 3 show utilization Description This command is used to display real time CPU or port utilization statistics Format show utilization cpu ports Parameters cpu Specify to display information regarding the CPU ports Specify a range of ports to be dis...

Page 526: ...TX sec RX sec Util 1 1 0 0 0 1 21 0 0 0 1 2 0 0 0 1 22 0 0 0 1 3 0 0 0 1 23 0 0 0 1 4 0 0 0 1 24 0 0 0 1 5 0 0 0 1 6 0 0 0 1 7 0 0 0 1 8 0 0 0 1 9 0 0 0 1 10 0 0 0 1 11 0 0 0 1 12 0 0 0 1 13 0 0 0 1 14 0 0 0 1 15 0 0 0 1 16 0 0 0 1 17 0 0 0 1 18 0 0 0 1 19 0 0 0 1 20 0 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh To display the CPU utilization ...

Page 527: ...0 Five minutes 10 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 52 4 show utilization dram Description This command is used to show DRAM memory utilization Format show utilization dram unit unit_id Parameters unit Optional Specify the Switch unit ID to be displayed unit_id Enter teh Switch unit ID used here Restrictions None Example To display DRAM utilization ...

Page 528: ...flash memory utilization Format show utilization flash unit unit_id Parameters unit Optional Specify the Switch unit ID to be displayed unit_id Enter teh Switch unit ID used here Restrictions None Example To display FLASH utilization DGS 3120 24TC admin show utilization flash Command show utilization flash Unit 1 Flash Memory Utilization Total Flash 29618 KB Used Flash 5422 KB Utilization 18 CTRL ...

Page 529: ... the highest port number of the range also separeted by a colon are specified The beginning and end of the port list range are seperated by a dash portlist Enter a list of ports used for the configuration here If no parameter is specified system will display counters of all the ports Restrictions Only Administrator and Operator level users can issue this command Example To clear the Switch s stati...

Page 530: ... port s is active it initiates the discovery Otherwise it reacts to the discovery received from peer Disabling a port s OAM will cause the port to send out a dying gasp event to peers and then disconnect the established OAM link The link monitoring parameter is used to configure port Ethernet OAM link monitoring error symbols The link monitoring function provides a mechanism to detect and indicate...

Page 531: ... is 1 symbol error range 0 4294967295 Specify the range from 0 to 4294967295 window The range is 1000 to 60000 ms The default value is 1000ms millisecond 1000 60000 The range is 1000 to 60000 ms notify_state Specify the event notification status The default state is enable enable Specify to enable event notification disable Specify to disable event notification error_frame Specify the error frame ...

Page 532: ...e Specify to ignore the received Ethernet OAM remote loopback command The default method is ignore Restrictions Only Administrator and Operator level users can issue this command Example To configure Ethernet OAM on ports 1 to 2 in active mode DGS 3120 24TC admin config ethernet_oam ports 1 2 mode active Command config ethernet_oam ports 1 2 mode active Success DGS 3120 24TC admin To enable Ethern...

Page 533: ...he error frame threshold to10 and period to 1000000 ms for port 1 DGS 3120 24TC admin config ethernet_oam ports 1 link_monitor error_frame_period threshold 10 window 1000000 notify_state enable Command config ethernet_oam ports 1 link_monitor error_frame_period threshold 10 window 1000000 notify_state enable Success DGS 3120 24TC admin To configure a dying gasp event for port 1 DGS 3120 24TC admin...

Page 534: ...entity rejects the local device Operational The local OAM entity learns that both it and the remote OAM entity have accepted the peering NonOperHalfDuplex Since Ethernet OAM functions are not designed to work completely over half duplex port This value indicates Ethernet OAM is enabled but the port is in half duplex operation 3 OAM mode passive or active 4 Maximum OAMPDU size The largest OAMPDU th...

Page 535: ...og and syslog Format show ethernet_oam ports portlist status configuration statistics event_log index value_list Parameters portlist Optional Specify the range of ports to display status Specify to display the Ethernet OAM status configuration Specify to display the Ethernet OAM configuration statistics Specify to display Ethernet OAM statistics event_log Specify to display the Ethernet OAM event ...

Page 536: ...TX 0 Variable Response OAMPDU RX 0 Organization Specific OAMPDUs TX 0 Organization Specific OAMPDUs RX 0 Unsupported OAMPDU TX 0 Unsupported OAMPDU RX 0 Frames Lost Due To OAM 0 DGS 3120 24TC admin 53 3 clear ethernet_oam ports Description This command is used to clear Ethernet OAM information Format clear ethernet_oam ports portlist all event_log statistics Parameters portlist Specify a range of ...

Page 537: ...C admin clear ethernet_oam ports 1 statistics Command clear ethernet_oam ports 1 statistics Success DGS 3120 24TC admin To clear port 1 OAM events DGS 3120 24TC admin clear ethernet_oam ports 1 event_log Command clear ethernet_oam ports 1 event_log Success DGS 3120 24TC admin ...

Page 538: ...ample there are three fans on the left of the Switch if three fans is working normally there will display OK in the Left Fan field If some fans work failed such as fan 1 3 there will only display the failed fans in the Left Fan field such as 1 3 Fail In the same way the Right Fan Back Fan is same to Left Fan Because there is only one CPU Fan if it is working failed display Fail otherwise display O...

Page 539: ...eference Guide 535 54 2 show environment Description This command is used to display current status of power s and fan s on the system Format show environment Parameters None Restrictions None Example To display the standalone device environment ...

Page 540: ...hreshold Celsius 35 Unit 3 Internal Power Active External Power Fail Right Fan 1 Speed Low 3000 RPM Right Fan 2 Speed Low 3000 RPM Current Temperature Celsius 37 Fan High Temperature Threshold Celsius 40 Fan Low Temperature Threshold Celsius 35 DGS 3120 24TC admin 54 3 config temperature threshold Description This command is used to configure the warning threshold for high and low temperature The ...

Page 541: ...re the trap state for temperature warning event Format config temperature trap log state enable disable Parameters trap state Specify the trap state for the warning temperature event enable Enable trap state for warning temperature event The default state is enabled disable Disable trap state for warning temperature event log state Specify the log state for the warning temperature event enable Ena...

Page 542: ... issue this command Example To configure the warning fan traps state DGS 3120 24TC admin config fan trap state enable Command config fan trap state enable Success DGS 3120 24TC admin 54 6 config power trap state Description This command is used to configure the trap state for power warning event Format config power trap state enable disable Parameters enable Enable trap state for warning power eve...

Page 543: ...xStack DGS 3120 Series Managed Switch CLI Reference Guide 539 DGS 3120 24TC admin config power trap state enable Command config power trap state enable Success DGS 3120 24TC admin ...

Page 544: ... will send an infinite ICMP echo messages The maximum value is 255 The default is 0 indicating infinity Press the CTRL C to break the ping test value 1 255 Enter the number of individual ICMP echo messages to be sent here This value must be between 1 and 255 timeout Optional Defines the time out period while waiting for a response from the remote device A value of 1 to 99 seconds can be specified ...

Page 545: ... break the ping test value 1 255 Enter the number of individual ICMP echo messages to be sent here This value must be between 1 and 255 size Optional Size of the test packet value 1 6000 Enter the size of the test packet here This value must be between 1 and 6000 timeout Optional Defines the time out period while waiting for a response from the remote device A value of 1 to 10 seconds can be speci...

Page 546: ...on This command is used to set the maximum number of port security entries that can be authorized system wide There are four levels of limitations on the learned entry number for the entire system for a port for a VLAN and for a specific VLAN on a port If any limitation is exceeded the new entry will be discarded The setting for system level maximum learned users must be greater than the total of ...

Page 547: ...he maximum number of port security entries that can be learned on this port If the value is set to 0 it means that no user can be authorized by the port security function on this port If the setting is smaller than the number of current learned entries on the port the command will be rejected The default value is 32 max_lock_no 0 3072 Enter the maximum number of port security entries that can be l...

Page 548: ...nd a specific VLAN on a port If any limitation is exceeded the new entry will be discarded Format config port_security vlan vlan_name 32 vlanid vidlist max_learning_addr max_lock_no 0 3072 no_limit Parameters vlan Specify the VLAN by name vlan_name 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify a list of VLANs by VLAN ID vidlist Enter the VLAN ID list here max...

Page 549: ... 32 Enter the VLAN name here This name can be up to 32 characters long vlanid Specify the VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID list here This value must be between 1 and 4094 mac_address Specify the MAC address of the entry macaddr Enter the MAC address used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete the port securit...

Page 550: ... clear port_security_entry ports 6 Success DGS 3120 24TC admin 56 6 show port_security_entry Description This command is used to display the port security entries If more than one parameter is selected only the entries matching all the selected parameters will be displayed If the user specifies ports and VLAN either the VLAN name or VLAN ID list only the entries matching all the parameters will be...

Page 551: ...r vlan_name are specified configurations matching any of these parameters will be displayed Format show port_security ports portlist vlan vlan_name 32 vlanid vidlist Parameters ports Optional Specify the range of ports that will show their configuration While this parameter is null to show the entries on all of the ports portlist Enter the list of port used for this configuration here vlan Optiona...

Page 552: ...rt security trap is enabled if there is a new MAC that violates the pre defined port security configuration a trap will be sent out with the information about the MAC address and port If the port security trap is disabled no trap will be sent out for a MAC address violation Format config port_security trap state enable disable Parameters enable Enable port security trap disable Disable port securi...

Page 553: ...ion the MAC port and other relevant information will be logged otherwise no log will be generated Format config port_security log state enable disable Parameters enable Enable port security log disable Disable port security log Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the port security log DGS 3120 24TC admin config port_security ...

Page 554: ... on power supply capability value 37 760 Enter the power limit value here This value must be between 37 and 760 power_disconnect_method Optional Configure the disconnection method that will be used when the power budget is running out When the system attempts to supply power to a new port if the power budget is insufficient to do this PoE controller will initiate port disconnection procedure to pr...

Page 555: ...ese four classes For each class the power limit is a little more than the power consumption range for the class This takes the factor of the power loss on cable into account Thus the following are the typical values defined by the chip vendor Class 0 15400mW Class 1 4000mW Class 2 7000mW Clase 3 15400mW Other than these four pre defined settings users can directly specify any value that the chip s...

Page 556: ...er to ports critical Specify that the priority will be set to critical high Specify that the priority will be set to high low Specify that the priority will be set to low power_limit Optional Configure the per port power limit If a port exceeds its power limit it will be shut down class_0 Specify that the power limit will be set to class 0 class_1 Specify that the power limit will be set to class ...

Page 557: ...supported poe units in the systems Restrictions None Example To display PoE system DGS 3120 24PC admin show poe system units 1 Command show poe system units 1 Unit 1 PoE System Information Power Limit 760 Watts Power Consumption 0 Watts Power Remained 371 Watts Power Disconnection Method Deny Next Port Detection Legacy PD Disabled If Power Disconnection Method is set to deny next port then the sys...

Page 558: ...Limit mW Time Range Class Power mW Voltage decivolt Current mA Status 1 1 Enabled Low 15400 User defined 0 0 0 0 OFF Interim state during line detection 1 2 Enabled Low 15400 User defined 0 0 0 0 OFF Interim state during line detection 1 3 Enabled Low 15400 User defined 0 0 0 0 OFF Interim state during line detection 1 4 Enabled Low 15400 User defined 0 0 0 0 OFF Interim state during line detectio...

Page 559: ... monitor energy on the cable The moment energy is detected the port will turn on fully as to the IEEE specification s requirements The power saving function is performed while no link is detected and it will not affect the port capabilities while the link is up When a link is detected on the port for a shorter cable the power consumption will be reduced by lowering the signal amplitude since the s...

Page 560: ...120 24TC admin 58 2 config power_saving hibernation Description This command is used to add or delete the power saving schedule on system hibernation When the system enters hibernation mode the Switch changes to a low power state and is idle It shuts down all the ports and all network function does not work Only the console connection will work via the RS232 port Format config power_saving hiberna...

Page 561: ... range_name 32 clear_time_range Parameters add Specify to add a time range delete Specify to delete a time range time_range Specify the name of the time range range_name32 Enter a name for maximum 32 characters clear_time_range Specify to clear all the time range of port LED Restrictions Only Administrator and Operator level users can issue this command Example To add a time range named range_1 on...

Page 562: ...Only Administrator and Operator level users can issue this command Example To add a time range named range_1 on port 1 DGS 3120 24TC admin config power_saving port 1 1 add time_range range_1 Command config power_saving port 1 1 add time_range range_1 Success DGS 3120 24TC admin To delete a time range named range_2 on port 1 DGS 3120 24TC admin config power_saving port 1 1 delete time_range range_2...

Page 563: ...saving function setting DGS 3120 24TC admin show power_saving Command show power_saving Link Detection State Enabled Length Detection State Disabled Power Saving Configuration On System Hibernation State Disabled Power Saving Configuration On Port LED State Disabled Power Saving Configuration On Port State Disabled DGS 3120 24TC admin 58 6 config led state Description This command is used to confi...

Page 564: ...TC admin config led state disable Command config led state disable Success DGS 3120 24TC admin 58 7 show led Description This command is used to display the setting of all port s LED admin state Format show led Parameters None Restrictions None Example To display the setting of all port s LED admin state DGS 3120 24TC admin show led Command show led Port LED State Enabled DGS 3120 24TC admin ...

Page 565: ...uest packet if the tag is absent and remove the circuit ID tag from the received PPPoE offer and session confirmation packet The insert circuit ID contains the following information Client MAC address Device ID and Port number By default Switch IP address is used as the device ID to encode the circuit ID option Format config pppoe circuit_id_insertion state enable disable Parameters enable Specify...

Page 566: ...able enable Enable port s PPPoE circuit ID insertion function disable Disable port s PPPoE circuit ID insertion function circuit_id Configure the device ID part for encoding of the circuit ID option mac The MAC address of the Switch will be used to encode the circuit ID option ip The Switch s IP address will be used to encode the circuit ID option This is the default udf A user specified string to...

Page 567: ...cription This command is used to display Switch s port PPPoE Circuit ID insertion configuration Format show pppoe circuit_id_insertion ports portlist Parameters portlist Optional Specify a list of ports to be displayed Restrictions None Example To display port 2 5 PPPoE circuit ID insertion configuration DGS 3120 24TC admin show pppoe circuit_id_insertion ports 1 2 1 5 Command show pppoe circuit_i...

Page 568: ...xStack DGS 3120 Series Managed Switch CLI Reference Guide 564 DGS 3120 24TC admin ...

Page 569: ...roup group_id id all show port dot1v ports portlist 60 1 create dot1v_protocol_group Description This command is used to create a protocol group for protocol VLAN function Format create dot1v_protocol_group group_id id group_name name 32 Parameters group_id The ID of protocol group which is used to identify a set of protocols id Enter the group ID used here group_name Optional The name of the prot...

Page 570: ...col will be added to the specified group delete Specify that the protocol will be removed from the specified group protocol The protocol value is used to identify a protocol of the frame type specified ethernet_2 Specify that the Ethernet 2 protocol will be used ieee802 3_snap Specify that the IEEE 802 3 Snap protocol will be used ieee802 3_llc Specify that the IEEE 802 3 LLC protocol will be used...

Page 571: ...ot1v_protocol_group group_id 100 Command delete dot1v_protocol_group group_id 100 Success DGS 3120 24TC admin 60 4 show dot1v_protocol_group Description This command is used to display the protocols defined in a protocol group Format show dot1v_protocol_group group_id id group_name name 32 Parameters group_id Optional Specify the ID of the group to be displayed id Enter the group ID used here grou...

Page 572: ...e configuration here all Specify that all the ports will be used for this configuration add Specify that the group specified will be added protocol_group Specify that parameters for the group will follow group_id Specify the group ID of the protocol group id Enter the group ID used here group_name Specify the name of the protocol group name 32 Enter the name of the group used here This name can be...

Page 573: ...marketing 1 Command config port dot1v ports 1 3 add protocol_group group_id 10 vlan marketing 1 Success DGS 3120 24TC admin 60 6 show port dot1v Description This command is used to display the VLAN to be associated with untagged packet ingressed from a port based on the protocol group Format show port dot1v ports portlist Parameters ports Optional Specify a range of ports to be displayed portlist ...

Page 574: ...ed Switch CLI Reference Guide 570 DGS 3120 24TC admin show port dot1v ports 1 1 Command show port dot1v ports 1 1 Port 1 1 Protocol Group ID VLAN Name Protocol Priority 1 default 2 VLAN2 3 VLAN3 4 VLAN4 Success DGS 3120 24TC admin ...

Page 575: ...orts portlist all cvid vidlist show vlan_translation ports portlist cvid vidlist 61 1 enable qinq Description This command is used to enable QinQ When QinQ is enabled all network port roles will be NNI ports and outer TPID will be set to 0x88A8 all existing static VLANs will run as S VLAN all dynamic learned L2 address will be cleared all dynamic registered VLAN entries will be cleared and GVRP wi...

Page 576: ...d To run GVRP on the Switch the administrator should enable GVRP manually Format disable qinq Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable QinQ DGS 3120 24TC admin disable qinq Command disable qinq Success DGS 3120 24TC admin 61 3 config qinq inner_tpid Description The command is used to configure the inner TPID of th...

Page 577: ...l be used for the configuration role Optional Specify the port role in QinQ mode uni Specify that the port is connecting to the customer network nni Specify that the port is connecting to the service provider network missdrop Optional Specify the state of the miss drop of ports option enable Specify that the miss drop of ports option will be enabled disable Specify that the miss drop of ports opti...

Page 578: ... role nni outer_tpid 0x88A8 Success DGS 3120 24TC admin 61 5 show qinq Description This command is used to display the global QinQ status Format show qinq Parameters None Restrictions None Example To display the global QinQ status DGS 3120 24TC admin show qinq Command show qinq QinQ Status Enabled DGS 3120 24TC admin 61 6 show qinq inner_tpid Description This command is used to display the inner T...

Page 579: ...mand show qinq inner_tpid Inner TPID 0x9100 DGS 3120 24TC admin 61 7 show qinq ports Description This command is used to display the QinQ configuration of the ports Format show qinq ports portlist Parameters ports Specify a list of ports to be displayed portlist Optional Enter the list of ports to be displayed here Restrictions None Example To show the QinQ mode for ports 1 2 of unit 1 ...

Page 580: ...N Tag or stripped Format create vlan_translation ports portlist all add cvid vidlist replace cvid vlanid 1 4094 svid vlanid 1 4094 priority priority 0 7 Parameters ports Specify a list of ports to be configured portlist Enter the list of ports to be configured here all Specify that all the ports will be used for the configuration add Specify to add an S Tag to the packet cvid Specify the customer ...

Page 581: ...00 Command create vlan_translation ports 1 1 add cvid 30 svid 300 Success DGS 3120 24TC admin 61 9 delete vlan_translation ports Description This command is used to delete translation relationships between the C VLAN and the S VLAN Format delete vlan_translation ports portlist all cvid vidlist Parameters ports Specify a list of ports to be configured portlist Enter the list of ports to be configur...

Page 582: ...how vlan_translation ports portlist cvid vidlist Parameters ports Optional Specify a list of ports to be displayed portlist Enter the list of ports to be displayed here cvid Optional Specify the rules for the specified CVIDs vidlist Enter the CVID value used here Restrictions None Example To show C VLANs based on VLAN translation rules in the system DGS 3120 24TC admin show vlan_translation Comman...

Page 583: ...scp_dscp dscp dscp_list 62 1 config bandwidth_control Description This command is used to configure the port bandwidth limit control Format config bandwidth_control portlist all rx_rate no_limit value 64 1024000 tx_rate no_limit value 64 1024000 Parameters portlist Specify a range of ports to be configured all Specify that all the ports will be used for this configuration rx_rate Optional Specify ...

Page 584: ...e bandwidth can also be assigned by the RADIUS server through the authentication process If RADIUS server has assigned the bandwidth then the RADIUS assigned bandwidth will be the effective bandwidth The authentication with the RADIUS sever can be per port or per user For per user authentication there may be multiple bandwidth control values assigned when there are multiple users attached to this ...

Page 585: ...st of port used for this configuration here all For set all ports in the system you may use all parameter If no parameter is specified system will set all ports cos_id_list 0 7 Specify a list of priority queues The priority queue number is ranged from 0 to 7 min_rate Optional Specify that one of the parameters below no_limit or value m n will be applied to the mini rate at which the above specifie...

Page 586: ...s 1 1 1 10 1 min_rate 130 max_rate 1000 Command config per_queue bandwidth_control ports 1 1 1 10 1 min_rate 130 max_rate 1000 Granularity TX 64 Actual Rate MIN 128 MAX 960 Success 62 4 show per_queue bandwidth_control Description This command is used to display per port CoS bandwidth control settings Format show per_queue bandwidth_control portlist Parameters portlist Optional Specify a range of ...

Page 587: ... to be configured portlist Enter the list of port used for this configuration here class_id 0 7 This specifies the 8 hardware priority queues which the config scheduling command will apply to The four hardware priority queues are identified by number from 0 to 7 with the 0 queue being the lowest priority strict The queue will operate in strict mode weight Specify the weights for weighted round rob...

Page 588: ...queues operate in strict mode wrr Each queue operates based on its setting Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the traffic scheduling mechanism for each CoS queue DGS 3120 24TC admin config scheduling_mechanism strict Command config scheduling_mechanism strict Success DGS 3120 24TC admin To configure the traffic scheduling...

Page 589: ...or example DGS 3120 24TC admin show scheduling 1 1 Command show scheduling 1 1 QOS Output Scheduling On Port 1 1 Class ID Weight Class 0 1 Class 1 2 Class 2 3 Class 3 4 Class 4 5 Class 5 6 Class 6 7 Class 7 8 DGS 3120 24TC admin 62 8 show scheduling_mechanism Description This command is used to show the traffic scheduling mechanism Format show scheduling_mechanism portlist Parameters portlist Opti...

Page 590: ...1 17 Strict 1 18 Strict 1 19 Strict 1 20 Strict 1 21 Strict 1 22 Strict 1 23 Strict 1 24 Strict DGS 3120 24TC admin 62 9 config 802 1p user_priority Description This command is used to map the 802 1p user priority of an incoming packet to one of the eight hardware queues available on the Switch Format config 802 1p user_priority priority 0 7 class_id 0 7 Parameters priority 0 7 The 802 1p user pri...

Page 591: ... level users can issue this command Example To configure the 802 1p user priority DGS 3120 24TC admin config 802 1p user_priority 1 3 Command config 802 1p user_priority 1 3 Success DGS 3120 24TC admin 62 10 show 802 1p user_priority Description This command is used to display 802 1p user priority for ports Format show 802 1p user_priority Parameters None Restrictions None Example To display the 8...

Page 592: ...onfigured That is a range of ports for which all untagged packets received will be assigned the priority specified below The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list ran...

Page 593: ...S sever can be per port or port user For per port authentication the priority assigned by RADIUS server will be the effective port default priority For per user authentication the priority assigned by RADIUS will not be the effective port default priority whereas it will become the priority associated with MAC address Note that only devices supporting MAC based VLAN can provide per user authentica...

Page 594: ...62 13 enable hol_prevention Description This command is used to enable head of line prevention on the Switch Format enable hol_prevention Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable HOL prevention on the Switch DGS 3120 24TC admin enable hol_prevention Command enable hol_prevention Success DGS 3120 24TC admin 62 14 di...

Page 595: ...is command Example To disable HOL prevention on the Switch DGS 3120 24TC admin disable hol_prevention Command disable hol_prevention Success DGS 3120 24TC admin 62 15 show hol_prevention Description This command is used to display head of line prevention state on the Switch Format show hol_prevention Parameters None Restrictions None Example To display HOL prevention state on the Switch ...

Page 596: ...ll Specify that the command apply to all ports on the Switch state Enable or disable to trust DSCP By default DSCP trust is disabled enable Specify that the DSCP trust state will be enabled disable Specify that the DSCP trust state will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example Enable DSCP trust on ports 1 1 1 8 DGS 3120 24TC adm...

Page 597: ...ing of DSCP to priority will be used to determine the priority of the packet which will be then used to determine the scheduling queue when the port is in DSCP trust state The mapping of DSCP to color will be used to determine the initial color of the packet when the policing function of the packet is color aware and the packet is DSCP trusted The DSCP to DSCP mapping is used in the swap of DSCP o...

Page 598: ... the result DSCP of mapping Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the mapping of the DSCP priority to priority 1 DGS 3120 24TC admin config dscp map 1 1 1 8 dscp_priority 1 to 1 Command config dscp map 1 1 1 8 dscp_priority 1 to 1 Success DGS 3120 24TC admin To configure the global mapping of the DSCP priority to priority 1 ...

Page 599: ...e Example In case of project support per port configure show DSCP map configuration on port 1 1 DGS 3120 24TC admin show dscp map 1 1 dscp_dscp Command show dscp map 1 1 dscp_dscp DSCP to DSCP Mapping Port 1 1 0 1 2 3 4 5 6 7 8 9 0 0 1 2 3 4 5 6 7 8 9 1 10 11 12 13 14 15 16 17 18 19 2 20 21 22 23 24 25 26 27 28 29 3 30 31 32 33 34 35 36 37 38 39 4 40 41 42 43 44 45 46 47 48 49 5 50 51 52 53 54 55 ...

Page 600: ... A packet travels from the Switch where the monitored packet is received passing through the intermediate switch and then to the Switch where the sniffer is attached The first switch is also named the source switch To make the RSPAN function work the RSPAN VLAN source setting must be configured on the source switch For the intermediate and the last switch the RSPAN VLAN redirect setting must be co...

Page 601: ...e this command Example Configure RSPAN state to disabled DGS 3120 24TC admin disable rspan Command disable rspan Success DGS 3120 24TC admin 63 3 create rspan vlan Description This command is used to create the RSPAN VLAN Up to 16 RSPAN VLANs can be created Format create rspan vlan vlan_name vlan_name vlan_id value 1 4094 Parameters vlan_name Create the RSPAN VLAN by VLAN name vlan_name Enter the ...

Page 602: ...admin create rspan vlan vlan_id 3 Command create rspan vlan vlan_id 3 Success DGS 3120 24TC admin 63 4 delete rspan vlan Description This command is used to delete RSPAN VLANs Format delete rspan vlan vlan_name vlan_name vlan_id value 1 4094 Parameters vlan_name Delete RSPAN VLAN by VLAN name vlan_name Enter the VLAN name here vlan_id Delete RSPAN VLAN by VLAN ID value 1 4094 Enter the VLAN ID her...

Page 603: ...LAN ID here This value must be between 1 and 4094 redirect Specify output portlist for the RSPAN VLAN packets If the redirect port is a Link Aggregation port there will perform the Link Aggregation behavior for RSPAN packets add Specify to add output ports for the RSPAN VLAN packets delete Specify to delete output ports for the RSPAN VLAN packets ports Specify the output ports for the RSPAN VLAN p...

Page 604: ...lan_id 2 source Command config rspan vlan vlan_id 2 source Success DGS 3120 24TC admin To add redirect ports for special RSPAN VLAN on intermediate or destination switch DGS 3120 24TC admin config rspan vlan vlan_name vlan2 redirect add ports 1 18 1 19 Command config rspan vlan vlan_name vlan2 redirect add ports 1 18 1 19 Success DGS 3120 24TC admin config rspan vlan vlan_id 2 redirect add ports 1...

Page 605: ... the RSPAN VLAN by VLAN ID value 1 4094 Enter the VLAN ID here This value must be between 1 and 4094 Restrictions None Example Display the specific settings DGS 3120 24TC admin show rspan Command show rspan RSPAN Enabled RSPAN VLAN ID 2 Source Port RX 1 1 TX 1 1 Redirect Port 1 2 1 5 Total RSPAN VLAN 1 DGS 3120 24TC admin ...

Page 606: ...ll Specify all ports to be configured for the RPC portmapper filter state state Specify the RPC portmapper filter state enable Enable the RPC portmapper filter on specified ports disable Disable the RPC portmapper filter on specified ports Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable RPC portmapper filter on unit 1 port 1 to port 10 D...

Page 607: ...Switch CLI Reference Guide 603 Parameters None Restrictions None Example To display the RPC portmapper state DGS 3120 24TC admin show filter rpc_portmapper Command show filter rpc_portmapper Enabled Ports 1 1 1 10 DGS 3120 24TC admin ...

Page 608: ...ge is between 20 100 if the CPU utilization is lower than the falling threshold the Switch enters normal mode 20 100 Enter the utilization falling value here This value must be between 20 and 100 trap_log Optional Configure the state of CPU protection related trap log mechanism to enable or disable If set to enable trap and log will be active while cpu protection current mode changed If set to dis...

Page 609: ...ription This command is used to show safeguard engine information Format show safeguard_engine Parameters None Restrictions None Example To show safeguard_engine information DGS 3120 24TC admin show safeguard_engine Command show safeguard_engine Safeguard Engine State Disabled Safeguard Engine Current Status Normal Mode CPU Utilization Information Rising Threshold 30 Falling Threshold 20 Trap Log ...

Page 610: ...me range does not exist the schedule will still be created without prompt But the schedule will not take effective until the time range is created To create an existed entry the device will feedback a success message and does no change for the existed schedule The maximum of schedules backup is 15 Format create backup config log time_range range_name 32 filename pathname state enable disable Param...

Page 611: ...n log Schedule to back up log time_range The schedule to back up the configuration or log range_name32 Enter the name of the time range Maximum 32 characters filename The backup filename of the configuration or log pathname Enter the backup file path name state Optional Enable or disable the backup schedule when the schedule is created enable Enable the backup schedule disable Disable the backup s...

Page 612: ...me of the time range Maximum 32 characters filename Optional The backup filename of the configuration or log that wants to be deleted pathname Enter the backup file path name Restrictions Only Administrator and Operator level users can issue this command Example To delete all the schedules DGS 3120 24TC admin delete backup config all Command delete backup config all Success DGS 3120 24TC admin 66 ...

Page 613: ...he maximum of schedules execute is 15 Format create execute_config time_range range_name 32 config pathname state enable disable increment reset Parameters range_name32 Enter the time range for schedule to execute the configuration Maximum 32 characters config The filename of the configuration on file system pathname Enter the configuration file path name state Optional Enable or disable the execu...

Page 614: ...nfiguration Maximum 32 characters config The filename of the configuration on file system pathname Enter the configuration file path name state Optional Enable or disable the executive schedules enable Enable the executive schedule disable Disable the executive schedule increment Optional The current configuration will not be reset before executing the configuration reset Optional The current conf...

Page 615: ...o be deleted range_name 32 Enter the time range to be deleted Maximum 32 characters config Optional The configuration file name on file system pathname Enter the configuration file path name Restrictions Only Administrator level users can issue this command Example To delete all the schedule of executing configuration DGS 3120 24TC admin delete execute_config all Command delete execute_config all ...

Page 616: ...n on file system Format execute config pathname increment Parameters pathname The configuration filename on file system increment Optional If not specified the current configuration will be reset before executing the configuration If specified the current configuration will not be reset before executing the configuration Restrictions Only Administrator level users can issue this command Example To...

Page 617: ...h cast128 twofish128 twofish192 twofish256 MD5 SHA1 RSA DSA enable disable Parameters 3DES The 3DES cipher is three key triple DES encrypt decrypt encrypt where the first 8 bytes of the key are used for the first encryption the next 8 bytes for the decryption and the following 8 bytes for the final encryption AES 128 192 256 Advanced Encryption Standard arcfour RC4 also known as ARC4 or ARCFOUR me...

Page 618: ...m Session 8 Connection Timeout 120 Authentication Fail Attempts 2 Rekey Timeout Never TCP Port Number 22 DGS 3120 24TC admin config ssh algorithm DSA enable Command config ssh algorithm DSA enable Success DGS 3120 24TC admin 67 2 show ssh algorithm Description This command is used to show the SSH service algorithm Format show ssh algorithm Parameters None Restrictions None Example To show server a...

Page 619: ...d Public Key Algorithm RSA Enabled DSA Enabled DGS 3120 24TC admin 67 3 config ssh authmode Description This command is used to configure user authentication method for SSH Format config ssh authmode password publickey hostbased enable disable Parameters password Specify user authentication method publickey Specify user authentication method hostbased Specify user authentication method enable Enab...

Page 620: ... authmode Description This command is used to show the user authentication method Format show ssh authmode Parameters None Restrictions None Example To show user authentication method DGS 3120 24TC admin show ssh authmode Command show ssh authmode The SSH Authentication Method Password Enabled Public Key Enabled Host based Enabled DGS 3120 24TC admin 67 5 config ssh user Description This command i...

Page 621: ...n_name 32 Specify host name if configuring Host based method ipaddr Specify host IP address if configuring Host based method ipv6addr Specify host IPv6 address if configuring Host based method EI Mode Only password Specify user authentication method publickey Specify user authentication method Restrictions Only Administrator level users can issue this command Example To update user test authentica...

Page 622: ...onnection time out in the unit of second sec 120 600 Enter the connection time out value here This value must be between 120 and 600 seconds authfail Optional Specify user maximum fail attempts int 2 20 Enter the user maximum fail attempts value here This value must be between 2 and 20 rekey Optional Specify time to re generate session key There are 10 minutes 30 minutes 60 minutes and never for t...

Page 623: ...sh Description This command is used to enable SSH server services When enabling SSH Telnet will be disabled Format enable ssh Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable SSH server DGS 3120 24TC admin enable ssh Command enable ssh Success DGS 3120 24TC admin 67 9 disable ssh Description This command is used to disable...

Page 624: ...sable ssh Success DGS 3120 24TC admin 67 10 show ssh server Description This command is used to show the SSH server general information Format show ssh server Parameters None Restrictions None Example To show SSH server DGS 3120 24TC admin show ssh server Command show ssh server The SSH Server Configuration Maximum Session 8 Connection Timeout 120 Authentication Fail Attempts 2 Rekey Timeout Never...

Page 625: ...can download the specified certificate to the device which must according to desired key exchange algorithm For RSA key exchange the user must download RSA type certificate and for DHS_DSS is using the DSA certificate for key exchange Format download ssl certificate ipaddr certfilename path_filename 64 keyfilename path_filename 64 Parameters ipaddr Enter the TFTP server IP address used for this co...

Page 626: ...S_EDE_CBC_SHA RSA_EXPORT_with_RC4_40_MD5 Parameters ciphersuite Optional Specify the cipher suite combination used for this configuration RSA_with_RC4_128_MD5 Indicate RSA key exchange with RC4 128 bits encryption and MD5 hash RSA_with_3DES_EDE_CBC_SHA Indicate RSA key exchange with 3DES_EDE_CBC encryption and SHA hash DHE_DSS_with_3DES_EDE_CBC_SHA Indicate DH key exchange with 3DES_EDE_CBC encryp...

Page 627: ... ciphersuite Optional Specify the cipher suite combination used for this configuration RSA_with_RC4_128_MD5 Indicate RSA key exchange with RC4 128 bits encryption and MD5 hash RSA_with_3DES_EDE_CBC_SHA Indicate RSA key exchange with 3DES_EDE_CBC encryption and SHA hash DHE_DSS_with_3DES_EDE_CBC_SHA Indicate DH key exchange with 3DES_EDE_CBC encryption and SHA hash RSA_EXPORT_with_RC4_40_MD5 Indica...

Page 628: ...ate RSA type or DSA type certificate Format show ssl certificate Parameters certificate Optional Specify that the SSL certificate will be displayed Restrictions None Example To show SSL DGS 3120 24TC admin show ssl Commands show ssl SSL status Enabled RSA_WITH_RC4_128_MD5 Enabled RSA_WITH_3DES_EDE_CBC_SHA Enabled DHE_DSS_WITH_3DES_EDE_CBC_SHA Enabled RSA_EXPORT_WITH_RC4_40_MD5 Enabled DGS 3120 24T...

Page 629: ...ands show ssl cachetimeout Cache timeout is 600 second s DGS 3120 24TC admin 68 6 config ssl cachetimeout Description This command is used to configure cahce timeout value which is designed for dlktimer library to remove the session id after expired In order to support the resume session feature the SSL library keep the session id in web server and invoking the dlktimer library to remove this sess...

Page 630: ... Managed Switch CLI Reference Guide 626 Restrictions None Example To configure the SSL cache timeout value to 60 DGS 3120 24TC admin config ssl cachetimeout 60 Commands config ssl cachetimeout 60 Success DGS 3120 24TC admin ...

Page 631: ...ler show sflow counter_poller show sflow analyzer_server 69 1 create sflow flow_sampler Description This command is used to create the sFlow flow sampler By configuring the sampling function for a port a sample packet received by this port will be encapsulated and forwarded to analyzer server at the specified interval Format create sflow flow_sampler ports portlist all analyzer_server_id value 1 4...

Page 632: ... Format config sflow flow_sampler ports portlist all rate value 0 65535 maxheadersize value 18 256 Parameters ports Specify the list of ports to be configured portlist Enter the list of ports that will be used for this configuration here all Specify all ports on the Switch rate Optional The sampling rate for packet Rx sampling The configured rate value multiplied by x is the actual rate where the ...

Page 633: ...o be configured portlist Enter the list of ports that will be used for this configuration here all Specify all ports on the Switch Restrictions Only Administrator and Operator level users can issue this command Example Delete the sFlow sampler port 1 DGS 3120 24TC admin delete sflow flow_sampler ports 1 1 Command delete sflow flow_sampler ports 1 1 Success DGS 3120 24TC admin 69 4 create sflow cou...

Page 634: ... Example Create sFlow counter poller which sample port 1 to analyzer server 1 DGS 3120 24TC admin create sflow counter_poller ports 1 1 analyzer_server_id 1 Command create sflow counter_poller ports 1 1 analyzer_server_id 1 Success DGS 3120 24TC admin 69 5 config sflow counter_poller Description This command is used to configure the sFlow counter poller parameters If the user wants the change the ...

Page 635: ... the list of ports to delete the counter poller portlist Enter the list of ports that will be used for this configuration here all Specify all ports on the Switch Restrictions Only Administrator and Operator level users can issue this command Example Delete sFlow counter poller on port 1 DGS 3120 24TC admin delete sflow counter_poller ports 1 1 Command delete sflow counter_poller ports 1 1 Success...

Page 636: ...nd the entry is not active ipaddr Enter the IP address used for the configuration here collectorport Optional The destination UDP port for sending the sFlow datagram If not specified the default value is 6364 The specified UDP port number can NOT conflict with other applications udp_port_number 1 65535 Enter the destination UDP port number here This value must be between 1 and 65535 maxdatagramsiz...

Page 637: ... not be sent to this server ipaddr Enter the IP address used for the configuration here collectorport Optional The destination UDP port for sending the sFlow datagram If not specified the default value is 6364 udp_port_number 1 65535 Enter the destination port number here This value must be between 1 and 65535 maxdatagramsize Optional The maximum number of data bytes that can be packed in a single...

Page 638: ...his command Example To delete an analyzer server DGS 3120 24TC admin delete sflow analyzer_server 1 Command delete sflow analyzer_server 1 Success DGS 3120 24TC admin 69 10 enable sflow Description This command is used to enable the sFlow function on the Switch Format enable sflow Parameters None Restrictions Only Administrator and Operator level users can issue this command Example Enable sFlow g...

Page 639: ... users can issue this command Example Disable the sFlow globally DGS 3120 24TC admin disable sflow Command disable sflow Success DGS 3120 24TC admin 69 12 show sflow Description This command is used to show the sFlow information sFlow Address The IPv4 address associated with this agent sFlow AddressV6 The IPv6 address associated with this agent sFlow State The current state of the sFlow agent Form...

Page 640: ...rate value There are two types of rates The Configured Rate is configured by the user In order to limit the number of packets sent to the CPU when the rate of traffic to the CPU is high the sampling rate will be decreased This is specified as the active rate Format show sflow flow_sampler Parameters None Restrictions None Example To show the sFlow flow sampler information of ports which have been ...

Page 641: ... ports which have been created DGS 3120 24TC admin show sflow counter_poller Command show sflow counter_poller Port Analyzer Server ID Polling Interval sec 1 1 1 Disable Total Entries 1 DGS 3120 24TC admin 69 15 show sflow analyzer_server Description This command is used to show the sFlow analyzer server information The Timeout field specifies the time configured by user The Current Countdown Time...

Page 642: ...rver Command show sflow analyzer_server sFlow Analyzer_server Information Server ID 1 Owner sflow Timeout 400 Current Countdown Time 400 Collector Address 10 90 90 90 Collector Port 6343 Max Datagram Size 1400 Server ID 2 Owner monitor Timeout Infinite Current Countdown Time Infinite Collector Address 10 0 0 1 Collector Port 65524 Max Datagram Size 300 Total Entries 2 DGS 3120 24TC admin ...

Page 643: ...ll operation information The information is project dependent and includes the following information Basic System information System log Running configuration Layer 1 information Layer 2 information Layer 3 information Application OS status Controller s status This command can be interrupted by Ctrl C or ESC when it is executing Format show tech_support Parameters None Restrictions Only Administra...

Page 644: ...NG 2000 4 3 23 41 13 Topology Information Stable Topology My Box ID 1 Role Master Box Cnt 2 Topology Type Duplex Ring Unit Prio Device Runtime Stacking ID rity Role MAC Type option version version 1 32 Master 00 01 70 33 21 02 DGS 3120 24TC 0x0000 1 02 013 2 0 1 2 32 BMaster 00 01 70 33 21 03 DGS 3120 24TC 0x0000 1 02 013 2 0 1 3 NOT EXIST 4 NOT EXIST 5 NOT EXIST 6 NOT EXIST S means static box ID ...

Page 645: ... ipaddr Specify the IP address of TFTP server path_filename 64 Specify the file name to store the information of technique s support in TFTP server The max size of the file name is 64 Restrictions Only Administrator and Operator level users can issue this command Example To upload the information of technique s support DGS 3120 24TC admin upload tech_support_toTFTP 10 0 0 66 tech_report txt Comman...

Page 646: ...eceiver mail_addr 254 delete mail_receiver index 1 8 1 show smtp smtp send_testmsg 71 1 enable smtp Description This command is used to enable the SMTP status Format enable smtp Parameters None Restrictions Only Administrator level users can issue this command Example To enable SMTP status DGS 3120 24TC admin enable smtp Command enable smtp Success DGS 3120 24TC admin 71 2 disable smtp Description...

Page 647: ...addr 254 delete mail_receiver index 1 8 1 Parameters server Specify the SMTP server IP address ipaddr Enter the SMTP server IP address server_port Specify the SMTP server port port_number 1 65535 Enter the port number between 1 and 65535 self_mail_addr Specify the sender s mail address mail_addr 254 Enter the mail address with maximum of 254 characters add mail_receiver Specify to add mail receive...

Page 648: ...ail source address DGS 3120 24TC admin config smtp self_mail_addr mail dlink com Command config smtp self_mail_addr mail dlink com Success DGS 3120 24TC admin To add a mail destination address DGS 3120 24TC admin config smtp add mail_receiver receiver dlink com Command config smtp add mail_receiver receiver dlink com Success DGS 3120 24TC admin To delete a mail destination address DGS 3120 24TC ad...

Page 649: ...24TC admin show smtp Command show smtp SMTP Status Disabled SMTP Server Address 172 18 208 9 SMTP Server Port 25 Self Mail Address mail dlink com Index Mail Receiver Address 1 receiver dlink com 2 3 4 5 6 7 8 DGS 3120 24TC admin 71 5 smtp send_testmsg Description This command is used to test whether the SMTP server can be reached Format smtp send_testmsg Parameters None ...

Page 650: ...ns Only Administrator level users can issue this command Example To test whether the SMTP server can be reached DGS 3120 24TC admin smtp send_testmsg Command smtp send_testmsg Subject e mail heading Content e mail content Sending mail please wait Success DGS 3120 24TC admin ...

Page 651: ...d excluded delete snmp view view_name 32 all oid show snmp view view_name 32 create snmp host ipaddr v6host ipv6addr v1 v2c v3 noauth_nopriv auth_nopriv auth_priv auth_string 32 delete snmp host ipaddr v6host ipv6addr show snmp host ipaddr show snmp v6host ipv6addr EI Mode Only config snmp engineID snmp_engineID 10 64 show snmp engineID enable snmp disable snmp config snmp system_name sw_name conf...

Page 652: ...sed to authentication of users wanting access to the Switch s SNMP agent community_string Enter the community string value here view_name Specify to view a MIB name view_name 32 Enter the MIB view name here This name can be up to 32 characters long readonly Allows the user using the above community string to have read only access to the Switch s SNMP agent readwrite Allows the user using the above...

Page 653: ...his command Example To delete a SNMP community System DGS 3120 24TC admin delete snmp community System Command delete snmp community System Success DGS 3120 24TC admin 72 3 show snmp community Description This command is used to display the community string configurations Format show snmp community community_string 32 Parameters community_string 32 Optional Specify the Community string If not spec...

Page 654: ...uthentication level setting session The options are md5 and sha md5 The HMAC MD5 96 authentication level auth_password 8 16 Enter the MD5 authentication password here This value must be between 8 and 16 characters sha The HMAC SHA 96 authentication level auth_password 8 20 Enter the SHA authentication password here This value must be between 8 and 20 characters priv Optional A privacy key used by ...

Page 655: ... priv des 12345678 Command create snmp user user123 group123 encrypted by_password auth md5 12345678 priv des 12345678 Success DGS 3120 24TC admin 72 5 delete snmp user Description This command is used to remove a user from an SNMP group and delete the associated group in SNMP group Format delete snmp user username 32 Parameters username 32 The name of the user on the host that connects to the age...

Page 656: ...iv initial initial V3 NoneNone user123 group123 V3 MD5 DES Total Entries 2 DGS 3120 24TC admin 72 7 create snmp group Description This command is used to create a new SNMP group or a table that maps SNMP users to SNMP views Format create snmp group groupname 32 v1 v2c v3 noauth_nopriv auth_nopriv auth_priv read_view view_name 32 write_view view_name 32 notify_view view_name 32 Parameters group Spe...

Page 657: ...y_view Optional Specify that the view name would be notify view_name 32 Enter the notify view name here This name can be up to 32 characters long Restrictions Only Administrator level users can issue this command Example To create SNMP group group123 DGS 3120 24TC admin create snmp group group123 v3 auth_priv read_view CommunityView write_view CommunityView notify_view CommunityView Command create...

Page 658: ...Command delete snmp group group123 Success DGS 3120 24TC admin 72 9 show snmp groups Description This command is used to display the names of groups on the Switch and the security model level the status of the different views Format show snmp groups Parameters None Restrictions None Example To show SNMP groups ...

Page 659: ...al ReadView Name restricted WriteView Name Notify View Name restricted Securiy Model SNMPv3 Securiy Level NoAuthNoPriv Group Name WriteGroup ReadView Name CommunityView WriteView Name CommunityView Notify View Name CommunityView Securiy Model SNMPv2 Securiy Level NoAuthNoPriv Total Entries 10 DGS 3120 24TC admin 72 10 create snmp view Description This command is used to assign views to community s...

Page 660: ...nmp view view123 1 3 6 view_type included Success DGS 3120 24TC admin 72 11 delete snmp view Description This command is used to remove a view record Format delete snmp view view_name 32 all oid Parameters view View name to be deleted view_name 32 Enter the view name here The name can be up to 32 characters long all Specify that all view records will be removed oid Object Identified tree MIB tree ...

Page 661: ...show snmp view Vacm View Table Settings View Name Subtree View Type view123 1 3 6 Included restricted 1 3 6 1 2 1 1 Included restricted 1 3 6 1 2 1 11 Included restricted 1 3 6 1 6 3 10 2 1 Included restricted 1 3 6 1 6 3 11 2 1 Included restricted 1 3 6 1 6 3 15 1 1 Included CommunityView 1 Included CommunityView 1 3 6 1 6 3 Excluded CommunityView 1 3 6 1 6 3 1 Included Total Entries 9 DGS 3120 2...

Page 662: ... presents the community string and it must be one of the entries in community table If the v3 is specified the auth_string presents the user name and it must be one of the entries in the user table Restrictions Only Administrator level users can issue this command Example To create SNMP host 10 0 0 1 with community string public DGS 3120 24TC admin create snmp host 10 0 0 1 v1 public Command creat...

Page 663: ...rs host Optional The IP address of the recipient for which the traps are targeted ipaddr Enter the IP address used for the configuration here If no parameter specified all SNMP hosts will be displayed Restrictions None Example To show SNMP host DGS 3120 24TC admin show snmp host Command show snmp host SNMP Host Table Host IP Address SNMP Version Community Name SNMPv3 User Name 10 90 90 3 V3 noauth...

Page 664: ...be displayed Restrictions None Example To show SNMP host DGS 3120 24TC admin show snmp v6host Command show snmp v6host SNMP Host Table Host IPv6 Address 3FFE 3 SNMP Version V3 na np Community Name SNMPv3 User Name initial Host IPv6 Address 3FFE 2 SNMP Version V2c Community Name SNMPv3 User Name private Host IPv6 Address 3FFE 1 SNMP Version V1 Community Name SNMPv3 User Name public Host IPv6 Addres...

Page 665: ...issue this command Example To configure SNMP engine ID to 1023457890 DGS 3120 24TC admin config snmp engineID 1023457890 Command config snmp engineID 1023457890 Success DGS 3120 24TC admin 72 18 show snmp engineID Description The show snmp engineID command displays the identification of the SNMP engine on the Switch The default value is suggested in RFC2271 The very first bit is 1 and the first fo...

Page 666: ...20 24TC admin 72 19 enable snmp Description This command is used to enable the SNMP function Format enable snmp Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable SNMP DGS 3120 24TC admin enable snmp Command enable snmp Success DGS 3120 24TC admin 72 20 disable snmp Description This command is used to disable the SNMP function Format d...

Page 667: ...sed to configure the name for the Switch Format config snmp system_name sw_name Parameters system_name A maximum of 128 characters is allowed And NULL string is accepted sw_name Optional Enter the system name used here Restrictions Only Administrator and Operator level users can issue this command Example To configure the Switch name for DGS XXXXS Stackable Switch DGS 3120 24TC admin config snmp s...

Page 668: ...command Example To configure the Switch location for HQ 5F DGS 3120 24TC admin config snmp system_location HQ 5F Command config snmp system_location HQ 5F Success DGS 3120 24TC admin 72 23 config snmp system_contact Description This command is used to enter the name of a contact person who is responsible for the Switch Format config snmp system_contact sw_contact Parameters system_contact A maximu...

Page 669: ...on This command is used to enable SNMP trap support Format enable snmp traps Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable SNMP trap support DGS 3120 24TC admin enable snmp traps Command enable snmp traps Success DGS 3120 24TC admin 72 25 disable snmp traps Description This command is used to disable SNMP trap support on the Switc...

Page 670: ...ption This command is used to enable SNMP authentication failure trap support Format enable snmp authenticate_traps Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable SNMP authentication trap support DGS 3120 24TC admin enable snmp authenticate_traps Command enable snmp authenticate_traps Success DGS 3120 24TC admin 72 27 disable snmp ...

Page 671: ...d disable snmp authenticate_traps Success DGS 3120 24TC admin 72 28 enable snmp linkchange_traps Description This command is used to configure the sending of linkchange traps Format enable snmp linkchange_traps Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable the sending of linkchange traps DGS 3120 24TC admin enable snmp linkchange_...

Page 672: ...p linkchange_traps Command disable snmp linkchange_traps Success DGS 3120 24TC admin 72 30 config snmp linkchange_traps ports Description This command is used to configure the sending of linkchange traps and per port control for sending of change trap Format config snmp linkchange_traps ports all portlist enable disable Parameters all To specify all ports portlist To specify a port range enable En...

Page 673: ...t config snmp coldstart_traps enable disable Parameters enable Enable the trap of the coldstart event The default state is enabled disable Disable the trap of the coldstart event Restrictions Only Administrator level users can issue this command Example To configure the trap for coldstart event DGS 3120 24TC admin config snmp coldstart_traps enable Command config snmp coldstart_traps enable Succes...

Page 674: ... event DGS 3120 24TC admin config snmp warmstart_traps enable Command config snmp warmstart_traps enable Success DGS 3120 24TC admin 72 33 show snmp traps Description This command is used to display the snmp trap sending status Format show snmp traps linkchange_traps ports portlist Parameters linkchange_traps Optional Specify that the SNMP trap sending status will be displayed ports Optional Speci...

Page 675: ...alarm The default state is enabled enable Specify that the rising alarm function will be enabled disable Specify that the rising alarm function will be disabled falling_alarm Optional Specify the trap state for falling alarm The default state is enabled enable Specify that the falling alarm function will be enabled disable Specify that the falling alarm function will be disabled Restrictions Only ...

Page 676: ...t show rmon Parameters None Restrictions Only Administrator level users can issue this command Example To display the RMON related setting DGS 3120 24TC admin show rmon Command show rmon RMON Rising Alarm Trap Enabled RMON Falling Alarm Trap Enabled DGS 3120 24TC admin ...

Page 677: ...candidate dp_interval sec 30 90 hold_time sec 100 255 download sim_ms firmware_from_tftp configuration_from_tftp ipaddr path_filename members mslist 1 32 all upload sim_ms configuration_to_tftp log_to_tftp ipaddr path_filename members mslist all 73 1 enable sim Description This command is used to configure the single IP management on the Switch as enabled Format enable sim Parameters None Restrict...

Page 678: ...ent information of the specific sort of devices Format show sim candidates candidate_id 1 100 members member_id 1 32 group commander_mac macaddr neighbor Parameters candidates Optional Specify the candidate devices candidate_id 1 100 Optional Enter the candidate device ID here This value must be between 1 and 100 members Optional Specify the member devices member_id 1 32 Optional Enter the member ...

Page 679: ...old Time 100 sec DGS 3120 24TC admin To show the candidate information in summary if user specify candidate id it would show information in detail DGS 3120 24TC admin show sim candidate Command show sim candidate ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DES XXXXS L2 Switch 40 1 00 B01 aaaaaaaaaaaaaaaa bbbbbbbbbbbbbbb 2 00 55 55 00 55 00 DES 3326...

Page 680: ...n in summary if user specify group name it will show information in detail DGS 3120 24TC admin show sim group Command show sim group SIM Group Name default ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DES XXXXS L2 Switch 40 1 00 B01 aaaaaaaaaaaaaaaa bbbbbbbbbbbbbbb 2 00 55 55 00 55 00 SIM Group Name SIM2 ID MAC Address Platform Hold Firmware Device ...

Page 681: ...e telnet to member Format reconfig member_id value 1 32 exit Parameters member_id Optional Specify the serial number of the member value 1 32 Enter the serial number of the member here exit Optional Specify to exit from the telnet session Restrictions Only Administrator Operator and Power User level users can issue this command Example To re telnet to member DGS 3120 24TC admin reconfig member_id ...

Page 682: ... ID of the member to be removed from the group here This value must be between 1 and 32 Restrictions Only Administrator Operator and Power User level users can issue this command Example To add a member DGS 3120 24TC admin config sim_group add 2 Command config sim_group add 2 Please wait for ACK SIM Configure Success Success DGS 3120 24TC admin To delete a member DGS 3120 24TC admin config sim_gro...

Page 683: ...the discovery time here in seconds This value must be between 30 and 90 seconds hold_time Optional The time in seconds the device holds the discovery result sec 100 255 Enter the hold time here in seconds This value must be between 100 and 255 Restrictions Only Administrator level can issue this command Example To transfer to commander DGS 3120 24TC admin config sim commander Command config sim co...

Page 684: ...ipaddr path_filename members mslist 1 32 all Parameters firmware_from_tftp Specify that the firmware will be downloaded from the TFTP server configuration_from_tftp Specify that the configuration will be downloaded from the TFTP server ipaddr Specify the IP address of the TFTP server path_filename Specify the file path of the firmware or configuration in the TFTP server members Specify a range of ...

Page 685: ...is device is updating firmware Please wait several minutes Download Status ID MAC Address Result 1 00 01 02 03 04 00 Success DGS 3120 24TC admin 73 8 upload sim_ms Description This command is used to upload configuration to TFTP server Format upload sim_ms configuration_to_tftp log_to_tftp ipaddr path_filename members mslist all Parameters configuration_to_tftp Specify that the configuration will ...

Page 686: ... is uploading configuration Please wait several minutes Upload Status ID MAC Address Result 1 00 1A 2D 00 12 12 Success DGS 3120 24TC admin 73 9 config sim trap Description This command is used to control sending of traps issued from the member switch Format config sim trap enable disable Parameters enable Enable the trap state disable Disable the trap state Restrictions Only Administrator Operato...

Page 687: ...rity New priority will take effect after user reboot Format config box_priority current_box_id value 1 6 priority value 1 63 Parameters current_box_id Specify the Switch being configured The range is 1 m where the m is determined by device type For example to the DGS3120 Series it is 6 value 1 6 Enter the current box ID here This value must be between 1 and 6 priority Specify the priority assigned...

Page 688: ... the box ID to be assigned automatically by the stack system The new box ID will take effect after the next boot value 1 6 Enter the new box ID here This value must be between 1 and 6 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure box ID of box 1 to be auto DGS 3120 24TC admin config box_id current_box_id 1 new_box_id auto Command co...

Page 689: ...ommand regarding read write of flash for example download firmware save show config in flash upload copy show slave s dangerous log Message 3 Stack Topology Status Configuring the new device When this message is shown it means stacking has started to do the hot insert action Now the system is configuring the new device and the user can not execute any command except show stack_ information If no m...

Page 690: ...led Box User Prio Prom Runtime H W ID Set Type Exist rity MAC version version version 1 Auto DGS 3120 24TC Exist 1 00 01 02 03 04 00 2 00 003 2 00 010 A1 2 NOT_EXIST No 3 NOT_EXIST No 4 NOT_EXIST No 5 NOT_EXIST No 6 NOT_EXIST No DGS 3120 24TC admin 74 4 show stack_device Description This command is used to display the information for devices in the stack Format show stack_device Parameters None Re...

Page 691: ...tandalone mode only Format config stacking_mode disable enable Parameters stacking_mode Enable or disable the Switch s stacking capability enable Specify that the Switch s stacking capabilty will be enabled disable Specify that the Switch s stacking capabilty will be disabled Restrictions Only Administrator level can issue this command Example To enable stacking mode DGS 3120 24TC admin config sta...

Page 692: ...old priority setting and MAC to compare device priority After stacking is stable master s priority will become zero If stacking topology change again Master will use priority zero and MAC address to determine who new primary master is Format config stacking force_master_role state enable disable Parameters force_master_role Enable or disable the Switch s Stacking Force Master Role state Default se...

Page 693: ...ble Enable the Switch s stacking trap disable Disable the Switch s stacking trap Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the stacking trap state DGS 3120 24TC admin config stacking trap state enable Command config stacking trap state enable Success DGS 3120 24TC admin 74 9 config stacking log state Description This command is use...

Page 694: ... 690 Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the stacking log state DGS 3120 24TC admin config stacking log state enable Command config stacking log state enable Success DGS 3120 24TC admin ...

Page 695: ...eter the least IPv4 address and the smallest IPv6 address of ipif_name will be used as source IP addresses ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long ipaddr Optional Enter the IP address used for the configuration here ipv6addr Optional Enter the IPv6 address used for the configuration here EI Mode Only none Specify to clear the configured source IP int...

Page 696: ...interface Format show syslog source_ipif Parameters None Restrictions None Example Show syslog source IP interface DGS 3120 24TC admin show syslog source_ipif Command show syslog source_ipif Syslog Source IP Interface Configuration IP Interface ipif3 IPv4 Address 14 0 0 5 IPv6 Address None DGS 3120 24TC admin 75 3 config trap source_ipif Description This command is used to configure trap source IP...

Page 697: ...onfiguration here EI Mode Only none Specify to clear the configured source IP interface Restrictions Only Administrator and Operator level users can issue this command Example Configure trap source IP interface DGS 3120 24TC admin config trap source_ipif System Command config trap source_ipif System Success DGS 3120 24TC admin To clear the configured trap source IP interface DGS 3120 24TC admin co...

Page 698: ...Switch CLI Reference Guide 694 Example Show trap source IP interface DGS 3120 24TC admin show trap source_ip Command show trap source_ip Trap Source IP Interface Configuration IP Interface System IPv4 Address None DGS 3120 24TC admin ...

Page 699: ...r state enable disable config syslog host index 1 4 all severity emergency alert critical error warning notice informational debug level 0 7 facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr ipv6addr state enable disable delete syslog host index 1 4 all show syslog host index 1 4 config log_save_timing time_interval min 1 65535 on_demand log...

Page 700: ...ained by using the show log_support_module command Use a comma to separate multiple modules module_list Enter the module list value here emergency Optional Severity level 0 alert Optional Severity level 1 critical Optional Severity level 2 error Optional Severity level 3 warning Optional Severity level 4 notice Optional Severity level 5 informational Optional Severity level 6 debug Optional Severi...

Page 701: ...re_module Description This command is used to display the protocols or applications that support the enhanced log The enhanced log adds the module name and module ID Network administrators can display logs by module name or module ID Format show log_software_module Parameters None Restrictions None Example To display the protocols or applications that support the enhanced log DGS 3120 24TC admin s...

Page 702: ...GS 3120 24TC admin enable syslog Command enable syslog Success DGS 3120 24TC admin 76 5 disable syslog Description This command is used to disable the sending of syslog messages Format disable syslog Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable the sending of syslog messages DGS 3120 24TC admin disable syslog Command disable sys...

Page 703: ...pecific host When the user chooses a specific level for a specific host messages which are at that severity level or higher will be reported to that host Format create syslog host index 1 4 ipaddress ipaddr ipv6addr severity emergency alert critical error warning notice informational debug level 0 7 facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number state ena...

Page 704: ...set to local 4 local5 Specify that the user defined facility will be set to local 5 local6 Specify that the user defined facility will be set to local 6 local7 Specify that the user defined facility will be set to local 7 udp_port Optional Specify the UDP port number udp_port_number Enter the UDP port number used here state Optional The syslog protocol is used for the transmission of event notific...

Page 705: ...t is sent to a specific syslog server local0 Specify that the user defined facility will be set to local 0 local1 Specify that the user defined facility will be set to local 1 local2 Specify that the user defined facility will be set to local 2 local3 Specify that the user defined facility will be set to local 3 local4 Specify that the user defined facility will be set to local 4 local5 Specify th...

Page 706: ...ost The host index or all hosts index Enter the host index value here all Specify that all the host indexes will be used Restrictions Only Administrator and Operator level users can issue this command Example To delete the specific syslog host DGS 3120 24TC admin delete syslog host 4 Command delete syslog host 4 Success DGS 3120 24TC admin 76 10 show syslog host Description This command is used to...

Page 707: ...is used to set the method for saving the log Format config log_save_timing time_interval min 1 65535 on_demand log_trigger Parameters time_interval Save log to flash every xxx minutes If no new log events occur in this period don t save min 1 65535 Enter the time interval value here This value must be between 1 and 65535 minutes on_demand Save log to flash whenever the user enters the save log or ...

Page 708: ...nd show log_save_timing Saving Log Method On_demand DGS 3120 24TC admin 76 13 show attack_log Description This command is used to display the attack log messages The attack log message refers to log messages driven by modules such as DOS and the IP MAC port binding module This type of log message may generate a large amount of messages and quickly cause the system to run out of system log storage ...

Page 709: ...ck log will be displayed Restrictions None Example To show dangerous messages on the master DGS 3120 24TC admin show attack_log index 1 Command show attack_log index 1 Index Date Time Level Log Text 1 2008 10 17 15 00 14 CRIT 2 Possible spoofing attack from IP MAC 0A 00 00 5A 00 01 port 1 3 DGS 3120 24TC admin 76 14 clear attack_log Description This command is used to clear the attack log Format c...

Page 710: ...xStack DGS 3120 Series Managed Switch CLI Reference Guide 706 DGS 3120 24TC admin clear attack_log Command clear attack_log Success DGS 3120 24TC admin ...

Page 711: ...ng notice information debug level 0 7 Parameters trap Specify the severity level control for traps log Specify the severity level control for the log all Specify the severity level control for traps and the log emergency Severity level 0 alert Severity level 1 critical Severity level 2 error Severity level 3 warning Severity level 4 notice Severity level 5 information Severity level 6 debug Severi...

Page 712: ... to display the severity level controls for the system Format show system_severity Parameters None Restrictions None Example To show severity level control for system DGS 3120 24TC admin show system_severity Command show system_severity System Severity Trap warning 4 System Severity Log information 6 DGS 3120 24TC admin ...

Page 713: ...addr ipv6addr tcp_port value 1 65535 Parameters ipaddr The IP address of the telnet server ipv6addr The IPv6 address of the telnet server EI Mode Only tcp_port Optional Specify the telnet server port number to be connected If not specified the default port is 23 value 1 65535 Enter the TCP port number used here This value must be between 1 and 65535 Restrictions None Example Telnet to a Switch by ...

Page 714: ...Optional The IPv6 address of the TFTP server EI Mode Only src_file Optional Used to identify the parameter path_filename path_filename 64 Enter the source file path name here This name can be up to 64 characters long unit Optional Specify which unit on the stacking system If it is not specified it refers to the master unit unit_id Enter the unit ID value here This value must be between 1 and n all...

Page 715: ... TFTP server Format upload cfg_toTFTP ipaddr ipv6addr dest_file path_filename 64 unit unit_id src_file pathname include exclude begin filter_string 80 filter_string 80 filter_string 80 include exclude begin filter_string 80 filter_string 80 filter_string 80 include exclude begin filter_string 80 filter_string 80 filter_string 80 log_toTFTP ipaddr ipv6addr dest_file path_filename 64 attack_log_toTF...

Page 716: ...tain the character The filter string is case sensitive This string can be up to 80 characters long filter_string 80 Optional A filter string is enclosed by symbol Thus the filter string itself cannot contain the character The filter string is case sensitive This string can be up to 80 characters long include Optional Specify to include lines that contain the specified filter string exclude Optiona...

Page 717: ...lename pathname The pathname specifies an absolute pathname on the device file system If pathname is not specified it refers to the boot_up image This name can be up to 64 characters long Restrictions Only Administrator and Operator level users can issue this command Example To upload firmware from a file system device to a TFTP server DGS 3120 24TC admin upload firmware_toTFTP 10 1 1 1 dest_file ...

Page 718: ...S 3120 24TC admin In case that the designated file does not exist DGS 3120 24TC admin upload cfg_toTFTP 10 90 90 99 dest_file 111 cfg unit 1 src_file c config2 cfg Command upload cfg_toTFTP 10 90 90 99 dest_file 111 cfg unit 1 src_file c config2 cfg No such file Failure DGS 3120 24TC admin To upload the master s dangerous log DGS 3120 24TC admin upload attack_log_toTFTP 10 90 90 1 dest_file c aler...

Page 719: ...th 1 12 s_time start_time hh mm e_date end_date 1 31 e_mth end_mth 1 12 e_time end_time hh mm offset 30 60 90 120 show time 80 1 config sntp Description This command is used to change SNTP configurations Format config sntp primary ipaddr secondary ipaddr poll interval int 30 99999 Parameters primary Optional SNTP primary server IP address ipaddr Enter the IP address used for this configuration her...

Page 720: ... sntp Description This command is used to display SNTP current time source and configuration Format show sntp Parameters None Restrictions None Example To show SNTP DGS 3120 24TC admin show sntp Command show sntp Current Time Scource System Clock SNTP Disabled SNTP Primary Server 10 1 1 1 SNTP Secondary Server 10 1 1 2 SNTP Poll Interval 30 sec DGS 3120 24TC admin 80 3 enable sntp Description This...

Page 721: ...sntp Success DGS 3120 24TC admin 80 4 disable sntp Description This command is used to turn off SNTP support Format disable sntp Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable SNTP DGS 3120 24TC admin disable sntp Command disable sntp Success DGS 3120 24TC admin 80 5 config time Description This command is used to configure time a...

Page 722: ...16 30 30 Success DGS 3120 24TC admin 80 6 config time_zone Description This command is used to configure time zone of the device Format config time_zone operator hour gmt_hour 0 13 min minute 0 59 Parameters operator Optional Specify the operator of time zone Specify that time should be added or subtracted to or from the GMT hour Optional Specify the hour of time zone gmt_hour 0 13 Enter the hour ...

Page 723: ...ere This value must be between 1 and 4 s_day e_day Optional Configure the start end day number of Daylight Saving Time start_day sun sat Enter the starting day value of Daylight Saving Time here This value must either be sun mon tue wed thu fri or sat end_day sun sat Enter the ending day value of Daylight Saving Time here This value must either be sun mon tue wed thu fri or sat s_mth e_mth Optiona...

Page 724: ...ime of Daylight Saving Time here This value must be in the hh mm format end_time hh mm Enter the starting time of Daylight Saving Time here This value must be in the hh mm format offset Optional Indicates number of minutes to add or to subtract during summertime The ranges of offset are 30 60 90 120 default value is 60 30 Specify that the offset range will 30 minutes 60 Specify that the offset ran...

Page 725: ...admin show time Command show time Current Time Source System Clock Boot Time 9 May 2011 06 20 55 Current Time 9 May 2011 07 46 10 Time Zone GMT 00 00 Daylight Saving Time Disabled Offset In Minutes 60 Repeating From Apr 1st Sun 00 00 To Oct last Sun 00 00 Annual From 29 Apr 00 00 To 12 Oct 00 00 DGS 3120 24TC admin ...

Page 726: ...ommand will cross while seeking the network path between two devices The range for the TTL is 1 to 60 hops value 1 60 Enter the time to live value here This value must be between 1 and 60 port Optional The port number The value range is from 30000 to 64900 value 30000 64900 Enter the port number here This value must be between 30000 and 64900 timeout Optional Defines the timeout period while waiti...

Page 727: ...l cross while seeking the network path between two devices The range for the TTL is 1 to 60 hops value 1 60 Enter the time to live value here This value must be between 1 and 60 port Optional The port number The value range is from 30000 to 64900 value 30000 64900 Enter the port number here This value must be between 30000 and 64900 timeout Optional Defines the timeout period while waiting for a r...

Page 728: ... ms 1345 142 11 2 10 ms 2011 14 100 3 10 ms 3000 1 Trace complete DGS 3120 24TC admin Trace the IPv6 routed path between the Switch and 1210 100 11 with port 40000 DGS 3120 24TC admin traceroute6 1210 100 11 port 40000 Command traceroute6 1210 100 11 port 40000 1 10 ms 3100 25 2 10 ms 4130 100 3 10 ms 1210 100 11 Trace complete DGS 3120 24TC admin ...

Page 729: ... disable broadcast storm control enable Specify that broadcast storm control will be enabled disable Specify that broadcast storm control will be disabled multicast Optional Enable or disable multicast storm control enable Specify that multicast storm control will be enabled disable Specify that multicast storm control will be disabled unicast Optional Enable or disable unknown packet storm contro...

Page 730: ...s can issue this command Example To configure the parameters so that the traffic control status is enabled on ports 1 12 DGS 3120 24TC admin config traffic control 1 1 1 12 broadcast enable action shutdown threshold 1 countdown 5 time_interval 10 Command config traffic control 1 1 1 12 broadcast enable action shutdown threshold 1 countdown 5 time_interval 10 Success DGS 3120 24TC admin 82 2 config...

Page 731: ...GS 3120 24TC admin 82 3 show traffic control Description This command is used to display the current traffic control settings Format show traffic control portlist Parameters portlist Optional Used to specify the range of ports to be shown If no parameter is specified the system will display the packet storm control configuration for all ports Restrictions None Example To display the traffic contro...

Page 732: ...led Disabled Disabled shutdown 0 5 1 10 1 Enabled Disabled Disabled shutdown 0 5 DGS 3120 24TC admin 82 4 config traffic control log state Description This command is used to configure the traffic control log state When the log state is enabled traffic control states are logged when a storm occurs and when a storm is cleared If the log state is disabled traffic control events are not logged Note T...

Page 733: ... The default value is 0 so no auto recovery is possible the port remains in shutdown forever mode This requires manual entry of the CLI command config ports portlist all state enable to return the port to a forwarding state The default value is 0 which means disable auto recover mode shutdown forever min 0 Specify that the auto recovery time will be disabled min 1 65535 Enter the auto recovery tim...

Page 734: ...that all the ports will be used for this configuration forward_list Specify a range of port forwarding domain null Specify a range of port forwarding domain is null all Specify all ports to be configured portlist Specify a range of ports to be configured Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure traffic segmentation DGS 3120 24T...

Page 735: ... display all current traffic segmentation tables Restrictions None Example To display traffic segmentation table DGS 3120 24TC admin show traffic_segmentation 1 1 1 10 Command show traffic_segmentation 1 1 1 10 Traffic Segmentation Table Port Forward Portlist 1 1 1 11 1 15 1 2 1 11 1 15 1 3 1 11 1 15 1 4 1 11 1 15 1 5 1 11 1 15 1 6 1 11 1 15 1 7 1 11 1 15 1 8 1 11 1 15 1 9 1 11 1 15 1 10 1 11 1 15...

Page 736: ...ss from accessing the Switch provided the user knows the Username and Password When the access interface is not specified the trusted host will be created for all interfaces Format create trusted_host ipaddr ipv6addr network network_address ipv6_prefix ipv6networkaddr snmp telnet ssh http https ping Parameters ipaddr The IP address of the trusted host ipv6addr The IPv6 address of the trusted host ...

Page 737: ...is configuration here ipv6addr The IPv6 address of the trusted host EI Mode Only ipv6addr Enter the IPv6 address used for this configuration here network The network address of the trusted network network_address Enter the network address used for this configuration here ipv6_prefix The IPv6 subnet prefix of the trusted network EI Mode Only ipv6networkaddr Enter the IPv6 subnet prefix here all All...

Page 738: ...lete Delete interfaces for that trusted host snmp Optional Specify trusted host for SNMP telnet Optional Specify trusted host for TELENT ssh Optional Specify trusted host for SSH http Optional Specify trusted host for HTTP https Optional Specify trusted host for HTTPs ping Optional Specify trusted host for PING all Optional Specify trusted host for all application Restrictions Only Administrator a...

Page 739: ... Guide 735 Restrictions None Example To display trusted host DGS 3120 24TC admin show trusted_host Command show trusted_host Management Stations IP Address Access Interface 10 48 74 121 SNMP Telnet SSH HTTP HTTPs Ping Total Entries 1 DGS 3120 24TC admin ...

Page 740: ... if there has been one static multipath route that has the same destination It will fail if a user wants to create a floating static route and there has been one static multipath route with the same destination It will fail if a user wants to create a static multipath route and there has been a floating static route whether primary or backup Format create iproute default network_address ipaddr met...

Page 741: ...work_address ipaddr Parameters default Deletes an IP default route 0 0 0 0 0 network_address Specify the network address used EI Mode Only ipaddr Specify the next hop IP address of the route need to be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an IP default route DGS 3120 24TC admin delete iproute default 10 1 1 254 Command...

Page 742: ...e To display the contents of the IP routing table DGS 3120 24TC admin show iproute Command show iproute Routing Table IP Address Netmask Gateway Interface Cost Protocol 10 1 1 0 24 0 0 0 0 System 1 Local 192 168 1 0 24 0 0 0 0 ip1 1 Local Total Entries 2 DGS 3120 24TC admin 85 4 show ipfdb Description This command is used to display the current network address forwarding database Format show ipfdb...

Page 743: ...tem 10 2 27 250 1 3 Dynamic Total Entries 3 DGS 3120 24TC admin 85 5 show route preference EI Mode Only Description This command is used to display the route preference setting Format show route preference local static default Parameters local Optional Display the preference of local route static Optional Display the preference of static route default Optional Display the preference of default rou...

Page 744: ...20 Series Managed Switch CLI Reference Guide 740 DGS 3120 24TC admin show route preference Command show route preference Route Preference Settings Protocol Preference Static 60 Default 1 Local 0 DGS 3120 24TC admin ...

Page 745: ...k function When the VLAN trunk function is enabled the VLAN trunk ports shall be able to forward all tagged frames with any VID Format enable vlan_trunk Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable the VLAN Trunk DGS 3120 24TC admin enable vlan_trunk Command enable vlan_trunk Success DGS 3120 24TC admin 86 2 disable vlan_trunk De...

Page 746: ...globally all VLANs automatically created by VLAN Trunk enabled shall be destroyed and all the automatically added port membership will be removed A VLAN trunk port and a non VLAN trunk port cannot be grouped as an aggregated link To change the VLAN trunk setting for an aggregated link the user must apply the command to the master port However this setting will disappear as the aggregated link is d...

Page 747: ... Success DGS 3120 24TC admin Port 6 is LA 1 member port port 7 is LA 2 master port DGS 3120 24PC admin config vlan_trunk ports 1 6 1 7 state enable Command config vlan_trunk ports 1 6 1 7 state enable Success DGS 3120 24PC admin config vlan_trunk ports 1 7 state disable Command config vlan_trunk ports 1 7 state disable Success DGS 3120 24PC admin config vlan_trunk ports 1 6 1 7 state disable Comma...

Page 748: ...r port port 7 is LA 1 master port DGS 3120 24TC admin config vlan_trunk ports 1 7 state disable Command config vlan_trunk ports 1 7 state disable Success DGS 3120 24TC admin config vlan_trunk ports 1 6 1 7 state disable Command config vlan_trunk ports 1 6 1 7 state disable Success DGS 3120 24TC admin 86 4 show vlan_trunk Description This command is used to show the VLAN trunk configuration Format ...

Page 749: ...tate Enabled VLAN Trunk Member Ports 1 1 1 5 1 7 VID 1 VLAN Name default VLAN TYPE static Advertisement Enabled Member ports 1 1 1 24 2 1 2 24 Static ports 1 1 1 24 2 1 2 24 Current Tagged ports Current Untagged ports 1 1 1 24 2 1 2 24 Static Tagged ports Static Untagged ports 1 1 1 24 2 1 2 24 Forbidden ports VID 2 VLAN Name v1 VLAN TYPE static Advertisement Disabled Member ports 1 24 2 24 Static...

Page 750: ...ble voice_vlan Description This command is used to enable the global voice VLAN function on a switch To enable the voice VLAN the voice VLAN must be also assigned At the same time the VLAN must be an existing static 802 1Q VLAN To change the voice VLAN the user must disable the voice VLAN function and re issue this command By default the global voice VLAN state is disabled Format enable voice_vlan...

Page 751: ...ator and Power User level users can issue this command Example To disable the voice VLAN DGS 3120 24TC admin disable voice_vlan Command disable voice_vlan Success DGS 3120 24TC admin 87 3 config voice_vlan priority Description This command is used to configure the voice VLAN priority The voice VLAN priority will be the priority associated with the voice VLAN traffic to distinguish the QoS of the v...

Page 752: ... cannot be the same as the pre defined OUI The following are the pre defined voice traffic s OUI OUI Vendor Mnemonic name 00 E0 BB 3COM 3com 00 03 6B Cisco cisco 00 E0 75 Veritel veritel 00 D0 1E Pingtel pingtel 00 01 E3 Siemens siemens 00 60 B9 NEC Philips nec philips 00 0F E2 Huawei 3COM huawei 3com 00 09 6E Avaya avaya Format config voice_vlan oui add delete macaddr macmask description desc 32 ...

Page 753: ...led mode The voice VLAN mode The default mode is auto auto Specify that the voice VLAN mode will be set to auto tag When the port is working in auto tagged mode and learns about a voice device through the device s OUI it will join the voice VLAN as a tagged member automatically When the voice device sends voice VLAN tagged packets the Switch will change its priority When the voice device sends unt...

Page 754: ... time is used to remove a port from voice VLAN if the port is an automatic VLAN member When the last voice device stops sending traffic and the MAC address of this voice device is aged out the voice VLAN aging timer will be started The port will be removed from the voice VLAN after expiration of the voice VLAN aging timer If the voice traffic resumes during the aging time the aging timer will be s...

Page 755: ...ll be triggered Format config voice_vlan log state enable disable Parameters enable Specify that the sending of a voice VLAN log will be enabled disable Specify that the sending of a voice VLAN log will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the log state for voice VLAN DGS 3120 24TC admin config voice_vlan log state...

Page 756: ...Aging Time 60 minutes Log State Enabled Member Ports 1 2 1 5 Dynamic Member Ports DGS 3120 24TC admin To display the voice VLAN global information when voice VLAN is disabled DGS 3120 24TC admin show voice_vlan Command show voice_vlan Voice VLAN State Disabled Voice VLAN Unassigned Priority 5 Aging Time 60 minutes Log State Enabled DGS 3120 24TC admin 87 9 show voice_vlan oui Description This comm...

Page 757: ...00 FF FF FF 00 00 00 00 0F E2 00 00 00 FF FF FF 00 00 00 Huawei 3COM 00 60 B9 00 00 00 FF FF FF 00 00 00 NEC Philips 00 D0 1E 00 00 00 FF FF FF 00 00 00 Pingtel 00 E0 75 00 00 00 FF FF FF 00 00 00 Veritel 00 E0 BB 00 00 00 FF FF FF 00 00 00 3COM Total Entries 9 DGS 3120 24TC admin 87 10 show voice_vlan ports Description This command is used to show the port voice VLAN information Format show voice...

Page 758: ... 11 show voice_vlan voice device Description This command is used to show voice devices that are connected to the ports The start time is the time when the device is detected on this port and the activate time is the latest time the device sent traffic Format show voice_vlan voice_device ports portlist Parameters ports Optional Specify the list of ports to be configured here portlist Enter a list ...

Page 759: ...00 1 1 00 E0 BB 00 00 03 2008 10 6 14 20 2008 10 6 15 30 1 2 00 03 6B 00 00 01 2008 10 6 17 15 2008 10 6 18 00 1 4 00 E0 75 00 00 02 2008 10 6 18 15 2008 10 6 20 00 1 5 00 01 E3 01 02 03 2008 10 6 18 30 2008 10 6 20 30 Total Entries 6 DGS 3120 24TC admin 87 12 show voice_vlan lldp_med voice_device Description This command is used to show the voice devices being discovered by the LLDP MED Format sh...

Page 760: ... 1 Chassis ID Subtype MAC Address Chassis ID 00 E0 BB 00 00 11 Port ID Subtype Network Address Port ID 172 18 1 1 Create Time 10 6 2008 09 00 Remain Time 120 Seconds Index 2 Local Port 1 3 Chassis ID Subtype MAC Address Chassis ID 00 E0 BB 00 00 12 Port ID Subtype Network Address Port ID 172 18 1 2 Create Time 10 6 2008 09 00 Remain Time 120 Seconds Total Entries 2 DGS 3120 24TC admin ...

Page 761: ...s config wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan config wac authorization attributes radius enable disable local enable disable 1 config wac authentication_page element default page_title desc 128 login_window_title desc 64 user_name_title desc 32 password_title desc 32 logout_window_title desc 64 notification_line value 1 5 desc 128 show wac show wac ports portlist ...

Page 762: ...None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable WAC DGS 3120 24TC admin disable wac Command disable wac Success DGS 3120 24TC admin 88 3 config wac ports Description This command is used to configure state and other parameters of the ports Format config wac ports portlist all state enable disable aging_time infinite min 1 1440 idle...

Page 763: ...ween 1 and 1440 minutes block_time Optional If a host fails to pass the authentication it will be blocked for a period specified by block_time sec 0 300 Enter the blocking time here This value must be between 0 and 300 seconds Restrictions Only Administrator Operator and Power User level users can issue this command Example To config state and other parameters of the ports DGS 3120 24TC admin conf...

Page 764: ...efault redirect path after successful authentication When the string is cleared the client will not be redirected to another URL after successful authentication Format config wac default_redirpath string 128 Parameters string 128 The URL that the client will be redirected to after successful authentication By default the redirected path is cleared This value can be up to 128 characters long Restri...

Page 765: ...edirect URL DGS 3120 24TC admin config wac clear_default_redirpath Success DGS 3120 24TC admin 88 7 config wac virtual_ip Description This command is used to configure the virtual IP address for WAC The virtual IP of WAC is used to accept authentication request from unauthenticated host Only requests sent to this IP will get response correctly This IP does not respond to ARP request or ICMP packet...

Page 766: ...PS is 443 If no protocol specified the protocol is HTTP The HTTP cannot run at TCP port 443 and the HTTPS cannot run at TCP port 80 Format config wac switch_http_port tcp_port_number 1 65535 http https Parameters tcp_port_number 1 65535 A TCP port which the WAC Switch listens to and uses to finish the authenticating process The range of port number is 1 65535 http Optional To specify the WAC runs ...

Page 767: ...ich will uses this user account to pass authentication vlan_name 32 Enter the name of the VLAN here This name can be up to 32 characters long vlanid Optional Specify the target VLAN ID for authenticated hosts which will uses this user account to pass authentication vlanid 1 4094 Enter the VLAN ID used here This value must be between 1 and 4094 Restrictions Only Administrator Operator and Power Use...

Page 768: ...gured Format config wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan Parameters user The user name to be configured username 15 Enter the username used here This name can be up to 32 characters long vlan Specify the VLAN name for authenticated host which uses this user account to pass authentication vlan_name 32 Enter the name of the VLAN here This name can be up to 32 charac...

Page 769: ...al If specified to enable the authorized data assigned by the RADUIS server will be accepted if the global authorization network is enabled The default state is enabled enable Specify that the authorized data assigned by the RADUIS server will be accepted disable Specify that the authorized data assigned by the RADUIS server will not be accepted local Optional If specified to enable the authorized...

Page 770: ...nter a description with maximum of 32 characters password_title Specify to configure the password title of the authentication page desc 32 Enter a description with maximum of 64 characters logout_window_title Specify to configure the logout window title of the authentication page desc 64 Enter a description with maximum of 64 characters notification_line Specify to set the notification information...

Page 771: ...Method Local Redirect Path http www dlink com Virtual IP 1 1 1 1 Virtual IPv6 Switch HTTP Port 8888 HTTP RADIUS Authorization Enabled Local Authorization Disabled DGS 3120 24TC admin 88 15 show wac ports Description This command is used to display the port level setting Format show wac ports portlist Parameters ports Specify a range of member ports to show the status portlist Optional Enter a list...

Page 772: ...bled 60 30 120 1 3 Enabled 120 60 120 DGS 3120 24TC admin 88 16 show wac user Description This command is used to show web authentication account Format show wac user Parameters None Restrictions None Example To show WAC local user DGS 3120 24TC admin show wac user Command show wac user User Name Password VID Jim pasx 1000 Total Entries 1 DGS 3120 24TC admin 88 17 show wac auth_state Description T...

Page 773: ...is 20 and the assigned VLAN ID is 1234 in this example 3 MAC 00 00 00 00 00 03 failed to pass authentication the VID field will be shown as indicating that packets with SA 00 00 00 00 00 03 will be dropped no matter which VLAN these packets are from 4 MAC 00 00 00 00 00 04 attempts to start authentication the VID field will be shown as until authentication completed Supposed that ports 2 and 3 are...

Page 774: ...0 1 2 00 00 00 00 00 10 P 2040 Authenticated 1234 2 1440 20 1 3 00 00 00 00 00 20 P 2045 Authenticating 5 1 3 00 00 00 00 00 21 P 2045 Blocked 100 Total Authenticating Hosts 2 Total Authenticated Hosts 3 Total Blocked Hosts 2 DGS 3120 24TC admin 88 18 show wac authenticate_page Description This command is used to show the elements of the customized authenticate pages Format show wac authenticate_p...

Page 775: ...icating blocked macaddr macaddr Parameters ports Specify the list of ports whose WAC state will be cleared portlist Enter a list of ports used for the configuration here all Specify that all the ports will be used for this configuration authenticated Optional Specified to clear all authenticated users for a port authenticating Optional Specified to clear all authenticating users for a port blocked...

Page 776: ...ed to enable the password recovery mode Format enable password_recovery Parameters None Restrictions Only Administrator level users can issue this command Example To enable the password recovery mode DGS 3120 24TC admin enable password_recovery Command enable password_recovery Success DGS 3120 24TC admin 89 2 disable password_recovery Description This command is used to disable the password recove...

Page 777: ...ssword_recovery Success DGS 3120 24TC admin 89 3 show password_recovery Description This command is used to display the password recovery state Format show password_recovery Parameters None Restrictions Only Administrator level users can issue this command Example To display the password recovery state DGS 3120 24TC admin show password_recovery Command show password_recovery Running Configuration ...

Page 778: ...poofing attacks Figure 1 In the process of ARP PC A will first issue an ARP request to query PC B s MAC address The network structure is shown in Figure 1 In the meantime PC A s MAC address will be written into the Sender H W Address and its IP address will be written into the Sender Protocol Address in the ARP payload As PC B s MAC address is unknown the Target H W Address will be 00 00 00 00 00 ...

Page 779: ...ssociated port into its Forwarding Table In addition when the Switch receives the broadcasted ARP request it will flood the frame to all ports except the source port port 1 see Figure 2 Figure 2 Figure 3 When PC B replies to the ARP request its MAC address will be written into Target H W Address in the ARP payload shown in Table 3 The ARP reply will be then encapsulated into an Ethernet frame agai...

Page 780: ...le 4 Table 4 Ethernet Frame Format The switch will also examine the Source Address of the Ethernet frame and find that the address is not in the Forwarding Table The switch will learn PC B s MAC and update its Forwarding Table How ARP Spoofing Attacks a Network ARP spoofing also known as ARP poisoning is a method to attack an Ethernet network which may allow an attacker to sniff data frames on a L...

Page 781: ...urce IP address itself The Sender H W Address and Target H W address are filled with the same source MAC address itself The destination MAC address is the Ethernet broadcast address FF FF FF FF FF FF All nodes within the network will immediately update their own ARP table in accordance with the sender s MAC and IP address The format of Gratuitous ARP is shown in the following table A common DoS at...

Page 782: ...t is the gateway s ARP 2 The switch will deny all other ARP packets which claim they are from the gateway s IP The design of Packet Content ACL on the Switch enables users to inspect any offset chunk An offset chunk is a 4 byte block in a HEX format which is utilized to match the individual field in an Ethernet frame Each profile is allowed to contain up to a maximum of four offset chunks Furtherm...

Page 783: ... for the calculation of packet offset Table 5 A Completed ARP Packet Contained in an Ethernet Frame Command Description Step 1 create access_profile_id 1 profile_name 1 ethernet source_mac FF FF FF FF FF FF ethernet_type Create access profile 1 to match Ethernet Type and Source MAC address Step 2 config access_profile profile_id 1 add access_id 1 ethernet source_mac 01 02 03 04 05 06 ethernet_type...

Page 784: ...1st and 32nd bytes Step 4 config access_profile profile_id 2 add access_id 1 packet_content offset_chunk_1 0x806 offset_chunk_2 0xA5A offset_chunk_3 0x5A5A0000 Configure access profile 2 The rest of the ARP packets whose Sender IP claim they are the gateway s IP will be dropped Step 5 save Save configuration ...

Page 785: ...nection to the console port of the device It is necessary for the user needs to attach a terminal or PC with terminal emulation to the console port of the Switch 2 Power on the Switch After the runtime image and UART init are loaded to 100 the Switch will allow 2 seconds for the user to press the hotkey Shift 6 to enter the Password Recovery Mode Once the Switch enters the Password Recovery Mode a...

Page 786: ...t account command deletes all the previously created accounts reset password username The reset password command resets the password of the specified user If a username is not specified the passwords of all users will be reset show account The show account command displays all previously created accounts ...

Page 787: ... Informational by console and IP ipaddr are XOR shown in log string which means if user login by console there will no IP information for logging Configuration and log saved to flash Unit unitID Configuration and log saved to flash by console Username username IP ipaddr Informational by console and IP ipaddr are XOR shown in log string which means if user login by console there will no IP informat...

Page 788: ...nsole there will no IP information for logging Configuration successfully uploaded Configuration successfully uploaded by console Username username IP ipaddr Informational by console and IP ipaddr are XOR shown in log string which means if user login by console there will no IP information for logging Configuration upload was unsuccessful Configuration upload by console was unsuccessful Username u...

Page 789: ...ware upgraded to SLAVE unsuccessfully Firmware upgraded to SLAVE unsuccessfully Username username Warning Stacking topology change Stacking topology is Stack_TP_TYPE Master Unit unitID MAC macaddr Informational Backup master changed to master Backup master changed to master Master Unit unitID Informational Slave changed to master Slave changed to master Master Unit unitID Informational Box ID conf...

Page 790: ...d through Telnet Login failed through Telnet Username username IP ipaddr Warning Logout through Telnet Logout through Telnet Username username IP ipaddr Informational Telnet session timed out Telnet session timed out Username username IP ipaddr Informational SNMP SNMP request received with invalid community string SNMP request received from ipAddress with invalid community string Informational STP...

Page 791: ...ndvlanid Informational DoS Spoofing attack 1 The soure ip is same as switch s interface ip but the source mac is different 2 Source ip is the same as the switch s IP in ARP packet 3 Self IP packet detected Possible spoofing attack from IP ipaddr MAC macaddr Port unitID portNum Informational SSH Successful login through SSH Successful login through SSH Username username IP ipaddr Informational Logi...

Page 792: ...H authenticated by AAA local method Successful login through SSH from userIP authenticated by AAA local method Username username Informational Login failed through SSH authenticated by AAA local method Login failed through SSH from userIP authenticated by AAA local method Username username Warning Successful login through Console authenticated by AAA none method Successful login through Console au...

Page 793: ...ational Login failed through Web SSL authenticated by AAA server Login failed through Web SSL from userIP authenticated by AAA server serverIP Username username Warning Login failed through Web SSL due to AAA server timeout or improper configuration Login failed through Web SSL from userIP due to AAA server timeout or improper configuration Username username Warning Successful login through Telnet...

Page 794: ...hod Enable Admin failed through Web SSL from userIP authenticated by AAA local_enable method Username username Warning Successful Enable Admin through Telnet authenticated by AAA local_enable method Successful Enable Admin through Telnet from userIP authenticated by AAA local_enable method Username username Informational Enable Admin failed through Telnet authenticated by AAA local_enable method E...

Page 795: ... from userIP authenticated by AAA server serverIP Username username Informational Enable Admin failed through Web authenticated by AAA server Enable Admin failed through Web from userIP authenticated by AAA server serverIP Username username Warning Enable Admin failed through Web due to AAA server timeout or improper configuration Enable Admin failed through Web from userIP due to AAA server timeo...

Page 796: ...S VID assigned from RADIUS server after RADIUS client is authenticated by RADIUS server successfully This VID will be assigned to the port and this port will be the VLAN untagged port member RADIUS server ipaddr assigned VID vlanID to port unitID portNum account username Informational Ingress bandwidth assigned from RADIUS server after RADIUS client is authenticated by RADIUS server successfully T...

Page 797: ... reaches the max user limit MAC based Access Control enters stop learning state Warning per system The authorized user number on whole device is below the max user limit in a time interval interval is project depended MAC based Access Control recovers from stop learning state Warning per system A host passes the authentication MAC based Access Control host login successful MAC macaddr port unitID ...

Page 798: ... IMPB entry is conflict with static ARP Dynamic IMPB entry conflicts with static ARP IP ipaddr MAC macaddr Port unitID portNum Warning Dynamic IMPB entry is conflict with static FDB Dynamic IMPB entry conflicts with static FDB IP ipaddr MAC macaddr Port unitID portNum Warning Dynamic IMPB entry conflicts with static IMPB Dynamic IMPB entry conflicts with static IMPB IP ipaddr MAC macaddr Port unit...

Page 799: ...occurred Packet discard begun Critical Port with VID Loop detection restarted after interval time Port unitID portNum VID vlanID LBD recovered Loop detection restarted Informational The number of VLANs that loop back has occured hit the specified number Loop VLAN number overflow Informational Gratuituios ARP Gratuituios ARP detected duplicate IP Conflict IP was detected with this device IP ipaddr ...

Page 800: ...nformational CFM EXTENSION AIS condition detected AIS condition detected MD Level mdlevel VLAN vlanid Local Port unitID portNum Direction mepdirection MEPID mepid Notice AIS condition cleared AIS condition cleared MD Level mdlevel VLAN vlanid Local Port unitID portNum Direction mepdirection MEPID mepid Notice LCK condition detected LCK condition detected MD Level mdlevel VLAN vlanid Local Port uni...

Page 801: ...en execute configuration filename line lineno at time time range Warning Schedule backup fail Backup type filename at time time range failure Warning Execute configuration success Execute configuration filename success at time time range Informational Schedule backup success Backup type filename success at time time range Informational LLDP LLDP MED Topology change detected LLDP MED Topology chang...

Page 802: ...2 0 2 DGS 3120 24PC 1 3 6 1 4 1 171 11 117 1 3 2 100 1 2 0 2 DGS 3120 24SC 1 3 6 1 4 1 171 11 117 1 4 2 100 1 2 0 2 DGS 3120 48TC 1 3 6 1 4 1 171 11 117 1 5 2 100 1 2 0 2 DGS 3120 48PC 1 3 6 1 4 1 171 11 117 1 6 2 100 1 2 0 2 DGS 3120 24SC DC swIpMacBindingViolationTrap When the IP MAC Binding trap is enabled if there s a new MAC that violates the pre defined port security configuration a trap wil...

Page 803: ...Binding 1 swMacBasedAuthInfoMacIndex 2 swMacBasedAuthInfoPortIndex 3 swMacBasedAuthVID 1 3 6 1 4 1 171 12 35 11 1 0 1 swMacBasedAccessControlLoggedFail The trap is sent when a MAC based Access Control host login fails Binding 1 swMacBasedAuthInfoMacIndex 2 swMacBasedAuthInfoPortIndex 3 swMacBasedAuthVID 1 3 6 1 4 1 171 12 35 11 1 0 2 swMacBasedAccessControlAgesOut The trap is sent when a MAC based...

Page 804: ... state a trap will be sent out 1 swBpduProtectionPortIndex 2 swBpduProtectionRecoveryMethod 1 3 6 1 4 1 171 12 76 4 0 2 swERPSSFDetectedTrap When a signal failure occurs a trap will be generated Binding 1 swERPSNodeId 1 3 6 1 4 1 171 12 78 4 0 1 swERPSSFClearedTrap When the signal failure clears a trap will be generated Binding 1 swERPSNodeId 1 3 6 1 4 1 171 12 78 4 0 2 swERPSRPLOwnerConflictTrap ...

Page 805: ...fication Binding 1 swTemperatureUnitIndex 2 swTemperSensorID 3 swTemperatureCurrent 1 3 6 1 4 1 171 12 11 2 2 4 0 1 swHighTemperatureRecover swHighTemperatureRecover Binding 1 swTemperatureUnitIndex 2 swTemperSensorID 3 swTemperatureCurrent 1 3 6 1 4 1 171 12 11 2 2 4 0 2 swLowTemperature Low Temperature notification Binding 1 swTemperatureUnitIndex 2 swTemperSensorID 3 swTemperatureCurrent 1 3 6 ...

Page 806: ...gmtId 1 3 6 1 4 1 171 12 11 2 2 1 0 3 swUnitTPChange The stacking topology change notification Binding 1 swStackTopologyType 2 swUnitMgmtId 3 swUnitMgmtMacAddr 1 3 6 1 4 1 171 12 11 2 2 1 0 4 swUnitRoleChange The stacking unit role change notification Binding 1 swStackRoleChangeType 2 swUnitMgmtId 1 3 6 1 4 1 171 12 11 2 2 1 0 5 lldpRemTablesChange A lldpRemTablesChange notification is sent when t...

Page 807: ...D 2 swSingleIPMSMacAddr 1 3 6 1 4 1 171 12 8 6 0 11 swSingleIPMSWarmStart The commander switch will send swSingleIPMSWarmStart notification to the indicated host when its member generates a warm start notification Binding 1 swSingleIPMSID 2 swSingleIPMSMacAddr 1 3 6 1 4 1 171 12 8 6 0 12 swSingleIPMSLinkDown The commander switch will send swSingleIPMSLinkDown notification to the indicated host whe...

Page 808: ...zing itself such that its configuration is unaltered 1 3 6 1 6 3 1 1 5 2 linkDown A linkDown trap signifies that the SNMP entity acting in an agent role has detected that the ifOperStatus object for one of its communication links is about to enter the down state from some other state but not from the notPresent state This other state is indicated by the included value of ifOperStatus Binding 1 ifI...

Page 809: ...state to the Blocking state The trap is not sent if a newRoot trap is sent for the same transition Implementation of this trap is optional 1 3 6 1 2 1 17 0 2 risingAlarm The SNMP trap that is generated when an alarm entry crosses its rising threshold and generates an event that is configured for sending SNMP traps Binding 1 alarmIndex 2 alarmVariable 3 alarmSampleType 4 alarmValue 5 alarmRisingThr...

Page 810: ... DLINK Required Vendor Type Defines the attribute 2 for ingress bandwidth 3 for egress bandwidth Required Attribute Specific Field Used to assign the bandwidth of a port Unit Kbits Required If the user has configured the bandwidth attribute of the RADIUS server for example ingress bandwidth 1000Kbps and the 802 1X authentication is successful the device will assign the bandwidth according to the R...

Page 811: ...e RADIUS server is a value out of range 7 it will not be set to the device To assign VLAN by RADIUS Server the proper parameters should be configured on the RADIUS Server To use VLAN assignment RFC3580 defines the following tunnel attributes in RADIUS packets The table below shows the parameters for a VLAN RADIUS Tunnel Attribute Description Value Usage Tunnel Type This attribute indicates the tun...

Page 812: ...successful the port will be added to VLAN 3 However if the user does not configure the VLAN attribute and authenticates successfully the port will be kept in its original VLAN If the VLAN attribute configured on the RADIUS server does not exist the port will not be assigned to the requested VLAN To assign ACL by RADIUS Server the proper parameters should be configured on the RADIUS Server The tabl...

Page 813: ...rofile_id 6 profile_name 1 ethernet ACL rule config access_profile profile_id 6 add access_id auto_assign ethernet and the 802 1X or MAC based Access Control or WAC authentication is successful the device will assign the ACL profiles and rules according to the RADIUS server For more information about the ACL module please refer to Chapter 22 Access Control List ACL Commands ...

Reviews:

No comments

Related manuals for xStack DGS-3120-48PC

Baracoda All in One Printer Communication Protocol Manual preview
All in One Printer
Brand: Baracoda Pages: 42
Omnia Volt Quick Start Installation Manual preview
Volt
Brand: Omnia Pages: 6
Watchguard Firebox T15 Quick Start Manual preview
Firebox T15
Brand: Watchguard Pages: 39
NETGEAR RP334 Specifications preview
RP334
Brand: NETGEAR Pages: 2
Planet GSW-1602SF User Manual preview
GSW-1602SF
Brand: Planet Pages: 20
Xilica Audio Design XP 4080 User Manual preview
XP 4080
Brand: Xilica Audio Design Pages: 30
Cypress Semiconductor CY62148E Specification Sheet preview
CY62148E
Brand: Cypress Semiconductor Pages: 10
SMC Networks Barricade SMC7901WBRA2 Installation Manual preview
Barricade SMC7901WBRA2
Brand: SMC Networks Pages: 2
axing EOC 1-31 Operation Instructions Manual preview
EOC 1-31
Brand: axing Pages: 52
Dialogic Media Board D/120JCT-LS-EW Installation Manual preview
Media Board D/120JCT-LS-EW
Brand: Dialogic Pages: 2
MFJ MFJ-492 Manual preview
MFJ-492
Brand: MFJ Pages: 11
Intel 640 - Pentium 4 640 3.2GHz 800MHz 2MB Socket 775 CPU User Manual preview
640 - Pentium 4 640 3.2GHz 800MHz 2MB Socket 775 CPU
Brand: Intel Pages: 105
Supermicro AOC-STG-I2 User Manual preview
AOC-STG-I2
Brand: Supermicro Pages: 15
INNOSILICON T3-43T User Manual preview
T3-43T
Brand: INNOSILICON Pages: 11
NZXT RESPIRE T40 Manual preview
RESPIRE T40
Brand: NZXT Pages: 2
Quidway S3000-EI Series Operation Manual preview
S3000-EI Series
Brand: Quidway Pages: 16
National Instruments PXI Terminal Block NI TB-2709 Installation Manual preview
PXI Terminal Block NI TB-2709
Brand: National Instruments Pages: 12
Sony Ericsson GC83 Specification preview
GC83
Brand: Sony Ericsson Pages: 2

Brands by name

Popular brands

Load more brands